2015-04-06 20:26:05 +00:00
|
|
|
<?php
|
|
|
|
|
/*
|
|
|
|
|
* Session Handler
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
namespace Sakura;
|
|
|
|
|
|
|
|
|
|
class Session {
|
|
|
|
|
|
|
|
|
|
// Current user data
|
|
|
|
|
public static $userId;
|
|
|
|
|
public static $sessionId;
|
|
|
|
|
|
|
|
|
|
// Initiate new session
|
|
|
|
|
public static function init() {
|
|
|
|
|
|
|
|
|
|
// Start PHP session
|
|
|
|
|
if(session_status() != PHP_SESSION_ACTIVE)
|
|
|
|
|
session_start();
|
|
|
|
|
|
2015-04-12 13:33:59 +00:00
|
|
|
// Assign user and session IDs
|
2015-04-17 22:14:31 +00:00
|
|
|
self::$userId = isset($_COOKIE[Configuration::getConfig('cookie_prefix') .'id']) ? $_COOKIE[Configuration::getConfig('cookie_prefix') .'id'] : 0;
|
|
|
|
|
self::$sessionId = isset($_COOKIE[Configuration::getConfig('cookie_prefix') .'session']) ? $_COOKIE[Configuration::getConfig('cookie_prefix') .'session'] : '';
|
2015-04-12 13:33:59 +00:00
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Create new session
|
|
|
|
|
public static function newSession($userID, $remember = false) {
|
|
|
|
|
|
|
|
|
|
// Generate session key
|
|
|
|
|
$session = sha1($userID . base64_encode('sakura'. mt_rand(0, 99999999)) . time());
|
|
|
|
|
|
|
|
|
|
// Insert the session into the database
|
|
|
|
|
Database::insert('sessions', [
|
2015-04-14 14:27:37 +00:00
|
|
|
'userip' => Main::getRemoteIP(),
|
2015-04-12 13:33:59 +00:00
|
|
|
'useragent' => Main::cleanString($_SERVER['HTTP_USER_AGENT']),
|
|
|
|
|
'userid' => $userID,
|
|
|
|
|
'skey' => $session,
|
|
|
|
|
'started' => time(),
|
|
|
|
|
'expire' => time() + 604800,
|
|
|
|
|
'remember' => $remember
|
|
|
|
|
]);
|
|
|
|
|
|
|
|
|
|
// Return the session key
|
|
|
|
|
return $session;
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check session data (expiry, etc.)
|
|
|
|
|
public static function checkSession($userId, $sessionId) {
|
|
|
|
|
|
2015-04-17 22:14:31 +00:00
|
|
|
// Get session from database
|
|
|
|
|
$session = Database::fetch('sessions', true, ['userid' => [$userId, '='], 'skey' => [$sessionId, '=']]);
|
|
|
|
|
|
|
|
|
|
// Check if we actually got something in return
|
|
|
|
|
if(!count($session))
|
|
|
|
|
return false;
|
|
|
|
|
else
|
|
|
|
|
$session = $session[0];
|
|
|
|
|
|
|
|
|
|
// Check if the session expired
|
|
|
|
|
if($session['expire'] < time()) {
|
|
|
|
|
|
|
|
|
|
// If it is delete the session...
|
|
|
|
|
self::deleteSession($session['id']);
|
|
|
|
|
|
|
|
|
|
// ...and return false
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If the remember flag is set extend the session time
|
|
|
|
|
if($session['remember'])
|
|
|
|
|
Database::update('sessions', [['expire' => time() + 604800], ['id' => [$session['id'], '=']]]);
|
|
|
|
|
|
|
|
|
|
// Return 2 if the remember flag is set and return 1 if not
|
|
|
|
|
return $session['remember'] ? 2 : 1;
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Delete a session
|
|
|
|
|
public static function deleteSession($sessionId, $key = false) {
|
|
|
|
|
|
|
|
|
|
// Check if the session exists
|
|
|
|
|
if(!Database::fetch('sessions', [($key ? 'skey' : 'id'), true, [$sessionId, '=']]))
|
|
|
|
|
return false;
|
|
|
|
|
|
|
|
|
|
// Run the query
|
|
|
|
|
Database::delete('sessions', [($key ? 'skey' : 'id'), [$sessionId, '=']]);
|
|
|
|
|
|
|
|
|
|
// Return true if key was found and deleted
|
|
|
|
|
return true;
|
2015-04-12 13:33:59 +00:00
|
|
|
|
2015-04-06 20:26:05 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
}
|
