ben/sihnon-php-lib
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit of Session/Authentication code

Browse Source 
Plugin architecture with single Database-backed implementation.
This commit is contained in:
Ben Roberts
2011-12-19 12:13:14 +00:00
parent 5b72a8a206
commit d92cc576d7
16 changed files with 507 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

83
source/lib/SihnonFramework/Auth/Plugin/Database.class.php Normal file
View File

@@ -0,0 +1,83 @@
<?php
class SihnonFramework_Auth_Plugin_Database
extends Sihnon_PluginBase
implements Sihnon_Auth_IPlugin,
Sihnon_Auth_IUpdateable,
Sihnon_Auth_IFinelyPermissionable {
protected $config;
protected $database;
protected function __construct($config) {
$this->config = $config;
$this->database = SihnonFramework_Main::instance()->database();
}
/*
* IPlugin methods
*/
public static function create(SihnonFramework_Config $config) {
return new self($config);
}
public function userExists($username) {
return Sihnon_Auth_Plugin_Database_User::exists($username);
}
public function listUsers() {
return Sihnon_Auth_Plugin_Database_User::all();
}
public function authenticate($username, $password) {
$user = Sihnon_Auth_Plugin_Database_User::from('username', $username);
if ( ! $user->checkPassword($password)) {
throw new Sihnon_Exception_IncorrectPassword();
}
return $user;
}
public function authenticateSession($username) {
return Sihnon_Auth_Plugin_Database_User::from('username', $username);
}
/*
* IUpdateable methods
*/
public function addUser($username, $password) {
return Sihnon_Auth_Plugin_Database_User::add($username, $password);
}
public function removeUser(Sihnon_Auth_IUser $user) {
$user->delete();
}
public function changePassword(Sihnon_Auth_IUser $user, $new_password) {
$user->changePassword($new_password);
}
/*
* IPermissionable methods
*/
public function isAdministrator(Sihnon_Auth_IUser $user) {
// As this class supports fine-grained permissions, map the isAdministrator function to the Superadmin privilege
// to fallback for badly written applications
return $user->hasPermission(Sihnon_Auth_Plugin_Database_Permission::PERM_Administrator);
}
/*
* IFinelyPermissionable methods
*/
public function hasPermission(Sihnon_Auth_IUser $user, $permission) {
return new $user->hasPermission($permission);
}
}
?>

12
source/lib/SihnonFramework/Auth/Plugin/Database/Group.class.php Normal file
View File

@@ -0,0 +1,12 @@
<?php
class SihnonFramework_Auth_Plugin_Database_Group extends Sihnon_DatabaseObject {
protected static $table = 'group';
protected $_db_id;
protected $_db_name;
protected $_db_description;
}

13
source/lib/SihnonFramework/Auth/Plugin/Database/GroupPermission.class.php Normal file
View File

@@ -0,0 +1,13 @@
<?php
class SihnonFramework_Auth_Plugin_Database_GroupPermission extends Sihnon_DatabaseObject {
protected static $table = 'grouppermission';
protected $_db_id;
protected $_db_group;
protected $_db_permission;
protected $_db_added;
}

20
source/lib/SihnonFramework/Auth/Plugin/Database/Permission.class.php Normal file
View File

@@ -0,0 +1,20 @@
<?php
class SihnonFramework_Auth_Plugin_Database_Permission extends Sihnon_DatabaseObject {
/*
* Built-in permissions
*/
// The Administrator permission always exists, and is always offers the most functionality
// This maps to the isAdministrator method for coarse-grained permissions.
const PERM_Administrator = 1;
protected static $table = 'permission';
protected $_db_id;
protected $_db_name;
protected $_db_description;
}

74
source/lib/SihnonFramework/Auth/Plugin/Database/User.class.php Normal file
View File

@@ -0,0 +1,74 @@
<?php
class SihnonFramework_Auth_Plugin_Database_User extends Sihnon_DatabaseObject implements Sihnon_Auth_IUser {
protected static $table = 'user';
protected $_db_id;
protected $_db_username;
protected $_db_password;
protected $_db_fullname;
protected $_db_email;
protected $_db_last_login;
protected $_db_last_password_change;
protected $groups = null;
protected $permissions = null;
public static function exists($username) {
return static::exists('username', $username);
}
public static function add($username, $password) {
$user = new self();
$user->username = $username;
$user->password = sha1($password);
$user->last_password_change = time();
$user->create();
return $user;
}
public function username() {
return $this->username;
}
public function checkPassword($password) {
return ($this->password == sha1($password));
}
public function changePassword($new_password) {
$this->password = sha1($new_password);
$this->save();
}
public function groups($ignore_cache = false) {
if ($this->groups === null || $ignore_cache) {
$this->groups = Sihnon_Auth_Plugin_Database_Group::all_for('user', $this->id, 'groups_by_user');
}
return $this->groups;
}
public function permissions($ignore_cache = false) {
if ($this->permissions === null || $ignore_cache) {
$this->permissions = Sihnon_Auth_Plugin_Database_Permission::all_for('user', $this->id, 'permissions_by_user');
}
return $this->permissions;
}
public function hasPermission($permission) {
$permissions = $this->permissions();
foreach ($permissions as $has_permission) {
if ($permission == $has_permission->id) {
return true;
}
}
return false;
}
}
?>

13
source/lib/SihnonFramework/Auth/Plugin/Database/UserGroup.class.php Normal file
View File

@@ -0,0 +1,13 @@
<?php
class SihnonFramework_Auth_Plugin_Database_UserGroup extends Sihnon_DatabaseObject {
protected static $table = 'uergroup';
protected $_db_id;
protected $_db_user;
protected $_db_group;
protected $_db_added;
}