You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.

77 lines
1.9 KiB

3 years ago
  1. <?php
  2. declare(strict_types=1);
  3. /**
  4. * @copyright Copyright (c) 2018, Roeland Jago Douma <roeland@famdouma.nl>
  5. *
  6. * @author Christoph Wurst <christoph@winzerhof-wurst.at>
  7. * @author Roeland Jago Douma <roeland@famdouma.nl>
  8. *
  9. * @license GNU AGPL version 3 or any later version
  10. *
  11. * This program is free software: you can redistribute it and/or modify
  12. * it under the terms of the GNU Affero General Public License as
  13. * published by the Free Software Foundation, either version 3 of the
  14. * License, or (at your option) any later version.
  15. *
  16. * This program is distributed in the hope that it will be useful,
  17. * but WITHOUT ANY WARRANTY; without even the implied warranty of
  18. * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  19. * GNU Affero General Public License for more details.
  20. *
  21. * You should have received a copy of the GNU Affero General Public License
  22. * along with this program. If not, see <http://www.gnu.org/licenses/>.
  23. *
  24. */
  25. namespace OC\Http;
  26. class CookieHelper {
  27. public const SAMESITE_NONE = 0;
  28. public const SAMESITE_LAX = 1;
  29. public const SAMESITE_STRICT = 2;
  30. public static function setCookie(string $name,
  31. string $value = '',
  32. int $maxAge = 0,
  33. string $path = '',
  34. string $domain = '',
  35. bool $secure = false,
  36. bool $httponly = false,
  37. int $samesite = self::SAMESITE_NONE) {
  38. $header = sprintf(
  39. 'Set-Cookie: %s=%s',
  40. $name,
  41. urlencode($value)
  42. );
  43. if ($path !== '') {
  44. $header .= sprintf('; Path=%s', $path);
  45. }
  46. if ($domain !== '') {
  47. $header .= sprintf('; Domain=%s', $domain);
  48. }
  49. if ($maxAge > 0) {
  50. $header .= sprintf('; Max-Age=%d', $maxAge);
  51. }
  52. if ($secure) {
  53. $header .= '; Secure';
  54. }
  55. if ($httponly) {
  56. $header .= '; HttpOnly';
  57. }
  58. if ($samesite === self::SAMESITE_LAX) {
  59. $header .= '; SameSite=Lax';
  60. } elseif ($samesite === self::SAMESITE_STRICT) {
  61. $header .= '; SameSite=Strict';
  62. }
  63. header($header, false);
  64. }
  65. }