szurubooru/src/Models/TokenModel.php

<?php
class TokenModel extends AbstractCrudModel
implements IModel
{
	public static function getTableName()
	{
		return 'user_token';
	}

	public static function save($token)
	{
		Database::transaction(function() use ($token)
		{
			self::forgeId($token);

			$bindings = [
				'user_id' => $token->userId,
				'token' => $token->token,
				'used' => $token->used,
				'expires' => $token->expires,
				];

			$stmt = new SqlUpdateStatement();
			$stmt->setTable('user_token');
			$stmt->setCriterion(new SqlEqualsFunctor('id', new SqlBinding($token->id)));

			foreach ($bindings as $key => $val)
				$stmt->setColumn($key, new SqlBinding($val));

			Database::exec($stmt);

		});
	}


	public static function findByToken($key, $throw = true)
	{
		if (empty($key))
			throw new SimpleNotFoundException('Invalid security token');

		$stmt = new SqlSelectStatement();
		$stmt->setTable('user_token');
		$stmt->setColumn('*');
		$stmt->setCriterion(new SqlEqualsFunctor('token', new SqlBinding($key)));

		$row = Database::fetchOne($stmt);
		if ($row)
			return self::convertRow($row);

		if ($throw)
			throw new SimpleNotFoundException('No user with such security token');
		return null;
	}


	public static function checkValidity($token)
	{
		if (empty($token))
			throw new SimpleException('Invalid security token');

		if ($token->used)
			throw new SimpleException('This token was already used');

		if ($token->expires !== null and time() > $token->expires)
			throw new SimpleException('This token has expired');
	}


	public static function forgeUnusedToken()
	{
		$tokenText = '';
		while (true)
		{
			$tokenText =  md5(mt_rand() . uniqid());
			$token = self::findByToken($tokenText, false);
			if (!$token)
				return $tokenText;
		}
	}
}
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`<?php`
			`class TokenModel extends AbstractCrudModel`
			`implements IModel`
			`{`
			`public static function getTableName()`
			`{`
			`return 'user_token';`
			`}`

			`public static function save($token)`
			`{`
			`Database::transaction(function() use ($token)`
			`{`
			`self::forgeId($token);`

			`$bindings = [`
			`'user_id' => $token->userId,`
			`'token' => $token->token,`
			`'used' => $token->used,`
			`'expires' => $token->expires,`
			`];`

SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00			`$stmt = new SqlUpdateStatement();`
			`$stmt->setTable('user_token');`
SQL operator refactor * Added few new operators that were left hardcoded * Changed "Operator" to "Functor" * Better hierarchy - less mess * Serialized SQL queries should contain fewer braces 2014-02-24 21:31:12 +01:00			`$stmt->setCriterion(new SqlEqualsFunctor('id', new SqlBinding($token->id)));`
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00
			`foreach ($bindings as $key => $val)`
			`$stmt->setColumn($key, new SqlBinding($val));`

			`Database::exec($stmt);`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00
			`});`
			`}`



			`public static function findByToken($key, $throw = true)`
			`{`
			`if (empty($key))`
Closed #72 2014-02-05 08:32:19 +01:00			`throw new SimpleNotFoundException('Invalid security token');`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00			`$stmt = new SqlSelectStatement();`
			`$stmt->setTable('user_token');`
			`$stmt->setColumn('*');`
SQL operator refactor * Added few new operators that were left hardcoded * Changed "Operator" to "Functor" * Better hierarchy - less mess * Serialized SQL queries should contain fewer braces 2014-02-24 21:31:12 +01:00			`$stmt->setCriterion(new SqlEqualsFunctor('token', new SqlBinding($key)));`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00			`$row = Database::fetchOne($stmt);`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`if ($row)`
			`return self::convertRow($row);`

			`if ($throw)`
Closed #72 2014-02-05 08:32:19 +01:00			`throw new SimpleNotFoundException('No user with such security token');`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`return null;`
			`}`



			`public static function checkValidity($token)`
			`{`
			`if (empty($token))`
			`throw new SimpleException('Invalid security token');`

			`if ($token->used)`
			`throw new SimpleException('This token was already used');`

			`if ($token->expires !== null and time() > $token->expires)`
			`throw new SimpleException('This token has expired');`
			`}`



			`public static function forgeUnusedToken()`
			`{`
			`$tokenText = '';`
			`while (true)`
			`{`
			`$tokenText = md5(mt_rand() . uniqid());`
			`$token = self::findByToken($tokenText, false);`
			`if (!$token)`
			`return $tokenText;`
			`}`
			`}`
			`}`