UsersManager.php

浏览该文件的文档。

<?php
// FleaPHP Framework
//
// Copyright (c) 2005 - 2008 QeeYuan China Inc. (http://www.qeeyuan.com)
//
// 许可协议，请查看源代码中附带的 LICENSE.txt 文件，
// 或者访问 http://www.fleaphp.org/ 获得详细信息。

// {{{ constants
define('PWD_MD5',       1);
define('PWD_CRYPT',     2);
define('PWD_CLEARTEXT', 3);
define('PWD_SHA1',      4);
define('PWD_SHA2',      5);
// }}}

// {{{ includes
FLEA::loadClass('FLEA_Db_TableDataGateway');
// }}}

class FLEA_Rbac_UsersManager extends FLEA_Db_TableDataGateway
{
    var $primaryKey = 'user_id';

    var $tableName = 'users';

    var $usernameField = 'username';

    var $emailField = 'email';

    var $passwordField = 'password';

    var $rolesField = 'roles';

    var $encodeMethod = PWD_CRYPT;

    var $autoValidating = true;

    var $functionFields = array(
        'registerIpField' => null,
        'lastLoginField' => null,
        'lastLoginIpField' => null,
        'loginCountField' => null,
        'isLockedField' => null,
    );

    function FLEA_Rbac_UsersManager()
    {
        parent::FLEA_Db_TableDataGateway();
        $mn = strtoupper($this->emailField);
        if (isset($this->meta[$mn])) {
            $this->meta[$mn]['complexType'] = 'EMAIL';
        }
    }

    function findByUserId($id, $fields = '*')
    {
        return $this->findByField($this->primaryKey, $id, null, $fields);
    }

    function findByUsername($username, $fields = '*')
    {
        return $this->findByField($this->usernameField, $username, null, $fields);
    }

    function findByEmail($email, $fields = '*')
    {
        return $this->findByField($this->emailField, $email, null, $fields);
    }

    function existsUserId($id)
    {
        return $this->findCount(array($this->primaryKey => $id)) > 0;
    }

    function existsUsername($username)
    {
        return $this->findCount(array($this->usernameField => $username)) > 0;
    }

    function existsEmail($email)
    {
        return $this->findCount(array($this->emailField => $email)) > 0;
    }

    function create(& $row)
    {
        if (isset($this->functionFields['registerIpField'])
            && $this->functionFields['registerIpField'] != '')
        {
            $row[$this->functionFields['registerIpField']] = isset($_SERVER['REMOTE_ADDR']) ? $_SERVER['REMOTE_ADDR'] : '127.0.0.1';
        }
        return parent::create($row);
    }

    function validateUser($username, $password, $returnUserdata = false)
    {
        if ($returnUserdata) {
            $user = $this->findByField($this->usernameField, $username);
        } else {
            $fields = array($this->primaryKey, $this->passwordField);
            if (isset($this->functionFields['loginCountField'])
                && $this->functionFields['loginCountField'] != '')
            {
                $fields[] = $this->functionFields['loginCountField'];
            }
            if (isset($this->functionFields['isLockedField'])
                && $this->functionFields['isLockedField'] != '')
            {
                $fields[] = $this->functionFields['isLockedField'];
            }
            $user = $this->findByField($this->usernameField, $username, null, $fields);
        }
        if (!$user) { return false; }
        if (isset($this->functionFields['isLockedField'])
            && $this->functionFields['isLockedField'] != '')
        {
            if ($user[$this->functionFields['isLockedField']]) {
                return false;
            }
        }
        if (!$this->checkPassword($password, $user[$this->passwordField])) {
            return false;
        }

        $update = array();

        if (isset($this->functionFields['lastLoginField'])
            && $this->functionFields['lastLoginField'] != '')
        {
            $update[$this->functionFields['lastLoginField']] = time();
        }

        if (isset($this->functionFields['lastLoginIpField'])
            && $this->functionFields['lastLoginIpField'] != '')
        {
            $update[$this->functionFields['lastLoginIpField']] = isset($_SERVER['REMOTE_ADDR']) ? $_SERVER['REMOTE_ADDR'] : '127.0.0.1';
        }

        if (isset($this->functionFields['loginCountField'])
            && $this->functionFields['loginCountField'] != '')
        {
            $update[$this->functionFields['loginCountField']] = $user[$this->functionFields['loginCountField']] + 1;
        }

        if (!empty($update)) {
            $update[$this->primaryKey] = $user[$this->primaryKey];
            $this->update($update);
        }

        if ($returnUserdata) { return $user; }
        return true;
    }

    function changePassword($username, $oldPassword, $newPassword)
    {
        $user = $this->findByField(
            $this->usernameField, $username, null,
            array($this->primaryKey, $this->passwordField)
        );
        if (!$user) { return false; }
        if (!$this->checkPassword($oldPassword, $user[$this->passwordField])) {
            return false;
        }

        $user[$this->passwordField] = $newPassword;
        return parent::update($user);
    }

    function updatePassword($username, $newPassword)
    {
        $user = $this->findByField($this->usernameField, $username, null, $this->primaryKey);
        if (!$user) { return false; }

        $user[$this->passwordField] = $newPassword;
        return parent::update($user);
    }

    function updatePasswordById($userid, $newPassword)
    {
        $user = $this->findByField($this->primaryKey, $userid, null, $this->primaryKey);
        if (!$user) { return false; }

        $user[$this->passwordField] = $newPassword;
        return parent::update($user);
    }

    function checkPassword($cleartext, $cryptograph)
    {
        switch ($this->encodeMethod) {
        case PWD_MD5:
            return (md5($cleartext) == rtrim($cryptograph));
        case PWD_CRYPT:
            return (crypt($cleartext, $cryptograph) == rtrim($cryptograph));
        case PWD_CLEARTEXT:
            return ($cleartext == rtrim($cryptograph));
        case PWD_SHA1:
            return (sha1($cleartext) == rtrim($cryptograph));
        case PWD_SHA2:
            return (hash('sha512', $cleartext) == rtrim($cryptograph));

        default:
            return false;
        }
    }

    function encodePassword($cleartext)
    {
        switch ($this->encodeMethod) {
        case PWD_MD5:
            return md5($cleartext);
        case PWD_CRYPT:
            return crypt($cleartext);
        case PWD_CLEARTEXT:
            return $cleartext;
        case PWD_SHA1:
            return sha1($cleartext);
        case PWD_SHA2:
            return hash('sha512', $cleartext);

        default:
            return false;
        }
    }

    function fetchRoles(& $user, $rolenameField = 'rolename')
    {
        if (!isset($user[$this->rolesField]) ||
            !is_array($user[$this->rolesField])) {
            return array();
        }
        $roles = array();
        foreach ($user[$this->rolesField] as $role) {
            if (!is_array($role)) {
                return array($user[$this->rolesField][$rolenameField]);
            }
            $roles[] = $role[$rolenameField];
        }
        return $roles;
    }

    function update(& $row)
    {
        unset($row[$this->passwordField]);
        return parent::update($row);
    }

    function _beforeUpdateDb(& $row)
    {
        $this->_encodeRecordPassword($row);
        return true;
    }

    function _beforeCreateDb(& $row)
    {
        $this->_encodeRecordPassword($row);
        return true;
    }

    function _encodeRecordPassword(& $row)
    {
        if (isset($row[$this->passwordField])) {
            $row[$this->passwordField] =
                $this->encodePassword($row[$this->passwordField]);
        }
    }
}

---