blob: c9d2e8adc078ab1d1c76615b2501d5069063def8 [file] [log] [blame]
Andrey Andreevc5536aa2012-11-01 17:33:58 +02001<?php
Darren Hillc4e266b2011-08-30 15:40:27 -04002/**
3 * CodeIgniter
4 *
Andrey Andreevfe9309d2015-01-09 17:48:58 +02005 * An open source application development framework for PHP
Andrey Andreev9ffcee62012-09-05 16:25:16 +03006 *
Andrey Andreevbdb96ca2014-10-28 00:13:31 +02007 * This content is released under the MIT License (MIT)
Andrey Andreev9ffcee62012-09-05 16:25:16 +03008 *
Andrey Andreev125ef472016-01-11 12:33:00 +02009 * Copyright (c) 2014 - 2016, British Columbia Institute of Technology
Andrey Andreev9ffcee62012-09-05 16:25:16 +030010 *
Andrey Andreevbdb96ca2014-10-28 00:13:31 +020011 * Permission is hereby granted, free of charge, to any person obtaining a copy
12 * of this software and associated documentation files (the "Software"), to deal
13 * in the Software without restriction, including without limitation the rights
14 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
15 * copies of the Software, and to permit persons to whom the Software is
16 * furnished to do so, subject to the following conditions:
Darren Hillc4e266b2011-08-30 15:40:27 -040017 *
Andrey Andreevbdb96ca2014-10-28 00:13:31 +020018 * The above copyright notice and this permission notice shall be included in
19 * all copies or substantial portions of the Software.
20 *
21 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
22 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
23 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
24 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
25 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
26 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
27 * THE SOFTWARE.
28 *
29 * @package CodeIgniter
30 * @author EllisLab Dev Team
Andrey Andreev1924e872016-01-11 12:55:34 +020031 * @copyright Copyright (c) 2008 - 2014, EllisLab, Inc. (https://ellislab.com/)
Andrey Andreev125ef472016-01-11 12:33:00 +020032 * @copyright Copyright (c) 2014 - 2016, British Columbia Institute of Technology (http://bcit.ca/)
Andrey Andreevbdb96ca2014-10-28 00:13:31 +020033 * @license http://opensource.org/licenses/MIT MIT License
Andrey Andreevbd202c92016-01-11 12:50:18 +020034 * @link https://codeigniter.com
Andrey Andreevbdb96ca2014-10-28 00:13:31 +020035 * @since Version 2.0.0
Darren Hillc4e266b2011-08-30 15:40:27 -040036 * @filesource
37 */
Andrey Andreevc5536aa2012-11-01 17:33:58 +020038defined('BASEPATH') OR exit('No direct script access allowed');
Darren Hillc4e266b2011-08-30 15:40:27 -040039
Darren Hillc4e266b2011-08-30 15:40:27 -040040/**
Andrey Andreev9ffcee62012-09-05 16:25:16 +030041 * CodeIgniter Session Class
Darren Hillc4e266b2011-08-30 15:40:27 -040042 *
Darren Hillc4e266b2011-08-30 15:40:27 -040043 * @package CodeIgniter
44 * @subpackage Libraries
45 * @category Sessions
Andrey Andreev47a47fb2014-05-31 16:08:30 +030046 * @author Andrey Andreev
Andrey Andreevbd202c92016-01-11 12:50:18 +020047 * @link https://codeigniter.com/user_guide/libraries/sessions.html
Darren Hillc4e266b2011-08-30 15:40:27 -040048 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +030049class CI_Session {
Andrey Andreev9ffcee62012-09-05 16:25:16 +030050
Andrey Andreevb4b215e2015-01-19 11:59:11 +020051 /**
52 * Userdata array
53 *
54 * Just a reference to $_SESSION, for BC purposes.
55 */
56 public $userdata;
57
Andrey Andreev47a47fb2014-05-31 16:08:30 +030058 protected $_driver = 'files';
Andrey Andreevdfb39be2014-10-06 01:50:14 +030059 protected $_config;
Darren Hillc4e266b2011-08-30 15:40:27 -040060
Andrey Andreev0fa95bd2012-11-01 23:33:14 +020061 // ------------------------------------------------------------------------
62
Darren Hillc4e266b2011-08-30 15:40:27 -040063 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +030064 * Class constructor
Darren Hillc4e266b2011-08-30 15:40:27 -040065 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +030066 * @param array $params Configuration parameters
Andrey Andreev2e3e2302012-10-09 15:52:34 +030067 * @return void
Darren Hillc4e266b2011-08-30 15:40:27 -040068 */
69 public function __construct(array $params = array())
70 {
Andrey Andreev2e3e2302012-10-09 15:52:34 +030071 // No sessions under CLI
Andrey Andreevf964b162013-11-12 17:04:55 +020072 if (is_cli())
Andrey Andreev2e3e2302012-10-09 15:52:34 +030073 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +030074 log_message('debug', 'Session: Initialization under CLI aborted.');
75 return;
76 }
77 elseif ((bool) ini_get('session.auto_start'))
78 {
79 log_message('error', 'Session: session.auto_start is enabled in php.ini. Aborting.');
80 return;
81 }
82 elseif ( ! empty($params['driver']))
83 {
84 $this->_driver = $params['driver'];
85 unset($params['driver']);
86 }
Andrey Andreevdfb39be2014-10-06 01:50:14 +030087 elseif ($driver = config_item('sess_driver'))
Andrey Andreev34b1ef52014-05-31 21:23:41 +030088 {
89 $this->_driver = $driver;
90 }
Andrey Andreevac4f4722014-06-02 11:16:32 +030091 // Note: BC workaround
92 elseif (config_item('sess_use_database'))
93 {
94 $this->_driver = 'database';
95 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +030096
Andrey Andreev34b92c62015-03-12 12:42:00 +020097 $class = $this->_ci_load_classes($this->_driver);
Andrey Andreev2e3e2302012-10-09 15:52:34 +030098
Andrey Andreevdfb39be2014-10-06 01:50:14 +030099 // Configuration ...
100 $this->_configure($params);
101
102 $class = new $class($this->_config);
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300103 if ($class instanceof SessionHandlerInterface)
Darren Hillc4e266b2011-08-30 15:40:27 -0400104 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300105 if (is_php('5.4'))
Darren Hillc4e266b2011-08-30 15:40:27 -0400106 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300107 session_set_save_handler($class, TRUE);
Darren Hillc4e266b2011-08-30 15:40:27 -0400108 }
109 else
110 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300111 session_set_save_handler(
112 array($class, 'open'),
113 array($class, 'close'),
114 array($class, 'read'),
115 array($class, 'write'),
116 array($class, 'destroy'),
117 array($class, 'gc')
118 );
119
120 register_shutdown_function('session_write_close');
121 }
122 }
123 else
124 {
125 log_message('error', "Session: Driver '".$this->_driver."' doesn't implement SessionHandlerInterface. Aborting.");
126 return;
127 }
128
Andrey Andreev562e39b2014-11-12 15:38:58 +0200129 // Sanitize the cookie, because apparently PHP doesn't do that for userspace handlers
130 if (isset($_COOKIE[$this->_config['cookie_name']])
131 && (
132 ! is_string($_COOKIE[$this->_config['cookie_name']])
133 OR ! preg_match('/^[0-9a-f]{40}$/', $_COOKIE[$this->_config['cookie_name']])
134 )
135 )
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300136 {
Andrey Andreev562e39b2014-11-12 15:38:58 +0200137 unset($_COOKIE[$this->_config['cookie_name']]);
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300138 }
139
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300140 session_start();
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300141
Andrey Andreevff37ffe2014-11-04 12:28:57 +0200142 // Is session ID auto-regeneration configured? (ignoring ajax requests)
Andrey Andreev395f9282015-02-05 13:29:56 +0200143 if ((empty($_SERVER['HTTP_X_REQUESTED_WITH']) OR strtolower($_SERVER['HTTP_X_REQUESTED_WITH']) !== 'xmlhttprequest')
Andrey Andreevde5c2462014-11-04 12:31:03 +0200144 && ($regenerate_time = config_item('sess_time_to_update')) > 0
Andrey Andreevff37ffe2014-11-04 12:28:57 +0200145 )
Andrey Andreev8e60b9a2014-11-04 11:08:06 +0200146 {
147 if ( ! isset($_SESSION['__ci_last_regenerate']))
148 {
149 $_SESSION['__ci_last_regenerate'] = time();
150 }
151 elseif ($_SESSION['__ci_last_regenerate'] < (time() - $regenerate_time))
152 {
Andrey Andreev789b1fe2015-02-07 19:30:30 +0200153 $this->sess_regenerate((bool) config_item('sess_regenerate_destroy'));
Andrey Andreev8e60b9a2014-11-04 11:08:06 +0200154 }
155 }
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300156 // Another work-around ... PHP doesn't seem to send the session cookie
157 // unless it is being currently created or regenerated
Andrey Andreev8e60b9a2014-11-04 11:08:06 +0200158 elseif (isset($_COOKIE[$this->_config['cookie_name']]) && $_COOKIE[$this->_config['cookie_name']] === session_id())
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300159 {
160 setcookie(
161 $this->_config['cookie_name'],
162 session_id(),
163 (empty($this->_config['cookie_lifetime']) ? 0 : time() + $this->_config['cookie_lifetime']),
164 $this->_config['cookie_path'],
165 $this->_config['cookie_domain'],
166 $this->_config['cookie_secure'],
167 TRUE
168 );
169 }
170
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300171 $this->_ci_init_vars();
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300172
Andrey Andreev90726b82015-01-20 12:39:22 +0200173 log_message('info', "Session: Class initialized using '".$this->_driver."' driver.");
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300174 }
175
176 // ------------------------------------------------------------------------
177
Andrey Andreev10411fc2015-01-19 13:54:53 +0200178 /**
179 * CI Load Classes
180 *
181 * An internal method to load all possible dependency and extension
182 * classes. It kind of emulates the CI_Driver library, but is
183 * self-sufficient.
184 *
185 * @param string $driver Driver name
186 * @return string Driver class name
187 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300188 protected function _ci_load_classes($driver)
189 {
190 // PHP 5.4 compatibility
191 interface_exists('SessionHandlerInterface', FALSE) OR require_once(BASEPATH.'libraries/Session/SessionHandlerInterface.php');
192
193 $prefix = config_item('subclass_prefix');
194
195 if ( ! class_exists('CI_Session_driver', FALSE))
196 {
Andrey Andreeve86603f2014-06-11 14:03:36 +0300197 require_once(
198 file_exists(APPPATH.'libraries/Session/Session_driver.php')
199 ? APPPATH.'libraries/Session/Session_driver.php'
200 : BASEPATH.'libraries/Session/Session_driver.php'
201 );
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300202
203 if (file_exists($file_path = APPPATH.'libraries/Session/'.$prefix.'Session_driver.php'))
204 {
205 require_once($file_path);
206 }
207 }
208
209 $class = 'Session_'.$driver.'_driver';
Andrey Andreevcd94dd72014-12-09 17:38:56 +0200210
211 // Allow custom drivers without the CI_ or MY_ prefix
212 if ( ! class_exists($class, FALSE) && file_exists($file_path = APPPATH.'libraries/Session/drivers/'.$class.'.php'))
213 {
214 require_once($file_path);
215 if (class_exists($class, FALSE))
216 {
217 return $class;
218 }
219 }
220
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300221 if ( ! class_exists('CI_'.$class, FALSE))
222 {
223 if (file_exists($file_path = APPPATH.'libraries/Session/drivers/'.$class.'.php') OR file_exists($file_path = BASEPATH.'libraries/Session/drivers/'.$class.'.php'))
224 {
225 require_once($file_path);
226 }
227
Andrey Andreevcd94dd72014-12-09 17:38:56 +0200228 if ( ! class_exists('CI_'.$class, FALSE) && ! class_exists($class, FALSE))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300229 {
Andrey Andreev1d195202015-03-13 11:25:29 +0200230 throw new UnexpectedValueException("Session: Configured driver '".$driver."' was not found. Aborting.");
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300231 }
232 }
233
Andrey Andreev738b9e32016-02-24 12:14:10 +0200234 if ( ! class_exists($prefix.$class, FALSE) && file_exists($file_path = APPPATH.'libraries/Session/drivers/'.$prefix.$class.'.php'))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300235 {
236 require_once($file_path);
237 if (class_exists($prefix.$class, FALSE))
238 {
239 return $prefix.$class;
240 }
241 else
242 {
243 log_message('debug', 'Session: '.$prefix.$class.".php found but it doesn't declare class ".$prefix.$class.'.');
244 }
245 }
246
247 return 'CI_'.$class;
248 }
249
250 // ------------------------------------------------------------------------
251
252 /**
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300253 * Configuration
254 *
255 * Handle input parameters and configuration defaults
256 *
257 * @param array &$params Input parameters
258 * @return void
259 */
260 protected function _configure(&$params)
261 {
262 $expiration = config_item('sess_expiration');
263
264 if (isset($params['cookie_lifetime']))
265 {
266 $params['cookie_lifetime'] = (int) $params['cookie_lifetime'];
267 }
268 else
269 {
270 $params['cookie_lifetime'] = ( ! isset($expiration) && config_item('sess_expire_on_close'))
271 ? 0 : (int) $expiration;
272 }
273
274 isset($params['cookie_name']) OR $params['cookie_name'] = config_item('sess_cookie_name');
275 if (empty($params['cookie_name']))
276 {
277 $params['cookie_name'] = ini_get('session.name');
278 }
279 else
280 {
281 ini_set('session.name', $params['cookie_name']);
282 }
283
284 isset($params['cookie_path']) OR $params['cookie_path'] = config_item('cookie_path');
Andrey Andreev41b546d2014-10-06 03:01:22 +0300285 isset($params['cookie_domain']) OR $params['cookie_domain'] = config_item('cookie_domain');
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300286 isset($params['cookie_secure']) OR $params['cookie_secure'] = (bool) config_item('cookie_secure');
287
288 session_set_cookie_params(
289 $params['cookie_lifetime'],
290 $params['cookie_path'],
291 $params['cookie_domain'],
292 $params['cookie_secure'],
293 TRUE // HttpOnly; Yes, this is intentional and not configurable for security reasons
294 );
295
296 if (empty($expiration))
297 {
298 $params['expiration'] = (int) ini_get('session.gc_maxlifetime');
299 }
300 else
301 {
302 $params['expiration'] = (int) $expiration;
303 ini_set('session.gc_maxlifetime', $expiration);
304 }
305
306 $params['match_ip'] = (bool) (isset($params['match_ip']) ? $params['match_ip'] : config_item('sess_match_ip'));
307
308 isset($params['save_path']) OR $params['save_path'] = config_item('sess_save_path');
309
310 $this->_config = $params;
311
312 // Security is king
Andrey Andreevc02952d2015-02-13 13:04:38 +0200313 ini_set('session.use_trans_sid', 0);
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300314 ini_set('session.use_strict_mode', 1);
315 ini_set('session.use_cookies', 1);
316 ini_set('session.use_only_cookies', 1);
317 ini_set('session.hash_function', 1);
318 ini_set('session.hash_bits_per_character', 4);
319 }
320
321 // ------------------------------------------------------------------------
322
323 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300324 * Handle temporary variables
325 *
326 * Clears old "flash" data, marks the new one for deletion and handles
327 * "temp" data deletion.
328 *
329 * @return void
330 */
331 protected function _ci_init_vars()
332 {
333 if ( ! empty($_SESSION['__ci_vars']))
334 {
335 $current_time = time();
336
337 foreach ($_SESSION['__ci_vars'] as $key => &$value)
338 {
339 if ($value === 'new')
340 {
341 $_SESSION['__ci_vars'][$key] = 'old';
342 }
343 // Hacky, but 'old' will (implicitly) always be less than time() ;)
344 // DO NOT move this above the 'new' check!
345 elseif ($value < $current_time)
346 {
347 unset($_SESSION[$key], $_SESSION['__ci_vars'][$key]);
348 }
349 }
350
351 if (empty($_SESSION['__ci_vars']))
352 {
353 unset($_SESSION['__ci_vars']);
Darren Hillc4e266b2011-08-30 15:40:27 -0400354 }
355 }
Andrey Andreevb4b215e2015-01-19 11:59:11 +0200356
357 $this->userdata =& $_SESSION;
Darren Hillc4e266b2011-08-30 15:40:27 -0400358 }
359
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300360 // ------------------------------------------------------------------------
361
Darren Hillc4e266b2011-08-30 15:40:27 -0400362 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300363 * Mark as flash
364 *
365 * @param mixed $key Session data key(s)
366 * @return bool
367 */
368 public function mark_as_flash($key)
369 {
370 if (is_array($key))
371 {
372 for ($i = 0, $c = count($key); $i < $c; $i++)
373 {
374 if ( ! isset($_SESSION[$key[$i]]))
375 {
376 return FALSE;
377 }
378 }
379
380 $new = array_fill_keys($key, 'new');
381
382 $_SESSION['__ci_vars'] = isset($_SESSION['__ci_vars'])
383 ? array_merge($_SESSION['__ci_vars'], $new)
384 : $new;
385
386 return TRUE;
387 }
388
389 if ( ! isset($_SESSION[$key]))
390 {
391 return FALSE;
392 }
393
394 $_SESSION['__ci_vars'][$key] = 'new';
395 return TRUE;
396 }
397
398 // ------------------------------------------------------------------------
399
400 /**
401 * Get flash keys
402 *
403 * @return array
404 */
405 public function get_flash_keys()
406 {
407 if ( ! isset($_SESSION['__ci_vars']))
408 {
409 return array();
410 }
411
412 $keys = array();
413 foreach (array_keys($_SESSION['__ci_vars']) as $key)
414 {
415 is_int($_SESSION['__ci_vars'][$key]) OR $keys[] = $key;
416 }
417
418 return $keys;
419 }
420
421 // ------------------------------------------------------------------------
422
423 /**
424 * Unmark flash
425 *
426 * @param mixed $key Session data key(s)
427 * @return void
428 */
429 public function unmark_flash($key)
430 {
431 if (empty($_SESSION['__ci_vars']))
432 {
433 return;
434 }
435
436 is_array($key) OR $key = array($key);
437
438 foreach ($key as $k)
439 {
440 if (isset($_SESSION['__ci_vars'][$k]) && ! is_int($_SESSION['__ci_vars'][$k]))
441 {
442 unset($_SESSION['__ci_vars'][$k]);
443 }
444 }
445
446 if (empty($_SESSION['__ci_vars']))
447 {
448 unset($_SESSION['__ci_vars']);
449 }
450 }
451
452 // ------------------------------------------------------------------------
453
454 /**
455 * Mark as temp
456 *
457 * @param mixed $key Session data key(s)
458 * @param int $ttl Time-to-live in seconds
459 * @return bool
460 */
461 public function mark_as_temp($key, $ttl = 300)
462 {
463 $ttl += time();
464
465 if (is_array($key))
466 {
467 $temp = array();
468
469 foreach ($key as $k => $v)
470 {
471 // Do we have a key => ttl pair, or just a key?
472 if (is_int($k))
473 {
474 $k = $v;
475 $v = $ttl;
476 }
477 else
478 {
479 $v += time();
480 }
481
482 if ( ! isset($_SESSION[$k]))
483 {
484 return FALSE;
485 }
486
Andrey Andreev43df7bd2015-02-02 23:22:29 +0200487 $temp[$k] = $v;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300488 }
489
490 $_SESSION['__ci_vars'] = isset($_SESSION['__ci_vars'])
491 ? array_merge($_SESSION['__ci_vars'], $temp)
492 : $temp;
493
494 return TRUE;
495 }
496
497 if ( ! isset($_SESSION[$key]))
498 {
499 return FALSE;
500 }
501
502 $_SESSION['__ci_vars'][$key] = $ttl;
503 return TRUE;
504 }
505
506 // ------------------------------------------------------------------------
507
508 /**
509 * Get temp keys
510 *
511 * @return array
512 */
513 public function get_temp_keys()
514 {
515 if ( ! isset($_SESSION['__ci_vars']))
516 {
517 return array();
518 }
519
520 $keys = array();
521 foreach (array_keys($_SESSION['__ci_vars']) as $key)
522 {
523 is_int($_SESSION['__ci_vars'][$key]) && $keys[] = $key;
524 }
525
526 return $keys;
527 }
528
529 // ------------------------------------------------------------------------
530
531 /**
532 * Unmark flash
533 *
534 * @param mixed $key Session data key(s)
535 * @return void
536 */
537 public function unmark_temp($key)
538 {
539 if (empty($_SESSION['__ci_vars']))
540 {
541 return;
542 }
543
544 is_array($key) OR $key = array($key);
545
546 foreach ($key as $k)
547 {
548 if (isset($_SESSION['__ci_vars'][$k]) && is_int($_SESSION['__ci_vars'][$k]))
549 {
550 unset($_SESSION['__ci_vars'][$k]);
551 }
552 }
553
554 if (empty($_SESSION['__ci_vars']))
555 {
556 unset($_SESSION['__ci_vars']);
557 }
558 }
559
560 // ------------------------------------------------------------------------
561
562 /**
563 * __get()
564 *
565 * @param string $key 'session_id' or a session data key
566 * @return mixed
567 */
568 public function __get($key)
569 {
570 // Note: Keep this order the same, just in case somebody wants to
571 // use 'session_id' as a session data key, for whatever reason
572 if (isset($_SESSION[$key]))
573 {
574 return $_SESSION[$key];
575 }
576 elseif ($key === 'session_id')
577 {
578 return session_id();
579 }
580
581 return NULL;
582 }
583
584 // ------------------------------------------------------------------------
585
586 /**
Andrey Andreev2c10f602016-03-15 14:39:02 +0200587 * __isset()
588 *
589 * @param string $key 'session_id' or a session data key
590 * @return bool
591 */
592 public function __isset($key)
593 {
594 if ($key === 'session_id')
595 {
596 return (session_status() === PHP_SESSION_ACTIVE);
597 }
598
599 return isset($_SESSION[$key]);
600 }
601
602 // ------------------------------------------------------------------------
603
604 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300605 * __set()
606 *
607 * @param string $key Session data key
608 * @param mixed $value Session data value
609 * @return void
610 */
611 public function __set($key, $value)
612 {
613 $_SESSION[$key] = $value;
614 }
615
616 // ------------------------------------------------------------------------
617
618 /**
619 * Session destroy
620 *
621 * Legacy CI_Session compatibility method
Darren Hillc4e266b2011-08-30 15:40:27 -0400622 *
Darren Hill5073a372011-08-31 13:54:19 -0400623 * @return void
Darren Hillc4e266b2011-08-30 15:40:27 -0400624 */
625 public function sess_destroy()
626 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300627 session_destroy();
Darren Hillc4e266b2011-08-30 15:40:27 -0400628 }
629
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300630 // ------------------------------------------------------------------------
631
Darren Hillc4e266b2011-08-30 15:40:27 -0400632 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300633 * Session regenerate
Darren Hillc4e266b2011-08-30 15:40:27 -0400634 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300635 * Legacy CI_Session compatibility method
636 *
637 * @param bool $destroy Destroy old session data flag
Darren Hill5073a372011-08-31 13:54:19 -0400638 * @return void
Darren Hillc4e266b2011-08-30 15:40:27 -0400639 */
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300640 public function sess_regenerate($destroy = FALSE)
Darren Hillc4e266b2011-08-30 15:40:27 -0400641 {
Andrey Andreev8e60b9a2014-11-04 11:08:06 +0200642 $_SESSION['__ci_last_regenerate'] = time();
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300643 session_regenerate_id($destroy);
Darren Hillc4e266b2011-08-30 15:40:27 -0400644 }
645
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300646 // ------------------------------------------------------------------------
647
Darren Hillc4e266b2011-08-30 15:40:27 -0400648 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300649 * Get userdata reference
Darren Hillc4e266b2011-08-30 15:40:27 -0400650 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300651 * Legacy CI_Session compatibility method
652 *
653 * @returns array
Darren Hillc4e266b2011-08-30 15:40:27 -0400654 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300655 public function &get_userdata()
Darren Hillc4e266b2011-08-30 15:40:27 -0400656 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300657 return $_SESSION;
658 }
659
660 // ------------------------------------------------------------------------
661
662 /**
663 * Userdata (fetch)
664 *
665 * Legacy CI_Session compatibility method
666 *
667 * @param string $key Session data key
668 * @return mixed Session data value or NULL if not found
669 */
670 public function userdata($key = NULL)
671 {
672 if (isset($key))
Andrey Andreevecc260e2014-01-24 14:20:13 +0200673 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300674 return isset($_SESSION[$key]) ? $_SESSION[$key] : NULL;
675 }
676 elseif (empty($_SESSION))
677 {
678 return array();
Andrey Andreevecc260e2014-01-24 14:20:13 +0200679 }
680
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300681 $userdata = array();
682 $_exclude = array_merge(
Andrey Andreevef417862014-06-04 21:28:13 +0300683 array('__ci_vars'),
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300684 $this->get_flash_keys(),
685 $this->get_temp_keys()
686 );
Darren Hillc4e266b2011-08-30 15:40:27 -0400687
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300688 foreach (array_keys($_SESSION) as $key)
Darren Hillc4e266b2011-08-30 15:40:27 -0400689 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300690 if ( ! in_array($key, $_exclude, TRUE))
Darren Hillc4e266b2011-08-30 15:40:27 -0400691 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300692 $userdata[$key] = $_SESSION[$key];
Darren Hillc4e266b2011-08-30 15:40:27 -0400693 }
694 }
695
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300696 return $userdata;
Darren Hillc4e266b2011-08-30 15:40:27 -0400697 }
698
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300699 // ------------------------------------------------------------------------
700
Darren Hillc4e266b2011-08-30 15:40:27 -0400701 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300702 * Set userdata
Darren Hillc4e266b2011-08-30 15:40:27 -0400703 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300704 * Legacy CI_Session compatibility method
705 *
706 * @param mixed $data Session data key or an associative array
707 * @param mixed $value Value to store
Darren Hill5073a372011-08-31 13:54:19 -0400708 * @return void
Darren Hillc4e266b2011-08-30 15:40:27 -0400709 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300710 public function set_userdata($data, $value = NULL)
Darren Hillc4e266b2011-08-30 15:40:27 -0400711 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300712 if (is_array($data))
Darren Hillc4e266b2011-08-30 15:40:27 -0400713 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300714 foreach ($data as $key => &$value)
Darren Hillc4e266b2011-08-30 15:40:27 -0400715 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300716 $_SESSION[$key] = $value;
Johnathan Croom8d8543d2012-11-25 10:36:57 -0700717 }
718
719 return;
Johnathan Croom4beca5c2012-11-23 18:32:46 -0700720 }
Darren Hillc4e266b2011-08-30 15:40:27 -0400721
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300722 $_SESSION[$data] = $value;
Darren Hillc4e266b2011-08-30 15:40:27 -0400723 }
724
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300725 // ------------------------------------------------------------------------
726
Darren Hillc4e266b2011-08-30 15:40:27 -0400727 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300728 * Unset userdata
Darren Hillc4e266b2011-08-30 15:40:27 -0400729 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300730 * Legacy CI_Session compatibility method
731 *
732 * @param mixed $data Session data key(s)
733 * @return void
734 */
735 public function unset_userdata($key)
736 {
737 if (is_array($key))
738 {
739 foreach ($key as $k)
740 {
Andrey Andreevd069b9b2014-09-16 10:18:16 +0300741 unset($_SESSION[$k]);
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300742 }
743
744 return;
745 }
746
747 unset($_SESSION[$key]);
748 }
749
750 // ------------------------------------------------------------------------
751
752 /**
753 * All userdata (fetch)
754 *
755 * Legacy CI_Session compatibility method
756 *
757 * @return array $_SESSION, excluding flash data items
758 */
759 public function all_userdata()
760 {
761 return $this->userdata();
762 }
763
764 // ------------------------------------------------------------------------
765
766 /**
767 * Has userdata
768 *
769 * Legacy CI_Session compatibility method
770 *
771 * @param string $key Session data key
772 * @return bool
773 */
774 public function has_userdata($key)
775 {
776 return isset($_SESSION[$key]);
777 }
778
779 // ------------------------------------------------------------------------
780
781 /**
782 * Flashdata (fetch)
783 *
784 * Legacy CI_Session compatibility method
785 *
786 * @param string $key Session data key
787 * @return mixed Session data value or NULL if not found
Darren Hillc4e266b2011-08-30 15:40:27 -0400788 */
Andrey Andreevecc260e2014-01-24 14:20:13 +0200789 public function flashdata($key = NULL)
Darren Hillc4e266b2011-08-30 15:40:27 -0400790 {
Andrey Andreevecc260e2014-01-24 14:20:13 +0200791 if (isset($key))
792 {
Andrey Andreevef417862014-06-04 21:28:13 +0300793 return (isset($_SESSION['__ci_vars'], $_SESSION['__ci_vars'][$key], $_SESSION[$key]) && ! is_int($_SESSION['__ci_vars'][$key]))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300794 ? $_SESSION[$key]
795 : NULL;
Andrey Andreevecc260e2014-01-24 14:20:13 +0200796 }
797
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300798 $flashdata = array();
799
Andrey Andreevef417862014-06-04 21:28:13 +0300800 if ( ! empty($_SESSION['__ci_vars']))
Andrey Andreevecc260e2014-01-24 14:20:13 +0200801 {
Andrey Andreevef417862014-06-04 21:28:13 +0300802 foreach ($_SESSION['__ci_vars'] as $key => &$value)
Andrey Andreevecc260e2014-01-24 14:20:13 +0200803 {
Andrey Andreevef417862014-06-04 21:28:13 +0300804 is_int($value) OR $flashdata[$key] = $_SESSION[$key];
Andrey Andreevecc260e2014-01-24 14:20:13 +0200805 }
806 }
807
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300808 return $flashdata;
Darren Hillc4e266b2011-08-30 15:40:27 -0400809 }
810
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300811 // ------------------------------------------------------------------------
812
Darren Hillc4e266b2011-08-30 15:40:27 -0400813 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300814 * Set flashdata
Darren Hillc4e266b2011-08-30 15:40:27 -0400815 *
Calvin Tam55bc5052015-07-24 02:27:24 -0700816 * Legacy CI_Session compatibility method
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300817 *
818 * @param mixed $data Session data key or an associative array
819 * @param mixed $value Value to store
Darren Hill5073a372011-08-31 13:54:19 -0400820 * @return void
Darren Hillc4e266b2011-08-30 15:40:27 -0400821 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300822 public function set_flashdata($data, $value = NULL)
Darren Hillc4e266b2011-08-30 15:40:27 -0400823 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300824 $this->set_userdata($data, $value);
Andrey Andreevc6e50982014-10-26 21:27:28 +0200825 $this->mark_as_flash(is_array($data) ? array_keys($data) : $data);
Darren Hillc4e266b2011-08-30 15:40:27 -0400826 }
827
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300828 // ------------------------------------------------------------------------
829
Darren Hillc4e266b2011-08-30 15:40:27 -0400830 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300831 * Keep flashdata
Darren Hillc4e266b2011-08-30 15:40:27 -0400832 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300833 * Legacy CI_Session compatibility method
834 *
835 * @param mixed $key Session data key(s)
Darren Hill5073a372011-08-31 13:54:19 -0400836 * @return void
Darren Hillc4e266b2011-08-30 15:40:27 -0400837 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300838 public function keep_flashdata($key)
Darren Hillc4e266b2011-08-30 15:40:27 -0400839 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300840 $this->mark_as_flash($key);
Darren Hillc4e266b2011-08-30 15:40:27 -0400841 }
842
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300843 // ------------------------------------------------------------------------
844
Darren Hillc4e266b2011-08-30 15:40:27 -0400845 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300846 * Temp data (fetch)
Darren Hillc4e266b2011-08-30 15:40:27 -0400847 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300848 * Legacy CI_Session compatibility method
849 *
850 * @param string $key Session data key
851 * @return mixed Session data value or NULL if not found
Darren Hillc4e266b2011-08-30 15:40:27 -0400852 */
Andrey Andreevecc260e2014-01-24 14:20:13 +0200853 public function tempdata($key = NULL)
Darren Hillc4e266b2011-08-30 15:40:27 -0400854 {
Andrey Andreevecc260e2014-01-24 14:20:13 +0200855 if (isset($key))
856 {
Andrey Andreevef417862014-06-04 21:28:13 +0300857 return (isset($_SESSION['__ci_vars'], $_SESSION['__ci_vars'][$key], $_SESSION[$key]) && is_int($_SESSION['__ci_vars'][$key]))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300858 ? $_SESSION[$key]
859 : NULL;
Andrey Andreevecc260e2014-01-24 14:20:13 +0200860 }
861
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300862 $tempdata = array();
863
Andrey Andreevef417862014-06-04 21:28:13 +0300864 if ( ! empty($_SESSION['__ci_vars']))
Andrey Andreevecc260e2014-01-24 14:20:13 +0200865 {
Andrey Andreevef417862014-06-04 21:28:13 +0300866 foreach ($_SESSION['__ci_vars'] as $key => &$value)
Andrey Andreevecc260e2014-01-24 14:20:13 +0200867 {
Andrey Andreevef417862014-06-04 21:28:13 +0300868 is_int($value) && $tempdata[$key] = $_SESSION[$key];
Andrey Andreevecc260e2014-01-24 14:20:13 +0200869 }
870 }
871
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300872 return $tempdata;
Darren Hillc4e266b2011-08-30 15:40:27 -0400873 }
874
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300875 // ------------------------------------------------------------------------
876
Darren Hillc4e266b2011-08-30 15:40:27 -0400877 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300878 * Set tempdata
Darren Hillc4e266b2011-08-30 15:40:27 -0400879 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300880 * Legacy CI_Session compatibility method
881 *
882 * @param mixed $data Session data key or an associative array of items
883 * @param mixed $value Value to store
884 * @param int $ttl Time-to-live in seconds
Darren Hillc4e266b2011-08-30 15:40:27 -0400885 * @return void
886 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300887 public function set_tempdata($data, $value = NULL, $ttl = 300)
Darren Hillc4e266b2011-08-30 15:40:27 -0400888 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300889 $this->set_userdata($data, $value);
Andrey Andreevfd310572015-03-30 17:19:26 +0300890 $this->mark_as_temp(is_array($data) ? array_keys($data) : $data, $ttl);
Darren Hillc4e266b2011-08-30 15:40:27 -0400891 }
892
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300893 // ------------------------------------------------------------------------
894
Darren Hillc4e266b2011-08-30 15:40:27 -0400895 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300896 * Unset tempdata
Darren Hillc4e266b2011-08-30 15:40:27 -0400897 *
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300898 * Legacy CI_Session compatibility method
899 *
900 * @param mixed $data Session data key(s)
Darren Hillc4e266b2011-08-30 15:40:27 -0400901 * @return void
902 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300903 public function unset_tempdata($key)
Darren Hillc4e266b2011-08-30 15:40:27 -0400904 {
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300905 $this->unmark_temp($key);
Darren Hillc4e266b2011-08-30 15:40:27 -0400906 }
907
Andrey Andreev9ffcee62012-09-05 16:25:16 +0300908}