search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Fixed minor things and added missing file
[vanilla-miry.git] / library / People / People.Class.SQLiteAuthenticator.php
blob0a23b8653a6f7b602494caf72ee80d5b3358f2de
1 <?php
2 /**
3 * A special authenticator for SQLite.
4 *
5 * Copyright 2003 Mark O'Sullivan
6 * This file is part of Lussumo's Software Library.
7 * Lussumo's Software Library is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version.
8 * Lussumo's Software Library is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
9 * You should have received a copy of the GNU General Public License along with Vanilla; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
10 * The latest source code is available at www.lussumo.com
11 * Contact Mark O'Sullivan at mark [at] lussumo [dot] com
12 *
13 * @author Mark O'Sullivan
14 * @copyright 2003 Mark O'Sullivan
15 * @license http://lussumo.com/community/gpl.txt GPL 2
16 * @package People
17 * @version 1.1.8
18 */
19
20
21 /**
22 * A special authenticator for SQLite.
23 * @package People
24 */
25 class Authenticator {
26 var $Context;
27
28 // Returning '0' indicates that the username and password combination weren't found.
29 // Returning '-1' indicates that the user does not have permission to sign in.
30 // Returning '-2' indicates that a fatal error has occurred while querying the database.
31 function Authenticate($Username, $Password, $PersistentSession) {
32 // Validate the username and password that have been set
33 $Username = FormatStringForDatabaseInput($Username);
34 $Password = FormatStringForDatabaseInput($Password);
35 $UserID = 0;
36
37 // Retrieve matching username/password values
38 $Query = "select u.UserID, r.PERMISSION_SIGN_IN
39 from ".$this->Context->Configuration['DATABASE_TABLE_PREFIX']."User u
40 inner join ".$this->Context->Configuration['DATABASE_TABLE_PREFIX']."Role r
41 on u.RoleID = r.RoleID
42 where u.Name = '".$Username."'
43 and u.Password = '".$Password."'";
44
45 $UserResult = $this->Context->Database->Execute($Query,
46 'Authenticator',
47 'Authenticate',
48 'An error occurred while attempting to validate your credentials');
49
50 if (!$UserResult) {
51 $UserID = -2;
52 } elseif ($this->Context->Database->RowCount($UserResult) > 0) {
53 $CanSignIn = 0;
54 $EncryptedUserID = '';
55 $VerificationKey = '';
56 while ($rows = $this->Context->Database->GetRow($UserResult)) {
57 $EncryptedUserID = md5($rows['UserID']);
58 $VerificationKey = DefineVerificationKey();
59 $UserID = ForceInt($rows['UserID'], 0);
60 $CanSignIn = ForceBool($rows['PERMISSION_SIGN_IN'], 0);
61 }
62 if (!$CanSignIn) {
63 $UserID = -1;
64 } else {
65 // Update the user's information
66 $this->UpdateLastVisit($UserID, $VerificationKey);
67
68 // Assign the session value
69 $this->AssignSessionUserID($UserID);
70
71 // Set the 'remember me' cookies
72 if ($PersistentSession) $this->SetCookieCredentials($EncryptedUserID, $VerificationKey);
73 }
74 }
75 return $UserID;
76 }
77
78 function Authenticator(&$Context) {
79 $this->Context = &$Context;
80 }
81
82 function DeAuthenticate() {
83 $this->Context->Session->Destroy();
84
85 // Destroy the cookies as well
86 $Cookies = array(
87 $this->Context->Configuration['COOKIE_USER_KEY'],
88 $this->Context->Configuration['COOKIE_VERIFICATION_KEY']);
89 $UseSsl = ($this->Context->Configuration['HTTP_METHOD'] === "https");
90 foreach($Cookies as $Cookie) {
91 // PHP 5.2.0 required for HTTP only parameter of setcookie()
92 if (version_compare(PHP_VERSION, '5.2.0', '>=')) {
93 setcookie($Cookie,
94 ' ',
95 time()-3600,
96 $this->Context->Configuration['COOKIE_PATH'],
97 $this->Context->Configuration['COOKIE_DOMAIN'],
98 $UseSsl, // Secure connections only
99 1); // HTTP only
100 } else {
101 setcookie($Cookie,
102 ' ',
103 time()-3600,
104 $this->Context->Configuration['COOKIE_PATH'],
105 $this->Context->Configuration['COOKIE_DOMAIN'],
106 $UseSsl); // Secure connections only
107 }
108 unset($_COOKIE[$Cookie]);
109 }
110 return true;
111 }
112
113 function GetIdentity() {
114 $UserID = $this->Context->Session->GetVariable(
115 $this->Context->Configuration['SESSION_USER_IDENTIFIER'], 'int');
116 if ($UserID == 0) {
117 // UserID wasn't found in the session, so attempt to retrieve it from the cookies
118 // Retrieve cookie values
119 $EncryptedUserID = ForceIncomingCookieString($this->Context->Configuration['COOKIE_USER_KEY'], '');
120 $VerificationKey = ForceIncomingCookieString($this->Context->Configuration['COOKIE_VERIFICATION_KEY'], '');
121
122 if ($EncryptedUserID != '' && $VerificationKey != '') {
123
124 // Compare against db values
125 // Sadly, because this class is meant to be an interface for distributed objects, I can't use any of the error checking in the Lussumo Framework
126 $Query = "select UserID
127 from LUM_User
128 where VerificationKey = '".FormatStringForDatabaseInput($VerificationKey)."'";
129
130 $Result = $this->Context->Database->Execute($Query,
131 'Authenticator',
132 'GetIdentity',
133 'An error occurred while attempting to validate your remember me credentials');
134
135 if ($Result) {
136 $UserID = 0;
137 while ($rows = $this->Context->Database->GetRow($Result)) {
138 if ($EncryptedUserID == md5($rows['UserID'])) {
139 $UserID = ForceInt($rows['UserID'], 0);
140 $EncryptedUserID = $rows['EncryptedUserID'];
141 break;
142 }
143 }
144 if ($UserID > 0) {
145 // 1. Set a new verification key
146 $VerificationKey = DefineVerificationKey();
147
148 // 2. Update the user's information
149 $this->UpdateLastVisit($UserID, $VerificationKey);
150
151 // 3. Set the 'remember me' cookies
152 $this->SetCookieCredentials($EncryptedUserID, $VerificationKey);
153
154 // 4. Log the user's IP address
155 $this->LogIp($UserID);
156 }
157 }
158 }
159 }
160
161 // If it has now been found, set up the session.
162 $this->AssignSessionUserID($UserID);
163 return $UserID;
164 }
165
166 // All methods below this point are specific to this authenticator and
167 // should not be treated as interface methods. The only required interface
168 // properties and methods appear above.
169
170 function AssignSessionUserID($UserID) {
171 if ($UserID > 0) {
172 $this->Context->Session->SetVariable(
173 $this->Context->Configuration['SESSION_USER_IDENTIFIER'], $UserID);
174 }
175 }
176
177 function LogIp($UserID) {
178 if ($this->Context->Configuration['LOG_ALL_IPS']) {
179 $Query = "insert into LUM_IpHistory
180 (UserID, RemoteIp, DateLogged)
181 values ('".$UserID."', '".GetRemoteIp(1)."', '".MysqlDateTime()."')";
182
183 $this->Context->Database->Execute($Query,
184 'Authenticator',
185 'LogIp',
186 'An error occurred while logging your IP address.',
187 false); // fail silently
188 }
189 }
190
191 function SetCookieCredentials($CookieUserID, $VerificationKey) {
192 // Note: 2592000 is 60*60*24*30 or 30 days
193 $Cookies = array(
194 $this->Context->Configuration['COOKIE_USER_KEY'] => $CookieUserID,
195 $this->Context->Configuration['COOKIE_VERIFICATION_KEY'] => $VerificationKey);
196 $UseSsl = ($this->Context->Configuration['HTTP_METHOD'] === "https");
197 foreach($Cookies as $Name => $Value) {
198 // PHP 5.2.0 required for HTTP only parameter of setcookie()
199 if (version_compare(PHP_VERSION, '5.2.0', '>=')) {
200 setcookie($Name,
201 $Value,
202 time()+2592000,
203 $this->Context->Configuration['COOKIE_PATH'],
204 $this->Context->Configuration['COOKIE_DOMAIN'],
205 $UseSsl, // Secure connections only
206 1); // HTTP only
207 } else {
208 setcookie($Name,
209 $Value,
210 time()+2592000,
211 $this->Context->Configuration['COOKIE_PATH'],
212 $this->Context->Configuration['COOKIE_DOMAIN'],
213 $UseSsl); // Secure connections only
214 }
215 }
216 }
217
218 function UpdateLastVisit($UserID, $VerificationKey) {
219 $Query = "update LUM_User
220 set DateLastActive = '".MysqlDateTime()."',
221 VerificationKey = '".$VerificationKey."',
222 CountVisit = CountVisit + 1
223 where UserID = ".$UserID;
224
225 $this->Context->Database->Execute($Query,
226 'Authenticator',
227 'UpdateLastVisit',
228 'An error occurred while updating your profile.',
229 false); // fail silently
230 }
231 }
232 ?>
My personal version of Vanilla Forums