PageRenderTime 41ms CodeModel.GetById 13ms RepoModel.GetById 0ms app.codeStats 0ms

/user/plugins/login/cli/NewUserCommand.php

https://gitlab.com/asun89/socianovation-web
PHP | 311 lines | 259 code | 22 blank | 30 comment | 16 complexity | a586630fd6b9cfc133a28701cf90333d MD5 | raw file
    

  1. <?php
    2. 

  2. namespace Grav\Plugin\Console;
    3. 

  3. 

  4. use Grav\Console\ConsoleCommand;
    5. 

  5. use Grav\Common\File\CompiledYamlFile;
    6. 

  6. use Grav\Common\User\User;
    7. 

  7. use Symfony\Component\Console\Input\InputOption;
    8. 

  8. use Symfony\Component\Console\Helper\Helper;
    9. 

  9. use Symfony\Component\Console\Question\ChoiceQuestion;
    10. 

  10. use Symfony\Component\Console\Question\Question;
    11. 

  11. 

  12. /**
    13. 

  13.  * Class CleanCommand
    14. 

  14.  *
    15. 

  15.  * @package Grav\Console\Cli
    16. 

  16.  */
    17. 

  17. class NewUserCommand extends ConsoleCommand
    18. 

  18. {
    19. 

  19. 

  20.     /**
    21. 

  21.      * @var array
    22. 

  22.      */
    23. 

  23.     protected $options = [];
    24. 

  24. 

  25.     /**
    26. 

  26.      * Configure the command
    27. 

  27.      */
    28. 

  28.     protected function configure()
    29. 

  29.     {
    30. 

  30.         $this
    31. 

  31.             ->setName('new-user')
    32. 

  32.             ->setAliases(['add-user', 'newuser'])
    33. 

  33.             ->addOption(
    34. 

  34.                 'user',
    35. 

  35.                 'u',
    36. 

  36.                 InputOption::VALUE_REQUIRED,
    37. 

  37.                 'The username'
    38. 

  38.             )
    39. 

  39.             ->addOption(
    40. 

  40.                 'password',
    41. 

  41.                 'p',
    42. 

  42.                 InputOption::VALUE_REQUIRED,
    43. 

  43.                 "The password. Note that this option is not recommended because the password will be visible by users listing the processes. You should also make sure the password respects Grav's password policy."
    44. 

  44.             )
    45. 

  45.             ->addOption(
    46. 

  46.                 'email',
    47. 

  47.                 'e',
    48. 

  48.                 InputOption::VALUE_REQUIRED,
    49. 

  49.                 'The user email'
    50. 

  50.             )
    51. 

  51.             ->addOption(
    52. 

  52.                 'permissions',
    53. 

  53.                 'P',
    54. 

  54.                 InputOption::VALUE_REQUIRED,
    55. 

  55.                 'The user permissions. It can be either `a` for Admin access only, `s` for Site access only and `b` for both Admin and Site access.'
    56. 

  56.             )
    57. 

  57.             ->addOption(
    58. 

  58.                 'fullname',
    59. 

  59.                 'N',
    60. 

  60.                 InputOption::VALUE_REQUIRED,
    61. 

  61.                 'The user full name.'
    62. 

  62.             )
    63. 

  63.             ->addOption(
    64. 

  64.                 'title',
    65. 

  65.                 't',
    66. 

  66.                 InputOption::VALUE_REQUIRED,
    67. 

  67.                 'The title of the user. Usually used as a subtext. Example: Admin, Collaborator, Developer'
    68. 

  68.             )
    69. 

  69.             ->addOption(
    70. 

  70.                 'state',
    71. 

  71.                 's',
    72. 

  72.                 InputOption::VALUE_REQUIRED,
    73. 

  73.                 'The state of the account. Can be either `enabled` or `disabled`. [default: "enabled"]'
    74. 

  74.             )
    75. 

  75.             ->setDescription('Creates a new user')
    76. 

  76.             ->setHelp('The <info>new-user</info> creates a new user file in user/accounts/ folder')
    77. 

  77.         ;
    78. 

  78.     }
    79. 

  79. 

  80.     /**
    81. 

  81.      * @return int|null|void
    82. 

  82.      */
    83. 

  83.     protected function serve()
    84. 

  84.     {
    85. 

  85.         $this->options = [
    86. 

  86.             'user'        => $this->input->getOption('user'),
    87. 

  87.             'password1'   => $this->input->getOption('password'),
    88. 

  88.             'email'       => $this->input->getOption('email'),
    89. 

  89.             'permissions' => $this->input->getOption('permissions'),
    90. 

  90.             'fullname'    => $this->input->getOption('fullname'),
    91. 

  91.             'title'       => $this->input->getOption('title'),
    92. 

  92.             'state'       => $this->input->getOption('state')
    93. 

  93.         ];
    94. 

  94. 

  95.         $this->validateOptions();
    96. 

  96. 

  97.         $helper = $this->getHelper('question');
    98. 

  98.         $data   = [];
    99. 

  99. 

  100.         $this->output->writeln('<green>Creating new user</green>');
    101. 

  101.         $this->output->writeln('');
    102. 

  102. 

  103.         if (!$this->options['user']) {
    104. 

  104.             // Get username and validate
    105. 

  105.             $question = new Question('Enter a <yellow>username</yellow>: ', 'admin');
    106. 

  106.             $question->setValidator(function ($value) {
    107. 

  107.                 return $this->validate('user', $value);
    108. 

  108.             });
    109. 

  109. 

  110.             $username = $helper->ask($this->input, $this->output, $question);
    111. 

  111.         } else {
    112. 

  112.             $username = $this->options['user'];
    113. 

  113.         }
    114. 

  114. 

  115. 

  116.         if (!$this->options['password1']) {
    117. 

  117.             // Get password and validate
    118. 

  118.             $password = $this->askForPassword($helper, 'Enter a <yellow>password</yellow>: ', function ($password1) use ($helper) {
    119. 

  119.                 $this->validate('password1', $password1);
    120. 

  120. 

  121.                 // Since input is hidden when prompting for passwords, the user is asked to repeat the password
    122. 

  122.                 return $this->askForPassword($helper, 'Repeat the <yellow>password</yellow>: ', function ($password2) use ($password1) {
    123. 

  123.                     return $this->validate('password2', $password2, $password1);
    124. 

  124.                 });
    125. 

  125.             });
    126. 

  126. 

  127.             $data['password'] = $password;
    128. 

  128.         } else {
    129. 

  129.             $data['password'] = $this->options['password1'];
    130. 

  130.         }
    131. 

  131. 

  132.         if (!$this->options['email']) {
    133. 

  133.             // Get email and validate
    134. 

  134.             $question = new Question('Enter an <yellow>email</yellow>:   ');
    135. 

  135.             $question->setValidator(function ($value) {
    136. 

  136.                 return $this->validate('email', $value);
    137. 

  137.             });
    138. 

  138. 

  139.             $data['email'] = $helper->ask($this->input, $this->output, $question);
    140. 

  140.         } else {
    141. 

  141.             $data['email'] = $this->options['email'];
    142. 

  142.         }
    143. 

  143. 

  144.         if (!$this->options['permissions']) {
    145. 

  145.             // Choose permissions
    146. 

  146.             $question = new ChoiceQuestion(
    147. 

  147.                 'Please choose a set of <yellow>permissions</yellow>:',
    148. 

  148.                 array('a' => 'Admin Access', 's' => 'Site Access', 'b' => 'Admin and Site Access'),
    149. 

  149.                 'a'
    150. 

  150.             );
    151. 

  151. 

  152.             $question->setErrorMessage('Permissions %s is invalid.');
    153. 

  153.             $permissions_choice = $helper->ask($this->input, $this->output, $question);
    154. 

  154.         } else {
    155. 

  155.             $permissions_choice = $this->options['permissions'];
    156. 

  156.         }
    157. 

  157. 

  158.         switch ($permissions_choice) {
    159. 

  159.             case 'a':
    160. 

  160.                 $data['access']['admin'] = ['login' => true, 'super' => true];
    161. 

  161.                 break;
    162. 

  162.             case 's':
    163. 

  163.                 $data['access']['site'] = ['login' => true];
    164. 

  164.                 break;
    165. 

  165.             case 'b':
    166. 

  166.                 $data['access']['admin'] = ['login' => true, 'super' => true];
    167. 

  167.                 $data['access']['site']  = ['login' => true];
    168. 

  168.         }
    169. 

  169. 

  170.         if (!$this->options['fullname']) {
    171. 

  171.             // Get fullname
    172. 

  172.             $question = new Question('Enter a <yellow>fullname</yellow>: ');
    173. 

  173.             $question->setValidator(function ($value) {
    174. 

  174.                 return $this->validate('fullname', $value);
    175. 

  175.             });
    176. 

  176. 

  177.             $data['fullname'] = $helper->ask($this->input, $this->output, $question);
    178. 

  178.         } else {
    179. 

  179.             $data['fullname'] = $this->options['fullname'];
    180. 

  180.         }
    181. 

  181. 

  182. 

  183.         if (!$this->options['title'] && !count(array_filter($this->options))) {
    184. 

  184.             // Get title
    185. 

  185.             $question      = new Question('Enter a <yellow>title</yellow>:    ');
    186. 

  186.             $data['title'] = $helper->ask($this->input, $this->output, $question);
    187. 

  187.         } else {
    188. 

  188.             $data['title'] = $this->options['title'];
    189. 

  189.         }
    190. 

  190. 

  191.         if (!$this->options['state'] && !count(array_filter($this->options))) {
    192. 

  192.             // Choose State
    193. 

  193.             $question = new ChoiceQuestion(
    194. 

  194.                 'Please choose the <yellow>state</yellow> for the account:',
    195. 

  195.                 array('enabled' => 'Enabled', 'disabled' => 'Disabled'),
    196. 

  196.                 'enabled'
    197. 

  197.             );
    198. 

  198. 

  199.             $question->setErrorMessage('State %s is invalid.');
    200. 

  200.             $data['state'] = $helper->ask($this->input, $this->output, $question);
    201. 

  201.         } else {
    202. 

  202.             $data['state'] = $this->options['state'] ?: 'enabled';
    203. 

  203.         }
    204. 

  204. 

  205.         // Lowercase the username for the filename
    206. 

  206.         $username = strtolower($username);
    207. 

  207. 

  208.         // Create user object and save it
    209. 

  209.         $user = new User($data);
    210. 

  210.         $file = CompiledYamlFile::instance(self::getGrav()['locator']->findResource('user://accounts/' . $username . YAML_EXT, true, true));
    211. 

  211.         $user->file($file);
    212. 

  212.         $user->save();
    213. 

  213. 

  214.         $this->output->writeln('');
    215. 

  215.         $this->output->writeln('<green>Success!</green> User <cyan>' . $username . '</cyan> created.');
    216. 

  216.     }
    217. 

  217. 

  218.     /**
    219. 

  219.      *
    220. 

  220.      */
    221. 

  221.     protected function validateOptions()
    222. 

  222.     {
    223. 

  223.         foreach (array_filter($this->options) as $type => $value) {
    224. 

  224.             $this->validate($type, $value);
    225. 

  225.         }
    226. 

  226.     }
    227. 

  227. 

  228.     /**
    229. 

  229.      * @param        $type
    230. 

  230.      * @param        $value
    231. 

  231.      * @param string $extra
    232. 

  232.      *
    233. 

  233.      * @return mixed
    234. 

  234.      */
    235. 

  235.     protected function validate($type, $value, $extra = '')
    236. 

  236.     {
    237. 

  237.         switch ($type) {
    238. 

  238.             case 'user':
    239. 

  239.                 if (!preg_match('/^[a-z0-9_-]{3,16}$/', $value)) {
    240. 

  240.                     throw new \RuntimeException('Username should be between 3 and 16 characters, including lowercase letters, numbers, underscores, and hyphens. Uppercase letters, spaces, and special characters are not allowed');
    241. 

  241.                 }
    242. 

  242.                 if (file_exists(self::getGrav()['locator']->findResource('user://accounts/' . $value . YAML_EXT))) {
    243. 

  243.                     throw new \RuntimeException('Username "' . $value . '" already exists, please pick another username');
    244. 

  244.                 }
    245. 

  245. 

  246.                 break;
    247. 

  247. 

  248.             case 'password1':
    249. 

  249.                 if (!preg_match('/(?=.*\d)(?=.*[a-z])(?=.*[A-Z]).{8,}/', $value)) {
    250. 

  250.                     throw new \RuntimeException('Password must contain at least one number and one uppercase and lowercase letter, and at least 8 or more characters');
    251. 

  251.                 }
    252. 

  252. 

  253.                 break;
    254. 

  254. 

  255.             case 'password2':
    256. 

  256.                 if (strcmp($value, $extra)) {
    257. 

  257.                     throw new \RuntimeException('Passwords did not match.');
    258. 

  258.                 }
    259. 

  259. 

  260.                 break;
    261. 

  261. 

  262.             case 'email':
    263. 

  263.                 if (!preg_match('/^([a-z0-9_\.-]+)@([\da-z\.-]+)\.([a-z\.]{2,6})$/', $value)) {
    264. 

  264.                     throw new \RuntimeException('Not a valid email address');
    265. 

  265.                 }
    266. 

  266. 

  267.                 break;
    268. 

  268. 

  269.             case 'permissions':
    270. 

  270.                 if (!in_array($value, ['a', 's', 'b'])) {
    271. 

  271.                     throw new \RuntimeException('Permissions ' . $value . ' are invalid.');
    272. 

  272.                 }
    273. 

  273. 

  274.                 break;
    275. 

  275. 

  276.             case 'fullname':
    277. 

  277.                 if ($value === null || trim($value) == '') {
    278. 

  278.                     throw new \RuntimeException('Fullname cannot be empty');
    279. 

  279.                 }
    280. 

  280. 

  281.                 break;
    282. 

  282. 

  283.             case 'state':
    284. 

  284.                 if ($value !== 'enabled' && $value !== 'disabled') {
    285. 

  285.                     throw new \RuntimeException('State is not valid');
    286. 

  286.                 }
    287. 

  287. 

  288.                 break;
    289. 

  289.         }
    290. 

  290. 

  291.         return $value;
    292. 

  292.     }
    293. 

  293. 

  294.     /**
    295. 

  295.      * Get password and validate.
    296. 

  296.      *
    297. 

  297.      * @param Helper   $helper
    298. 

  298.      * @param string   $question
    299. 

  299.      * @param callable $validator
    300. 

  300.      *
    301. 

  301.      * @return string
    302. 

  302.      */
    303. 

  303.     protected function askForPassword(Helper $helper, $question, callable $validator)
    304. 

  304.     {
    305. 

  305.         $question = new Question($question);
    306. 

  306.         $question->setValidator($validator);
    307. 

  307.         $question->setHidden(true);
    308. 

  308.         $question->setHiddenFallback(true);
    309. 

  309.         return $helper->ask($this->input, $this->output, $question);
    310. 

  310.     }
    311. 

  311. }
    312.