2014-12-01 23:55:08 +01:00
|
|
|
|
// swad_session.c: sessions
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
SWAD (Shared Workspace At a Distance),
|
|
|
|
|
is a web platform developed at the University of Granada (Spain),
|
|
|
|
|
and used to support university teaching.
|
|
|
|
|
|
|
|
|
|
This file is part of SWAD core.
|
2023-03-10 17:21:04 +01:00
|
|
|
|
Copyright (C) 1999-2023 Antonio Ca<EFBFBD>as Vargas
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
This program is free software: you can redistribute it and/or modify
|
|
|
|
|
it under the terms of the GNU Affero General Public License as
|
|
|
|
|
published by the Free Software Foundation, either version 3 of the
|
|
|
|
|
License, or (at your option) any later version.
|
|
|
|
|
|
|
|
|
|
This program is distributed in the hope that it will be useful,
|
|
|
|
|
but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
|
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
|
GNU Affero General Public License for more details.
|
|
|
|
|
|
|
|
|
|
You should have received a copy of the GNU Affero General Public License
|
|
|
|
|
along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
|
*/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
/************************************ Headers ********************************/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
|
|
|
|
#include <mysql/mysql.h> // To access MySQL databases
|
2019-12-29 12:39:00 +01:00
|
|
|
|
#include <stddef.h> // For NULL
|
2014-12-01 23:55:08 +01:00
|
|
|
|
#include <stdio.h> // For sprintf
|
|
|
|
|
#include <string.h> // For string functions
|
|
|
|
|
|
2022-11-06 18:11:10 +01:00
|
|
|
|
#include "swad_action_list.h"
|
2021-05-20 23:45:36 +02:00
|
|
|
|
#include "swad_connected_database.h"
|
2014-12-01 23:55:08 +01:00
|
|
|
|
#include "swad_database.h"
|
2021-04-26 15:27:27 +02:00
|
|
|
|
#include "swad_error.h"
|
2021-10-18 20:49:14 +02:00
|
|
|
|
#include "swad_file_database.h"
|
2014-12-01 23:55:08 +01:00
|
|
|
|
#include "swad_global.h"
|
2021-10-04 14:36:35 +02:00
|
|
|
|
#include "swad_pagination.h"
|
2014-12-01 23:55:08 +01:00
|
|
|
|
#include "swad_parameter.h"
|
2021-10-15 18:01:53 +02:00
|
|
|
|
#include "swad_session_database.h"
|
2021-02-27 17:23:22 +01:00
|
|
|
|
#include "swad_timeline_database.h"
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
/************** External global variables from others modules ****************/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
|
|
|
|
extern struct Globals Gbl;
|
|
|
|
|
|
|
|
|
|
/*****************************************************************************/
|
2019-11-21 16:47:07 +01:00
|
|
|
|
/***************************** Private prototypes ****************************/
|
2014-12-01 23:55:08 +01:00
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
2016-01-12 20:58:19 +01:00
|
|
|
|
static void Ses_RemoveSessionFromDB (void);
|
|
|
|
|
|
2014-12-01 23:55:08 +01:00
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
/************************** Get number of open sessions **********************/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
|
|
|
|
void Ses_GetNumSessions (void)
|
|
|
|
|
{
|
2021-03-19 00:27:46 +01:00
|
|
|
|
Gbl.Session.NumSessions = (unsigned) DB_GetNumRowsTable ("ses_sessions");
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
2021-03-19 00:27:46 +01:00
|
|
|
|
Gbl.Usrs.Connected.TimeToRefreshInMs = (unsigned long) (Gbl.Session.NumSessions/
|
|
|
|
|
Cfg_TIMES_PER_SECOND_REFRESH_CONNECTED) * 1000UL;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
if (Gbl.Usrs.Connected.TimeToRefreshInMs < Con_MIN_TIME_TO_REFRESH_CONNECTED_IN_MS)
|
|
|
|
|
Gbl.Usrs.Connected.TimeToRefreshInMs = Con_MIN_TIME_TO_REFRESH_CONNECTED_IN_MS;
|
|
|
|
|
else if (Gbl.Usrs.Connected.TimeToRefreshInMs > Con_MAX_TIME_TO_REFRESH_CONNECTED_IN_MS)
|
|
|
|
|
Gbl.Usrs.Connected.TimeToRefreshInMs = Con_MAX_TIME_TO_REFRESH_CONNECTED_IN_MS;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
/*************************** Create a new session ****************************/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
|
|
|
|
void Ses_CreateSession (void)
|
|
|
|
|
{
|
2022-10-29 12:20:54 +02:00
|
|
|
|
struct Sch_Search *Search = Sch_GetSearch ();
|
|
|
|
|
|
2014-12-01 23:55:08 +01:00
|
|
|
|
/***** Create a unique name for the session *****/
|
2022-10-21 12:11:50 +02:00
|
|
|
|
Str_Copy (Gbl.Session.Id,Cry_GetUniqueNameEncrypted (),sizeof (Gbl.Session.Id) - 1);
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Check that session is not open *****/
|
2021-10-15 18:01:53 +02:00
|
|
|
|
if (Ses_DB_CheckIfSessionExists (Gbl.Session.Id))
|
2021-04-26 15:27:27 +02:00
|
|
|
|
Err_ShowErrorAndExit ("Can not create session.");
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Add session to database *****/
|
2022-10-29 12:20:54 +02:00
|
|
|
|
if (Search->WhatToSearch == Sch_SEARCH_UNKNOWN)
|
|
|
|
|
Search->WhatToSearch = Sch_WHAT_TO_SEARCH_DEFAULT;
|
|
|
|
|
Ses_DB_InsertSession (Search->WhatToSearch);
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Update time and course in connected list *****/
|
2021-05-20 23:45:36 +02:00
|
|
|
|
Con_DB_UpdateMeInConnectedList ();
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Update number of open sessions in order to show them properly *****/
|
|
|
|
|
Ses_GetNumSessions ();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
/************************** Close current session ****************************/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
|
|
|
|
void Ses_CloseSession (void)
|
|
|
|
|
{
|
|
|
|
|
if (Gbl.Usrs.Me.Logged)
|
|
|
|
|
{
|
2020-05-13 02:12:11 +02:00
|
|
|
|
/***** Remove links to private files from cache *****/
|
2021-10-18 20:49:14 +02:00
|
|
|
|
Fil_DB_RemovePublicDirsCache ();
|
2020-05-13 02:12:11 +02:00
|
|
|
|
|
2014-12-01 23:55:08 +01:00
|
|
|
|
/***** Remove session from database *****/
|
|
|
|
|
Ses_RemoveSessionFromDB ();
|
|
|
|
|
Gbl.Session.IsOpen = false;
|
|
|
|
|
// Gbl.Session.HasBeenDisconnected = true;
|
|
|
|
|
Gbl.Session.Id[0] = '\0';
|
|
|
|
|
|
|
|
|
|
/***** If there are no more sessions for current user ==> remove user from connected list *****/
|
2021-05-10 21:10:06 +02:00
|
|
|
|
Con_DB_RemoveOldConnected ();
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
2020-05-13 02:12:11 +02:00
|
|
|
|
/***** Remove unused data associated to expired sessions *****/
|
2023-03-10 00:13:55 +01:00
|
|
|
|
Ses_DB_RemoveParsFromExpiredSessions ();
|
2021-10-18 20:49:14 +02:00
|
|
|
|
Fil_DB_RemovePublicDirsFromExpiredSessions ();
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Now, user is not logged in *****/
|
2017-06-04 18:18:54 +02:00
|
|
|
|
Gbl.Usrs.Me.Role.LoggedBeforeCloseSession = Gbl.Usrs.Me.Role.Logged;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
Gbl.Usrs.Me.Logged = false;
|
2015-01-20 20:03:38 +01:00
|
|
|
|
Gbl.Usrs.Me.IBelongToCurrentIns = false;
|
|
|
|
|
Gbl.Usrs.Me.IBelongToCurrentCtr = false;
|
|
|
|
|
Gbl.Usrs.Me.IBelongToCurrentDeg = false;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
Gbl.Usrs.Me.IBelongToCurrentCrs = false;
|
2017-06-04 18:18:54 +02:00
|
|
|
|
Gbl.Usrs.Me.Role.Logged = Rol_UNK; // Don't uncomment this line. Don't change the role to unknown. Keep user's role in order to log the access
|
2016-10-28 10:03:37 +02:00
|
|
|
|
Gbl.Usrs.Me.MyCrss.Filled = false;
|
|
|
|
|
Gbl.Usrs.Me.MyCrss.Num = 0;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Update number of open sessions in order to show them properly *****/
|
|
|
|
|
Ses_GetNumSessions ();
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
/********************** Remove session from the database *********************/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
2016-01-12 20:58:19 +01:00
|
|
|
|
static void Ses_RemoveSessionFromDB (void)
|
2014-12-01 23:55:08 +01:00
|
|
|
|
{
|
|
|
|
|
/***** Remove current session *****/
|
2021-10-15 18:01:53 +02:00
|
|
|
|
Ses_SB_RemoveCurrentSession ();
|
2016-01-12 20:58:19 +01:00
|
|
|
|
|
|
|
|
|
/***** Clear old unused social timelines in database *****/
|
|
|
|
|
// This is necessary to prevent the table growing and growing
|
2021-03-04 17:47:08 +01:00
|
|
|
|
Tml_DB_ClearOldTimelinesNotesFromDB ();
|
2014-12-01 23:55:08 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
/******* Get the data (user code and password) of an initiated session *******/
|
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
|
|
|
|
bool Ses_GetSessionData (void)
|
|
|
|
|
{
|
|
|
|
|
MYSQL_RES *mysql_res;
|
|
|
|
|
MYSQL_ROW row;
|
|
|
|
|
unsigned UnsignedNum;
|
|
|
|
|
bool Result = false;
|
2022-10-29 12:20:54 +02:00
|
|
|
|
struct Sch_Search *Search;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Check if the session existed in the database *****/
|
2021-10-15 18:01:53 +02:00
|
|
|
|
if (Ses_DB_GetSessionData (&mysql_res))
|
2014-12-01 23:55:08 +01:00
|
|
|
|
{
|
|
|
|
|
row = mysql_fetch_row (mysql_res);
|
|
|
|
|
|
|
|
|
|
/***** Get user code (row[0]) *****/
|
|
|
|
|
Gbl.Session.UsrCod = Str_ConvertStrCodToLongCod (row[0]);
|
|
|
|
|
|
|
|
|
|
/***** Get password (row[1]) *****/
|
2017-01-15 22:58:26 +01:00
|
|
|
|
Str_Copy (Gbl.Usrs.Me.LoginEncryptedPassword,row[1],
|
2021-02-15 16:25:55 +01:00
|
|
|
|
sizeof (Gbl.Usrs.Me.LoginEncryptedPassword) - 1);
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Get logged user type (row[2]) *****/
|
2017-06-04 18:18:54 +02:00
|
|
|
|
if (sscanf (row[2],"%u",&Gbl.Usrs.Me.Role.FromSession) != 1)
|
|
|
|
|
Gbl.Usrs.Me.Role.FromSession = Rol_UNK;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
2021-10-15 18:01:53 +02:00
|
|
|
|
/***** Get country code (row[3]),
|
2023-03-10 00:13:55 +01:00
|
|
|
|
instit. code (row[4]),
|
2021-10-15 18:01:53 +02:00
|
|
|
|
center code (row[5]),
|
|
|
|
|
degree code (row[6]),
|
|
|
|
|
and course code (row[7]) *****/
|
2019-04-03 20:57:04 +02:00
|
|
|
|
Gbl.Hierarchy.Cty.CtyCod = Str_ConvertStrCodToLongCod (row[3]);
|
|
|
|
|
Gbl.Hierarchy.Ins.InsCod = Str_ConvertStrCodToLongCod (row[4]);
|
|
|
|
|
Gbl.Hierarchy.Ctr.CtrCod = Str_ConvertStrCodToLongCod (row[5]);
|
|
|
|
|
Gbl.Hierarchy.Deg.DegCod = Str_ConvertStrCodToLongCod (row[6]);
|
2019-04-04 10:45:15 +02:00
|
|
|
|
Gbl.Hierarchy.Crs.CrsCod = Str_ConvertStrCodToLongCod (row[7]);
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/***** Get last search *****/
|
2016-01-17 15:10:54 +01:00
|
|
|
|
if (Gbl.Action.Act != ActLogOut) // When closing session, last search will not be needed
|
2014-12-01 23:55:08 +01:00
|
|
|
|
{
|
2022-10-29 12:20:54 +02:00
|
|
|
|
Search = Sch_GetSearch ();
|
|
|
|
|
|
2014-12-01 23:55:08 +01:00
|
|
|
|
/* Get what to search (row[8]) */
|
2022-10-29 12:20:54 +02:00
|
|
|
|
Search->WhatToSearch = Sch_SEARCH_UNKNOWN;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
if (sscanf (row[8],"%u",&UnsignedNum) == 1)
|
|
|
|
|
if (UnsignedNum < Sch_NUM_WHAT_TO_SEARCH)
|
2022-10-29 12:20:54 +02:00
|
|
|
|
Search->WhatToSearch = (Sch_WhatToSearch_t) UnsignedNum;
|
|
|
|
|
if (Search->WhatToSearch == Sch_SEARCH_UNKNOWN)
|
|
|
|
|
Search->WhatToSearch = Sch_WHAT_TO_SEARCH_DEFAULT;
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
|
|
|
|
/* Get search string (row[9]) */
|
2022-10-29 12:20:54 +02:00
|
|
|
|
Str_Copy (Search->Str,row[9],sizeof (Search->Str) - 1);
|
2014-12-01 23:55:08 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
Result = true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/***** Free structure that stores the query result *****/
|
|
|
|
|
DB_FreeMySQLResult (&mysql_res);
|
|
|
|
|
|
|
|
|
|
return Result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*****************************************************************************/
|
2021-03-18 20:38:40 +01:00
|
|
|
|
/******************* Insert session parameter in the database ****************/
|
2014-12-01 23:55:08 +01:00
|
|
|
|
/*****************************************************************************/
|
|
|
|
|
|
2023-03-10 00:13:55 +01:00
|
|
|
|
void Ses_InsertParInDB (const char *ParName,const char *ParValue)
|
2014-12-01 23:55:08 +01:00
|
|
|
|
{
|
2021-03-18 20:38:40 +01:00
|
|
|
|
/***** Before of inserting the first session parameter passed to the next action,
|
2014-12-01 23:55:08 +01:00
|
|
|
|
delete all the parameters coming from the previous action *****/
|
2023-03-10 00:13:55 +01:00
|
|
|
|
Ses_DB_RemovePar ();
|
2014-12-01 23:55:08 +01:00
|
|
|
|
|
2019-04-22 10:10:21 +02:00
|
|
|
|
/***** For a unique session-parameter,
|
|
|
|
|
don't insert a parameter more than one time *****/
|
2023-03-10 00:13:55 +01:00
|
|
|
|
if (ParName)
|
|
|
|
|
if (ParName[0])
|
|
|
|
|
if (!Ses_DB_CheckIfParIsAlreadyStored (ParName))
|
2017-03-15 11:10:16 +01:00
|
|
|
|
{
|
2021-03-18 20:38:40 +01:00
|
|
|
|
/***** Insert session parameter in the database *****/
|
2023-03-10 00:13:55 +01:00
|
|
|
|
Ses_DB_InsertPar (ParName,ParValue);
|
|
|
|
|
Gbl.Session.ParsInsertedIntoDB = true;
|
2017-03-15 11:10:16 +01:00
|
|
|
|
}
|
2014-12-01 23:55:08 +01:00
|
|
|
|
}
|