tao-test/app/tao/models/classes/session/Business/Service/SessionCookieService.php

<?php

/**
 * This program is free software; you can redistribute it and/or
 * modify it under the terms of the GNU General Public License
 * as published by the Free Software Foundation; under version 2
 * of the License (non-upgradable).
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program; if not, write to the Free Software
 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.
 *
 * Copyright (c) 2020 (original work) Open Assessment Technologies SA;
 *
 * @author Sergei Mikhailov <sergei.mikhailov@taotesting.com>
 */

declare(strict_types=1);

namespace oat\tao\model\session\Business\Service;

use common_http_Request as Request;
use oat\tao\model\service\InjectionAwareService;
use oat\tao\model\session\Business\Contract\SessionCookieAttributesFactoryInterface;
use oat\tao\model\session\Business\Contract\SessionCookieServiceInterface;
use tao_helpers_Uri as UriHelper;

class SessionCookieService extends InjectionAwareService implements SessionCookieServiceInterface
{
    /** @var SessionCookieAttributesFactoryInterface */
    private $sessionCookieAttributesFactory;

    public function __construct(SessionCookieAttributesFactoryInterface $sessionCookieAttributesFactory)
    {
        parent::__construct();

        $this->sessionCookieAttributesFactory = $sessionCookieAttributesFactory;
    }

    public function initializeSessionCookie(): void
    {
        $sessionParams = session_get_cookie_params();
        $cookieDomain  = UriHelper::isValidAsCookieDomain(ROOT_URL)
            ? UriHelper::getDomain(ROOT_URL)
            : $sessionParams['domain'];
        $isSecureFlag  = Request::isHttps();
        $sessionCookieAttributes = $this->sessionCookieAttributesFactory->create();

        session_set_cookie_params(
            $sessionParams['lifetime'],
            (string)$sessionCookieAttributes,
            $cookieDomain,
            $isSecureFlag,
            true
        );

        session_name(GENERIS_SESSION_NAME);

        if (isset($_COOKIE[GENERIS_SESSION_NAME])) {
            // Resume the session
            session_start();

            //cookie keep alive, if lifetime is not 0
            if ($sessionParams['lifetime'] !== 0) {
                $expiryTime = $sessionParams['lifetime'] + time();
                setcookie(
                    GENERIS_SESSION_NAME,
                    session_id(),
                    $expiryTime,
                    (string)$sessionCookieAttributes,
                    $cookieDomain,
                    $isSecureFlag,
                    true
                );
            }
        }
    }
}
Code, before instalation. 2022-08-29 20:14:13 +02:00			`<?php`

			`/**`
			`* This program is free software; you can redistribute it and/or`
			`* modify it under the terms of the GNU General Public License`
			`* as published by the Free Software Foundation; under version 2`
			`* of the License (non-upgradable).`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program; if not, write to the Free Software`
			`* Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.`
			`*`
			`* Copyright (c) 2020 (original work) Open Assessment Technologies SA;`
			`*`
			`* @author Sergei Mikhailov <sergei.mikhailov@taotesting.com>`
			`*/`

			`declare(strict_types=1);`

			`namespace oat\tao\model\session\Business\Service;`

			`use common_http_Request as Request;`
			`use oat\tao\model\service\InjectionAwareService;`
			`use oat\tao\model\session\Business\Contract\SessionCookieAttributesFactoryInterface;`
			`use oat\tao\model\session\Business\Contract\SessionCookieServiceInterface;`
			`use tao_helpers_Uri as UriHelper;`

			`class SessionCookieService extends InjectionAwareService implements SessionCookieServiceInterface`
			`{`
			`/** @var SessionCookieAttributesFactoryInterface */`
			`private $sessionCookieAttributesFactory;`

			`public function __construct(SessionCookieAttributesFactoryInterface $sessionCookieAttributesFactory)`
			`{`
			`parent::__construct();`

			`$this->sessionCookieAttributesFactory = $sessionCookieAttributesFactory;`
			`}`

			`public function initializeSessionCookie(): void`
			`{`
			`$sessionParams = session_get_cookie_params();`
			`$cookieDomain = UriHelper::isValidAsCookieDomain(ROOT_URL)`
			`? UriHelper::getDomain(ROOT_URL)`
			`: $sessionParams['domain'];`
			`$isSecureFlag = Request::isHttps();`
			`$sessionCookieAttributes = $this->sessionCookieAttributesFactory->create();`

			`session_set_cookie_params(`
			`$sessionParams['lifetime'],`
			`(string)$sessionCookieAttributes,`
			`$cookieDomain,`
			`$isSecureFlag,`
			`true`
			`);`

			`session_name(GENERIS_SESSION_NAME);`

			`if (isset($_COOKIE[GENERIS_SESSION_NAME])) {`
			`// Resume the session`
			`session_start();`

			`//cookie keep alive, if lifetime is not 0`
			`if ($sessionParams['lifetime'] !== 0) {`
			`$expiryTime = $sessionParams['lifetime'] + time();`
			`setcookie(`
			`GENERIS_SESSION_NAME,`
			`session_id(),`
			`$expiryTime,`
			`(string)$sessionCookieAttributes,`
			`$cookieDomain,`
			`$isSecureFlag,`
			`true`
			`);`
			`}`
			`}`
			`}`
			`}`