diff options
Diffstat (limited to 'application/SessionManager.php')
| -rw-r--r-- | application/SessionManager.php | 30 |
1 files changed, 30 insertions, 0 deletions
diff --git a/application/SessionManager.php b/application/SessionManager.php index 2083df42..3aa4ddfc 100644 --- a/application/SessionManager.php +++ b/application/SessionManager.php | |||
| @@ -50,4 +50,34 @@ class SessionManager | |||
| 50 | unset($this->session['tokens'][$token]); | 50 | unset($this->session['tokens'][$token]); |
| 51 | return true; | 51 | return true; |
| 52 | } | 52 | } |
| 53 | |||
| 54 | /** | ||
| 55 | * Validate session ID to prevent Full Path Disclosure. | ||
| 56 | * | ||
| 57 | * See #298. | ||
| 58 | * The session ID's format depends on the hash algorithm set in PHP settings | ||
| 59 | * | ||
| 60 | * @param string $sessionId Session ID | ||
| 61 | * | ||
| 62 | * @return true if valid, false otherwise. | ||
| 63 | * | ||
| 64 | * @see http://php.net/manual/en/function.hash-algos.php | ||
| 65 | * @see http://php.net/manual/en/session.configuration.php | ||
| 66 | */ | ||
| 67 | public static function checkId($sessionId) | ||
| 68 | { | ||
| 69 | if (empty($sessionId)) { | ||
| 70 | return false; | ||
| 71 | } | ||
| 72 | |||
| 73 | if (!$sessionId) { | ||
| 74 | return false; | ||
| 75 | } | ||
| 76 | |||
| 77 | if (!preg_match('/^[a-zA-Z0-9,-]{2,128}$/', $sessionId)) { | ||
| 78 | return false; | ||
| 79 | } | ||
| 80 | |||
| 81 | return true; | ||
| 82 | } | ||
| 53 | } | 83 | } |