PageRenderTime 43ms CodeModel.GetById 18ms RepoModel.GetById 1ms app.codeStats 0ms

/inc/lib/Auth/OpenID/SQLiteStore.php

https://bitbucket.org/yoander/mtrack
PHP | 71 lines | 35 code | 13 blank | 23 comment | 0 complexity | 4855020fe55f579df8f99247977bd1d1 MD5 | raw file
Possible License(s): BSD-3-Clause, Apache-2.0 
    

  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * An SQLite store.
    5. 

  5.  *
    6. 

  6.  * @package OpenID
    7. 

  7.  */
    8. 

  8. 

  9. /**
    10. 

  10.  * Require the base class file.
    11. 

  11.  */
    12. 

  12. require_once "Auth/OpenID/SQLStore.php";
    13. 

  13. 

  14. /**
    15. 

  15.  * An SQL store that uses SQLite as its backend.
    16. 

  16.  *
    17. 

  17.  * @package OpenID
    18. 

  18.  */
    19. 

  19. class Auth_OpenID_SQLiteStore extends Auth_OpenID_SQLStore {
    20. 

  20.     function setSQL()
    21. 

  21.     {
    22. 

  22.         $this->sql['nonce_table'] =
    23. 

  23.             "CREATE TABLE %s (server_url VARCHAR(2047), timestamp INTEGER, ".
    24. 

  24.             "salt CHAR(40), UNIQUE (server_url, timestamp, salt))";
    25. 

  25. 

  26.         $this->sql['assoc_table'] =
    27. 

  27.             "CREATE TABLE %s (server_url VARCHAR(2047), handle VARCHAR(255), ".
    28. 

  28.             "secret BLOB(128), issued INTEGER, lifetime INTEGER, ".
    29. 

  29.             "assoc_type VARCHAR(64), PRIMARY KEY (server_url, handle))";
    30. 

  30. 

  31.         $this->sql['set_assoc'] =
    32. 

  32.             "INSERT OR REPLACE INTO %s VALUES (?, ?, ?, ?, ?, ?)";
    33. 

  33. 

  34.         $this->sql['get_assocs'] =
    35. 

  35.             "SELECT handle, secret, issued, lifetime, assoc_type FROM %s ".
    36. 

  36.             "WHERE server_url = ?";
    37. 

  37. 

  38.         $this->sql['get_assoc'] =
    39. 

  39.             "SELECT handle, secret, issued, lifetime, assoc_type FROM %s ".
    40. 

  40.             "WHERE server_url = ? AND handle = ?";
    41. 

  41. 

  42.         $this->sql['remove_assoc'] =
    43. 

  43.             "DELETE FROM %s WHERE server_url = ? AND handle = ?";
    44. 

  44. 

  45.         $this->sql['add_nonce'] =
    46. 

  46.             "INSERT INTO %s (server_url, timestamp, salt) VALUES (?, ?, ?)";
    47. 

  47. 

  48.         $this->sql['clean_nonce'] =
    49. 

  49.             "DELETE FROM %s WHERE timestamp < ?";
    50. 

  50. 

  51.         $this->sql['clean_assoc'] =
    52. 

  52.             "DELETE FROM %s WHERE issued + lifetime < ?";
    53. 

  53.     }
    54. 

  54. 

  55.     /**
    56. 

  56.      * @access private
    57. 

  57.      */
    58. 

  58.     function _add_nonce($server_url, $timestamp, $salt)
    59. 

  59.     {
    60. 

  60.         // PECL SQLite extensions 1.0.3 and older (1.0.3 is the
    61. 

  61.         // current release at the time of this writing) have a broken
    62. 

  62.         // sqlite_escape_string function that breaks when passed the
    63. 

  63.         // empty string. Prefixing all strings with one character
    64. 

  64.         // keeps them unique and avoids this bug. The nonce table is
    65. 

  65.         // write-only, so we don't have to worry about updating other
    66. 

  66.         // functions with this same bad hack.
    67. 

  67.         return parent::_add_nonce('x' . $server_url, $timestamp, $salt);
    68. 

  68.     }
    69. 

  69. }
    70. 

  70. 

  71. ?>
    72.