Remove roadrunner specific session handling (#62)

* Fix removing of session cookie after logout

* Remove roadrunner specific session handling

* Simplify also the Runner

* Remove session reset

* Fix php-cs

* Increased required versions

* Fix tests

Author: alexander-schranz

composer.json

@@ -14,7 +14,7 @@
         "nyholm/psr7": "^1.4",
         "spiral/roadrunner": "^2.0",
         "symfony/dependency-injection": "^5.3 || ^6.0",
-        "symfony/http-kernel": "^5.3 || ^6.0",
+        "symfony/http-kernel": "^5.4 || ^6.0",
         "symfony/psr-http-message-bridge": "^2.1",
         "symfony/runtime": "^5.3 || ^6.0"
     },

src/Runner.php

@@ -8,12 +8,7 @@
 use Symfony\Bridge\PsrHttpMessage\Factory\PsrHttpFactory;
 use Symfony\Bridge\PsrHttpMessage\HttpFoundationFactoryInterface;
 use Symfony\Bridge\PsrHttpMessage\HttpMessageFactoryInterface;
-use Symfony\Component\HttpFoundation\Cookie;
-use Symfony\Component\HttpFoundation\Request as SymfonyRequest;
-use Symfony\Component\HttpFoundation\Response as SymfonyResponse;
-use Symfony\Component\HttpKernel\HttpCache\HttpCache;
 use Symfony\Component\HttpKernel\HttpKernelInterface;
-use Symfony\Component\HttpKernel\KernelInterface;
 use Symfony\Component\HttpKernel\TerminableInterface;
 use Symfony\Component\Runtime\RunnerInterface;
 
@@ -27,33 +22,12 @@ class Runner implements RunnerInterface
     private $httpMessageFactory;
     private $psrFactory;
 
-    /**
-     * @var array<string, mixed>
-     */
-    private $sessionOptions;
-
-    /**
-     * @param HttpKernelInterface|KernelInterface $kernel
-     */
-    public function __construct($kernel, ?HttpFoundationFactoryInterface $httpFoundationFactory = null, ?HttpMessageFactoryInterface $httpMessageFactory = null)
+    public function __construct(HttpKernelInterface $kernel, ?HttpFoundationFactoryInterface $httpFoundationFactory = null, ?HttpMessageFactoryInterface $httpMessageFactory = null)
     {
         $this->kernel = $kernel;
         $this->psrFactory = new Psr7\Factory\Psr17Factory();
         $this->httpFoundationFactory = $httpFoundationFactory ?? new HttpFoundationFactory();
         $this->httpMessageFactory = $httpMessageFactory ?? new PsrHttpFactory($this->psrFactory, $this->psrFactory, $this->psrFactory, $this->psrFactory);
-
-        if ($kernel instanceof HttpCache) {
-            $kernel = $kernel->getKernel();
-        }
-
-        if (!$kernel instanceof KernelInterface) {
-            throw new \InvalidArgumentException(sprintf('Expected argument of type "%s" or "%s", "%s" given.', KernelInterface::class, HttpCache::class, get_class($kernel)));
-        }
-
-        $kernel->boot();
-        $container = $kernel->getContainer();
-        $this->sessionOptions = $container->getParameter('session.storage.options');
-        $kernel->shutdown();
     }
 
     public function run(): int
@@ -64,66 +38,17 @@ public function run(): int
         while ($request = $worker->waitRequest()) {
             try {
                 $sfRequest = $this->httpFoundationFactory->createRequest($request);
-                $sfResponse = $this->handle($sfRequest);
+                $sfResponse = $this->kernel->handle($sfRequest);
                 $worker->respond($this->httpMessageFactory->createResponse($sfResponse));
 
                 if ($this->kernel instanceof TerminableInterface) {
                     $this->kernel->terminate($sfRequest, $sfResponse);
                 }
             } catch (\Throwable $e) {
                 $worker->getWorker()->error((string) $e);
-            } finally {
-                if (PHP_SESSION_ACTIVE === session_status()) {
-                    session_abort();
-                }
-
-                // reset all session variables to initialize state
-                $_SESSION = [];
-                session_id(''); // in this case session_start() will generate us a new session_id()
             }
         }
 
         return 0;
     }
-
-    private function handle(SymfonyRequest $request): SymfonyResponse
-    {
-        $sessionName = $this->sessionOptions['name'] ?? \session_name();
-        /** @var string $requestSessionId */
-        $requestSessionId = $request->cookies->get($sessionName, '');
-
-        // TODO invalid session id should be expired: see F at https://github.com/php-runtime/runtime/issues/46
-        \session_id($requestSessionId);
-
-        $response = $this->kernel->handle($request);
-
-        if ($request->hasSession()) {
-            $sessionId = \session_id();
-            // we can not use $session->isStarted() here as this state is not longer available at this time
-            // TODO session cookie should only be set when persisted by symfony: see E at https://github.com/php-runtime/runtime/issues/46
-            if ($sessionId && $sessionId !== $requestSessionId) {
-                $expires = 0;
-                $lifetime = $this->sessionOptions['cookie_lifetime'] ?? null;
-                if ($lifetime) {
-                    $expires = time() + $lifetime;
-                }
-
-                $response->headers->setCookie(
-                    Cookie::create(
-                        $sessionName,
-                        $sessionId,
-                        $expires,
-                        $this->sessionOptions['cookie_path'] ?? '/',
-                        $this->sessionOptions['cookie_domain'] ?? null,
-                        $this->sessionOptions['cookie_secure'] ?? null,
-                        $this->sessionOptions['cookie_httponly'] ?? true,
-                        false,
-                        $this->sessionOptions['cookie_samesite'] ?? Cookie::SAMESITE_LAX
-                    )
-                );
-            }
-        }
-
-        return $response;
-    }
 }

src/Runtime.php

@@ -2,8 +2,7 @@
 
 namespace Runtime\RoadRunnerSymfonyNyholm;
 
-use Symfony\Component\HttpKernel\HttpCache\HttpCache;
-use Symfony\Component\HttpKernel\KernelInterface;
+use Symfony\Component\HttpKernel\HttpKernelInterface;
 use Symfony\Component\Runtime\RunnerInterface;
 use Symfony\Component\Runtime\SymfonyRuntime;
 
@@ -16,9 +15,7 @@ class Runtime extends SymfonyRuntime
 {
     public function getRunner(?object $application): RunnerInterface
     {
-        if ($application instanceof KernelInterface
-            || ($application instanceof HttpCache && $application->getKernel() instanceof KernelInterface)
-        ) {
+        if ($application instanceof HttpKernelInterface) {
             return new Runner($application);
         }
 

tests/RuntimeTest.php

@@ -3,11 +3,11 @@
 namespace Runtime\RoadRunnerSymfonyNyholm;
 
 use PHPUnit\Framework\TestCase;
-use Symfony\Component\DependencyInjection\ContainerInterface;
+use Symfony\Component\Console\Application;
 use Symfony\Component\HttpKernel\HttpCache\HttpCache;
 use Symfony\Component\HttpKernel\HttpKernelInterface;
 use Symfony\Component\HttpKernel\KernelInterface;
-use Symfony\Component\Runtime\Runner\Symfony\HttpKernelRunner;
+use Symfony\Component\Runtime\Runner\Symfony\ConsoleApplicationRunner;
 
 /**
  * @author Alexander Schranz <[email protected]>
@@ -20,25 +20,6 @@ public function testGetRuntimeHttpKernel(): void
             ->disableOriginalConstructor()
             ->getMock();
 
-        $kernel->expects($this->once())
-            ->method('boot');
-
-        $container = $this->getMockBuilder(ContainerInterface::class)
-            ->disableOriginalConstructor()
-            ->getMock();
-
-        $container->expects($this->once())
-            ->method('getParameter')
-            ->with('session.storage.options')
-            ->will($this->returnValue([]));
-
-        $kernel->expects($this->once())
-            ->method('getContainer')
-            ->will($this->returnValue($container));
-
-        $kernel->expects($this->once())
-            ->method('shutdown');
-
         $runtime = new Runtime();
         $runner = $runtime->getRunner($kernel);
 
@@ -51,48 +32,33 @@ public function testGetRuntimeHttpCache(): void
             ->disableOriginalConstructor()
             ->getMock();
 
-        $kernel = $this->getMockBuilder(KernelInterface::class)
-            ->disableOriginalConstructor()
-            ->getMock();
-
-        $httpCache->expects($this->atLeastOnce())
-            ->method('getKernel')
-            ->will($this->returnValue($kernel));
+        $runtime = new Runtime();
+        $runner = $runtime->getRunner($httpCache);
 
-        $kernel->expects($this->once())
-            ->method('boot');
+        $this->assertInstanceOf(Runner::class, $runner);
+    }
 
-        $container = $this->getMockBuilder(ContainerInterface::class)
+    public function testGetRuntimeHttpKernelInterface(): void
+    {
+        $kernel = $this->getMockBuilder(HttpKernelInterface::class)
             ->disableOriginalConstructor()
             ->getMock();
 
-        $container->expects($this->once())
-            ->method('getParameter')
-            ->with('session.storage.options')
-            ->will($this->returnValue([]));
-
-        $kernel->expects($this->once())
-            ->method('getContainer')
-            ->will($this->returnValue($container));
-
-        $kernel->expects($this->once())
-            ->method('shutdown');
-
         $runtime = new Runtime();
-        $runner = $runtime->getRunner($httpCache);
+        $runner = $runtime->getRunner($kernel);
 
         $this->assertInstanceOf(Runner::class, $runner);
     }
 
-    public function testGetRuntimeHttpKernelInterface(): void
+    public function testGetRuntimeApplication(): void
     {
-        $kernel = $this->getMockBuilder(HttpKernelInterface::class)
+        $kernel = $this->getMockBuilder(Application::class)
             ->disableOriginalConstructor()
             ->getMock();
 
         $runtime = new Runtime();
         $runner = $runtime->getRunner($kernel);
 
-        $this->assertInstanceOf(HttpKernelRunner::class, $runner);
+        $this->assertInstanceOf(ConsoleApplicationRunner::class, $runner);
     }
 }