dolibarr 21.0.0-beta
listsessions.php
Go to the documentation of this file.
1<?php
2/* Copyright (C) 2004-2012 Laurent Destailleur <eldy@users.sourceforge.net>
3 * Copyright (C) 2005-2012 Regis Houssin <regis.houssin@inodbox.com>
4 * Copyright (C) 2024 MDW <mdeweerd@users.noreply.github.com>
5 * Copyright (C) 2024 Frédéric France <frederic.france@free.fr>
6 *
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; either version 3 of the License, or
10 * (at your option) any later version.
11 *
12 * This program is distributed in the hope that it will be useful,
13 * but WITHOUT ANY WARRANTY; without even the implied warranty of
14 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 * GNU General Public License for more details.
16 *
17 * You should have received a copy of the GNU General Public License
18 * along with this program. If not, see <https://www.gnu.org/licenses/>.
19 */
20
27if (! defined('CSRFCHECK_WITH_TOKEN')) {
28 define('CSRFCHECK_WITH_TOKEN', '1'); // Force use of CSRF protection with tokens even for GET
29}
30
31// Load Dolibarr environment
32require '../../main.inc.php';
33require_once DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';
34
35
44// Load translation files required by the page
45$langs->loadLangs(array("companies", "install", "users", "other"));
46
47if (!$user->admin) {
48 accessforbidden();
49}
50
51$action = GETPOST('action', 'aZ09');
52$confirm = GETPOST('confirm', 'alpha');
53
54// Security check
55if ($user->socid > 0) {
56 $action = '';
57 $socid = $user->socid;
58}
59
60$limit = GETPOSTINT('limit') ? GETPOSTINT('limit') : $conf->liste_limit;
61$sortfield = GETPOST('sortfield', 'aZ09comma');
62$sortorder = GETPOST('sortorder', 'aZ09comma');
63$page = GETPOSTISSET('pageplusone') ? (GETPOSTINT('pageplusone') - 1) : GETPOSTINT("page");
64if (empty($page) || $page == -1) {
65 $page = 0;
66} // If $page is not defined, or '' or -1
67$offset = $limit * $page;
68$pageprev = $page - 1;
69$pagenext = $page + 1;
70if (!$sortorder) {
71 $sortorder = "DESC";
72}
73if (!$sortfield) {
74 $sortfield = "dateevent";
75}
76
77
78/*
79 * Actions
80 */
81
82// Purge sessions
83if ($action == 'confirm_purge' && $confirm == 'yes' && $user->admin) {
84 $res = purgeSessions(session_id());
85}
86
87// Lock new sessions
88if ($action == 'confirm_lock' && $confirm == 'yes' && $user->admin) {
89 if (dolibarr_set_const($db, 'MAIN_ONLY_LOGIN_ALLOWED', $user->login, 'text', 1, 'Logon is restricted to a particular user', 0) < 0) {
90 dol_print_error($db);
91 }
92}
93
94// Unlock new sessions
95if ($action == 'confirm_unlock' && $user->admin) {
96 if (dolibarr_del_const($db, 'MAIN_ONLY_LOGIN_ALLOWED', -1) < 0) {
97 dol_print_error($db);
98 }
99}
100
101
102
103/*
104* View
105*/
106
107llxHeader('', '', '', '', 0, 0, '', '', '', 'mod-admin page-tools_listsessions');
108
109$form = new Form($db);
110
111$userstatic = new User($db);
112$usefilter = 0;
113
114$listofsessions = listOfSessions();
115$num = count($listofsessions);
116
117print_barre_liste($langs->trans("Sessions"), $page, $_SERVER["PHP_SELF"], "", $sortfield, $sortorder, '', $num, ($num ? $num : ''), 'setup'); // Do not show number (0) if no session found (it means we can't know)
118
119$savehandler = ini_get("session.save_handler");
120$savepath = ini_get("session.save_path");
121$openbasedir = ini_get("open_basedir");
122$phparray = phpinfo_array();
123$suhosin = empty($phparray['suhosin']["suhosin.session.encrypt"]["local"]) ? '' : $phparray['suhosin']["suhosin.session.encrypt"]["local"];
124
125print '<b>'.$langs->trans("SessionSaveHandler").'</b>: '.$savehandler.'<br>';
126print '<b>'.$langs->trans("SessionSavePath").'</b>: '.$savepath.'<br>';
127if ($openbasedir) {
128 print '<b>'.$langs->trans("OpenBaseDir").'</b>: '.$openbasedir.'<br>';
129}
130if ($suhosin) {
131 print '<b>'.$langs->trans("SuhosinSessionEncrypt").'</b>: '.$suhosin.'<br>';
132}
133print '<br>';
134
135if ($action == 'purge') {
136 $formquestion = array();
137 print $form->formconfirm($_SERVER["PHP_SELF"].'?noparam=noparam', $langs->trans('PurgeSessions'), $langs->trans('ConfirmPurgeSessions'), 'confirm_purge', $formquestion, 'no', 2);
138} elseif ($action == 'lock') {
139 $formquestion = array();
140 print $form->formconfirm($_SERVER["PHP_SELF"].'?noparam=noparam', $langs->trans('LockNewSessions'), $langs->trans('ConfirmLockNewSessions', $user->login), 'confirm_lock', $formquestion, 'no', 1);
141}
142
143if ($savehandler == 'files') {
144 print '<table class="liste centpercent">';
145 print '<tr class="liste_titre">';
146 print_liste_field_titre("Login", $_SERVER["PHP_SELF"], "login", "", "", 'align="left"', $sortfield, $sortorder);
147 print_liste_field_titre("SessionId", $_SERVER["PHP_SELF"], "id", "", "", 'align="left"', $sortfield, $sortorder);
148 print_liste_field_titre("DateCreation", $_SERVER["PHP_SELF"], "datec", "", "", 'align="left"', $sortfield, $sortorder);
149 print_liste_field_titre("DateModification", $_SERVER["PHP_SELF"], "datem", "", "", 'align="left"', $sortfield, $sortorder);
150 print_liste_field_titre("Age", $_SERVER["PHP_SELF"], "age", "", "", 'align="left"', $sortfield, $sortorder);
151 print_liste_field_titre("Raw", $_SERVER["PHP_SELF"], "raw", "", "", 'align="left"', $sortfield, $sortorder);
152 print_liste_field_titre('');
153 print "</tr>\n";
154
155 $i = 0;
156 foreach ($listofsessions as $key => $sessionentry) {
157 print '<tr class="oddeven">';
158
159 // Login
160 print '<td>'.$sessionentry['login'].'</td>';
161
162 // ID
163 print '<td class="nowrap left">';
164 if ("$key" == session_id()) {
165 print $form->textwithpicto($key, $langs->trans("YourSession"));
166 } else {
167 print $key;
168 }
169 print '</td>';
170
171 // Date creation
172 print '<td class="nowrap left">'.dol_print_date($sessionentry['creation'], '%Y-%m-%d %H:%M:%S').'</td>';
173
174 // Date modification
175 print '<td class="nowrap left">'.dol_print_date($sessionentry['modification'], '%Y-%m-%d %H:%M:%S').'</td>';
176
177 // Age
178 print '<td>'.$sessionentry['age'].'</td>';
179
180 // Raw
181 print '<td>'.dol_trunc($sessionentry['raw'], 40, 'middle').'</td>';
182
183 print '<td>&nbsp;</td>';
184
185 print "</tr>\n";
186 $i++;
187 }
188
189 if (count($listofsessions) == 0) {
190 print '<tr class="oddeven"><td colspan="7">'.$langs->trans("NoSessionFound", $savepath, $openbasedir).'</td></tr>';
191 }
192 print "</table>";
193} else {
194 print $langs->trans("NoSessionListWithThisHandler");
195}
196
197/*
198 * Buttons
199 */
200
201print '<div class="tabsAction">';
202
203
204if (!getDolGlobalString('MAIN_ONLY_LOGIN_ALLOWED')) {
205 print '<a class="butAction" href="'.$_SERVER["PHP_SELF"].'?action=lock&token='.newToken().'">'.$langs->trans("LockNewSessions").'</a>';
206} else {
207 print '<a class="butAction" href="'.$_SERVER["PHP_SELF"].'?action=confirm_unlock&token='.newToken().'">'.$langs->trans("UnlockNewSessions").'</a>';
208}
209
210if ($savehandler == 'files') {
211 if (count($listofsessions)) {
212 print '<a class="butActionDelete" href="'.$_SERVER["PHP_SELF"].'?action=purge&token='.newToken().'">'.$langs->trans("PurgeSessions").'</a>';
213 }
214}
215
216print '</div>';
217
218print '<br>';
219
220// End of page
221llxFooter();
222$db->close();
dolibarr_set_const
dolibarr_set_const($db, $name, $value, $type='chaine', $visible=0, $note='', $entity=1)
Insert a parameter (key,value) into database (delete old key then insert it again).
Definition admin.lib.php:671
purgeSessions
purgeSessions($mysessionid)
Purge existing sessions.
Definition admin.lib.php:1112
dolibarr_del_const
dolibarr_del_const($db, $name, $entity=1)
Delete a constant.
Definition admin.lib.php:581
listOfSessions
listOfSessions()
Return list of session.
Definition admin.lib.php:1056
phpinfo_array
phpinfo_array()
Return the php_info into an array.
Definition admin.lib.php:2052
llxHeader
if(!defined('NOREQUIRESOC')) if(!defined( 'NOREQUIRETRAN')) if(!defined('NOTOKENRENEWAL')) if(!defined( 'NOREQUIREMENU')) if(!defined('NOREQUIREHTML')) if(!defined( 'NOREQUIREAJAX')) llxHeader($head='', $title='', $help_url='', $target='', $disablejs=0, $disablehead=0, $arrayofjs='', $arrayofcss='', $morequerystring='', $morecssonbody='', $replacemainareaby='', $disablenofollow=0, $disablenoindex=0)
Empty header.
Definition wrapper.php:71
Form
Class to manage generation of HTML components Only common components must be here.
Definition html.form.class.php:57
User
Class to manage Dolibarr users.
Definition user.class.php:50
llxFooter
llxFooter()
Footer empty.
Definition document.php:107
print_barre_liste
print_barre_liste($title, $page, $file, $options='', $sortfield='', $sortorder='', $morehtmlcenter='', $num=-1, $totalnboflines='', $picto='generic', $pictoisfullpath=0, $morehtmlright='', $morecss='', $limit=-1, $selectlimitsuffix=0, $hidenavigation=0, $pagenavastextinput=0, $morehtmlrightbeforearrow='')
Print a title with navigation controls for pagination.
Definition functions.lib.php:6420
GETPOSTINT
GETPOSTINT($paramname, $method=0)
Return the value of a $_GET or $_POST supervariable, converted into integer.
Definition functions.lib.php:1120
newToken
newToken()
Return the value of token currently saved into session with name 'newtoken'.
Definition functions.lib.php:13466
print_liste_field_titre
print_liste_field_titre($name, $file="", $field="", $begin="", $moreparam="", $moreattrib="", $sortfield="", $sortorder="", $prefix="", $tooltip="", $forcenowrapcolumntitle=0)
Show title line of an array.
Definition functions.lib.php:6185
GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:792
dol_print_error
dol_print_error($db=null, $error='', $errors=null)
Displays error message system with all the information to facilitate the diagnosis and the escalation...
Definition functions.lib.php:5993
getDolGlobalString
getDolGlobalString($key, $default='')
Return a Dolibarr global constant string value.
Definition functions.lib.php:217
$conf
global $conf
The following vars must be defined: $type2label $form $conf, $lang, The following vars may also be de...
Definition member.php:79
accessforbidden
accessforbidden($message='', $printheader=1, $printfooter=1, $showonlymessage=0, $params=null)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1233
Generated on Sun Dec 1 2024 01:00:21 for dolibarr by Doxygen 1.11.0