Edit File by line

<?php

[0] Fix | Delete

/**

[1] Fix | Delete

* WordPress session managment.

[2] Fix | Delete

[3] Fix | Delete

* Standardizes WordPress session data and uses either database transients or in-memory caching

[4] Fix | Delete

* for storing user session information.

[5] Fix | Delete

[6] Fix | Delete

* @package WordPress

[7] Fix | Delete

* @subpackage Session

[8] Fix | Delete

* @since 3.7.0

[9] Fix | Delete

[10] Fix | Delete

[11] Fix | Delete

// Exit if accessed directly

[12] Fix | Delete

if ( ! defined( 'ABSPATH' ) ) exit;

[13] Fix | Delete

[14] Fix | Delete

/**

[15] Fix | Delete

* Return the current cache expire setting.

[16] Fix | Delete

[17] Fix | Delete

* @return int

[18] Fix | Delete

[19] Fix | Delete

function wp_session_cache_expire() {

[20] Fix | Delete

$wp_session = WP_Session::get_instance();

[21] Fix | Delete

[22] Fix | Delete

return $wp_session->cache_expiration();

[23] Fix | Delete

}

[24] Fix | Delete

[25] Fix | Delete

/**

[26] Fix | Delete

* Alias of wp_session_write_close()

[27] Fix | Delete

[28] Fix | Delete

function wp_session_commit() {

[29] Fix | Delete

wp_session_write_close();

[30] Fix | Delete

}

[31] Fix | Delete

[32] Fix | Delete

/**

[33] Fix | Delete

* Load a JSON-encoded string into the current session.

[34] Fix | Delete

[35] Fix | Delete

* @param string $data

[36] Fix | Delete

[37] Fix | Delete

function wp_session_decode( $data ) {

[38] Fix | Delete

$wp_session = WP_Session::get_instance();

[39] Fix | Delete

[40] Fix | Delete

return $wp_session->json_in( $data );

[41] Fix | Delete

}

[42] Fix | Delete

[43] Fix | Delete

/**

[44] Fix | Delete

* Encode the current session's data as a JSON string.

[45] Fix | Delete

[46] Fix | Delete

* @return string

[47] Fix | Delete

[48] Fix | Delete

function wp_session_encode() {

[49] Fix | Delete

$wp_session = WP_Session::get_instance();

[50] Fix | Delete

[51] Fix | Delete

return $wp_session->json_out();

[52] Fix | Delete

}

[53] Fix | Delete

[54] Fix | Delete

/**

[55] Fix | Delete

* Regenerate the session ID.

[56] Fix | Delete

[57] Fix | Delete

* @param bool $delete_old_session

[58] Fix | Delete

[59] Fix | Delete

* @return bool

[60] Fix | Delete

[61] Fix | Delete

function wp_session_regenerate_id( $delete_old_session = false ) {

[62] Fix | Delete

$wp_session = WP_Session::get_instance();

[63] Fix | Delete

[64] Fix | Delete

$wp_session->regenerate_id( $delete_old_session );

[65] Fix | Delete

[66] Fix | Delete

return true;

[67] Fix | Delete

}

[68] Fix | Delete

[69] Fix | Delete

/**

[70] Fix | Delete

* Start new or resume existing session.

[71] Fix | Delete

[72] Fix | Delete

* Resumes an existing session based on a value sent by the _wp_session cookie.

[73] Fix | Delete

[74] Fix | Delete

* @return bool

[75] Fix | Delete

[76] Fix | Delete

function wp_session_start() {

[77] Fix | Delete

$wp_session = WP_Session::get_instance();

[78] Fix | Delete

do_action( 'wp_session_start' );

[79] Fix | Delete

[80] Fix | Delete

return $wp_session->session_started();

[81] Fix | Delete

}

[82] Fix | Delete

add_action( 'plugins_loaded', 'wp_session_start' );

[83] Fix | Delete

[84] Fix | Delete

/**

[85] Fix | Delete

* Return the current session status.

[86] Fix | Delete

[87] Fix | Delete

* @return int

[88] Fix | Delete

[89] Fix | Delete

function wp_session_status() {

[90] Fix | Delete

$wp_session = WP_Session::get_instance();

[91] Fix | Delete

[92] Fix | Delete

if ( $wp_session->session_started() ) {

[93] Fix | Delete

return PHP_SESSION_ACTIVE;

[94] Fix | Delete

}

[95] Fix | Delete

[96] Fix | Delete

return PHP_SESSION_NONE;

[97] Fix | Delete

}

[98] Fix | Delete

[99] Fix | Delete

/**

[100] Fix | Delete

* Unset all session variables.

[101] Fix | Delete

[102] Fix | Delete

function wp_session_unset() {

[103] Fix | Delete

$wp_session = WP_Session::get_instance();

[104] Fix | Delete

[105] Fix | Delete

$wp_session->reset();

[106] Fix | Delete

}

[107] Fix | Delete

[108] Fix | Delete

/**

[109] Fix | Delete

* Write session data and end session

[110] Fix | Delete

[111] Fix | Delete

function wp_session_write_close() {

[112] Fix | Delete

$wp_session = WP_Session::get_instance();

[113] Fix | Delete

[114] Fix | Delete

$wp_session->write_data();

[115] Fix | Delete

do_action( 'wp_session_commit' );

[116] Fix | Delete

}

[117] Fix | Delete

add_action( 'shutdown', 'wp_session_write_close' );

[118] Fix | Delete

[119] Fix | Delete

/**

[120] Fix | Delete

* Clean up expired sessions by removing data and their expiration entries from

[121] Fix | Delete

* the WordPress options table.

[122] Fix | Delete

[123] Fix | Delete

* This method should never be called directly and should instead be triggered as part

[124] Fix | Delete

* of a scheduled task or cron job.

[125] Fix | Delete

[126] Fix | Delete

function wp_session_cleanup() {

[127] Fix | Delete

global $wpdb;

[128] Fix | Delete

[129] Fix | Delete

if ( defined( 'WP_SETUP_CONFIG' ) ) {

[130] Fix | Delete

return;

[131] Fix | Delete

}

[132] Fix | Delete

[133] Fix | Delete

if ( ! defined( 'WP_INSTALLING' ) ) {

[134] Fix | Delete

$expiration_keys = $wpdb->get_results( "SELECT option_name, option_value FROM $wpdb->options WHERE option_name LIKE '_wp_session_expires_%'" );

[135] Fix | Delete

[136] Fix | Delete

$now = current_time( 'timestamp' );

[137] Fix | Delete

$expired_sessions = array();

[138] Fix | Delete

[139] Fix | Delete

foreach( $expiration_keys as $expiration ) {

[140] Fix | Delete

// If the session has expired

[141] Fix | Delete

if ( $now > intval( $expiration->option_value ) ) {

[142] Fix | Delete

// Get the session ID by parsing the option_name

[143] Fix | Delete

$session_id = substr( $expiration->option_name, 20 );

[144] Fix | Delete

[145] Fix | Delete

if( (int) -1 === (int) $session_id || ! preg_match( '/^[a-f0-9]{32}$/', $session_id ) ) {

[146] Fix | Delete

continue;

[147] Fix | Delete

}

[148] Fix | Delete

[149] Fix | Delete

$expired_sessions[] = $expiration->option_name;

[150] Fix | Delete

$expired_sessions[] = esc_sql( "_wp_session_$session_id" );

[151] Fix | Delete

}

[152] Fix | Delete

}

[153] Fix | Delete

[154] Fix | Delete

// Delete all expired sessions in a single query

[155] Fix | Delete

if ( ! empty( $expired_sessions ) ) {

[156] Fix | Delete

$option_names = implode( "','", $expired_sessions );

[157] Fix | Delete

$wpdb->query( "DELETE FROM $wpdb->options WHERE option_name IN ('$option_names')" );

[158] Fix | Delete

}

[159] Fix | Delete

}

[160] Fix | Delete

[161] Fix | Delete

// Allow other plugins to hook in to the garbage collection process.

[162] Fix | Delete

do_action( 'wp_session_cleanup' );

[163] Fix | Delete

}

[164] Fix | Delete

add_action( 'wp_session_garbage_collection', 'wp_session_cleanup' );

[165] Fix | Delete

[166] Fix | Delete

/**

[167] Fix | Delete

* Register the garbage collector as a twice daily event.

[168] Fix | Delete

[169] Fix | Delete

function wp_session_register_garbage_collection() {

[170] Fix | Delete

if ( ! wp_next_scheduled( 'wp_session_garbage_collection' ) ) {

[171] Fix | Delete

wp_schedule_event( current_time( 'timestamp' ), 'twicedaily', 'wp_session_garbage_collection' );

[172] Fix | Delete

}

[173] Fix | Delete

}

[174] Fix | Delete

add_action( 'wp', 'wp_session_register_garbage_collection' );

[175] Fix | Delete