at path:ROOT / wp-includes / class-wp-session-tokens.php
run:R W Run
ID3
DIR
2026-03-11 16:18:51
R W Run
IXR
DIR
2026-03-11 16:18:52
R W Run
PHPMailer
DIR
2026-03-11 16:18:51
R W Run
Requests
DIR
2026-03-11 16:18:52
R W Run
SimplePie
DIR
2026-03-11 16:18:52
R W Run
Text
DIR
2026-03-11 16:18:51
R W Run
abilities-api
DIR
2026-03-11 16:18:51
R W Run
assets
DIR
2026-03-11 16:18:51
R W Run
block-bindings
DIR
2026-03-11 16:18:51
R W Run
block-patterns
DIR
2026-03-11 16:18:52
R W Run
block-supports
DIR
2026-03-11 16:18:52
R W Run
blocks
DIR
2026-03-11 16:18:52
R W Run
certificates
DIR
2026-03-11 16:18:51
R W Run
css
DIR
2026-03-11 16:18:52
R W Run
customize
DIR
2026-03-11 16:18:52
R W Run
fonts
DIR
2026-03-11 16:18:51
R W Run
html-api
DIR
2026-03-11 16:18:52
R W Run
images
DIR
2026-03-11 16:18:51
R W Run
interactivity-api
DIR
2026-03-11 16:18:51
R W Run
js
DIR
2026-03-11 16:18:51
R W Run
l10n
DIR
2026-03-11 16:18:52
R W Run
php-compat
DIR
2026-03-11 16:18:52
R W Run
pomo
DIR
2026-03-11 16:18:52
R W Run
rest-api
DIR
2026-03-11 16:18:52
R W Run
sitemaps
DIR
2026-03-11 16:18:51
R W Run
sodium_compat
DIR
2026-03-11 16:18:52
R W Run
style-engine
DIR
2026-03-11 16:18:52
R W Run
theme-compat
DIR
2026-03-11 16:18:51
R W Run
widgets
DIR
2026-03-11 16:18:51
R W Run
abilities-api.php
23.8 KB
2026-03-11 16:18:51
R W Run
abilities.php
7.8 KB
2026-03-11 16:18:52
R W Run
admin-bar.php
36.1 KB
2026-03-11 16:18:51
R W Run
atomlib.php
11.9 KB
2026-03-11 16:18:52
R W Run
author-template.php
18.94 KB
2026-03-11 16:18:52
R W Run
block-bindings.php
7.35 KB
2026-03-11 16:18:52
R W Run
block-editor.php
28.6 KB
2026-03-11 16:18:51
R W Run
block-i18n.json
316 By
2026-03-11 16:18:51
R W Run
block-patterns.php
12.9 KB
2026-03-11 16:18:51
R W Run
block-template-utils.php
61.02 KB
2026-03-11 16:18:52
R W Run
block-template.php
15 KB
2026-03-11 16:18:51
R W Run
blocks.php
112.05 KB
2026-03-11 16:18:51
R W Run
bookmark-template.php
12.47 KB
2026-03-11 16:18:51
R W Run
bookmark.php
15.07 KB
2026-03-11 16:18:52
R W Run
cache-compat.php
9.84 KB
2026-03-11 16:18:52
R W Run
cache.php
13.17 KB
2026-03-11 16:18:52
R W Run
canonical.php
33.83 KB
2026-03-11 16:18:51
R W Run
capabilities.php
42.63 KB
2026-03-11 16:18:51
R W Run
category-template.php
55.71 KB
2026-03-11 16:18:52
R W Run
category.php
12.53 KB
2026-03-11 16:18:51
R W Run
class-IXR.php
2.55 KB
2026-03-11 16:18:52
R W Run
class-avif-info.php
28.92 KB
2026-03-11 16:18:52
R W Run
class-feed.php
539 By
2026-03-11 16:18:51
R W Run
class-http.php
367 By
2026-03-11 16:18:52
R W Run
class-json.php
42.65 KB
2026-03-11 16:18:51
R W Run
class-oembed.php
401 By
2026-03-11 16:18:51
R W Run
class-phpass.php
6.61 KB
2026-03-11 16:18:51
R W Run
class-phpmailer.php
664 By
2026-03-11 16:18:52
R W Run
class-pop3.php
20.63 KB
2026-03-11 16:18:51
R W Run
class-requests.php
2.18 KB
2026-03-11 16:18:52
R W Run
class-simplepie.php
453 By
2026-03-11 16:18:52
R W Run
class-smtp.php
457 By
2026-03-11 16:18:51
R W Run
class-snoopy.php
36.83 KB
2026-03-11 16:18:52
R W Run
class-walker-category-dropdown.php
2.41 KB
2026-03-11 16:18:52
R W Run
class-walker-category.php
8.28 KB
2026-03-11 16:18:51
R W Run
class-walker-comment.php
13.89 KB
2026-03-11 16:18:51
R W Run
class-walker-nav-menu.php
11.76 KB
2026-03-11 16:18:51
R W Run
class-walker-page-dropdown.php
2.65 KB
2026-03-11 16:18:51
R W Run
class-walker-page.php
7.43 KB
2026-03-11 16:18:51
R W Run
class-wp-admin-bar.php
17.46 KB
2026-03-11 16:18:51
R W Run
class-wp-ajax-response.php
5.14 KB
2026-03-11 16:18:52
R W Run
class-wp-application-passwords.php
16.7 KB
2026-03-11 16:18:51
R W Run
class-wp-block-bindings-registry.php
8.28 KB
2026-03-11 16:18:52
R W Run
class-wp-block-bindings-source.php
2.92 KB
2026-03-11 16:18:52
R W Run
class-wp-block-editor-context.php
1.32 KB
2026-03-11 16:18:51
R W Run
class-wp-block-list.php
4.6 KB
2026-03-11 16:18:52
R W Run
class-wp-block-metadata-registry.php
11.62 KB
2026-03-11 16:18:52
R W Run
class-wp-block-parser-block.php
2.5 KB
2026-03-11 16:18:51
R W Run
class-wp-block-parser-frame.php
1.97 KB
2026-03-11 16:18:51
R W Run
class-wp-block-parser.php
11.25 KB
2026-03-11 16:18:52
R W Run
class-wp-block-pattern-categories-registry.php
5.32 KB
2026-03-11 16:18:51
R W Run
class-wp-block-patterns-registry.php
10.99 KB
2026-03-11 16:18:52
R W Run
class-wp-block-processor.php
68.32 KB
2026-03-11 16:18:51
R W Run
class-wp-block-styles-registry.php
6.34 KB
2026-03-11 16:18:51
R W Run
class-wp-block-supports.php
5.49 KB
2026-03-11 16:18:51
R W Run
class-wp-block-template.php
1.99 KB
2026-03-11 16:18:52
R W Run
class-wp-block-templates-registry.php
7.02 KB
2026-03-11 16:18:51
R W Run
class-wp-block-type-registry.php
4.91 KB
2026-03-11 16:18:52
R W Run
class-wp-block-type.php
16.86 KB
2026-03-11 16:18:51
R W Run
class-wp-block.php
24.23 KB
2026-03-11 16:18:51
R W Run
class-wp-classic-to-block-menu-converter.php
3.97 KB
2026-03-11 16:18:51
R W Run
class-wp-comment-query.php
47.66 KB
2026-03-11 16:18:51
R W Run
class-wp-comment.php
9.22 KB
2026-03-11 16:18:51
R W Run
class-wp-customize-control.php
25.51 KB
2026-03-11 16:18:51
R W Run
class-wp-customize-manager.php
198.38 KB
2026-03-11 16:18:52
R W Run
class-wp-customize-nav-menus.php
56.65 KB
2026-03-11 16:18:51
R W Run
class-wp-customize-panel.php
10.46 KB
2026-03-11 16:18:51
R W Run
class-wp-customize-section.php
10.95 KB
2026-03-11 16:18:52
R W Run
class-wp-customize-setting.php
29.26 KB
2026-03-11 16:18:51
R W Run
class-wp-customize-widgets.php
70.91 KB
2026-03-11 16:18:52
R W Run
class-wp-date-query.php
35.3 KB
2026-03-11 16:18:52
R W Run
class-wp-dependencies.php
16.61 KB
2026-03-11 16:18:52
R W Run
class-wp-dependency.php
2.57 KB
2026-03-11 16:18:52
R W Run
class-wp-duotone.php
39.83 KB
2026-03-11 16:18:51
R W Run
class-wp-editor.php
70.64 KB
2026-03-11 16:18:51
R W Run
class-wp-embed.php
15.56 KB
2026-03-11 16:18:52
R W Run
class-wp-error.php
7.33 KB
2026-03-11 16:18:52
R W Run
class-wp-exception.php
253 By
2026-03-11 16:18:51
R W Run
class-wp-fatal-error-handler.php
7.96 KB
2026-03-11 16:18:52
R W Run
class-wp-feed-cache-transient.php
3.23 KB
2026-03-11 16:18:52
R W Run
class-wp-feed-cache.php
969 By
2026-03-11 16:18:52
R W Run
class-wp-hook.php
16.28 KB
2026-03-11 16:18:51
R W Run
class-wp-http-cookie.php
7.22 KB
2026-03-11 16:18:51
R W Run
class-wp-http-curl.php
12.95 KB
2026-03-11 16:18:51
R W Run
class-wp-http-encoding.php
6.53 KB
2026-03-11 16:18:51
R W Run
class-wp-http-ixr-client.php
3.42 KB
2026-03-11 16:18:52
R W Run
class-wp-http-proxy.php
5.84 KB
2026-03-11 16:18:51
R W Run
class-wp-http-requests-hooks.php
1.97 KB
2026-03-11 16:18:51
R W Run
class-wp-http-requests-response.php
4.3 KB
2026-03-11 16:18:52
R W Run
class-wp-http-response.php
2.91 KB
2026-03-11 16:18:51
R W Run
class-wp-http-streams.php
16.46 KB
2026-03-11 16:18:52
R W Run
class-wp-http.php
40.6 KB
2026-03-11 16:18:51
R W Run
class-wp-image-editor-gd.php
20.22 KB
2026-03-11 16:18:51
R W Run
class-wp-image-editor-imagick.php
36.11 KB
2026-03-11 16:18:52
R W Run
class-wp-image-editor.php
17.01 KB
2026-03-11 16:18:51
R W Run
class-wp-list-util.php
7.27 KB
2026-03-11 16:18:52
R W Run
class-wp-locale-switcher.php
6.62 KB
2026-03-11 16:18:52
R W Run
class-wp-locale.php
16.49 KB
2026-03-11 16:18:52
R W Run
class-wp-matchesmapregex.php
1.79 KB
2026-03-11 16:18:52
R W Run
class-wp-meta-query.php
29.82 KB
2026-03-11 16:18:51
R W Run
class-wp-metadata-lazyloader.php
6.67 KB
2026-03-11 16:18:52
R W Run
class-wp-navigation-fallback.php
8.98 KB
2026-03-11 16:18:52
R W Run
class-wp-network-query.php
19.42 KB
2026-03-11 16:18:51
R W Run
class-wp-network.php
12.01 KB
2026-03-11 16:18:51
R W Run
class-wp-object-cache.php
17.11 KB
2026-03-11 16:18:51
R W Run
class-wp-oembed-controller.php
6.74 KB
2026-03-11 16:18:52
R W Run
class-wp-oembed.php
30.93 KB
2026-03-11 16:18:51
R W Run
class-wp-paused-extensions-storage.php
4.99 KB
2026-03-11 16:18:51
R W Run
class-wp-phpmailer.php
4.25 KB
2026-03-11 16:18:51
R W Run
class-wp-plugin-dependencies.php
24.72 KB
2026-03-11 16:18:51
R W Run
class-wp-post-type.php
29.96 KB
2026-03-11 16:18:52
R W Run
class-wp-post.php
6.41 KB
2026-03-11 16:18:51
R W Run
class-wp-query.php
160 KB
2026-03-11 16:18:51
R W Run
class-wp-recovery-mode-cookie-service.php
6.72 KB
2026-03-11 16:18:52
R W Run
class-wp-recovery-mode-email-service.php
10.92 KB
2026-03-11 16:18:51
R W Run
class-wp-recovery-mode-key-service.php
4.77 KB
2026-03-11 16:18:51
R W Run
class-wp-recovery-mode-link-service.php
3.38 KB
2026-03-11 16:18:51
R W Run
class-wp-recovery-mode.php
11.18 KB
2026-03-11 16:18:51
R W Run
class-wp-rewrite.php
62.19 KB
2026-03-11 16:18:51
R W Run
class-wp-role.php
2.46 KB
2026-03-11 16:18:51
R W Run
class-wp-roles.php
9.17 KB
2026-03-11 16:18:51
R W Run
class-wp-script-modules.php
32.15 KB
2026-03-11 16:18:51
R W Run
class-wp-scripts.php
34.05 KB
2026-03-11 16:18:52
R W Run
class-wp-session-tokens.php
7.15 KB
2026-03-11 16:18:51
R W Run
class-wp-simplepie-file.php
3.47 KB
2026-03-11 16:18:52
R W Run
class-wp-simplepie-sanitize-kses.php
1.87 KB
2026-03-11 16:18:52
R W Run
class-wp-site-query.php
30.91 KB
2026-03-11 16:18:51
R W Run
class-wp-site.php
7.29 KB
2026-03-11 16:18:52
R W Run
class-wp-speculation-rules.php
7.35 KB
2026-03-11 16:18:51
R W Run
class-wp-styles.php
12.54 KB
2026-03-11 16:18:51
R W Run
class-wp-tax-query.php
19.12 KB
2026-03-11 16:18:51
R W Run
class-wp-taxonomy.php
18.12 KB
2026-03-11 16:18:52
R W Run
class-wp-term-query.php
39.99 KB
2026-03-11 16:18:52
R W Run
class-wp-term.php
5.17 KB
2026-03-11 16:18:52
R W Run
class-wp-text-diff-renderer-inline.php
979 By
2026-03-11 16:18:51
R W Run
class-wp-text-diff-renderer-table.php
18.44 KB
2026-03-11 16:18:52
R W Run
class-wp-textdomain-registry.php
10.24 KB
2026-03-11 16:18:51
R W Run
class-wp-theme-json-data.php
1.77 KB
2026-03-11 16:18:52
R W Run
class-wp-theme-json-resolver.php
34.9 KB
2026-03-11 16:18:51
R W Run
class-wp-theme-json-schema.php
7.19 KB
2026-03-11 16:18:52
R W Run
class-wp-theme-json.php
160.5 KB
2026-03-11 16:18:51
R W Run
class-wp-theme.php
64.27 KB
2026-03-11 16:18:51
R W Run
class-wp-token-map.php
27.95 KB
2026-03-11 16:18:51
R W Run
class-wp-url-pattern-prefixer.php
4.69 KB
2026-03-11 16:18:51
R W Run
class-wp-user-meta-session-tokens.php
2.94 KB
2026-03-11 16:18:51
R W Run
class-wp-user-query.php
43.13 KB
2026-03-11 16:18:52
R W Run
class-wp-user-request.php
2.25 KB
2026-03-11 16:18:52
R W Run
class-wp-user.php
22.5 KB
2026-03-11 16:18:51
R W Run
class-wp-walker.php
13.01 KB
2026-03-11 16:18:52
R W Run
class-wp-widget-factory.php
3.27 KB
2026-03-11 16:18:51
R W Run
class-wp-widget.php
18 KB
2026-03-11 16:18:51
R W Run
class-wp-xmlrpc-server.php
210.4 KB
2026-03-11 16:18:52
R W Run
class-wp.php
25.86 KB
2026-03-11 16:18:52
R W Run
class-wpdb.php
115.85 KB
2026-03-11 16:18:51
R W Run
class.wp-dependencies.php
373 By
2026-03-11 16:18:52
R W Run
class.wp-scripts.php
343 By
2026-03-11 16:18:52
R W Run
class.wp-styles.php
338 By
2026-03-11 16:18:51
R W Run
comment-template.php
100.73 KB
2026-03-11 16:18:52
R W Run
comment.php
130.93 KB
2026-03-11 16:18:51
R W Run
compat-utf8.php
19.1 KB
2026-03-11 16:18:51
R W Run
compat.php
17.41 KB
2026-03-11 16:18:52
R W Run
cron.php
41.98 KB
2026-03-11 16:18:52
R W Run
date.php
400 By
2026-03-11 16:18:52
R W Run
default-constants.php
11.1 KB
2026-03-11 16:18:52
R W Run
default-filters.php
37.02 KB
2026-03-11 16:18:51
R W Run
default-widgets.php
2.24 KB
2026-03-11 16:18:51
R W Run
deprecated.php
188.13 KB
2026-03-11 16:18:51
R W Run
embed-template.php
338 By
2026-03-11 16:18:51
R W Run
embed.php
38 KB
2026-03-11 16:18:51
R W Run
error-protection.php
4.02 KB
2026-03-11 16:18:52
R W Run
feed-atom-comments.php
5.38 KB
2026-03-11 16:18:51
R W Run
feed-atom.php
3.05 KB
2026-03-11 16:18:52
R W Run
feed-rdf.php
2.61 KB
2026-03-11 16:18:51
R W Run
feed-rss.php
1.16 KB
2026-03-11 16:18:52
R W Run
feed-rss2-comments.php
4.04 KB
2026-03-11 16:18:51
R W Run
feed-rss2.php
3.71 KB
2026-03-11 16:18:51
R W Run
feed.php
24.6 KB
2026-03-11 16:18:51
R W Run
fonts.php
9.56 KB
2026-03-11 16:18:51
R W Run
formatting.php
346.43 KB
2026-03-11 16:18:52
R W Run
functions.php
281.84 KB
2026-03-11 16:18:52
R W Run
functions.wp-scripts.php
14.95 KB
2026-03-11 16:18:51
R W Run
functions.wp-styles.php
8.44 KB
2026-03-11 16:18:52
R W Run
general-template.php
168.95 KB
2026-03-11 16:18:52
R W Run
global-styles-and-settings.php
20.71 KB
2026-03-11 16:18:52
R W Run
http.php
25.27 KB
2026-03-11 16:18:51
R W Run
https-detection.php
5.72 KB
2026-03-11 16:18:51
R W Run
https-migration.php
4.63 KB
2026-03-11 16:18:52
R W Run
kses.php
81.73 KB
2026-03-11 16:18:51
R W Run
l10n.php
67.18 KB
2026-03-11 16:18:51
R W Run
link-template.php
156.36 KB
2026-03-11 16:18:52
R W Run
load.php
55.19 KB
2026-03-11 16:18:51
R W Run
locale.php
162 By
2026-03-11 16:18:51
R W Run
media-template.php
61.72 KB
2026-03-11 16:18:51
R W Run
media.php
216.06 KB
2026-03-11 16:18:52
R W Run
meta.php
65.09 KB
2026-03-11 16:18:51
R W Run
ms-blogs.php
25.24 KB
2026-03-11 16:18:52
R W Run
ms-default-constants.php
4.81 KB
2026-03-11 16:18:51
R W Run
ms-default-filters.php
6.48 KB
2026-03-11 16:18:52
R W Run
ms-deprecated.php
21.25 KB
2026-03-11 16:18:51
R W Run
ms-files.php
2.79 KB
2026-03-11 16:18:52
R W Run
ms-functions.php
89.69 KB
2026-03-11 16:18:52
R W Run
ms-load.php
19.42 KB
2026-03-11 16:18:52
R W Run
ms-network.php
3.69 KB
2026-03-11 16:18:52
R W Run
ms-settings.php
4.11 KB
2026-03-11 16:18:51
R W Run
ms-site.php
40.74 KB
2026-03-11 16:18:51
R W Run
nav-menu-template.php
25.38 KB
2026-03-11 16:18:51
R W Run
nav-menu.php
43.31 KB
2026-03-11 16:18:52
R W Run
option.php
102.57 KB
2026-03-11 16:18:52
R W Run
pluggable-deprecated.php
6.18 KB
2026-03-11 16:18:51
R W Run
pluggable.php
124.47 KB
2026-03-11 16:18:52
R W Run
plugin.php
35.65 KB
2026-03-11 16:18:52
R W Run
post-formats.php
6.94 KB
2026-03-11 16:18:52
R W Run
post-template.php
67.04 KB
2026-03-11 16:18:52
R W Run
post-thumbnail-template.php
10.62 KB
2026-03-11 16:18:51
R W Run
post.php
289.35 KB
2026-03-11 16:18:52
R W Run
query.php
36.23 KB
2026-03-11 16:18:51
R W Run
registration-functions.php
200 By
2026-03-11 16:18:52
R W Run
registration.php
200 By
2026-03-11 16:18:52
R W Run
rest-api.php
98.29 KB
2026-03-11 16:18:52
R W Run
revision.php
30.02 KB
2026-03-11 16:18:52
R W Run
rewrite.php
19.03 KB
2026-03-11 16:18:52
R W Run
robots-template.php
5.06 KB
2026-03-11 16:18:52
R W Run
rss-functions.php
255 By
2026-03-11 16:18:51
R W Run
rss.php
22.66 KB
2026-03-11 16:18:52
R W Run
script-loader.php
154.63 KB
2026-03-11 16:18:51
R W Run
script-modules.php
9.68 KB
2026-03-11 16:18:51
R W Run
session.php
258 By
2026-03-11 16:18:51
R W Run
shortcodes.php
23.49 KB
2026-03-11 16:18:51
R W Run
sitemaps.php
3.16 KB
2026-03-11 16:18:51
R W Run
speculative-loading.php
8.4 KB
2026-03-11 16:18:52
R W Run
spl-autoload-compat.php
441 By
2026-03-11 16:18:51
R W Run
style-engine.php
7.39 KB
2026-03-11 16:18:51
R W Run
taxonomy.php
173 KB
2026-03-11 16:18:52
R W Run
template-canvas.php
544 By
2026-03-11 16:18:52
R W Run
template-loader.php
4.17 KB
2026-03-11 16:18:51
R W Run
template.php
35.97 KB
2026-03-11 16:18:52
R W Run
theme-i18n.json
1.69 KB
2026-03-11 16:18:51
R W Run
theme-previews.php
2.84 KB
2026-03-11 16:18:52
R W Run
theme-templates.php
6.09 KB
2026-03-11 16:18:51
R W Run
theme.json
8.71 KB
2026-03-11 16:18:51
R W Run
theme.php
131.84 KB
2026-03-11 16:18:51
R W Run
update.php
37.45 KB
2026-03-11 16:18:51
R W Run
user.php
173.89 KB
2026-03-11 16:18:51
R W Run
utf8.php
7.09 KB
2026-03-11 16:18:51
R W Run
vars.php
6.41 KB
2026-03-11 16:18:51
R W Run
version.php
1.08 KB
2026-03-11 16:18:51
R W Run
widgets.php
69.46 KB
2026-03-11 16:18:52
R W Run
wp-db.php
445 By
2026-03-11 16:18:51
R W Run
wp-diff.php
799 By
2026-03-11 16:18:52
R W Run
error_log
📄class-wp-session-tokens.php
  1<?php
  2/**
  3 * Session API: WP_Session_Tokens class
  4 *
  5 * @package WordPress
  6 * @subpackage Session
  7 * @since 4.7.0
  8 */
  9
 10/**
 11 * Abstract class for managing user session tokens.
 12 *
 13 * @since 4.0.0
 14 */
 15#[AllowDynamicProperties]
 16abstract class WP_Session_Tokens {
 17
 18	/**
 19	 * User ID.
 20	 *
 21	 * @since 4.0.0
 22	 * @var int User ID.
 23	 */
 24	protected $user_id;
 25
 26	/**
 27	 * Protected constructor. Use the `get_instance()` method to get the instance.
 28	 *
 29	 * @since 4.0.0
 30	 *
 31	 * @param int $user_id User whose session to manage.
 32	 */
 33	protected function __construct( $user_id ) {
 34		$this->user_id = $user_id;
 35	}
 36
 37	/**
 38	 * Retrieves a session manager instance for a user.
 39	 *
 40	 * This method contains a {@see 'session_token_manager'} filter, allowing a plugin to swap out
 41	 * the session manager for a subclass of `WP_Session_Tokens`.
 42	 *
 43	 * @since 4.0.0
 44	 *
 45	 * @param int $user_id User whose session to manage.
 46	 * @return WP_Session_Tokens The session object, which is by default an instance of
 47	 *                           the `WP_User_Meta_Session_Tokens` class.
 48	 */
 49	final public static function get_instance( $user_id ) {
 50		/**
 51		 * Filters the class name for the session token manager.
 52		 *
 53		 * @since 4.0.0
 54		 *
 55		 * @param string $session Name of class to use as the manager.
 56		 *                        Default 'WP_User_Meta_Session_Tokens'.
 57		 */
 58		$manager = apply_filters( 'session_token_manager', 'WP_User_Meta_Session_Tokens' );
 59		return new $manager( $user_id );
 60	}
 61
 62	/**
 63	 * Hashes the given session token for storage.
 64	 *
 65	 * @since 4.0.0
 66	 *
 67	 * @param string $token Session token to hash.
 68	 * @return string A hash of the session token (a verifier).
 69	 */
 70	private function hash_token( $token ) {
 71		return hash( 'sha256', $token );
 72	}
 73
 74	/**
 75	 * Retrieves a user's session for the given token.
 76	 *
 77	 * @since 4.0.0
 78	 *
 79	 * @param string $token Session token.
 80	 * @return array|null The session, or null if it does not exist.
 81	 */
 82	final public function get( $token ) {
 83		$verifier = $this->hash_token( $token );
 84		return $this->get_session( $verifier );
 85	}
 86
 87	/**
 88	 * Validates the given session token for authenticity and validity.
 89	 *
 90	 * Checks that the given token is present and hasn't expired.
 91	 *
 92	 * @since 4.0.0
 93	 *
 94	 * @param string $token Token to verify.
 95	 * @return bool Whether the token is valid for the user.
 96	 */
 97	final public function verify( $token ) {
 98		$verifier = $this->hash_token( $token );
 99		return (bool) $this->get_session( $verifier );
100	}
101
102	/**
103	 * Generates a session token and attaches session information to it.
104	 *
105	 * A session token is a long, random string. It is used in a cookie
106	 * to link that cookie to an expiration time and to ensure the cookie
107	 * becomes invalidated when the user logs out.
108	 *
109	 * This function generates a token and stores it with the associated
110	 * expiration time (and potentially other session information via the
111	 * {@see 'attach_session_information'} filter).
112	 *
113	 * @since 4.0.0
114	 *
115	 * @param int $expiration Session expiration timestamp.
116	 * @return string Session token.
117	 */
118	final public function create( $expiration ) {
119		/**
120		 * Filters the information attached to the newly created session.
121		 *
122		 * Can be used to attach further information to a session.
123		 *
124		 * @since 4.0.0
125		 *
126		 * @param array $session Array of extra data.
127		 * @param int   $user_id User ID.
128		 */
129		$session               = apply_filters( 'attach_session_information', array(), $this->user_id );
130		$session['expiration'] = $expiration;
131
132		// IP address.
133		if ( ! empty( $_SERVER['REMOTE_ADDR'] ) ) {
134			$session['ip'] = $_SERVER['REMOTE_ADDR'];
135		}
136
137		// User-agent.
138		if ( ! empty( $_SERVER['HTTP_USER_AGENT'] ) ) {
139			$session['ua'] = wp_unslash( $_SERVER['HTTP_USER_AGENT'] );
140		}
141
142		// Timestamp.
143		$session['login'] = time();
144
145		$token = wp_generate_password( 43, false, false );
146
147		$this->update( $token, $session );
148
149		return $token;
150	}
151
152	/**
153	 * Updates the data for the session with the given token.
154	 *
155	 * @since 4.0.0
156	 *
157	 * @param string $token Session token to update.
158	 * @param array  $session Session information.
159	 */
160	final public function update( $token, $session ) {
161		$verifier = $this->hash_token( $token );
162		$this->update_session( $verifier, $session );
163	}
164
165	/**
166	 * Destroys the session with the given token.
167	 *
168	 * @since 4.0.0
169	 *
170	 * @param string $token Session token to destroy.
171	 */
172	final public function destroy( $token ) {
173		$verifier = $this->hash_token( $token );
174		$this->update_session( $verifier, null );
175	}
176
177	/**
178	 * Destroys all sessions for this user except the one with the given token (presumably the one in use).
179	 *
180	 * @since 4.0.0
181	 *
182	 * @param string $token_to_keep Session token to keep.
183	 */
184	final public function destroy_others( $token_to_keep ) {
185		$verifier = $this->hash_token( $token_to_keep );
186		$session  = $this->get_session( $verifier );
187		if ( $session ) {
188			$this->destroy_other_sessions( $verifier );
189		} else {
190			$this->destroy_all_sessions();
191		}
192	}
193
194	/**
195	 * Determines whether a session is still valid, based on its expiration timestamp.
196	 *
197	 * @since 4.0.0
198	 *
199	 * @param array $session Session to check.
200	 * @return bool Whether session is valid.
201	 */
202	final protected function is_still_valid( $session ) {
203		return $session['expiration'] >= time();
204	}
205
206	/**
207	 * Destroys all sessions for a user.
208	 *
209	 * @since 4.0.0
210	 */
211	final public function destroy_all() {
212		$this->destroy_all_sessions();
213	}
214
215	/**
216	 * Destroys all sessions for all users.
217	 *
218	 * @since 4.0.0
219	 */
220	final public static function destroy_all_for_all_users() {
221		/** This filter is documented in wp-includes/class-wp-session-tokens.php */
222		$manager = apply_filters( 'session_token_manager', 'WP_User_Meta_Session_Tokens' );
223		call_user_func( array( $manager, 'drop_sessions' ) );
224	}
225
226	/**
227	 * Retrieves all sessions for a user.
228	 *
229	 * @since 4.0.0
230	 *
231	 * @return array Sessions for a user.
232	 */
233	final public function get_all() {
234		return array_values( $this->get_sessions() );
235	}
236
237	/**
238	 * Retrieves all sessions of the user.
239	 *
240	 * @since 4.0.0
241	 *
242	 * @return array Sessions of the user.
243	 */
244	abstract protected function get_sessions();
245
246	/**
247	 * Retrieves a session based on its verifier (token hash).
248	 *
249	 * @since 4.0.0
250	 *
251	 * @param string $verifier Verifier for the session to retrieve.
252	 * @return array|null The session, or null if it does not exist.
253	 */
254	abstract protected function get_session( $verifier );
255
256	/**
257	 * Updates a session based on its verifier (token hash).
258	 *
259	 * Omitting the second argument destroys the session.
260	 *
261	 * @since 4.0.0
262	 *
263	 * @param string $verifier Verifier for the session to update.
264	 * @param array  $session  Optional. Session. Omitting this argument destroys the session.
265	 */
266	abstract protected function update_session( $verifier, $session = null );
267
268	/**
269	 * Destroys all sessions for this user, except the single session with the given verifier.
270	 *
271	 * @since 4.0.0
272	 *
273	 * @param string $verifier Verifier of the session to keep.
274	 */
275	abstract protected function destroy_other_sessions( $verifier );
276
277	/**
278	 * Destroys all sessions for the user.
279	 *
280	 * @since 4.0.0
281	 */
282	abstract protected function destroy_all_sessions();
283
284	/**
285	 * Destroys all sessions for all users.
286	 *
287	 * @since 4.0.0
288	 */
289	public static function drop_sessions() {}
290}
291