Beefy Boxes and Bandwidth Generously Provided by pair Networks
Syntactic Confectionery Delight
 
PerlMonks  

Re: how do I force a specific session, not my own, to end?

by scorpio17 (Monsignor)
on Mar 08, 2013 at 20:28 UTC ( #1022486=note: print w/ replies, xml ) Need Help??


in reply to how do I force a specific session, not my own, to end?

You need to use the find() method. In the docs, they show how to use it to expire sessions 10+ days old. You should modify it something like this (where $bad_user_id is the user you want to remove):

CGI::Session->find( \&purge ); sub purge { my ($session) = @_; next if $session->is_empty; # <-- already expired?! if ( ($session->param('user_id') eq $bad_user_id) ) { $session->delete(); $session->flush(); } } # now change password associated with $bad_user_id...


Comment on Re: how do I force a specific session, not my own, to end?
Download Code
Replies are listed 'Best First'.
Re^2: how do I force a specific session, not my own, to end?
by ted.byers (Scribe) on Mar 08, 2013 at 21:23 UTC

    Thanks. That put me on track to find the solution.

    What you didn't show was how to pass $bad_user_id to function purge. Here is my solution:

    sub purge_bad_user { my $bad_user = shift; $bad_user = -10 unless defined $bad_user; CGI::Session->find( sub { purge(@_,$bad_user) } ); } sub purge { my ($session,$bad_user_id) = @_; next if $session->is_empty; # <-- already expired?! if ( ($session->param('user_id') == $bad_user_id) ) { $session->delete(); $session->flush(); } my $db = 'test'; my $hostname = 'localhost'; my $user = 'rejbyers'; my $dbpwd = 'Didr39Qcab'; my $dbh = DBI->connect_cached("DBI:mysql:database=$db;host=$hostname +",$user,$dbpwd,{RaiseError => 1}) or die "Failed to connect to the DB.\n"; use Math::Random::MT::Auto::Range; my %prng_options; $prng_options{'LOW'} = 1000000000; $prng_options{'HIGH'} = 9999999999; $prng_options{'TYPE'} = 'INTEGER'; my $prng = Math::Random::MT::Auto::Range->new(%prng_options); my $p = $prng->rrand(); my $sql = "UPDATE users SET password = '$p' WHERE idusers = $bad_use +r_id"; $dbh->do($sql); $dbh->disconnect; }

    Please let me know if I missed something in this. I am still working on testing it.

    Thanks

    ted

Re^2: how do I force a specific session, not my own, to end?
by Anonymous Monk on Mar 08, 2013 at 20:39 UTC
    :) hurricane
    sub ban_user { my $banneduser = shift; my $purge = sub { my( $session ) = @_; next if $session->is_empty; # <-- already expired?! if ( ($session->param('user_id') eq $bad_user_id) ) { $session->delete(); $session->flush(); } }; DeAuthorize( $banneduser ); CGI::Session->find( $dsn, $purge, $dsn_args ); }

Log In?
Username:
Password:

What's my password?
Create A New User
Node Status?
node history
Node Type: note [id://1022486]
help
Chatterbox?
and the web crawler heard nothing...

How do I use this? | Other CB clients
Other Users?
Others studying the Monastery: (16)
As of 2015-07-31 14:14 GMT
Sections?
Information?
Find Nodes?
Leftovers?
    Voting Booth?

    The top three priorities of my open tasks are (in descending order of likelihood to be worked on) ...









    Results (278 votes), past polls