<?
// Hackers.lv Web Engine v2.0
//
// contacts:
// http://www.hackers.lv/
// mailto:marrtins@hackers.lv

// session handling

class SessionHandler
{
	var $ip, $sess_name, $timeout, $max_time_online, $sess_period;

	function SessionHandler()
	{
		$this->ip = $GLOBALS["ip"];
		$this->timeout = 0; // none
		$this->sess_name = '';
		$this->max_time_online = 300; // 5min
	} // SessionHandler

	function get_sess_name()
	{
		return (isset($this->sess_name) ? $this->sess_name : '');
	} // get_sess_name

	function get_sess($sess_id)
	{
		global $db;
//die('aa');
		$sql = "SELECT s.*, (UNIX_TIMESTAMP(NOW()) - UNIX_TIMESTAMP(s.sess_lastaccess)) sess_period FROM sessions s WHERE sess_id = '$sess_id'";
		$sess = $db->ExecuteSingle($sql);

		if(isset($sess['sess_id']) && ($sess['sess_id'] == $sess_id)) { // if session exists
		/*
			if($this->ip != $sess['sess_ip']) { // if ip was changed
				$this->sess_destroy($sess_id);
				return false ;
			} else {*/
				$sql = "UPDATE sessions SET sess_lastaccess = NOW() WHERE sess_id='$sess_id'";
				$db->Execute($sql);
			//}
		}

		if(isset($sess['sess_period']))
			$this->sess_period = $sess['sess_period'];

		return $sess;
	} // get_sess
	
	function sess_open($save_path, $sess_name)
	{
		$this->sess_name = $sess_name;
		return true;
	} // sess_open

	function sess_close()
	{
		return true;
	} // sess_close

	function sess_write($sess_id, $sess_data)
	{
		global $db;

		$sess = $this->get_sess($sess_id);

		if(isset($sess['sess_id']) && ($sess['sess_id'] == $sess_id))
			$sql = "UPDATE sessions SET sess_data = '$sess_data', sess_lastaccess = NOW() WHERE sess_id = '$sess_id'";
		else
			$sql = "INSERT INTO sessions (sess_id, sess_data, sess_ip, sess_lastaccess, sess_entered) VALUES ('$sess_id', '$sess_data', '$this->ip', NOW(), NOW())";

		$db->Execute($sql);

		return true;
	} // sess_write

	function sess_read($sess_id)
	{
		global $db;

		$sess = $this->get_sess($sess_id);

		if(!count($sess))
			return "";

		if($this->timeout && ($sess['sess_period'] > $this->timeout)) {
			$this->sess_destroy($sess_id);
			return "";
		}

		if($sess['sess_id'] == $sess_id) // if session exists
			return($sess['sess_data']);
		else
			return "";
	} // sess_read

	function sess_destroy($sess_id)
	{
		global $db;

		unset($this->sess_name);
		unset($_SESSION);

		$sql = "DELETE FROM sessions WHERE sess_id = '$sess_id'";
		return $db->Execute($sql);
	} // sess_destroy

	function set_timeout($timeout)
	{
		$this->timeout = $timeout;
	} // set_timeout

	function sess_gc($maxlifetime)
	{
		global $db;

		if($this->timeout) {
			$sql = 'DELETE FROM sessions WHERE sess_lastaccess < (NOW() - '.$this->timeout.')';
			return $db->Execute($sql);
		}

		return true;
	} // sess_gc

	function get_vars($sess_data)
	{
		$patt = '/([a-zA-z0-9_]*)\|/i';
		preg_match_all($patt, $sess_data, $m);

		$patt = '';
		$variables = array();
		foreach($m[1] as $item) {
			$patt .= "$item\|(.*)";
			$variables[] = $item;
		}

		$patt = "/^$patt$/U";
		preg_match($patt, $sess_data, $m);

		$ret = array();
		for($r = 1; $r < count($m); ++$r)
			$ret[$variables[$r - 1]] = unserialize($m[$r]);

		return $ret;
	} // get_vars

	function get_active()
	{
		global $db;

		$sql = "
		SELECT
			sess_data, (UNIX_TIMESTAMP(NOW()) - UNIX_TIMESTAMP(sess_lastaccess)) sess_period,
			sess_ip
		FROM
			sessions
		WHERE
			sess_lastaccess > NOW() - ".$this->max_time_online."
		HAVING
			sess_period < ".$this->max_time_online;

		return $db->Execute($sql);
	} // get_active

} // SessionHandler

?>