grocy/controllers/LoginController.php

<?php

namespace Grocy\Controllers;

class LoginController extends BaseController
{
	protected $SessionCookieName;

	public function GetSessionCookieName()
	{
		return $this->SessionCookieName;
	}

	public function LoginPage(\Psr\Http\Message\ServerRequestInterface $request, \Psr\Http\Message\ResponseInterface $response, array $args)
	{
		return $this->renderPage($response, 'login');
	}

	public function Logout(\Psr\Http\Message\ServerRequestInterface $request, \Psr\Http\Message\ResponseInterface $response, array $args)
	{
		$this->getSessionService()->RemoveSession($_COOKIE[$this->SessionCookieName]);
		return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/'));
	}

	public function ProcessLogin(\Psr\Http\Message\ServerRequestInterface $request, \Psr\Http\Message\ResponseInterface $response, array $args)
	{
		$postParams = $this->GetParsedAndFilteredRequestBody($request);

		if (isset($postParams['username']) && isset($postParams['password']))
		{
			$user = $this->getDatabase()->users()->where('username', $postParams['username'])->fetch();
			$inputPassword = $postParams['password'];
			$stayLoggedInPermanently = $postParams['stay_logged_in'] == 'on';

			if ($user !== null && password_verify($inputPassword, $user->password))
			{
				$sessionKey = $this->getSessionService()->CreateSession($user->id, $stayLoggedInPermanently);
				setcookie($this->SessionCookieName, $sessionKey, PHP_INT_SIZE == 4 ? PHP_INT_MAX : PHP_INT_MAX >> 32);

				// Cookie expires never, but session validity is up to SessionService

				if (password_needs_rehash($user->password, PASSWORD_DEFAULT))
				{
					$user->update([
						'password' => password_hash($inputPassword, PASSWORD_DEFAULT)
					]);
				}

				return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/'));
			}
			else
			{
				return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/login?invalid=true'));
			}
		}
		else
		{
			return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/login?invalid=true'));
		}
	}

	public function __construct(\DI\Container $container, string $sessionCookieName)
	{
		parent::__construct($container);
		$this->SessionCookieName = $sessionCookieName;
	}
}
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`<?php`

			`namespace Grocy\Controllers;`

			`class LoginController extends BaseController`
			`{`
Applied PHP formatting rules 2020-08-31 20:40:31 +02:00			`protected $SessionCookieName;`

			`public function GetSessionCookieName()`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`{`
Applied PHP formatting rules 2020-08-31 20:40:31 +02:00			`return $this->SessionCookieName;`
			`}`

			`public function LoginPage(\Psr\Http\Message\ServerRequestInterface $request, \Psr\Http\Message\ResponseInterface $response, array $args)`
			`{`
			`return $this->renderPage($response, 'login');`
			`}`

			`public function Logout(\Psr\Http\Message\ServerRequestInterface $request, \Psr\Http\Message\ResponseInterface $response, array $args)`
			`{`
			`$this->getSessionService()->RemoveSession($_COOKIE[$this->SessionCookieName]);`
			`return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/'));`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`}`

Upgrade Slim Framework to v4 (closes #561) 2020-02-11 17:42:03 +01:00			`public function ProcessLogin(\Psr\Http\Message\ServerRequestInterface $request, \Psr\Http\Message\ResponseInterface $response, array $args)`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`{`
Sanitize user input on all API routes (references #996) 2020-10-14 22:49:29 +02:00			`$postParams = $this->GetParsedAndFilteredRequestBody($request);`
Applied PHP formatting rules 2020-08-31 20:40:31 +02:00
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`if (isset($postParams['username']) && isset($postParams['password']))`
			`{`
Convert services to singletons and use lazy loading to improve performance (#479) * use singletons to reduce need to recreate the same objects * unable to make the constructor private * comment out debug printing to log file * correct typo of treating self() as a var instead of a function * utilise Localisation service as a singleton * fix errent line that should have been commented * remove phpinfo * correct mistake in stock controller * try storing app in apcu * serialise inside the app closures * get timings for db-changed-time * get timings for db-changed-time * store localisation service in apcu * stor translations in apcu instead of localisation service (due to database connection) * correct syntax error * forgot to uncomment instance map * correct indentation and variable out of scope * more timings for app execution time * try apc caching for views * correct scope for Pot variable * remove additional fopen * correct timings for app build time * correct timings for app object build time * correct timings for app route build time * get timings for routing timings * get more in depth timings for routing loading * fix more in depth timings for routing loading * start investigating session auth middleware creation * start investigating session auth middleware creation * start investigating Login controller time * start investigating Login controller time * in depth look at Logincontroller timings * comment out debug printing * lazily obtain valus for page rendering * correct syntax error * correct scope of variable * correct visibiity of methds inherited from BaseController * missing use for Userfieldsservice * lazy loading of open api spec * lazy loading of users service * lazy loading of batteries service * lazy loading of services in controllers * lazy loading of services in services * correct mistake * fix userservice * fix userservice * fix userfieldservice * fix chores service * fix calendar service * remove Dockerfile used for development * Remove docker compose file used for development * Clean up app.php * remove last diff * Clean up base controller * Clean up controllers * lean up middleware * Clean up and tuen all services into singletons * remove debug from routes.php * remove acpu from localisation * Complete removal of acpu from localisation * fixes for things broken * More fixes following merge * Fix for start up bug. Re factoring singleton code had brroken due to scope of clas var. * fix bug where getUsersService is declared twice * bug fixes following merge * bug fixes following merge * bug fixes following merge * bug fixes following merge * bug fixes following merge * Fix all the not working things... * Deleted off-topic files * Deleted off-topic files Co-authored-by: Bernd Bestel <bernd@berrnd.de> 2020-03-01 23:47:47 +07:00			`$user = $this->getDatabase()->users()->where('username', $postParams['username'])->fetch();`
Replace the single user (defined in /data/config.php) with a multi user management thing 2018-07-24 19:31:43 +02:00			`$inputPassword = $postParams['password'];`
Added option to stay logged in permanently 2018-09-24 13:16:57 +02:00			`$stayLoggedInPermanently = $postParams['stay_logged_in'] == 'on';`
Replace the single user (defined in /data/config.php) with a multi user management thing 2018-07-24 19:31:43 +02:00
			`if ($user !== null && password_verify($inputPassword, $user->password))`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`{`
Convert services to singletons and use lazy loading to improve performance (#479) * use singletons to reduce need to recreate the same objects * unable to make the constructor private * comment out debug printing to log file * correct typo of treating self() as a var instead of a function * utilise Localisation service as a singleton * fix errent line that should have been commented * remove phpinfo * correct mistake in stock controller * try storing app in apcu * serialise inside the app closures * get timings for db-changed-time * get timings for db-changed-time * store localisation service in apcu * stor translations in apcu instead of localisation service (due to database connection) * correct syntax error * forgot to uncomment instance map * correct indentation and variable out of scope * more timings for app execution time * try apc caching for views * correct scope for Pot variable * remove additional fopen * correct timings for app build time * correct timings for app object build time * correct timings for app route build time * get timings for routing timings * get more in depth timings for routing loading * fix more in depth timings for routing loading * start investigating session auth middleware creation * start investigating session auth middleware creation * start investigating Login controller time * start investigating Login controller time * in depth look at Logincontroller timings * comment out debug printing * lazily obtain valus for page rendering * correct syntax error * correct scope of variable * correct visibiity of methds inherited from BaseController * missing use for Userfieldsservice * lazy loading of open api spec * lazy loading of users service * lazy loading of batteries service * lazy loading of services in controllers * lazy loading of services in services * correct mistake * fix userservice * fix userservice * fix userfieldservice * fix chores service * fix calendar service * remove Dockerfile used for development * Remove docker compose file used for development * Clean up app.php * remove last diff * Clean up base controller * Clean up controllers * lean up middleware * Clean up and tuen all services into singletons * remove debug from routes.php * remove acpu from localisation * Complete removal of acpu from localisation * fixes for things broken * More fixes following merge * Fix for start up bug. Re factoring singleton code had brroken due to scope of clas var. * fix bug where getUsersService is declared twice * bug fixes following merge * bug fixes following merge * bug fixes following merge * bug fixes following merge * bug fixes following merge * Fix all the not working things... * Deleted off-topic files * Deleted off-topic files Co-authored-by: Bernd Bestel <bernd@berrnd.de> 2020-03-01 23:47:47 +07:00			`$sessionKey = $this->getSessionService()->CreateSession($user->id, $stayLoggedInPermanently);`
Applied PHP formatting rules 2020-08-31 20:40:31 +02:00			`setcookie($this->SessionCookieName, $sessionKey, PHP_INT_SIZE == 4 ? PHP_INT_MAX : PHP_INT_MAX >> 32);`

Applied PHP-CS-Fixer rules 2020-09-01 21:29:47 +02:00			`// Cookie expires never, but session validity is up to SessionService`
Replace the single user (defined in /data/config.php) with a multi user management thing 2018-07-24 19:31:43 +02:00
			`if (password_needs_rehash($user->password, PASSWORD_DEFAULT))`
			`{`
Applied PHP formatting rules 2020-08-31 20:40:31 +02:00			`$user->update([`
Replace the single user (defined in /data/config.php) with a multi user management thing 2018-07-24 19:31:43 +02:00			`'password' => password_hash($inputPassword, PASSWORD_DEFAULT)`
Applied PHP formatting rules 2020-08-31 20:40:31 +02:00			`]);`
Replace the single user (defined in /data/config.php) with a multi user management thing 2018-07-24 19:31:43 +02:00			`}`
Reorganize project part 2 2018-04-11 19:49:35 +02:00
Upgrade Slim Framework to v4 (closes #561) 2020-02-11 17:42:03 +01:00			`return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/'));`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`}`
			`else`
			`{`
Upgrade Slim Framework to v4 (closes #561) 2020-02-11 17:42:03 +01:00			`return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/login?invalid=true'));`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`}`
			`}`
			`else`
			`{`
Upgrade Slim Framework to v4 (closes #561) 2020-02-11 17:42:03 +01:00			`return $response->withRedirect($this->AppContainer->get('UrlManager')->ConstructUrl('/login?invalid=true'));`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`}`
			`}`

Applied PHP formatting rules 2020-08-31 20:40:31 +02:00			`public function __construct(\DI\Container $container, string $sessionCookieName)`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`{`
Applied PHP formatting rules 2020-08-31 20:40:31 +02:00			`parent::__construct($container);`
			`$this->SessionCookieName = $sessionCookieName;`
Reorganize project part 2 2018-04-11 19:49:35 +02:00			`}`
			`}`