PageRenderTime 49ms CodeModel.GetById 13ms RepoModel.GetById 0ms app.codeStats 0ms

/administrator/components/com_login/models/login.php

https://bitbucket.org/izubizarreta/https-bitbucket.org-bityvip
PHP | 157 lines | 84 code | 23 blank | 50 comment | 15 complexity | 090f8cf122c212fc6f122446ef62808d MD5 | raw file
Possible License(s): LGPL-3.0, LGPL-2.0, JSON, GPL-2.0, BSD-3-Clause, LGPL-2.1, MIT 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * @copyright	Copyright (C) 2005 - 2012 Open Source Matters, Inc. All rights reserved.
    4. 

  4.  * @license		GNU General Public License, see LICENSE.php
    5. 

  5.  */
    6. 

  6. 

  7. defined('_JEXEC') or die;
    8. 

  8. 

  9. /**
    10. 

  10.  * Login Model
    11. 

  11.  *
    12. 

  12.  * @package		Joomla.Administrator
    13. 

  13.  * @subpackage	com_login
    14. 

  14.  * @since		1.5
    15. 

  15.  */
    16. 

  16. class LoginModelLogin extends JModelLegacy
    17. 

  17. {
    18. 

  18. 	/**
    19. 

  19. 	 * Method to auto-populate the model state.
    20. 

  20. 	 *
    21. 

  21. 	 * Note. Calling getState in this method will result in recursion.
    22. 

  22. 	 *
    23. 

  23. 	 * @since	1.6
    24. 

  24. 	 */
    25. 

  25. 	protected function populateState()
    26. 

  26. 	{
    27. 

  27. 		$credentials = array(
    28. 

  28. 			'username' => JRequest::getVar('username', '', 'method', 'username'),
    29. 

  29. 			'password' => JRequest::getVar('passwd', '', 'post', 'string', JREQUEST_ALLOWRAW)
    30. 

  30. 		);
    31. 

  31. 		$this->setState('credentials', $credentials);
    32. 

  32. 

  33. 		// check for return URL from the request first
    34. 

  34. 		if ($return = JRequest::getVar('return', '', 'method', 'base64')) {
    35. 

  35. 			$return = base64_decode($return);
    36. 

  36. 			if (!JURI::isInternal($return)) {
    37. 

  37. 				$return = '';
    38. 

  38. 			}
    39. 

  39. 		}
    40. 

  40. 

  41. 		// Set the return URL if empty.
    42. 

  42. 		if (empty($return)) {
    43. 

  43. 			$return = 'index.php';
    44. 

  44. 		}
    45. 

  45. 

  46. 		$this->setState('return', $return);
    47. 

  47. 	}
    48. 

  48. 

  49. 	/**
    50. 

  50. 	 * Get the administrator login module by name (real, eg 'login' or folder, eg 'mod_login')
    51. 

  51. 	 *
    52. 

  52. 	 * @param   string  $name   The name of the module
    53. 

  53. 	 * @param   string  $title  The title of the module, optional
    54. 

  54. 	 *
    55. 

  55. 	 * @return  object  The Module object
    56. 

  56. 	 *
    57. 

  57. 	 * @since   11.1
    58. 

  58. 	 */
    59. 

  59. 	public static function getLoginModule($name = 'mod_login', $title = null)
    60. 

  60. 	{
    61. 

  61. 		$result		= null;
    62. 

  62. 		$modules	= LoginModelLogin::_load($name);
    63. 

  63. 		$total		= count($modules);
    64. 

  64. 

  65. 		for ($i = 0; $i < $total; $i++)
    66. 

  66. 		{
    67. 

  67. 			// Match the title if we're looking for a specific instance of the module
    68. 

  68. 			if (!$title || $modules[$i]->title == $title) {
    69. 

  69. 				$result = $modules[$i];
    70. 

  70. 				break;	// Found it
    71. 

  71. 			}
    72. 

  72. 		}
    73. 

  73. 

  74. 		// If we didn't find it, and the name is mod_something, create a dummy object
    75. 

  75. 		if (is_null($result) && substr($name, 0, 4) == 'mod_') {
    76. 

  76. 			$result				= new stdClass;
    77. 

  77. 			$result->id			= 0;
    78. 

  78. 			$result->title		= '';
    79. 

  79. 			$result->module		= $name;
    80. 

  80. 			$result->position	= '';
    81. 

  81. 			$result->content	= '';
    82. 

  82. 			$result->showtitle	= 0;
    83. 

  83. 			$result->control	= '';
    84. 

  84. 			$result->params		= '';
    85. 

  85. 			$result->user		= 0;
    86. 

  86. 		}
    87. 

  87. 

  88. 		return $result;
    89. 

  89. 	}
    90. 

  90. 	/**
    91. 

  91. 	 * Load login modules.
    92. 

  92. 	 *
    93. 

  93. 	 * Note that we load regardless of state or access level since access
    94. 

  94. 	 * for public is the only thing that makes sense since users are not logged in
    95. 

  95. 	 * and the module lets them log in.
    96. 

  96. 	 * This is put in as a failsafe to avoid super user lock out caused by an unpublished
    97. 

  97. 	 * login module or by a module set to have a viewing access level that is not Public.
    98. 

  98. 	 *
    99. 

  99. 	 * @param   string  $name   The name of the module
    100. 

  100. 	 *
    101. 

  101. 	 * @return  array
    102. 

  102. 	 *
    103. 

  103. 	 * @since   11.1
    104. 

  104. 	 */
    105. 

  105. 	protected static function _load($module)
    106. 

  106. 	{
    107. 

  107. 		static $clean;
    108. 

  108. 

  109. 		if (isset($clean)) {
    110. 

  110. 			return $clean;
    111. 

  111. 		}
    112. 

  112. 

  113. 		$app		= JFactory::getApplication();
    114. 

  114. 		$lang 		= JFactory::getLanguage()->getTag();
    115. 

  115. 		$clientId 	= (int) $app->getClientId();
    116. 

  116. 

  117. 		$cache 		= JFactory::getCache ('com_modules', '');
    118. 

  118. 		$cacheid 	= md5(serialize(array( $clientId, $lang)));
    119. 

  119. 		$loginmodule = array();
    120. 

  120. 

  121. 		if (!($clean = $cache->get($cacheid))) {
    122. 

  122. 			$db	= JFactory::getDbo();
    123. 

  123. 

  124. 			$query = $db->getQuery(true);
    125. 

  125. 			$query->select('m.id, m.title, m.module, m.position, m.showtitle, m.params');
    126. 

  126. 			$query->from('#__modules AS m');
    127. 

  127. 			$query->where('m.module =' . $db->Quote($module) .' AND m.client_id = 1');
    128. 

  128. 

  129. 			$query->join('LEFT', '#__extensions AS e ON e.element = m.module AND e.client_id = m.client_id');
    130. 

  130. 			$query->where('e.enabled = 1');
    131. 

  131. 

  132. 			// Filter by language
    133. 

  133. 			if ($app->isSite() && $app->getLanguageFilter()) {
    134. 

  134. 				$query->where('m.language IN (' . $db->Quote($lang) . ',' . $db->Quote('*') . ')');
    135. 

  135. 			}
    136. 

  136. 

  137. 			$query->order('m.position, m.ordering');
    138. 

  138. 

  139. 			// Set the query
    140. 

  140. 			$db->setQuery($query);
    141. 

  141. 			$modules = $db->loadObjectList();
    142. 

  142. 

  143. 			if ($db->getErrorNum()){
    144. 

  144. 				JError::raiseWarning(500, JText::sprintf('JLIB_APPLICATION_ERROR_MODULE_LOAD', $db->getErrorMsg()));
    145. 

  145. 				return $loginmodule;
    146. 

  146. 			}
    147. 

  147. 

  148. 

  149. 			// Return to simple indexing that matches the query order.
    150. 

  150. 			$loginmodule = $modules;
    151. 

  151. 

  152. 			$cache->store($loginmodule, $cacheid);
    153. 

  153. 		}
    154. 

  154. 

  155. 		return $loginmodule;
    156. 

  156. 	}
    157. 

  157. }
    158. 

  158.