Skip to content

Commit

Permalink
MDL-17617 - installation session related improvements; logout fixes +…
Browse files Browse the repository at this point in the history 
… other improvements
  • Loading branch information
skodak committed Jan 17, 2009
1 parent 2ee07c3 commit 35d6a2a
Show file tree
Hide file tree
Showing 5 changed files with 47 additions and 15 deletions.
11 changes: 10 additions & 1 deletion admin/index.php
View file
Expand Up @@ -100,6 +100,10 @@
$origdebug = $CFG->debug;
$CFG->debug = DEBUG_MINIMAL;
error_reporting($CFG->debug);

/// remove current session content completely
session_get_instance()->terminate_current();

if (empty($agreelicense)) {
$strlicense = get_string('license');
$navigation = build_navigation(array(array('name'=>$strlicense, 'link'=>null, 'type'=>'misc')));
Expand Down Expand Up @@ -327,10 +331,15 @@
/// make sure admin user is created - this is the last step because we need
/// session to be working properly in order to edit admin account
if (empty($CFG->rolesactive)) {
$sessionstarted = optional_param('sessionstarted', 0, PARAM_BOOL);
if (!$sessionstarted) {
// we neeed this redirect to setup proper session
upgrade_log_finish('index.php?sessionstarted=1');
}
$adminuser = create_admin_user();
$adminuser->newadminuser = 1;
complete_user_login($adminuser, false);
upgrade_log_finish("$CFG->wwwroot/user/editadvanced.php?id=$adminuser->id"); // Edit thyself
redirect("$CFG->wwwroot/user/editadvanced.php?id=$adminuser->id"); // Edit thyself

} else {
/// just make sure upgrade logging is properly terminated
Expand Down
2 changes: 1 addition & 1 deletion admin/settings/server.php
View file
Expand Up @@ -75,7 +75,7 @@

// "sessionhandling" settingpage
$temp = new admin_settingpage('sessionhandling', get_string('sessionhandling', 'admin'));
$temp->add(new admin_setting_configcheckbox('dbsessions', get_string('dbsessions', 'admin'), get_string('configdbsessions', 'admin'), 0));
$temp->add(new admin_setting_configcheckbox('dbsessions', get_string('dbsessions', 'admin'), get_string('configdbsessions', 'admin'), 1));
$temp->add(new admin_setting_configselect('sessiontimeout', get_string('sessiontimeout', 'admin'), get_string('configsessiontimeout', 'admin'), 7200, array(14400 => get_string('numhours', '', 4),
10800 => get_string('numhours', '', 3),
7200 => get_string('numhours', '', 2),
Expand Down
2 changes: 1 addition & 1 deletion auth/shibboleth/login.php
View file
Expand Up @@ -10,7 +10,7 @@
/// Check for timed out sessions
if (!empty($SESSION->has_timed_out)) {
$session_has_timed_out = true;
$SESSION->has_timed_out = false;
unset($SESSION->has_timed_out);
} else {
$session_has_timed_out = false;
}
Expand Down
45 changes: 34 additions & 11 deletions lib/sessionlib.php
View file
Expand Up @@ -18,8 +18,7 @@ function session_get_instance() {
$session_class = SESSION_CUSTOM;
$session = new $session_class();

//} else if ((!isset($CFG->dbsessions) or $CFG->dbsessions) and $DB->session_lock_supported()) {
} else if (!empty($CFG->dbsessions) and $DB->session_lock_supported()) {
} else if ((!isset($CFG->dbsessions) or $CFG->dbsessions) and $DB->session_lock_supported()) {
// default recommended session type
$session = new database_session();

Expand All @@ -39,6 +38,11 @@ interface moodle_session {
*/
public function terminate_current();

/**
* Terminates all sessions.
*/
public function terminate_all();

/**
* No more changes in session expected.
* Unblocks the sesions, other scripts may start executing in parallel.
Expand Down Expand Up @@ -76,7 +80,9 @@ public function __construct() {
$this->prepare_cookies();
$this->init_session_storage();

if (!empty($CFG->usesid) && empty($_COOKIE['MoodleSession'.$CFG->sessioncookie])) {
$newsession = empty($_COOKIE['MoodleSession'.$CFG->sessioncookie]);

if (!empty($CFG->usesid) && $newsession) {
sid_start_ob();
} else {
$CFG->usesid = 0;
Expand All @@ -88,6 +94,9 @@ public function __construct() {
@session_start();
if (!isset($_SESSION['SESSION'])) {
$_SESSION['SESSION'] = new object();
if (!$newsession and !empty($CFG->rolesactive)) {
$_SESSION['SESSION']->has_timed_out = true;
}
}
if (!isset($_SESSION['USER'])) {
$_SESSION['USER'] = new object();
Expand All @@ -110,26 +119,28 @@ public function terminate_current() {
}

$_SESSION = array();

$SESSION = new object();
$USER = new object();
$USER->id = 0;
$_SESSION['SESSION'] = new object();
$_SESSION['USER'] = new object();
$_SESSION['USER']->id = 0;
if (isset($CFG->mnet_localhost_id)) {
$USER->mnethostid = $CFG->mnet_localhost_id;
$_SESSION['USER']->mnethostid = $CFG->mnet_localhost_id;
}

$SESSION = $_SESSION['SESSION']; // this may not work properly
$USER = $_SESSION['USER']; // this may not work properly

// Initialize variable to pass-by-reference to headers_sent(&$file, &$line)
$file = null;
$line = null;
if (headers_sent($file, $line)) {
error_log('Can not terminate session properly - headers were already sent in file: '.$file.' on line '.$line);
}

// now let's try to get a new session id and destroy the old one
@session_regenerate_id(true);
// now let's try to get a new session id
session_regenerate_id();

// close the session
@session_write_close();
session_write_close();
}

/**
Expand Down Expand Up @@ -298,6 +309,9 @@ protected function init_session_storage() {
ini_set('session.save_path', $CFG->dataroot .'/sessions');
}

public function terminate_all() {
// TODO
}
}

/**
Expand Down Expand Up @@ -329,6 +343,15 @@ protected function init_session_storage() {
}
}

public function terminate_all() {
try {
// do not show any warnings - might be during upgrade/installation
$this->database->delete_records('sessions');
} catch (dml_exception $ignored) {

}
}

public function handler_open($save_path, $session_name) {
global $DB;

Expand Down
2 changes: 1 addition & 1 deletion login/index.php
View file
Expand Up @@ -19,7 +19,7 @@
/// Check for timed out sessions
if (!empty($SESSION->has_timed_out)) {
$session_has_timed_out = true;
$SESSION->has_timed_out = false;
unset($SESSION->has_timed_out);
} else {
$session_has_timed_out = false;
}
Expand Down

0 comments on commit 35d6a2a

Please sign in to comment.