Gitiles
Code Review Sign In
www.giggi.me / code-igniter-v3-giggi / 737a5660c09e844d44969d1b7e8165b5f0296e37 / . / system / libraries / Session / drivers / Session_database_driver.php
blob: 1d01c29239092a9570ff86cceea5f850d0cdd9f9 [file] [log] [blame]
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]1<?php
2/**
3 * CodeIgniter
4 *
Andrey Andreevbf6b11d2015-01-12 17:27:12 +0200[diff] [blame]5 * An open source application development framework for PHP
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]6 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]7 * This content is released under the MIT License (MIT)
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]8 *
Andrey Andreevbf6b11d2015-01-12 17:27:12 +0200[diff] [blame]9 * Copyright (c) 2014 - 2015, British Columbia Institute of Technology
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]10 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]11 * Permission is hereby granted, free of charge, to any person obtaining a copy
12 * of this software and associated documentation files (the "Software"), to deal
13 * in the Software without restriction, including without limitation the rights
14 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
15 * copies of the Software, and to permit persons to whom the Software is
16 * furnished to do so, subject to the following conditions:
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]17 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]18 * The above copyright notice and this permission notice shall be included in
19 * all copies or substantial portions of the Software.
20 *
21 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
22 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
23 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
24 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
25 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
26 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
27 * THE SOFTWARE.
28 *
29 * @package CodeIgniter
30 * @author EllisLab Dev Team
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]31 * @copyright Copyright (c) 2008 - 2014, EllisLab, Inc. (http://ellislab.com/)
Andrey Andreevbf6b11d2015-01-12 17:27:12 +0200[diff] [blame]32 * @copyright Copyright (c) 2014 - 2015, British Columbia Institute of Technology (http://bcit.ca/)
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]33 * @license http://opensource.org/licenses/MIT MIT License
34 * @link http://codeigniter.com
35 * @since Version 3.0.0
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]36 * @filesource
37 */
38defined('BASEPATH') OR exit('No direct script access allowed');
39
40/**
41 * CodeIgniter Session Database Driver
42 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]43 * @package CodeIgniter
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]44 * @subpackage Libraries
45 * @category Sessions
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]46 * @author Andrey Andreev
47 * @link http://codeigniter.com/user_guide/libraries/sessions.html
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]48 */
49class CI_Session_database_driver extends CI_Session_driver implements SessionHandlerInterface {
50
51 /**
52 * DB object
53 *
54 * @var object
55 */
56 protected $_db;
57
58 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]59 * Row exists flag
60 *
61 * @var bool
62 */
63 protected $_row_exists = FALSE;
64
65 /**
66 * Lock "driver" flag
67 *
68 * @var string
69 */
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]70 protected $_platform;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]71
72 // ------------------------------------------------------------------------
73
74 /**
75 * Class constructor
76 *
77 * @param array $params Configuration parameters
78 * @return void
79 */
80 public function __construct(&$params)
81 {
82 parent::__construct($params);
83
84 $CI =& get_instance();
85 isset($CI->db) OR $CI->load->database();
Andrey Andreev00c222d2015-01-29 18:14:31 +0200[diff] [blame]86 $this->_db = $CI->db;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]87
88 if ( ! $this->_db instanceof CI_DB_query_builder)
89 {
90 throw new Exception('Query Builder not enabled for the configured database. Aborting.');
91 }
92 elseif ($this->_db->pconnect)
93 {
94 throw new Exception('Configured database connection is persistent. Aborting.');
95 }
Andrey Andreev737a5662015-03-21 12:41:38 +0200[diff] [blame^]96 elseif ($this->_db->cache_on)
97 {
98 throw new Exception('Configured database connection has cache enabled. Aborting.');
99 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]100
101 $db_driver = $this->_db->dbdriver.(empty($this->_db->subdriver) ? '' : '_'.$this->_db->subdriver);
102 if (strpos($db_driver, 'mysql') !== FALSE)
103 {
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]104 $this->_platform = 'mysql';
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]105 }
106 elseif (in_array($db_driver, array('postgre', 'pdo_pgsql'), TRUE))
107 {
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]108 $this->_platform = 'postgre';
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]109 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]110
Andrey Andreev7f8eb362015-01-15 18:01:41 +0200[diff] [blame]111 // Note: BC work-around for the old 'sess_table_name' setting, should be removed in the future.
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]112 isset($this->_config['save_path']) OR $this->_config['save_path'] = config_item('sess_table_name');
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]113 }
114
115 // ------------------------------------------------------------------------
116
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]117 /**
118 * Open
119 *
120 * Initializes the database connection
121 *
122 * @param string $save_path Table name
123 * @param string $name Session cookie name, unused
124 * @return bool
125 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]126 public function open($save_path, $name)
127 {
128 return empty($this->_db->conn_id)
Andrey Andreev6c7c8912015-02-19 14:44:18 +0200[diff] [blame]129 ? (bool) $this->_db->db_connect()
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]130 : TRUE;
131 }
132
133 // ------------------------------------------------------------------------
134
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]135 /**
136 * Read
137 *
138 * Reads session data and acquires a lock
139 *
140 * @param string $session_id Session ID
141 * @return string Serialized session data
142 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]143 public function read($session_id)
144 {
Andrey Andreevd069b9b2014-09-16 10:18:16 +0300[diff] [blame]145 if ($this->_get_lock($session_id) !== FALSE)
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]146 {
Andrey Andreev7474a672014-10-31 23:35:32 +0200[diff] [blame]147 // Needed by write() to detect session_regenerate_id() calls
148 $this->_session_id = $session_id;
149
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]150 $this->_db
151 ->select('data')
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]152 ->from($this->_config['save_path'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]153 ->where('id', $session_id);
154
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]155 if ($this->_config['match_ip'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]156 {
157 $this->_db->where('ip_address', $_SERVER['REMOTE_ADDR']);
158 }
159
160 if (($result = $this->_db->get()->row()) === NULL)
161 {
162 $this->_fingerprint = md5('');
163 return '';
164 }
165
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]166 // PostgreSQL's variant of a BLOB datatype is Bytea, which is a
167 // PITA to work with, so we use base64-encoded data in a TEXT
168 // field instead.
Andrey Andreevd0122552015-01-15 21:25:58 +0200[diff] [blame]169 $result = ($this->_platform === 'postgre')
170 ? base64_decode(rtrim($result->data))
171 : $result->data;
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]172
Andrey Andreevd0122552015-01-15 21:25:58 +0200[diff] [blame]173 $this->_fingerprint = md5($result);
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]174 $this->_row_exists = TRUE;
Andrey Andreev74009752015-01-15 21:36:25 +0200[diff] [blame]175 return $result;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]176 }
177
178 $this->_fingerprint = md5('');
179 return '';
180 }
181
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]182 // ------------------------------------------------------------------------
183
184 /**
185 * Write
186 *
187 * Writes (create / update) session data
188 *
189 * @param string $session_id Session ID
190 * @param string $session_data Serialized session data
191 * @return bool
192 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]193 public function write($session_id, $session_data)
194 {
Andrey Andreev7474a672014-10-31 23:35:32 +0200[diff] [blame]195 // Was the ID regenerated?
Shakespeare2000305186d2014-11-02 11:28:47 +0100[diff] [blame]196 if ($session_id !== $this->_session_id)
Andrey Andreev7474a672014-10-31 23:35:32 +0200[diff] [blame]197 {
198 if ( ! $this->_release_lock() OR ! $this->_get_lock($session_id))
199 {
200 return FALSE;
201 }
202
203 $this->_row_exists = FALSE;
204 $this->_session_id = $session_id;
205 }
Shakespeare2000305186d2014-11-02 11:28:47 +0100[diff] [blame]206 elseif ($this->_lock === FALSE)
207 {
208 return FALSE;
209 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]210
211 if ($this->_row_exists === FALSE)
212 {
Andrey Andreev5231d322015-01-19 02:29:49 +0200[diff] [blame]213 $insert_data = array(
214 'id' => $session_id,
215 'ip_address' => $_SERVER['REMOTE_ADDR'],
216 'timestamp' => time(),
217 'data' => ($this->_platform === 'postgre' ? base64_encode($session_data) : $session_data)
218 );
219
220 if ($this->_db->insert($this->_config['save_path'], $insert_data))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]221 {
222 $this->_fingerprint = md5($session_data);
223 return $this->_row_exists = TRUE;
224 }
225
226 return FALSE;
227 }
228
229 $this->_db->where('id', $session_id);
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]230 if ($this->_config['match_ip'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]231 {
232 $this->_db->where('ip_address', $_SERVER['REMOTE_ADDR']);
233 }
234
Andrey Andreevc33c3ad2015-01-19 10:54:21 +0200[diff] [blame]235 $update_data = array('timestamp' => time());
Andrey Andreev5231d322015-01-19 02:29:49 +0200[diff] [blame]236 if ($this->_fingerprint !== md5($session_data))
237 {
238 $update_data['data'] = ($this->_platform === 'postgre')
239 ? base64_encode($session_data)
240 : $session_data;
241 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]242
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]243 if ($this->_db->update($this->_config['save_path'], $update_data))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]244 {
245 $this->_fingerprint = md5($session_data);
246 return TRUE;
247 }
248
249 return FALSE;
250 }
251
252 // ------------------------------------------------------------------------
253
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]254 /**
255 * Close
256 *
257 * Releases locks
258 *
Gabriel Potkány1fb50002015-02-04 01:45:59 +0100[diff] [blame]259 * @return bool
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]260 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]261 public function close()
262 {
263 return ($this->_lock)
264 ? $this->_release_lock()
265 : TRUE;
266 }
267
268 // ------------------------------------------------------------------------
269
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]270 /**
271 * Destroy
272 *
273 * Destroys the current session.
274 *
275 * @param string $session_id Session ID
276 * @return bool
277 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]278 public function destroy($session_id)
279 {
280 if ($this->_lock)
281 {
282 $this->_db->where('id', $session_id);
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]283 if ($this->_config['match_ip'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]284 {
285 $this->_db->where('ip_address', $_SERVER['REMOTE_ADDR']);
286 }
287
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]288 return $this->_db->delete($this->_config['save_path'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]289 ? ($this->close() && $this->_cookie_destroy())
290 : FALSE;
291 }
292
293 return ($this->close() && $this->_cookie_destroy());
294 }
295
296 // ------------------------------------------------------------------------
297
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]298 /**
299 * Garbage Collector
300 *
301 * Deletes expired sessions
302 *
303 * @param int $maxlifetime Maximum lifetime of sessions
304 * @return bool
305 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]306 public function gc($maxlifetime)
307 {
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]308 return $this->_db->delete($this->_config['save_path'], 'timestamp < '.(time() - $maxlifetime));
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]309 }
310
311 // ------------------------------------------------------------------------
312
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]313 /**
314 * Get lock
315 *
316 * Acquires a lock, depending on the underlying platform.
317 *
318 * @param string $session_id Session ID
319 * @return bool
320 */
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]321 protected function _get_lock($session_id)
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]322 {
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]323 if ($this->_platform === 'mysql')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]324 {
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]325 $arg = $session_id.($this->_config['match_ip'] ? '_'.$_SERVER['REMOTE_ADDR'] : '');
Andrey Andreeve1a5bb32015-03-04 13:33:39 +0200[diff] [blame]326 if ($this->_db->query("SELECT GET_LOCK('".$arg."', 300) AS ci_session_lock")->row()->ci_session_lock)
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]327 {
328 $this->_lock = $arg;
329 return TRUE;
330 }
331
332 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]333 }
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]334 elseif ($this->_platform === 'postgre')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]335 {
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]336 $arg = "hashtext('".$session_id."')".($this->_config['match_ip'] ? ", hashtext('".$_SERVER['REMOTE_ADDR']."')" : '');
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]337 if ($this->_db->simple_query('SELECT pg_advisory_lock('.$arg.')'))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]338 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]339 $this->_lock = $arg;
340 return TRUE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]341 }
342
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]343 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]344 }
345
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]346 return parent::_get_lock($session_id);
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]347 }
348
349 // ------------------------------------------------------------------------
350
Andrey Andreev10411fc2015-01-19 13:54:53 +0200[diff] [blame]351 /**
352 * Release lock
353 *
354 * Releases a previously acquired lock
355 *
356 * @return bool
357 */
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]358 protected function _release_lock()
359 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]360 if ( ! $this->_lock)
361 {
362 return TRUE;
363 }
364
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]365 if ($this->_platform === 'mysql')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]366 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]367 if ($this->_db->query("SELECT RELEASE_LOCK('".$this->_lock."') AS ci_session_lock")->row()->ci_session_lock)
368 {
369 $this->_lock = FALSE;
370 return TRUE;
371 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]372
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]373 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]374 }
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]375 elseif ($this->_platform === 'postgre')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]376 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]377 if ($this->_db->simple_query('SELECT pg_advisory_unlock('.$this->_lock.')'))
378 {
379 $this->_lock = FALSE;
380 return TRUE;
381 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]382
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]383 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]384 }
385
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]386 return parent::_release_lock();
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]387 }
388
389}