//This file is part of DeforaOS Web DaPortal // //This program is free software: you can redistribute it and/or modify //it under the terms of the GNU General Public License as published by //the Free Software Foundation, version 3 of the License. // //This program is distributed in the hope that it will be useful, //but WITHOUT ANY WARRANTY; without even the implied warranty of //MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the //GNU General Public License for more details. // //You should have received a copy of the GNU General Public License //along with this program. If not, see . //Auth abstract class Auth { //public //accessors //Auth::getCredentials public function getCredentials(Engine $engine) { if($this->credentials === FALSE) $this->credentials = new AuthCredentials(); return $this->credentials; } //Auth::getVariable public function getVariable(Engine $engine, $variable) { $credentials = $this->getCredentials($engine); $database = $engine->getDatabase(); $query = static::$query_variable_get; $args = array('user_id' => $credentials->getUserID(), 'variable' => $variable); if($args['user_id'] == 0) //variables are only allowed for authenticated users return FALSE; if(($res = $database->query($engine, $query, $args)) === FALSE || count($res) != 1) return FALSE; $res = $res->current(); return unserialize($res['value']); } //Auth::setIdempotent public function setIdempotent(Engine $engine, Request &$request, $idempotent) { $request->setIdempotent($idempotent); } //Auth::setCredentials public function setCredentials(Engine $engine, AuthCredentials $credentials = NULL) { if(is_null($credentials)) $credentials = new AuthCredentials(); $this->credentials = $credentials; return TRUE; } //Auth::setVariable public function setVariable(Engine $engine, $variable, $value) { $credentials = $this->getCredentials($engine); $database = $engine->getDatabase(); $query = static::$query_variable_set; $args = array('user_id' => $credentials->getUserID(), 'variable' => $variable); if($args['user_id'] == 0) //variables are only allowed for authenticated users return FALSE; if($value === FALSE) $query = static::$query_variable_remove; else if(($v = $this->getVariable($engine, $variable)) === FALSE) { //this variable is not in the database $query = static::$query_variable_add; $args['value'] = serialize($value); } else if($v != $value) //update the variable in the database $args['value'] = serialize($value); else //no need to issue any query return TRUE; return ($database->query($engine, $query, $args) !== FALSE) ? TRUE : FALSE; } //static //Auth::attachDefault public static function attachDefault(Engine $engine) { global $config; $ret = FALSE; $priority = 0; if(($name = $config->get('auth', 'backend')) !== FALSE) { $name .= 'Auth'; $ret = new $name(); $engine->log(LOG_DEBUG, 'Attaching '.get_class($ret) .' (default)'); $ret->attach($engine); return $ret; } if(($dir = opendir('auth')) === FALSE) return FALSE; while(($de = readdir($dir)) !== FALSE) { if(substr($de, -4) != '.php') continue; $name = substr($de, 0, -4).'Auth'; $auth = new $name(); if(($p = $auth->match($engine)) <= $priority) continue; $ret = $auth; $priority = $p; } closedir($dir); if($ret !== FALSE) { $engine->log(LOG_DEBUG, 'Attaching '.get_class($ret) .' with priority '.$priority); $ret->attach($engine); } return $ret; } //protected //properties protected $credentials = FALSE; //queries static protected $query_variable_add = 'INSERT INTO daportal_auth_variable (user_id, variable, value) VALUES (:user_id, :variable, :value)'; static protected $query_variable_get = 'SELECT value FROM daportal_auth_variable WHERE user_id=:user_id AND variable=:variable'; static protected $query_variable_remove = 'DELETE FROM daportal_auth_variable WHERE user_id=:user_id AND variable=:variable'; static protected $query_variable_set = 'UPDATE daportal_auth_variable SET value=:value WHERE user_id=:user_id AND variable=:variable'; //methods //virtual abstract protected function match(Engine $engine); abstract protected function attach(Engine $engine); } ?>