PHP generateSession Exemples

Exemple #1

Fichier : database_utils.php Projet : alasdair001/vuFlow

function createSession($user)
{
    $session_token = generateSession(45);
    $user_id = $user['id'];
    $insert_session = mysql_query("INSERT INTO {$SESSION_TABLE} (`user_id`, `session_token`) VALUES ('{$user_id}', '{$session_token}');");
    if (!$insert_session) {
        return false;
    }
    return $session_token;
}

Exemple #2

Fichier : functions.php Projet : gglukmann/nstgrm

function logInWithCredentials($connection, $email, $pass)
{
    $userSql = mysqli_query($connection, '
    SELECT * FROM ig_users
    WHERE email = "' . mysqli_real_escape_string($connection, $email) . '" AND deleted_at IS NULL LIMIT 1');
    if ($userSql && mysqli_num_rows($userSql) == 1) {
        $user = mysqli_fetch_array($userSql);
        if (password_verify($pass, $user['password'])) {
            generateSession($user);
            return true;
        }
    }
    header('HTTP/1.0 401 Unauthorized', true, 401);
    return null;
}

Exemple #3

Fichier : weak_cookie_bruteforcer.php Projet : bouquetofbarbedwire/CTF-Scripts

#!/usr/bin/env php
<?php 
$start = intval($argv[1]);
$end = intval($argv[2]);
if (sizeof($argv) != 3) {
    die("SUCKER!!!");
}
$cookie = "yWzBRHaY7KP7QA8ReauAeIxYf5E0Uy1X7pPAm07mZoiAdqzpAh";
$fp = fopen('data' . $start . '.txt', 'w');
$i = $start;
while ($i < $end) {
    //$seed=strval($i);
    $seed = $i;
    mt_srand($seed);
    $cook = generateSession();
    if ($cook === $cookie) {
        $message = "seed: " . $seed . "\n";
        $message .= "token: " . genToken() . "\n";
        fwrite($fp, $message);
        break;
    }
    if ($seed % 10000 == 0) {
        $pourcent = ($seed - $start) * 100 / ($end - $start);
        $message = "Avancement: {$pourcent}%\n";
        fwrite($fp, $message);
    }
    $i += 1;
}
fclose($fp);
function genToken()
{

Exemple #4

Fichier : exec.php Projet : GElkayam/server

        $configItemName = $configItem->getName();
        $config->{$configItemName} = parseInputObject($configItem);
    }
}
$client = new KalturaClient($config);
if (isset($inXml->session)) {
    $partnerId = parseInputObject($inXml->session->partnerId);
    $secret = parseInputObject($inXml->session->secret);
    $sessionType = parseInputObject($inXml->session->sessionType);
    $userId = isset($inXml->session->userId) ? parseInputObject($inXml->session->userId) : '';
    $expiry = isset($inXml->session->expiry) ? parseInputObject($inXml->session->expiry) : 86400;
    $privileges = isset($inXml->session->privileges) ? parseInputObject($inXml->session->privileges) : '';
    $email = isset($inXml->session->email) ? $inXml->session->email : null;
    $password = isset($inXml->session->password) ? $inXml->session->password : null;
    if ($secret) {
        $ks = generateSession($secret, $userId, $sessionType, $partnerId, $expiry, $privileges);
    } else {
        if (!$email) {
            $email = askForUserParameter('Partner email address:');
        }
        if (!$password) {
            $password = askForUserParameter('Partner password:'******'Partner ID:');
        }
        $ks = $client->user->loginByLoginId($email, $password, $partnerId);
    }
    $client->setKs($ks);
}
$results = array();