gnu-social/classes/Session.php

<?php
/**
 * Table Definition for session
 *
 * StatusNet - the distributed open-source microblogging tool
 * Copyright (C) 2009, StatusNet, Inc.
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU Affero General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU Affero General Public License for more details.
 *
 * You should have received a copy of the GNU Affero General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 */

if (!defined('STATUSNET') && !defined('LACONICA')) { exit(1); }

require_once INSTALLDIR.'/classes/Memcached_DataObject.php';

class Session extends Managed_DataObject
{
    ###START_AUTOCODE
    /* the code below is auto generated do not remove the above tag */

    public $__table = 'session';                         // table name
    public $id;                              // varchar(32)  primary_key not_null
    public $session_data;                    // text()
    public $created;                         // datetime()   not_null
    public $modified;                        // timestamp()   not_null default_CURRENT_TIMESTAMP

    /* the code above is auto generated do not remove the tag below */
    ###END_AUTOCODE

    public static function schemaDef()
    {
        return array(
            'fields' => array(
                'id' => array('type' => 'varchar', 'length' => 32, 'not null' => true, 'description' => 'session ID'),
                'session_data' => array('type' => 'text', 'description' => 'session data'),
                'created' => array('type' => 'datetime', 'not null' => true, 'description' => 'date this record was created'),
                'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),
            ),
            'primary key' => array('id'),
            'indexes' => array(
                'session_modified_idx' => array('modified'),
            ),
        );
    }

    static function logdeb($msg)
    {
        if (common_config('sessions', 'debug')) {
            common_debug("Session: " . $msg);
        }
    }

    static function open($save_path, $session_name)
    {
        return true;
    }

    static function close()
    {
        return true;
    }

    static function read($id)
    {
        self::logdeb("Fetching session '$id'");

        $session = Session::getKV('id', $id);

        if (empty($session)) {
            self::logdeb("Couldn't find '$id'");
            return '';
        } else {
            self::logdeb("Found '$id', returning " .
                         strlen($session->session_data) .
                         " chars of data");
            return (string)$session->session_data;
        }
    }

    static function write($id, $session_data)
    {
        self::logdeb("Writing session '$id'");

        $session = Session::getKV('id', $id);

        if (empty($session)) {
            self::logdeb("'$id' doesn't yet exist; inserting.");
            $session = new Session();

            $session->id           = $id;
            $session->session_data = $session_data;
            $session->created      = common_sql_now();

            $result = $session->insert();

            if (!$result) {
                common_log_db_error($session, 'INSERT', __FILE__);
                self::logdeb("Failed to insert '$id'.");
            } else {
                self::logdeb("Successfully inserted '$id' (result = $result).");
            }
            return $result;
        } else {
            self::logdeb("'$id' already exists; updating.");
            if (strcmp($session->session_data, $session_data) == 0) {
                self::logdeb("Not writing session '$id'; unchanged");
                return true;
            } else {
                self::logdeb("Session '$id' data changed; updating");

                $orig = clone($session);

                $session->session_data = $session_data;

                $result = $session->update($orig);

                if (!$result) {
                    common_log_db_error($session, 'UPDATE', __FILE__);
                    self::logdeb("Failed to update '$id'.");
                } else {
                    self::logdeb("Successfully updated '$id' (result = $result).");
                }

                return $result;
            }
        }
    }

    static function destroy($id)
    {
        self::logdeb("Deleting session $id");

        $session = Session::getKV('id', $id);

        if (empty($session)) {
            self::logdeb("Can't find '$id' to delete.");
        } else {
            $result = $session->delete();
            if (!$result) {
                common_log_db_error($session, 'DELETE', __FILE__);
                self::logdeb("Failed to delete '$id'.");
            } else {
                self::logdeb("Successfully deleted '$id' (result = $result).");
            }
            return $result;
        }
    }

    static function gc($maxlifetime)
    {
        self::logdeb("garbage collection (maxlifetime = $maxlifetime)");

        $epoch = common_sql_date(time() - $maxlifetime);

        $ids = array();

        $session = new Session();
        $session->whereAdd('modified < "'.$epoch.'"');
        $session->selectAdd();
        $session->selectAdd('id');

        $limit = common_config('sessions', 'gc_limit');
        if ($limit > 0) {
            // On large sites, too many sessions to expire
            // at once will just result in failure.
            $session->limit($limit);
        }

        $session->find();

        while ($session->fetch()) {
            $ids[] = $session->id;
        }

        $session->free();

        self::logdeb("Found " . count($ids) . " ids to delete.");

        foreach ($ids as $id) {
            self::logdeb("Destroying session '$id'.");
            self::destroy($id);
        }
    }

    static function setSaveHandler()
    {
        self::logdeb("setting save handlers");
        $result = session_set_save_handler('Session::open', 'Session::close', 'Session::read',
                                           'Session::write', 'Session::destroy', 'Session::gc');
        self::logdeb("save handlers result = $result");

        // PHP 5.3 with APC ends up destroying a bunch of object stuff before the session
        // save handlers get called on request teardown.
        // Registering an explicit shutdown function should take care of this before
        // everything breaks on us.
        register_shutdown_function('Session::cleanup');
        
        return $result;
    }

    static function cleanup()
    {
        session_write_close();
    }
}
session storage 2009-06-27 13:15:59 +01:00			`<?php`
			`/**`
			`* Table Definition for session`
			`*`
a distributed -> the distributed 2009-08-25 23:14:12 +01:00			`* StatusNet - the distributed open-source microblogging tool`
change Laconica and Control Yourself to StatusNet in PHP files 2009-08-25 23:12:20 +01:00			`* Copyright (C) 2009, StatusNet, Inc.`
session storage 2009-06-27 13:15:59 +01:00			`*`
			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU Affero General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU Affero General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU Affero General Public License`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*/`

define LACONICA and accept LACONICA for backwards compatibility 2009-08-26 15:41:36 +01:00			`if (!defined('STATUSNET') && !defined('LACONICA')) { exit(1); }`
session storage 2009-06-27 13:15:59 +01:00
			`require_once INSTALLDIR.'/classes/Memcached_DataObject.php';`

move core schema to class files 2011-08-22 22:52:02 +01:00			`class Session extends Managed_DataObject`
session storage 2009-06-27 13:15:59 +01:00			`{`
			`###START_AUTOCODE`
			`/* the code below is auto generated do not remove the above tag */`

			`public $__table = 'session'; // table name`
			`public $id; // varchar(32) primary_key not_null`
			`public $session_data; // text()`
			`public $created; // datetime() not_null`
			`public $modified; // timestamp() not_null default_CURRENT_TIMESTAMP`

			`/* the code above is auto generated do not remove the tag below */`
			`###END_AUTOCODE`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00
move core schema to class files 2011-08-22 22:52:02 +01:00			`public static function schemaDef()`
			`{`
			`return array(`
			`'fields' => array(`
			`'id' => array('type' => 'varchar', 'length' => 32, 'not null' => true, 'description' => 'session ID'),`
			`'session_data' => array('type' => 'text', 'description' => 'session data'),`
			`'created' => array('type' => 'datetime', 'not null' => true, 'description' => 'date this record was created'),`
			`'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),`
			`),`
			`'primary key' => array('id'),`
			`'indexes' => array(`
			`'session_modified_idx' => array('modified'),`
			`),`
			`);`
			`}`

some debugging code for sessions 2009-06-27 15:09:21 +01:00			`static function logdeb($msg)`
			`{`
debug flag for sessions 2009-06-27 16:11:09 +01:00			`if (common_config('sessions', 'debug')) {`
			`common_debug("Session: " . $msg);`
			`}`
some debugging code for sessions 2009-06-27 15:09:21 +01:00			`}`

a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`static function open($save_path, $session_name)`
			`{`
			`return true;`
			`}`

			`static function close()`
			`{`
			`return true;`
			`}`

			`static function read($id)`
			`{`
some debugging code for sessions 2009-06-27 15:09:21 +01:00			`self::logdeb("Fetching session '$id'");`

The overloaded DB_DataObject function staticGet is now called getKV I used this hacky sed-command (run it from your GNU Social root, or change the first grep's path to where it actually lies) to do a rough fix on all ::staticGet calls and rename them to ::getKV sed -i -s -e '/DataObject::staticGet/I!s/::staticGet/::getKV/Ig' $(grep -R ::staticGet `pwd`/* \| grep -v -e '^extlib' \| grep -v DataObject:: \|grep -v "function staticGet"\|cut -d: -f1 \|sort \|uniq) If you're applying this, remember to change the Managed_DataObject and Memcached_DataObject function definitions of staticGet to getKV! This might of course take some getting used to, or modification fo StatusNet plugins, but the result is that all the static calls (to staticGet) are now properly made without breaking PHP Strict Standards. Standards are there to be followed (and they caused some very bad confusion when used with get_called_class) Reasonably any plugin or code that tests for the definition of 'GNUSOCIAL' or similar will take this change into consideration. 2013-08-18 12:04:58 +01:00			`$session = Session::getKV('id', $id);`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00
			`if (empty($session)) {`
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`self::logdeb("Couldn't find '$id'");`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`return '';`
			`} else {`
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`self::logdeb("Found '$id', returning " .`
			`strlen($session->session_data) .`
			`" chars of data");`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`return (string)$session->session_data;`
			`}`
			`}`

			`static function write($id, $session_data)`
			`{`
some debugging code for sessions 2009-06-27 15:09:21 +01:00			`self::logdeb("Writing session '$id'");`

The overloaded DB_DataObject function staticGet is now called getKV I used this hacky sed-command (run it from your GNU Social root, or change the first grep's path to where it actually lies) to do a rough fix on all ::staticGet calls and rename them to ::getKV sed -i -s -e '/DataObject::staticGet/I!s/::staticGet/::getKV/Ig' $(grep -R ::staticGet `pwd`/* \| grep -v -e '^extlib' \| grep -v DataObject:: \|grep -v "function staticGet"\|cut -d: -f1 \|sort \|uniq) If you're applying this, remember to change the Managed_DataObject and Memcached_DataObject function definitions of staticGet to getKV! This might of course take some getting used to, or modification fo StatusNet plugins, but the result is that all the static calls (to staticGet) are now properly made without breaking PHP Strict Standards. Standards are there to be followed (and they caused some very bad confusion when used with get_called_class) Reasonably any plugin or code that tests for the definition of 'GNUSOCIAL' or similar will take this change into consideration. 2013-08-18 12:04:58 +01:00			`$session = Session::getKV('id', $id);`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00
			`if (empty($session)) {`
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`self::logdeb("'$id' doesn't yet exist; inserting.");`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`$session = new Session();`

			`$session->id = $id;`
			`$session->session_data = $session_data;`
			`$session->created = common_sql_now();`

additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`$result = $session->insert();`

			`if (!$result) {`
			`common_log_db_error($session, 'INSERT', __FILE__);`
			`self::logdeb("Failed to insert '$id'.");`
			`} else {`
			`self::logdeb("Successfully inserted '$id' (result = $result).");`
			`}`
			`return $result;`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`} else {`
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`self::logdeb("'$id' already exists; updating.");`
don't write session if it's unchanged 2009-10-09 15:39:56 +01:00			`if (strcmp($session->session_data, $session_data) == 0) {`
			`self::logdeb("Not writing session '$id'; unchanged");`
			`return true;`
			`} else {`
			`self::logdeb("Session '$id' data changed; updating");`

			`$orig = clone($session);`

			`$session->session_data = $session_data;`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`$result = $session->update($orig);`

			`if (!$result) {`
			`common_log_db_error($session, 'UPDATE', __FILE__);`
			`self::logdeb("Failed to update '$id'.");`
			`} else {`
			`self::logdeb("Successfully updated '$id' (result = $result).");`
			`}`

			`return $result;`
don't write session if it's unchanged 2009-10-09 15:39:56 +01:00			`}`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`}`
			`}`

			`static function destroy($id)`
			`{`
some debugging code for sessions 2009-06-27 15:09:21 +01:00			`self::logdeb("Deleting session $id");`

The overloaded DB_DataObject function staticGet is now called getKV I used this hacky sed-command (run it from your GNU Social root, or change the first grep's path to where it actually lies) to do a rough fix on all ::staticGet calls and rename them to ::getKV sed -i -s -e '/DataObject::staticGet/I!s/::staticGet/::getKV/Ig' $(grep -R ::staticGet `pwd`/* \| grep -v -e '^extlib' \| grep -v DataObject:: \|grep -v "function staticGet"\|cut -d: -f1 \|sort \|uniq) If you're applying this, remember to change the Managed_DataObject and Memcached_DataObject function definitions of staticGet to getKV! This might of course take some getting used to, or modification fo StatusNet plugins, but the result is that all the static calls (to staticGet) are now properly made without breaking PHP Strict Standards. Standards are there to be followed (and they caused some very bad confusion when used with get_called_class) Reasonably any plugin or code that tests for the definition of 'GNUSOCIAL' or similar will take this change into consideration. 2013-08-18 12:04:58 +01:00			`$session = Session::getKV('id', $id);`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`if (empty($session)) {`
			`self::logdeb("Can't find '$id' to delete.");`
			`} else {`
			`$result = $session->delete();`
			`if (!$result) {`
			`common_log_db_error($session, 'DELETE', __FILE__);`
			`self::logdeb("Failed to delete '$id'.");`
			`} else {`
			`self::logdeb("Successfully deleted '$id' (result = $result).");`
			`}`
			`return $result;`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`}`
			`}`

			`static function gc($maxlifetime)`
			`{`
some debugging code for sessions 2009-06-27 15:09:21 +01:00			`self::logdeb("garbage collection (maxlifetime = $maxlifetime)");`

correctly gc sessions 2009-07-21 19:31:34 +01:00			`$epoch = common_sql_date(time() - $maxlifetime);`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00
don't delete during select 2009-08-02 16:18:41 +01:00			`$ids = array();`

a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`$session = new Session();`
correctly gc sessions 2009-07-21 19:31:34 +01:00			`$session->whereAdd('modified < "'.$epoch.'"');`
don't delete during select 2009-08-02 16:18:41 +01:00			`$session->selectAdd();`
			`$session->selectAdd('id');`
some debugging code for sessions 2009-06-27 15:09:21 +01:00
Add $config['sessions']['gc_limit'] to limit how much work we do in each session GC; defaulting to killing 1000 sessions at a time. 2011-01-27 20:07:29 +00:00			`$limit = common_config('sessions', 'gc_limit');`
			`if ($limit > 0) {`
			`// On large sites, too many sessions to expire`
			`// at once will just result in failure.`
			`$session->limit($limit);`
			`}`

GC sessions one by one to make sure memcached gets cleared 2009-08-02 15:34:23 +01:00			`$session->find();`

			`while ($session->fetch()) {`
don't delete during select 2009-08-02 16:18:41 +01:00			`$ids[] = $session->id;`
GC sessions one by one to make sure memcached gets cleared 2009-08-02 15:34:23 +01:00			`}`

			`$session->free();`
don't delete during select 2009-08-02 16:18:41 +01:00
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`self::logdeb("Found " . count($ids) . " ids to delete.");`

don't delete during select 2009-08-02 16:18:41 +01:00			`foreach ($ids as $id) {`
additional debugging data for Sessions 2010-01-28 18:53:28 +00:00			`self::logdeb("Destroying session '$id'.");`
don't delete during select 2009-08-02 16:18:41 +01:00			`self::destroy($id);`
			`}`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`}`

			`static function setSaveHandler()`
			`{`
some debugging code for sessions 2009-06-27 15:09:21 +01:00			`self::logdeb("setting save handlers");`
			`$result = session_set_save_handler('Session::open', 'Session::close', 'Session::read',`
			`'Session::write', 'Session::destroy', 'Session::gc');`
			`self::logdeb("save handlers result = $result");`
Workaround for locally-handled sessions breaking on PHP 5.3 with APC enabled. Big thanks to the folks at http://pecl.php.net/bugs/bug.php?id=16745 for the secret juju! Classes were being torn down before session save handlers got called at the end of the request, which exploded with complaints about being unable to find various classes. Registering a shutdown function lets us explicitly close out the session before everything gets torn down. 2010-12-10 22:08:36 +00:00
			`// PHP 5.3 with APC ends up destroying a bunch of object stuff before the session`
			`// save handlers get called on request teardown.`
			`// Registering an explicit shutdown function should take care of this before`
			`// everything breaks on us.`
			`register_shutdown_function('Session::cleanup');`

some debugging code for sessions 2009-06-27 15:09:21 +01:00			`return $result;`
a memcached_dataobject class for saving sessions 2009-06-27 13:48:22 +01:00			`}`
Workaround for locally-handled sessions breaking on PHP 5.3 with APC enabled. Big thanks to the folks at http://pecl.php.net/bugs/bug.php?id=16745 for the secret juju! Classes were being torn down before session save handlers got called at the end of the request, which exploded with complaints about being unable to find various classes. Registering a shutdown function lets us explicitly close out the session before everything gets torn down. 2010-12-10 22:08:36 +00:00
			`static function cleanup()`
			`{`
			`session_write_close();`
			`}`
session storage 2009-06-27 13:15:59 +01:00			`}`