moving some laravel classes around, switching alias to reflect changes. added some factories. removed system ioc container config file.
This commit is contained in:
Taylor Otwell
195
laravel/auth.php
Normal file
195
laravel/auth.php
Normal file
@@ -0,0 +1,195 @@
|
||||
<?php namespace Laravel;
|
||||
|
||||
class Auth {
|
||||
|
||||
/**
|
||||
* The current user of the application.
|
||||
*
|
||||
* @var object
|
||||
*/
|
||||
protected static $user;
|
||||
|
||||
/**
|
||||
* The key used when storing the user ID in the session.
|
||||
*
|
||||
* @var string
|
||||
*/
|
||||
const user_key = 'laravel_user_id';
|
||||
|
||||
/**
|
||||
* The key used when setting the "remember me" cookie.
|
||||
*
|
||||
* @var string
|
||||
*/
|
||||
const remember_key = 'laravel_remember';
|
||||
|
||||
/**
|
||||
* Determine if the user of the application is not logged in.
|
||||
*
|
||||
* This method is the inverse of the "check" method.
|
||||
*
|
||||
* @return bool
|
||||
*/
|
||||
public static function guest()
|
||||
{
|
||||
return ! static::check();
|
||||
}
|
||||
|
||||
/**
|
||||
* Determine if the user of the application is logged in.
|
||||
*
|
||||
* @return bool
|
||||
*/
|
||||
public static function check()
|
||||
{
|
||||
return ! is_null(static::user());
|
||||
}
|
||||
|
||||
/**
|
||||
* Get the current user of the application.
|
||||
*
|
||||
* This method will call the "user" closure in the auth configuration file.
|
||||
* If the user is not authenticated, null will be returned by the methd.
|
||||
*
|
||||
* If no user exists in the session, the method will check for a "remember me"
|
||||
* cookie and attempt to login the user based on the value of that cookie.
|
||||
*
|
||||
* <code>
|
||||
* // Get the current user of the application
|
||||
* $user = Auth::user();
|
||||
*
|
||||
* // Access a property on the current user of the application
|
||||
* $email = Auth::user()->email;
|
||||
* </code>
|
||||
*
|
||||
* @return object
|
||||
*/
|
||||
public static function user()
|
||||
{
|
||||
if ( ! is_null(static::$user)) return static::$user;
|
||||
|
||||
$id = IoC::core('session')->get(Auth::user_key);
|
||||
|
||||
static::$user = call_user_func(Config::get('auth.user'), $id);
|
||||
|
||||
if (is_null(static::$user) and ! is_null($cookie = Cookie::get(Auth::remember_key)))
|
||||
{
|
||||
static::$user = static::recall($cookie);
|
||||
}
|
||||
|
||||
return static::$user;
|
||||
}
|
||||
|
||||
/**
|
||||
* Attempt to login a user based on a long-lived "remember me" cookie.
|
||||
*
|
||||
* We should be able to trust the cookie is valid, since all cookies
|
||||
* set by Laravel include a fingerprint hash to ensure the cookie
|
||||
* value is not changed on the client.
|
||||
*
|
||||
* @param string $cookie
|
||||
* @return mixed
|
||||
*/
|
||||
protected static function recall($cookie)
|
||||
{
|
||||
$cookie = explode('|', Crypter::decrypt($cookie));
|
||||
|
||||
if ( ! is_null($user = call_user_func(Config::get('auth.user'), $cookie[0])))
|
||||
{
|
||||
static::login($user);
|
||||
|
||||
return $user;
|
||||
}
|
||||
}
|
||||
|
||||
/**
|
||||
* Attempt to log a user into the application.
|
||||
*
|
||||
* If the credentials are valid, the user will be logged into the application
|
||||
* and their user ID will be stored in the session via the "login" method.
|
||||
*
|
||||
* The user may also be "remembered", which will keep the user logged into the
|
||||
* application for one year or until they logout. The user is remembered via
|
||||
* an encrypted cookie.
|
||||
*
|
||||
* @param string $username
|
||||
* @param string $password
|
||||
* @param bool $remember
|
||||
* @return bool
|
||||
*/
|
||||
public static function attempt($username, $password = null, $remember = false)
|
||||
{
|
||||
$config = Config::get('auth');
|
||||
|
||||
$user = call_user_func($config['attempt'], $username, $password, $config);
|
||||
|
||||
if ( ! is_null($user))
|
||||
{
|
||||
static::login($user, $remember);
|
||||
|
||||
return true;
|
||||
}
|
||||
|
||||
return false;
|
||||
}
|
||||
|
||||
/**
|
||||
* Log a user into the application.
|
||||
*
|
||||
* @param object $user
|
||||
* @param bool $remember
|
||||
* @return void
|
||||
*/
|
||||
public static function login($user, $remember = false)
|
||||
{
|
||||
static::$user = $user;
|
||||
|
||||
if ($remember) static::remember($user->id);
|
||||
|
||||
IoC::core('session')->put(Auth::user_key, $user->id);
|
||||
}
|
||||
|
||||
/**
|
||||
* Set a cookie so that users are "remembered" and don't need to login.
|
||||
*
|
||||
* @param string $id
|
||||
* @return void
|
||||
*/
|
||||
protected static function remember($id)
|
||||
{
|
||||
$cookie = Crypter::encrypt($id.'|'.Str::random(40));
|
||||
|
||||
// This method assumes the "remember me" cookie should have the same
|
||||
// configuration as the session cookie. Since this cookie, like the
|
||||
// session cookie, should be kept very secure, it's probably safe
|
||||
// to assume the settings are the same.
|
||||
$config = Config::get('session');
|
||||
|
||||
extract($config, EXTR_SKIP);
|
||||
|
||||
Cookie::forever(Auth::remember_key, $cookie, $path, $domain, $secure);
|
||||
}
|
||||
|
||||
/**
|
||||
* Log the current user out of the application.
|
||||
*
|
||||
* The "logout" closure in the authenciation configuration file will be
|
||||
* called. All authentication cookies will be deleted and the user ID
|
||||
* will be removed from the session.
|
||||
*
|
||||
* @return void
|
||||
*/
|
||||
public static function logout()
|
||||
{
|
||||
call_user_func(Config::get('auth.logout'), static::user());
|
||||
|
||||
static::$user = null;
|
||||
|
||||
Cookie::forget(Auth::user_key);
|
||||
|
||||
Cookie::forget(Auth::remember_key);
|
||||
|
||||
IoC::core('session')->forget(Auth::user_key);
|
||||
}
|
||||
|
||||
}
|
||||
Reference in New Issue
Block a user