WriteSafeSessionHandler.php
Same filename and directory in other branches
Namespace
Drupal\Core\SessionFile
-
core/
lib/ Drupal/ Core/ Session/ WriteSafeSessionHandler.php
View source
<?php
namespace Drupal\Core\Session;
use Symfony\Component\HttpFoundation\Session\Storage\Proxy\SessionHandlerProxy;
/**
* Wraps the session handler to prevent writes when not necessary or allowed.
*/
class WriteSafeSessionHandler extends SessionHandlerProxy implements \SessionHandlerInterface, WriteSafeSessionHandlerInterface, \SessionUpdateTimestampHandlerInterface {
/**
* Whether or not the session is enabled for writing.
*
* @var bool
*/
protected $sessionWritable;
/**
* The read sessions.
*
* @var array
* Session data keyed by the session ID.
*/
private $readSessions;
/**
* Constructs a new write safe session handler.
*
* @param \SessionHandlerInterface $handler
* The underlying session handler.
* @param bool $session_writable
* Whether or not the session should be initially writable.
*/
public function __construct(\SessionHandlerInterface $handler, $session_writable = TRUE) {
parent::__construct($handler);
$this->sessionWritable = $session_writable;
}
/**
* {@inheritdoc}
*/
public function read(#[\SensitiveParameter] string $session_id) : string {
$value = $this->handler
->read($session_id);
$this->readSessions[$session_id] = $value;
return $value;
}
/**
* {@inheritdoc}
*/
public function write(#[\SensitiveParameter] string $session_id, string $session_data) : bool {
// Only write the session when it has been modified.
if (isset($this->readSessions[$session_id]) && $this->readSessions[$session_id] === $session_data) {
return TRUE;
}
if ($this->isSessionWritable()) {
return $this->handler
->write($session_id, $session_data);
}
return TRUE;
}
/**
* {@inheritdoc}
*/
public function setSessionWritable($flag) {
$this->sessionWritable = (bool) $flag;
}
/**
* {@inheritdoc}
*/
public function isSessionWritable() {
return $this->sessionWritable;
}
}
Classes
Title | Deprecated | Summary |
---|---|---|
WriteSafeSessionHandler | Wraps the session handler to prevent writes when not necessary or allowed. |
Buggy or inaccurate documentation? Please file an issue. Need support? Need help programming? Connect with the Drupal community.