%PDF- %PDF-
Mini Shell

Mini Shell

Direktori : /home/bitrix/www/bitrix/modules/security/classes/general/
Upload File :
Create Path :
Current File : //home/bitrix/www/bitrix/modules/security/classes/general/session.php

<?
class CSecuritySession
{
	const GC_AGENT_NAME = "CSecuritySession::CleanUpAgent();";
	protected static $oldSessionId = null;

	public static function Init()
	{
		if(CSecuritySessionVirtual::isStorageEnabled())
		{
			static::registerHandler('CSecuritySessionVirtual');
		}
		elseif(CSecuritySessionMC::isStorageEnabled())
		{
			static::registerHandler('CSecuritySessionMC');
		}
		else
		{
			static::registerHandler('CSecuritySessionDB');
		}
	}

	/**
	 * @param string $pMessage
	 */
	public static function triggerFatalError($pMessage = "")
	{
		CHTTP::SetStatus("500 Internal Server Error");
		trigger_error($pMessage, E_USER_ERROR);
		die();
	}

	/**
	 * @return string
	 */
	public static function CleanUpAgent()
	{
		$maxlifetime = intval(ini_get("session.gc_maxlifetime"));

		if($maxlifetime && !CSecuritySessionMC::isStorageEnabled())
		{
			CSecuritySessionDB::gc($maxlifetime);
		}

		return self::GC_AGENT_NAME;
	}

	public static function UpdateSessID()
	{
		$oldSessionId = session_id();
		session_regenerate_id();
		$newSessionId = session_id();

		//Delay database update to session write moment
		if(!self::$oldSessionId)
			self::$oldSessionId = $oldSessionId;
	}

	/**
	 * @return bool
	 */
	public static function isOldSessionIdExist()
	{
		return self::$oldSessionId && self::checkSessionId(self::$oldSessionId);
	}

	/**
	 * @param bool $cleanUp
	 * @return string
	 */
	public static function getOldSessionId($cleanUp = false)
	{
		$result = self::$oldSessionId;
		if ($cleanUp)
			self::$oldSessionId = null;

		return $result;
	}

	/**
	 * @param string $id
	 * @return bool
	 */
	public static function checkSessionId($id)
	{
		return (
			$id
			&& is_string($id)
			&& preg_match('/^[\da-z\-,]{6,}$/iD', $id)
		);
	}

	public static function activate()
	{
		COption::SetOptionString("security", "session", "Y");
		CSecuritySession::Init();
		CAgent::RemoveAgent(self::GC_AGENT_NAME, "security");
		CAgent::Add(array(
			"NAME" => self::GC_AGENT_NAME,
			"MODULE_ID" => "security",
			"ACTIVE" => "Y",
			"AGENT_INTERVAL" => 1800,
			"IS_PERIOD" => "N",
		));
	}

	public static function deactivate()
	{
		COption::SetOptionString("security", "session", "N");
		CAgent::RemoveAgent(self::GC_AGENT_NAME, "security");
	}

	protected static function registerHandler($class)
	{
		if(!class_exists($class))
		{
			self::triggerFatalError(
				sprintf('Session handler "%s" was not found.', $class)
			);
		}

		if(!$class::Init())
		{
			self::triggerFatalError(
				sprintf('Failed to initialize "%s" session handler.', $class)
			);
		}

		//may return false with session.auto_start is set to On
		// ToDo: change to SessionHandlerInterface when Bitrix reached PHP 5.4.0
		$params = array(
			array($class, "open"),
			array($class, "close"),
			array($class, "read"),
			array($class, "write"),
			array($class, "destroy"),
			array($class, "gc")
		);

		if (version_compare(phpversion(),"5.5.0",">"))
		{
			// Due to PHP bug we must always set all 7 handlers
			$params[] = array('CSecuritySession', 'createSid');
		}

		if (call_user_func_array('session_set_save_handler', $params))
		{
			register_shutdown_function("session_write_close");
		}
	}

	public static function createSid()
	{
		return \Bitrix\Main\Security\Random::getString(32, true);
	}
}

Zerion Mini Shell 1.0