* @copyright 2011 Uwe Steinmann * @version Release: @package_version@ */ /** * Class to represent a session * * This class provides some very basic methods to load, save and delete * sessions. It does not set or retrieve a cockie. This is up to the * application. The class basically provides access to the session database * table. * * @category DMS * @package LetoDMS * @author Markus Westphal, Malcolm Cowe, Uwe Steinmann * @copyright 2011 Uwe Steinmann * @version Release: @package_version@ */ class LetoDMS_Session { /** * @var object $db reference to database object. This must be an instance * of {@link LetoDMS_Core_DatabaseAccess}. * @access protected */ protected $db; /** * @var array $data session data * @access protected */ protected $data; /** * @var string $id session id * @access protected */ protected $id; /** * Create a new instance of the session handler * * @param object $db object to access the underlying database * @return object instance of LetoDMS_Session */ function __construct($db) { /* {{{ */ $this->db = $db; $this->id = false; } /* }}} */ /** * Load session by its id from database * * @param string $id id of session * @return boolean true if successful otherwise false */ function load($id) { /* {{{ */ $queryStr = "SELECT * FROM tblSessions WHERE id = ".$this->db->qstr($id); $resArr = $this->db->getResultArray($queryStr); if (is_bool($resArr) && $resArr == false) return false; if (count($resArr) == 0) return false; $queryStr = "UPDATE tblSessions SET lastAccess = " . mktime() . " WHERE id = " . $this->db->qstr($id); if (!$this->db->getResult($queryStr)) return false; $this->id = $id; $this->data = array('userid'=>$resArr[0]['userID'], 'theme'=>$resArr[0]['theme'], 'lang'=>$resArr[0]['language'], 'id'=>$resArr[0]['id'], 'lastaccess'=>$resArr[0]['lastAccess'], 'flashmsg'=>''); return $resArr[0]; } /* }}} */ /** * Create a new session and saving the given data into the database * * @param array $data data saved in session (the only fields supported * are userid, theme, language) * @return string/boolean id of session of false in case of an error */ function create($data) { /* {{{ */ $id = "" . rand() . mktime() . rand() . ""; $id = md5($id); $lastaccess = mktime(); $queryStr = "INSERT INTO tblSessions (id, userID, lastAccess, theme, language) ". "VALUES ('".$id."', ".$data['userid'].", ".$lastaccess.", '".$data['theme']."', '".$data['lang']."')"; if (!$this->db->getResult($queryStr)) { return false; } $this->id = $id; $this->data = $data; $this->data['id'] = $id; $this->data['lastaccess'] = $lastaccess; return $id; } /* }}} */ /** * Delete sessions older than a given time from the database * * @param integer $sec maximum number of seconds a session may live * @return boolean true if successful otherwise false */ function deleteByTime($sec) { /* {{{ */ $queryStr = "DELETE FROM tblSessions WHERE " . mktime() . " - lastAccess > ".$sec; if (!$this->db->getResult($queryStr)) { return false; } return true; } /* }}} */ /** * Delete session by its id * * @param string $id id of session * @return boolean true if successful otherwise false */ function delete($id) { /* {{{ */ $queryStr = "DELETE FROM tblSessions WHERE id = " . $this->db->qstr($id); if (!$this->db->getResult($queryStr)) { return false; } $this->id = false; return true; } /* }}} */ /** * Get session id * * @return string session id */ function getId() { /* {{{ */ return $this->id; } /* }}} */ /** * Set language of session * * @param $lang language */ function setLanguage($lang) { /* {{{ */ /* id is only set if load() was called before */ if($this->id) { $queryStr = "UPDATE tblSessions SET language = " . $this->db->qstr($lang) . " WHERE id = " . $this->db->qstr($this->id); if (!$this->db->getResult($queryStr)) return false; $this->data['lang'] = $lang; } return true; } /* }}} */ /** * Set language of session * * @param $lang language */ function getLanguage() { /* {{{ */ return $this->data['lang']; } /* }}} */ } ?>