Page MenuHomePhabricator
Differential D7978 Diff 18056 src/applications/auth/engine/PhabricatorAuthSessionEngine.php

Changeset View

Standalone View

View Options

src/applications/auth/engine/PhabricatorAuthSessionEngine.php

<?php <?php
final class PhabricatorAuthSessionEngine extends Phobject { final class PhabricatorAuthSessionEngine extends Phobject {
public function loadUserForSession($session_type, $session_key) { public function loadUserForSession($session_type, $session_key) {
$session_table = new PhabricatorAuthSession(); $session_table = new PhabricatorAuthSession();
$user_table = new PhabricatorUser(); $user_table = new PhabricatorUser();
$conn_r = $session_table->establishConnection('r'); $conn_r = $session_table->establishConnection('r');
// NOTE: We're being clever here because this happens on every page load, // NOTE: We're being clever here because this happens on every page load,
// and by joining we can save a query. // and by joining we can save a query.
$info = queryfx_one( $info = queryfx_one(
$conn_r, $conn_r,
'SELECT s.sessionExpires AS _sessionExpires, s.id AS _sessionID, u.* 'SELECT s.sessionExpires AS _sessionExpires, s.id AS _sessionID, u.*
FROM %T u JOIN %T s ON u.phid = s.userPHID FROM %T u JOIN %T s ON u.phid = s.userPHID
AND s.type LIKE %> AND s.sessionKey = %s', AND s.type = %s AND s.sessionKey = %s',
$user_table->getTableName(), $user_table->getTableName(),
$session_table->getTableName(), $session_table->getTableName(),
$session_type.'-', $session_type,
PhabricatorHash::digest($session_key)); PhabricatorHash::digest($session_key));
if (!$info) { if (!$info) {
return null; return null;
} }
$expires = $info['_sessionExpires']; $expires = $info['_sessionExpires'];
$id = $info['_sessionID']; $id = $info['_sessionID'];
Show All 38 Linesfinal class PhabricatorAuthSessionEngine extends Phobject {
* @{class:PhabricatorAuthSession}). * @{class:PhabricatorAuthSession}).
* @param phid Identity to establish a session for, usually a user PHID. * @param phid Identity to establish a session for, usually a user PHID.
* @return string Newly generated session key. * @return string Newly generated session key.
*/ */
public function establishSession($session_type, $identity_phid) { public function establishSession($session_type, $identity_phid) {
$session_table = new PhabricatorAuthSession(); $session_table = new PhabricatorAuthSession();
$conn_w = $session_table->establishConnection('w'); $conn_w = $session_table->establishConnection('w');
if (strpos($session_type, '-') !== false) {
throw new Exception("Session type must not contain hyphen ('-')!");
}
// We allow multiple sessions of the same type, so when a caller requests
// a new session of type "web", we give them the first available session in
// "web-1", "web-2", ..., "web-N", up to some configurable limit. If none
// of these sessions is available, we overwrite the oldest session and
// reissue a new one in its place.
$session_limit = 1;
switch ($session_type) {
case PhabricatorAuthSession::TYPE_WEB:
$session_limit = PhabricatorEnv::getEnvConfig('auth.sessions.web');
break;
case PhabricatorAuthSession::TYPE_CONDUIT:
$session_limit = PhabricatorEnv::getEnvConfig('auth.sessions.conduit');
break;
default:
throw new Exception("Unknown session type '{$session_type}'!");
}
$session_limit = (int)$session_limit;
if ($session_limit <= 0) {
throw new Exception(
"Session limit for '{$session_type}' must be at least 1!");
}
// NOTE: Session establishment is sensitive to race conditions, as when
// piping `arc` to `arc`:
//
// arc export ... | arc paste ...
//
// To avoid this, we overwrite an old session only if it hasn't been
// re-established since we read it.
// Consume entropy to generate a new session key, forestalling the eventual // Consume entropy to generate a new session key, forestalling the eventual
// heat death of the universe. // heat death of the universe.
$session_key = Filesystem::readRandomCharacters(40); $session_key = Filesystem::readRandomCharacters(40);
$session_ttl = PhabricatorAuthSession::getSessionTypeTTL($session_type);
// Load all the currently active sessions.
$sessions = queryfx_all(
$conn_w,
'SELECT type, sessionKey, sessionStart FROM %T
WHERE userPHID = %s AND type LIKE %>',
$session_table->getTableName(),
$identity_phid,
$session_type.'-');
$sessions = ipull($sessions, null, 'type');
$sessions = isort($sessions, 'sessionStart');
$existing_sessions = array_keys($sessions); // This has a side effect of validating the session type.
$session_ttl = PhabricatorAuthSession::getSessionTypeTTL($session_type);
// UNGUARDED WRITES: Logging-in users don't have CSRF stuff yet. // Logging-in users don't have CSRF stuff yet, so we have to unguard this
// write.
$unguarded = AphrontWriteGuard::beginScopedUnguardedWrites(); $unguarded = AphrontWriteGuard::beginScopedUnguardedWrites();
id(new PhabricatorAuthSession())
$retries = 0; ->setUserPHID($identity_phid)
while (true) { ->setType($session_type)
->setSessionKey(PhabricatorHash::digest($session_key))
// Choose which 'type' we'll actually establish, i.e. what number we're ->setSessionStart(time())
// going to append to the basic session type. To do this, just check all ->setSessionExpires(time() + $session_ttl)
// the numbers sequentially until we find an available session. ->save();
$establish_type = null;
for ($ii = 1; $ii <= $session_limit; $ii++) {
$try_type = $session_type.'-'.$ii;
if (!in_array($try_type, $existing_sessions)) {
$establish_type = $try_type;
$expect_key = PhabricatorHash::digest($session_key);
$existing_sessions[] = $try_type;
// Ensure the row exists so we can issue an update below. We don't
// care if we race here or not.
queryfx(
$conn_w,
'INSERT IGNORE INTO %T
(userPHID, type, sessionKey, sessionStart, sessionExpires)
VALUES (%s, %s, %s, 0, UNIX_TIMESTAMP() + %d)',
$session_table->getTableName(),
$identity_phid,
$establish_type,
PhabricatorHash::digest($session_key),
$session_ttl);
break;
}
}
// If we didn't find an available session, choose the oldest session and
// overwrite it.
if (!$establish_type) {
$oldest = reset($sessions);
$establish_type = $oldest['type'];
$expect_key = $oldest['sessionKey'];
}
// This is so that we'll only overwrite the session if it hasn't been
// refreshed since we read it. If it has, the session key will be
// different and we know we're racing other processes. Whichever one
// won gets the session, we go back and try again.
queryfx(
$conn_w,
'UPDATE %T SET sessionKey = %s, sessionStart = UNIX_TIMESTAMP(),
sessionExpires = UNIX_TIMESTAMP() + %d
WHERE userPHID = %s AND type = %s AND sessionKey = %s',
$session_table->getTableName(),
PhabricatorHash::digest($session_key),
$session_ttl,
$identity_phid,
$establish_type,
$expect_key);
if ($conn_w->getAffectedRows()) {
// The update worked, so the session is valid.
break;
} else {
// We know this just got grabbed, so don't try it again.
unset($sessions[$establish_type]);
}
if (++$retries > $session_limit) {
throw new Exception("Failed to establish a session!");
}
}
$log = PhabricatorUserLog::initializeNewLog( $log = PhabricatorUserLog::initializeNewLog(
null, null,
$identity_phid, $identity_phid,
PhabricatorUserLog::ACTION_LOGIN); PhabricatorUserLog::ACTION_LOGIN);
$log->setDetails( $log->setDetails(
array( array(
'session_type' => $session_type, 'session_type' => $session_type,
'session_issued' => $establish_type,
)); ));
$log->setSession($session_key); $log->setSession($session_key);
$log->save(); $log->save();
unset($unguarded);
btrahanUnsubmitted
Not Done
Inline Actions

nice catch

btrahan: nice catch
return $session_key; return $session_key;
} }
} }
Phabricator · Built by Phacility