Welcome Guest, Not a member yet? Register   Sign In
CodeIgniter Forums CodeIgniter 4 CodeIgniter 4 Support Global session check and re-direct
Global session check and re-direct
  • Offline joho
    CI noob
  • ***
  • Posts: 85
    Threads: 29
    Joined: Mar 2023
    Reputation: 2
#1
Question  04-04-2024, 01:49 AM
(This post was last modified: 04-04-2024, 02:00 AM by joho.)

Scenario:

Segmented application, with two or more parts, handling different aspects of access. Similar to how an OAuth situation would look. In the main application, I need to check if there's a valid session. If there is not a valid session, I want to re-direct to the authentication handling application. This could be the "internal" one (still a separate URL, etc) or an "external" one, like Google, Microsoft, whatever.

To avoid having to put a session check in every single Controller function or "route", is it a good idea to put a "global check" in app/Config/Routes.php before anything else, and simply issue a re-direct (and die) before any routes are configured?

Or is there a better/more correct way of doing this the CodeIgniter way?
I guess I should also mention that if the "global session check" fails, the main application should obviously check if we're coming back from an authentication handling app with the correct parameters.
I just realized I could possibly use the Controller's before filter, I think? :-) But then I'd need to add one for every controller, so it's still not a "global session check" per se.
Or is it a $global Filter I should actually use ... ?

-joho
Reply
  • Offline InsiteFX
    Super Moderator
  • ******
  • Posts: 6,761
    Threads: 346
    Joined: Oct 2014
    Reputation: 247
#2
04-04-2024, 04:00 AM

In your BaseController initController(...)

PHP Code:
        // Ensure that the session is started and running
        if (session_status() === PHP_SESSION_NONE)
        {
            // if session status is none then start the session
            $this->session Services::session();
        
What did you Try? What did you Get? What did you Expect?

Joined CodeIgniter Community 2009.  ( Skype: insitfx )
Reply
  • Offline kenjis
    Administrator
  • *******
  • Posts: 3,671
    Threads: 96
    Joined: Oct 2014
    Reputation: 231
#3
04-04-2024, 05:07 AM

(04-04-2024, 01:49 AM)joho Wrote: To avoid having to put a session check in every single Controller function or "route", is it a good idea to put a "global check" in app/Config/Routes.php before anything else, and simply issue a re-direct (and die) before any routes are configured?

It is bad practice in the old Ci3 age.
It breaks the framework process flow.

Also, if you put die() in your code, you cannot write test code.
Because when you run test, the test runner will die with it.
ci-phpunit-test | CodeIgniter Testing Guide | CodeIgniter 3 to 4 Upgrade Helper
Reply
  • Offline kenjis
    Administrator
  • *******
  • Posts: 3,671
    Threads: 96
    Joined: Oct 2014
    Reputation: 231
#4
04-04-2024, 05:14 AM
(This post was last modified: 04-04-2024, 05:15 AM by kenjis.)

Probably there are two ways.
- https://codeigniter4.github.io/CodeIgnit...ml#globals
- https://codeigniter4.github.io/CodeIgnit...ng-filters
ci-phpunit-test | CodeIgniter Testing Guide | CodeIgniter 3 to 4 Upgrade Helper
Reply
  • Offline joho
    CI noob
  • ***
  • Posts: 85
    Threads: 29
    Joined: Mar 2023
    Reputation: 2
#5
04-04-2024, 06:03 AM

I ended up doing it in a global filter, we'll see how that goes. Thank you for your comments.

-joho
Reply




Theme © iAndrew 2016 - Forum software by © MyBB