phacil-framework/system/session/autoload.php

<?php
/*
 * Copyright © 2021 ExacTI Technology Solutions. All rights reserved.
 * GPLv3 General License.
 * https://exacti.com.br
 * Phacil PHP Framework - https://github.com/exacti/phacil-framework
 */

namespace Phacil\Framework;

use Phacil\Framework\Credis;
use Phacil\Framework\Config;

/** 
 * The session manipulation class
 * 
 * You can activate the Redis session instead use the default PHP session manipulation.
 * 
 * @param bool $redis Active or not the Redis session
 * @param string|null $redisDSN (optional) Redis DSN like unix:///path/to/redis.sock, tcp://host[:port][/persistence_identifier] or tls://host[:port][/persistence_identifier]. If not specified, the default value is connect to localhost in 6379 port.
 * @param int|null $redisPort (optional) If is not in the DSN specification, we can pass as separated value. The default is 6379.
 * @param string|null $redisPass (optional) Redis conection password
 * @param int|null $redis_expire (optional) Redis session expiration, the defaul is your session_cache_expire configurated in PHP *60.
 * @param string $redis_prefix (optional) The default prefis is 'phacil_'.
 * 
 * @since 1.0.0
 * @package Phacil\Framework 
 */
final class Session
{
    /**
     * 
     * @var array
     */
    public $data = array();

    /**
     * Redis object
     * @var Credis
     */
    public $redis = null;

    /**
     * Name of session
     * 
     * @var string
     */
    public $name;

    /**
     * Redis prefix
     * 
     * @var string
     */
    private $redisPrefix = "phacil_";

    /**
     * Redis Key
     * 
     * @var string
     */
    public $redisKey;

    /**
     * 
     * @param bool $redis 
     * @param string|null $redisDSN 
     * @param int|null $redisPort 
     * @param string|null $redisPass 
     * @param int|null $redis_expire 
     * @param string $redis_prefix 
     * @return void 
     */
    public function __construct($redis = false, $redisDSN = null, $redisPort = null, $redisPass = null, $redis_expire = null, $redis_prefix = 'phacil_')
    {
        $this->name = (Config::SESSION_PREFIX() ?: 'SESS') . (isset($_SERVER['REMOTE_ADDR']) ? md5($_SERVER['REMOTE_ADDR']) : md5(date("dmY")));

        if (!session_id()) {
            $this->openSession();
        }

        $this->redis($redis, $redisDSN, $redisPort, $redisPass, $redis_expire, $redis_prefix);

        if (session_name() === $this->name) {
            $this->data =& $_SESSION;
        } else {
            $this->openSession();
            $this->data =& $_SESSION;
        }
    }

    /** 
     * Open the PHP session
     * 
     * @return void  
     */
    private function openSession()
    {

        $this->closeSession();

        ini_set('session.use_cookies', 'On');
        ini_set('session.use_trans_sid', 'Off');
        ini_set('session.cookie_httponly', 1);
        if ($this->isSecure())
            ini_set('session.cookie_secure', 1);

        session_set_cookie_params(0, '/');
        //session_id(md5());
        session_name($this->name);
        session_start();
    }

    /**
     * Check and iniciate the Redis connection
     * 
     * @param bool $redis 
     * @param string|null $redisDSN 
     * @param string|null $redisPort 
     * @param string|null $redisPass 
     * @param int|null $redis_expire 
     * @param string $redis_prefix 
     * 
     * @since 2.0.0
     * @return false|Credis 
     */
    private function redis($redis = false, $redisDSN = null, $redisPort = null, $redisPass = null, $redis_expire = null, $redis_prefix = 'phacil_')
    {

        if (!$redis)
            return false;

        $this->redisExpire = ($redis_expire) ?: session_cache_expire() * 60;
        $this->redisPrefix = ($redis_prefix) ?: 'phacil_';
        $this->generateRedisKey();

        /**
         * Instanciate the Credis object
         * 
         * @var \Phacil\Framework\Credis
         */
        $this->redis = new Credis((($redisDSN) ?: '127.0.0.1'), (($redisPort) ?: '6379'), (($redisPass) ?: null));

        $_SESSION = unserialize($this->redis->get($this->redisKey));

        return $this->redis;
    }

    /** 
     * Generate the Redis Session KEY
     * 
     * @return void  
     */
    private function generateRedisKey()
    {
        if (session_id())
            $this->redisKey = $this->redisPrefix . session_name() . session_id();

        return $this->redisKey;
    }

    /**
     * Close sessions
     * 
     * @param bool $force 
     * @return void 
     */
    private function closeSession($force = false)
    {
        if (session_status() == PHP_SESSION_ACTIVE || $force) {
            session_unset();
            session_destroy();
        }
        if ($this->redis && $force) {
            $this->redis->close();
            unset($this->redis);
        }
    }

    /** 
     * Check if is secure (SSL) connection
     * @return bool  
     */
    private function isSecure()
    {
        return (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') || $_SERVER['SERVER_PORT'] == 443;
    }

    /**
     * Set the Redis session data
     * @return void 
     * @since 2.0.0
     */
    public function __destruct()
    {
        if ($this->redis) {
            $this->generateRedisKey();

            $this->redis->set($this->redisKey, serialize($_SESSION));

            $this->redis->expire($this->redisKey, ($this->redisExpire));
        }
    }

    /**
     * Flush all session data
     * @return void 
     * @since 2.0.0
     */
    public function flushAll()
    {
        $this->data = [];
        if ($this->redis) {
            ($this->redis->flushAll());
        }
        $this->closeSession(true);
    }

    /**
     * Flush current session data
     * @return void 
     * @since 2.0.0
     */
    public function flush()
    {
        $this->data = [];
        if ($this->redis) {
            ($this->redis->del($this->generateRedisKey()));
        }
        $this->closeSession(true);
    }

    /**
     * Return the current session ID
     * 
     * @since 2.0.0
     * @return string|false 
     */
    public function getSessionId()
    {
        return session_id();
    }
}
Inital framework 6 years ago			`<?php`
Rise and shine, Mr. Freeman, rise and shine! 3 years ago			`/*`
			`* Copyright © 2021 ExacTI Technology Solutions. All rights reserved.`
			`* GPLv3 General License.`
			`* https://exacti.com.br`
			`* Phacil PHP Framework - https://github.com/exacti/phacil-framework`
			`*/`

			`namespace Phacil\Framework;`

Session improvements 3 years ago			`use Phacil\Framework\Credis;`
Refactoring access to config constants Now the config constants is accessible from \Phacil\Framework\Config in a static method. No more 'undefined constant' in the framework 🤗 3 years ago			`use Phacil\Framework\Config;`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago
			`/**`
			`* The session manipulation class`
			`*`
Session improvements 3 years ago			`* You can activate the Redis session instead use the default PHP session manipulation.`
			`*`
			`* @param bool $redis Active or not the Redis session`
			`* @param string\|null $redisDSN (optional) Redis DSN like unix:///path/to/redis.sock, tcp://host[:port][/persistence_identifier] or tls://host[:port][/persistence_identifier]. If not specified, the default value is connect to localhost in 6379 port.`
			`* @param int\|null $redisPort (optional) If is not in the DSN specification, we can pass as separated value. The default is 6379.`
			`* @param string\|null $redisPass (optional) Redis conection password`
			`* @param int\|null $redis_expire (optional) Redis session expiration, the defaul is your session_cache_expire configurated in PHP *60.`
			`* @param string $redis_prefix (optional) The default prefis is 'phacil_'.`
			`*`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`* @since 1.0.0`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`* @package Phacil\Framework`
			`*/`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`final class Session`
			`{`
PHPDoc, Namespaces and compatibility with PHP 5.6 3 years ago			`/**`
			`*`
			`* @var array`
			`*/`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago			`public $data = array();`
PHPDoc, Namespaces and compatibility with PHP 5.6 3 years ago
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Redis object`
			`* @var Credis`
			`*/`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`public $redis = null;`

PHPDoc, Namespaces and compatibility with PHP 5.6 3 years ago			`/**`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`* Name of session`
PHPDoc, Namespaces and compatibility with PHP 5.6 3 years ago			`*`
			`* @var string`
			`*/`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`public $name;`

Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Redis prefix`
			`*`
			`* @var string`
			`*/`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`private $redisPrefix = "phacil_";`

Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Redis Key`
			`*`
			`* @var string`
			`*/`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`public $redisKey;`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago
Session improvements 3 years ago			`/**`
			`*`
			`* @param bool $redis`
			`* @param string\|null $redisDSN`
			`* @param int\|null $redisPort`
			`* @param string\|null $redisPass`
			`* @param int\|null $redis_expire`
			`* @param string $redis_prefix`
			`* @return void`
			`*/`
			`public function __construct($redis = false, $redisDSN = null, $redisPort = null, $redisPass = null, $redis_expire = null, $redis_prefix = 'phacil_')`
			`{`
Refactoring access to config constants Now the config constants is accessible from \Phacil\Framework\Config in a static method. No more 'undefined constant' in the framework 🤗 3 years ago			`$this->name = (Config::SESSION_PREFIX() ?: 'SESS') . (isset($_SERVER['REMOTE_ADDR']) ? md5($_SERVER['REMOTE_ADDR']) : md5(date("dmY")));`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago
			`if (!session_id()) {`
			`$this->openSession();`
			`}`

Session improvements 3 years ago			`$this->redis($redis, $redisDSN, $redisPort, $redisPass, $redis_expire, $redis_prefix);`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`if (session_name() === $this->name) {`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago			`$this->data =& $_SESSION;`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`} else {`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago			`$this->openSession();`
			`$this->data =& $_SESSION;`
			`}`
			`}`

Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Open the PHP session`
			`*`
			`* @return void`
			`*/`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`private function openSession()`
			`{`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago
			`$this->closeSession();`

			`ini_set('session.use_cookies', 'On');`
			`ini_set('session.use_trans_sid', 'Off');`
			`ini_set('session.cookie_httponly', 1);`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`if ($this->isSecure())`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago			`ini_set('session.cookie_secure', 1);`

			`session_set_cookie_params(0, '/');`
			`//session_id(md5());`
			`session_name($this->name);`
			`session_start();`
			`}`

Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Check and iniciate the Redis connection`
			`*`
Session improvements 3 years ago			`* @param bool $redis`
			`* @param string\|null $redisDSN`
			`* @param string\|null $redisPort`
			`* @param string\|null $redisPass`
			`* @param int\|null $redis_expire`
			`* @param string $redis_prefix`
			`*`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`* @since 2.0.0`
			`* @return false\|Credis`
			`*/`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`private function redis($redis = false, $redisDSN = null, $redisPort = null, $redisPass = null, $redis_expire = null, $redis_prefix = 'phacil_')`
			`{`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`if (!$redis)`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`return false;`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago
			`$this->redisExpire = ($redis_expire) ?: session_cache_expire() * 60;`
Session improvements 3 years ago			`$this->redisPrefix = ($redis_prefix) ?: 'phacil_';`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`$this->generateRedisKey();`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago
			`/**`
			`* Instanciate the Credis object`
			`*`
			`* @var \Phacil\Framework\Credis`
			`*/`
Session improvements 3 years ago			`$this->redis = new Credis((($redisDSN) ?: '127.0.0.1'), (($redisPort) ?: '6379'), (($redisPass) ?: null));`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago
Session improvements 3 years ago			`$_SESSION = unserialize($this->redis->get($this->redisKey));`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago
			`return $this->redis;`
			`}`

Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`/**`
			`* Generate the Redis Session KEY`
			`*`
			`* @return void`
			`*/`
			`private function generateRedisKey()`
			`{`
			`if (session_id())`
			`$this->redisKey = $this->redisPrefix . session_name() . session_id();`

			`return $this->redisKey;`
			`}`

Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Close sessions`
			`*`
			`* @param bool $force`
			`* @return void`
			`*/`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`private function closeSession($force = false)`
			`{`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`if (session_status() == PHP_SESSION_ACTIVE \|\| $force) {`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago			`session_unset();`
			`session_destroy();`
			`}`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`if ($this->redis && $force) {`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`$this->redis->close();`
			`unset($this->redis);`
			`}`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago			`}`

Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Check if is secure (SSL) connection`
			`* @return bool`
			`*/`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`private function isSecure()`
			`{`
PHP SESSION Prefix and IP check, engine constants and user_constants as a function for better memory usage, add SQLite 3 driver, new loader for aditional database method, new REST HTPP method check, updated template engines: Mustache 2.13, Smarty 3.1.34, Twig 1.42.5, Twig 2.12.5, add Twig 3 support to PHP 7.2+, define Dwoo template as deprecated, Caches and captcha bugfix in PHP 5.4.x 5 years ago			`return (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') \|\| $_SERVER['SERVER_PORT'] == 443;`
			`}`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`/**`
			`* Set the Redis session data`
			`* @return void`
			`* @since 2.0.0`
			`*/`
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`public function __destruct()`
			`{`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`if ($this->redis) {`
			`$this->generateRedisKey();`

Session improvements 3 years ago			`$this->redis->set($this->redisKey, serialize($_SESSION));`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago
Session on Redis Other small changes like more compatibility with PHP 5.4.... for now... 3 years ago			`$this->redis->expire($this->redisKey, ($this->redisExpire));`
			`}`
			`}`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago
			`/**`
			`* Flush all session data`
			`* @return void`
			`* @since 2.0.0`
			`*/`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago			`public function flushAll()`
			`{`
			`$this->data = [];`
			`if ($this->redis) {`
Support to DNS Redis connection and flush all session method Remove the nullStatement default driver loader for Database, Credis changed args constructor order 3 years ago			`($this->redis->flushAll());`
			`}`
			`$this->closeSession(true);`
			`}`
Autoload, Controller and session changes Autoload Phacil system classes, controller with auto registry on construct, login class changes, login interface, session redis key regenerated support for session ID, sessions improvement, System loadengine not need any more on glob autoload.php files. 3 years ago
			`/**`
			`* Flush current session data`
			`* @return void`
			`* @since 2.0.0`
			`*/`
			`public function flush()`
			`{`
			`$this->data = [];`
			`if ($this->redis) {`
			`($this->redis->del($this->generateRedisKey()));`
			`}`
			`$this->closeSession(true);`
			`}`

			`/**`
			`* Return the current session ID`
			`*`
			`* @since 2.0.0`
			`* @return string\|false`
			`*/`
			`public function getSessionId()`
			`{`
			`return session_id();`
			`}`
Inital framework 6 years ago			`}`