Remove global variable $session_prefix

Use constant SESSION_PREFIX instead of global variable

src/mibew/libs/classes/Mibew/RequestProcessor/UsersProcessor.php

@@ -165,7 +165,6 @@ class UsersProcessor extends ClientSideProcessor {
 	/**
 	 * Return updated threads list. API function
 	 *
-	 * @global string $session_prefix Session vars prefix
 	 * @param array $args Associative array of arguments. It must contains
 	 * following keys:
 	 *  - 'agentId': Id of the agent related to users window
@@ -174,17 +173,15 @@ class UsersProcessor extends ClientSideProcessor {
 	 *  - 'threads': array of threads changes
 	 */
 	protected function apiUpdateThreads($args) {
-		global $session_prefix;
-
 		$operator = self::checkOperator($args['agentId']);
 
 		$since = $args['revision'];
 		// Get operator groups
-		if (!isset($_SESSION[$session_prefix."operatorgroups"])) {
+		if (!isset($_SESSION[SESSION_PREFIX."operatorgroups"])) {
-			$_SESSION[$session_prefix."operatorgroups"]
+			$_SESSION[SESSION_PREFIX."operatorgroups"]
 				= get_operator_groupslist($operator['operatorid']);
 		}
-		$groupids = $_SESSION[$session_prefix."operatorgroups"];
+		$groupids = $_SESSION[SESSION_PREFIX."operatorgroups"];
 
 		$db = Database::getInstance();
 		$query = "select t.*, " .

src/mibew/libs/common/constants.php

@@ -34,7 +34,7 @@ $featuresversion = '2.0';
  * Prefix for session variables.
  * Provide an ability to instal several mibew instances on one server.
  */
-$session_prefix = md5($mysqlhost.'##'.$mysqldb.'##'.$mysqlprefix) . '_';
+define('SESSION_PREFIX', md5($mysqlhost.'##'.$mysqldb.'##'.$mysqlprefix) . '_');
 
 /**
  * Default value for cron security key.

src/mibew/libs/operator.php

@@ -377,7 +377,6 @@ function delete_operator($operator_id) {
  */
 function notify_operator_alive($operatorid, $istatus)
 {
-	global $session_prefix;
 	$db = Database::getInstance();
 	$db->query(
 		"update {chatoperator} set istatus = :istatus, dtmlastvisited = :now " .
@@ -388,9 +387,9 @@ function notify_operator_alive($operatorid, $istatus)
 			':operatorid' => $operatorid
 		)
 	);
-	if (isset($_SESSION[$session_prefix."operator"])) {
+	if (isset($_SESSION[SESSION_PREFIX."operator"])) {
-		if ($_SESSION[$session_prefix."operator"]['operatorid'] == $operatorid) {
+		if ($_SESSION[SESSION_PREFIX."operator"]['operatorid'] == $operatorid) {
-			$_SESSION[$session_prefix."operator"]['istatus'] = $istatus;
+			$_SESSION[SESSION_PREFIX."operator"]['istatus'] = $istatus;
 		}
 	}
 }
@@ -483,23 +482,18 @@ function append_query($link, $pv)
  * an associative array with folloing keys:
  *  - 'requested_page': string, page where login check was failed.
  *
- * @global string $session_prefix Use as prefix for all session variables to
- * allow many instalation of the mibew messenger at one server. It defined in
- * libs/common/constants.php
- *
  * @param boolean $redirect Indicates if operator should be redirected to
  * login page. Default value is true.
  * @return null|array Array with operator info if operator is logged in and
  * null otherwise.
  */
 function check_login($redirect = true) {
-	global $session_prefix;
+	if (!isset($_SESSION[SESSION_PREFIX."operator"])) {
-	if (!isset($_SESSION[$session_prefix."operator"])) {
 		if (isset($_COOKIE[REMEMBER_OPERATOR_COOKIE_NAME])) {
 			list($login, $pwd) = preg_split('/\x0/', base64_decode($_COOKIE[REMEMBER_OPERATOR_COOKIE_NAME]), 2);
 			$op = operator_by_login($login);
 			if ($op && isset($pwd) && isset($op['vcpassword']) && calculate_password_hash($op['vclogin'], $op['vcpassword']) == $pwd && !operator_is_disabled($op)) {
-				$_SESSION[$session_prefix."operator"] = $op;
+				$_SESSION[SESSION_PREFIX."operator"] = $op;
 				return $op;
 			}
 		}
@@ -524,7 +518,7 @@ function check_login($redirect = true) {
 			return null;
 		}
 	}
-	return $_SESSION[$session_prefix."operator"];
+	return $_SESSION[SESSION_PREFIX."operator"];
 }
 
 // Force the admin to set a password after the installation
@@ -538,8 +532,7 @@ function force_password($operator)
 
 function get_logged_in()
 {
-	global $session_prefix;
+	return isset($_SESSION[SESSION_PREFIX."operator"]) ? $_SESSION[SESSION_PREFIX."operator"] : FALSE;
-	return isset($_SESSION[$session_prefix."operator"]) ? $_SESSION[$session_prefix."operator"] : FALSE;
 }
 
 /**
@@ -550,17 +543,12 @@ function get_logged_in()
  *  - 'operator': array of the logged in operator info;
  *  - 'remember': boolean, indicates if system should remember operator.
  *
- * @global string $session_prefix Use as prefix for all session variables to
- * allow many instalation of the mibew messenger at one server. It defined in
- * libs/common/constants.php
- *
  * @param array $operator Operators info
  * @param boolean $remember Indicates if system should remember operator
  * @param boolean $https Indicates if cookie should be flagged as a secure one
  */
 function login_operator($operator, $remember, $https = FALSE) {
-	global $session_prefix;
+	$_SESSION[SESSION_PREFIX."operator"] = $operator;
-	$_SESSION[$session_prefix."operator"] = $operator;
 	if ($remember) {
 		$value = base64_encode($operator['vclogin'] . "\x0" . calculate_password_hash($operator['vclogin'], $operator['vcpassword']));
 		setcookie(REMEMBER_OPERATOR_COOKIE_NAME, $value, time() + 60 * 60 * 24 * 1000, MIBEW_WEB_ROOT . "/", NULL, $https, TRUE);
@@ -582,14 +570,9 @@ function login_operator($operator, $remember, $https = FALSE) {
  * Log out current operator
  *
  * Triggers 'operatorLogout' event after operator logged out.
- *
- * @global string $session_prefix Use as prefix for all session variables to
- * allow many instalation of the mibew messenger at one server. It defined in
- * libs/common/constants.php
  */
 function logout_operator() {
-	global $session_prefix;
+	unset($_SESSION[SESSION_PREFIX."operator"]);
-	unset($_SESSION[$session_prefix."operator"]);
 	unset($_SESSION['backpath']);
 	if (isset($_COOKIE[REMEMBER_OPERATOR_COOKIE_NAME])) {
 		setcookie(REMEMBER_OPERATOR_COOKIE_NAME, '', time() - 3600, MIBEW_WEB_ROOT . "/");

src/mibew/operator/avatar.php

@@ -78,8 +78,8 @@ if (!$op) {
 	if (count($errors) == 0) {
 		update_operator_avatar($op['operatorid'], $avatar);
 
-		if ($opId && $avatar && $_SESSION[$session_prefix."operator"] && $operator['operatorid'] == $opId) {
+		if ($opId && $avatar && $_SESSION[SESSION_PREFIX."operator"] && $operator['operatorid'] == $opId) {
-			$_SESSION[$session_prefix."operator"]['vcavatar'] = $avatar;
+			$_SESSION[SESSION_PREFIX."operator"]['vcavatar'] = $avatar;
 		}
 		header("Location: " . MIBEW_WEB_ROOT . "/operator/avatar.php?op=" . intval($opId));
 		exit;

src/mibew/operator/operator.php

@@ -102,7 +102,7 @@ if ((isset($_POST['login']) || !is_capable(CAN_ADMINISTRATE, $operator)) && isse
 			// update the session password
 			if (!empty($password) && $opId == $operator['operatorid']) {
 				$toDashboard = check_password_hash($login, '', $operator['vcpassword']) && $password != '';
-				$_SESSION[$session_prefix."operator"]['vcpassword'] = calculate_password_hash($login, $password);
+				$_SESSION[SESSION_PREFIX."operator"]['vcpassword'] = calculate_password_hash($login, $password);
 				if($toDashboard) {
 					header("Location: " . MIBEW_WEB_ROOT . "/operator/index.php");
 					exit;

src/mibew/operator/permissions.php

@@ -54,8 +54,8 @@ if (!$op) {
 	if (count($errors) == 0) {
 		update_operator_permissions($op['operatorid'], $new_permissions);
 
-		if ($opId && $_SESSION[$session_prefix."operator"] && $operator['operatorid'] == $opId) {
+		if ($opId && $_SESSION[SESSION_PREFIX."operator"] && $operator['operatorid'] == $opId) {
-			$_SESSION[$session_prefix."operator"]['iperm'] = $new_permissions;
+			$_SESSION[SESSION_PREFIX."operator"]['iperm'] = $new_permissions;
 		}
 		header("Location: " . MIBEW_WEB_ROOT . "/operator/permissions.php?op=" . intval($opId) . "&stored");
 		exit;

src/mibew/operator/users.php

@@ -32,7 +32,7 @@ $status = isset($_GET['away']) ? 1 : 0;
 
 notify_operator_alive($operator['operatorid'], $status);
 
-$_SESSION[$session_prefix."operatorgroups"] = get_operator_groupslist($operator['operatorid']);
+$_SESSION[SESSION_PREFIX."operatorgroups"] = get_operator_groupslist($operator['operatorid']);
 
 $page = array();
 $page['havemenu'] = isset($_GET['nomenu']) ? "0" : "1";