php/yii2
1
0
Fork 0
mirror of https://github.com/yiisoft/yii2.git synced 2025-11-21 17:20:57 +08:00
Code Issues Packages Projects Releases Wiki Activity

cookie, request, response WIP

Browse Source
This commit is contained in:
Qiang Xue
2013-02-27 21:27:28 -05:00
parent 4ec96cd6cf
commit 1536a6828a
4 changed files with 167 additions and 138 deletions
Download Patch File Download Diff File Expand all files Collapse all files

16
framework/web/Cookie.php
View File

@@ -48,4 +48,20 @@ class Cookie extends \yii\base\Object
* such as JavaScript, which can effectively help to reduce identity theft through XSS attacks. * such as JavaScript, which can effectively help to reduce identity theft through XSS attacks.
*/ */
public $httpOnly = false; public $httpOnly = false;
/**
* Magic method to turn a cookie object into a string without having to explicitly access [[value]].
*
* ~~~
* if (isset($request->cookies['name'])) {
* $value = (string)$request->cookies['name'];
* }
* ~~~
*
* @return string The value of the cookie. If the value property is null, an empty string will be returned.
*/
public function __toString()
{
return (string)$this->value;
}
} }

215
framework/web/CookieCollection.php
View File

@@ -1,6 +1,6 @@
<?php <?php
/** /**
* Dictionary class file. * CookieCollection class file.
* *
* @link http://www.yiiframework.com/ * @link http://www.yiiframework.com/
* @copyright Copyright &copy; 2008 Yii Software LLC * @copyright Copyright &copy; 2008 Yii Software LLC
@@ -12,26 +12,9 @@ namespace yii\web;
use yii\base\DictionaryIterator; use yii\base\DictionaryIterator;
/** /**
* Dictionary implements a collection that stores key-value pairs. * CookieCollection maintains the cookies available in the current request.
* *
* You can access, add or remove an item with a key by using * @property integer $count the number of cookies in the collection
* [[itemAt()]], [[add()]], and [[remove()]].
*
* To get the number of the items in the dictionary, use [[getCount()]].
*
* Because Dictionary implements a set of SPL interfaces, it can be used
* like a regular PHP array as follows,
*
* ~~~
* $dictionary[$key] = $value; // add a key-value pair
* unset($dictionary[$key]); // remove the value with the specified key
* if (isset($dictionary[$key])) // if the dictionary contains the key
* foreach ($dictionary as $key=>$value) // traverse the items in the dictionary
* $n = count($dictionary); // returns the number of items in the dictionary
* ~~~
*
* @property integer $count the number of items in the dictionary
* @property array $keys The keys in the dictionary
* *
* @author Qiang Xue <qiang.xue@gmail.com> * @author Qiang Xue <qiang.xue@gmail.com>
* @since 2.0 * @since 2.0
@@ -39,15 +22,13 @@ use yii\base\DictionaryIterator;
class CookieCollection extends \yii\base\Object implements \IteratorAggregate, \ArrayAccess, \Countable class CookieCollection extends \yii\base\Object implements \IteratorAggregate, \ArrayAccess, \Countable
{ {
/** /**
* @var Cookie[] internal data storage * @var Cookie[] the cookies in this collection (indexed by the cookie names)
*/ */
private $_cookies = array(); private $_cookies = array();
/** /**
* Constructor. * Constructor.
* Initializes the dictionary with an array or an iterable object. * @param Cookie[] $cookies the initial cookies in the collection.
* @param array $cookies the initial data to be populated into the dictionary.
* This can be an array or an iterable object.
* @param array $config name-value pairs that will be used to initialize the object properties * @param array $config name-value pairs that will be used to initialize the object properties
*/ */
public function __construct($cookies = array(), $config = array()) public function __construct($cookies = array(), $config = array())
@@ -57,10 +38,10 @@ class CookieCollection extends \yii\base\Object implements \IteratorAggregate, \
} }
/** /**
* Returns an iterator for traversing the items in the dictionary. * Returns an iterator for traversing the cookies in the collection.
* This method is required by the SPL interface `IteratorAggregate`. * This method is required by the SPL interface `IteratorAggregate`.
* It will be implicitly called when you use `foreach` to traverse the dictionary. * It will be implicitly called when you use `foreach` to traverse the collection.
* @return DictionaryIterator an iterator for traversing the items in the dictionary. * @return DictionaryIterator an iterator for traversing the cookies in the collection.
*/ */
public function getIterator() public function getIterator()
{ {
@@ -68,10 +49,10 @@ class CookieCollection extends \yii\base\Object implements \IteratorAggregate, \
} }
/** /**
* Returns the number of items in the dictionary. * Returns the number of cookies in the collection.
* This method is required by the SPL `Countable` interface. * This method is required by the SPL `Countable` interface.
* It will be implicitly called when you use `count($dictionary)`. * It will be implicitly called when you use `count($collection)`.
* @return integer number of items in the dictionary. * @return integer the number of cookies in the collection.
*/ */
public function count() public function count()
{ {
@@ -79,8 +60,8 @@ class CookieCollection extends \yii\base\Object implements \IteratorAggregate, \
} }
/** /**
* Returns the number of items in the dictionary. * Returns the number of cookies in the collection.
* @return integer the number of items in the dictionary * @return integer the number of cookies in the collection.
*/ */
public function getCount() public function getCount()
{ {
@@ -88,72 +69,74 @@ class CookieCollection extends \yii\base\Object implements \IteratorAggregate, \
} }
/** /**
* Returns the keys stored in the dictionary. * Returns the cookie with the specified name.
* @return array the key list * @param string $name the cookie name
* @return Cookie the cookie with the specified name. Null if the named cookie does not exist.
* @see getValue()
*/ */
public function getNames() public function get($name)
{
return array_keys($this->_cookies);
}
/**
* Returns the item with the specified key.
* @param mixed $name the key
* @return Cookie the element with the specified key.
* Null if the key cannot be found in the dictionary.
*/
public function getCookie($name)
{ {
return isset($this->_cookies[$name]) ? $this->_cookies[$name] : null; return isset($this->_cookies[$name]) ? $this->_cookies[$name] : null;
} }
/** /**
* Adds an item into the dictionary. * Returns the value of the named cookie.
* Note, if the specified key already exists, the old value will be overwritten. * @param string $name the cookie name
* @param Cookie $cookie value * @param mixed $defaultValue the value that should be returned when the named cookie does not exist.
* @throws Exception if the dictionary is read-only * @return mixed the value of the named cookie.
* @see get()
*/ */
public function add(Cookie $cookie) public function getValue($name, $defaultValue)
{
return isset($this->_cookies[$name]) ? $this->_cookies[$name]->value : $defaultValue;
}
/**
* Adds a cookie to the collection.
* If there is already a cookie with the same name in the collection, it will be removed first.
* @param Cookie $cookie the cookie to be added
*/
public function add($cookie)
{ {
if (isset($this->_cookies[$cookie->name])) { if (isset($this->_cookies[$cookie->name])) {
$this->remove($this->_cookies[$cookie->name]); $c = $this->_cookies[$cookie->name];
setcookie($c->name, '', 0, $c->path, $c->domain, $c->secure, $c->httpOnly);
} }
setcookie($cookie->name, $cookie->value, $cookie->expire, $cookie->path, $cookie->domain, $cookie->secure, $cookie->httpOnly); setcookie($cookie->name, $cookie->value, $cookie->expire, $cookie->path, $cookie->domain, $cookie->secure, $cookie->httpOnly);
$this->_cookies[$cookie->name] = $cookie; $this->_cookies[$cookie->name] = $cookie;
} }
/** /**
* Removes an item from the dictionary by its key. * Removes a cookie from the collection.
* @param mixed $key the key of the item to be removed * @param Cookie|string $cookie the cookie object or the name of the cookie to be removed.
* @return mixed the removed value, null if no such key exists.
* @throws Exception if the dictionary is read-only
*/ */
public function remove(Cookie $cookie) public function remove($cookie)
{ {
setcookie($cookie->name, '', 0, $cookie->path, $cookie->domain, $cookie->secure, $cookie->httpOnly); if (is_string($cookie) && isset($this->_cookies[$cookie])) {
unset($this->_cookies[$cookie->name]); $cookie = $this->_cookies[$cookie];
} }
if ($cookie instanceof Cookie) {
/** setcookie($cookie->name, '', 0, $cookie->path, $cookie->domain, $cookie->secure, $cookie->httpOnly);
* Removes all items from the dictionary. unset($this->_cookies[$cookie->name]);
* @param boolean $safeClear whether to clear every item by calling [[remove]].
* Defaults to false, meaning all items in the dictionary will be cleared directly
* without calling [[remove]].
*/
public function clear($safeClear = false)
{
if ($safeClear) {
foreach (array_keys($this->_cookies) as $key) {
$this->remove($key);
}
} else {
$this->_cookies = array();
} }
} }
/** /**
* Returns the dictionary as a PHP array. * Removes all cookies.
* @return array the list of items in array */
public function removeAll()
{
foreach ($this->_cookies as $cookie) {
setcookie($cookie->name, '', 0, $cookie->path, $cookie->domain, $cookie->secure, $cookie->httpOnly);
}
$this->_cookies = array();
}
/**
* Returns the collection as a PHP array.
* @return array the array representation of the collection.
* The array keys are cookie names, and the array values are the corresponding
* cookie objects.
*/ */
public function toArray() public function toArray()
{ {
@@ -161,78 +144,52 @@ class CookieCollection extends \yii\base\Object implements \IteratorAggregate, \
} }
/** /**
* Returns whether there is an element at the specified offset. * Returns whether there is a cookie with the specified name.
* This method is required by the SPL interface `ArrayAccess`. * This method is required by the SPL interface `ArrayAccess`.
* It is implicitly called when you use something like `isset($dictionary[$offset])`. * It is implicitly called when you use something like `isset($collection[$name])`.
* This is equivalent to [[contains]]. * @param string $name the cookie name
* @param mixed $offset the offset to check on * @return boolean whether the named cookie exists
* @return boolean
*/ */
public function offsetExists($offset) public function offsetExists($name)
{ {
return isset($this->_cookies[$offset]); return isset($this->_cookies[$name]);
} }
/** /**
* Returns the element at the specified offset. * Returns the cookie with the specified name.
* This method is required by the SPL interface `ArrayAccess`. * This method is required by the SPL interface `ArrayAccess`.
* It is implicitly called when you use something like `$value = $dictionary[$offset];`. * It is implicitly called when you use something like `$cookie = $collection[$name];`.
* This is equivalent to [[itemAt]]. * This is equivalent to [[get()]].
* @param mixed $offset the offset to retrieve element. * @param string $name the cookie name
* @return mixed the element at the offset, null if no element is found at the offset * @return Cookie the cookie with the specified name, null if the named cookie does not exist.
*/ */
public function offsetGet($offset) public function offsetGet($name)
{ {
return $this->getCookie($offset); return $this->get($name);
} }
/** /**
* Sets the element at the specified offset. * Adds the cookie to the collection.
* This method is required by the SPL interface `ArrayAccess`. * This method is required by the SPL interface `ArrayAccess`.
* It is implicitly called when you use something like `$dictionary[$offset] = $item;`. * It is implicitly called when you use something like `$collection[$name] = $cookie;`.
* If the offset is null, the new item will be appended to the dictionary. * This is equivalent to [[add()]].
* Otherwise, the existing item at the offset will be replaced with the new item. * @param string $name the cookie name
* This is equivalent to [[add]]. * @param Cookie $cookie the cookie to be added
* @param mixed $offset the offset to set element
* @param mixed $item the element value
*/ */
public function offsetSet($offset, $item) public function offsetSet($name, $cookie)
{ {
$this->add($item); $this->add($cookie);
} }
/** /**
* Unsets the element at the specified offset. * Removes the named cookie.
* This method is required by the SPL interface `ArrayAccess`. * This method is required by the SPL interface `ArrayAccess`.
* It is implicitly called when you use something like `unset($dictionary[$offset])`. * It is implicitly called when you use something like `unset($collection[$name])`.
* This is equivalent to [[remove]]. * This is equivalent to [[remove()]].
* @param mixed $offset the offset to unset element * @param string $name the cookie name
*/ */
public function offsetUnset($offset) public function offsetUnset($name)
{ {
if (isset($this->_cookies[$offset])) { $this->remove($name);
$this->remove($this->_cookies[$offset]);
}
}
/**
* @return array list of validated cookies
*/
protected function loadCookies($data)
{
$cookies = array();
if ($this->_request->enableCookieValidation) {
$sm = Yii::app()->getSecurityManager();
foreach ($_COOKIE as $name => $value) {
if (is_string($value) && ($value = $sm->validateData($value)) !== false) {
$cookies[$name] = new CHttpCookie($name, @unserialize($value));
}
}
} else {
foreach ($_COOKIE as $name => $value) {
$cookies[$name] = new CHttpCookie($name, $value);
}
}
return $cookies;
} }
} }

50
framework/web/Request.php
View File

@@ -695,21 +695,53 @@ class Request extends \yii\base\Request
return isset($languages[0]) ? $languages[0] : false; return isset($languages[0]) ? $languages[0] : false;
} }
/** /**
* Returns the cookie collection. * Returns the cookie collection.
* The result can be used like an associative array. Adding {@link CHttpCookie} objects * Through the returned cookie collection, you may access a cookie using the following syntax:
* to the collection will send the cookies to the client; and removing the objects *
* from the collection will delete those cookies on the client. * ~~~
* @return CCookieCollection the cookie collection. * $cookie = $request->cookies['name']
* if ($cookie !== null) {
* $value = $cookie->value;
* }
*
* // alternatively
* $value = $request->cookies->getValue('name');
* ~~~
*
* @return CookieCollection the cookie collection.
*/ */
public function getCookies() public function getCookies()
{ {
if ($this->_cookies !== null) { if ($this->_cookies === null) {
return $this->_cookies; $this->_cookies = new CookieCollection($this->loadCookies());
} else {
return $this->_cookies = new CCookieCollection($this);
} }
return $this->_cookies;
}
/**
* Returns the current cookies in terms of [[Cookie]] objects.
* @return Cookie[] list of current cookies
*/
protected function loadCookies()
{
$cookies = array();
if ($this->enableCookieValidation) {
$sm = Yii::app()->getSecurityManager();
foreach ($_COOKIE as $name => $value) {
if (is_string($value) && ($value = $sm->validateData($value)) !== false) {
$cookies[$name] = new CHttpCookie($name, @unserialize($value));
}
}
} else {
foreach ($_COOKIE as $name => $value) {
$cookies[$name] = new Cookie(array(
'name' => $name,
'value' => $value,
));
}
}
return $cookies;
} }
private $_csrfToken; private $_csrfToken;

24
framework/web/Response.php
View File

@@ -161,4 +161,28 @@ class Response extends \yii\base\Response
Yii::app()->end(); Yii::app()->end();
} }
} }
/**
* Returns the cookie collection.
* Through the returned cookie collection, you add or remove cookies as follows,
*
* ~~~
* // add a cookie
* $response->cookies->add(new Cookie(array(
* 'name' => $name,
* 'value' => $value,
* ));
*
* // remove a cookie
* $response->cookies->remove('name');
* // alternatively
* unset($response->cookies['name']);
* ~~~
*
* @return CookieCollection the cookie collection.
*/
public function getCookies()
{
return \Yii::$app->getRequest()->getCookies();
}
} }