2026-02-23 12:58:19 +01:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace MintyPHP\Service\Import;
|
|
|
|
|
|
2026-03-06 00:44:52 +01:00
|
|
|
use MintyPHP\Http\SessionStoreInterface;
|
|
|
|
|
|
2026-02-23 12:58:19 +01:00
|
|
|
class ImportStateStoreService
|
|
|
|
|
{
|
|
|
|
|
private const SESSION_KEY = 'admin_imports_v1';
|
|
|
|
|
private const STATE_TTL_SECONDS = 7200;
|
|
|
|
|
|
2026-03-06 00:44:52 +01:00
|
|
|
public function __construct(
|
|
|
|
|
private readonly ImportTempFileService $importTempFileService,
|
|
|
|
|
private readonly SessionStoreInterface $sessionStore
|
test(auth): add 33 unit tests for AuthService and RememberMeService
AuthServiceTest (17 tests): canLoginToTenant, refreshSessionAuthState,
loginUserById, login email-not-verified branch.
RememberMeServiceTest (16 tests): rememberUser, autoLoginFromCookie
(all 11 branches), forgetCurrentUser, forgetAllForUser,
expireAllTokensByAdmin.
Also fixes: 3 PHPStan errors in FrontendTelemetryIngestService,
8 CS-Fixer violations in out-of-scope files (ordered_imports,
braces_position).
All quality gates green: QG-001 (429 tests/0 failures),
QG-002 (0 errors), QG-003 (11 arch tests pass), QG-006 (0 violations).
Task: AUTH-LOGIN-REVIEW-001
Co-Authored-By: Claude Opus 4.6 <noreply@anthropic.com>
2026-03-06 11:43:31 +01:00
|
|
|
) {
|
2026-02-23 12:58:19 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @param array<string, mixed> $state
|
|
|
|
|
*/
|
|
|
|
|
public function setState(string $token, array $state): void
|
|
|
|
|
{
|
2026-03-06 00:44:52 +01:00
|
|
|
$states = $this->sessionStore->get(self::SESSION_KEY, []);
|
|
|
|
|
if (!is_array($states)) {
|
|
|
|
|
$states = [];
|
2026-02-23 12:58:19 +01:00
|
|
|
}
|
2026-03-06 00:44:52 +01:00
|
|
|
$states[$token] = $state;
|
|
|
|
|
$this->sessionStore->set(self::SESSION_KEY, $states);
|
2026-02-23 12:58:19 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* @return array<string, mixed>|null
|
|
|
|
|
*/
|
|
|
|
|
public function getState(string $token): ?array
|
|
|
|
|
{
|
|
|
|
|
$token = trim($token);
|
|
|
|
|
if ($token === '') {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-06 00:44:52 +01:00
|
|
|
$all = $this->sessionStore->get(self::SESSION_KEY, []);
|
2026-02-23 12:58:19 +01:00
|
|
|
if (!is_array($all)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$state = $all[$token] ?? null;
|
|
|
|
|
if (!is_array($state)) {
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
2026-03-06 00:44:52 +01:00
|
|
|
// Lazy expiry: clean up the temp file and session entry when the state is accessed after TTL.
|
2026-02-23 12:58:19 +01:00
|
|
|
$createdAt = (int) ($state['created_at'] ?? 0);
|
|
|
|
|
if ($createdAt > 0 && (time() - $createdAt) > self::STATE_TTL_SECONDS) {
|
|
|
|
|
$this->importTempFileService->delete((string) ($state['path'] ?? ''));
|
|
|
|
|
$this->clearState($token);
|
|
|
|
|
return null;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $state;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
public function clearState(string $token): void
|
|
|
|
|
{
|
2026-03-06 00:44:52 +01:00
|
|
|
$states = $this->sessionStore->get(self::SESSION_KEY, []);
|
|
|
|
|
if (!is_array($states)) {
|
2026-02-23 12:58:19 +01:00
|
|
|
return;
|
|
|
|
|
}
|
2026-03-06 00:44:52 +01:00
|
|
|
|
|
|
|
|
unset($states[$token]);
|
|
|
|
|
$this->sessionStore->set(self::SESSION_KEY, $states);
|
2026-02-23 12:58:19 +01:00
|
|
|
}
|
|
|
|
|
}
|