classes/session.php

   1 <?php
   2 /***************************************************************************
   3  *  Copyright (C) 2003-2006 Polytechnique.org                              *
   4  *  http://opensource.polytechnique.org/                                   *
   5  *                                                                         *
   6  *  This program is free software; you can redistribute it and/or modify   *
   7  *  it under the terms of the GNU General Public License as published by   *
   8  *  the Free Software Foundation; either version 2 of the License, or      *
   9  *  (at your option) any later version.                                    *
  10  *                                                                         *
  11  *  This program is distributed in the hope that it will be useful,        *
  12  *  but WITHOUT ANY WARRANTY; without even the implied warranty of         *
  13  *  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the          *
  14  *  GNU General Public License for more details.                           *
  15  *                                                                         *
  16  *  You should have received a copy of the GNU General Public License      *
  17  *  along with this program; if not, write to the Free Software            *
  18  *  Foundation, Inc.,                                                      *
  19  *  59 Temple Place, Suite 330, Boston, MA  02111-1307  USA                *
  20  ***************************************************************************/
  21
  22 require_once 'diogenes/diogenes.misc.inc.php';
  23
  24 class Session
  25 {
  26     public static function init()
  27     {
  28         @session_start();
  29         if (empty($_SESSION['challenge'])) {
  30             $_SESSION['challenge'] = sha1(uniqid(rand(), true));
  31         }
  32     }
  33
  34     public static function destroy()
  35     {
  36         @session_destroy();
  37         unset($_SESSION);
  38     }
  39
  40     public static function has($key)
  41     {
  42         return isset($_SESSION[$key]);
  43     }
  44
  45     public static function kill($key)
  46     {
  47         unset($_SESSION[$key]);
  48     }
  49
  50     public static function v($key, $default = null)
  51     {
  52         return isset($_SESSION[$key]) ? $_SESSION[$key] : $default;
  53     }
  54
  55     public static function i($key, $default = 0)
  56     {
  57         $i = Session::v($key, $default);
  58         return is_numeric($i) ? intval($i) : $default;
  59     }
  60
  61     public static function has_perms()
  62     {
  63         return Session::logged() && Session::v('perms') == PERMS_ADMIN;
  64     }
  65
  66     public static function logged()
  67     {
  68         return Session::v('auth', AUTH_PUBLIC) >= AUTH_COOKIE;
  69     }
  70
  71     public static function identified()
  72     {
  73         return Session::v('auth', AUTH_PUBLIC) >= AUTH_MDP;
  74     }
  75 }
  76
  77 // {{{ function check_perms()
  78
  79 /** verifie si un utilisateur a les droits pour voir une page
  80  ** si ce n'est pas le cas, on affiche une erreur
  81  * @return void
  82  */
  83 function check_perms()
  84 {
  85     global $page;
  86     if (!S::has_perms()) {
  87         if ($_SESSION['log']) {
  88             $_SESSION['log']->log("noperms",$_SERVER['PHP_SELF']);
  89         }
  90         $page->kill("Tu n'as pas les permissions nécessaires pour accéder à cette page.");
  91     }
  92 }
  93
  94 // }}}
  95
  96 ?>