PageRenderTime 45ms CodeModel.GetById 18ms RepoModel.GetById 0ms app.codeStats 0ms

/concreteOLD/libraries/3rdparty/adodb/session/old/adodb-cryptsession.php

https://bitbucket.org/selfeky/xclusivescardwebsite
PHP | 324 lines | 200 code | 43 blank | 81 comment | 34 complexity | cc87e1d9098d8cf6e2a106e228f23fbe MD5 | raw file
    

  1. <?php
    2. 

  2. /*
    3. 

  3. V5.10 10 Nov 2009   (c) 2000-2009 John Lim (jlim#natsoft.com). All rights reserved.
    4. 

  4.   Released under both BSD license and Lesser GPL library license. 
    5. 

  5.   Whenever there is any discrepancy between the two licenses, 
    6. 

  6.   the BSD license will take precedence.
    7. 

  7. 	Made table name configurable - by David Johnson djohnson@inpro.net
    8. 

  8. 	Encryption by Ari Kuorikoski <ari.kuorikoski@finebyte.com>
    9. 

  9. 	
    10. 

  10.   Set tabs to 4 for best viewing.
    11. 

  11.   
    12. 

  12.   Latest version of ADODB is available at http://php.weblogs.com/adodb
    13. 

  13.   ======================================================================
    14. 

  14.   
    15. 

  15.  This file provides PHP4 session management using the ADODB database
    16. 

  16. wrapper library.
    17. 

  17.  
    18. 

  18.  Example
    19. 

  19.  =======
    20. 

  20.  
    21. 

  21. 	include('adodb.inc.php');
    22. 

  22. 	#---------------------------------#
    23. 

  23. 	include('adodb-cryptsession.php'); 
    24. 

  24. 	#---------------------------------#
    25. 

  25. 	session_start();
    26. 

  26. 	session_register('AVAR');
    27. 

  27. 	$_SESSION['AVAR'] += 1;
    28. 

  28. 	print "
    29. 

  29. -- \$_SESSION['AVAR']={$_SESSION['AVAR']}</p>";
    30. 

    31. 

  31.  
    32. 

  32.  Installation
    33. 

  33.  ============
    34. 

  34.  1. Create a new database in MySQL or Access "sessions" like
    35. 

  35. so:
    36. 

  36.  
    37. 

  37.   create table sessions (
    38. 

  38. 	   SESSKEY char(32) not null,
    39. 

  39. 	   EXPIRY int(11) unsigned not null,
    40. 

  40. 	   EXPIREREF varchar(64),
    41. 

  41. 	   DATA CLOB,
    42. 

  42. 	  primary key (sesskey)
    43. 

  43.   );
    44. 

  44.   
    45. 

  45.   2. Then define the following parameters. You can either modify
    46. 

  46.      this file, or define them before this file is included:
    47. 

  47. 	 
    48. 

  48.   	$ADODB_SESSION_DRIVER='database driver, eg. mysql or ibase';
    49. 

  49. 	$ADODB_SESSION_CONNECT='server to connect to';
    50. 

  50. 	$ADODB_SESSION_USER ='user';
    51. 

  51. 	$ADODB_SESSION_PWD ='password';
    52. 

  52. 	$ADODB_SESSION_DB ='database';
    53. 

  53. 	$ADODB_SESSION_TBL = 'sessions'
    54. 

  54. 	
    55. 

  55.   3. Recommended is PHP 4.0.2 or later. There are documented
    56. 

  56. session bugs in earlier versions of PHP.
    57. 

    58. 

  58. */
    59. 

  59. 

  60. 

  61. include_once('crypt.inc.php');
    62. 

  62. 

  63. if (!defined('_ADODB_LAYER')) {
    64. 

  64. 	include (dirname(__FILE__).'/adodb.inc.php');
    65. 

  65. }
    66. 

  66. 

  67.  /* if database time and system time is difference is greater than this, then give warning */
    68. 

  68.  define('ADODB_SESSION_SYNCH_SECS',60); 
    69. 

  69. 

  70. if (!defined('ADODB_SESSION')) {
    71. 

  71. 

  72.  define('ADODB_SESSION',1);
    73. 

  73.  
    74. 

  74. GLOBAL 	$ADODB_SESSION_CONNECT, 
    75. 

  75. 	$ADODB_SESSION_DRIVER,
    76. 

  76. 	$ADODB_SESSION_USER,
    77. 

  77. 	$ADODB_SESSION_PWD,
    78. 

  78. 	$ADODB_SESSION_DB,
    79. 

  79. 	$ADODB_SESS_CONN,
    80. 

  80. 	$ADODB_SESS_LIFE,
    81. 

  81. 	$ADODB_SESS_DEBUG,
    82. 

  82. 	$ADODB_SESS_INSERT,
    83. 

  83. 	$ADODB_SESSION_EXPIRE_NOTIFY,
    84. 

  84. 	$ADODB_SESSION_TBL; 
    85. 

  85. 

  86. 	//$ADODB_SESS_DEBUG = true;
    87. 

  87. 	
    88. 

  88. 	/* SET THE FOLLOWING PARAMETERS */
    89. 

  89. if (empty($ADODB_SESSION_DRIVER)) {
    90. 

  90. 	$ADODB_SESSION_DRIVER='mysql';
    91. 

  91. 	$ADODB_SESSION_CONNECT='localhost';
    92. 

  92. 	$ADODB_SESSION_USER ='root';
    93. 

  93. 	$ADODB_SESSION_PWD ='';
    94. 

  94. 	$ADODB_SESSION_DB ='xphplens_2';
    95. 

  95. }
    96. 

  96. 

  97. if (empty($ADODB_SESSION_TBL)){
    98. 

  98. 	$ADODB_SESSION_TBL = 'sessions';
    99. 

  99. }
    100. 

  100. 

  101. if (empty($ADODB_SESSION_EXPIRE_NOTIFY)) {
    102. 

  102. 	$ADODB_SESSION_EXPIRE_NOTIFY = false;
    103. 

  103. }
    104. 

  104. 

  105. function ADODB_Session_Key() 
    106. 

  106. {
    107. 

  107. $ADODB_CRYPT_KEY = 'CRYPTED ADODB SESSIONS ROCK!';
    108. 

  108. 

  109. 	/* USE THIS FUNCTION TO CREATE THE ENCRYPTION KEY FOR CRYPTED SESSIONS	*/
    110. 

  110. 	/* Crypt the used key, $ADODB_CRYPT_KEY as key and session_ID as SALT	*/
    111. 

  111. 	return crypt($ADODB_CRYPT_KEY, session_ID());
    112. 

  112. }
    113. 

  113. 

  114. $ADODB_SESS_LIFE = ini_get('session.gc_maxlifetime');
    115. 

  115. if ($ADODB_SESS_LIFE <= 1) {
    116. 

  116. 	// bug in PHP 4.0.3 pl 1  -- how about other versions?
    117. 

  117. 	//print "<h3>Session Error: PHP.INI setting <i>session.gc_maxlifetime</i>not set: $ADODB_SESS_LIFE</h3>";
    118. 

  118. 	$ADODB_SESS_LIFE=1440;
    119. 

  119. }
    120. 

  120. 

  121. function adodb_sess_open($save_path, $session_name) 
    122. 

  122. {
    123. 

  123. GLOBAL 	$ADODB_SESSION_CONNECT, 
    124. 

  124. 	$ADODB_SESSION_DRIVER,
    125. 

  125. 	$ADODB_SESSION_USER,
    126. 

  126. 	$ADODB_SESSION_PWD,
    127. 

  127. 	$ADODB_SESSION_DB,
    128. 

  128. 	$ADODB_SESS_CONN,
    129. 

  129. 	$ADODB_SESS_DEBUG;
    130. 

  130. 	
    131. 

  131. 	$ADODB_SESS_INSERT = false;
    132. 

  132. 	
    133. 

  133. 	if (isset($ADODB_SESS_CONN)) return true;
    134. 

  134. 	
    135. 

  135. 	$ADODB_SESS_CONN = ADONewConnection($ADODB_SESSION_DRIVER);
    136. 

  136. 	if (!empty($ADODB_SESS_DEBUG)) {
    137. 

  137. 		$ADODB_SESS_CONN->debug = true;
    138. 

  138. 		print" conn=$ADODB_SESSION_CONNECT user=$ADODB_SESSION_USER pwd=$ADODB_SESSION_PWD db=$ADODB_SESSION_DB ";
    139. 

  139. 	}
    140. 

  140. 	return $ADODB_SESS_CONN->PConnect($ADODB_SESSION_CONNECT,
    141. 

  141. 			$ADODB_SESSION_USER,$ADODB_SESSION_PWD,$ADODB_SESSION_DB);
    142. 

  142. 	
    143. 

  143. }
    144. 

  144. 

  145. function adodb_sess_close() 
    146. 

  146. {
    147. 

  147. global $ADODB_SESS_CONN;
    148. 

  148. 

  149. 	if ($ADODB_SESS_CONN) $ADODB_SESS_CONN->Close();
    150. 

  150. 	return true;
    151. 

  151. }
    152. 

  152. 

  153. function adodb_sess_read($key) 
    154. 

  154. {
    155. 

  155. $Crypt = new MD5Crypt;
    156. 

  156. global $ADODB_SESS_CONN,$ADODB_SESS_INSERT,$ADODB_SESSION_TBL;
    157. 

  157. 	$rs = $ADODB_SESS_CONN->Execute("SELECT data FROM $ADODB_SESSION_TBL WHERE sesskey = '$key' AND expiry >= " . time());
    158. 

  158. 	if ($rs) {
    159. 

  159. 		if ($rs->EOF) {
    160. 

  160. 			$ADODB_SESS_INSERT = true;
    161. 

  161. 			$v = '';
    162. 

  162. 		} else {
    163. 

  163. 			// Decrypt session data
    164. 

  164. 			$v = rawurldecode($Crypt->Decrypt(reset($rs->fields), ADODB_Session_Key()));
    165. 

  165. 		}
    166. 

  166. 		$rs->Close();
    167. 

  167. 		return $v;
    168. 

  168. 	}
    169. 

  169. 	else $ADODB_SESS_INSERT = true;
    170. 

  170. 	
    171. 

  171. 	return '';
    172. 

  172. }
    173. 

  173. 

  174. function adodb_sess_write($key, $val) 
    175. 

  175. {
    176. 

  176. $Crypt = new MD5Crypt;
    177. 

  177. 	global $ADODB_SESS_INSERT,$ADODB_SESS_CONN, $ADODB_SESS_LIFE, $ADODB_SESSION_TBL,$ADODB_SESSION_EXPIRE_NOTIFY;
    178. 

  178. 

  179. 	$expiry = time() + $ADODB_SESS_LIFE;
    180. 

  180. 

  181. 	// encrypt session data..	
    182. 

  182. 	$val = $Crypt->Encrypt(rawurlencode($val), ADODB_Session_Key());
    183. 

  183. 	
    184. 

  184. 	$arr = array('sesskey' => $key, 'expiry' => $expiry, 'data' => $val);
    185. 

  185. 	if ($ADODB_SESSION_EXPIRE_NOTIFY) {
    186. 

  186. 		$var = reset($ADODB_SESSION_EXPIRE_NOTIFY);
    187. 

  187. 		global $$var;
    188. 

  188. 		$arr['expireref'] = $$var;
    189. 

  189. 	}
    190. 

  190. 	$rs = $ADODB_SESS_CONN->Replace($ADODB_SESSION_TBL,
    191. 

  191. 	    $arr,
    192. 

  192.     	'sesskey',$autoQuote = true);
    193. 

  193. 

  194. 	if (!$rs) {
    195. 

  195. 		ADOConnection::outp( '
    196. 

  196. -- Session Replace: '.$ADODB_SESS_CONN->ErrorMsg().'</p>',false);
    197. 

  197. 	} else {
    198. 

  198. 		// bug in access driver (could be odbc?) means that info is not commited
    199. 

  199. 		// properly unless select statement executed in Win2000
    200. 

  200. 	
    201. 

  201. 	if ($ADODB_SESS_CONN->databaseType == 'access') $rs = $ADODB_SESS_CONN->Execute("select sesskey from $ADODB_SESSION_TBL WHERE sesskey='$key'");
    202. 

  202. 	}
    203. 

  203. 	return isset($rs);
    204. 

  204. }
    205. 

  205. 

  206. function adodb_sess_destroy($key) 
    207. 

  207. {
    208. 

  208. 	global $ADODB_SESS_CONN, $ADODB_SESSION_TBL,$ADODB_SESSION_EXPIRE_NOTIFY;
    209. 

  209. 	
    210. 

  210. 	if ($ADODB_SESSION_EXPIRE_NOTIFY) {
    211. 

  211. 		reset($ADODB_SESSION_EXPIRE_NOTIFY);
    212. 

  212. 		$fn = next($ADODB_SESSION_EXPIRE_NOTIFY);
    213. 

  213. 		$savem = $ADODB_SESS_CONN->SetFetchMode(ADODB_FETCH_NUM);
    214. 

  214. 		$rs = $ADODB_SESS_CONN->Execute("SELECT expireref,sesskey FROM $ADODB_SESSION_TBL WHERE sesskey='$key'");
    215. 

  215. 		$ADODB_SESS_CONN->SetFetchMode($savem);
    216. 

  216. 		if ($rs) {
    217. 

  217. 			$ADODB_SESS_CONN->BeginTrans();
    218. 

  218. 			while (!$rs->EOF) {
    219. 

  219. 				$ref = $rs->fields[0];
    220. 

  220. 				$key = $rs->fields[1];
    221. 

  221. 				$fn($ref,$key);
    222. 

  222. 				$del = $ADODB_SESS_CONN->Execute("DELETE FROM $ADODB_SESSION_TBL WHERE sesskey='$key'");
    223. 

  223. 				$rs->MoveNext();
    224. 

  224. 			}
    225. 

  225. 			$ADODB_SESS_CONN->CommitTrans();
    226. 

  226. 		}
    227. 

  227. 	} else {
    228. 

  228. 		$qry = "DELETE FROM $ADODB_SESSION_TBL WHERE sesskey = '$key'";
    229. 

  229. 		$rs = $ADODB_SESS_CONN->Execute($qry);
    230. 

  230. 	}
    231. 

  231. 	return $rs ? true : false;
    232. 

  232. }
    233. 

  233. 

  234. 

  235. function adodb_sess_gc($maxlifetime) {
    236. 

  236. 	global $ADODB_SESS_CONN, $ADODB_SESSION_TBL,$ADODB_SESSION_EXPIRE_NOTIFY,$ADODB_SESS_DEBUG;
    237. 

  237. 

  238. 	if ($ADODB_SESSION_EXPIRE_NOTIFY) {
    239. 

  239. 		reset($ADODB_SESSION_EXPIRE_NOTIFY);
    240. 

  240. 		$fn = next($ADODB_SESSION_EXPIRE_NOTIFY);
    241. 

  241. 		$savem = $ADODB_SESS_CONN->SetFetchMode(ADODB_FETCH_NUM);
    242. 

  242. 		$t = time();
    243. 

  243. 		$rs = $ADODB_SESS_CONN->Execute("SELECT expireref,sesskey FROM $ADODB_SESSION_TBL WHERE expiry < $t");
    244. 

  244. 		$ADODB_SESS_CONN->SetFetchMode($savem);
    245. 

  245. 		if ($rs) {
    246. 

  246. 			$ADODB_SESS_CONN->BeginTrans();
    247. 

  247. 			while (!$rs->EOF) {
    248. 

  248. 				$ref = $rs->fields[0];
    249. 

  249. 				$key = $rs->fields[1];
    250. 

  250. 				$fn($ref,$key);
    251. 

  251. 				//$del = $ADODB_SESS_CONN->Execute("DELETE FROM $ADODB_SESSION_TBL WHERE sesskey='$key'");
    252. 

  252. 				$rs->MoveNext();
    253. 

  253. 			}
    254. 

  254. 			$rs->Close();
    255. 

  255. 			
    256. 

  256. 			$ADODB_SESS_CONN->Execute("DELETE FROM $ADODB_SESSION_TBL WHERE expiry < $t");
    257. 

  257. 			$ADODB_SESS_CONN->CommitTrans();
    258. 

  258. 		}
    259. 

  259. 	} else {
    260. 

  260. 		$qry = "DELETE FROM $ADODB_SESSION_TBL WHERE expiry < " . time();
    261. 

  261. 		$ADODB_SESS_CONN->Execute($qry);
    262. 

  262. 	}
    263. 

  263. 	
    264. 

  264. 	// suggested by Cameron, "GaM3R" <gamr@outworld.cx>
    265. 

  265. 	if (defined('ADODB_SESSION_OPTIMIZE'))
    266. 

  266. 	{
    267. 

  267. 	global $ADODB_SESSION_DRIVER;
    268. 

  268. 	
    269. 

  269. 		switch( $ADODB_SESSION_DRIVER ) {
    270. 

  270. 			case 'mysql':
    271. 

  271. 			case 'mysqlt':
    272. 

  272. 				$opt_qry = 'OPTIMIZE TABLE '.$ADODB_SESSION_TBL;
    273. 

  273. 				break;
    274. 

  274. 			case 'postgresql':
    275. 

  275. 			case 'postgresql7':
    276. 

  276. 				$opt_qry = 'VACUUM '.$ADODB_SESSION_TBL;	
    277. 

  277. 				break;
    278. 

  278. 		}
    279. 

  279. 	}
    280. 

  280. 	
    281. 

  281. 	if ($ADODB_SESS_CONN->dataProvider === 'oci8') $sql = 'select  TO_CHAR('.($ADODB_SESS_CONN->sysTimeStamp).', \'RRRR-MM-DD HH24:MI:SS\') from '. $ADODB_SESSION_TBL;
    282. 

  282. 	else $sql = 'select '.$ADODB_SESS_CONN->sysTimeStamp.' from '. $ADODB_SESSION_TBL;
    283. 

  283. 	
    284. 

  284. 	$rs = $ADODB_SESS_CONN->SelectLimit($sql,1);
    285. 

  285. 	if ($rs && !$rs->EOF) {
    286. 

  286. 	
    287. 

  287. 		$dbts = reset($rs->fields);
    288. 

  288. 		$rs->Close();
    289. 

  289. 		$dbt = $ADODB_SESS_CONN->UnixTimeStamp($dbts);
    290. 

  290. 		$t = time();
    291. 

  291. 		if (abs($dbt - $t) >= ADODB_SESSION_SYNCH_SECS) {
    292. 

  292. 			$msg = 
    293. 

  293. 			__FILE__.": Server time for webserver {$_SERVER['HTTP_HOST']} not in synch with database: database=$dbt ($dbts), webserver=$t (diff=".(abs($dbt-$t)/3600)." hrs)";
    294. 

  294. 			error_log($msg);
    295. 

  295. 			if ($ADODB_SESS_DEBUG) ADOConnection::outp("
    296. 

  296. -- $msg</p>");
    297. 

  297. 		}
    298. 

  298. 	}
    299. 

  299. 	
    300. 

  300. 	return true;
    301. 

  301. }
    302. 

  302. 

  303. session_module_name('user'); 
    304. 

  304. session_set_save_handler(
    305. 

  305. 	"adodb_sess_open",
    306. 

  306. 	"adodb_sess_close",
    307. 

  307. 	"adodb_sess_read",
    308. 

  308. 	"adodb_sess_write",
    309. 

  309. 	"adodb_sess_destroy",
    310. 

  310. 	"adodb_sess_gc");
    311. 

  311. }
    312. 

  312. 

  313. /*  TEST SCRIPT -- UNCOMMENT */
    314. 

  314. /*
    315. 

  315. if (0) {
    316. 

    317. 

  317. 	session_start();
    318. 

  318. 	session_register('AVAR');
    319. 

  319. 	$_SESSION['AVAR'] += 1;
    320. 

  320. 	print "
    321. 

  321. -- \$_SESSION['AVAR']={$_SESSION['AVAR']}</p>";
    322. 

  322. }
    323. 

  323. */
    324. 

  324. ?>
    325. 

  325.