2013-04-22 14:09:50 +10:00
|
|
|
<?php defined('SYSPATH') OR die('No direct script access.');
|
|
|
|
/**
|
|
|
|
* Native PHP session class.
|
|
|
|
*
|
|
|
|
* @package Kohana
|
|
|
|
* @category Session
|
|
|
|
* @author Kohana Team
|
|
|
|
* @copyright (c) 2008-2012 Kohana Team
|
|
|
|
* @license http://kohanaframework.org/license
|
|
|
|
*/
|
|
|
|
class Kohana_Session_Native extends Session {
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public function id()
|
|
|
|
{
|
|
|
|
return session_id();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param string $id session id
|
|
|
|
* @return null
|
|
|
|
*/
|
|
|
|
protected function _read($id = NULL)
|
|
|
|
{
|
2016-05-01 20:50:24 +10:00
|
|
|
/**
|
|
|
|
* session_set_cookie_params will override php ini settings
|
|
|
|
* If Cookie::$domain is NULL or empty and is passed, PHP
|
|
|
|
* will override ini and sent cookies with the host name
|
|
|
|
* of the server which generated the cookie
|
|
|
|
*
|
|
|
|
* see issue #3604
|
|
|
|
*
|
|
|
|
* see http://www.php.net/manual/en/function.session-set-cookie-params.php
|
|
|
|
* see http://www.php.net/manual/en/session.configuration.php#ini.session.cookie-domain
|
|
|
|
*
|
|
|
|
* set to Cookie::$domain if available, otherwise default to ini setting
|
|
|
|
*/
|
|
|
|
$session_cookie_domain = empty(Cookie::$domain)
|
|
|
|
? ini_get('session.cookie_domain')
|
|
|
|
: Cookie::$domain;
|
|
|
|
|
2013-04-22 14:09:50 +10:00
|
|
|
// Sync up the session cookie with Cookie parameters
|
2016-05-01 20:50:24 +10:00
|
|
|
session_set_cookie_params(
|
|
|
|
$this->_lifetime,
|
|
|
|
Cookie::$path,
|
|
|
|
$session_cookie_domain,
|
|
|
|
Cookie::$secure,
|
|
|
|
Cookie::$httponly
|
|
|
|
);
|
2013-04-22 14:09:50 +10:00
|
|
|
|
|
|
|
// Do not allow PHP to send Cache-Control headers
|
|
|
|
session_cache_limiter(FALSE);
|
|
|
|
|
|
|
|
// Set the session cookie name
|
|
|
|
session_name($this->_name);
|
|
|
|
|
|
|
|
if ($id)
|
|
|
|
{
|
|
|
|
// Set the session id
|
|
|
|
session_id($id);
|
|
|
|
}
|
|
|
|
|
|
|
|
// Start the session
|
|
|
|
session_start();
|
|
|
|
|
|
|
|
// Use the $_SESSION global for storing data
|
|
|
|
$this->_data =& $_SESSION;
|
|
|
|
|
|
|
|
return NULL;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
protected function _regenerate()
|
|
|
|
{
|
|
|
|
// Regenerate the session id
|
|
|
|
session_regenerate_id();
|
|
|
|
|
|
|
|
return session_id();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
protected function _write()
|
|
|
|
{
|
|
|
|
// Write and close the session
|
|
|
|
session_write_close();
|
|
|
|
|
|
|
|
return TRUE;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
protected function _restart()
|
|
|
|
{
|
|
|
|
// Fire up a new session
|
|
|
|
$status = session_start();
|
|
|
|
|
|
|
|
// Use the $_SESSION global for storing data
|
|
|
|
$this->_data =& $_SESSION;
|
|
|
|
|
|
|
|
return $status;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
protected function _destroy()
|
|
|
|
{
|
|
|
|
// Destroy the current session
|
|
|
|
session_destroy();
|
|
|
|
|
|
|
|
// Did destruction work?
|
|
|
|
$status = ! session_id();
|
|
|
|
|
|
|
|
if ($status)
|
|
|
|
{
|
|
|
|
// Make sure the session cannot be restarted
|
|
|
|
Cookie::delete($this->_name);
|
|
|
|
}
|
|
|
|
|
|
|
|
return $status;
|
|
|
|
}
|
|
|
|
|
2014-09-06 23:43:07 +10:00
|
|
|
}
|