Changeset 29635 for trunk/src/wp-includes/session.php

Timestamp:

08/27/2014 02:06:53 AM (12 years ago)

Author:

nacin

Message:

Rename the public methods in the session tokens API.

Introduces a new get( $token ) method. get_token() would not have made sense and spurred the overall renaming. Public methods are now get, get_all, verify, create, update, destroy, destroy_others, and destroy_all.

The protected abstract methods designed for alternative implementations remain the same.

props mdawaffe.
see #20276.

File:

• trunk/src/wp-includes/session.php (modified) (19 diffs)

trunk/src/wp-includes/session.php

@@ -18 +18 @@
     /**
      * Protected constructor.
+     *
+     * @since 4.0.0
      *
      * @param int $user_id User whose session to manage.
@@ -51 +53 @@
 
     /**
-     * Hashes a token for storage.
+     * Hashes a session token for storage.
      *
      * @since 4.0.0
      * @access private
      *
-     * @param string $token Token to hash.
-     * @return string A hash of the token (a verifier).
+     * @param string $token Session token to hash.
+     * @return string A hash of the session token (a verifier).
      */
     final private function hash_token( $token ) {
@@ -64 +66 @@
 
     /**
+     * Get a user's session.
+     *
+     * @since 4.0.0
+     * @access public
+     *
+     * @param string $token Session token
+     * @return array User session
+     */
+    final public function get( $token ) {
+        $verifier = $this->hash_token( $token );
+        return $this->get_session( $verifier );
+    }
+
+    /**
      * Validate a user's session token as authentic.
      *
@@ -74 +90 @@
      * @return bool Whether the token is valid for the user.
      */
-    final public function verify_token( $token ) {
+    final public function verify( $token ) {
         $verifier = $this->hash_token( $token );
         return (bool) $this->get_session( $verifier );
@@ -80 +96 @@
 
     /**
-     * Generate a cookie session identification token.
-     *
-     * A session identification token is a long, random string. It is used to
-     * link a cookie to an expiration time and to ensure that cookies become
-     * invalidated upon logout. This function generates a token and stores it
-     * with the associated expiration time.
+     * Generate a session token and attach session information to it.
+     *
+     * A session token is a long, random string. It is used in a cookie
+     * link that cookie to an expiration time and to ensure the cookie
+     * becomes invalidated upon logout.
+     *
+     * This function generates a token and stores it with the associated
+     * expiration time (and potentially other session information via the
+     * `attach_session_information` filter).
      *
      * @since 4.0.0
@@ -91 +110 @@
      *
      * @param int $expiration Session expiration timestamp.
-     * @return string Session identification token.
-     */
-    final public function create_token( $expiration ) {
+     * @return string Session token.
+     */
+    final public function create( $expiration ) {
         /**
          * Filter the information attached to the newly created session.
@@ -110 +129 @@
         $token = wp_generate_password( 43, false, false );
 
-        $this->update_token( $token, $session );
+        $this->update( $token, $session );
 
         return $token;
@@ -116 +135 @@
 
     /**
-     * Updates a session based on its token.
-     *
-     * @since 4.0.0
-     * @access public
-     *
-     * @param string $token Token to update.
+     * Update a session token.
+     *
+     * @since 4.0.0
+     * @access public
+     *
+     * @param string $token Session token to update.
      * @param array  $session Session information.
      */
-    final public function update_token( $token, $session ) {
+    final public function update( $token, $session ) {
         $verifier = $this->hash_token( $token );
         $this->update_session( $verifier, $session );
@@ -135 +154 @@
      * @access public
      *
-     * @param string $token Token to destroy.
-     */
-    final public function destroy_token( $token ) {
+     * @param string $token Session token to destroy.
+     */
+    final public function destroy( $token ) {
         $verifier = $this->hash_token( $token );
         $this->update_session( $verifier, null );
@@ -149 +168 @@
      * @access public
      *
-     * @param string $token_to_keep Token to keep.
-     */
-    final public function destroy_other_tokens( $token_to_keep ) {
+     * @param string $token_to_keep Session token to keep.
+     */
+    final public function destroy_others( $token_to_keep ) {
         $verifier = $this->hash_token( $token_to_keep );
         $session = $this->get_session( $verifier );
@@ -157 +176 @@
             $this->destroy_other_sessions( $verifier );
         } else {
-            $this->destroy_all_tokens();
+            $this->destroy_all_sessions();
         }
     }
@@ -176 +195 @@
 
     /**
-     * Destroy all tokens for a user.
-     *
-     * @since 4.0.0
-     * @access public
-     */
-    final public function destroy_all_tokens() {
+     * Destroy all session tokens for a user.
+     *
+     * @since 4.0.0
+     * @access public
+     */
+    final public function destroy_all() {
         $this->destroy_all_sessions();
     }
 
     /**
-     * Destroy all tokens for all users.
+     * Destroy all session tokens for all users.
      *
      * @since 4.0.0
@@ -192 +211 @@
      * @static
      */
-    final public static function destroy_all_tokens_for_all_users() {
+    final public static function destroy_all_for_all_users() {
         $manager = apply_filters( 'session_token_manager', 'WP_User_Meta_Session_Tokens' );
         call_user_func( array( $manager, 'drop_sessions' ) );
@@ -205 +224 @@
      * @return array Sessions of a user.
      */
-    final public function get_all_sessions() {
+    final public function get_all() {
         return array_values( $this->get_sessions() );
     }
@@ -225 +244 @@
      * @access protected
      *
-     * @param $verifier Verifier of the session to retrieve.
+     * @param string $verifier Verifier of the session to retrieve.
      * @return array|null The session, or null if it does not exist.
      */
@@ -238 +257 @@
      * @access protected
      *
-     * @param $verifier Verifier of the session to update.
+     * @param string $verifier Verifier of the session to update.
      */
     abstract protected function update_session( $verifier, $session = null );
@@ -249 +268 @@
      * @access protected
      *
-     * @param $verifier Verifier of the session to keep.
+     * @param string $verifier Verifier of the session to keep.
      */
     abstract protected function destroy_other_sessions( $verifier );
@@ -317 +336 @@
      * @access protected
      *
-     * @param $verifier Verifier of the session to retrieve.
+     * @param string $verifier Verifier of the session to retrieve.
      * @return array|null The session, or null if it does not exist
      */
@@ -377 +396 @@
      * @access protected
      *
-     * @param $verifier Verifier of the session to keep.
+     * @param string $verifier Verifier of the session to keep.
      */
     protected function destroy_other_sessions( $verifier ) {