PageRenderTime 47ms CodeModel.GetById 18ms RepoModel.GetById 0ms app.codeStats 0ms

/station-games/vendor/cakephp/cakephp/src/Controller/Component/CookieComponent.php

https://gitlab.com/ViniciusP/project-games
PHP | 356 lines | 147 code | 29 blank | 180 comment | 12 complexity | 34d5d79bab85826c2db9508da758b87c MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * CakePHP(tm) : Rapid Development Framework (http://cakephp.org)
    4. 

  4.  * Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
    5. 

  5.  *
    6. 

  6.  * Licensed under The MIT License
    7. 

  7.  * For full copyright and license information, please see the LICENSE.txt
    8. 

  8.  * Redistributions of files must retain the above copyright notice.
    9. 

  9.  *
    10. 

  10.  * @copyright     Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
    11. 

  11.  * @link          http://cakephp.org CakePHP(tm) Project
    12. 

  12.  * @since         1.2.0
    13. 

  13.  * @license       http://www.opensource.org/licenses/mit-license.php MIT License
    14. 

  14.  */
    15. 

  15. namespace Cake\Controller\Component;
    16. 

  16. 

  17. use Cake\Controller\Component;
    18. 

  18. use Cake\I18n\Time;
    19. 

  19. use Cake\Network\Request;
    20. 

  20. use Cake\Network\Response;
    21. 

  21. use Cake\Utility\CookieCryptTrait;
    22. 

  22. use Cake\Utility\Hash;
    23. 

  23. use Cake\Utility\Security;
    24. 

  24. 

  25. /**
    26. 

  26.  * Cookie Component.
    27. 

  27.  *
    28. 

  28.  * Provides enhanced cookie handling features for use in the controller layer.
    29. 

  29.  * In addition to the basic features offered be Cake\Network\Response, this class lets you:
    30. 

  30.  *
    31. 

  31.  * - Create and read encrypted cookies.
    32. 

  32.  * - Store non-scalar data.
    33. 

  33.  * - Use hash compatible syntax to read/write/delete values.
    34. 

  34.  *
    35. 

  35.  * @link http://book.cakephp.org/3.0/en/controllers/components/cookie.html
    36. 

  36.  */
    37. 

  37. class CookieComponent extends Component
    38. 

  38. {
    39. 

  39.     use CookieCryptTrait;
    40. 

  40. 

  41.     /**
    42. 

  42.      * Default config
    43. 

  43.      *
    44. 

  44.      * - `expires` - How long the cookies should last for. Defaults to 1 month.
    45. 

  45.      * - `path` - The path on the server in which the cookie will be available on.
    46. 

  46.      *   If path is set to '/foo/', the cookie will only be available within the
    47. 

  47.      *   /foo/ directory and all sub-directories such as /foo/bar/ of domain.
    48. 

  48.      *   The default value is base path of app. For e.g. if your app is running
    49. 

  49.      *   under a subfolder "cakeapp" of document root the path would be "/cakeapp/"
    50. 

  50.      *   else it would be "/".
    51. 

  51.      * - `domain` - The domain that the cookie is available. To make the cookie
    52. 

  52.      *   available on all subdomains of example.com set domain to '.example.com'.
    53. 

  53.      * - `secure` - Indicates that the cookie should only be transmitted over a
    54. 

  54.      *   secure HTTPS connection. When set to true, the cookie will only be set if
    55. 

  55.      *   a secure connection exists.
    56. 

  56.      * - `key` - Encryption key used when encrypted cookies are enabled. Defaults to Security.salt.
    57. 

  57.      * - `httpOnly` - Set to true to make HTTP only cookies. Cookies that are HTTP only
    58. 

  58.      *   are not accessible in JavaScript. Default false.
    59. 

  59.      * - `encryption` - Type of encryption to use. Defaults to 'aes'.
    60. 

  60.      *
    61. 

  61.      * @var array
    62. 

  62.      */
    63. 

  63.     protected $_defaultConfig = [
    64. 

  64.         'path' => null,
    65. 

  65.         'domain' => '',
    66. 

  66.         'secure' => false,
    67. 

  67.         'key' => null,
    68. 

  68.         'httpOnly' => false,
    69. 

  69.         'encryption' => 'aes',
    70. 

  70.         'expires' => '+1 month',
    71. 

  71.     ];
    72. 

  72. 

  73.     /**
    74. 

  74.      * Config specific to a given top level key name.
    75. 

  75.      *
    76. 

  76.      * The values in this array are merged with the general config
    77. 

  77.      * to generate the configuration for a given top level cookie name.
    78. 

  78.      *
    79. 

  79.      * @var array
    80. 

  80.      */
    81. 

  81.     protected $_keyConfig = [];
    82. 

  82. 

  83.     /**
    84. 

  84.      * Values stored in the cookie.
    85. 

  85.      *
    86. 

  86.      * Accessed in the controller using $this->Cookie->read('Name.key');
    87. 

  87.      *
    88. 

  88.      * @var string
    89. 

  89.      */
    90. 

  90.     protected $_values = [];
    91. 

  91. 

  92.     /**
    93. 

  93.      * A map of keys that have been loaded.
    94. 

  94.      *
    95. 

  95.      * Since CookieComponent lazily reads cookie data,
    96. 

  96.      * we need to track which cookies have been read to account for
    97. 

  97.      * read, delete, read patterns.
    98. 

  98.      *
    99. 

  99.      * @var array
    100. 

  100.      */
    101. 

  101.     protected $_loaded = [];
    102. 

  102. 

  103.     /**
    104. 

  104.      * A reference to the Controller's Cake\Network\Response object
    105. 

  105.      *
    106. 

  106.      * @var \Cake\Network\Response
    107. 

  107.      */
    108. 

  108.     protected $_response = null;
    109. 

  109. 

  110.     /**
    111. 

  111.      * Initialize config data and properties.
    112. 

  112.      *
    113. 

  113.      * @param array $config The config data.
    114. 

  114.      * @return void
    115. 

  115.      */
    116. 

  116.     public function initialize(array $config)
    117. 

  117.     {
    118. 

  118.         if (!$this->_config['key']) {
    119. 

  119.             $this->config('key', Security::salt());
    120. 

  120.         }
    121. 

  121. 

  122.         $controller = $this->_registry->getController();
    123. 

  123. 

  124.         if ($controller !== null) {
    125. 

  125.             $this->_response =& $controller->response;
    126. 

  126.         }
    127. 

  127. 

  128.         if ($controller === null) {
    129. 

  129.             $this->request = Request::createFromGlobals();
    130. 

  130.             $this->_response = new Response();
    131. 

  131.         }
    132. 

  132. 

  133.         if (empty($this->_config['path'])) {
    134. 

  134.             $this->config('path', $this->request->webroot);
    135. 

  135.         }
    136. 

  136.     }
    137. 

  137. 

  138.     /**
    139. 

  139.      * Set the configuration for a specific top level key.
    140. 

  140.      *
    141. 

  141.      * ### Examples:
    142. 

  142.      *
    143. 

  143.      * Set a single config option for a key:
    144. 

  144.      *
    145. 

  145.      * ```
    146. 

  146.      * $this->Cookie->configKey('User', 'expires', '+3 months');
    147. 

  147.      * ```
    148. 

  148.      *
    149. 

  149.      * Set multiple options:
    150. 

  150.      *
    151. 

  151.      * ```
    152. 

  152.      * $this->Cookie->configKey('User', [
    153. 

  153.      *   'expires', '+3 months',
    154. 

  154.      *   'httpOnly' => true,
    155. 

  155.      * ]);
    156. 

  156.      * ```
    157. 

  157.      *
    158. 

  158.      * @param string $keyname The top level keyname to configure.
    159. 

  159.      * @param null|string|array $option Either the option name to set, or an array of options to set,
    160. 

  160.      *   or null to read config options for a given key.
    161. 

  161.      * @param string|null $value Either the value to set, or empty when $option is an array.
    162. 

  162.      * @return array|null
    163. 

  163.      */
    164. 

  164.     public function configKey($keyname, $option = null, $value = null)
    165. 

  165.     {
    166. 

  166.         if ($option === null) {
    167. 

  167.             $default = $this->_config;
    168. 

  168.             $local = isset($this->_keyConfig[$keyname]) ? $this->_keyConfig[$keyname] : [];
    169. 

  169.             return $local + $default;
    170. 

  170.         }
    171. 

  171.         if (!is_array($option)) {
    172. 

  172.             $option = [$option => $value];
    173. 

  173.         }
    174. 

  174.         $this->_keyConfig[$keyname] = $option;
    175. 

  175.         return null;
    176. 

  176.     }
    177. 

  177. 

  178.     /**
    179. 

  179.      * Events supported by this component.
    180. 

  180.      *
    181. 

  181.      * @return array
    182. 

  182.      */
    183. 

  183.     public function implementedEvents()
    184. 

  184.     {
    185. 

  185.         return [];
    186. 

  186.     }
    187. 

  187. 

  188.     /**
    189. 

  189.      * Write a value to the response cookies.
    190. 

  190.      *
    191. 

  191.      * You must use this method before any output is sent to the browser.
    192. 

  192.      * Failure to do so will result in header already sent errors.
    193. 

  193.      *
    194. 

  194.      * @param string|array $key Key for the value
    195. 

  195.      * @param mixed $value Value
    196. 

  196.      * @return void
    197. 

  197.      */
    198. 

  198.     public function write($key, $value = null)
    199. 

  199.     {
    200. 

  200.         if (!is_array($key)) {
    201. 

  201.             $key = [$key => $value];
    202. 

  202.         }
    203. 

  203. 

  204.         $keys = [];
    205. 

  205.         foreach ($key as $name => $value) {
    206. 

  206.             $this->_load($name);
    207. 

  207. 

  208.             $this->_values = Hash::insert($this->_values, $name, $value);
    209. 

  209.             $parts = explode('.', $name);
    210. 

  210.             $keys[] = $parts[0];
    211. 

  211.         }
    212. 

  212. 

  213.         foreach ($keys as $name) {
    214. 

  214.             $this->_write($name, $this->_values[$name]);
    215. 

  215.         }
    216. 

  216.     }
    217. 

  217. 

  218.     /**
    219. 

  219.      * Read the value of key path from request cookies.
    220. 

  220.      *
    221. 

  221.      * This method will also allow you to read cookies that have been written in this
    222. 

  222.      * request, but not yet sent to the client.
    223. 

  223.      *
    224. 

  224.      * @param string|null $key Key of the value to be obtained.
    225. 

  225.      * @return string or null, value for specified key
    226. 

  226.      */
    227. 

  227.     public function read($key = null)
    228. 

  228.     {
    229. 

  229.         $this->_load($key);
    230. 

  230.         return Hash::get($this->_values, $key);
    231. 

  231.     }
    232. 

  232. 

  233.     /**
    234. 

  234.      * Load the cookie data from the request and response objects.
    235. 

  235.      *
    236. 

  236.      * Based on the configuration data, cookies will be decrypted. When cookies
    237. 

  237.      * contain array data, that data will be expanded.
    238. 

  238.      *
    239. 

  239.      * @param string|array $key The key to load.
    240. 

  240.      * @return void
    241. 

  241.      */
    242. 

  242.     protected function _load($key)
    243. 

  243.     {
    244. 

  244.         $parts = explode('.', $key);
    245. 

  245.         $first = array_shift($parts);
    246. 

  246.         if (isset($this->_loaded[$first])) {
    247. 

  247.             return;
    248. 

  248.         }
    249. 

  249.         if (!isset($this->request->cookies[$first])) {
    250. 

  250.             return;
    251. 

  251.         }
    252. 

  252.         $cookie = $this->request->cookies[$first];
    253. 

  253.         $config = $this->configKey($first);
    254. 

  254.         $this->_loaded[$first] = true;
    255. 

  255.         $this->_values[$first] = $this->_decrypt($cookie, $config['encryption']);
    256. 

  256.     }
    257. 

  257. 

  258.     /**
    259. 

  259.      * Returns true if given key is set in the cookie.
    260. 

  260.      *
    261. 

  261.      * @param string|null $key Key to check for
    262. 

  262.      * @return bool True if the key exists
    263. 

  263.      */
    264. 

  264.     public function check($key = null)
    265. 

  265.     {
    266. 

  266.         if (empty($key)) {
    267. 

  267.             return false;
    268. 

  268.         }
    269. 

  269.         return $this->read($key) !== null;
    270. 

  270.     }
    271. 

  271. 

  272.     /**
    273. 

  273.      * Delete a cookie value
    274. 

  274.      *
    275. 

  275.      * You must use this method before any output is sent to the browser.
    276. 

  276.      * Failure to do so will result in header already sent errors.
    277. 

  277.      *
    278. 

  278.      * Deleting a top level key will delete all keys nested within that key.
    279. 

  279.      * For example deleting the `User` key, will also delete `User.email`.
    280. 

  280.      *
    281. 

  281.      * @param string $key Key of the value to be deleted
    282. 

  282.      * @return void
    283. 

  283.      */
    284. 

  284.     public function delete($key)
    285. 

  285.     {
    286. 

  286.         $this->_load($key);
    287. 

  287. 

  288.         $this->_values = Hash::remove($this->_values, $key);
    289. 

  289.         $parts = explode('.', $key);
    290. 

  290.         $top = $parts[0];
    291. 

  291. 

  292.         if (isset($this->_values[$top])) {
    293. 

  293.             $this->_write($top, $this->_values[$top]);
    294. 

  294.         } else {
    295. 

  295.             $this->_delete($top);
    296. 

  296.         }
    297. 

  297.     }
    298. 

  298. 

  299.     /**
    300. 

  300.      * Set cookie
    301. 

  301.      *
    302. 

  302.      * @param string $name Name for cookie
    303. 

  303.      * @param string $value Value for cookie
    304. 

  304.      * @return void
    305. 

  305.      */
    306. 

  306.     protected function _write($name, $value)
    307. 

  307.     {
    308. 

  308.         $config = $this->configKey($name);
    309. 

  309.         $expires = new Time($config['expires']);
    310. 

  310. 

  311.         $this->_response->cookie([
    312. 

  312.             'name' => $name,
    313. 

  313.             'value' => $this->_encrypt($value, $config['encryption']),
    314. 

  314.             'expire' => $expires->format('U'),
    315. 

  315.             'path' => $config['path'],
    316. 

  316.             'domain' => $config['domain'],
    317. 

  317.             'secure' => $config['secure'],
    318. 

  318.             'httpOnly' => $config['httpOnly']
    319. 

  319.         ]);
    320. 

  320.     }
    321. 

  321. 

  322.     /**
    323. 

  323.      * Sets a cookie expire time to remove cookie value.
    324. 

  324.      *
    325. 

  325.      * This is only done once all values in a cookie key have been
    326. 

  326.      * removed with delete.
    327. 

  327.      *
    328. 

  328.      * @param string $name Name of cookie
    329. 

  329.      * @return void
    330. 

  330.      */
    331. 

  331.     protected function _delete($name)
    332. 

  332.     {
    333. 

  333.         $config = $this->configKey($name);
    334. 

  334.         $expires = new Time('now');
    335. 

  335. 

  336.         $this->_response->cookie([
    337. 

  337.             'name' => $name,
    338. 

  338.             'value' => '',
    339. 

  339.             'expire' => $expires->format('U') - 42000,
    340. 

  340.             'path' => $config['path'],
    341. 

  341.             'domain' => $config['domain'],
    342. 

  342.             'secure' => $config['secure'],
    343. 

  343.             'httpOnly' => $config['httpOnly']
    344. 

  344.         ]);
    345. 

  345.     }
    346. 

  346. 

  347.     /**
    348. 

  348.      * Returns the encryption key to be used.
    349. 

  349.      *
    350. 

  350.      * @return string
    351. 

  351.      */
    352. 

  352.     protected function _getCookieEncryptionKey()
    353. 

  353.     {
    354. 

  354.         return $this->_config['key'];
    355. 

  355.     }
    356. 

  356. }
    357. 

  357.