Source for file SC_Session.php
Documentation is available at SC_Session.php
* This file is part of EC-CUBE
* Copyright(c) 2000-2011 LOCKON CO.,LTD. All Rights Reserved.
* http://www.lockon.co.jp/
* This program is free software; you can redistribute it and/or
* modify it under the terms of the GNU General Public License
* as published by the Free Software Foundation; either version 2
* of the License, or (at your option) any later version.
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
* You should have received a copy of the GNU General Public License
* along with this program; if not, write to the Free Software
* Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
if(isset ($_SESSION['cert'])) {
$this->cert = $_SESSION['cert'];
$this->login_id = $_SESSION['login_id'];
// 管理者:0, 店舗オーナー:1, 閲覧:2, 販売担当:3 (XXX 現状 0, 1 を暫定実装。2, 3 は未実装。)
if (isset ($_SESSION['uniq_id'])) {
$this->uniqid = $_SESSION['uniq_id'];
GC_Utils_Ex::gfPrintLog("access : user=". $this->login_id. " auth=". $this->authority. " sid=". $this->sid);
GC_Utils_Ex::gfPrintLog("access error.");
if ($this->cert == CERT_STRING) {
$masterData = new SC_DB_MasterData_Ex();
$admin_path = preg_replace('/\/+/', '/', $_SERVER['PHP_SELF']);
$arrPERMISSION = $masterData->getMasterData("mtb_permission");
if (isset ($arrPERMISSION[$admin_path])) {
// 数値が自分の権限以上のものでないとアクセスできない。
if ($arrPERMISSION[$admin_path] < $this->authority) {
// ユニークIDがセットされていない場合はセットする。
if( empty($_SESSION['uniqid']) ) {
// 予測されないようにランダム文字列を付与する。
$this->SetSession('uniqid', SC_Utils_Ex::sfGetUniqRandomId());
// セッションを切断するにはセッションクッキーも削除する。
// Note: セッション情報だけでなくセッションを破壊する。
if (isset ($_COOKIE[$sname])) {
GC_Utils_Ex::gfPrintLog("logout : user=". $this->login_id. " auth=". $this->authority. " sid=". $this->sid);
unset ($_SESSION['cert']);
unset ($_SESSION['login_id']);
unset ($_SESSION['authority']);
unset ($_SESSION['member_id']);
unset ($_SESSION['uniqid']);
SC_Helper_Session_Ex::destroyToken();
GC_Utils_Ex::gfPrintLog("logout : user=". $this->login_id. " auth=". $this->authority. " sid=". $this->sid);
Documentation generated on Fri, 24 Feb 2012 14:02:56 +0900 by Seasoft
|