* @link http://getkirby.com * @copyright Bastian Allgeier * @license http://www.opensource.org/licenses/mit-license.php MIT License */ class Cookie { // configuration static public $salt = 'KirbyToolkitCookieSalt'; /** * Set a new cookie * * * * cookie::set('mycookie', 'hello', 60); * // expires in 1 hour * * * * @param string $key The name of the cookie * @param string $value The cookie content * @param int $expires The number of minutes until the cookie expires * @param string $path The path on the server to set the cookie for * @param string $domain the domain * @param boolean $secure only sets the cookie over https * @param boolean $httpOnly avoids the cookie to be accessed via javascript * @return boolean true: the cookie has been created, false: cookie creation failed */ static public function set($key, $value, $expires = 0, $path = '/', $domain = null, $secure = false, $httpOnly = false) { // convert minutes to seconds if($expires > 0) $expires = time() + ($expires * 60); // convert array values to json if(is_array($value)) $value = a::json($value); // hash the value $value = static::hash($value) . '+' . $value; // store that thing in the cookie global $_COOKIE[$key] = $value; // store the cookie return setcookie($key, $value, $expires, $path, $domain, $secure, $httpOnly); } /** * Stores a cookie forever * * * * cookie::forever('mycookie', 'hello'); * // never expires * * * * @param string $key The name of the cookie * @param string $value The cookie content * @param string $path The path on the server to set the cookie for * @param string $domain the domain * @param boolean $secure only sets the cookie over https * @return boolean true: the cookie has been created, false: cookie creation failed */ static public function forever($key, $value, $path = '/', $domain = null, $secure = false) { return static::set($key, $value, 2628000, $path, $domain, $secure); } /** * Get a cookie value * * * * cookie::get('mycookie', 'peter'); * // sample output: 'hello' or if the cookie is not set 'peter' * * * * @param string $key The name of the cookie * @param string $default The default value, which should be returned if the cookie has not been found * @return mixed The found value */ static public function get($key = null, $default = null) { if(is_null($key)) return $_COOKIE; $value = isset($_COOKIE[$key]) ? $_COOKIE[$key] : null; return empty($value) ? $default : static::parse($value); } /** * Checks if a cookie exists * * @return boolean */ static public function exists($key) { return !is_null(static::get($key)); } /** * Creates a hash for the cookie value * salted with the secret cookie salt string from the defaults * * @param string $value * @return string */ static protected function hash($value) { return sha1($value . static::$salt); } /** * Parses the hashed value from a cookie * and tries to extract the value * * @param string $hash * @return mixed */ static protected function parse($string) { // extract hash and value $parts = str::split($string, '+'); $hash = a::first($parts); $value = a::last($parts); // if the hash or the value is missing at all return null if(empty($hash) or empty($value)) return null; // compare the extracted hash with the hashed value if($hash !== static::hash($value)) return null; return $value; } /** * Remove a cookie * * * * cookie::remove('mycookie'); * // mycookie is now gone * * * * @param string $key The name of the cookie * @return mixed true: the cookie has been removed, false: the cookie could not be removed */ static public function remove($key) { unset($_COOKIE[$key]); setcookie($key, '', 1); return setcookie($key, false); } }