ILIAS  release_10 Revision v10.1-43-ga1241a92c2f
class.ilSessionControl.php
Go to the documentation of this file.
1 <?php
2 
19 declare(strict_types=1);
20 
24 class ilSessionControl
25 {
30  public const DEFAULT_MIN_IDLE = 15;
31  public const DEFAULT_ALLOW_CLIENT_MAINTENANCE = 1;
32 
38  private static array $setting_fields = array(
39  'session_allow_client_maintenance',
40  );
41 
46  private const SESSION_TYPE_UNKNOWN = 0;
47  private const SESSION_TYPE_SYSTEM = 1;
48  private const SESSION_TYPE_ADMIN = 2;
49  private const SESSION_TYPE_USER = 3;
50  private const SESSION_TYPE_ANONYM = 4;
51 
52  private const SESSION_TYPE_KEY = "SessionType";
59  public static array $session_types_controlled = array(
60  self::SESSION_TYPE_USER,
61  self::SESSION_TYPE_ANONYM
62  );
63 
70  private static array $session_types_not_controlled = array(
71  self::SESSION_TYPE_UNKNOWN,
72  self::SESSION_TYPE_SYSTEM,
73  self::SESSION_TYPE_ADMIN
74  );
75 
81  public static function handleLoginEvent(string $a_login, ilAuthSession $auth_session): bool
82  {
83  global $DIC;
84 
85  $ilSetting = $DIC['ilSetting'];
86 
87  $user_id = ilObjUser::_lookupId($a_login);
88 
89  // we need the session type for the session statistics
90  // regardless of the current session handling type
91  switch (true) {
92  case isset($_ENV['SHELL']):
93  $type = self::SESSION_TYPE_SYSTEM;
94  break;
95 
96  case $user_id === ANONYMOUS_USER_ID:
97  $type = self::SESSION_TYPE_ANONYM;
98  break;
99 
100  case self::checkAdministrationPermission($user_id):
101  $type = self::SESSION_TYPE_ADMIN;
102  break;
103 
104  default:
105  $type = self::SESSION_TYPE_USER;
106  break;
107  }
108 
109  ilSession::set(self::SESSION_TYPE_KEY, $type);
110  self::debug(__METHOD__ . " --> update sessions type to (" . $type . ")");
111 
112  return true;
113  }
114 
118  public static function handleLogoutEvent(): void
119  {
120  }
121 
125  public static function getExistingSessionCount(array $a_types): int
126  {
127  global $DIC;
128 
129  $ilDB = $DIC['ilDB'];
130 
131  $ts = time();
132 
133  $query = "SELECT count(session_id) AS num_sessions FROM usr_session " .
134  "WHERE expires > %s " .
135  "AND " . $ilDB->in('type', $a_types, false, 'integer');
136 
137  $res = $ilDB->queryF($query, array('integer'), array($ts));
138  return (int) $res->fetchRow(ilDBConstants::FETCHMODE_OBJECT)->num_sessions;
139  }
140 
147  private static function isValidSession(string $a_sid): bool
148  {
149  global $DIC;
150 
151  $ilDB = $DIC['ilDB'];
152 
153  $query = "SELECT session_id, expires FROM usr_session " .
154  "WHERE session_id = %s";
155 
156  $res = $ilDB->queryF($query, array('text'), array($a_sid));
157 
158  $ts = time();
159 
160  $sessions = array();
161 
162  while ($row = $ilDB->fetchAssoc($res)) {
163  if ($row['expires'] > $ts) {
164  self::debug(__METHOD__ . ' --> Found a valid session with id (' . $a_sid . ')');
165  $sessions[] = $row;
166  } else {
167  self::debug(__METHOD__ . ' --> Found an expired session with id (' . $a_sid . ')');
168  }
169  }
170 
171  if (count($sessions) === 1) {
172  self::debug(__METHOD__ . ' --> Exact one valid session found for session id (' . $a_sid . ')');
173 
174  return true;
175  }
176 
177  if (count($sessions) > 1) {
178  self::debug(__METHOD__ . ' --> Strange!!! More than one sessions found for given session id! (' . $a_sid . ')');
179  } else {
180  self::debug(__METHOD__ . ' --> No valid session found for session id (' . $a_sid . ')');
181  }
182 
183  return false;
184  }
185 
189  private static function removeSessionCookie(): void
190  {
191  ilUtil::setCookie(session_name(), 'deleted', true, true);
192  self::debug('Session cookie has been removed');
193  }
194 
202  private static function checkAdministrationPermission(int $a_user_id): bool
203  {
204  if (!$a_user_id) {
205  return false;
206  }
207 
208  global $DIC;
209 
210  $rbacsystem = $DIC['rbacsystem'];
211 
212  $access = $rbacsystem->checkAccessOfUser(
213  $a_user_id,
214  'read,visible',
215  SYSTEM_FOLDER_ID
216  );
217 
218  return $access;
219  }
220 
226  private static function debug(string $a_debug_log_message): void
227  {
228  global $DIC;
229 
230  $logger = $DIC->logger()->auth();
231 
232  $logger->debug($a_debug_log_message);
233  }
234 
240  public static function getSettingFields(): array
241  {
242  return self::$setting_fields;
243  }
244 }
ilSessionControl\$setting_fields
static array $setting_fields
all fieldnames that are saved in settings table
Definition: class.ilSessionControl.php:38
$res
$res
Definition: ltiservices.php:69
ANONYMOUS_USER_ID
const ANONYMOUS_USER_ID
Definition: constants.php:27
ilSessionControl\removeSessionCookie
static removeSessionCookie()
removes a session cookie, so it is not sent by browser anymore
Definition: class.ilSessionControl.php:189
ilSessionControl\checkAdministrationPermission
static checkAdministrationPermission(int $a_user_id)
checks wether a given user login relates to an user with administrative permissions ...
Definition: class.ilSessionControl.php:202
ilObjUser\_lookupId
static _lookupId($a_user_str)
Definition: class.ilObjUser.php:694
ilSessionControl\getSettingFields
static getSettingFields()
returns the array of setting fields
Definition: class.ilSessionControl.php:240
SYSTEM_FOLDER_ID
const SYSTEM_FOLDER_ID
Definition: constants.php:35
ilSessionControl\DEFAULT_MIN_IDLE
const DEFAULT_MIN_IDLE
default value for settings that have not been defined in setup or administration yet ...
Definition: class.ilSessionControl.php:30
ilUtil\setCookie
static setCookie(string $a_cookie_name, string $a_cookie_value='', bool $a_also_set_super_global=true, bool $a_set_cookie_invalid=false)
Definition: class.ilUtil.php:1275
$DIC
global $DIC
Definition: shib_login.php:25
ilSessionControl\isValidSession
static isValidSession(string $a_sid)
checks if session exists for given id and if it is still valid
Definition: class.ilSessionControl.php:147
ilSessionControl\getExistingSessionCount
static getExistingSessionCount(array $a_types)
returns number of valid sessions relating to given session types
Definition: class.ilSessionControl.php:125
ilSessionControl\handleLoginEvent
static handleLoginEvent(string $a_login, ilAuthSession $auth_session)
when current session is allowed to be created it marks it with type regarding to the sessions user co...
Definition: class.ilSessionControl.php:81
ilSessionControl\$session_types_controlled
static array $session_types_controlled
Definition: class.ilSessionControl.php:59
ilSessionControl\$session_types_not_controlled
static array $session_types_not_controlled
all session types that will be involved when count of sessions will be determined or when idleing ses...
Definition: class.ilSessionControl.php:70
$ilSetting
global $ilSetting
Definition: privfeed.php:32
ilSessionControl\handleLogoutEvent
static handleLogoutEvent()
reset sessions type to unknown
Definition: class.ilSessionControl.php:118
ilSession\set
static set(string $a_var, $a_val)
Set a value.
Definition: class.ilSession.php:393
ilSessionControl\debug
static debug(string $a_debug_log_message)
logs the given debug message in
Definition: class.ilSessionControl.php:226
ilSessionControl\SESSION_TYPE_UNKNOWN
const SESSION_TYPE_UNKNOWN
session types from which one is assigned to each session
Definition: class.ilSessionControl.php:46