[platal.git] / classes / Session.php

<?php
/***************************************************************************
 *  Copyright (C) 2003-2006 Polytechnique.org                              *
 *  http://opensource.polytechnique.org/                                   *
 *                                                                         *
 *  This program is free software; you can redistribute it and/or modify   *
 *  it under the terms of the GNU General Public License as published by   *
 *  the Free Software Foundation; either version 2 of the License, or      *
 *  (at your option) any later version.                                    *
 *                                                                         *
 *  This program is distributed in the hope that it will be useful,        *
 *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
 *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
 *  GNU General Public License for more details.                           *
 *                                                                         *
 *  You should have received a copy of the GNU General Public License      *
 *  along with this program; if not, write to the Free Software            *
 *  Foundation, Inc.,                                                      *
 *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
 ***************************************************************************/

require_once 'diogenes/diogenes.misc.inc.php';
require_once 'diogenes/diogenes.core.logger.inc.php';

class Session
{
    function init()
    {
        @session_start();
        if (empty($_SESSION['challenge'])) {
            $_SESSION['challenge'] = sha1(uniqid(rand(), true));
        }
    }

    function destroy()
    {
        @session_destroy();
        unset($_SESSION);
    }


    function has($key)
    {
        return isset($_SESSION[$key]);
    }

    function kill($key)
    {
        unset($_SESSION[$key]);
    }

    function v($key, $default = null)
    {
        return isset($_SESSION[$key]) ? $_SESSION[$key] : $default;
    }


    function has_perms()
    {
        return Session::logged() && Session::v('perms') == PERMS_ADMIN;
    }

    function logged()
    {
        return Session::v('auth', AUTH_PUBLIC) >= AUTH_COOKIE;
    }

    function identified()
    {
        return Session::v('auth', AUTH_PUBLIC) >= AUTH_MDP;
    }
}

class S extends Session { }

// {{{ function check_perms()

/** verifie si un utilisateur a les droits pour voir une page
 ** si ce n'est pas le cas, on affiche une erreur
 * @return void
 */
function check_perms()
{
    global $page;
    if (!S::has_perms()) {
        if ($_SESSION['log']) {
            $_SESSION['log']->log("noperms",$_SERVER['PHP_SELF']);
        }
	$page->kill("Tu n'as pas les permissions nécessaires pour accéder à cette page.");
    }
}

// }}}

?>
Commit	Line	Data
cab08090	1	<?php
	2	/***************************************************************************
	3	* Copyright (C) 2003-2006 Polytechnique.org *
	4	* http://opensource.polytechnique.org/ *
	5	* *
	6	* This program is free software; you can redistribute it and/or modify *
	7	* it under the terms of the GNU General Public License as published by *
	8	* the Free Software Foundation; either version 2 of the License, or *
	9	* (at your option) any later version. *
	10	* *
	11	* This program is distributed in the hope that it will be useful, *
	12	* but WITHOUT ANY WARRANTY; without even the implied warranty of *
	13	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
	14	* GNU General Public License for more details. *
	15	* *
	16	* You should have received a copy of the GNU General Public License *
	17	* along with this program; if not, write to the Free Software *
	18	* Foundation, Inc., *
	19	* 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
	20	***************************************************************************/
	21
b76f0797	22	require_once 'diogenes/diogenes.misc.inc.php';
	23	require_once 'diogenes/diogenes.core.logger.inc.php';
	24
cab08090	25	class Session
	26	{
	27	function init()
	28	{
	29	@session_start();
	30	if (empty($_SESSION['challenge'])) {
	31	$_SESSION['challenge'] = sha1(uniqid(rand(), true));
	32	}
	33	}
	34
	35	function destroy()
	36	{
	37	@session_destroy();
	38	unset($_SESSION);
	39	}
	40
	41
	42
	43	function has($key)
	44	{
	45	return isset($_SESSION[$key]);
	46	}
	47
	48	function kill($key)
	49	{
	50	unset($_SESSION[$key]);
	51	}
	52
	53	function v($key, $default = null)
	54	{
	55	return isset($_SESSION[$key]) ? $_SESSION[$key] : $default;
	56	}
	57
	58
	59	function has_perms()
	60	{
	61	return Session::logged() && Session::v('perms') == PERMS_ADMIN;
	62	}
	63
	64	function logged()
	65	{
	66	return Session::v('auth', AUTH_PUBLIC) >= AUTH_COOKIE;
	67	}
	68
	69	function identified()
	70	{
	71	return Session::v('auth', AUTH_PUBLIC) >= AUTH_MDP;
	72	}
	73	}
	74
	75	class S extends Session { }
	76
b76f0797	77	// {{{ function check_perms()
	78
	79	/** verifie si un utilisateur a les droits pour voir une page
	80	** si ce n'est pas le cas, on affiche une erreur
	81	* @return void
	82	*/
	83	function check_perms()
	84	{
	85	global $page;
	86	if (!S::has_perms()) {
	87	if ($_SESSION['log']) {
	88	$_SESSION['log']->log("noperms",$_SERVER['PHP_SELF']);
	89	}
	90	$page->kill("Tu n'as pas les permissions nécessaires pour accéder à cette page.");
	91	}
	92	}
	93
	94	// }}}
	95
cab08090	96	?>