X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fsession-functions.php;h=7601911fc83cda7d869817202f844b493098a9eb;hb=6bd47661d7ec406cd276f0835364b1e3f933d6c8;hp=6a47b648dde0e024bcb220ae38435e208f991e47;hpb=36c3c8b749a88ce05ad0fda81e00047f9cb5433f;p=mailer.git

diff --git a/inc/session-functions.php b/inc/session-functions.php
index 6a47b648dd..7601911fc8 100644
--- a/inc/session-functions.php
+++ b/inc/session-functions.php
@@ -1,7 +1,7 @@
 <?php
 /************************************************************************
- * MXChange v0.2.1                                    Start: 02/28/2009 *
- * ===============                              Last change: 02/28/2009 *
+ * Mailer v0.2.1-FINAL                                Start: 02/28/2009 *
+ * ===================                          Last change: 02/28/2009 *
  *                                                                      *
  * -------------------------------------------------------------------- *
  * File              : session-functions.php                            *
@@ -14,11 +14,10 @@
  * $Date::                                                            $ *
  * $Tag:: 0.2.1-FINAL                                                 $ *
  * $Author::                                                          $ *
- * Needs to be in all Files and every File needs "svn propset           *
- * svn:keywords Date Revision" (autoprobset!) at least!!!!!!            *
  * -------------------------------------------------------------------- *
- * Copyright (c) 2003 - 2008 by Roland Haeder                           *
- * For more information visit: http://www.mxchange.org                  *
+ * Copyright (c) 2003 - 2009 by Roland Haeder                           *
+ * Copyright (c) 2009 - 2012 by Mailer Developer Team                   *
+ * For more information visit: http://mxchange.org                      *
  *                                                                      *
  * This program is free software; you can redistribute it and/or modify *
  * it under the terms of the GNU General Public License as published by *
@@ -38,94 +37,114 @@
 
 // Some security stuff...
 if (!defined('__SECURITY')) {
-	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), '/inc') + 4) . '/security.php';
-	require($INC);
-}
+	die();
+} // END - if
 
 // Unset/set session variables
 function setSession ($var, $value) {
 	// Abort in CSS mode here
-	if (getOutputMode() == 1) return true;
+	if (isCssOutputMode()) {
+		return TRUE;
+	} // END - if
 
 	// Trim value and session variable
-	$var = trim(SQL_ESCAPE($var)); $value = trim($value);
+	$var   = trim(secureString($var));
+	$value = trim($value);
 
 	// Is the session variable set?
-	if (("".$value."" == '') && (isSessionVariableSet($var))) {
+	if (('' . $value . '' == '') && (isSessionVariableSet($var))) {
 		// Remove the session
-		//* DEBUG: */ OUTPUT_HTML("UNSET:".$var.'='.getSession($var)."<br />");
-		unset($_SESSION[$var]);
-		return session_unregister($var);
-	} elseif (("".$value."" != '') && (!isSessionVariableSet($var))) {
+		//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'UNSET:' . $var . '=' . getSession($var));
+		unset($GLOBALS['_SESSION'][$var]);
+		if (isPhpVersionEqualNewer('5.3.0')) {
+			// session_unregister() is deprecated as of 5.3.0
+			return TRUE;
+		} else {
+			// PHP version < 5.3.0
+			return session_unregister($var);
+		}
+	} elseif (('' . $value . '' != '') && (!isSessionVariableSet($var))) {
 		// Set session
-		//* DEBUG: */ OUTPUT_HTML("SET:".$var.'='.$value."<br />");
-		$_SESSION[$var] =  $value;
-		return session_register($var);
+		//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'SET:' . $var . '=' . $value);
+		$GLOBALS['_SESSION'][$var] =  $value;
+		if (isPhpVersionEqualNewer('5.3.0')) {
+			// session_unregister() is deprecated as of 5.3.0
+			return TRUE;
+		} else {
+			// PHP version < 5.3.0
+			return session_register($var);
+		}
 	} elseif (!empty($value)) {
 		// Update session
-		//* DEBUG: */ OUTPUT_HTML("UPDATE:".$var.'='.$value."<br />");
-		$_SESSION[$var] = $value;
-		return true;
+		//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'UPDATE:' . $var . '=' . $value);
+		$GLOBALS['_SESSION'][$var] = $value;
+		return TRUE;
 	}
 
 	// Ignored (but valid)
-	//* DEBUG: */ OUTPUT_HTML("IGNORED:".$var.'='.$value."<br />");
-	return true;
+	//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'IGNORED:' . $var . '=' . $value);
+	return TRUE;
 }
 
-// Check wether a session variable is set
+// Check whether a session variable is set
 function isSessionVariableSet ($var) {
-	//* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>):var={$var}<br />");
-	return (isset($_SESSION[$var]));
+	// Warning: DO NOT call logDebugMessage() from here, this will cause an endless loop
+	return (isset($GLOBALS['_SESSION'][$var]));
 }
 
-// Returns wether the value of the session variable or NULL if not set
+// Returns whether the value of the session variable or NULL if not set
 function getSession ($var) {
-	// Default is not found! ;-)
-	$value = null;
-
-	// Is the variable there or cached values?
-	if (isset($GLOBALS['cache_array']['session'][$var])) {
-		// Get cached value (skips a lot SQL_ESCAPE() calles!
-		//* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ".$var."-CACHE!<br />");
-		$value = $GLOBALS['cache_array']['session'][$var];
-	} elseif (isSessionVariableSet($var)) {
-		// Then  get it secured!
-		//* DEBUG: */ OUTPUT_HTML(__FUNCTION__."(<font color=\"#0000aa\">".__LINE__."</font>): ".$var."-RESOLVE!<br />");
-		$value = SQL_ESCAPE($_SESSION[$var]);
+	// Default is not found ;-)
+	$value = NULL;
 
-		// Cache the value
-		$GLOBALS['cache_array']['session'][$var] = $value;
+	// Is the variable there?
+	if (isSessionVariableSet($var)) {
+		// Then  get it secured!
+		$value = SQL_ESCAPE($GLOBALS['_SESSION'][$var]);
 	} // END - if
 
 	// Return the value
+	//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, $var . '=' . $value);
 	return $value;
 }
 
+// Get whole session array
+function getSessionArray () {
+	// Simply return it
+	return $GLOBALS['_SESSION'];
+}
+
 // Destroy user session
-function destroyUserSession () {
+function destroyMemberSession ($destroy = FALSE) {
 	// Reset userid
-	setUserId(0);
+	initMemberId();
 
 	// Remove all user data from session
-	return ((setSession('userid', '')) && (setSession('u_hash', '')));
+	if ($destroy === TRUE) {
+		// Destroy whole session
+		return session_destroy();
+	} else {
+		return ((setSession('userid', '')) && (setSession('u_hash', '')));
+	}
 }
 
 // Destroys the admin session
-function destroyAdminSession ($destroy = true) {
+function destroyAdminSession ($destroy = TRUE) {
 	// Kill maybe existing session variables including array elements
-	setSession('admin_login', '');
-	setSession('admin_md5'  , '');
-	setSession('admin_last' , '');
-	setSession('admin_to'   , '');
+	setAdminId(0);
+	setAdminMd5('');
+	setAdminLast('');
+
+	// Set cache to FALSE
+	$GLOBALS['isAdmin'] = FALSE;
 
-	// Destroy session and return status
-	if ($destroy) {
+	// Destroy session if requested and return status
+	if ($destroy === TRUE) {
 		return session_destroy();
 	} // END - if
 
 	// All fine if we shall not really destroy the session
-	return true;
+	return TRUE;
 }
 
 // [EOF]