PersistentLoginService_8php_source.html

 <?php


 namespace Elgg;


 use Elgg\Database\UsersRememberMeCookiesTable;

 use Elgg\Traits\TimeUsing;


 class PersistentLoginService {


     use TimeUsing;


     protected array $cookie_config;


     protected string $cookie_token;


     public $_callable_elgg_set_cookie = 'elgg_set_cookie';


     public function __construct(

         protected UsersRememberMeCookiesTable $cookie_table,

         protected \ElggSession $session,

         protected \Elgg\Security\Crypto $crypto,

         \Elgg\Config $config,

         \Elgg\Http\Request $request

     ) {

         $global_cookies_config = $config->getCookieConfig();


         $this->cookie_config = $global_cookies_config['remember_me'];

         $this->cookie_token = $request->cookies->get($this->cookie_config['name'], '');

     }


     public function makeLoginPersistent(\ElggUser $user): void {

         $token = $this->generateToken();

         $hash = $this->hashToken($token);


         $this->cookie_table->insertHash($user, $hash);

         $this->setCookie($token);

         $this->setSessionToken($token);

     }


     public function removePersistentLogin(): void {

         if ($this->cookie_token) {

             $client_hash = $this->hashToken($this->cookie_token);

             $this->cookie_table->deleteHash($client_hash);

         }


         $this->setCookie('');

         $this->setSessionToken('');

     }


     public function handlePasswordChange(\ElggUser $subject, ?\ElggUser $modifier = null): void {

         $this->cookie_table->deleteAllHashes($subject);

         if (!$modifier || ($modifier->guid !== $subject->guid) || !$this->cookie_token) {

             return;

         }


         $this->makeLoginPersistent($subject);

     }


     public function bootSession(): ?\ElggUser {

         if (!$this->cookie_token) {

             return null;

         }


         // is this token good?

         $user = $this->getUserFromToken($this->cookie_token);

         if ($user) {

             $this->setSessionToken($this->cookie_token);


             return $user;

         }


         $this->setCookie('');

         return null;

     }


     public function getUserFromToken(string $token): ?\ElggUser {

         if (empty($token)) {

             return null;

         }


         $hash = $this->hashToken($token);

         if (empty($hash)) {

             return null;

         }


         $user_row = $this->cookie_table->getRowFromHash($hash);

         if (empty($user_row)) {

             return null;

         }


         $user = get_user($user_row->guid);

         return ($user instanceof \ElggUser) ? $user : null;

     }


     public function updateTokenUsage(\ElggUser $user): ?bool {

         if (!$this->cookie_token) {

             return null;

         }


         // update the database record

         // not interested in number of updated rows, as an update in the same second won't update the row

         $this->cookie_table->updateHash($user, $this->hashToken($this->cookie_token));


         // also update the cookie lifetime client-side

         $this->setCookie($this->cookie_token);


         return true;

     }


     public function removeExpiredTokens($time): bool {

         $time = Values::normalizeTime($time);


         $expires = Values::normalizeTime($this->cookie_config['expire']);

         $diff = $time->diff($expires);


         $time->sub($diff);

         if ($time->getTimestamp() > time()) {

             return false;

         }


         return (bool) $this->cookie_table->deleteExpiredHashes($time->getTimestamp());

     }


     protected function hashToken(string $token): string {

         // note: with user passwords, you'd want legit password hashing, but since these are randomly

         // generated and long tokens, rainbow tables aren't any help.

         return md5($token);

     }


     protected function setCookie(string $token): void {

         $cookie = new \ElggCookie($this->cookie_config['name']);

         foreach (['expire', 'path', 'domain', 'secure', 'httpOnly'] as $key) {

             $cookie->$key = $this->cookie_config[strtolower($key)];

         }


         $cookie->value = $token;

         if (!$token) {

             $cookie->expire = $this->getCurrentTime('-30 days')->getTimestamp();

         }


         call_user_func($this->_callable_elgg_set_cookie, $cookie);

     }


     protected function setSessionToken(string $token): void {

         if ($token) {

             $this->session->set('code', $token);

         } else {

             $this->session->remove('code');

         }

     }


     protected function generateToken(): string {

         return 'z' . $this->crypto->getRandomString(31);

     }

 }

return
return[ 'admin/delete_admin_notices'=>['access'=> 'admin'], 'admin/menu/save'=>['access'=> 'admin'], 'admin/plugins/activate'=>['access'=> 'admin'], 'admin/plugins/activate_all'=>['access'=> 'admin'], 'admin/plugins/deactivate'=>['access'=> 'admin'], 'admin/plugins/deactivate_all'=>['access'=> 'admin'], 'admin/plugins/set_priority'=>['access'=> 'admin'], 'admin/security/security_txt'=>['access'=> 'admin'], 'admin/security/settings'=>['access'=> 'admin'], 'admin/security/regenerate_site_secret'=>['access'=> 'admin'], 'admin/site/cache/invalidate'=>['access'=> 'admin'], 'admin/site/flush_cache'=>['access'=> 'admin'], 'admin/site/icons'=>['access'=> 'admin'], 'admin/site/set_maintenance_mode'=>['access'=> 'admin'], 'admin/site/set_robots'=>['access'=> 'admin'], 'admin/site/theme'=>['access'=> 'admin'], 'admin/site/unlock_upgrade'=>['access'=> 'admin'], 'admin/site/settings'=>['access'=> 'admin'], 'admin/upgrade'=>['access'=> 'admin'], 'admin/upgrade/reset'=>['access'=> 'admin'], 'admin/user/ban'=>['access'=> 'admin'], 'admin/user/bulk/ban'=>['access'=> 'admin'], 'admin/user/bulk/delete'=>['access'=> 'admin'], 'admin/user/bulk/unban'=>['access'=> 'admin'], 'admin/user/bulk/validate'=>['access'=> 'admin'], 'admin/user/change_email'=>['access'=> 'admin'], 'admin/user/delete'=>['access'=> 'admin'], 'admin/user/login_as'=>['access'=> 'admin'], 'admin/user/logout_as'=>[], 'admin/user/makeadmin'=>['access'=> 'admin'], 'admin/user/resetpassword'=>['access'=> 'admin'], 'admin/user/removeadmin'=>['access'=> 'admin'], 'admin/user/unban'=>['access'=> 'admin'], 'admin/user/validate'=>['access'=> 'admin'], 'annotation/delete'=>[], 'avatar/upload'=>[], 'comment/save'=>[], 'diagnostics/download'=>['access'=> 'admin'], 'entity/chooserestoredestination'=>[], 'entity/delete'=>[], 'entity/mute'=>[], 'entity/restore'=>[], 'entity/subscribe'=>[], 'entity/trash'=>[], 'entity/unmute'=>[], 'entity/unsubscribe'=>[], 'login'=>['access'=> 'logged_out'], 'logout'=>[], 'notifications/mute'=>['access'=> 'public'], 'plugins/settings/remove'=>['access'=> 'admin'], 'plugins/settings/save'=>['access'=> 'admin'], 'plugins/usersettings/save'=>[], 'register'=>['access'=> 'logged_out', 'middleware'=>[\Elgg\Router\Middleware\RegistrationAllowedGatekeeper::class,],], 'river/delete'=>[], 'settings/notifications'=>[], 'settings/notifications/subscriptions'=>[], 'user/changepassword'=>['access'=> 'public'], 'user/requestnewpassword'=>['access'=> 'public'], 'useradd'=>['access'=> 'admin'], 'usersettings/save'=>[], 'widgets/add'=>[], 'widgets/delete'=>[], 'widgets/move'=>[], 'widgets/save'=>[],]
Definition: actions.php:73

$time
if(! $annotation instanceof ElggAnnotation) $time
Definition: time.php:20

$user
$user
Definition: ban.php:7

ElggCookie
Definition: ElggCookie.php:12

ElggSession
Elgg Session Management.
Definition: ElggSession.php:19

ElggUser
Definition: ElggUser.php:28

Elgg\Config
Definition: Config.php:141

Elgg\Database\UsersRememberMeCookiesTable
Manage the users_remember_me_cookies table.
Definition: UsersRememberMeCookiesTable.php:14

Elgg\PersistentLoginService
\Elgg\PersistentLoginService
Definition: PersistentLoginService.php:17

Elgg\PersistentLoginService\setCookie
setCookie(string $token)
Store the token in the client cookie (or remove the cookie)
Definition: PersistentLoginService.php:213

Elgg\PersistentLoginService\generateToken
generateToken()
Generate a random token (base 64 URL)
Definition: PersistentLoginService.php:250

Elgg\PersistentLoginService\getUserFromToken
getUserFromToken(string $token)
Get a user from a persistent cookie token.
Definition: PersistentLoginService.php:131

Elgg\PersistentLoginService\bootSession
bootSession()
Boot the persistent login session, possibly returning the user who should be silently logged in.
Definition: PersistentLoginService.php:107

Elgg\PersistentLoginService\setSessionToken
setSessionToken(string $token)
Store the token in the session (or remove it from the session)
Definition: PersistentLoginService.php:234

Elgg\PersistentLoginService\$cookie_token
string $cookie_token
Definition: PersistentLoginService.php:23

Elgg\PersistentLoginService\removePersistentLogin
removePersistentLogin()
Remove the persisted login token from client and server.
Definition: PersistentLoginService.php:74

Elgg\PersistentLoginService\makeLoginPersistent
makeLoginPersistent(\ElggUser $user)
Make the user's login persistent.
Definition: PersistentLoginService.php:60

Elgg\PersistentLoginService\updateTokenUsage
updateTokenUsage(\ElggUser $user)
Update the timestamp linked to a persistent cookie code, this indicates that the code was used recent...
Definition: PersistentLoginService.php:157

Elgg\PersistentLoginService\__construct
__construct(protected UsersRememberMeCookiesTable $cookie_table, protected \ElggSession $session, protected \Elgg\Security\Crypto $crypto, \Elgg\Config $config, \Elgg\Http\Request $request)
Constructor.
Definition: PersistentLoginService.php:40

Elgg\PersistentLoginService\hashToken
hashToken(string $token)
Create a hash from the token.
Definition: PersistentLoginService.php:200

Elgg\PersistentLoginService\removeExpiredTokens
removeExpiredTokens($time)
Remove all persistent codes from the database which have expired based on the cookie config.
Definition: PersistentLoginService.php:179

Elgg\PersistentLoginService\handlePasswordChange
handlePasswordChange(\ElggUser $subject, ?\ElggUser $modifier=null)
Handle a password change.
Definition: PersistentLoginService.php:92

Elgg\PersistentLoginService\$cookie_config
array $cookie_config
Definition: PersistentLoginService.php:21

Elgg\Request
Request container.
Definition: Request.php:12

Elgg\Values
Functions for use as event handlers or other situations where you need a globally accessible callable...
Definition: Values.php:13

$config
$config
Advanced site settings, debugging section.
Definition: debugging.php:6

$subject
$subject
HTML body of an email.
Definition: body.php:11

get_user
get_user(int $guid)
Elgg users Functions to manage multiple or single users in an Elgg install.
Definition: users.php:16

$request
$request
Definition: livesearch.php:12

$session
if(isset($_COOKIE['elggperm'])) $session
Definition: login_as.php:29

Elgg
Definition: ActionsService.php:3

$key
if($container instanceof ElggGroup && $container->guid !=elgg_get_page_owner_guid()) $key
Definition: summary.php:44

if
if(parse_url(elgg_get_site_url(), PHP_URL_PATH) !=='/') if(file_exists(elgg_get_root_path() . 'robots.txt'))
Set robots.txt.
Definition: robots.php:10

$token
$token
Definition: securitytoken.php:9

$expires
$expires
Definition: security_txt.php:19