mirror of
https://we.phorge.it/source/phorge.git
synced 2024-11-29 02:02:41 +01:00
eef314b701
Summary: Ref T4310. Ref T3720. Session operations are currently part of PhabricatorUser. This is more tightly coupled than needbe, and makes it difficult to establish login sessions for non-users. Move all the session management code to a `SessionEngine`. Test Plan: - Viewed sessions. - Regenerated Conduit certificate. - Verified Conduit sessions were destroyed. - Logged out. - Logged in. - Ran conduit commands. - Viewed sessions again. Reviewers: btrahan Reviewed By: btrahan CC: aran Maniphest Tasks: T4310, T3720 Differential Revision: https://secure.phabricator.com/D7962
107 lines
2.6 KiB
PHP
107 lines
2.6 KiB
PHP
<?php
|
|
|
|
final class PhabricatorAuthSessionQuery
|
|
extends PhabricatorCursorPagedPolicyAwareQuery {
|
|
|
|
private $identityPHIDs;
|
|
private $sessionKeys;
|
|
private $sessionTypes;
|
|
|
|
public function withIdentityPHIDs(array $identity_phids) {
|
|
$this->identityPHIDs = $identity_phids;
|
|
return $this;
|
|
}
|
|
|
|
public function withSessionKeys(array $keys) {
|
|
$this->sessionKeys = $keys;
|
|
return $this;
|
|
}
|
|
|
|
public function withSessionTypes(array $types) {
|
|
$this->sessionTypes = $types;
|
|
return $this;
|
|
}
|
|
|
|
protected function loadPage() {
|
|
$table = new PhabricatorAuthSession();
|
|
$conn_r = $table->establishConnection('r');
|
|
|
|
$data = queryfx_all(
|
|
$conn_r,
|
|
'SELECT * FROM %T %Q %Q %Q',
|
|
$table->getTableName(),
|
|
$this->buildWhereClause($conn_r),
|
|
$this->buildOrderClause($conn_r),
|
|
$this->buildLimitClause($conn_r));
|
|
|
|
return $table->loadAllFromArray($data);
|
|
}
|
|
|
|
protected function willFilterPage(array $sessions) {
|
|
$identity_phids = mpull($sessions, 'getUserPHID');
|
|
|
|
$identity_objects = id(new PhabricatorObjectQuery())
|
|
->setViewer($this->getViewer())
|
|
->setParentQuery($this)
|
|
->withPHIDs($identity_phids)
|
|
->execute();
|
|
$identity_objects = mpull($identity_objects, null, 'getPHID');
|
|
|
|
foreach ($sessions as $key => $session) {
|
|
$identity_object = idx($identity_objects, $session->getUserPHID());
|
|
if (!$identity_object) {
|
|
unset($sessions[$key]);
|
|
} else {
|
|
$session->attachIdentityObject($identity_object);
|
|
}
|
|
}
|
|
|
|
return $sessions;
|
|
}
|
|
|
|
protected function buildWhereClause(AphrontDatabaseConnection $conn_r) {
|
|
$where = array();
|
|
|
|
if ($this->identityPHIDs) {
|
|
$where[] = qsprintf(
|
|
$conn_r,
|
|
'userPHID IN (%Ls)',
|
|
$this->identityPHIDs);
|
|
}
|
|
|
|
if ($this->sessionKeys) {
|
|
$hashes = array();
|
|
foreach ($this->sessionKeys as $session_key) {
|
|
$hashes[] = PhabricatorHash::digest($session_key);
|
|
}
|
|
$where[] = qsprintf(
|
|
$conn_r,
|
|
'sessionKey IN (%Ls)',
|
|
$hashes);
|
|
}
|
|
|
|
if ($this->sessionTypes) {
|
|
$clauses = array();
|
|
foreach ($this->sessionTypes as $session_type) {
|
|
$clauses[] = qsprintf(
|
|
$conn_r,
|
|
'type LIKE %>',
|
|
$session_type.'-');
|
|
}
|
|
$where[] = '('.implode(') OR (', $clauses).')';
|
|
}
|
|
|
|
$where[] = $this->buildPagingClause($conn_r);
|
|
|
|
return $this->formatWhereClause($where);
|
|
}
|
|
|
|
public function getPagingColumn() {
|
|
return 'sessionKey';
|
|
}
|
|
|
|
public function getQueryApplicationClass() {
|
|
return 'PhabricatorApplicationAuth';
|
|
}
|
|
|
|
}
|