154 lines
3.6 KiB
PHP
154 lines
3.6 KiB
PHP
<?php
|
|
|
|
class Session {
|
|
|
|
private $cookie;
|
|
|
|
private $db;
|
|
|
|
var $level = 0;
|
|
|
|
var $values = array();
|
|
|
|
function __construct($profile = NULL)
|
|
{
|
|
global $session_config;
|
|
|
|
if(!empty($session_config['profile'])) $profile = $session_config['profile'];
|
|
|
|
$cookie = strhex(base64_decode(gpc($session_config['cookie'],'cookie')));
|
|
$ip = encode_ip();
|
|
|
|
$table = $session_config['db']['table'];
|
|
|
|
$this->db = new BDD($profile);
|
|
|
|
$this->clean();
|
|
|
|
if(!$cookie)
|
|
{
|
|
$this->new_cookie();
|
|
$this->db->deconnexion();
|
|
return FALSE;
|
|
}
|
|
|
|
$this->db->escape($cookie);
|
|
|
|
$query = $this->db->unique_query("SELECT session,level,var FROM $table WHERE session= 0x$cookie AND ip= 0x$ip AND active=1");
|
|
|
|
if($this->db->num_rows == 1)
|
|
{
|
|
$time = time();
|
|
|
|
$this->db->query("UPDATE $table SET time='$time' WHERE session= 0x$cookie");
|
|
|
|
$this->db->deconnexion();
|
|
|
|
$this->cookie = strhex($query['session']);
|
|
$this->level = $query['level'];
|
|
if(!empty($query['var'])) $this->values = unserialize($query['var']);
|
|
|
|
setcookie($session_config['cookie'],base64_encode(hexstr($this->cookie)),time() + $session_config['time'], '/');
|
|
}
|
|
else
|
|
{
|
|
$this->new_cookie();
|
|
$this->db->deconnexion();
|
|
}
|
|
|
|
return TRUE;
|
|
}
|
|
|
|
private function clean()
|
|
{
|
|
global $session_config;
|
|
|
|
if(!$this->db->connected) return FALSE;
|
|
|
|
$time = time()-$session_config['time'];
|
|
$ip = encode_ip();
|
|
$ipmax = $session_config['maxip'];
|
|
|
|
$table = $session_config['db']['table'];
|
|
|
|
$this->db->query("DELETE FROM $table WHERE time < $time AND active = 1");
|
|
|
|
if($ipmax > 0) $this->db->query("DELETE FROM $table WHERE ip = (SELECT * FROM (SELECT ip FROM $table GROUP BY ip HAVING COUNT(ip) > $ipmax) AS tmp)");
|
|
}
|
|
|
|
private function new_cookie()
|
|
{
|
|
global $session_config;
|
|
|
|
if(!$this->db->connected) return FALSE;
|
|
|
|
$time = time();
|
|
|
|
$level = (is_int($this->level) && strlen($this->level) <= 2) ? $this->level : 0 ;
|
|
|
|
$sess_cookie = random(256);
|
|
$ip = encode_ip();
|
|
|
|
$this->cookie = $sess_cookie;
|
|
|
|
$table = $session_config['db']['table'];
|
|
|
|
$this->db->escape($sess_cookie);
|
|
|
|
$this->db->query("INSERT INTO $table(session,time,ip,var,level,active) VALUES(0x$sess_cookie,$time,0x$ip,$level,0,1) ");
|
|
|
|
setcookie($session_config['cookie'],base64_encode(hexstr($this->cookie)),time() + $session_config['time'], '/');
|
|
}
|
|
|
|
function put($uid = NULL)
|
|
{
|
|
global $session_config;
|
|
|
|
if(empty($this->cookie)) return FALSE;
|
|
|
|
$var = serialize($this->values);
|
|
|
|
$cookie = $this->cookie;
|
|
|
|
$uid = empty($uid) ? '0' : md5($uid);
|
|
|
|
$level = (is_int($this->level) || (ctype_digit($this->level)) && strlen($this->level) <= 2) ? $this->level : 0 ;
|
|
|
|
$table = $session_config['db']['table'];
|
|
|
|
$this->db->reconnexion();
|
|
|
|
$this->db->escape($var);
|
|
|
|
if($uid != '0') $this->db->query("DELETE FROM $table WHERE uid = 0x$uid AND session != 0x$cookie AND active = 1");
|
|
|
|
$this->db->query("UPDATE $table SET var='$var', level='$level', uid= 0x$uid WHERE session= 0x$cookie");
|
|
|
|
$this->db->deconnexion();
|
|
}
|
|
|
|
function close()
|
|
{
|
|
global $session_config;
|
|
|
|
if(empty($this->cookie)) return FALSE;
|
|
|
|
$cookie = $this->cookie;
|
|
|
|
$table = $session_config['db']['table'];
|
|
|
|
$this->db->reconnexion();
|
|
|
|
$this->db->query("DELETE FROM $table WHERE session = 0x$cookie AND active = 1");
|
|
|
|
$this->db->deconnexion();
|
|
|
|
setcookie($session_config['cookie'],'',0);
|
|
|
|
$this->values = array();
|
|
$this->level = 0;
|
|
|
|
}
|
|
}
|
|
?>
|