RequestContext::exportSession() should only export persisted session IDs

author Brad Jorsch <bjorsch@wikimedia.org>

Wed, 27 Jan 2016 22:14:21 +0000 (17:14 -0500)

committer Brad Jorsch <bjorsch@wikimedia.org>

Wed, 27 Jan 2016 22:14:21 +0000 (17:14 -0500)
author Brad Jorsch <bjorsch@wikimedia.org>
Wed, 27 Jan 2016 22:14:21 +0000 (17:14 -0500)
committer Brad Jorsch <bjorsch@wikimedia.org>
Wed, 27 Jan 2016 22:14:21 +0000 (17:14 -0500)
diff --git a/includes/context/RequestContext.php b/includes/context/RequestContext.php

index 3b868a1..73e11b5 100644 (file)
--- a/includes/context/RequestContext.php
+++ b/includes/context/RequestContext.php
@@ -510,10 +510,11 @@ class RequestContext implements IContextSource, MutableContext {
          * @since 1.21
          */
         public function exportSession() {
+               $session = MediaWiki\Session\SessionManager::getGlobalSession();
                 return array(
                         'ip' => $this->getRequest()->getIP(),
                         'headers' => $this->getRequest()->getAllHeaders(),
-                       'sessionId' => MediaWiki\Session\SessionManager::getGlobalSession()->getId(),
+                       'sessionId' => $session->isPersistent() ? $session->getId() : '',
                         'userId' => $this->getUser()->getId()
                 );
         }
diff --git a/tests/phpunit/includes/context/RequestContextTest.php b/tests/phpunit/includes/context/RequestContextTest.php

index 25969e6..e0487c2 100644 (file)
--- a/tests/phpunit/includes/context/RequestContextTest.php
+++ b/tests/phpunit/includes/context/RequestContextTest.php
@@ -50,6 +50,8 @@ class RequestContextTest extends MediaWikiTestCase {
                 $oInfo = $context->exportSession();
                 $this->assertEquals( '127.0.0.1', $oInfo['ip'], "Correct initial IP address." );
                 $this->assertEquals( 0, $oInfo['userId'], "Correct initial user ID." );
+               $this->assertFalse( MediaWiki\Session\SessionManager::getGlobalSession()->isPersistent(),
+                       'Global session isn\'t persistent to start' );
  
                 $user = User::newFromName( 'UnitTestContextUser' );
                 $user->addToDatabase();
@@ -109,5 +111,7 @@ class RequestContextTest extends MediaWikiTestCase {
                 $this->assertEquals( $oInfo['headers'], $info['headers'], "Correct restored headers." );
                 $this->assertEquals( $oInfo['sessionId'], $info['sessionId'], "Correct restored session ID." );
                 $this->assertEquals( $oInfo['userId'], $info['userId'], "Correct restored user ID." );
+               $this->assertFalse( MediaWiki\Session\SessionManager::getGlobalSession()->isPersistent(),
+                       'Global session isn\'t persistent after restoring the context' );
         }
  }
author	Brad Jorsch <bjorsch@wikimedia.org>
	Wed, 27 Jan 2016 22:14:21 +0000 (17:14 -0500)
committer	Brad Jorsch <bjorsch@wikimedia.org>
	Wed, 27 Jan 2016 22:14:21 +0000 (17:14 -0500)
includes/context/RequestContext.php		patch \| blob \| history
tests/phpunit/includes/context/RequestContextTest.php		patch \| blob \| history