|
|
|
<?
|
|
|
|
// Original from http://www.daniweb.com/code/snippet43.html
|
|
|
|
|
|
|
|
require_once "config.php";
|
|
|
|
require_once "db.php";
|
|
|
|
|
|
|
|
$session_expire = 3600; //seconds
|
|
|
|
|
|
|
|
ini_set("session.gc_probability", 50);
|
|
|
|
ini_set("session.name", "ttrss_sid");
|
|
|
|
ini_set("session.use_only_cookies", true);
|
|
|
|
|
|
|
|
function open ($s, $n) {
|
|
|
|
|
|
|
|
global $session_connection;
|
|
|
|
|
|
|
|
$session_connection = db_connect(DB_HOST, DB_USER, DB_PASS, DB_NAME);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
function read ($id){
|
|
|
|
|
|
|
|
global $session_connection,$session_read;
|
|
|
|
|
|
|
|
$ip_address = $_SERVER["REMOTE_ADDR"];
|
|
|
|
|
|
|
|
if (SESSION_CHECK_ADDRESS) {
|
|
|
|
$address_check_qpart = " AND ip_address = '$ip_address'";
|
|
|
|
}
|
|
|
|
|
|
|
|
$query = "SELECT data FROM ttrss_sessions WHERE id='$id' $address_check_qpart";
|
|
|
|
|
|
|
|
$res = db_query($session_connection, $query);
|
|
|
|
|
|
|
|
if (db_num_rows($res) != 1) {
|
|
|
|
return "";
|
|
|
|
} else {
|
|
|
|
$session_read = db_fetch_assoc($res);
|
|
|
|
$session_read["data"] = base64_decode($session_read["data"]);
|
|
|
|
return $session_read["data"];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
function write ($id, $data) {
|
|
|
|
|
|
|
|
if (! $data) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
global $session_connection, $session_read, $session_expire;
|
|
|
|
|
|
|
|
$expire = time() + $session_expire;
|
|
|
|
|
|
|
|
$data = db_escape_string(base64_encode($data), $session_connection);
|
|
|
|
|
|
|
|
$ip_address = $_SERVER["REMOTE_ADDR"];
|
|
|
|
|
|
|
|
if (SESSION_CHECK_ADDRESS) {
|
|
|
|
$address_check_qpart = " AND ip_address = '$ip_address'";
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($session_read) {
|
|
|
|
$query = "UPDATE ttrss_sessions SET data='$data',
|
|
|
|
expire='$expire' WHERE id='$id' $address_check_qpart";
|
|
|
|
} else {
|
|
|
|
$query = "INSERT INTO ttrss_sessions (id, data, expire, ip_address)
|
|
|
|
VALUES ('$id', '$data', '$expire', '$ip_address')";
|
|
|
|
}
|
|
|
|
|
|
|
|
db_query($session_connection, $query);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
function close () {
|
|
|
|
|
|
|
|
global $session_connection;
|
|
|
|
|
|
|
|
db_close($session_connection);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
function destroy ($id) {
|
|
|
|
|
|
|
|
global $session_connection;
|
|
|
|
|
|
|
|
$ip_address = $_SERVER["REMOTE_ADDR"];
|
|
|
|
|
|
|
|
if (SESSION_CHECK_ADDRESS) {
|
|
|
|
$address_check_qpart = " AND ip_address = '$ip_address'";
|
|
|
|
}
|
|
|
|
|
|
|
|
$query = "DELETE FROM ttrss_sessions WHERE id = '$id' $address_check_qpart";
|
|
|
|
|
|
|
|
db_query($session_connection, $query);
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
function gc ($expire) {
|
|
|
|
|
|
|
|
global $session_connection;
|
|
|
|
|
|
|
|
$query = "DELETE FROM ttrss_sessions WHERE expire < " . time();
|
|
|
|
|
|
|
|
db_query($session_connection, $query);
|
|
|
|
}
|
|
|
|
|
|
|
|
if (DATABASE_BACKED_SESSIONS) {
|
|
|
|
session_set_save_handler("open", "close", "read", "write", "destroy", "gc");
|
|
|
|
}
|
|
|
|
|
|
|
|
session_start();
|
|
|
|
?>
|