|
| 1 | +<?php |
| 2 | +namespace Tqdev\PhpCrudApi\Middleware; |
| 3 | + |
| 4 | +use Psr\Http\Message\ResponseInterface; |
| 5 | +use Psr\Http\Message\ServerRequestInterface; |
| 6 | +use Psr\Http\Server\RequestHandlerInterface; |
| 7 | +use Tqdev\PhpCrudApi\Column\ReflectionService; |
| 8 | +use Tqdev\PhpCrudApi\Controller\Responder; |
| 9 | +use Tqdev\PhpCrudApi\Database\GenericDB; |
| 10 | +use Tqdev\PhpCrudApi\Middleware\Base\Middleware; |
| 11 | +use Tqdev\PhpCrudApi\Middleware\Router\Router; |
| 12 | +use Tqdev\PhpCrudApi\Record\Condition\ColumnCondition; |
| 13 | +use Tqdev\PhpCrudApi\Record\ErrorCode; |
| 14 | +use Tqdev\PhpCrudApi\RequestUtils; |
| 15 | + |
| 16 | +class DbAuthMiddleware extends Middleware |
| 17 | +{ |
| 18 | + private $reflection; |
| 19 | + private $db; |
| 20 | + |
| 21 | + public function __construct(Router $router, Responder $responder, array $properties, ReflectionService $reflection, GenericDB $db) |
| 22 | + { |
| 23 | + parent::__construct($router, $responder, $properties); |
| 24 | + $this->reflection = $reflection; |
| 25 | + $this->db = $db; |
| 26 | + } |
| 27 | + |
| 28 | + public function process(ServerRequestInterface $request, RequestHandlerInterface $next): ResponseInterface |
| 29 | + { |
| 30 | + if (session_status() == PHP_SESSION_NONE) { |
| 31 | + if (!headers_sent()) { |
| 32 | + session_start(); |
| 33 | + } |
| 34 | + } |
| 35 | + $path = RequestUtils::getPathSegment($request, 1); |
| 36 | + $method = $request->getMethod(); |
| 37 | + if ($method == 'POST' && $path == 'login') { |
| 38 | + $body = $request->getParsedBody(); |
| 39 | + $username = isset($body->username) ? $body->username : ''; |
| 40 | + $password = isset($body->password) ? $body->password : ''; |
| 41 | + $tableName = $this->getProperty('usersTable', 'users'); |
| 42 | + $table = $this->reflection->getTable($tableName); |
| 43 | + $usernameColumnName = $this->getProperty('usernameColumn', 'username'); |
| 44 | + $usernameColumn = $table->getColumn($usernameColumnName); |
| 45 | + $passwordColumnName = $this->getProperty('passwordColumn', 'password'); |
| 46 | + $passwordColumn = $table->getColumn($passwordColumnName); |
| 47 | + $condition = new ColumnCondition($usernameColumn, 'eq', $username); |
| 48 | + $columnNames = $table->getColumnNames(); |
| 49 | + $users = $this->db->selectAll($table, $columnNames, $condition, [], 0, -1); |
| 50 | + foreach ($users as $user) { |
| 51 | + if (password_verify($password, $user[$passwordColumnName]) == 1) { |
| 52 | + if (!headers_sent()) { |
| 53 | + session_regenerate_id(true); |
| 54 | + } |
| 55 | + unset($user[$passwordColumnName]); |
| 56 | + $_SESSION['user'] = $user; |
| 57 | + return $this->responder->success($user); |
| 58 | + } |
| 59 | + } |
| 60 | + return $this->responder->error(ErrorCode::AUTHENTICATION_FAILED, $username); |
| 61 | + } |
| 62 | + if ($method == 'POST' && $path == 'logout') { |
| 63 | + if (isset($_SESSION['user'])) { |
| 64 | + $user = $_SESSION['user']; |
| 65 | + unset($_SESSION['user']); |
| 66 | + session_destroy(); |
| 67 | + return $this->responder->success($user); |
| 68 | + } |
| 69 | + return $this->responder->error(ErrorCode::AUTHENTICATION_REQUIRED, ''); |
| 70 | + } |
| 71 | + if (!isset($_SESSION['user']) || !$_SESSION['user']) { |
| 72 | + $authenticationMode = $this->getProperty('mode', 'required'); |
| 73 | + if ($authenticationMode == 'required') { |
| 74 | + return $this->responder->error(ErrorCode::AUTHENTICATION_REQUIRED, ''); |
| 75 | + } |
| 76 | + } |
| 77 | + return $next->handle($request); |
| 78 | + } |
| 79 | +} |
0 commit comments