Mercurial > hg > fapweb
comparison msite.inc.php @ 7:d76020022881
Various fixes, cleanups and improvements.
| author | Matti Hamalainen <ccr@tnsp.org> |
|---|---|
| date | Wed, 05 Dec 2012 09:35:30 +0200 |
| parents | 76c3b89d7b11 |
| children | 4c5f651aa107 |
comparison
equal
deleted
inserted
replaced
| 6:2a9267ad0ceb | 7:d76020022881 |
|---|---|
| 28 | 28 |
| 29 | 29 |
| 30 function stSessionExpire($type) | 30 function stSessionExpire($type) |
| 31 { | 31 { |
| 32 // Check for session expiration | 32 // Check for session expiration |
| 33 if (!isset($_SESSION["expires"]) || $_SESSION["expires"] < time()) | 33 if (!isset($_SESSION["expires"])) |
| 34 return FALSE; | 34 { |
| 35 if (stGetSetting("debug")) error_log("Session $type expires due to expire time not set."); | |
| 36 return FALSE; | |
| 37 } | |
| 38 | |
| 39 if ($_SESSION["expires"] < time()) | |
| 40 { | |
| 41 if (stGetSetting("debug")) error_log("Session $type / ".session_id()." expires due to timeout ".$_SESSION["expires"]." < ".time()); | |
| 42 return FALSE; | |
| 43 } | |
| 35 | 44 |
| 36 // Add more time to expiration | 45 // Add more time to expiration |
| 46 if (stGetSetting("debug")) error_log("Adding more time to $type session ".session_id()." :: ".stGetSetting($type)); | |
| 37 $_SESSION["expires"] = time() + stGetSetting($type); | 47 $_SESSION["expires"] = time() + stGetSetting($type); |
| 38 return TRUE; | 48 return TRUE; |
| 39 } | 49 } |
| 40 | 50 |
| 41 | 51 |
| 42 function stAdmSessionAuth() | |
| 43 { | |
| 44 if (@session_start() === TRUE && isset($_SESSION["admPassword"]) && | |
| 45 $_SESSION["admPassword"] == stGetSetting("admPassword")) | |
| 46 return stSessionExpire("admTimeout"); | |
| 47 else | |
| 48 return FALSE; | |
| 49 } | |
| 50 | |
| 51 | |
| 52 function stAdmSessionStart() | |
| 53 { | |
| 54 if (@session_start() === TRUE) | |
| 55 { | |
| 56 $_SESSION["admPassword"] = stGetSetting("admPassword"); | |
| 57 $_SESSION["expires"] = time() + stGetSetting("admTimeout"); | |
| 58 return TRUE; | |
| 59 } | |
| 60 else | |
| 61 return FALSE; | |
| 62 } | |
| 63 | |
| 64 | |
| 65 function stVoteSessionAuth() | |
| 66 { | |
| 67 if (@session_start() === TRUE && isset($_SESSION["key"]) && isset($_SESSION["votes"])) | |
| 68 return stSessionExpire("voteTimeout"); | |
| 69 else | |
| 70 return FALSE; | |
| 71 } | |
| 72 | |
| 73 | |
| 74 function stVoteSessionStart() | |
| 75 { | |
| 76 if (@session_start() === TRUE) | |
| 77 { | |
| 78 $_SESSION["expires"] = time() + stGetSetting("voteTimeout"); | |
| 79 return TRUE; | |
| 80 } | |
| 81 else | |
| 82 return FALSE; | |
| 83 } | |
| 84 | |
| 85 | |
| 86 function stSetVoteStatus($st) | |
| 87 { | |
| 88 $_SESSION["status"] = $st; | |
| 89 } | |
| 90 | |
| 91 | |
| 92 function stSessionEnd($ok) | 52 function stSessionEnd($ok) |
| 93 { | 53 { |
| 54 if (stGetSetting("debug")) error_log("END session ".$_SESSION["type"]." / ".$_SESSION["expires"]." == ".$ok); | |
| 94 $_SESSION = array(); | 55 $_SESSION = array(); |
| 95 if (ini_get("session.use_cookies")) | 56 if (ini_get("session.use_cookies")) |
| 96 { | 57 { |
| 97 $params = session_get_cookie_params(); | 58 $params = session_get_cookie_params(); |
| 98 setcookie(session_name(), "", time() - 242000, | 59 setcookie(session_name(), "", time() - 242000, |
| 100 $params["secure"], $params["httponly"] | 61 $params["secure"], $params["httponly"] |
| 101 ); | 62 ); |
| 102 } | 63 } |
| 103 @session_destroy(); | 64 @session_destroy(); |
| 104 return $ok; | 65 return $ok; |
| 66 } | |
| 67 | |
| 68 | |
| 69 function stAdmSessionAuth() | |
| 70 { | |
| 71 if (@session_start() === TRUE && isset($_SESSION["admPassword"]) && | |
| 72 $_SESSION["admPassword"] == stGetSetting("admPassword")) | |
| 73 { | |
| 74 if (stGetSetting("debug")) error_log("AUTH admin session."); | |
| 75 return stSessionExpire("admTimeout"); | |
| 76 } | |
| 77 else | |
| 78 return FALSE; | |
| 79 } | |
| 80 | |
| 81 | |
| 82 function stAdmSessionStart() | |
| 83 { | |
| 84 if (@session_start() === TRUE) | |
| 85 { | |
| 86 if (stGetSetting("debug")) error_log("START admin session OK."); | |
| 87 $_SESSION["type"] = "admin"; | |
| 88 $_SESSION["admPassword"] = stGetSetting("admPassword"); | |
| 89 $_SESSION["expires"] = time() + stGetSetting("admTimeout"); | |
| 90 return TRUE; | |
| 91 } | |
| 92 else | |
| 93 { | |
| 94 if (stGetSetting("debug")) error_log("START admin session --FAILED--"); | |
| 95 return FALSE; | |
| 96 } | |
| 97 } | |
| 98 | |
| 99 | |
| 100 function stVoteSessionAuth() | |
| 101 { | |
| 102 if (@session_start() === TRUE && isset($_SESSION["key"]) && isset($_SESSION["votes"])) | |
| 103 return stSessionExpire("voteTimeout"); | |
| 104 else | |
| 105 return FALSE; | |
| 106 } | |
| 107 | |
| 108 | |
| 109 function stVoteSessionStart() | |
| 110 { | |
| 111 if (@session_start() === TRUE) | |
| 112 { | |
| 113 $_SESSION["type"] = "vote"; | |
| 114 $_SESSION["expires"] = time() + stGetSetting("voteTimeout"); | |
| 115 return TRUE; | |
| 116 } | |
| 117 else | |
| 118 return FALSE; | |
| 119 } | |
| 120 | |
| 121 | |
| 122 function stSetVoteStatus($st) | |
| 123 { | |
| 124 $_SESSION["status"] = $st; | |
| 105 } | 125 } |
| 106 | 126 |
| 107 | 127 |
| 108 function stGetSetting($name) | 128 function stGetSetting($name) |
| 109 { | 129 { |