RFC: Reopen sessions if we need to write to them

juliusknorr · juliusknorr · commit f8650f399af0 · 2022-08-15T22:53:55.000+02:00
Signed-off-by: Julius Härtl &lt;jus@bitgrid.net&gt;
diff --git a/lib/base.php b/lib/base.php
@@ -456,6 +456,7 @@ public static function initSession() {
 		}
 
 		$session->set('LAST_ACTIVITY', time());
+		$session->close();
 	}
 
 	/**
diff --git a/lib/private/AppFramework/Middleware/SessionMiddleware.php b/lib/private/AppFramework/Middleware/SessionMiddleware.php
@@ -51,8 +51,8 @@ public function __construct(ControllerMethodReflector $reflector,
 	 */
 	public function beforeController($controller, $methodName) {
 		$useSession = $this->reflector->hasAnnotation('UseSession');
-		if (!$useSession) {
-			$this->session->close();
+		if ($useSession) {
+			$this->session->reopen();
 		}
 	}
 
diff --git a/lib/private/Session/CryptoSessionData.php b/lib/private/Session/CryptoSessionData.php
@@ -97,8 +97,10 @@ protected function initializeSession() {
 	 * @param mixed $value
 	 */
 	public function set(string $key, $value) {
+		$this->reopen();
 		$this->sessionValues[$key] = $value;
 		$this->isModified = true;
+		$this->close();
 	}
 
 	/**
@@ -131,9 +133,11 @@ public function exists(string $key): bool {
 	 * @param string $key
 	 */
 	public function remove(string $key) {
+		$this->reopen();
 		$this->isModified = true;
 		unset($this->sessionValues[$key]);
 		$this->session->remove(self::encryptedSessionName);
+		$this->close();
 	}
 
 	/**
@@ -149,6 +153,10 @@ public function clear() {
 		$this->session->clear();
 	}
 
+	public function reopen() {
+		$this->session->reopen();
+	}
+
 	/**
 	 * Wrapper around session_regenerate_id
 	 *
diff --git a/lib/private/Session/Internal.php b/lib/private/Session/Internal.php
@@ -68,8 +68,11 @@ public function __construct(string $name) {
 	 * @param integer $value
 	 */
 	public function set(string $key, $value) {
-		$this->validateSession();
+		$reopened = $this->reopen();
 		$_SESSION[$key] = $value;
+		if ($reopened) {
+			$this->close();
+		}
 	}
 
 	/**
@@ -101,6 +104,7 @@ public function remove(string $key) {
 	}
 
 	public function clear() {
+		$this->reopen();
 		$this->invoke('session_unset');
 		$this->regenerateId();
 		$this->startSession(true);
@@ -120,6 +124,7 @@ public function close() {
 	 * @return void
 	 */
 	public function regenerateId(bool $deleteOldSession = true, bool $updateToken = false) {
+		$this->reopen();
 		$oldId = null;
 
 		if ($updateToken) {
@@ -172,7 +177,13 @@ public function getId(): string {
 	 * @throws \Exception
 	 */
 	public function reopen() {
-		throw new \Exception('The session cannot be reopened - reopen() is only to be used in unit testing.');
+		if ($this->sessionClosed) {
+			$this->startSession();
+			$this->sessionClosed = false;
+			return true;
+		}
+
+		return false;
 	}
 
 	/**
diff --git a/lib/public/ISession.php b/lib/public/ISession.php
@@ -83,6 +83,14 @@ public function remove(string $key);
 	 */
 	public function clear();
 
+	/**
+	 * Reopen a session for writing again
+	 *
+	 * @return mixed
+	 * @since 25.0.0
+	 */
+	public function reopen();
+
 	/**
 	 * Close the session and release the lock
 	 * @since 7.0.0

Original file line number	Diff line number	Diff line change
`@@ -456,6 +456,7 @@ public static function initSession() {`
`456`	`456`	`}`
`457`	`457`
`458`	`458`	`$session->set('LAST_ACTIVITY', time());`
	`459`	`+ $session->close();`
`459`	`460`	`}`
`460`	`461`
`461`	`462`	`/**`
Original file line number	Diff line number	Diff line change
`@@ -51,8 +51,8 @@ public function __construct(ControllerMethodReflector $reflector,`
`51`	`51`	`*/`
`52`	`52`	`public function beforeController($controller, $methodName) {`
`53`	`53`	`$useSession = $this->reflector->hasAnnotation('UseSession');`
`54`		`- if (!$useSession) {`
`55`		`- $this->session->close();`
	`54`	`+ if ($useSession) {`
	`55`	`+ $this->session->reopen();`
`56`	`56`	`}`
`57`	`57`	`}`
`58`	`58`