Rev 1116 | Rev 1340 | Go to most recent revision | Details | Compare with Previous | Last modification | View Log | RSS feed
Rev | Author | Line No. | Line |
---|---|---|---|
557 | daniel-mar | 1 | <?php |
2 | |||
3 | /* |
||
4 | * OIDplus 2.0 |
||
1086 | daniel-mar | 5 | * Copyright 2019 - 2023 Daniel Marschall, ViaThinkSoft |
557 | daniel-mar | 6 | * |
7 | * Licensed under the Apache License, Version 2.0 (the "License"); |
||
8 | * you may not use this file except in compliance with the License. |
||
9 | * You may obtain a copy of the License at |
||
10 | * |
||
11 | * http://www.apache.org/licenses/LICENSE-2.0 |
||
12 | * |
||
13 | * Unless required by applicable law or agreed to in writing, software |
||
14 | * distributed under the License is distributed on an "AS IS" BASIS, |
||
15 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
||
16 | * See the License for the specific language governing permissions and |
||
17 | * limitations under the License. |
||
18 | */ |
||
19 | |||
1050 | daniel-mar | 20 | namespace ViaThinkSoft\OIDplus; |
557 | daniel-mar | 21 | |
1086 | daniel-mar | 22 | // phpcs:disable PSR1.Files.SideEffects |
23 | \defined('INSIDE_OIDPLUS') or die; |
||
24 | // phpcs:enable PSR1.Files.SideEffects |
||
25 | |||
730 | daniel-mar | 26 | class OIDplusCookieUtils extends OIDplusBaseClass { |
557 | daniel-mar | 27 | |
1116 | daniel-mar | 28 | /** |
29 | * @param string $name |
||
30 | * @return void |
||
31 | * @throws OIDplusException |
||
32 | */ |
||
33 | public function unsetcookie(string $name) { |
||
557 | daniel-mar | 34 | $this->setcookie($name, '', time()-9999, true); |
35 | } |
||
36 | |||
1116 | daniel-mar | 37 | /** |
38 | * @return string |
||
39 | * @throws OIDplusException |
||
40 | */ |
||
41 | private function getCookieDomain(): string { |
||
812 | daniel-mar | 42 | $default_domain = ''; // ini_get('session.cookie_domain'); |
43 | $domain = OIDplus::baseConfig()->getValue('COOKIE_DOMAIN', $default_domain); |
||
44 | if ($domain === '(auto)') { |
||
816 | daniel-mar | 45 | $tmp = OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE/*_CANONICAL*/); |
812 | daniel-mar | 46 | if ($tmp === false) return $default_domain; |
47 | $tmp = parse_url($tmp); |
||
48 | if ($tmp === false) return $default_domain; |
||
49 | if (!isset($tmp['host'])) return $default_domain; |
||
50 | $domain = $tmp['host']; |
||
51 | } |
||
52 | return $domain; |
||
53 | } |
||
806 | daniel-mar | 54 | |
1116 | daniel-mar | 55 | /** |
56 | * @return string |
||
57 | * @throws OIDplusException |
||
58 | */ |
||
59 | private function getCookiePath(): string { |
||
812 | daniel-mar | 60 | $default_path = '/'; // ini_get('session.cookie_path'); |
61 | $path = OIDplus::baseConfig()->getValue('COOKIE_PATH', $default_path); |
||
62 | if ($path === '(auto)') { |
||
816 | daniel-mar | 63 | $tmp = OIDplus::webpath(null,OIDplus::PATH_ABSOLUTE/*_CANONICAL*/); |
812 | daniel-mar | 64 | if ($tmp === false) return $default_path; |
65 | $tmp = parse_url($tmp); |
||
66 | if ($tmp === false) return $default_path; |
||
67 | if (!isset($tmp['path'])) return $default_path; |
||
68 | $path = $tmp['path']; |
||
808 | daniel-mar | 69 | |
812 | daniel-mar | 70 | // Alternatively: |
71 | //$path = OIDplus::webpath(null,OIDplus::PATH_RELATIVE_TO_ROOT_CANONICAL); |
||
72 | //if ($path === false) return $default_path; |
||
73 | } |
||
74 | return $path; |
||
75 | } |
||
557 | daniel-mar | 76 | |
847 | daniel-mar | 77 | // TODO: There are several PHPSESSID cookies set. That's not very nice. We should collect the cookies and then at script ending only send the last definition one time. |
1116 | daniel-mar | 78 | /** |
79 | * @param string $name |
||
80 | * @param string $value |
||
81 | * @param int $expires |
||
82 | * @param bool $allowJS |
||
83 | * @param string|null $samesite |
||
84 | * @param bool $forceInsecure |
||
85 | * @return void |
||
86 | * @throws OIDplusException |
||
87 | */ |
||
1130 | daniel-mar | 88 | public function setcookie(string $name, string $value, int $expires=0, bool $allowJS=false, string $samesite=null, bool $forceInsecure=false) { |
812 | daniel-mar | 89 | $domain = $this->getCookieDomain(); |
90 | $path = $this->getCookiePath(); |
||
1130 | daniel-mar | 91 | $secure = !$forceInsecure && OIDplus::isSSL(); |
557 | daniel-mar | 92 | $httponly = !$allowJS; |
564 | daniel-mar | 93 | if (is_null($samesite)) { |
94 | $samesite = OIDplus::baseConfig()->getValue('COOKIE_SAMESITE_POLICY', 'Strict'); |
||
95 | } |
||
557 | daniel-mar | 96 | |
97 | if (strnatcmp(phpversion(),'7.3.0') >= 0) { |
||
98 | $options = array( |
||
99 | "expires" => $expires, |
||
100 | "path" => $path, |
||
101 | "domain" => $domain, |
||
102 | "secure" => $secure, |
||
103 | "httponly" => $httponly, |
||
104 | "samesite" => $samesite |
||
105 | ); |
||
106 | setcookie($name, $value, $options); |
||
107 | } else { |
||
108 | setcookie($name, $value, $expires, $path.'; samesite='.$samesite, $domain, $secure, $httponly); |
||
109 | } |
||
110 | } |
||
111 | |||
112 | } |