1. sfPDOSessionStorage.class.php
  2. /**
 * Provides support for session storage using a PDO database abstraction layer.
 *
 * parameters: see sfDatabaseSessionStorage
 *
 * @package    symfony
 * @subpackage storage
 * @author     Mathew Toth 
 * @author     Fabien Potencier 
 * @author     Sean Kerr 
 * @version    SVN: $Id: sfPDOSessionStorage.class.php 13143 2008-11-18 22:22:01Z FabianLange $
 */
  3. class sfPDOSessionStorage extends sfDatabaseSessionStorage
  4. {
  5.   /**
  6.    * Destroys a session.
  7.    *
  8.    * @param  string $id  A session ID
  9.    *
  10.    * @return bool true, if the session was destroyed, otherwise an exception is thrown
  11.    *
  12.    * @throws <b>DatabaseException</b> If the session cannot be destroyed
  13.    */
  14.   public function sessionDestroy($id)
  15.   {
  16.     // get table/column
  17.     $db_table  = $this->options['db_table'];
  18.     $db_id_col = $this->options['db_id_col'];
  20.     // delete the record associated with this id
  21.     $sql = 'DELETE FROM '.$db_table.' WHERE '.$db_id_col.'= ?';
  23.     try
  24.     {
  25.       $stmt = $this->db->prepare($sql);
  26.       $stmt->bindParam(1, $id, PDO::PARAM_STR);
  27.       $stmt->execute();
  28.     }
  29.     catch (PDOException $e)
  30.     {
  31.       throw new sfDatabaseException(sprintf('PDOException was thrown when trying to manipulate session data. Message: %s', $e->getMessage()));
  32.     }
  33.     
  34.     return true;
  35.   }
  37.   /**
  38.    * Cleans up old sessions.
  39.    *
  40.    * @param  int $lifetime  The lifetime of a session
  41.    *
  42.    * @return bool true, if old sessions have been cleaned, otherwise an exception is thrown
  43.    *
  44.    * @throws <b>DatabaseException</b> If any old sessions cannot be cleaned
  45.    */
  46.   public function sessionGC($lifetime)
  47.   {
  48.     // get table/column
  49.     $db_table    = $this->options['db_table'];
  50.     $db_time_col = $this->options['db_time_col'];
  52.     // delete the record associated with this id
  53.     $sql = 'DELETE FROM '.$db_table.' WHERE '.$db_time_col.' < '.(time() - $lifetime);
  55.     try
  56.     {
  57.       $this->db->query($sql);
  58.     }
  59.     catch (PDOException $e)
  60.     {
  61.       throw new sfDatabaseException(sprintf('PDOException was thrown when trying to manipulate session data. Message: %s', $e->getMessage()));
  62.     }
  64.     return true;
  65.   }
  67.   /**
  68.    * Reads a session.
  69.    *
  70.    * @param  string $id  A session ID
  71.    *
  72.    * @return string      The session data if the session was read or created, otherwise an exception is thrown
  73.    *
  74.    * @throws <b>DatabaseException</b> If the session cannot be read
  75.    */
  76.   public function sessionRead($id)
  77.   {
  78.     // get table/columns
  79.     $db_table    = $this->options['db_table'];
  80.     $db_data_col = $this->options['db_data_col'];
  81.     $db_id_col   = $this->options['db_id_col'];
  82.     $db_time_col = $this->options['db_time_col'];
  84.     try
  85.     {
  86.       $sql = 'SELECT '.$db_data_col.' FROM '.$db_table.' WHERE '.$db_id_col.'=?';
  88.       $stmt = $this->db->prepare($sql);
  89.       $stmt->bindParam(1, $id, PDO::PARAM_STR, 255);
  91.       $stmt->execute();
  92.       // it is recommended to use fetchAll so that PDO can close the DB cursor
  93.       // we anyway expect either no rows, or one row with one column. fetchColumn, seems to be buggy #4777
  94.       $sessionRows = $stmt->fetchAll(PDO::FETCH_NUM);
  95.       if (count($sessionRows) == 1)
  96.       {
  97.         return $sessionRows[0][0];
  98.       }
  99.       else
  100.       {
  101.         // session does not exist, create it
  102.         $sql = 'INSERT INTO '.$db_table.'('.$db_id_col.', '.$db_data_col.', '.$db_time_col.') VALUES (?, ?, ?)';
  104.         $stmt = $this->db->prepare($sql);
  105.         $stmt->bindParam(1, $id, PDO::PARAM_STR);
  106.         $stmt->bindValue(2, '', PDO::PARAM_STR);
  107.         $stmt->bindValue(3, time(), PDO::PARAM_INT);
  108.         $stmt->execute();
  110.         return '';
  111.       }
  112.     }
  113.     catch (PDOException $e)
  114.     {
  115.       throw new sfDatabaseException(sprintf('PDOException was thrown when trying to manipulate session data. Message: %s', $e->getMessage()));
  116.     }
  117.   }
  119.   /**
  120.    * Writes session data.
  121.    *
  122.    * @param  string $id    A session ID
  123.    * @param  string $data  A serialized chunk of session data
  124.    *
  125.    * @return bool true, if the session was written, otherwise an exception is thrown
  126.    *
  127.    * @throws <b>DatabaseException</b> If the session data cannot be written
  128.    */
  129.   public function sessionWrite($id, $data)
  130.   {
  131.     // get table/column
  132.     $db_table    = $this->options['db_table'];
  133.     $db_data_col = $this->options['db_data_col'];
  134.     $db_id_col   = $this->options['db_id_col'];
  135.     $db_time_col = $this->options['db_time_col'];
  137.     $sql = 'UPDATE '.$db_table.' SET '.$db_data_col.' = ?, '.$db_time_col.' = '.time().' WHERE '.$db_id_col.'= ?';
  139.     try
  140.     {
  141.       $stmt = $this->db->prepare($sql);
  142.       $stmt->bindParam(1, $data, PDO::PARAM_STR);
  143.       $stmt->bindParam(2, $id, PDO::PARAM_STR);
  144.       $stmt->execute();
  145.     }
  146.     catch (PDOException $e)
  147.     {
  148.       throw new sfDatabaseException(sprintf('PDOException was thrown when trying to manipulate session data. Message: %s', $e->getMessage()));
  149.     }
  151.     return true;
  152.   }
  153. }
Debug toolbar