luticate
/
api-auth
Segui 1
Vota 0
Forka 0
Codice Problemi 0 Pull Requests 0 Rilasci 6 Wiki Attività
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
24 Commit
2 Rami (Branch)
Albero (Tree): cdf25c0bd5
Rami (Branch) Tag
${ item.name }
Crea branch ${ searchTerm }
da 'cdf25c0bd5'
${ noResults }
api-auth/src/Auth/Business/LuticateUsersBusiness.php

LuticateUsersBusiness.php 3.0KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103 
  1. <?php

  2. 

  3. namespace Luticate\Auth\Business;

  4. 

  5. use Luticate\Auth\DBO\LuticateUsersLoginDbo;

  6. use Luticate\Utils\LuBusiness;

  7. use Luticate\Auth\DataAccess\LuticateUsersDataAccess;

  8. use Luticate\Auth\DBO\LuticateUsersDbo;

  9. 

  10. class LuticateUsersBusiness extends LuBusiness {

  11. 

  12.     const KEY_USER_ID =  "user_id";

  13.     const KEY_SALT =  "salt";

  14. 

  15.     protected static function getDataAccess()

  16.     {

  17.         return new LuticateUsersDataAccess();

  18.     }

  19. 

  20.     protected static function badPassword()

  21.     {

  22.         abort(401, "Bad username/password");

  23.     }

  24. 

  25.     public static function hashPassword($password)

  26.     {

  27.         return password_hash($password, PASSWORD_BCRYPT);

  28.     }

  29. 

  30.     public static function verifyPassword($password, $hash)

  31.     {

  32.         return password_verify($password, $hash);

  33.     }

  34. 

  35.     public static function getSalt($length = 10)

  36.     {

  37.         $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';

  38.         $charactersLength = strlen($characters);

  39.         $randomString = '';

  40.         for ($i = 0; $i < $length; $i++) {

  41.             $randomString .= $characters[rand(0, $charactersLength - 1)];

  42.         }

  43.         return $randomString;

  44.     }

  45. 

  46.     /**

  47.      * @param $user LuticateUsersDbo

  48.      * @return string

  49.      */

  50.     public static function getToken($user)

  51.     {

  52.         return JwtHelper::encode(array(

  53.             self::KEY_USER_ID => $user->getId(),

  54.             self::KEY_SALT => $user->getSalt()

  55.             ));

  56.     }

  57. 

  58.     public static function login($username, $password)

  59.     {

  60.         $user = LuticateUsersDataAccess::getByUsernameOrEmail($username);

  61.         if (is_null($user))

  62.             self::badPassword();

  63.         if (!self::verifyPassword($password, $user->getPassword()))

  64.             self::badPassword();

  65.         $user = LuticateUsersLoginDbo::fromUserDbo($user);

  66.         $user->setToken(self::getToken($user));

  67.         return $user;

  68.     }

  69. 

  70.     /**

  71.      * @param $user LuticateUsersDbo

  72.      * @return bool

  73.      */

  74.     public static function logout($user)

  75.     {

  76.         $user->setSalt(self::getSalt());

  77.         LuticateUsersDataAccess::editById($user->getId(), $user);

  78.         return true;

  79.     }

  80. 

  81.     public static function add($username, $email, $password)

  82.     {

  83.         $hash = self::hashPassword($password);

  84.         if (filter_var($username, FILTER_VALIDATE_EMAIL))

  85.             self::badInput("Username can not be an email");

  86.         if (!filter_var($email, FILTER_VALIDATE_EMAIL))

  87.             self::badInput("Invalid email address");

  88.         $user = LuticateUsersDataAccess::getByUsernameOrEmail($username);

  89.         if (!is_null($user))

  90.             self::badInput("Username already exists");

  91.         $user = LuticateUsersDataAccess::getByUsernameOrEmail($email);

  92.         if (!is_null($user))

  93.             self::badInput("Email already used");

  94. 

  95.         $user = new LuticateUsersDbo();

  96.         $user->setEmail($email);

  97.         $user->setPassword($hash);

  98.         $user->setUsername($username);

  99.         $user->setSalt(self::getSalt());

  100. 

  101.         return LuticateUsersDataAccess::addId($user);

  102.     }

  103. }