szurubooru/src/Models/TokenModel.php

<?php
use \Chibi\Sql as Sql;
use \Chibi\Database as Database;

class TokenModel extends AbstractCrudModel
{
	public static function getTableName()
	{
		return 'user_token';
	}

	public static function save($token)
	{
		$token->validate();

		Database::transaction(function() use ($token)
		{
			self::forgeId($token);

			$bindings = [
				'user_id' => $token->userId,
				'token' => $token->token,
				'used' => $token->used,
				'expires' => $token->expires,
				];

			$stmt = new Sql\UpdateStatement();
			$stmt->setTable('user_token');
			$stmt->setCriterion(new Sql\EqualsFunctor('id', new Sql\Binding($token->id)));

			foreach ($bindings as $key => $val)
				$stmt->setColumn($key, new Sql\Binding($val));

			Database::exec($stmt);
		});

		return $token;
	}

	public static function findByToken($key, $throw = true)
	{
		if (empty($key))
			throw new SimpleNotFoundException('Invalid security token');

		$stmt = new Sql\SelectStatement();
		$stmt->setTable('user_token');
		$stmt->setColumn('*');
		$stmt->setCriterion(new Sql\EqualsFunctor('token', new Sql\Binding($key)));

		$row = Database::fetchOne($stmt);
		if ($row)
			return self::convertRow($row);

		if ($throw)
			throw new SimpleNotFoundException('No user with such security token');
		return null;
	}

	public static function checkValidity($token)
	{
		if (empty($token))
			throw new SimpleException('Invalid security token');

		if ($token->used)
			throw new SimpleException('This token was already used');

		if ($token->expires !== null and time() > $token->expires)
			throw new SimpleException('This token has expired');
	}

	public static function forgeUnusedToken()
	{
		$tokenText = '';
		while (true)
		{
			$tokenText =  md5(mt_rand() . uniqid());
			$token = self::findByToken($tokenText, false);
			if (!$token)
				return $tokenText;
		}
	}
}
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`<?php`
Moved Sql and Database.php to remote project 2014-02-28 20:35:12 +01:00			`use \Chibi\Sql as Sql;`
			`use \Chibi\Database as Database;`

Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`class TokenModel extends AbstractCrudModel`
			`{`
			`public static function getTableName()`
			`{`
			`return 'user_token';`
			`}`

			`public static function save($token)`
			`{`
Moved validation to entities 2014-05-05 09:36:08 +02:00			`$token->validate();`

Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`Database::transaction(function() use ($token)`
			`{`
			`self::forgeId($token);`

			`$bindings = [`
			`'user_id' => $token->userId,`
			`'token' => $token->token,`
			`'used' => $token->used,`
			`'expires' => $token->expires,`
			`];`

Moved Sql and Database.php to remote project 2014-02-28 20:35:12 +01:00			`$stmt = new Sql\UpdateStatement();`
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00			`$stmt->setTable('user_token');`
Moved Sql and Database.php to remote project 2014-02-28 20:35:12 +01:00			`$stmt->setCriterion(new Sql\EqualsFunctor('id', new Sql\Binding($token->id)));`
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00
			`foreach ($bindings as $key => $val)`
Moved Sql and Database.php to remote project 2014-02-28 20:35:12 +01:00			`$stmt->setColumn($key, new Sql\Binding($val));`
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00
			`Database::exec($stmt);`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`});`
Added return values for models::save 2014-05-05 12:32:07 +02:00
			`return $token;`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`}`

			`public static function findByToken($key, $throw = true)`
			`{`
			`if (empty($key))`
Closed #72 2014-02-05 08:32:19 +01:00			`throw new SimpleNotFoundException('Invalid security token');`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00
Moved Sql and Database.php to remote project 2014-02-28 20:35:12 +01:00			`$stmt = new Sql\SelectStatement();`
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00			`$stmt->setTable('user_token');`
			`$stmt->setColumn('*');`
Moved Sql and Database.php to remote project 2014-02-28 20:35:12 +01:00			`$stmt->setCriterion(new Sql\EqualsFunctor('token', new Sql\Binding($key)));`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00
SQL overhaul: introducing tree-like queries Reason: until now, PostSearchService was using magic to get around the biggest limitation of SqlQuery.php: it didn't support arbitrary order of operations. You couldn't join with something and tell then to select something from it. Additionally, forging UPDATE queries was a joke. The new Sql* classes replace SqlQuery completely and address these issues. Using Sql* classes might be tedious and ugly at times, but it is necessary step to improve model layer maintainability. It is by no menas complete implementation of SQL grammar, but for current needs it's enough, and, what's most important, it is easily extensible. Additional changes: * Added sorting style aliases - fav_count - tag_count - comment_count * Sorting by multiple tokens in post search is now possible * Searching for disliked posts with "special:disliked" always yields results (even if user has disabled showing disliked posts by default) * More maintainable next/prev post support 2014-02-22 19:21:32 +01:00			`$row = Database::fetchOne($stmt);`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`if ($row)`
			`return self::convertRow($row);`

			`if ($throw)`
Closed #72 2014-02-05 08:32:19 +01:00			`throw new SimpleNotFoundException('No user with such security token');`
Models rewrite; removed RedBeanPHP; misc changes Pages load 1.5-2x faster Exception trace in JSON is now represented as an array Fixed pagination of default favorites page in user pages Fixed thumbnail size validation for non-square thumbnails 2013-12-18 15:10:53 +01:00			`return null;`
			`}`

			`public static function checkValidity($token)`
			`{`
			`if (empty($token))`
			`throw new SimpleException('Invalid security token');`

			`if ($token->used)`
			`throw new SimpleException('This token was already used');`

			`if ($token->expires !== null and time() > $token->expires)`
			`throw new SimpleException('This token has expired');`
			`}`

			`public static function forgeUnusedToken()`
			`{`
			`$tokenText = '';`
			`while (true)`
			`{`
			`$tokenText = md5(mt_rand() . uniqid());`
			`$token = self::findByToken($tokenText, false);`
			`if (!$token)`
			`return $tokenText;`
			`}`
			`}`
			`}`