silverstripe-framework/src/Control/CookieJar.php

<?php

namespace SilverStripe\Control;

use SilverStripe\Dev\Deprecation;
use SilverStripe\ORM\FieldType\DBDatetime;
use LogicException;

/**
 * A default backend for the setting and getting of cookies
 *
 * This backend allows one to better test Cookie setting and separate cookie
 * handling from the core
 *
 * @todo Create a config array for defaults (eg: httpOnly, secure, path, domain, expiry)
 * @todo A getter for cookies that haven't been sent to the browser yet
 * @todo Tests / a way to set the state without hacking with $_COOKIE
 * @todo Store the meta information around cookie setting (path, domain, secure, etc)
 */
class CookieJar implements Cookie_Backend
{
    /**
     * Hold the cookies that were existing at time of instantiation (ie: The ones
     * sent to PHP by the browser)
     *
     * @var array Existing cookies sent by the browser
     */
    protected $existing = [];

    /**
     * Hold the current cookies (ie: a mix of those that were sent to us and we
     * have set without the ones we've cleared)
     *
     * @var array The state of cookies once we've sent the response
     */
    protected $current = [];

    /**
     * Hold any NEW cookies that were set by the application and will be sent
     * in the next response
     *
     * @var array New cookies set by the application
     */
    protected $new = [];

    /**
     * When creating the backend we want to store the existing cookies in our
     * "existing" array. This allows us to distinguish between cookies we received
     * or we set ourselves (and didn't get from the browser)
     *
     * @param array $cookies The existing cookies to load into the cookie jar.
     * Omit this to default to $_COOKIE
     */
    public function __construct($cookies = [])
    {
        $this->current = $this->existing = func_num_args()
            ? ($cookies ?: []) // Convert empty values to blank arrays
            : $_COOKIE;
    }

    /**
     * Set a cookie
     *
     * @param string $name The name of the cookie
     * @param string $value The value for the cookie to hold
     * @param float $expiry The number of days until expiry; 0 indicates a cookie valid for the current session
     * @param string $path The path to save the cookie on (falls back to site base)
     * @param string $domain The domain to make the cookie available on
     * @param boolean $secure Can the cookie only be sent over SSL?
     * @param boolean $httpOnly Prevent the cookie being accessible by JS
     */
    public function set($name, $value, $expiry = 90, $path = null, $domain = null, $secure = false, $httpOnly = true)
    {
        //are we setting or clearing a cookie? false values are reserved for clearing cookies (see PHP manual)
        $clear = false;
        if ($value === false || $value === '' || $expiry < 0) {
            $clear = true;
            $value = false;
        }

        //expiry === 0 is a special case where we set a cookie for the current user session
        if ($expiry !== 0) {
            //don't do the maths if we are clearing
            $expiry = $clear ? -1 : DBDatetime::now()->getTimestamp() + (86400 * $expiry);
        }
        //set the path up
        $path = $path ? $path : Director::baseURL();
        //send the cookie
        $this->outputCookie($name, $value, $expiry, $path, $domain, $secure, $httpOnly);
        //keep our variables in check
        if ($clear) {
            unset($this->new[$name], $this->current[$name]);
        } else {
            $this->new[$name] = $this->current[$name] = $value;
        }
    }

    /**
     * Get the cookie value by name
     *
     * Cookie names are normalised to work around PHP's behaviour of replacing incoming variable name . with _
     *
     * @param string $name The name of the cookie to get
     * @param boolean $includeUnsent Include cookies we've yet to send when fetching values
     *
     * @return string|null The cookie value or null if unset
     */
    public function get($name, $includeUnsent = true)
    {
        $cookies = $includeUnsent ? $this->current : $this->existing;
        if (isset($cookies[$name])) {
            return $cookies[$name];
        }

        //Normalise cookie names by replacing '.' with '_'
        $safeName = str_replace('.', '_', $name ?? '');
        if (isset($cookies[$safeName])) {
            return $cookies[$safeName];
        }
        return null;
    }

    /**
     * Get all the cookies
     *
     * @param boolean $includeUnsent Include cookies we've yet to send
     * @return array All the cookies
     */
    public function getAll($includeUnsent = true)
    {
        return $includeUnsent ? $this->current : $this->existing;
    }

    /**
     * Force the expiry of a cookie by name
     *
     * @param string $name The name of the cookie to expire
     * @param string $path The path to save the cookie on (falls back to site base)
     * @param string $domain The domain to make the cookie available on
     * @param boolean $secure Can the cookie only be sent over SSL?
     * @param boolean $httpOnly Prevent the cookie being accessible by JS
     */
    public function forceExpiry($name, $path = null, $domain = null, $secure = false, $httpOnly = true)
    {
        $this->set($name, false, -1, $path, $domain, $secure, $httpOnly);
    }

    /**
     * The function that actually sets the cookie using PHP
     *
     * @see http://uk3.php.net/manual/en/function.setcookie.php
     *
     * @param string $name The name of the cookie
     * @param string|array $value The value for the cookie to hold
     * @param int $expiry A Unix timestamp indicating when the cookie expires; 0 means it will expire at the end of the session
     * @param string $path The path to save the cookie on (falls back to site base)
     * @param string $domain The domain to make the cookie available on
     * @param boolean $secure Can the cookie only be sent over SSL?
     * @param boolean $httpOnly Prevent the cookie being accessible by JS
     * @return boolean If the cookie was set or not; doesn't mean it's accepted by the browser
     */
    protected function outputCookie(
        $name,
        $value,
        $expiry = 90,
        $path = null,
        $domain = null,
        $secure = false,
        $httpOnly = true
    ) {
        $sameSite = $this->getSameSite($name);
        Cookie::validateSameSite($sameSite);
        // if headers aren't sent, we can set the cookie
        if (!headers_sent($file, $line)) {
            return setcookie($name ?? '', $value ?? '', [
                'expires' => $expiry ?? 0,
                'path' => $path ?? '',
                'domain' => $domain ?? '',
                'secure' => $this->cookieIsSecure($sameSite, (bool) $secure),
                'httponly' => $httpOnly ?? false,
                'samesite' => $sameSite,
            ]);
        }

        if (Cookie::config()->uninherited('report_errors')) {
            throw new LogicException(
                "Cookie '$name' can't be set. The site started outputting content at line $line in $file"
            );
        }
        return false;
    }

    /**
     * Cookies must be secure if samesite is "None"
     */
    private function cookieIsSecure(string $sameSite, bool $secure): bool
    {
        return $sameSite === 'None' ? true : $secure;
    }

    /**
     * Get the correct samesite value - Session cookies use a different configuration variable.
     */
    private function getSameSite(string $name): string
    {
        if ($name === session_name()) {
            return Session::config()->get('cookie_samesite');
        }
        return Cookie::config()->get('default_samesite');
    }
}
NEW Cookie_Backend for managing cookie state I've decoupled `Cookie` from the actual act of setting and getting cookies. Currently there are a few limitations to how Cookie works that this change mitigates: 0. `Cookie` currently changes the super global `$_COOKIE` when setting to make the state of an application a bit more managable, but this is bad because we shouldn't be modifying super globals 0. One can't actually change the `$cookie_class` once the `Cookie::$inst` has been instantiated 0. One can't test cookies as there is no class that holds the state of the cookies (it's just held in the super global which is reset as part of `Director::test()` 0. One can't tell the origin of a cookie (eg: did the application set it and it needs to be sent, or did we receive it from the browser?) 0. `time()` was used, so testing was made difficult 0. There was no way to get all the cookies at once (without accessing the super global) Todos are on the phpdoc and I'd like to write some tests for the backend as well as update the docs (if there are any) around cookies. DOCS Adding `Cookie` docs Explains basic usage of `Cookie` as well as how the `Cookie_Backend` controls the setting and getting of cookies and manages state of sent vs received cookies Fixing `Cookie` usage `Cookie` is being used inconsistently with the API throughout framework. Either by not using `force_expiry` to expire cookies or setting them to null and then expiring them (which is redundant). NEW `Director::test()` takes `Cookie_Backend` rather than `array` for `$cookies` param 2014-05-04 15:34:58 +02:00			`<?php`

API Namespace all classes Namespace all templates Move difflib and BBCodeParser2 to thirdparty Remove deprecated API marked for removal in 4.0 2016-08-19 00:51:35 +02:00			`namespace SilverStripe\Control;`
API Apply Framework\ORM Namespace to model 2016-06-15 06:03:16 +02:00
API Update deprecations 2022-10-13 03:49:15 +02:00			`use SilverStripe\Dev\Deprecation;`
API Apply Framework\ORM Namespace to model 2016-06-15 06:03:16 +02:00			`use SilverStripe\ORM\FieldType\DBDatetime;`
API Namespace all classes Namespace all templates Move difflib and BBCodeParser2 to thirdparty Remove deprecated API marked for removal in 4.0 2016-08-19 00:51:35 +02:00			`use LogicException;`
API: Move DBField subclasses into SilverStripe\Model\FieldType namespace API: Deprecate SS_Datetime. The DBField subclasses are have all been renamed to start with “DB” and be in the SilverStripe\Model\FieldType namespace. To keep DataObject definitions concise, the original short variations of their names are preserved as service definitions. Most of the field generation code doesn’t need to change, but where field classes are referenced directly, changes will be needed. SS_Datetime, which is commonly referenced outside the model system itself, has been preserved as a subclass of DBDatetime. This has been marked as deprecated and can be removed in SilverStripe 5. A few places that referred to $db and $casting values weren’t using the Injector to instantiate the relevant classes. This meant that the remapping we have created as part of moving classes into a namespace didn’t work. 2015-08-30 07:02:55 +02:00
NEW Cookie_Backend for managing cookie state I've decoupled `Cookie` from the actual act of setting and getting cookies. Currently there are a few limitations to how Cookie works that this change mitigates: 0. `Cookie` currently changes the super global `$_COOKIE` when setting to make the state of an application a bit more managable, but this is bad because we shouldn't be modifying super globals 0. One can't actually change the `$cookie_class` once the `Cookie::$inst` has been instantiated 0. One can't test cookies as there is no class that holds the state of the cookies (it's just held in the super global which is reset as part of `Director::test()` 0. One can't tell the origin of a cookie (eg: did the application set it and it needs to be sent, or did we receive it from the browser?) 0. `time()` was used, so testing was made difficult 0. There was no way to get all the cookies at once (without accessing the super global) Todos are on the phpdoc and I'd like to write some tests for the backend as well as update the docs (if there are any) around cookies. DOCS Adding `Cookie` docs Explains basic usage of `Cookie` as well as how the `Cookie_Backend` controls the setting and getting of cookies and manages state of sent vs received cookies Fixing `Cookie` usage `Cookie` is being used inconsistently with the API throughout framework. Either by not using `force_expiry` to expire cookies or setting them to null and then expiring them (which is redundant). NEW `Director::test()` takes `Cookie_Backend` rather than `array` for `$cookies` param 2014-05-04 15:34:58 +02:00			`/**`
			`* A default backend for the setting and getting of cookies`
			`*`
NEW Cookie names with dots are now handled more gracefully 2015-05-11 14:55:46 +02:00			`* This backend allows one to better test Cookie setting and separate cookie`
NEW Cookie_Backend for managing cookie state I've decoupled `Cookie` from the actual act of setting and getting cookies. Currently there are a few limitations to how Cookie works that this change mitigates: 0. `Cookie` currently changes the super global `$_COOKIE` when setting to make the state of an application a bit more managable, but this is bad because we shouldn't be modifying super globals 0. One can't actually change the `$cookie_class` once the `Cookie::$inst` has been instantiated 0. One can't test cookies as there is no class that holds the state of the cookies (it's just held in the super global which is reset as part of `Director::test()` 0. One can't tell the origin of a cookie (eg: did the application set it and it needs to be sent, or did we receive it from the browser?) 0. `time()` was used, so testing was made difficult 0. There was no way to get all the cookies at once (without accessing the super global) Todos are on the phpdoc and I'd like to write some tests for the backend as well as update the docs (if there are any) around cookies. DOCS Adding `Cookie` docs Explains basic usage of `Cookie` as well as how the `Cookie_Backend` controls the setting and getting of cookies and manages state of sent vs received cookies Fixing `Cookie` usage `Cookie` is being used inconsistently with the API throughout framework. Either by not using `force_expiry` to expire cookies or setting them to null and then expiring them (which is redundant). NEW `Director::test()` takes `Cookie_Backend` rather than `array` for `$cookies` param 2014-05-04 15:34:58 +02:00			`* handling from the core`
			`*`
			`* @todo Create a config array for defaults (eg: httpOnly, secure, path, domain, expiry)`
			`* @todo A getter for cookies that haven't been sent to the browser yet`
			`* @todo Tests / a way to set the state without hacking with $_COOKIE`
			`* @todo Store the meta information around cookie setting (path, domain, secure, etc)`
			`*/`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`class CookieJar implements Cookie_Backend`
			`{`
			`/**`
			`* Hold the cookies that were existing at time of instantiation (ie: The ones`
			`* sent to PHP by the browser)`
			`*`
			`* @var array Existing cookies sent by the browser`
			`*/`
Convert array delcarations to short array syntax 2020-04-20 19:58:09 +02:00			`protected $existing = [];`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00
			`/**`
			`* Hold the current cookies (ie: a mix of those that were sent to us and we`
			`* have set without the ones we've cleared)`
			`*`
			`* @var array The state of cookies once we've sent the response`
			`*/`
Convert array delcarations to short array syntax 2020-04-20 19:58:09 +02:00			`protected $current = [];`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00
			`/**`
			`* Hold any NEW cookies that were set by the application and will be sent`
			`* in the next response`
			`*`
			`* @var array New cookies set by the application`
			`*/`
Convert array delcarations to short array syntax 2020-04-20 19:58:09 +02:00			`protected $new = [];`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00
			`/**`
			`* When creating the backend we want to store the existing cookies in our`
			`* "existing" array. This allows us to distinguish between cookies we received`
			`* or we set ourselves (and didn't get from the browser)`
			`*`
			`* @param array $cookies The existing cookies to load into the cookie jar.`
			`* Omit this to default to $_COOKIE`
			`*/`
Convert array delcarations to short array syntax 2020-04-20 19:58:09 +02:00			`public function __construct($cookies = [])`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`{`
			`$this->current = $this->existing = func_num_args()`
Convert array delcarations to short array syntax 2020-04-20 19:58:09 +02:00			`? ($cookies ?: []) // Convert empty values to blank arrays`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`: $_COOKIE;`
			`}`

			`/**`
			`* Set a cookie`
			`*`
			`* @param string $name The name of the cookie`
			`* @param string $value The value for the cookie to hold`
DOC Added a tip to docs describing how to set a cookie for less than a day (#9552) DOC Added a tip to docs describing how to set a cookie for less than a day Co-authored-by: Garion Herman <garion@silverstripe.com> 2020-09-10 02:34:33 +02:00			`* @param float $expiry The number of days until expiry; 0 indicates a cookie valid for the current session`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`* @param string $path The path to save the cookie on (falls back to site base)`
			`* @param string $domain The domain to make the cookie available on`
			`* @param boolean $secure Can the cookie only be sent over SSL?`
			`* @param boolean $httpOnly Prevent the cookie being accessible by JS`
			`*/`
			`public function set($name, $value, $expiry = 90, $path = null, $domain = null, $secure = false, $httpOnly = true)`
			`{`
			`//are we setting or clearing a cookie? false values are reserved for clearing cookies (see PHP manual)`
			`$clear = false;`
			`if ($value === false \|\| $value === '' \|\| $expiry < 0) {`
			`$clear = true;`
			`$value = false;`
			`}`

			`//expiry === 0 is a special case where we set a cookie for the current user session`
			`if ($expiry !== 0) {`
			`//don't do the maths if we are clearing`
API Substitute Zend_Currency with NumberFormatter based solution API Substitute Zend_Locale with Locale / NumberFormatter API Substitute Zend_Date with IntlDateFormatter API Added DBTIme::Nice12, FormatFromSettings API Added Short() method to DBDate / DBTime / DBDatetime API Add Date::getTimestamp() API Added setSubmittedValue api for FormField API Add second arg to base FormField::setValue() API Major refactor of i18n into component data parts API Implement Resettable interface to reset objects between tests ENHANCEMENT Changed DBField::create_field return type to `static` to support better type hinting ENHANCEMENT i18nTextCollector supports __CLASS__ 2017-01-26 05:20:08 +01:00			`$expiry = $clear ? -1 : DBDatetime::now()->getTimestamp() + (86400 * $expiry);`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`}`
			`//set the path up`
			`$path = $path ? $path : Director::baseURL();`
			`//send the cookie`
			`$this->outputCookie($name, $value, $expiry, $path, $domain, $secure, $httpOnly);`
			`//keep our variables in check`
			`if ($clear) {`
			`unset($this->new[$name], $this->current[$name]);`
			`} else {`
			`$this->new[$name] = $this->current[$name] = $value;`
			`}`
			`}`

			`/**`
			`* Get the cookie value by name`
			`*`
			`* Cookie names are normalised to work around PHP's behaviour of replacing incoming variable name . with _`
			`*`
			`* @param string $name The name of the cookie to get`
			`* @param boolean $includeUnsent Include cookies we've yet to send when fetching values`
			`*`
			`* @return string\|null The cookie value or null if unset`
			`*/`
			`public function get($name, $includeUnsent = true)`
			`{`
			`$cookies = $includeUnsent ? $this->current : $this->existing;`
			`if (isset($cookies[$name])) {`
			`return $cookies[$name];`
			`}`

			`//Normalise cookie names by replacing '.' with '_'`
ENH PHP 8.1 compatibility 2022-04-14 03:12:59 +02:00			`$safeName = str_replace('.', '_', $name ?? '');`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`if (isset($cookies[$safeName])) {`
			`return $cookies[$safeName];`
			`}`
			`return null;`
			`}`

			`/**`
			`* Get all the cookies`
			`*`
			`* @param boolean $includeUnsent Include cookies we've yet to send`
			`* @return array All the cookies`
			`*/`
			`public function getAll($includeUnsent = true)`
			`{`
			`return $includeUnsent ? $this->current : $this->existing;`
			`}`

			`/**`
			`* Force the expiry of a cookie by name`
			`*`
			`* @param string $name The name of the cookie to expire`
			`* @param string $path The path to save the cookie on (falls back to site base)`
			`* @param string $domain The domain to make the cookie available on`
			`* @param boolean $secure Can the cookie only be sent over SSL?`
			`* @param boolean $httpOnly Prevent the cookie being accessible by JS`
			`*/`
			`public function forceExpiry($name, $path = null, $domain = null, $secure = false, $httpOnly = true)`
			`{`
			`$this->set($name, false, -1, $path, $domain, $secure, $httpOnly);`
			`}`

			`/**`
			`* The function that actually sets the cookie using PHP`
			`*`
			`* @see http://uk3.php.net/manual/en/function.setcookie.php`
			`*`
			`* @param string $name The name of the cookie`
			`* @param string\|array $value The value for the cookie to hold`
DOC Added a tip to docs describing how to set a cookie for less than a day (#9552) DOC Added a tip to docs describing how to set a cookie for less than a day Co-authored-by: Garion Herman <garion@silverstripe.com> 2020-09-10 02:34:33 +02:00			`* @param int $expiry A Unix timestamp indicating when the cookie expires; 0 means it will expire at the end of the session`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`* @param string $path The path to save the cookie on (falls back to site base)`
			`* @param string $domain The domain to make the cookie available on`
			`* @param boolean $secure Can the cookie only be sent over SSL?`
			`* @param boolean $httpOnly Prevent the cookie being accessible by JS`
			`* @return boolean If the cookie was set or not; doesn't mean it's accepted by the browser`
			`*/`
			`protected function outputCookie(`
			`$name,`
			`$value,`
			`$expiry = 90,`
			`$path = null,`
			`$domain = null,`
			`$secure = false,`
			`$httpOnly = true`
			`) {`
ENH Add samesite attribute to cookies. Co-authored-by: pine3ree <pine3ree@gmail.com> 2022-05-26 07:09:11 +02:00			`$sameSite = $this->getSameSite($name);`
			`Cookie::validateSameSite($sameSite);`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`// if headers aren't sent, we can set the cookie`
			`if (!headers_sent($file, $line)) {`
ENH Add samesite attribute to cookies. Co-authored-by: pine3ree <pine3ree@gmail.com> 2022-05-26 07:09:11 +02:00			`return setcookie($name ?? '', $value ?? '', [`
			`'expires' => $expiry ?? 0,`
			`'path' => $path ?? '',`
			`'domain' => $domain ?? '',`
			`'secure' => $this->cookieIsSecure($sameSite, (bool) $secure),`
			`'httponly' => $httpOnly ?? false,`
			`'samesite' => $sameSite,`
			`]);`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`}`

API Upgrade code to use updated config 2017-02-22 04:14:53 +01:00			`if (Cookie::config()->uninherited('report_errors')) {`
PSR2: Whitespace-only changes 2016-11-29 00:31:16 +01:00			`throw new LogicException(`
			`"Cookie '$name' can't be set. The site started outputting content at line $line in $file"`
			`);`
			`}`
			`return false;`
			`}`
ENH Add samesite attribute to cookies. Co-authored-by: pine3ree <pine3ree@gmail.com> 2022-05-26 07:09:11 +02:00
			`/**`
			`* Cookies must be secure if samesite is "None"`
			`*/`
			`private function cookieIsSecure(string $sameSite, bool $secure): bool`
			`{`
			`return $sameSite === 'None' ? true : $secure;`
			`}`

			`/**`
			`* Get the correct samesite value - Session cookies use a different configuration variable.`
			`*/`
			`private function getSameSite(string $name): string`
			`{`
			`if ($name === session_name()) {`
			`return Session::config()->get('cookie_samesite');`
			`}`
			`return Cookie::config()->get('default_samesite');`
			`}`
NEW Cookie_Backend for managing cookie state I've decoupled `Cookie` from the actual act of setting and getting cookies. Currently there are a few limitations to how Cookie works that this change mitigates: 0. `Cookie` currently changes the super global `$_COOKIE` when setting to make the state of an application a bit more managable, but this is bad because we shouldn't be modifying super globals 0. One can't actually change the `$cookie_class` once the `Cookie::$inst` has been instantiated 0. One can't test cookies as there is no class that holds the state of the cookies (it's just held in the super global which is reset as part of `Director::test()` 0. One can't tell the origin of a cookie (eg: did the application set it and it needs to be sent, or did we receive it from the browser?) 0. `time()` was used, so testing was made difficult 0. There was no way to get all the cookies at once (without accessing the super global) Todos are on the phpdoc and I'd like to write some tests for the backend as well as update the docs (if there are any) around cookies. DOCS Adding `Cookie` docs Explains basic usage of `Cookie` as well as how the `Cookie_Backend` controls the setting and getting of cookies and manages state of sent vs received cookies Fixing `Cookie` usage `Cookie` is being used inconsistently with the API throughout framework. Either by not using `force_expiry` to expire cookies or setting them to null and then expiring them (which is redundant). NEW `Director::test()` takes `Cookie_Backend` rather than `array` for `$cookies` param 2014-05-04 15:34:58 +02:00			`}`