Session.php 21.6 KB
Newer Older
Qiang Xue committed
1 2 3
<?php
/**
 * @link http://www.yiiframework.com/
Qiang Xue committed
4
 * @copyright Copyright (c) 2008 Yii Software LLC
Qiang Xue committed
5 6 7
 * @license http://www.yiiframework.com/license/
 */

Qiang Xue committed
8 9
namespace yii\web;

Qiang Xue committed
10
use Yii;
Qiang Xue committed
11
use yii\base\Component;
Qiang Xue committed
12
use yii\base\InvalidConfigException;
Qiang Xue committed
13 14
use yii\base\InvalidParamException;

Qiang Xue committed
15
/**
Qiang Xue committed
16
 * Session provides session data management and the related configurations.
Qiang Xue committed
17
 *
Qiang Xue committed
18
 * Session is a Web application component that can be accessed via `Yii::$app->session`.
19
 *
Qiang Xue committed
20 21
 * To start the session, call [[open()]]; To complete and send out session data, call [[close()]];
 * To destroy the session, call [[destroy()]].
Qiang Xue committed
22
 *
Qiang Xue committed
23 24
 * By default, [[autoStart]] is true which means the session will be started automatically
 * when the session component is accessed the first time.
Qiang Xue committed
25
 *
Qiang Xue committed
26
 * Session can be used like an array to set and get session data. For example,
Qiang Xue committed
27
 *
Qiang Xue committed
28 29 30 31 32 33 34 35
 * ~~~
 * $session = new Session;
 * $session->open();
 * $value1 = $session['name1'];  // get session variable 'name1'
 * $value2 = $session['name2'];  // get session variable 'name2'
 * foreach ($session as $name => $value) // traverse all session variables
 * $session['name3'] = $value3;  // set session variable 'name3'
 * ~~~
Qiang Xue committed
36
 *
Qiang Xue committed
37
 * Session can be extended to support customized session storage.
Qiang Xue committed
38 39 40 41
 * To do so, override [[useCustomStorage()]] so that it returns true, and
 * override these methods with the actual logic about using custom storage:
 * [[openSession()]], [[closeSession()]], [[readSession()]], [[writeSession()]],
 * [[destroySession()]] and [[gcSession()]].
Qiang Xue committed
42
 *
Qiang Xue committed
43 44 45 46 47
 * Session also supports a special type of session data, called *flash messages*.
 * A flash message is available only in the current request and the next request.
 * After that, it will be deleted automatically. Flash messages are particularly
 * useful for displaying confirmation messages. To use flash messages, simply
 * call methods such as [[setFlash()]], [[getFlash()]].
Qiang Xue committed
48
 *
49
 * @property array $allFlashes Flash messages (key => message). This property is read-only.
Qiang Xue committed
50
 * @property array $cookieParams The session cookie parameters. This property is read-only.
51 52 53 54 55 56
 * @property integer $count The number of session variables. This property is read-only.
 * @property string $flash The key identifying the flash message. Note that flash messages and normal session
 * variables share the same name space. If you have a normal session variable using the same name, its value will
 * be overwritten by this method. This property is write-only.
 * @property float $gCProbability The probability (percentage) that the GC (garbage collection) process is
 * started on every session initialization, defaults to 1 meaning 1% chance.
57
 * @property string $id The current session ID.
58 59 60
 * @property boolean $isActive Whether the session has started. This property is read-only.
 * @property SessionIterator $iterator An iterator for traversing the session variables. This property is
 * read-only.
61
 * @property string $name The current session name.
62 63 64
 * @property string $savePath The current session save path, defaults to '/tmp'.
 * @property integer $timeout The number of seconds after which data will be seen as 'garbage' and cleaned up.
 * The default value is 1440 seconds (or the value of "session.gc_maxlifetime" set in php.ini).
65 66 67 68 69
 * @property boolean|null $useCookies The value indicating whether cookies should be used to store session
 * IDs.
 * @property boolean $useCustomStorage Whether to use custom storage. This property is read-only.
 * @property boolean $useTransparentSessionID Whether transparent sid support is enabled or not, defaults to
 * false.
70
 *
Qiang Xue committed
71
 * @author Qiang Xue <qiang.xue@gmail.com>
Qiang Xue committed
72
 * @since 2.0
Qiang Xue committed
73
 */
Qiang Xue committed
74
class Session extends Component implements \IteratorAggregate, \ArrayAccess, \Countable
Qiang Xue committed
75 76
{
	/**
Qiang Xue committed
77
	 * @var boolean whether the session should be automatically started when the session component is initialized.
Qiang Xue committed
78
	 */
Qiang Xue committed
79
	public $autoStart = true;
Qiang Xue committed
80 81 82 83
	/**
	 * @var string the name of the session variable that stores the flash message data.
	 */
	public $flashVar = '__flash';
84 85 86 87
	/**
	 * @var \SessionHandlerInterface|array an object implementing the SessionHandlerInterface or a configuration array. If set, will be used to provide persistency instead of build-in methods.
	 */
	public $handler;
88
	/**
89
	 * @var array parameter-value pairs to override default session cookie parameters that are used for session_set_cookie_params() function
90
	 * Array may have the following possible keys: 'lifetime', 'path', 'domain', 'secure', 'httpOnly'
91
	 * @see http://www.php.net/manual/en/function.session-set-cookie-params.php
92
	 */
93
	private $_cookieParams = ['httpOnly' => true];
94

Qiang Xue committed
95 96 97 98 99 100 101
	/**
	 * Initializes the application component.
	 * This method is required by IApplicationComponent and is invoked by application.
	 */
	public function init()
	{
		parent::init();
Qiang Xue committed
102
		if ($this->autoStart) {
Qiang Xue committed
103
			$this->open();
Qiang Xue committed
104
		}
Alexander Makarov committed
105
		register_shutdown_function([$this, 'close']);
Qiang Xue committed
106 107 108 109
	}

	/**
	 * Returns a value indicating whether to use custom session storage.
Qiang Xue committed
110 111 112
	 * This method should be overridden to return true by child classes that implement custom session storage.
	 * To implement custom session storage, override these methods: [[openSession()]], [[closeSession()]],
	 * [[readSession()]], [[writeSession()]], [[destroySession()]] and [[gcSession()]].
Qiang Xue committed
113 114 115 116 117 118 119 120
	 * @return boolean whether to use custom storage.
	 */
	public function getUseCustomStorage()
	{
		return false;
	}

	/**
Qiang Xue committed
121
	 * Starts the session.
Qiang Xue committed
122 123 124
	 */
	public function open()
	{
125 126
		if (session_status() == PHP_SESSION_ACTIVE) {
			return;
Qiang Xue committed
127 128
		}

129 130 131 132 133 134 135 136
		if ($this->handler !== null) {
			if (!is_object($this->handler)) {
				$this->handler = Yii::createObject($this->handler);
			}
			if (!$this->handler instanceof \SessionHandlerInterface) {
				throw new InvalidConfigException('"' . get_class($this) . '::handler" must implement the SessionHandlerInterface.');
			}
			@session_set_save_handler($this->handler, false);
137
		} elseif ($this->getUseCustomStorage()) {
138 139 140 141 142 143 144 145 146
			@session_set_save_handler(
				[$this, 'openSession'],
				[$this, 'closeSession'],
				[$this, 'readSession'],
				[$this, 'writeSession'],
				[$this, 'destroySession'],
				[$this, 'gcSession']
			);
		}
Qiang Xue committed
147

148
		$this->setCookieParamsInternal();
149

150
		@session_start();
Qiang Xue committed
151

152 153 154 155 156 157
		if (session_id() == '') {
			$error = error_get_last();
			$message = isset($error['message']) ? $error['message'] : 'Failed to start session.';
			Yii::error($message, __METHOD__);
		} else {
			$this->updateFlashCounters();
Qiang Xue committed
158 159 160 161 162 163 164 165
		}
	}

	/**
	 * Ends the current session and store session data.
	 */
	public function close()
	{
Qiang Xue committed
166
		if (session_id() !== '') {
Qiang Xue committed
167
			@session_write_close();
Qiang Xue committed
168
		}
Qiang Xue committed
169 170 171 172 173 174 175
	}

	/**
	 * Frees all session variables and destroys all data registered to a session.
	 */
	public function destroy()
	{
Qiang Xue committed
176
		if (session_id() !== '') {
Qiang Xue committed
177 178 179 180 181 182 183 184
			@session_unset();
			@session_destroy();
		}
	}

	/**
	 * @return boolean whether the session has started
	 */
Qiang Xue committed
185
	public function getIsActive()
Qiang Xue committed
186
	{
187
		return session_status() == PHP_SESSION_ACTIVE;
Qiang Xue committed
188 189 190 191 192
	}

	/**
	 * @return string the current session ID
	 */
Qiang Xue committed
193
	public function getId()
Qiang Xue committed
194 195 196 197 198 199 200
	{
		return session_id();
	}

	/**
	 * @param string $value the session ID for the current session
	 */
Qiang Xue committed
201
	public function setId($value)
Qiang Xue committed
202 203 204 205 206
	{
		session_id($value);
	}

	/**
Qiang Xue committed
207
	 * Updates the current session ID with a newly generated one .
Carsten Brandt committed
208
	 * Please refer to <http://php.net/session_regenerate_id> for more details.
Qiang Xue committed
209 210
	 * @param boolean $deleteOldSession Whether to delete the old associated session file or not.
	 */
Qiang Xue committed
211
	public function regenerateID($deleteOldSession = false)
Qiang Xue committed
212 213 214 215 216 217 218
	{
		session_regenerate_id($deleteOldSession);
	}

	/**
	 * @return string the current session name
	 */
Qiang Xue committed
219
	public function getName()
Qiang Xue committed
220 221 222 223 224
	{
		return session_name();
	}

	/**
Qiang Xue committed
225 226
	 * @param string $value the session name for the current session, must be an alphanumeric string.
	 * It defaults to "PHPSESSID".
Qiang Xue committed
227
	 */
Qiang Xue committed
228
	public function setName($value)
Qiang Xue committed
229 230 231 232 233 234 235 236 237 238 239 240 241
	{
		session_name($value);
	}

	/**
	 * @return string the current session save path, defaults to '/tmp'.
	 */
	public function getSavePath()
	{
		return session_save_path();
	}

	/**
Qiang Xue committed
242 243
	 * @param string $value the current session save path. This can be either a directory name or a path alias.
	 * @throws InvalidParamException if the path is not a valid directory
Qiang Xue committed
244 245 246
	 */
	public function setSavePath($value)
	{
Qiang Xue committed
247
		$path = Yii::getAlias($value);
Qiang Xue committed
248
		if (is_dir($path)) {
Qiang Xue committed
249
			session_save_path($path);
Qiang Xue committed
250
		} else {
Qiang Xue committed
251
			throw new InvalidParamException("Session save path is not a valid directory: $value");
Qiang Xue committed
252
		}
Qiang Xue committed
253 254 255 256 257 258 259 260
	}

	/**
	 * @return array the session cookie parameters.
	 * @see http://us2.php.net/manual/en/function.session-get-cookie-params.php
	 */
	public function getCookieParams()
	{
Qiang Xue committed
261 262 263 264 265
		$params = session_get_cookie_params();
		if (isset($params['httponly'])) {
			$params['httpOnly'] = $params['httponly'];
			unset($params['httponly']);
		}
266
		return array_merge($params, $this->_cookieParams);
Qiang Xue committed
267 268 269 270
	}

	/**
	 * Sets the session cookie parameters.
271 272
	 * The cookie parameters passed to this method will be merged with the result
	 * of `session_get_cookie_params()`.
Qiang Xue committed
273
	 * @param array $value cookie parameters, valid keys include: `lifetime`, `path`, `domain`, `secure` and `httpOnly`.
Qiang Xue committed
274
	 * @throws InvalidParamException if the parameters are incomplete.
Qiang Xue committed
275 276
	 * @see http://us2.php.net/manual/en/function.session-set-cookie-params.php
	 */
277 278 279 280 281 282 283 284 285 286 287 288
	public function setCookieParams(array $value)
	{
		$this->_cookieParams = $value;
	}

	/**
	 * Sets the session cookie parameters.
	 * This method is called by [[open()]] when it is about to open the session.
	 * @throws InvalidParamException if the parameters are incomplete.
	 * @see http://us2.php.net/manual/en/function.session-set-cookie-params.php
	 */
	private function setCookieParamsInternal()
Qiang Xue committed
289
	{
Qiang Xue committed
290
		$data = $this->getCookieParams();
Qiang Xue committed
291
		extract($data);
Qiang Xue committed
292 293
		if (isset($lifetime, $path, $domain, $secure, $httpOnly)) {
			session_set_cookie_params($lifetime, $path, $domain, $secure, $httpOnly);
Qiang Xue committed
294
		} else {
295
			throw new InvalidParamException('Please make sure cookieParams contains these elements: lifetime, path, domain, secure and httpOnly.');
Qiang Xue committed
296
		}
Qiang Xue committed
297 298 299
	}

	/**
Qiang Xue committed
300 301 302
	 * Returns the value indicating whether cookies should be used to store session IDs.
	 * @return boolean|null the value indicating whether cookies should be used to store session IDs.
	 * @see setUseCookies()
Qiang Xue committed
303
	 */
Qiang Xue committed
304
	public function getUseCookies()
Qiang Xue committed
305
	{
Qiang Xue committed
306
		if (ini_get('session.use_cookies') === '0') {
Qiang Xue committed
307 308 309
			return false;
		} elseif (ini_get('session.use_only_cookies') === '1') {
			return true;
Qiang Xue committed
310
		} else {
Qiang Xue committed
311
			return null;
Qiang Xue committed
312
		}
Qiang Xue committed
313 314 315
	}

	/**
Qiang Xue committed
316 317 318 319 320 321 322 323
	 * Sets the value indicating whether cookies should be used to store session IDs.
	 * Three states are possible:
	 *
	 * - true: cookies and only cookies will be used to store session IDs.
	 * - false: cookies will not be used to store session IDs.
	 * - null: if possible, cookies will be used to store session IDs; if not, other mechanisms will be used (e.g. GET parameter)
	 *
	 * @param boolean|null $value the value indicating whether cookies should be used to store session IDs.
Qiang Xue committed
324
	 */
Qiang Xue committed
325
	public function setUseCookies($value)
Qiang Xue committed
326
	{
Qiang Xue committed
327
		if ($value === false) {
Qiang Xue committed
328 329
			ini_set('session.use_cookies', '0');
			ini_set('session.use_only_cookies', '0');
Qiang Xue committed
330 331 332
		} elseif ($value === true) {
			ini_set('session.use_cookies', '1');
			ini_set('session.use_only_cookies', '1');
Qiang Xue committed
333
		} else {
Qiang Xue committed
334 335
			ini_set('session.use_cookies', '1');
			ini_set('session.use_only_cookies', '0');
Qiang Xue committed
336 337 338 339
		}
	}

	/**
Qiang Xue committed
340
	 * @return float the probability (percentage) that the GC (garbage collection) process is started on every session initialization, defaults to 1 meaning 1% chance.
Qiang Xue committed
341 342 343
	 */
	public function getGCProbability()
	{
Qiang Xue committed
344
		return (float)(ini_get('session.gc_probability') / ini_get('session.gc_divisor') * 100);
Qiang Xue committed
345 346 347
	}

	/**
Qiang Xue committed
348 349
	 * @param float $value the probability (percentage) that the GC (garbage collection) process is started on every session initialization.
	 * @throws InvalidParamException if the value is not between 0 and 100.
Qiang Xue committed
350 351 352
	 */
	public function setGCProbability($value)
	{
Qiang Xue committed
353
		if ($value >= 0 && $value <= 100) {
Qiang Xue committed
354 355 356
			// percent * 21474837 / 2147483647 ≈ percent * 0.01
			ini_set('session.gc_probability', floor($value * 21474836.47));
			ini_set('session.gc_divisor', 2147483647);
Qiang Xue committed
357
		} else {
Qiang Xue committed
358
			throw new InvalidParamException('GCProbability must be a value between 0 and 100.');
Qiang Xue committed
359
		}
Qiang Xue committed
360 361 362 363 364 365 366
	}

	/**
	 * @return boolean whether transparent sid support is enabled or not, defaults to false.
	 */
	public function getUseTransparentSessionID()
	{
Qiang Xue committed
367
		return ini_get('session.use_trans_sid') == 1;
Qiang Xue committed
368 369 370 371 372 373 374
	}

	/**
	 * @param boolean $value whether transparent sid support is enabled or not.
	 */
	public function setUseTransparentSessionID($value)
	{
Qiang Xue committed
375
		ini_set('session.use_trans_sid', $value ? '1' : '0');
Qiang Xue committed
376 377 378
	}

	/**
Qiang Xue committed
379 380
	 * @return integer the number of seconds after which data will be seen as 'garbage' and cleaned up.
	 * The default value is 1440 seconds (or the value of "session.gc_maxlifetime" set in php.ini).
Qiang Xue committed
381 382 383 384 385 386 387 388 389 390 391
	 */
	public function getTimeout()
	{
		return (int)ini_get('session.gc_maxlifetime');
	}

	/**
	 * @param integer $value the number of seconds after which data will be seen as 'garbage' and cleaned up
	 */
	public function setTimeout($value)
	{
Qiang Xue committed
392
		ini_set('session.gc_maxlifetime', $value);
Qiang Xue committed
393 394 395 396
	}

	/**
	 * Session open handler.
Qiang Xue committed
397
	 * This method should be overridden if [[useCustomStorage()]] returns true.
Qiang Xue committed
398 399 400 401 402
	 * Do not call this method directly.
	 * @param string $savePath session save path
	 * @param string $sessionName session name
	 * @return boolean whether session is opened successfully
	 */
Qiang Xue committed
403
	public function openSession($savePath, $sessionName)
Qiang Xue committed
404 405 406 407 408 409
	{
		return true;
	}

	/**
	 * Session close handler.
Qiang Xue committed
410
	 * This method should be overridden if [[useCustomStorage()]] returns true.
Qiang Xue committed
411 412 413 414 415 416 417 418 419 420
	 * Do not call this method directly.
	 * @return boolean whether session is closed successfully
	 */
	public function closeSession()
	{
		return true;
	}

	/**
	 * Session read handler.
Qiang Xue committed
421
	 * This method should be overridden if [[useCustomStorage()]] returns true.
Qiang Xue committed
422 423 424 425 426 427 428 429 430 431 432
	 * Do not call this method directly.
	 * @param string $id session ID
	 * @return string the session data
	 */
	public function readSession($id)
	{
		return '';
	}

	/**
	 * Session write handler.
Qiang Xue committed
433
	 * This method should be overridden if [[useCustomStorage()]] returns true.
Qiang Xue committed
434 435 436 437 438
	 * Do not call this method directly.
	 * @param string $id session ID
	 * @param string $data session data
	 * @return boolean whether session write is successful
	 */
Qiang Xue committed
439
	public function writeSession($id, $data)
Qiang Xue committed
440 441 442 443 444 445
	{
		return true;
	}

	/**
	 * Session destroy handler.
Qiang Xue committed
446
	 * This method should be overridden if [[useCustomStorage()]] returns true.
Qiang Xue committed
447 448 449 450 451 452 453 454 455 456 457
	 * Do not call this method directly.
	 * @param string $id session ID
	 * @return boolean whether session is destroyed successfully
	 */
	public function destroySession($id)
	{
		return true;
	}

	/**
	 * Session GC (garbage collection) handler.
Qiang Xue committed
458
	 * This method should be overridden if [[useCustomStorage()]] returns true.
Qiang Xue committed
459 460 461 462 463 464 465 466 467 468 469 470
	 * Do not call this method directly.
	 * @param integer $maxLifetime the number of seconds after which data will be seen as 'garbage' and cleaned up.
	 * @return boolean whether session is GCed successfully
	 */
	public function gcSession($maxLifetime)
	{
		return true;
	}

	/**
	 * Returns an iterator for traversing the session variables.
	 * This method is required by the interface IteratorAggregate.
Qiang Xue committed
471
	 * @return SessionIterator an iterator for traversing the session variables.
Qiang Xue committed
472 473 474
	 */
	public function getIterator()
	{
Qiang Xue committed
475
		return new SessionIterator;
Qiang Xue committed
476 477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492 493 494 495 496 497 498
	}

	/**
	 * Returns the number of items in the session.
	 * @return integer the number of session variables
	 */
	public function getCount()
	{
		return count($_SESSION);
	}

	/**
	 * Returns the number of items in the session.
	 * This method is required by Countable interface.
	 * @return integer number of items in the session.
	 */
	public function count()
	{
		return $this->getCount();
	}

	/**
	 * Returns the session variable value with the session variable name.
Qiang Xue committed
499 500
	 * If the session variable does not exist, the `$defaultValue` will be returned.
	 * @param string $key the session variable name
Qiang Xue committed
501 502 503
	 * @param mixed $defaultValue the default value to be returned when the session variable does not exist.
	 * @return mixed the session variable value, or $defaultValue if the session variable does not exist.
	 */
Qiang Xue committed
504
	public function get($key, $defaultValue = null)
Qiang Xue committed
505 506 507 508 509 510
	{
		return isset($_SESSION[$key]) ? $_SESSION[$key] : $defaultValue;
	}

	/**
	 * Adds a session variable.
Qiang Xue committed
511 512
	 * If the specified name already exists, the old value will be overwritten.
	 * @param string $key session variable name
Qiang Xue committed
513 514
	 * @param mixed $value session variable value
	 */
Qiang Xue committed
515
	public function set($key, $value)
Qiang Xue committed
516
	{
Qiang Xue committed
517
		$_SESSION[$key] = $value;
Qiang Xue committed
518 519 520 521
	}

	/**
	 * Removes a session variable.
Qiang Xue committed
522
	 * @param string $key the name of the session variable to be removed
Qiang Xue committed
523 524 525 526
	 * @return mixed the removed value, null if no such session variable.
	 */
	public function remove($key)
	{
Qiang Xue committed
527 528
		if (isset($_SESSION[$key])) {
			$value = $_SESSION[$key];
Qiang Xue committed
529 530
			unset($_SESSION[$key]);
			return $value;
Qiang Xue committed
531
		} else {
Qiang Xue committed
532
			return null;
Qiang Xue committed
533
		}
Qiang Xue committed
534 535 536 537 538
	}

	/**
	 * Removes all session variables
	 */
Qiang Xue committed
539
	public function removeAll()
Qiang Xue committed
540
	{
Qiang Xue committed
541
		foreach (array_keys($_SESSION) as $key) {
Qiang Xue committed
542
			unset($_SESSION[$key]);
Qiang Xue committed
543
		}
Qiang Xue committed
544 545 546 547 548 549
	}

	/**
	 * @param mixed $key session variable name
	 * @return boolean whether there is the named session variable
	 */
Qiang Xue committed
550
	public function has($key)
Qiang Xue committed
551 552 553 554 555 556 557 558 559 560 561 562
	{
		return isset($_SESSION[$key]);
	}

	/**
	 * @return array the list of all session variables in array
	 */
	public function toArray()
	{
		return $_SESSION;
	}

Qiang Xue committed
563 564 565 566 567 568
	/**
	 * Updates the counters for flash messages and removes outdated flash messages.
	 * This method should only be called once in [[init()]].
	 */
	protected function updateFlashCounters()
	{
Alexander Makarov committed
569
		$counters = $this->get($this->flashVar, []);
Qiang Xue committed
570 571 572 573 574 575 576 577 578 579 580 581 582 583 584 585 586 587 588 589
		if (is_array($counters)) {
			foreach ($counters as $key => $count) {
				if ($count) {
					unset($counters[$key], $_SESSION[$key]);
				} else {
					$counters[$key]++;
				}
			}
			$_SESSION[$this->flashVar] = $counters;
		} else {
			// fix the unexpected problem that flashVar doesn't return an array
			unset($_SESSION[$this->flashVar]);
		}
	}

	/**
	 * Returns a flash message.
	 * A flash message is available only in the current request and the next request.
	 * @param string $key the key identifying the flash message
	 * @param mixed $defaultValue value to be returned if the flash message does not exist.
590 591
	 * @param boolean $delete whether to delete this flash message right after this method is called.
	 * If false, the flash message will be automatically deleted after the next request.
Qiang Xue committed
592 593
	 * @return mixed the flash message
	 */
594
	public function getFlash($key, $defaultValue = null, $delete = false)
Qiang Xue committed
595
	{
Alexander Makarov committed
596
		$counters = $this->get($this->flashVar, []);
597 598 599 600 601 602 603 604 605
		if (isset($counters[$key])) {
			$value = $this->get($key, $defaultValue);
			if ($delete) {
				$this->removeFlash($key);
			}
			return $value;
		} else {
			return $defaultValue;
		}
Qiang Xue committed
606 607 608 609 610 611 612 613
	}

	/**
	 * Returns all flash messages.
	 * @return array flash messages (key => message).
	 */
	public function getAllFlashes()
	{
Alexander Makarov committed
614 615
		$counters = $this->get($this->flashVar, []);
		$flashes = [];
Qiang Xue committed
616 617 618 619 620 621 622 623 624 625 626 627 628 629 630 631
		foreach (array_keys($counters) as $key) {
			if (isset($_SESSION[$key])) {
				$flashes[$key] = $_SESSION[$key];
			}
		}
		return $flashes;
	}

	/**
	 * Stores a flash message.
	 * A flash message is available only in the current request and the next request.
	 * @param string $key the key identifying the flash message. Note that flash messages
	 * and normal session variables share the same name space. If you have a normal
	 * session variable using the same name, its value will be overwritten by this method.
	 * @param mixed $value flash message
	 */
Qiang Xue committed
632
	public function setFlash($key, $value = true)
Qiang Xue committed
633
	{
Alexander Makarov committed
634
		$counters = $this->get($this->flashVar, []);
Qiang Xue committed
635 636 637 638 639 640 641 642 643 644 645 646 647 648 649
		$counters[$key] = 0;
		$_SESSION[$key] = $value;
		$_SESSION[$this->flashVar] = $counters;
	}

	/**
	 * Removes a flash message.
	 * Note that flash messages will be automatically removed after the next request.
	 * @param string $key the key identifying the flash message. Note that flash messages
	 * and normal session variables share the same name space.  If you have a normal
	 * session variable using the same name, it will be removed by this method.
	 * @return mixed the removed flash message. Null if the flash message does not exist.
	 */
	public function removeFlash($key)
	{
Alexander Makarov committed
650
		$counters = $this->get($this->flashVar, []);
Qiang Xue committed
651 652 653 654 655 656 657 658 659 660 661 662 663 664
		$value = isset($_SESSION[$key], $counters[$key]) ? $_SESSION[$key] : null;
		unset($counters[$key], $_SESSION[$key]);
		$_SESSION[$this->flashVar] = $counters;
		return $value;
	}

	/**
	 * Removes all flash messages.
	 * Note that flash messages and normal session variables share the same name space.
	 * If you have a normal session variable using the same name, it will be removed
	 * by this method.
	 */
	public function removeAllFlashes()
	{
Alexander Makarov committed
665
		$counters = $this->get($this->flashVar, []);
Qiang Xue committed
666 667 668 669 670 671 672
		foreach (array_keys($counters) as $key) {
			unset($_SESSION[$key]);
		}
		unset($_SESSION[$this->flashVar]);
	}

	/**
Qiang Xue committed
673
	 * Returns a value indicating whether there is a flash message associated with the specified key.
Qiang Xue committed
674 675 676 677 678 679 680 681
	 * @param string $key key identifying the flash message
	 * @return boolean whether the specified flash message exists
	 */
	public function hasFlash($key)
	{
		return $this->getFlash($key) !== null;
	}

Qiang Xue committed
682 683 684 685 686 687 688 689 690 691 692 693 694 695 696 697 698 699 700 701 702 703 704 705 706
	/**
	 * This method is required by the interface ArrayAccess.
	 * @param mixed $offset the offset to check on
	 * @return boolean
	 */
	public function offsetExists($offset)
	{
		return isset($_SESSION[$offset]);
	}

	/**
	 * This method is required by the interface ArrayAccess.
	 * @param integer $offset the offset to retrieve element.
	 * @return mixed the element at the offset, null if no element is found at the offset
	 */
	public function offsetGet($offset)
	{
		return isset($_SESSION[$offset]) ? $_SESSION[$offset] : null;
	}

	/**
	 * This method is required by the interface ArrayAccess.
	 * @param integer $offset the offset to set element
	 * @param mixed $item the element value
	 */
Qiang Xue committed
707
	public function offsetSet($offset, $item)
Qiang Xue committed
708
	{
Qiang Xue committed
709
		$_SESSION[$offset] = $item;
Qiang Xue committed
710 711 712 713 714 715 716 717 718 719 720
	}

	/**
	 * This method is required by the interface ArrayAccess.
	 * @param mixed $offset the offset to unset element
	 */
	public function offsetUnset($offset)
	{
		unset($_SESSION[$offset]);
	}
}