luticate
/
api-auth
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 6 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
135 Commits
2 Branches
Tree: b786f2e883
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'b786f2e883'
${ noResults }
api-auth/src/Auth/Business/LuUsersBusiness.php

LuUsersBusiness.php 6.5KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216 
  1. <?php

  2. /**

  3.  * Created by PhpStorm.

  4.  * User: robin

  5.  * Date: 7/2/16

  6.  * Time: 10:15 PM

  7.  */

  8. 

  9. namespace Luticate\Auth\Business;

  10. 

  11. use Luticate\Auth\DataAccess\LuUserDataAccess;

  12. use Luticate\Auth\Dbo\Users\LuUsersAddDbo;

  13. use Luticate\Auth\Dbo\Users\LuUsersDbo;

  14. use Luticate\Auth\Dbo\Users\LuUsersEditDbo;

  15. use Luticate\Auth\Dbo\Users\LuUsersLiteDbo;

  16. use Luticate\Auth\Dbo\Users\LuUsersLoginDbo;

  17. use Luticate\Auth\Dbo\Users\LuUsersLoginResultDbo;

  18. use Luticate\Utils\Business\LuBusiness;

  19. use Luticate\Utils\Dbo\LuPaginatedDbo;

  20. use Luticate\Utils\Dbo\LuQueryDbo;

  21. 

  22. class LuUsersBusiness extends LuBusiness

  23. {

  24.     const KEY_USER_ID =  "user_id";

  25.     const KEY_SALT =  "salt";

  26.     const KEY_DATA =  "data";

  27. 

  28.     /**

  29.      * @return LuUserDataAccess

  30.      */

  31.     protected static function getDataAccess()

  32.     {

  33.         return new LuUserDataAccess();

  34.     }

  35. 

  36.     protected function badPassword()

  37.     {

  38.         static::unauthorized("Bad username/password");

  39.     }

  40. 

  41.     public function hashPassword(string $password)

  42.     {

  43.         return password_hash($password, PASSWORD_BCRYPT);

  44.     }

  45. 

  46.     public function verifyPassword(string $password, string $hash)

  47.     {

  48.         return password_verify($password, $hash);

  49.     }

  50. 

  51.     public function checkPasswordRequirements(string $password)

  52.     {

  53.         if (strlen($password) < 5) { //TODO: add a setting

  54.             self::badInput("Password must have at least 5 characters");

  55.         }

  56.     }

  57. 

  58.     public function getSalt($length = 10)

  59.     {

  60.         $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';

  61.         $charactersLength = strlen($characters);

  62.         $randomString = '';

  63.         for ($i = 0; $i < $length; $i++) {

  64.             $randomString .= $characters[rand(0, $charactersLength - 1)];

  65.         }

  66.         return $randomString;

  67.     }

  68. 

  69.     public function getToken(LuUsersDbo $user, $data = null)

  70.     {

  71.         $session_time = 30;//TODO add a setting

  72.         return JwtHelper::encode(array(

  73.             self::KEY_USER_ID => $user->getId(),

  74.             self::KEY_SALT => $user->getSalt(),

  75.             self::KEY_DATA => $data

  76.         ), $session_time);

  77.     }

  78. 

  79.     public function login(LuUsersLoginDbo $login)

  80.     {

  81.         $user = static::getDataAccess()->getByUsernameOrEmail($login->getUsername());

  82.         if (is_null($user))

  83.             self::badPassword();

  84.         if (!self::verifyPassword($login->getPassword(), $user->getPassword()))

  85.             self::badPassword();

  86. 

  87.         /**

  88.          * @var $result LuUsersLoginResultDbo

  89.          */

  90.         $result = $user->castAs(LuUsersLoginResultDbo::class);

  91.         $result->setToken(self::getToken($user));

  92.         return $result;

  93.     }

  94. 

  95.     public function logout(LuUsersDbo $user)

  96.     {

  97.         if ($user->getId() != 0) {

  98.             $user->setSalt(self::getSalt());

  99.             static::getDataAccess()->editSingleById($user);

  100.         }

  101.         return true;

  102.     }

  103. 

  104.     public function getSingleLiteById($userId)

  105.     {

  106.         /**

  107.          * @var $user LuUsersDbo

  108.          */

  109.         $user = static::getById($userId);

  110.         return $user->toLite();

  111.     }

  112. 

  113.     /**

  114.      * @param LuQueryDbo $query

  115.      * @return LuPaginatedDbo

  116.      */

  117.     public function getAllLite(LuQueryDbo $query)

  118.     {

  119.         return static::getDataAccess()->getAll($query)->map(function($user)

  120.         {

  121.             /**

  122.              * @var $user LuUsersDbo

  123.              */

  124.             return $user->toLite();

  125.         });

  126.     }

  127. 

  128.     public function add(LuUsersAddDbo $user)

  129.     {

  130.         static::checkPasswordRequirements($user->getPassword());

  131. 

  132.         if (filter_var($user->getUsername(), FILTER_VALIDATE_EMAIL)) {

  133.             self::badInput("Username can not be an email");

  134.         }

  135.         if (!preg_match("/^[A-Za-z0-9\\-_\\.]+$/", $user->getUsername())) {

  136.             self::badInput("Username can only contain letters (A-Z a-z), numbers (0-9), hyphen (-), underscore (_) and dot (.)");

  137.         }

  138.         if (!filter_var($user->getEmail(), FILTER_VALIDATE_EMAIL)) {

  139.             self::badInput("Invalid email address");

  140.         }

  141.         $existingUser = static::getDataAccess()->getByUsernameOrEmail($user->getUsername());

  142.         if ($existingUser != null) {

  143.             self::badInput("Username already exists");

  144.         }

  145.         $existingUser = static::getDataAccess()->getByUsernameOrEmail($user->getEmail());

  146.         if ($existingUser != null) {

  147.             self::badInput("Email already used");

  148.         }

  149.         $user->setPassword(self::hashPassword($user->getPassword()));

  150.         $user->setExternalAuth(null);

  151.         $user->setProfileId(null);

  152. 

  153.         /**

  154.          * @var LuUsersDbo $newUser

  155.          */

  156.         $newUser = $user->castAs(LuUsersDbo::class);

  157.         $newUser->setSalt(static::getSalt());

  158. 

  159.         $id = static::getDataAccess()->addSingleId($newUser);

  160.         return self::getById($id);

  161.     }

  162. 

  163.     public function del(int $userId)

  164.     {

  165.         $user = static::getSingleLiteById($userId);

  166.         if ($userId != 0) {

  167.             static::deleteById($user->getId());

  168.         }

  169.         return $user;

  170.     }

  171. 

  172.     public function edit(int $userId, LuUsersEditDbo $user)

  173.     {

  174.         $existingUser = static::getSingleLiteById($userId);

  175.         if (!filter_var($user->getEmail(), FILTER_VALIDATE_EMAIL)) {

  176.             self::badInput("Invalid email address");

  177.         }

  178.         $anotherExistingUser = static::getDataAccess()->getByUsernameOrEmail($user->getEmail());

  179.         if ($anotherExistingUser != null && $anotherExistingUser->getId() != $existingUser->getId()) {

  180.             self::badInput("Email already used");

  181.         }

  182. 

  183.         $existingUser->setEmail($user->getEmail());

  184.         $existingUser->setFirstname($user->getFirstname());

  185.         $existingUser->setLastname($user->getLastname());

  186. 

  187.         static::getDataAccess()->editSingleById($existingUser);

  188. 

  189.         return static::getSingleLiteById($existingUser->getId());

  190.     }

  191. 

  192.     public function setPassword(int $userId, string $password)

  193.     {

  194.         $this->checkPasswordRequirements($password);

  195. 

  196.         /**

  197.          * @var $existingUser LuUsersDbo

  198.          */

  199.         $existingUser = static::getDataAccess()->getSingleById($userId);

  200.         $existingUser->setPassword(static::hashPassword($password));

  201.         $existingUser->setSalt(static::getSalt());

  202. 

  203.         static::getDataAccess()->editSingleById($existingUser);

  204. 

  205.         return true;

  206.     }

  207. 

  208.     public function setPasswordMe(LuUsersDbo $_user, string $password, string $oldPassword)

  209.     {

  210.         $loginDbo = new LuUsersLoginDbo();

  211.         $loginDbo->setUsername($_user->getUsername());

  212.         $loginDbo->setPassword($oldPassword);

  213.         static::login($loginDbo);

  214.         return static::setPassword($_user->getId(), $password);

  215.     }

  216. }