e949/api/_auth.php

<?php

require_once("_db.php"); //("api/_db.php");


// End currently active session
function EndSession () {
	session_unset();
	session_destroy();
	if (isset($_COOKIE["PHPSESSID"])) {
		unset($_COOKIE["PHPSESSID"]);
		setcookie("PHPSESSID", "", time() - 3600, "/");
	}
}


// A few tips:
// session_start() - start OR RESUME session
// If $_SESSION["userid"] is set - it counted as active login session
// If its not set - it counted as no login session
session_start();

$LOGGED_IN = false;

if (session_status() === PHP_SESSION_ACTIVE && isset($_SESSION["userid"])) { // If there are active session
	// Check if user still exist
	$s = $db->prepare("SELECT * FROM users WHERE id = ?");
	$s->bind_param("s", $_SESSION["userid"]);
	$s->execute();
	if (!(bool)$s->get_result()->fetch_assoc()) { // If not, then destroy session
		EndSession();
		echo "user id does not exist";
		die("user id used in session does not exist");
	}
	$LOGGED_IN = true;
} elseif (session_status() === PHP_SESSION_DISABLED) { // If sessions are disabled
	die("ERROR: please enable sessions in php config");
}

if ($Config["debug"] && isset($_REQUEST["debug"])) { // If there are not any session and debug mode is on
	// ATTENTION: FOR DEBUG PURPOSES ONLY!
	if ($_REQUEST["debug"] == "drop") {
		EndSession();
		die("session discarded");
	}
	$_SESSION["userid"] = intval($_REQUEST["debug"]);
	print_r(["created_session" => $_SESSION]);
	die();
}

?>
аэы 2023-08-12 04:09:17 +05:30			`<?php`

			`require_once("_db.php"); //("api/_db.php");`

Продолжил делать API для манипуляции с юзерами 2023-08-16 09:04:01 +05:30

Code cleanup and some fixes 2023-08-30 07:11:13 +05:30			`// End currently active session`
			`function EndSession () {`
			`session_unset();`
			`session_destroy();`
			`if (isset($_COOKIE["PHPSESSID"])) {`
			`unset($_COOKIE["PHPSESSID"]);`
			`setcookie("PHPSESSID", "", time() - 3600, "/");`
			`}`
			`}`



Наконец-то разобрался с сессиями, +минорные фиксы 2023-09-01 01:56:16 +05:30			`// A few tips:`
			`// session_start() - start OR RESUME session`
			`// If $_SESSION["userid"] is set - it counted as active login session`
			`// If its not set - it counted as no login session`
			`session_start();`
аэы 2023-08-12 04:09:17 +05:30
			`$LOGGED_IN = false;`

Наконец-то разобрался с сессиями, +минорные фиксы 2023-09-01 01:56:16 +05:30			`if (session_status() === PHP_SESSION_ACTIVE && isset($_SESSION["userid"])) { // If there are active session`
аэы 2023-08-12 04:09:17 +05:30			`// Check if user still exist`
			`$s = $db->prepare("SELECT * FROM users WHERE id = ?");`
			`$s->bind_param("s", $_SESSION["userid"]);`
			`$s->execute();`
Продолжил делать API для манипуляции с юзерами 2023-08-16 09:04:01 +05:30			`if (!(bool)$s->get_result()->fetch_assoc()) { // If not, then destroy session`
Code cleanup and some fixes 2023-08-30 07:11:13 +05:30			`EndSession();`
аэы 2023-08-12 04:09:17 +05:30			`echo "user id does not exist";`
			`die("user id used in session does not exist");`
			`}`
			`$LOGGED_IN = true;`
Наконец-то разобрался с сессиями, +минорные фиксы 2023-09-01 01:56:16 +05:30			`} elseif (session_status() === PHP_SESSION_DISABLED) { // If sessions are disabled`
			`die("ERROR: please enable sessions in php config");`
			`}`

			`if ($Config["debug"] && isset($_REQUEST["debug"])) { // If there are not any session and debug mode is on`
			`// ATTENTION: FOR DEBUG PURPOSES ONLY!`
			`if ($_REQUEST["debug"] == "drop") {`
			`EndSession();`
			`die("session discarded");`
			`}`
			`$_SESSION["userid"] = intval($_REQUEST["debug"]);`
			`print_r(["created_session" => $_SESSION]);`
			`die();`
аэы 2023-08-12 04:09:17 +05:30			`}`

			`?>`