2014-08-30 18:11:32 +02:00
|
|
|
<?php
|
|
|
|
namespace Szurubooru\Services;
|
2014-10-08 14:47:47 +02:00
|
|
|
use Szurubooru\Config;
|
|
|
|
use Szurubooru\Entities\Token;
|
|
|
|
use Szurubooru\Entities\User;
|
|
|
|
use Szurubooru\Services\PasswordService;
|
|
|
|
use Szurubooru\Services\TimeService;
|
|
|
|
use Szurubooru\Services\TokenService;
|
|
|
|
use Szurubooru\Services\UserService;
|
2014-08-30 18:11:32 +02:00
|
|
|
|
2014-09-04 19:21:18 +02:00
|
|
|
class AuthService
|
2014-08-30 18:11:32 +02:00
|
|
|
{
|
|
|
|
private $loggedInUser = null;
|
|
|
|
private $loginToken = null;
|
|
|
|
|
2014-09-08 13:06:32 +02:00
|
|
|
private $config;
|
2014-08-30 18:11:32 +02:00
|
|
|
private $passwordService;
|
2014-08-31 17:42:48 +02:00
|
|
|
private $timeService;
|
2014-09-08 08:20:31 +02:00
|
|
|
private $userService;
|
|
|
|
private $tokenService;
|
2014-08-30 18:11:32 +02:00
|
|
|
|
|
|
|
public function __construct(
|
2014-10-08 14:47:47 +02:00
|
|
|
Config $config,
|
|
|
|
PasswordService $passwordService,
|
|
|
|
TimeService $timeService,
|
|
|
|
TokenService $tokenService,
|
|
|
|
UserService $userService)
|
2014-08-30 18:11:32 +02:00
|
|
|
{
|
2014-09-08 13:06:32 +02:00
|
|
|
$this->config = $config;
|
2014-08-30 18:11:32 +02:00
|
|
|
$this->passwordService = $passwordService;
|
2014-08-31 17:42:48 +02:00
|
|
|
$this->timeService = $timeService;
|
2014-09-08 08:20:31 +02:00
|
|
|
$this->tokenService = $tokenService;
|
|
|
|
$this->userService = $userService;
|
|
|
|
|
|
|
|
$this->loggedInUser = $this->getAnonymousUser();
|
2014-08-30 18:11:32 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
public function isLoggedIn()
|
|
|
|
{
|
|
|
|
return $this->loginToken !== null;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function getLoggedInUser()
|
|
|
|
{
|
|
|
|
return $this->loggedInUser;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function getLoginToken()
|
|
|
|
{
|
2014-08-31 13:16:29 +02:00
|
|
|
return $this->loginToken;
|
2014-08-30 18:11:32 +02:00
|
|
|
}
|
|
|
|
|
2014-09-09 19:38:16 +02:00
|
|
|
public function loginFromCredentials($formData)
|
2014-08-30 18:11:32 +02:00
|
|
|
{
|
2014-09-09 19:38:16 +02:00
|
|
|
$user = $this->userService->getByNameOrEmail($formData->userNameOrEmail);
|
|
|
|
$this->doFinalChecksOnUser($user);
|
2014-08-30 18:11:32 +02:00
|
|
|
|
2014-10-05 22:26:56 +02:00
|
|
|
$hashValid = $this->passwordService->isHashValid(
|
|
|
|
$formData->password,
|
|
|
|
$user->getPasswordSalt(),
|
|
|
|
$user->getPasswordHash());
|
|
|
|
|
|
|
|
if (!$hashValid)
|
2014-08-30 18:11:32 +02:00
|
|
|
throw new \InvalidArgumentException('Specified password is invalid.');
|
|
|
|
|
|
|
|
$this->loginToken = $this->createAndSaveLoginToken($user);
|
2014-08-31 17:42:48 +02:00
|
|
|
$this->loggedInUser = $user;
|
2014-08-30 18:11:32 +02:00
|
|
|
}
|
|
|
|
|
2014-10-08 14:47:47 +02:00
|
|
|
public function loginFromToken(Token $token)
|
2014-08-30 18:11:32 +02:00
|
|
|
{
|
2014-10-08 14:47:47 +02:00
|
|
|
if ($token->getPurpose() !== Token::PURPOSE_LOGIN)
|
2014-09-07 18:07:24 +02:00
|
|
|
throw new \Exception('This token is not a login token.');
|
|
|
|
|
2014-09-13 23:58:13 +02:00
|
|
|
$user = $this->userService->getById($token->getAdditionalData());
|
2014-09-09 19:38:16 +02:00
|
|
|
$this->doFinalChecksOnUser($user);
|
2014-09-08 08:20:31 +02:00
|
|
|
|
2014-09-09 19:38:16 +02:00
|
|
|
$this->loginToken = $token;
|
2014-09-08 08:20:31 +02:00
|
|
|
$this->loggedInUser = $user;
|
2014-08-30 18:11:32 +02:00
|
|
|
}
|
|
|
|
|
2014-08-31 17:42:48 +02:00
|
|
|
public function getAnonymousUser()
|
|
|
|
{
|
2014-10-08 14:47:47 +02:00
|
|
|
$user = new User();
|
2014-09-13 23:58:13 +02:00
|
|
|
$user->setName('Anonymous user');
|
2014-10-08 14:47:47 +02:00
|
|
|
$user->setAccessRank(User::ACCESS_RANK_ANONYMOUS);
|
|
|
|
$user->setAvatarStyle(User::AVATAR_STYLE_BLANK);
|
2014-08-31 17:42:48 +02:00
|
|
|
return $user;
|
|
|
|
}
|
|
|
|
|
2014-08-31 13:16:29 +02:00
|
|
|
public function loginAnonymous()
|
|
|
|
{
|
|
|
|
$this->loginToken = null;
|
2014-08-31 17:42:48 +02:00
|
|
|
$this->loggedInUser = $this->getAnonymousUser();
|
2014-08-31 13:16:29 +02:00
|
|
|
}
|
|
|
|
|
2014-08-30 18:11:32 +02:00
|
|
|
public function logout()
|
|
|
|
{
|
|
|
|
if (!$this->isLoggedIn())
|
|
|
|
throw new \Exception('Not logged in.');
|
|
|
|
|
2014-09-08 13:06:32 +02:00
|
|
|
$this->tokenService->invalidateByName($this->loginToken);
|
2014-08-30 18:11:32 +02:00
|
|
|
$this->loginToken = null;
|
|
|
|
}
|
|
|
|
|
2014-10-08 14:47:47 +02:00
|
|
|
private function createAndSaveLoginToken(User $user)
|
2014-08-30 18:11:32 +02:00
|
|
|
{
|
2014-10-08 14:47:47 +02:00
|
|
|
return $this->tokenService->createAndSaveToken($user->getId(), Token::PURPOSE_LOGIN);
|
2014-09-08 13:06:32 +02:00
|
|
|
}
|
|
|
|
|
2014-09-09 19:38:16 +02:00
|
|
|
private function doFinalChecksOnUser($user)
|
2014-09-08 13:06:32 +02:00
|
|
|
{
|
2014-09-14 16:44:57 +02:00
|
|
|
if (!$user->isAccountConfirmed() and $this->config->security->needEmailActivationToRegister)
|
|
|
|
throw new \DomainException('User didn\'t confirm account yet.');
|
2014-09-30 13:22:11 +02:00
|
|
|
|
|
|
|
if ($user->isBanned())
|
|
|
|
throw new \DomainException('Banned!');
|
2014-08-31 17:42:48 +02:00
|
|
|
}
|
2014-08-30 18:11:32 +02:00
|
|
|
}
|