[HttpFoundation] Precalculate expiry timestamp #21423
Conversation
Removed timestamp and lifetime columns in favor of expiry column. Based on the work done in symfony#14625. Fix symfony#13955.
|
But what about:
In 4.0, we could then just drop the |
4833d08 to
5342d67
Compare
| @@ -689,16 +762,13 @@ private function getMergeStatement($sessionId, $data, $maxlifetime) | |||
| $mergeStmt->bindParam(1, $sessionId, \PDO::PARAM_STR); | |||
| $mergeStmt->bindParam(2, $sessionId, \PDO::PARAM_STR); | |||
| $mergeStmt->bindParam(3, $data, \PDO::PARAM_LOB); | |||
| $mergeStmt->bindParam(4, $maxlifetime, \PDO::PARAM_INT); | |||
There was a problem hiding this comment.
Setting the lifetimeCol to 0 was inlined so we don't need different bind params here.
| @@ -97,6 +97,7 @@ class PdoSessionHandler implements \SessionHandlerInterface | |||
|
|
|||
| /** | |||
| * @var string Column for lifetime | |||
| * @deprecated since version 3.3, to be removed in 4.0 | |||
| */ | |||
| private $lifetimeCol = 'sess_lifetime'; | |||
There was a problem hiding this comment.
Should this be changed to false? Right now the new behavior it opt-in.
There was a problem hiding this comment.
it must be opt-in, to keep BC by default
5342d67 to
cc4e4a5
Compare
|
@nicolas-grekas Anything still todo for me here to get this merged? |
|
LGTM. @Tobion WDYT here? |
| @@ -8,7 +8,8 @@ CHANGELOG | |||
| disabling `Range` and `Content-Length` handling, switching to chunked encoding instead | |||
| * added the `Cookie::fromString()` method that allows to create a cookie from a | |||
| raw header string | |||
|
|
|||
| * PdoSessionHandler: Deprecated the the `lifetime` column | |||
| @@ -193,6 +195,10 @@ public function __construct($pdoOrDsn = null, array $options = array()) | |||
| $this->password = isset($options['db_password']) ? $options['db_password'] : $this->password; | |||
| $this->connectionOptions = isset($options['db_connection_options']) ? $options['db_connection_options'] : $this->connectionOptions; | |||
| $this->lockMode = isset($options['lock_mode']) ? $options['lock_mode'] : $this->lockMode; | |||
|
|
|||
| if ($this->lifetimeCol !== false) { | |||
There was a problem hiding this comment.
yoda style (false !== ...) same below
| @@ -193,6 +195,10 @@ public function __construct($pdoOrDsn = null, array $options = array()) | |||
| $this->password = isset($options['db_password']) ? $options['db_password'] : $this->password; | |||
| $this->connectionOptions = isset($options['db_connection_options']) ? $options['db_connection_options'] : $this->connectionOptions; | |||
| $this->lockMode = isset($options['lock_mode']) ? $options['lock_mode'] : $this->lockMode; | |||
|
|
|||
| if ($this->lifetimeCol !== false) { | |||
| @trigger_error('Using the "db_lifetime_col" option is deprecated since version 3.3 as it will be removed in 4.0.', E_USER_DEPRECATED); | |||
There was a problem hiding this comment.
Should give more insights I think, eg
sprintf('The "%s" column is deprecated since version 3.3 and won't be used anymore in 4.0. Migrate your session database then set the "db_lifetime_col" option to false to opt-in for the new behavior.', $this->lifetimeCol);
I think this deserves an entry in the UPGRADE-3.3+4.0 files, with extended migration info/SQL.
| break; | ||
| default: | ||
| throw new \DomainException(sprintf('Creating the session table is currently not implemented for PDO driver "%s".', $this->driver)); | ||
| if ($this->lifetimeCol === false) { |
| } else { | ||
| switch ($this->driver) { | ||
| case 'mysql': | ||
| // We use varbinary for the ID column because it prevents unwanted conversions: |
There was a problem hiding this comment.
duplicate comment can be removed IMHO
| ); | ||
| $updateStmt->bindParam(':id', $sessionId, \PDO::PARAM_STR); | ||
| $updateStmt->bindParam(':data', $data, \PDO::PARAM_LOB); | ||
| $updateStmt->bindParam(':lifetime', $maxlifetime, \PDO::PARAM_INT); |
There was a problem hiding this comment.
lifetime should be set to zero so that migration is always possible ("time += lifetime")
There was a problem hiding this comment.
Can you expand on what you mean here: where should it to 0?
| @@ -389,7 +426,7 @@ public function close() | |||
| $this->gcCalled = false; | |||
|
|
|||
| // delete the session records that have expired | |||
| $sql = "DELETE FROM $this->table WHERE $this->lifetimeCol + $this->timeCol < :time"; | |||
| $sql = "DELETE FROM $this->table WHERE $this->timeCol < :time"; | |||
There was a problem hiding this comment.
for BC, we should still consider lifetime when the colum is used, isn't it?
| @@ -510,7 +547,7 @@ private function doRead($sessionId) | |||
| $sessionRows = $selectStmt->fetchAll(\PDO::FETCH_NUM); | |||
|
|
|||
| if ($sessionRows) { | |||
| if ($sessionRows[0][1] + $sessionRows[0][2] < time()) { | |||
There was a problem hiding this comment.
same here, for BC, we should still use any values in lifetime?
There was a problem hiding this comment.
true, the logic must be kept for old session data
| "ON CONFLICT ($this->idCol) DO UPDATE SET ($this->dataCol, $this->lifetimeCol, $this->timeCol) = (EXCLUDED.$this->dataCol, EXCLUDED.$this->lifetimeCol, EXCLUDED.$this->timeCol)"; | ||
| break; | ||
|
|
||
| if ($this->lifetimeCol === false) { |
| @@ -215,7 +215,8 @@ public function testReadingRequiresExactlySameId() | |||
| */ | |||
| public function testWriteDifferentSessionIdThanRead() | |||
| { | |||
| $storage = new PdoSessionHandler($this->getMemorySqlitePdo()); | |||
| $storage = new PdoSessionHandler($this->getMemorySqlitePdo(), array('db_lifetime_col' => false)); | |||
| $storage->open('', 'sid'); | |||
|
Approach seems ok but it's not BC yet. |
|
@bcremer do you need help - or just a bit more time? please advise :) |
|
@nicolas-grekas It's not my top priority right know. If anybody likes to pickup please do :) Will get back onto it otherwise in a few days or so. |
|
@bcremer I'm happy to help get this finished up; should I clone your branch, make the required changes, and open a new PR, or would you prefer (and do you have the time) to accept pull requests against your branch (this pull request). |
|
@robfrawley please go with a new PR on your own, keeping the first commit from @bcremer, OK? |
|
@nicolas-grekas Sounds good, will take a look and get something together for tomorrow. |
|
@nicolas-grekas Nevermind my original comment; it was my mistake, though there are some BC breaks in this PR. I've already taken care of the style changes (like the yoda-style comments and others) requested. Will be opening up a new PR shortly, but before doing so, I wanted to ask if you guys would like BC unit tests created with the proper /**
* @group legacy
* @expectedDeprecation The "%s" column is deprecated since version 3.3 and won't be used anymore in 4.0. Migrate your session database then set the "db_lifetime_col" option to false to opt-in for the new behavior.
*/ |
|
BC is a requirement yes, and legacy and non-legacy tests would be great yes. |
|
closing in favour of #21857 |
… (azjezz) This PR was merged into the 4.4 branch. Discussion ---------- [HttpFoundation] Precalculate session expiry timestamp | Q | A | ------------- | --- | Branch? | 4.4 | Bug fix? | no | New feature? | yes | BC breaks? | no | Deprecations? | yes | Tests pass? | yes | Fixed tickets | #13955, #21423, #14625 | License | MIT Continued work from the original PR #21423 / #21857 Commits ------- 066000a [HttpFoundation] Precalculate session expiry timestamp
Removed timestamp and lifetime columns in favor of expiry column.
Based on the work done in #14625.
Fix #13955.