alpcentaur
/
sncf-docker-compose
mirror of https://git.42l.fr/alpcentaur/sncf-docker-compose.git
1
0
Fork 0
Code Issues 0 Projects 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
20 MiB
Tree: df7e20de4b
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'df7e20de4b'
${ noResults }
sncf-docker-compose/docker/overlays/nextcloud/html/lib/private/Session/CryptoSessionData.php

216 lines
5.1 KiB
Raw Normal View History

first commit
3 years ago
 
  1. <?php
  2. 

  3. declare(strict_types=1);
  4. 

  5. /**
  6.  * @copyright Copyright (c) 2016, ownCloud, Inc.
  7.  *
  8.  * @author Christoph Wurst <christoph@winzerhof-wurst.at>
  9.  * @author Joas Schilling <coding@schilljs.com>
  10.  * @author Lukas Reschke <lukas@statuscode.ch>
  11.  * @author Morris Jobke <hey@morrisjobke.de>
  12.  * @author Roeland Jago Douma <roeland@famdouma.nl>
  13.  * @author Victor Dubiniuk <dubiniuk@owncloud.com>
  14.  *
  15.  * @license AGPL-3.0
  16.  *
  17.  * This code is free software: you can redistribute it and/or modify
  18.  * it under the terms of the GNU Affero General Public License, version 3,
  19.  * as published by the Free Software Foundation.
  20.  *
  21.  * This program is distributed in the hope that it will be useful,
  22.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  23.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
  24.  * GNU Affero General Public License for more details.
  25.  *
  26.  * You should have received a copy of the GNU Affero General Public License, version 3,
  27.  * along with this program. If not, see <http://www.gnu.org/licenses/>
  28.  *
  29.  */
  30. 

  31. namespace OC\Session;
  32. 

  33. use OCP\ISession;
  34. use OCP\Security\ICrypto;
  35. use OCP\Session\Exceptions\SessionNotAvailableException;
  36. 

  37. /**
  38.  * Class CryptoSessionData
  39.  *
  40.  * @package OC\Session
  41.  */
  42. class CryptoSessionData implements \ArrayAccess, ISession {
  43. 	/** @var ISession */
  44. 	protected $session;
  45. 	/** @var \OCP\Security\ICrypto */
  46. 	protected $crypto;
  47. 	/** @var string */
  48. 	protected $passphrase;
  49. 	/** @var array */
  50. 	protected $sessionValues;
  51. 	/** @var bool */
  52. 	protected $isModified = false;
  53. 	public const encryptedSessionName = 'encrypted_session_data';
  54. 

  55. 	/**
  56. 	 * @param ISession $session
  57. 	 * @param ICrypto $crypto
  58. 	 * @param string $passphrase
  59. 	 */
  60. 	public function __construct(ISession $session,
  61. 								ICrypto $crypto,
  62. 								string $passphrase) {
  63. 		$this->crypto = $crypto;
  64. 		$this->session = $session;
  65. 		$this->passphrase = $passphrase;
  66. 		$this->initializeSession();
  67. 	}
  68. 

  69. 	/**
  70. 	 * Close session if class gets destructed
  71. 	 */
  72. 	public function __destruct() {
  73. 		try {
  74. 			$this->close();
  75. 		} catch (SessionNotAvailableException $e) {
  76. 			// This exception can occur if session is already closed

  77. 			// So it is safe to ignore it and let the garbage collector to proceed

  78. 		}
  79. 	}
  80. 

  81. 	protected function initializeSession() {
  82. 		$encryptedSessionData = $this->session->get(self::encryptedSessionName) ?: '';
  83. 		try {
  84. 			$this->sessionValues = json_decode(
  85. 				$this->crypto->decrypt($encryptedSessionData, $this->passphrase),
  86. 				true
  87. 			);
  88. 		} catch (\Exception $e) {
  89. 			$this->sessionValues = [];
  90. 		}
  91. 	}
  92. 

  93. 	/**
  94. 	 * Set a value in the session
  95. 	 *
  96. 	 * @param string $key
  97. 	 * @param mixed $value
  98. 	 */
  99. 	public function set(string $key, $value) {
  100. 		$this->sessionValues[$key] = $value;
  101. 		$this->isModified = true;
  102. 	}
  103. 

  104. 	/**
  105. 	 * Get a value from the session
  106. 	 *
  107. 	 * @param string $key
  108. 	 * @return string|null Either the value or null
  109. 	 */
  110. 	public function get(string $key) {
  111. 		if (isset($this->sessionValues[$key])) {
  112. 			return $this->sessionValues[$key];
  113. 		}
  114. 

  115. 		return null;
  116. 	}
  117. 

  118. 	/**
  119. 	 * Check if a named key exists in the session
  120. 	 *
  121. 	 * @param string $key
  122. 	 * @return bool
  123. 	 */
  124. 	public function exists(string $key): bool {
  125. 		return isset($this->sessionValues[$key]);
  126. 	}
  127. 

  128. 	/**
  129. 	 * Remove a $key/$value pair from the session
  130. 	 *
  131. 	 * @param string $key
  132. 	 */
  133. 	public function remove(string $key) {
  134. 		$this->isModified = true;
  135. 		unset($this->sessionValues[$key]);
  136. 		$this->session->remove(self::encryptedSessionName);
  137. 	}
  138. 

  139. 	/**
  140. 	 * Reset and recreate the session
  141. 	 */
  142. 	public function clear() {
  143. 		$requesttoken = $this->get('requesttoken');
  144. 		$this->sessionValues = [];
  145. 		if ($requesttoken !== null) {
  146. 			$this->set('requesttoken', $requesttoken);
  147. 		}
  148. 		$this->isModified = true;
  149. 		$this->session->clear();
  150. 	}
  151. 

  152. 	/**
  153. 	 * Wrapper around session_regenerate_id
  154. 	 *
  155. 	 * @param bool $deleteOldSession Whether to delete the old associated session file or not.
  156. 	 * @param bool $updateToken Wheater to update the associated auth token
  157. 	 * @return void
  158. 	 */
  159. 	public function regenerateId(bool $deleteOldSession = true, bool $updateToken = false) {
  160. 		$this->session->regenerateId($deleteOldSession, $updateToken);
  161. 	}
  162. 

  163. 	/**
  164. 	 * Wrapper around session_id
  165. 	 *
  166. 	 * @return string
  167. 	 * @throws SessionNotAvailableException
  168. 	 * @since 9.1.0
  169. 	 */
  170. 	public function getId(): string {
  171. 		return $this->session->getId();
  172. 	}
  173. 

  174. 	/**
  175. 	 * Close the session and release the lock, also writes all changed data in batch
  176. 	 */
  177. 	public function close() {
  178. 		if ($this->isModified) {
  179. 			$encryptedValue = $this->crypto->encrypt(json_encode($this->sessionValues), $this->passphrase);
  180. 			$this->session->set(self::encryptedSessionName, $encryptedValue);
  181. 			$this->isModified = false;
  182. 		}
  183. 		$this->session->close();
  184. 	}
  185. 

  186. 	/**
  187. 	 * @param mixed $offset
  188. 	 * @return bool
  189. 	 */
  190. 	public function offsetExists($offset): bool {
  191. 		return $this->exists($offset);
  192. 	}
  193. 

  194. 	/**
  195. 	 * @param mixed $offset
  196. 	 * @return mixed
  197. 	 */
  198. 	public function offsetGet($offset) {
  199. 		return $this->get($offset);
  200. 	}
  201. 

  202. 	/**
  203. 	 * @param mixed $offset
  204. 	 * @param mixed $value
  205. 	 */
  206. 	public function offsetSet($offset, $value) {
  207. 		$this->set($offset, $value);
  208. 	}
  209. 

  210. 	/**
  211. 	 * @param mixed $offset
  212. 	 */
  213. 	public function offsetUnset($offset) {
  214. 		$this->remove($offset);
  215. 	}
  216. }