将session写入数据库中

最新推荐文章于 2021-03-27 17:01:33 发布

原创最新推荐文章于 2021-03-27 17:01:33 发布 · 1.1k 阅读

0 ·

CC 4.0 BY-SA版权

文章标签：

#session #数据库 #function #sql #class #delete

本文介绍了一种使用 PHP 将 Session 数据存储到 MySQL 数据库的方法。通过自定义 session handler 实现了 session 的开启、关闭、读取、写入、销毁及垃圾回收等功能，并确保了 IP 地址的一致性和 session 的有效期。

将session写入数据库中

<?php
class Session {

                private static $handler=null;
		private static $ip=null;
		private static $lifetime=null;
		private static $time=null;


		private static function init($handler){
			self::$handler=$handler;
			self::$ip = !empty($_SERVER["REMOTE_ADDR"]) ? $_SERVER["REMOTE_ADDR"] : 'unknown';
			self::$lifetime=ini_get('session.gc_maxlifetime');
			self::$time=time();
		}


		static function start(PDO $pdo){
			self::init($pdo);
			session_set_save_handler(
					array(__CLASS__,"open"),
					array(__CLASS__,"close"),
					array(__CLASS__,"read"),
					array(__CLASS__,"write"),
					array(__CLASS__,"destroy"),
					array(__CLASS__,"gc")
				);


			session_start();
		}


		public static function open($path, $name){
			return true;
		}


		public static function close(){
			return true;
		}
		
		public static function read($PHPSESSID){
			$sql="select PHPSESSID, update_time, client_ip, data from session where PHPSESSID= ?";


			$stmt=self::$handler->prepare($sql);


			$stmt->execute(array($PHPSESSID));
			
			if(!$result=$stmt->fetch(PDO::FETCH_ASSOC)){
				return '';
			}


			if( self::$ip  != $result["client_ip"]){
				self::destroy($PHPSESSID);
				return '';
			}


			if(($result["update_time"] + self::$lifetime) < self::$time ){
				self::destroy($PHPSESSID);
				return '';
			}
			return $result['data'];


		}


		public static function write($PHPSESSID, $data){
			$sql="select * from session where PHPSESSID= ?";


			$stmt=self::$handler->prepare($sql);


			$stmt->execute(array($PHPSESSID));


			if($result=$stmt->fetch(PDO::FETCH_ASSOC)){
				if($result['data'] != $data || self::$time > ($result['update_time']+30)){
					$sql="update session set update_time = ?, data =? where PHPSESSID = ?";
					
					$stm=self::$handler->prepare($sql);
					$stm->execute(array(self::$time, $data, $PHPSESSID));
				
				}
			}else{
				if(!empty($data)){
					$sql="insert into session(PHPSESSID, update_time, client_ip, data) values(?,?,?,?)";


					$sth=self::$handler->prepare($sql);


					$sth->execute(array($PHPSESSID, self::$time, self::$ip, $data));
				}
			}


			return true;
		}


		public static function destroy($PHPSESSID){
			$sql="delete from session where PHPSESSID = ?";


			$stmt=self::$handler->prepare($sql);


			$stmt->execute(array($PHPSESSID));


			return true;
		}


		private static function gc($lifetime){
			$sql = "delete from session where update_time < ?";


			$stmt=self::$handler->prepare($sql);


			$stmt->execute(array(self::$time-$lifetime));


			return true;
		}	
	}


	try{
		$pdo=new PDO("mysql:host=localhost;dbname=xd", "root", "");
	}catch(PDOException $e){
		echo $e->getMessage();
	}


	Session::start($pdo);