security_2classes_2general_2session_8php_source.html

<?


class CSecuritySession

{

    const GC_AGENT_NAME = "CSecuritySession::CleanUpAgent();";

    protected static $oldSessionId = null;


    public static function Init()

    {

        if(CSecuritySessionVirtual::isStorageEnabled())

        {

            static::registerHandler('CSecuritySessionVirtual');

        }

        elseif(CSecuritySessionMC::isStorageEnabled())

        {

            static::registerHandler('CSecuritySessionMC');

        }

        elseif(CSecuritySessionRedis::isStorageEnabled())

        {

            static::registerHandler('CSecuritySessionRedis');

        }

        else

        {

            static::registerHandler('CSecuritySessionDB');

        }

    }


    public static function triggerFatalError($pMessage = "")

    {

        CHTTP::SetStatus("500 Internal Server Error");

        trigger_error($pMessage, E_USER_ERROR);

        die();

    }


    public static function CleanUpAgent()

    {

        $maxlifetime = intval(ini_get("session.gc_maxlifetime"));


        if($maxlifetime && !CSecuritySessionMC::isStorageEnabled())

        {

            CSecuritySessionDB::gc($maxlifetime);

        }


        return self::GC_AGENT_NAME;

    }


    public static function UpdateSessID()

    {

        $oldSessionId = session_id();

        session_regenerate_id();

        $newSessionId = session_id();


        //Delay database update to session write moment

        if(!self::$oldSessionId)

            self::$oldSessionId = $oldSessionId;

    }


    public static function isOldSessionIdExist()

    {

        return self::$oldSessionId && self::checkSessionId(self::$oldSessionId);

    }


    public static function getOldSessionId($cleanUp = false)

    {

        $result = self::$oldSessionId;

        if ($cleanUp)

            self::$oldSessionId = null;


        return $result;

    }


    public static function checkSessionId($id)

    {

        return (

            $id

            && is_string($id)

            && preg_match('/^[\da-z\-,]{6,}$/iD', $id)

        );

    }


    public static function activate()

    {

        COption::SetOptionString("security", "session", "Y");

        session_write_close();

        CSecuritySession::Init();

        session_start();

        CAgent::RemoveAgent(self::GC_AGENT_NAME, "security");

        CAgent::Add(array(

            "NAME" => self::GC_AGENT_NAME,

            "MODULE_ID" => "security",

            "ACTIVE" => "Y",

            "AGENT_INTERVAL" => 1800,

            "IS_PERIOD" => "N",

        ));

    }


    public static function deactivate()

    {

        COption::SetOptionString("security", "session", "N");

        CAgent::RemoveAgent(self::GC_AGENT_NAME, "security");

    }


    protected static function registerHandler($class)

    {

        if(!class_exists($class))

        {

            self::triggerFatalError(

                sprintf('Session handler "%s" was not found.', $class)

            );

        }


        if(!$class::Init())

        {

            self::triggerFatalError(

                sprintf('Failed to initialize "%s" session handler.', $class)

            );

        }


        $handler = new CSecuritySessionHandler($class);

        session_set_save_handler($handler, true);

    }


    public static function createSid()

    {

        return \Bitrix\Main\Security\Random::getString(32, true);

    }


}


CHTTP\SetStatus
static SetStatus($status)
Определения http.php:476

CSecuritySessionDB\gc
static gc($maxLifeTime)
Определения session_db.php:139

CSecuritySessionHandler
Определения session_handler.php:9

CSecuritySession
Определения session.php:9

CSecuritySession\GC_AGENT_NAME
const GC_AGENT_NAME
Определения session.php:10

CSecuritySession\registerHandler
static registerHandler($class)
Определения session.php:125

CSecuritySession\isOldSessionIdExist
static isOldSessionIdExist()
Определения session.php:72

CSecuritySession\getOldSessionId
static getOldSessionId($cleanUp=false)
Определения session.php:81

CSecuritySession\deactivate
static deactivate()
Определения session.php:119

CSecuritySession\activate
static activate()
Определения session.php:103

CSecuritySession\checkSessionId
static checkSessionId($id)
Определения session.php:94

CSecuritySession\createSid
static createSid()
Определения session.php:145

CSecuritySession\CleanUpAgent
static CleanUpAgent()
Определения session.php:46

CSecuritySession\UpdateSessID
static UpdateSessID()
Определения session.php:58

CSecuritySession\Init
static Init()
Определения session.php:13

CSecuritySession\$oldSessionId
static $oldSessionId
Определения session.php:11

CSecuritySession\triggerFatalError
static triggerFatalError($pMessage="")
Определения session.php:36

CSecuritySessionMC\isStorageEnabled
static isStorageEnabled()
Определения session_mc.php:206

CSecuritySessionRedis\isStorageEnabled
static isStorageEnabled()
Определения session_redis.php:213

CSecuritySessionVirtual\isStorageEnabled
static isStorageEnabled()
Определения session_virtual.php:19

array
</td ></tr ></table ></td ></tr >< tr >< td class="bx-popup-label bx-width30"><?=GetMessage("PAGE_NEW_TAGS")?> array( $site)
Определения file_new.php:804

$result
$result
Определения get_property_values.php:14

elseif
if( $daysToExpire >=0 &&$daysToExpire< 60 elseif)( $daysToExpire< 0)
Определения prolog_main_admin.php:393

die
die
Определения quickway.php:367