array($this, 'handler_destroy'),
array($this, 'handler_gc'));
if (!$result) {
- print_error('dbsessionhandlerproblem'); //TODO: localise
+ print_error('dbsessionhandlerproblem', 'error');
}
}
public function handler_read($sid) {
global $CFG;
- //TODO: implement locking and all the bells and whistles
+ // TODO: implement normal locking (and later speculative locking)
+ // TODO: implement timeout + auth plugin hook (see gc)
if ($this->record and $this->record->sid != $sid) {
error_log('Weird error reading session - mismatched sid');
return '';
}
+ if (md5($record->sessdata) !== $record->sessdatahash) {
+ // probably this is caused by misconfigured mysql - the allowed request size might be too small
+ try {
+ $this->database->delete_records('sessions', array('sid'=>$record->sid));
+ } catch (dml_exception $ignored) {
+ }
+ print_error('dbsessionbroken', 'error');
+ }
+
$data = base64_decode($record->sessdata);
unset($record->sessdata); // conserve memory
$this->record = $record;
$this->record->timemodified = time();
$this->record->lastip = getremoteaddr();
+ // TODO: verify session changed before doing update
+
try {
$this->database->update_record_raw('sessions', $this->record);
} catch (dml_exception $ex) {
$select = "timemodified + :maxlifetime < :now";
$params = array('now'=>time(), 'maxlifetime'=>$maxlifetime);
+ // TODO: add auth plugin hook that would allow extennding of max lifetime
+
try {
$this->database->delete_records_select('sessions', $select, $params);
} catch (dml_exception $ex) {
projects / moodle.git / commitdiff