PageRenderTime 24ms CodeModel.GetById 25ms RepoModel.GetById 0ms app.codeStats 0ms

/apps/revtk/lib/rtkUser.php

https://github.com/kc5nra/RevTK
PHP | 267 lines | 119 code | 30 blank | 118 comment | 10 complexity | 0b63bd5e781402c0e6b2a7866756b0ca MD5 | raw file
Possible License(s): AGPL-3.0 
    

  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * This file is part of the Reviewing the Kanji package.
    5. 

  5.  * Copyright (c) 2005-2010  Fabrice Denis
    6. 

  6.  *
    7. 

  7.  * For the full copyright and license information, please view the LICENSE
    8. 

  8.  * file that was distributed with this source code.
    9. 

  9.  */
    10. 

  10. 

  11. /**
    12. 

  12.  * rtkUser adds utility methods to the Core user class.
    13. 

  13.  * 
    14. 

  14.  * Methods
    15. 

  15.  *   getUserId()
    16. 

  16.  *   getUserName()
    17. 

  17.  *   getUserTimeZone()
    18. 

  18.  *   getUserDetails()     UsersPeer record
    19. 

  19.  *   getLocalPrefs()      LocalPrefs instance
    20. 

  20.  *   
    21. 

  21.  *   redirectToLogin($options = array())      Redirect unauthenticated user to login page
    22. 

  22.  *   sqlLocalTime($localTimezone = null)      Returns SQL statement for user's local date+time
    23. 

  23.  * 
    24. 

  24.  * @author     Fabrice Denis
    25. 

  25.  */
    26. 

  26. 

  27. class rtkUser extends coreUserBasicSecurity
    28. 

  28. {
    29. 

  29.   protected
    30. 

  30.     $localPrefs = null;
    31. 

  31.   
    32. 

  32.   /**
    33. 

  33.    * The "Remember me" cookie name and lifetime in seconds.
    34. 

  34.    */
    35. 

  35.   const COOKIE_NAME   = 'RevTK';
    36. 

  36.   const COOKIE_EXPIRE = 1296000; // 60*60*24*15
    37. 

  37. 

  38.   /**
    39. 

  39.    * 
    40. 

  40.    */
    41. 

  41.   public function initialize(coreSessionStorage $storage, $options = array())
    42. 

  42.   {
    43. 

  43.     parent::initialize($storage, $options);
    44. 

  44. 

  45.     // sign in unauthenticated user if a "remember me" cookie exists
    46. 

  46.     if (!$this->isAuthenticated())
    47. 

  47.     {
    48. 

  48.       if ($cookieData = coreContext::getInstance()->getRequest()->getCookie(self::COOKIE_NAME))
    49. 

  49.       {
    50. 

  50.         $value = unserialize(base64_decode($cookieData));
    51. 

  51.         $username = $value[0];
    52. 

  52.         $saltyPassword = $value[1];
    53. 

  53.         
    54. 

  54.         // sign in user if user is valid and password from cookie matches the one in database
    55. 

  55.         $user = UsersPeer::getUser($username);
    56. 

  56.         if ($user && ($saltyPassword == $user['password']) )
    57. 

  57.         {
    58. 

  58.           $this->signIn($user);
    59. 

  59.         }
    60. 

  60.       }
    61. 

  61.     }
    62. 

  62.     
    63. 

  63.     // session duration preferences
    64. 

  64.     $this->localPrefs = new LocalPrefs($this);
    65. 

  65.   }
    66. 

  66. 

  67.   /**
    68. 

  68.    * Getter method for user session attribute.
    69. 

  69.    * 
    70. 

  70.    */
    71. 

  71.   public function getUserName()
    72. 

  72.   {
    73. 

  73.     return $this->getAttribute('username', '');
    74. 

  74.   }
    75. 

  75. 

  76.   /**
    77. 

  77.    * Getter method for user session attribute.
    78. 

  78.    * 
    79. 

  79.    */
    80. 

  80.   public function getUserId()
    81. 

  81.   {
    82. 

  82.     return $this->getAttribute('userid', null);
    83. 

  83.   }
    84. 

  84. 

  85.   /**
    86. 

  86.    * Getter method for user session attribute.
    87. 

  87.    * 
    88. 

  88.    */
    89. 

  89.   public function getUserTimeZone()
    90. 

  90.   {
    91. 

  91.     return $this->getAttribute('usertimezone', null);
    92. 

  92.   }
    93. 

  93. 

  94.   /**
    95. 

  95.    * Return UsersPeer row data for authenticated user.
    96. 

  96.    * 
    97. 

  97.    */
    98. 

  98.   public function getUserDetails()
    99. 

  99.   {
    100. 

  100.     return UsersPeer::getUserById($this->getUserId());
    101. 

  101.   }
    102. 

  102. 

  103.   /**
    104. 

  104.    * Return the LocalPrefs instance.
    105. 

  105.    * 
    106. 

  106.    * @return 
    107. 

  107.    */
    108. 

  108.   public function getLocalPrefs()
    109. 

  109.   {
    110. 

  110.     return $this->localPrefs;
    111. 

  111.   }
    112. 

  112. 

  113.   /**
    114. 

  114.    * Sign In the user.
    115. 

  115.    * 
    116. 

  116.    * Also sign in user on the PunBB forum, by way of the forum cookie.
    117. 

  117.    * The "remember me" option applies similarly to the forum cookie.
    118. 

  118.    * 
    119. 

  119.    * @param  array  $user  UsersPeer row
    120. 

  120.    * @return 
    121. 

  121.    */  
    122. 

  122.   public function signIn($user)
    123. 

  123.   {
    124. 

  124.     $this->setAttribute('userid', $user['userid']);
    125. 

  125.     $this->setAttribute('username', $user['username']);
    126. 

  126.     $this->setAttribute('usertimezone', $user['timezone']);
    127. 

  127. 

  128.     $this->clearCredentials();
    129. 

  129.     $this->addCredential('member');
    130. 

  130.     switch($user['userlevel'])
    131. 

  131.     {
    132. 

  132.       case UsersPeer::USERLEVEL_ADMIN:
    133. 

  133.         $this->addCredential('admin');
    134. 

  134.         break;
    135. 

  135.       default:
    136. 

  136.         break;
    137. 

  137.     }
    138. 

  138. 

  139.     // authenticate the user
    140. 

  140.     $this->setAuthenticated(true);
    141. 

  141. 

  142.     // update user's last login timestamp
    143. 

  143.     UsersPeer::setLastlogin($user['userid']);
    144. 

  144.   }
    145. 

  145.   
    146. 

  146.   /**
    147. 

  147.    * Sign Out the user, sets user as "Guest"
    148. 

  148.    * 
    149. 

  149.    * @return 
    150. 

  150.    */
    151. 

  151.   public function signOut()
    152. 

  152.   {
    153. 

  153.     $this->getAttributeHolder()->clear();
    154. 

  154.     $this->clearCredentials();
    155. 

  155.     $this->setAuthenticated(false);
    156. 

  156.   }
    157. 

  157.   
    158. 

  158.   /**
    159. 

  159.    * Sets the persistent session cookie.
    160. 

  160.    * 
    161. 

  161.    */
    162. 

  162.   public function setRememberMeCookie($username, $saltyPassword)
    163. 

  163.   {
    164. 

  164.     $value = base64_encode( serialize(array($username, $saltyPassword)) );
    165. 

  165.     coreContext::getInstance()->getResponse()->setCookie(self::COOKIE_NAME, $value, time()+self::COOKIE_EXPIRE, '/');
    166. 

  166.   }
    167. 

  167. 

  168.   /**
    169. 

  169.    * Clears the persistent session cookie.
    170. 

  170.    * 
    171. 

  171.    * @return 
    172. 

  172.    */
    173. 

  173.   public function clearRememberMeCookie()
    174. 

  174.   {
    175. 

  175.     coreContext::getInstance()->getResponse()->setCookie(self::COOKIE_NAME, '', time() - 3600, '/');
    176. 

  176.   }
    177. 

  177.   
    178. 

  178.   /**
    179. 

  179.    * Update the user password in the main site and forum databases.
    180. 

  180.    * 
    181. 

  181.    * @param object $user
    182. 

  182.    * @param object $raw_password
    183. 

  183.    */
    184. 

  184.   public function changePassword($username, $raw_password)
    185. 

  185.   {
    186. 

  186.     // hash password for database
    187. 

  187.     $hashedPassword = $this->getSaltyHashedPassword($raw_password);
    188. 

  188. 

  189.     // set new user password
    190. 

  190.     $user_id = UsersPeer::getUserId($username);
    191. 

  191.     UsersPeer::setPassword($user_id, $hashedPassword);
    192. 

  192.     
    193. 

  193.     // set new password on forum account (not in staging)
    194. 

  194.     if (coreContext::getInstance()->getConfiguration()->getEnvironment() !== 'staging')
    195. 

  195.     {
    196. 

  196.       // only with linked PunBB forum
    197. 

  197.       if (coreConfig::get('app_path_to_punbb') !== null)
    198. 

  198.       {
    199. 

  199.         PunBBUsersPeer::setPassword($username, $raw_password);
    200. 

  200.       }
    201. 

  201.     }
    202. 

  202.   }
    203. 

  203. 

  204.   /**
    205. 

  205.    * Returns hashed password.
    206. 

  206.    * 
    207. 

  207.    * We use sha1() like PunBB to store passwords.
    208. 

  208.    * 
    209. 

  209.    * Ideally could store a random salt with each user, eg:
    210. 

  210.    * 
    211. 

  211.    *   salt VARCHAR(32)      =>  md5(rand(100000, 999999).$this->getNickname().$this->getEmail());
    212. 

  212.    *   password VARCHAR(40)  =>  sha1($salt.$raw_password)
    213. 

  213.    * 
    214. 

  214.    * @param string  $password  Non-encrypted password.
    215. 

  215.    */
    216. 

  216.   public function getSaltyHashedPassword($raw_password)
    217. 

  217.   {
    218. 

  218.     return sha1($raw_password);
    219. 

  219.   }
    220. 

  220.   
    221. 

  221.   /**
    222. 

  222.    * Redirect unauthenticated user to login action.
    223. 

  223.    * 
    224. 

  224.    * Options:
    225. 

  225.    * 
    226. 

  226.    *   username => Fill in the user name of the login form
    227. 

  227.    *   referer  => Page to return the user to after signing in
    228. 

  228.    * 
    229. 

  229.    * @param array $params  Options to pass to the login page
    230. 

  230.    */
    231. 

  231.   public function redirectToLogin($options = array())
    232. 

  232.   {
    233. 

  233.     if (isset($options['referer']))
    234. 

  234.     {
    235. 

  235.       $this->setAttribute('login_referer', $options['referer']);
    236. 

  236.     }
    237. 

  237.     
    238. 

  238.     if (isset($options['username']))
    239. 

  239.     {
    240. 

  240.       $this->setAttribute('login_username', $options['username']);
    241. 

  241.     }
    242. 

  242. 

  243.     $login_url = coreConfig::get('login_module') . '/' . coreConfig::get('login_action');
    244. 

  244.     coreContext::getInstance()->getActionInstance()->redirect($login_url);
    245. 

  245.   }
    246. 

  246.   
    247. 

  247.   /**
    248. 

  248.    * Returns a SQL statement which returns a date+time adjusted to the
    249. 

  249.    * timezone of the user. The date returned by
    250. 

  250.    * this statement will switch at midnight time of the user's timezone
    251. 

  251.    * (assuming the user set the timezone properly).
    252. 

  252.    * (the user's timezone range is -12...+14)
    253. 

  253.    * 
    254. 

  254.    * @return String   MySQL ADDDATE() expression that evaluates to the user's localized time
    255. 

  255.    */
    256. 

  256.   public function sqlLocalTime()
    257. 

  257.   {
    258. 

  258.     $localTimezone = $this->getUserTimeZone();
    259. 

  259.     $timediff = $localTimezone - coreConfig::get('app_server_timezone');
    260. 

  260.     $hours = floor($timediff);
    261. 

  261.     $minutes = ($hours != $timediff) ? '30' : '0';  // some timezones have half-hour precision, convert to minutes
    262. 

  262. 

  263.     $sqlDate = 'ADDDATE(NOW(), INTERVAL \''.$hours.':'.$minutes.'\' HOUR_MINUTE)';
    264. 

  264.     return $sqlDate;
    265. 

  265.   }
    266. 

  266. 

  267. }
    268. 

  268.