develop
/
qwl_config
4
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1 Commit
1 Branch
0 Tags
9.4 MiB
Tree: 85f826c35f
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '85f826c35f'
${ noResults }
qwl_config/vendor/symfony/http-foundation/Cookie.php

424 lines
11 KiB
Raw Normal View History

111
3 years ago
  1. <?php
  3. /*
  4. * This file is part of the Symfony package.
  5. *
  6. * (c) Fabien Potencier <fabien@symfony.com>
  7. *
  8. * For the full copyright and license information, please view the LICENSE
  9. * file that was distributed with this source code.
  10. */
  12. namespace Symfony\Component\HttpFoundation;
  14. /**
  15. * Represents a cookie.
  16. *
  17. * @author Johannes M. Schmitt <schmittjoh@gmail.com>
  18. */
  19. class Cookie
  20. {
  21. public const SAMESITE_NONE = 'none';
  22. public const SAMESITE_LAX = 'lax';
  23. public const SAMESITE_STRICT = 'strict';
  25. protected $name;
  26. protected $value;
  27. protected $domain;
  28. protected $expire;
  29. protected $path;
  30. protected $secure;
  31. protected $httpOnly;
  33. private $raw;
  34. private $sameSite;
  35. private $secureDefault = false;
  37. private static $reservedCharsList = "=,; \t\r\n\v\f";
  38. private const RESERVED_CHARS_FROM = ['=', ',', ';', ' ', "\t", "\r", "\n", "\v", "\f"];
  39. private const RESERVED_CHARS_TO = ['%3D', '%2C', '%3B', '%20', '%09', '%0D', '%0A', '%0B', '%0C'];
  41. /**
  42. * Creates cookie from raw header string.
  43. *
  44. * @return static
  45. */
  46. public static function fromString(string $cookie, bool $decode = false)
  47. {
  48. $data = [
  49. 'expires' => 0,
  50. 'path' => '/',
  51. 'domain' => null,
  52. 'secure' => false,
  53. 'httponly' => false,
  54. 'raw' => !$decode,
  55. 'samesite' => null,
  56. ];
  58. $parts = HeaderUtils::split($cookie, ';=');
  59. $part = array_shift($parts);
  61. $name = $decode ? urldecode($part[0]) : $part[0];
  62. $value = isset($part[1]) ? ($decode ? urldecode($part[1]) : $part[1]) : null;
  64. $data = HeaderUtils::combine($parts) + $data;
  65. $data['expires'] = self::expiresTimestamp($data['expires']);
  67. if (isset($data['max-age']) && ($data['max-age'] > 0 || $data['expires'] > time())) {
  68. $data['expires'] = time() + (int) $data['max-age'];
  69. }
  71. return new static($name, $value, $data['expires'], $data['path'], $data['domain'], $data['secure'], $data['httponly'], $data['raw'], $data['samesite']);
  72. }
  74. public static function create(string $name, string $value = null, $expire = 0, ?string $path = '/', string $domain = null, bool $secure = null, bool $httpOnly = true, bool $raw = false, ?string $sameSite = self::SAMESITE_LAX): self
  75. {
  76. return new self($name, $value, $expire, $path, $domain, $secure, $httpOnly, $raw, $sameSite);
  77. }
  79. /**
  80. * @param string $name The name of the cookie
  81. * @param string|null $value The value of the cookie
  82. * @param int|string|\DateTimeInterface $expire The time the cookie expires
  83. * @param string $path The path on the server in which the cookie will be available on
  84. * @param string|null $domain The domain that the cookie is available to
  85. * @param bool|null $secure Whether the client should send back the cookie only over HTTPS or null to auto-enable this when the request is already using HTTPS
  86. * @param bool $httpOnly Whether the cookie will be made accessible only through the HTTP protocol
  87. * @param bool $raw Whether the cookie value should be sent with no url encoding
  88. * @param string|null $sameSite Whether the cookie will be available for cross-site requests
  89. *
  90. * @throws \InvalidArgumentException
  91. */
  92. public function __construct(string $name, string $value = null, $expire = 0, ?string $path = '/', string $domain = null, bool $secure = null, bool $httpOnly = true, bool $raw = false, ?string $sameSite = 'lax')
  93. {
  94. // from PHP source code
  95. if ($raw && false !== strpbrk($name, self::$reservedCharsList)) {
  96. throw new \InvalidArgumentException(sprintf('The cookie name "%s" contains invalid characters.', $name));
  97. }
  99. if (empty($name)) {
  100. throw new \InvalidArgumentException('The cookie name cannot be empty.');
  101. }
  103. $this->name = $name;
  104. $this->value = $value;
  105. $this->domain = $domain;
  106. $this->expire = self::expiresTimestamp($expire);
  107. $this->path = empty($path) ? '/' : $path;
  108. $this->secure = $secure;
  109. $this->httpOnly = $httpOnly;
  110. $this->raw = $raw;
  111. $this->sameSite = $this->withSameSite($sameSite)->sameSite;
  112. }
  114. /**
  115. * Creates a cookie copy with a new value.
  116. *
  117. * @return static
  118. */
  119. public function withValue(?string $value): self
  120. {
  121. $cookie = clone $this;
  122. $cookie->value = $value;
  124. return $cookie;
  125. }
  127. /**
  128. * Creates a cookie copy with a new domain that the cookie is available to.
  129. *
  130. * @return static
  131. */
  132. public function withDomain(?string $domain): self
  133. {
  134. $cookie = clone $this;
  135. $cookie->domain = $domain;
  137. return $cookie;
  138. }
  140. /**
  141. * Creates a cookie copy with a new time the cookie expires.
  142. *
  143. * @param int|string|\DateTimeInterface $expire
  144. *
  145. * @return static
  146. */
  147. public function withExpires($expire = 0): self
  148. {
  149. $cookie = clone $this;
  150. $cookie->expire = self::expiresTimestamp($expire);
  152. return $cookie;
  153. }
  155. /**
  156. * Converts expires formats to a unix timestamp.
  157. *
  158. * @param int|string|\DateTimeInterface $expire
  159. *
  160. * @return int
  161. */
  162. private static function expiresTimestamp($expire = 0)
  163. {
  164. // convert expiration time to a Unix timestamp
  165. if ($expire instanceof \DateTimeInterface) {
  166. $expire = $expire->format('U');
  167. } elseif (!is_numeric($expire)) {
  168. $expire = strtotime($expire);
  170. if (false === $expire) {
  171. throw new \InvalidArgumentException('The cookie expiration time is not valid.');
  172. }
  173. }
  175. return 0 < $expire ? (int) $expire : 0;
  176. }
  178. /**
  179. * Creates a cookie copy with a new path on the server in which the cookie will be available on.
  180. *
  181. * @return static
  182. */
  183. public function withPath(string $path): self
  184. {
  185. $cookie = clone $this;
  186. $cookie->path = '' === $path ? '/' : $path;
  188. return $cookie;
  189. }
  191. /**
  192. * Creates a cookie copy that only be transmitted over a secure HTTPS connection from the client.
  193. *
  194. * @return static
  195. */
  196. public function withSecure(bool $secure = true): self
  197. {
  198. $cookie = clone $this;
  199. $cookie->secure = $secure;
  201. return $cookie;
  202. }
  204. /**
  205. * Creates a cookie copy that be accessible only through the HTTP protocol.
  206. *
  207. * @return static
  208. */
  209. public function withHttpOnly(bool $httpOnly = true): self
  210. {
  211. $cookie = clone $this;
  212. $cookie->httpOnly = $httpOnly;
  214. return $cookie;
  215. }
  217. /**
  218. * Creates a cookie copy that uses no url encoding.
  219. *
  220. * @return static
  221. */
  222. public function withRaw(bool $raw = true): self
  223. {
  224. if ($raw && false !== strpbrk($this->name, self::$reservedCharsList)) {
  225. throw new \InvalidArgumentException(sprintf('The cookie name "%s" contains invalid characters.', $this->name));
  226. }
  228. $cookie = clone $this;
  229. $cookie->raw = $raw;
  231. return $cookie;
  232. }
  234. /**
  235. * Creates a cookie copy with SameSite attribute.
  236. *
  237. * @return static
  238. */
  239. public function withSameSite(?string $sameSite): self
  240. {
  241. if ('' === $sameSite) {
  242. $sameSite = null;
  243. } elseif (null !== $sameSite) {
  244. $sameSite = strtolower($sameSite);
  245. }
  247. if (!\in_array($sameSite, [self::SAMESITE_LAX, self::SAMESITE_STRICT, self::SAMESITE_NONE, null], true)) {
  248. throw new \InvalidArgumentException('The "sameSite" parameter value is not valid.');
  249. }
  251. $cookie = clone $this;
  252. $cookie->sameSite = $sameSite;
  254. return $cookie;
  255. }
  257. /**
  258. * Returns the cookie as a string.
  259. *
  260. * @return string The cookie
  261. */
  262. public function __toString()
  263. {
  264. if ($this->isRaw()) {
  265. $str = $this->getName();
  266. } else {
  267. $str = str_replace(self::RESERVED_CHARS_FROM, self::RESERVED_CHARS_TO, $this->getName());
  268. }
  270. $str .= '=';
  272. if ('' === (string) $this->getValue()) {
  273. $str .= 'deleted; expires='.gmdate('D, d-M-Y H:i:s T', time() - 31536001).'; Max-Age=0';
  274. } else {
  275. $str .= $this->isRaw() ? $this->getValue() : rawurlencode($this->getValue());
  277. if (0 !== $this->getExpiresTime()) {
  278. $str .= '; expires='.gmdate('D, d-M-Y H:i:s T', $this->getExpiresTime()).'; Max-Age='.$this->getMaxAge();
  279. }
  280. }
  282. if ($this->getPath()) {
  283. $str .= '; path='.$this->getPath();
  284. }
  286. if ($this->getDomain()) {
  287. $str .= '; domain='.$this->getDomain();
  288. }
  290. if (true === $this->isSecure()) {
  291. $str .= '; secure';
  292. }
  294. if (true === $this->isHttpOnly()) {
  295. $str .= '; httponly';
  296. }
  298. if (null !== $this->getSameSite()) {
  299. $str .= '; samesite='.$this->getSameSite();
  300. }
  302. return $str;
  303. }
  305. /**
  306. * Gets the name of the cookie.
  307. *
  308. * @return string
  309. */
  310. public function getName()
  311. {
  312. return $this->name;
  313. }
  315. /**
  316. * Gets the value of the cookie.
  317. *
  318. * @return string|null
  319. */
  320. public function getValue()
  321. {
  322. return $this->value;
  323. }
  325. /**
  326. * Gets the domain that the cookie is available to.
  327. *
  328. * @return string|null
  329. */
  330. public function getDomain()
  331. {
  332. return $this->domain;
  333. }
  335. /**
  336. * Gets the time the cookie expires.
  337. *
  338. * @return int
  339. */
  340. public function getExpiresTime()
  341. {
  342. return $this->expire;
  343. }
  345. /**
  346. * Gets the max-age attribute.
  347. *
  348. * @return int
  349. */
  350. public function getMaxAge()
  351. {
  352. $maxAge = $this->expire - time();
  354. return 0 >= $maxAge ? 0 : $maxAge;
  355. }
  357. /**
  358. * Gets the path on the server in which the cookie will be available on.
  359. *
  360. * @return string
  361. */
  362. public function getPath()
  363. {
  364. return $this->path;
  365. }
  367. /**
  368. * Checks whether the cookie should only be transmitted over a secure HTTPS connection from the client.
  369. *
  370. * @return bool
  371. */
  372. public function isSecure()
  373. {
  374. return $this->secure ?? $this->secureDefault;
  375. }
  377. /**
  378. * Checks whether the cookie will be made accessible only through the HTTP protocol.
  379. *
  380. * @return bool
  381. */
  382. public function isHttpOnly()
  383. {
  384. return $this->httpOnly;
  385. }
  387. /**
  388. * Whether this cookie is about to be cleared.
  389. *
  390. * @return bool
  391. */
  392. public function isCleared()
  393. {
  394. return 0 !== $this->expire && $this->expire < time();
  395. }
  397. /**
  398. * Checks if the cookie value should be sent with no url encoding.
  399. *
  400. * @return bool
  401. */
  402. public function isRaw()
  403. {
  404. return $this->raw;
  405. }
  407. /**
  408. * Gets the SameSite attribute.
  409. *
  410. * @return string|null
  411. */
  412. public function getSameSite()
  413. {
  414. return $this->sameSite;
  415. }
  417. /**
  418. * @param bool $default The default value of the "secure" flag when it is set to null
  419. */
  420. public function setSecureDefault(bool $default): void
  421. {
  422. $this->secureDefault = $default;
  423. }
  424. }