Gitiles
Code Review Sign In
www.giggi.me / code-igniter-v3-giggi / c33c3adff7d0c36208fa9c3a1dc364fa7f23f07d / . / system / libraries / Session / drivers / Session_database_driver.php
blob: 055a1a6133f35b66eb55540880412d33b78b50d7 [file] [log] [blame]
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]1<?php
2/**
3 * CodeIgniter
4 *
Andrey Andreevbf6b11d2015-01-12 17:27:12 +0200[diff] [blame]5 * An open source application development framework for PHP
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]6 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]7 * This content is released under the MIT License (MIT)
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]8 *
Andrey Andreevbf6b11d2015-01-12 17:27:12 +0200[diff] [blame]9 * Copyright (c) 2014 - 2015, British Columbia Institute of Technology
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]10 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]11 * Permission is hereby granted, free of charge, to any person obtaining a copy
12 * of this software and associated documentation files (the "Software"), to deal
13 * in the Software without restriction, including without limitation the rights
14 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
15 * copies of the Software, and to permit persons to whom the Software is
16 * furnished to do so, subject to the following conditions:
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]17 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]18 * The above copyright notice and this permission notice shall be included in
19 * all copies or substantial portions of the Software.
20 *
21 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
22 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
23 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
24 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
25 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
26 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
27 * THE SOFTWARE.
28 *
29 * @package CodeIgniter
30 * @author EllisLab Dev Team
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]31 * @copyright Copyright (c) 2008 - 2014, EllisLab, Inc. (http://ellislab.com/)
Andrey Andreevbf6b11d2015-01-12 17:27:12 +0200[diff] [blame]32 * @copyright Copyright (c) 2014 - 2015, British Columbia Institute of Technology (http://bcit.ca/)
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]33 * @license http://opensource.org/licenses/MIT MIT License
34 * @link http://codeigniter.com
35 * @since Version 3.0.0
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]36 * @filesource
37 */
38defined('BASEPATH') OR exit('No direct script access allowed');
39
40/**
41 * CodeIgniter Session Database Driver
42 *
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]43 * @package CodeIgniter
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]44 * @subpackage Libraries
45 * @category Sessions
Andrey Andreev46f2f262014-11-11 14:37:51 +0200[diff] [blame]46 * @author Andrey Andreev
47 * @link http://codeigniter.com/user_guide/libraries/sessions.html
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]48 */
49class CI_Session_database_driver extends CI_Session_driver implements SessionHandlerInterface {
50
51 /**
52 * DB object
53 *
54 * @var object
55 */
56 protected $_db;
57
58 /**
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]59 * Row exists flag
60 *
61 * @var bool
62 */
63 protected $_row_exists = FALSE;
64
65 /**
66 * Lock "driver" flag
67 *
68 * @var string
69 */
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]70 protected $_platform;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]71
72 // ------------------------------------------------------------------------
73
74 /**
75 * Class constructor
76 *
77 * @param array $params Configuration parameters
78 * @return void
79 */
80 public function __construct(&$params)
81 {
82 parent::__construct($params);
83
84 $CI =& get_instance();
85 isset($CI->db) OR $CI->load->database();
86 $this->_db =& $CI->db;
87
88 if ( ! $this->_db instanceof CI_DB_query_builder)
89 {
90 throw new Exception('Query Builder not enabled for the configured database. Aborting.');
91 }
92 elseif ($this->_db->pconnect)
93 {
94 throw new Exception('Configured database connection is persistent. Aborting.');
95 }
96
97 $db_driver = $this->_db->dbdriver.(empty($this->_db->subdriver) ? '' : '_'.$this->_db->subdriver);
98 if (strpos($db_driver, 'mysql') !== FALSE)
99 {
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]100 $this->_platform = 'mysql';
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]101 }
102 elseif (in_array($db_driver, array('postgre', 'pdo_pgsql'), TRUE))
103 {
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]104 $this->_platform = 'postgre';
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]105 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]106
Andrey Andreev7f8eb362015-01-15 18:01:41 +0200[diff] [blame]107 // Note: BC work-around for the old 'sess_table_name' setting, should be removed in the future.
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]108 isset($this->_config['save_path']) OR $this->_config['save_path'] = config_item('sess_table_name');
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]109 }
110
111 // ------------------------------------------------------------------------
112
113 public function open($save_path, $name)
114 {
115 return empty($this->_db->conn_id)
116 ? ( ! $this->_db->autoinit && $this->_db->db_connect())
117 : TRUE;
118 }
119
120 // ------------------------------------------------------------------------
121
122 public function read($session_id)
123 {
Andrey Andreevd069b9b2014-09-16 10:18:16 +0300[diff] [blame]124 if ($this->_get_lock($session_id) !== FALSE)
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]125 {
Andrey Andreev7474a672014-10-31 23:35:32 +0200[diff] [blame]126 // Needed by write() to detect session_regenerate_id() calls
127 $this->_session_id = $session_id;
128
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]129 $this->_db
130 ->select('data')
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]131 ->from($this->_config['save_path'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]132 ->where('id', $session_id);
133
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]134 if ($this->_config['match_ip'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]135 {
136 $this->_db->where('ip_address', $_SERVER['REMOTE_ADDR']);
137 }
138
139 if (($result = $this->_db->get()->row()) === NULL)
140 {
141 $this->_fingerprint = md5('');
142 return '';
143 }
144
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]145 // PostgreSQL's variant of a BLOB datatype is Bytea, which is a
146 // PITA to work with, so we use base64-encoded data in a TEXT
147 // field instead.
Andrey Andreevd0122552015-01-15 21:25:58 +0200[diff] [blame]148 $result = ($this->_platform === 'postgre')
149 ? base64_decode(rtrim($result->data))
150 : $result->data;
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]151
Andrey Andreevd0122552015-01-15 21:25:58 +0200[diff] [blame]152 $this->_fingerprint = md5($result);
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]153 $this->_row_exists = TRUE;
Andrey Andreev74009752015-01-15 21:36:25 +0200[diff] [blame]154 return $result;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]155 }
156
157 $this->_fingerprint = md5('');
158 return '';
159 }
160
161 public function write($session_id, $session_data)
162 {
Andrey Andreev7474a672014-10-31 23:35:32 +0200[diff] [blame]163 // Was the ID regenerated?
Shakespeare2000305186d2014-11-02 11:28:47 +0100[diff] [blame]164 if ($session_id !== $this->_session_id)
Andrey Andreev7474a672014-10-31 23:35:32 +0200[diff] [blame]165 {
166 if ( ! $this->_release_lock() OR ! $this->_get_lock($session_id))
167 {
168 return FALSE;
169 }
170
171 $this->_row_exists = FALSE;
172 $this->_session_id = $session_id;
173 }
Shakespeare2000305186d2014-11-02 11:28:47 +0100[diff] [blame]174 elseif ($this->_lock === FALSE)
175 {
176 return FALSE;
177 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]178
179 if ($this->_row_exists === FALSE)
180 {
Andrey Andreev5231d322015-01-19 02:29:49 +0200[diff] [blame]181 $insert_data = array(
182 'id' => $session_id,
183 'ip_address' => $_SERVER['REMOTE_ADDR'],
184 'timestamp' => time(),
185 'data' => ($this->_platform === 'postgre' ? base64_encode($session_data) : $session_data)
186 );
187
188 if ($this->_db->insert($this->_config['save_path'], $insert_data))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]189 {
190 $this->_fingerprint = md5($session_data);
191 return $this->_row_exists = TRUE;
192 }
193
194 return FALSE;
195 }
196
197 $this->_db->where('id', $session_id);
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]198 if ($this->_config['match_ip'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]199 {
200 $this->_db->where('ip_address', $_SERVER['REMOTE_ADDR']);
201 }
202
Andrey Andreevc33c3ad2015-01-19 10:54:21 +0200[diff] [blame^]203 $update_data = array('timestamp' => time());
Andrey Andreev5231d322015-01-19 02:29:49 +0200[diff] [blame]204 if ($this->_fingerprint !== md5($session_data))
205 {
206 $update_data['data'] = ($this->_platform === 'postgre')
207 ? base64_encode($session_data)
208 : $session_data;
209 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]210
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]211 if ($this->_db->update($this->_config['save_path'], $update_data))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]212 {
213 $this->_fingerprint = md5($session_data);
214 return TRUE;
215 }
216
217 return FALSE;
218 }
219
220 // ------------------------------------------------------------------------
221
222 public function close()
223 {
224 return ($this->_lock)
225 ? $this->_release_lock()
226 : TRUE;
227 }
228
229 // ------------------------------------------------------------------------
230
231 public function destroy($session_id)
232 {
233 if ($this->_lock)
234 {
235 $this->_db->where('id', $session_id);
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]236 if ($this->_config['match_ip'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]237 {
238 $this->_db->where('ip_address', $_SERVER['REMOTE_ADDR']);
239 }
240
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]241 return $this->_db->delete($this->_config['save_path'])
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]242 ? ($this->close() && $this->_cookie_destroy())
243 : FALSE;
244 }
245
246 return ($this->close() && $this->_cookie_destroy());
247 }
248
249 // ------------------------------------------------------------------------
250
251 public function gc($maxlifetime)
252 {
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]253 return $this->_db->delete($this->_config['save_path'], 'timestamp < '.(time() - $maxlifetime));
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]254 }
255
256 // ------------------------------------------------------------------------
257
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]258 protected function _get_lock($session_id)
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]259 {
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]260 if ($this->_platform === 'mysql')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]261 {
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]262 $arg = $session_id.($this->_config['match_ip'] ? '_'.$_SERVER['REMOTE_ADDR'] : '');
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]263 if ($this->_db->query("SELECT GET_LOCK('".$arg."', 10) AS ci_session_lock")->row()->ci_session_lock)
264 {
265 $this->_lock = $arg;
266 return TRUE;
267 }
268
269 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]270 }
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]271 elseif ($this->_platform === 'postgre')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]272 {
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300[diff] [blame]273 $arg = "hashtext('".$session_id."')".($this->_config['match_ip'] ? ", hashtext('".$_SERVER['REMOTE_ADDR']."')" : '');
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]274 if ($this->_db->simple_query('SELECT pg_advisory_lock('.$arg.')'))
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]275 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]276 $this->_lock = $arg;
277 return TRUE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]278 }
279
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]280 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]281 }
282
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]283 return parent::_get_lock($session_id);
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]284 }
285
286 // ------------------------------------------------------------------------
287
288 protected function _release_lock()
289 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]290 if ( ! $this->_lock)
291 {
292 return TRUE;
293 }
294
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]295 if ($this->_platform === 'mysql')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]296 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]297 if ($this->_db->query("SELECT RELEASE_LOCK('".$this->_lock."') AS ci_session_lock")->row()->ci_session_lock)
298 {
299 $this->_lock = FALSE;
300 return TRUE;
301 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]302
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]303 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]304 }
Andrey Andreeve9ca0122015-01-15 17:42:17 +0200[diff] [blame]305 elseif ($this->_platform === 'postgre')
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]306 {
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]307 if ($this->_db->simple_query('SELECT pg_advisory_unlock('.$this->_lock.')'))
308 {
309 $this->_lock = FALSE;
310 return TRUE;
311 }
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]312
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]313 return FALSE;
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]314 }
315
Andrey Andreev93d9fa72014-08-27 22:14:36 +0300[diff] [blame]316 return parent::_release_lock();
Andrey Andreev47a47fb2014-05-31 16:08:30 +0300[diff] [blame]317 }
318
319}
320
321/* End of file Session_database_driver.php */
322/* Location: ./system/libraries/Session/drivers/Session_database_driver.php */