PageRenderTime 52ms CodeModel.GetById 25ms RepoModel.GetById 0ms app.codeStats 0ms

/fuel/category_tool/fuel/packages/auth/classes/auth/login/driver.php

https://github.com/connvoi/dev
PHP | 253 lines | 109 code | 36 blank | 108 comment | 8 complexity | ab286bfdd87b76b5ac8e128c124d8aa7 MD5 | raw file
Possible License(s): MIT, BSD-3-Clause 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Fuel is a fast, lightweight, community driven PHP5 framework.
    4. 

  4.  *
    5. 

  5.  * @package    Fuel
    6. 

  6.  * @version    1.0
    7. 

  7.  * @author     Fuel Development Team
    8. 

  8.  * @license    MIT License
    9. 

  9.  * @copyright  2010 - 2011 Fuel Development Team
    10. 

  10.  * @link       http://fuelphp.com
    11. 

  11.  */
    12. 

  12. 

  13. namespace Auth;
    14. 

  14. 

  15. abstract class Auth_Login_Driver extends \Auth_Driver
    16. 

  16. {
    17. 

  17. 

  18. 	/**
    19. 

  19. 	 * @var  Auth_Driver
    20. 

  20. 	 */
    21. 

  21. 	protected static $_instance = null;
    22. 

  22. 

  23. 	/**
    24. 

  24. 	 * @var  array  contains references if multiple were loaded
    25. 

  25. 	 */
    26. 

  26. 	protected static $_instances = array();
    27. 

  27. 

  28. 	public static function forge(array $config = array())
    29. 

  29. 	{
    30. 

  30. 		// default driver id to driver name when not given
    31. 

  31. 		! array_key_exists('id', $config) && $config['id'] = $config['driver'];
    32. 

  32. 

  33. 		$class = \Inflector::get_namespace($config['driver']).'Auth_Login_'.ucfirst(\Inflector::denamespace($config['driver']));
    34. 

  34. 		$driver = new $class($config);
    35. 

  35. 		static::$_instances[$driver->get_id()] = $driver;
    36. 

  36. 		is_null(static::$_instance) and static::$_instance = $driver;
    37. 

  37. 

  38. 		foreach ($driver->get_config('drivers', array()) as $type => $drivers)
    39. 

  39. 		{
    40. 

  40. 			foreach ($drivers as $d => $custom)
    41. 

  41. 			{
    42. 

  42. 				$custom = is_int($d)
    43. 

  43. 					? array('driver' => $custom)
    44. 

  44. 					: array_merge($custom, array('driver' => $d));
    45. 

  45. 				$class = 'Auth_'.ucfirst($type).'_Driver';
    46. 

  46. 				$class::forge($custom);
    47. 

  47. 			}
    48. 

  48. 		}
    49. 

  49. 

  50. 		return $driver;
    51. 

  51. 	}
    52. 

  52. 

  53. 	// ------------------------------------------------------------------------
    54. 

  54. 

  55. 	/**
    56. 

  56. 	 * @var  array  config values
    57. 

  57. 	 */
    58. 

  58. 	protected $config = array();
    59. 

  59. 

  60. 	/**
    61. 

  61. 	 * @var  object  PHPSecLib hash object
    62. 

  62. 	 */
    63. 

  63. 	private $hasher = null;
    64. 

  64. 

  65. 	/**
    66. 

  66. 	 * Check for login
    67. 

  67. 	 * (final method to (un)register verification, work is done by _check())
    68. 

  68. 	 *
    69. 

  69. 	 * @return  bool
    70. 

  70. 	 */
    71. 

  71. 	final public function check()
    72. 

  72. 	{
    73. 

  73. 		if ( ! $this->perform_check())
    74. 

  74. 		{
    75. 

  75. 			\Auth::_unregister_verified($this);
    76. 

  76. 			return false;
    77. 

  77. 		}
    78. 

  78. 

  79. 		\Auth::_register_verified($this);
    80. 

  80. 		return true;
    81. 

  81. 	}
    82. 

  82. 

  83. 	/**
    84. 

  84. 	 * Return user info in an array, always includes email & screen_name
    85. 

  85. 	 * Additional fields can be requested in the first param or set in config,
    86. 

  86. 	 * all additional fields must have their own method "get_" + fieldname
    87. 

  87. 	 *
    88. 

  88. 	 * @param   array  additional fields
    89. 

  89. 	 * @return  array
    90. 

  90. 	 */
    91. 

  91. 	final public function get_user_array(Array $additional_fields = array())
    92. 

  92. 	{
    93. 

  93. 		$user = array(
    94. 

  94. 			'email'        => $this->get_email(),
    95. 

  95. 			'screen_name'  => $this->get_screen_name(),
    96. 

  96. 			'groups'       => $this->get_groups(),
    97. 

  97. 		);
    98. 

  98. 

  99. 		$additional_fields = array_merge($this->config['additional_fields'], $additional_fields);
    100. 

  100. 		foreach($additional_fields as $af)
    101. 

  101. 		{
    102. 

  102. 			// only works if it actually can be fetched through a get_ method
    103. 

  103. 			if (is_callable(array($this, $method = 'get_'.$af)))
    104. 

  104. 			{
    105. 

  105. 				$user[$af] = $this->$method();
    106. 

  106. 			}
    107. 

  107. 		}
    108. 

  108. 		return $user;
    109. 

  109. 	}
    110. 

  110. 

  111. 	/**
    112. 

  112. 	 * Verify Group membership
    113. 

  113. 	 *
    114. 

  114. 	 * @param   mixed   group identifier to check for membership
    115. 

  115. 	 * @param   string  group driver id or null to check all
    116. 

  116. 	 * @param   array   user identifier to check in form array(driver_id, user_id)
    117. 

  117. 	 * @return  bool
    118. 

  118. 	 */
    119. 

  119. 	public function member($group, $driver = null, $user = null)
    120. 

  120. 	{
    121. 

  121. 		$user = $user ?: $this->get_user_id();
    122. 

  122. 

  123. 		if ($driver === null)
    124. 

  124. 		{
    125. 

  125. 			foreach (\Auth::group(true) as $g)
    126. 

  126. 			{
    127. 

  127. 				if ($g->member($group, $user))
    128. 

  128. 				{
    129. 

  129. 					return true;
    130. 

  130. 				}
    131. 

  131. 			}
    132. 

  132. 

  133. 			return false;
    134. 

  134. 		}
    135. 

  135. 

  136. 		return \Auth::group($driver)->member($group, $user);
    137. 

  137. 	}
    138. 

  138. 

  139. 	/**
    140. 

  140. 	 * Verify Acl access
    141. 

  141. 	 *
    142. 

  142. 	 * @param   mixed   condition to validate
    143. 

  143. 	 * @param   string  acl driver id or null to check all
    144. 

  144. 	 * @param   array   user identifier to check in form array(driver_id, user_id)
    145. 

  145. 	 * @return  bool
    146. 

  146. 	 */
    147. 

  147. 	public function has_access($condition, $driver = null, $entity = null)
    148. 

  148. 	{
    149. 

  149. 		$entity = $entity ?: $this->get_user_id();
    150. 

  150. 

  151. 		if ($driver === null)
    152. 

  152. 		{
    153. 

  153. 			foreach (\Auth::acl(true) as $acl)
    154. 

  154. 			{
    155. 

  155. 				if ($acl->has_access($condition, $entity))
    156. 

  156. 				{
    157. 

  157. 					return true;
    158. 

  158. 				}
    159. 

  159. 			}
    160. 

  160. 

  161. 			return false;
    162. 

  162. 		}
    163. 

  163. 

  164. 		return \Auth::acl($driver)->has_access($condition, $entity);
    165. 

  165. 	}
    166. 

  166. 

  167. 	/**
    168. 

  168. 	 * Default password hash method
    169. 

  169. 	 *
    170. 

  170. 	 * @param   string
    171. 

  171. 	 * @return  string
    172. 

  172. 	 */
    173. 

  173. 	public function hash_password($password)
    174. 

  174. 	{
    175. 

  175. 		return base64_encode($this->hasher()->pbkdf2($password, \Config::get('auth.salt'), 10000, 32));
    176. 

  176. 	}
    177. 

  177. 

  178. 	/**
    179. 

  179. 	 * Returns the hash object and creates it if necessary
    180. 

  180. 	 *
    181. 

  181. 	 * @return  PHPSecLib\Crypt_Hash
    182. 

  182. 	 */
    183. 

  183. 	public function hasher()
    184. 

  184. 	{
    185. 

  185. 		if ( ! class_exists('PHPSecLib\\Crypt_Hash', false))
    186. 

  186. 		{
    187. 

  187. 			import('phpseclib/Crypt/Hash', 'vendor');
    188. 

  188. 		}
    189. 

  189. 		is_null($this->hasher) and $this->hasher = new \PHPSecLib\Crypt_Hash();
    190. 

  190. 

  191. 		return $this->hasher;
    192. 

  192. 	}
    193. 

  193. 

  194. 	// ------------------------------------------------------------------------
    195. 

  195. 

  196. 	/**
    197. 

  197. 	 * Perform the actual login check
    198. 

  198. 	 *
    199. 

  199. 	 * @return  bool
    200. 

  200. 	 */
    201. 

  201. 	abstract protected function perform_check();
    202. 

  202. 

  203. 	/**
    204. 

  204. 	 * Perform the actual login check
    205. 

  205. 	 *
    206. 

  206. 	 * @return  bool
    207. 

  207. 	 */
    208. 

  208. 	abstract public function validate_user();
    209. 

  209. 

  210. 	/**
    211. 

  211. 	 * Login method
    212. 

  212. 	 *
    213. 

  213. 	 * @return  bool  whether login succeeded
    214. 

  214. 	 */
    215. 

  215. 	abstract public function login();
    216. 

  216. 

  217. 	/**
    218. 

  218. 	 * Logout method
    219. 

  219. 	 */
    220. 

  220. 	abstract public function logout();
    221. 

  221. 

  222. 	/**
    223. 

  223. 	 * Get User Identifier of the current logged in user
    224. 

  224. 	 * in the form: array(driver_id, user_id)
    225. 

  225. 	 *
    226. 

  226. 	 * @return  array
    227. 

  227. 	 */
    228. 

  228. 	abstract public function get_user_id();
    229. 

  229. 

  230. 	/**
    231. 

  231. 	 * Get User Groups of the current logged in user
    232. 

  232. 	 * in the form: array(array(driver_id, group_id), array(driver_id, group_id), etc)
    233. 

  233. 	 *
    234. 

  234. 	 * @return  array
    235. 

  235. 	 */
    236. 

  236. 	abstract public function get_groups();
    237. 

  237. 

  238. 	/**
    239. 

  239. 	 * Get emailaddress of the current logged in user
    240. 

  240. 	 *
    241. 

  241. 	 * @return  string
    242. 

  242. 	 */
    243. 

  243. 	abstract public function get_email();
    244. 

  244. 

  245. 	/**
    246. 

  246. 	 * Get screen name of the current logged in user
    247. 

  247. 	 *
    248. 

  248. 	 * @return  string
    249. 

  249. 	 */
    250. 

  250. 	abstract public function get_screen_name();
    251. 

  251. }
    252. 

  252. 

  253. /* end of file driver.php */
    254. 

  254.