From ccc9a05b758f1dc0313b96807edfc447a9e8d278 Mon Sep 17 00:00:00 2001
From: polo <ordipolo@gmx.fr>
Date: Thu, 8 Feb 2024 04:31:14 +0100
Subject: RGPD cookie uniquement en mode admin et avertissement, logo journal

---
 controller/cookies.php | 66 ++++++++++++++++++++++++++++++++++++++++++++++++++
 1 file changed, 66 insertions(+)
 create mode 100644 controller/cookies.php

(limited to 'controller/cookies.php')

diff --git a/controller/cookies.php b/controller/cookies.php
new file mode 100644
index 0000000..f5c7e64
--- /dev/null
+++ b/controller/cookies.php
@@ -0,0 +1,66 @@
+<?php
+// controller/cookies.php
+
+// nettoyage du cookie de session de l'ancienne version du site
+$cookie = 'PHPSESSID';
+if(isset($_COOKIE[$cookie]))
+{
+    deleteCookie($cookie);
+    header("Location: index.php");
+    exit();
+}
+
+// session_start()
+$cookie = 'session_admin';
+if(isset($_COOKIE[$cookie])) // détection du cookie
+{
+    if(session_status() === PHP_SESSION_NONE)
+    {
+        session_name($cookie);
+        /*session_set_cookie_params([
+            'lifetime' => 0,
+            'path' => '/',
+            'domain' => $_SERVER['HTTP_HOST'],
+            'secure' => true,
+            'httponly' => true,
+            'samesite' => 'strict']);
+        session_start();*/
+        
+        /*session_start([
+            'cookie_lifetime' => 0,
+            'cookie_path' => '/',
+            'cookie_domain' => $_SERVER['HTTP_HOST'],
+            'cookie_secure' => true,
+            'cookie_httponly' => true,
+            'cookie_samesite' => 'strict']);*/
+        session_start();
+
+        // le cookie ne semble pas prendre les paramètres! pourquoi?
+        //var_dump(session_get_cookie_params());
+    }
+    else // cas anormal: session déjà démarrée, mode parano activé!
+    {
+        deleteCookie($cookie);
+        header("Location: index.php");
+        exit();
+    }
+}
+
+// erreurs affichées au rechargement (lesquelles déjà?)
+if(isset($_SESSION['erreur']) && !empty($_SESSION['erreur']))
+{
+    echo('<script>alert(\'' . $_SESSION['erreur'] . '\');</script>');
+    unset($_SESSION['erreur']);
+}
+
+
+function deleteCookie(string $name)
+{
+    unset($_COOKIE[$name]); // utile?
+    setcookie($name, '', time() - 4200, '/'); // suppression
+    
+    // cookie supprimé au prochain chargement de la page
+    // forcer un rechargement pour effet immédiat
+    //header("Location: index.php");
+    //exit();
+}
-- 
cgit v1.2.3