1: <?php
2: /*****************************************************************************************
3: * X2Engine Open Source Edition is a customer relationship management program developed by
4: * X2Engine, Inc. Copyright (C) 2011-2016 X2Engine Inc.
5: *
6: * This program is free software; you can redistribute it and/or modify it under
7: * the terms of the GNU Affero General Public License version 3 as published by the
8: * Free Software Foundation with the addition of the following permission added
9: * to Section 15 as permitted in Section 7(a): FOR ANY PART OF THE COVERED WORK
10: * IN WHICH THE COPYRIGHT IS OWNED BY X2ENGINE, X2ENGINE DISCLAIMS THE WARRANTY
11: * OF NON INFRINGEMENT OF THIRD PARTY RIGHTS.
12: *
13: * This program is distributed in the hope that it will be useful, but WITHOUT
14: * ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
15: * FOR A PARTICULAR PURPOSE. See the GNU Affero General Public License for more
16: * details.
17: *
18: * You should have received a copy of the GNU Affero General Public License along with
19: * this program; if not, see http://www.gnu.org/licenses or write to the Free
20: * Software Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA
21: * 02110-1301 USA.
22: *
23: * You can contact X2Engine, Inc. P.O. Box 66752, Scotts Valley,
24: * California 95067, USA. or at email address [email protected].
25: *
26: * The interactive user interfaces in modified source and object code versions
27: * of this program must display Appropriate Legal Notices, as required under
28: * Section 5 of the GNU Affero General Public License version 3.
29: *
30: * In accordance with Section 7(b) of the GNU Affero General Public License version 3,
31: * these Appropriate Legal Notices must retain the display of the "Powered by
32: * X2Engine" logo. If the display of the logo is not reasonably feasible for
33: * technical reasons, the Appropriate Legal Notices must display the words
34: * "Powered by X2Engine".
35: *****************************************************************************************/
36:
37: /**
38: * This is the model class for table "x2_sessions".
39: *
40: * @package application.models
41: * @property integer $id
42: * @property string $user
43: * @property integer $lastUpdated
44: * @property string $IP
45: * @property integer $status
46: */
47: class Session extends CActiveRecord {
48:
49: /**
50: * Returns the static model of the specified AR class.
51: * @return Session the static model class
52: */
53: public static function model($className=__CLASS__) {
54: return parent::model($className);
55: }
56:
57: /**
58: * @return string the associated database table name
59: */
60: public function tableName() {
61: return 'x2_sessions';
62: }
63:
64: /**
65: * @return array relational rules.
66: */
67: public function relations() {
68: // NOTE: you may need to adjust the relation name and the related
69: // class name for the relations automatically generated below.
70: return array();
71: }
72:
73: /**
74: * @return array customized attribute labels (name=>label)
75: */
76: public function attributeLabels() {
77: return array(
78: 'id' => Yii::t('app','Sesesion ID'),
79: 'user' => Yii::t('app','User'),
80: 'lastUpdated' => Yii::t('app','Last Updated'),
81: 'IP' => Yii::t('app','IP Address'),
82: 'status' => Yii::t('app','Login Status'),
83: );
84: }
85:
86: /**
87: * Retrieves a list of models based on the current search/filter conditions.
88: * @return CActiveDataProvider the data provider that can return the models based on the search/filter conditions.
89: */
90: public function search() {
91: // Warning: Please modify the following code to remove attributes that
92: // should not be searched.
93:
94: $criteria=new CDbCriteria;
95:
96: $criteria->compare('id',$this->id);
97: $criteria->compare('user',$this->user,true);
98: $criteria->compare('IP',$this->IP,true);
99: $criteria->compare('lastUpdated',$this->lastUpdated);
100: $criteria->compare('status',$this->status);
101:
102: return new CActiveDataProvider(get_class($this), array(
103: 'criteria'=>$criteria,
104: ));
105: }
106:
107: public static function getOnlineUsers($useTimeout = false) {
108: // $sessions = Session::model()->findAllByAttributes(array('status'=>1));
109: // $temp = array();
110: // foreach($sessions as $session)
111: // $temp[] = $session->user;
112: // return $temp;
113:
114: $query = Yii::app()->db->createCommand()
115: ->selectDistinct('user')
116: ->from('x2_sessions')
117: ->where('status=1');
118: if($useTimeout)
119: $query = $query->where('lastUpdated > "'.(time()-900).'"');
120:
121: return $query->queryColumn();
122: }
123:
124: /**
125: * @param string $username
126: * @return bool true if user has a recently updated session record, false otherwise
127: */
128: public static function isOnline ($username) {
129: $record = Yii::app()->db->createCommand()
130: ->select('*')
131: ->from('x2_sessions')
132: ->where('status=1 and user=:username and lastUpdated > "'.(time () - 900).
133: '"', array ('username' => $username))
134: ->queryAll ();
135:
136: return (!empty ($record));
137: }
138:
139: /**
140: * Clear session records which have timed out. Log the timeout.
141: */
142: public static function cleanUpSessions () {
143: // Only select users with active sessions to clear out, in case there are
144: // dozens of inactive users, to make things more efficient:
145: $users = Yii::app()->db->createCommand()
146: ->select('x2_users.id,x2_users.username')
147: ->from('x2_users')
148: ->rightJoin('x2_sessions', 'x2_sessions.user = x2_users.username')
149: ->where('x2_users.username IS NOT NULL AND x2_users.username != ""')
150: ->queryAll();
151: foreach($users as $user){
152: $timeout = Roles::getUserTimeout($user['id']);
153: $sessions = X2Model::model('Session')->findAllByAttributes(
154: array('user' => $user['username']),
155: 'lastUpdated < :cutoff',
156: array(':cutoff' => time() - $timeout));
157: foreach($sessions as $session){
158: SessionLog::logSession($session->user, $session->id, 'passiveTimeout');
159: $session->delete();
160: }
161: }
162:
163: // check timeout on sessions not corresponding to any existing user
164: $defaultTimeout = 900;
165: self::model ()->deleteAll (
166: array (
167: 'condition' => 'lastUpdated < :cutoff and
168: user not in (select distinct (username) from x2_users)',
169: 'params' => array (':cutoff' => time () - $defaultTimeout)
170: )
171: );
172: }
173: }
174: