Menu

[r1621]: / framework / trunk / src / session_cookies.cpp  Maximize  Restore  History

Download this file

106 lines (93 with data), 3.1 kB 

  1
  2
  3
  4
  5
  6
  7
  8
  9
 10
 11
 12
 13
 14
 15
 16
 17
 18
 19
 20
 21
 22
 23
 24
 25
 26
 27
 28
 29
 30
 31
 32
 33
 34
 35
 36
 37
 38
 39
 40
 41
 42
 43
 44
 45
 46
 47
 48
 49
 50
 51
 52
 53
 54
 55
 56
 57
 58
 59
 60
 61
 62
 63
 64
 65
 66
 67
 68
 69
 70
 71
 72
 73
 74
 75
 76
 77
 78
 79
 80
 81
 82
 83
 84
 85
 86
 87
 88
 89
 90
 91
 92
 93
 94
 95
 96
 97
 98
 99
100
101
102
103
104
105
///////////////////////////////////////////////////////////////////////////////

//                                                                             

//  Copyright (C) 2008-2010  Artyom Beilis (Tonkikh) <artyomtnk@yahoo.com>     

//                                                                             

//  This program is free software: you can redistribute it and/or modify       

//  it under the terms of the GNU Lesser General Public License as published by

//  the Free Software Foundation, either version 3 of the License, or

//  (at your option) any later version.

//

//  This program is distributed in the hope that it will be useful,

//  but WITHOUT ANY WARRANTY; without even the implied warranty of

//  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

//  GNU Lesser General Public License for more details.

//

//  You should have received a copy of the GNU Lesser General Public License

//  along with this program.  If not, see <http://www.gnu.org/licenses/>.

//

///////////////////////////////////////////////////////////////////////////////

#define CPPCMS_SOURCE

#include <cppcms/session_cookies.h>

#include <cppcms/cppcms_error.h>

#include <cppcms/session_interface.h>

#include <cppcms/base64.h>

#include <booster/log.h>



#include <time.h>

#include <string.h>



namespace cppcms {

namespace sessions {



using namespace std;



struct session_cookies::_data {};



session_cookies::session_cookies(std::auto_ptr<encryptor> enc) :

	encryptor_(enc)

{

}

session_cookies::~session_cookies()

{

}



void session_cookies::save(session_interface &session,string const &data,time_t timeout,bool not_used,bool on_server)

{

	if(on_server)

		throw cppcms_error("Can't use cookies backend when data should be stored on server");

	std::string real_data;

	real_data.reserve(data.size() + sizeof(timeout));

	real_data.append(reinterpret_cast<char *>(&timeout),sizeof(timeout));

	real_data+=data;

	std::string cipher = encryptor_->encrypt(real_data);

	string cdata="C" + b64url::encode(cipher);

	session.set_session_cookie(cdata);

}



bool session_cookies::load(session_interface &session,string &data,time_t &timeout_out)

{

	string cdata=session.get_session_cookie();

	if(cdata.empty()) 

		return false;

	if(cdata[0]!='C') {

		session.clear_session_cookie();

		return false;

	}

	std::string cipher;

	if(!b64url::decode(cdata.substr(1),cipher)) {

		session.clear_session_cookie();

		return false;

	}

	string tmp;

	if(!encryptor_->decrypt(cipher,tmp)) {

		BOOSTER_WARNING("cppcms") << "User supplied session cookie is not valid";

		session.clear_session_cookie();

		return false;

	}

	if(tmp.size() < sizeof(time_t)) {

		session.clear_session_cookie();

		return false;

	}

	

	time_t timeout;

	memcpy(&timeout,tmp.data(),sizeof(time_t));

	if(timeout < time(0)) {

		session.clear_session_cookie();

		return false;

	}

	data = tmp.substr(sizeof(time_t));

	timeout_out=timeout;

	return true;

}



void session_cookies::clear(session_interface &session)

{

	session.clear_session_cookie();

}



bool session_cookies::is_blocking()

{

	return false;

}





} // sessions

} // cppcms
MongoDB Logo MongoDB