cab08090 |
1 | <?php |
2 | /*************************************************************************** |
3 | * Copyright (C) 2003-2006 Polytechnique.org * |
4 | * http://opensource.polytechnique.org/ * |
5 | * * |
6 | * This program is free software; you can redistribute it and/or modify * |
7 | * it under the terms of the GNU General Public License as published by * |
8 | * the Free Software Foundation; either version 2 of the License, or * |
9 | * (at your option) any later version. * |
10 | * * |
11 | * This program is distributed in the hope that it will be useful, * |
12 | * but WITHOUT ANY WARRANTY; without even the implied warranty of * |
13 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * |
14 | * GNU General Public License for more details. * |
15 | * * |
16 | * You should have received a copy of the GNU General Public License * |
17 | * along with this program; if not, write to the Free Software * |
18 | * Foundation, Inc., * |
19 | * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA * |
20 | ***************************************************************************/ |
21 | |
b76f0797 |
22 | require_once 'diogenes/diogenes.misc.inc.php'; |
23 | require_once 'diogenes/diogenes.core.logger.inc.php'; |
24 | |
cab08090 |
25 | class Session |
26 | { |
27 | function init() |
28 | { |
29 | @session_start(); |
30 | if (empty($_SESSION['challenge'])) { |
31 | $_SESSION['challenge'] = sha1(uniqid(rand(), true)); |
32 | } |
33 | } |
34 | |
35 | function destroy() |
36 | { |
37 | @session_destroy(); |
38 | unset($_SESSION); |
39 | } |
40 | |
41 | |
42 | |
43 | function has($key) |
44 | { |
45 | return isset($_SESSION[$key]); |
46 | } |
47 | |
48 | function kill($key) |
49 | { |
50 | unset($_SESSION[$key]); |
51 | } |
52 | |
53 | function v($key, $default = null) |
54 | { |
55 | return isset($_SESSION[$key]) ? $_SESSION[$key] : $default; |
56 | } |
57 | |
58 | |
59 | function has_perms() |
60 | { |
61 | return Session::logged() && Session::v('perms') == PERMS_ADMIN; |
62 | } |
63 | |
64 | function logged() |
65 | { |
66 | return Session::v('auth', AUTH_PUBLIC) >= AUTH_COOKIE; |
67 | } |
68 | |
69 | function identified() |
70 | { |
71 | return Session::v('auth', AUTH_PUBLIC) >= AUTH_MDP; |
72 | } |
73 | } |
74 | |
75 | class S extends Session { } |
76 | |
b76f0797 |
77 | // {{{ function check_perms() |
78 | |
79 | /** verifie si un utilisateur a les droits pour voir une page |
80 | ** si ce n'est pas le cas, on affiche une erreur |
81 | * @return void |
82 | */ |
83 | function check_perms() |
84 | { |
85 | global $page; |
86 | if (!S::has_perms()) { |
87 | if ($_SESSION['log']) { |
88 | $_SESSION['log']->log("noperms",$_SERVER['PHP_SELF']); |
89 | } |
90 | $page->kill("Tu n'as pas les permissions nécessaires pour accéder à cette page."); |
91 | } |
92 | } |
93 | |
94 | // }}} |
95 | |
cab08090 |
96 | ?> |