sessions_8php_source.html

 <?php
 use Elgg\Di\InternalContainer;
 use Elgg\Exceptions\LoginException;
 use Elgg\SystemMessagesService;

 function elgg_get_session() {
     return _elgg_services()->session;
 }

 function elgg_get_logged_in_user_entity() {
     return _elgg_services()->session->getLoggedInUser();
 }

 function elgg_get_logged_in_user_guid() {
     return _elgg_services()->session->getLoggedInUserGuid();
 }

 function elgg_is_logged_in() {
     return _elgg_services()->session->isLoggedIn();
 }

 function elgg_is_admin_logged_in() {
     return _elgg_services()->session->isAdminLoggedIn();
 }

 function elgg_authenticate($username, $password) {
     $pam = new \ElggPAM('user');
     $credentials = ['username' => $username, 'password' => $password];
     $result = $pam->authenticate($credentials);
     if (!$result) {
         return $pam->getFailureMessage();
     }
     return true;
 }

 function pam_auth_userpass(array $credentials = []) {

     if (!isset($credentials['username']) || !isset($credentials['password'])) {
         return false;
     }

     return elgg_call(ELGG_SHOW_DISABLED_ENTITIES, function() use ($credentials) {
         $user = get_user_by_username($credentials['username']);
         if (!$user) {
             throw new LoginException(_elgg_services()->translator->translate('LoginException:UsernameFailure'));
         }

         $password_svc = _elgg_services()->passwords;
         $password = $credentials['password'];
         $hash = $user->password_hash;

         if (check_rate_limit_exceeded($user->guid)) {
             throw new LoginException(_elgg_services()->translator->translate('LoginException:AccountLocked'));
         }
         if (!$password_svc->verify($password, $hash)) {
             log_login_failure($user->guid);
             throw new LoginException(_elgg_services()->translator->translate('LoginException:PasswordFailure'));
         }

         if ($password_svc->needsRehash($hash)) {
             $password_svc->forcePasswordReset($user, $password);
         }

         return true;
     });
 }

 function log_login_failure($user_guid) {
     return elgg_call(ELGG_IGNORE_ACCESS | ELGG_SHOW_DISABLED_ENTITIES, function() use ($user_guid) {
         $user_guid = (int) $user_guid;
         $user = get_entity($user_guid);

         if (($user_guid) && ($user) && ($user instanceof \ElggUser)) {
             $fails = (int) $user->getPrivateSetting("login_failures");
             $fails++;

             $user->setPrivateSetting("login_failures", $fails);
             $user->setPrivateSetting("login_failure_$fails", time());

             return true;
         }

         return false;
     });
 }

 function reset_login_failure_count($user_guid) {
     return elgg_call(ELGG_IGNORE_ACCESS | ELGG_SHOW_DISABLED_ENTITIES, function() use ($user_guid) {
         $user_guid = (int) $user_guid;

         $user = get_entity($user_guid);

         if (($user_guid) && ($user) && ($user instanceof \ElggUser)) {
             $fails = (int) $user->getPrivateSetting("login_failures");

             if ($fails) {
                 for ($n = 1; $n <= $fails; $n++) {
                     $user->removePrivateSetting("login_failure_$n");
                 }

                 $user->removePrivateSetting("login_failures");

                 return true;
             }

             // nothing to reset
             return true;
         }

         return false;
     });
 }

 function check_rate_limit_exceeded($user_guid) {
     return elgg_call(ELGG_IGNORE_ACCESS | ELGG_SHOW_DISABLED_ENTITIES, function() use ($user_guid) {
         // 5 failures in 5 minutes causes temporary block on logins
         $limit = 5;
         $user_guid = (int) $user_guid;
         $user = get_entity($user_guid);

         if (($user_guid) && ($user) && ($user instanceof \ElggUser)) {
             $fails = (int) $user->getPrivateSetting("login_failures");
             if ($fails >= $limit) {
                 $cnt = 0;
                 $time = time();
                 for ($n = $fails; $n > 0; $n--) {
                     $f = $user->getPrivateSetting("login_failure_$n");
                     if ($f > $time - (60 * 5)) {
                         $cnt++;
                     }

                     if ($cnt == $limit) {
                         // Limit reached
                         return true;
                     }
                 }
             }
         }

         return false;
     });
 }

 function elgg_set_cookie(\ElggCookie $cookie) {
     return _elgg_services()->responseFactory->setCookie($cookie);
 }

 function login(\ElggUser $user, $persistent = false) {
     if ($user->isBanned()) {
         throw new LoginException(elgg_echo('LoginException:BannedUser'));
     }

     // give plugins a chance to reject the login of this user (no user in session!)
     if (!elgg_trigger_before_event('login', 'user', $user)) {
         throw new LoginException(elgg_echo('LoginException:Unknown'));
     }

     if (!$user->isEnabled()) {
         throw new LoginException(elgg_echo('LoginException:DisabledUser'));
     }

     // #5933: set logged in user early so code in login event will be able to
     // use elgg_get_logged_in_user_entity().
     $session = _elgg_services()->session;
     $session->setLoggedInUser($user);

     // re-register at least the core language file for users with language other than site default
     _elgg_services()->translator->registerTranslations(\Elgg\Project\Paths::elgg() . 'languages/');

     // if remember me checked, set cookie with token and store hash(token) for user
     if ($persistent) {
         _elgg_services()->persistentLogin->makeLoginPersistent($user);
     }

     // User's privilege has been elevated, so change the session id (prevents session fixation)
     $session->migrate();

     // check before updating last login to determine first login
     $first_login = empty($user->last_login);

     $user->setLastLogin();
     reset_login_failure_count($user->guid);

     elgg_trigger_after_event('login', 'user', $user);

     if ($first_login) {
         elgg_trigger_event('login:first', 'user', $user);
         $user->first_login = time();
     }

     return true;
 }

 function logout() {
     $session = _elgg_services()->session;
     $user = $session->getLoggedInUser();
     if (!$user) {
         return false;
     }

     if (!elgg_trigger_before_event('logout', 'user', $user)) {
         return false;
     }

     _elgg_services()->persistentLogin->removePersistentLogin();

     // pass along any messages into new session
     $old_msg = $session->get(SystemMessagesService::SESSION_KEY, []);
     $session->invalidate();
     $session->set(SystemMessagesService::SESSION_KEY, $old_msg);

     elgg_trigger_after_event('logout', 'user', $user);

     return true;
 }

 function _elgg_get_login_forward_url(\Elgg\Request $request, \ElggUser $user) {

     $session = elgg_get_session();
     if ($session->has('last_forward_from')) {
         $forward_url = $session->get('last_forward_from');
         $session->remove('last_forward_from');
         $forward_source = 'last_forward_from';
     } elseif ($request->getParam('returntoreferer')) {
         $forward_url = REFERER;
         $forward_source = 'return_to_referer';
     } else {
         // forward to main index page
         $forward_url = '';
         $forward_source = null;
     }

     $params = [
         'request' => $request,
         'user' => $user,
         'source' => $forward_source,
     ];

     return elgg_trigger_plugin_hook('login:forward', 'user', $params, $forward_url);

 }
elgg_call
elgg_call(int $flags, Closure $closure)
Calls a callable autowiring the arguments using public DI services and applying logic based on flags...
Definition: elgglib.php:731

$user_guid
$user_guid
Definition: login_as.php:10

elgg_is_logged_in
elgg_is_logged_in()
Returns whether or not the user is currently logged in.
Definition: sessions.php:45

$forward_url
if(!$entity->delete()) $forward_url
Definition: delete.php:30

$username
$username
Definition: delete.php:23

_elgg_get_login_forward_url
_elgg_get_login_forward_url(\Elgg\Request $request,\ElggUser $user)
Determine which URL the user should be forwarded to upon successful login.
Definition: sessions.php:332

$params
$params
Saves global plugin settings.
Definition: save.php:13

$result
$result
Definition: set_maintenance_mode.php:11

elgg_is_admin_logged_in
elgg_is_admin_logged_in()
Returns whether or not the viewer is currently logged in and an admin user.
Definition: sessions.php:54

Elgg\Exceptions\LoginException
Generic parent class for login exceptions.
Definition: LoginException.php:12

pam_auth_userpass
pam_auth_userpass(array $credentials=[])
Hook into the PAM system which accepts a username and password and attempts to authenticate it agains...
Definition: sessions.php:95

$request
$request
Definition: livesearch.php:11

elgg_get_session
elgg_get_session()
Gets Elgg&#39;s session object.
Definition: sessions.php:17

$time
if(!$annotation instanceof ElggAnnotation) $time
Definition: time.php:20

ElggUser\setLastLogin
setLastLogin()
Sets the last logon time of the user to right now.
Definition: ElggUser.php:237

reset_login_failure_count
reset_login_failure_count($user_guid)
Resets the fail login count for $user_guid.
Definition: sessions.php:160

elgg_echo
elgg_echo($message_key, array $args=[], $language="")
Elgg language module Functions to manage language and translations.
Definition: languages.php:18

elgg_trigger_before_event
elgg_trigger_before_event($event, $object_type, $object=null)
Trigger a "Before event" indicating a process is about to begin.
Definition: elgglib.php:211

check_rate_limit_exceeded
check_rate_limit_exceeded($user_guid)
Checks if the rate limit of failed logins has been exceeded for $user_guid.
Definition: sessions.php:194

get_user_by_username
get_user_by_username($username)
Get user by username.
Definition: users.php:41

ELGG_IGNORE_ACCESS
const ELGG_IGNORE_ACCESS
elgg_call() flags
Definition: constants.php:146

Elgg
Definition: ActionsService.php:3

InternalContainer

$password
if(!$user||!$user->canEdit()) $password
Definition: resetpassword.php:21

ELGG_SHOW_DISABLED_ENTITIES
const ELGG_SHOW_DISABLED_ENTITIES
Definition: constants.php:148

ElggCookie
Definition: ElggCookie.php:12

$user
$user
Definition: ban.php:7

elgg_trigger_plugin_hook
elgg_trigger_plugin_hook($hook, $type, $params=null, $returnvalue=null)
Definition: elgglib.php:380

ElggEntity\isEnabled
isEnabled()
Is this entity enabled?
Definition: ElggEntity.php:1760

elgg_set_cookie
elgg_set_cookie(\ElggCookie $cookie)
Set a cookie, but allow plugins to customize it first.
Definition: sessions.php:233

logout
logout()
Log the current user out.
Definition: sessions.php:300

$session
if(isset($_COOKIE['elggperm'])) $session
Definition: login_as.php:28

REFERER
const REFERER
Definition: constants.php:52

elgg_authenticate
elgg_authenticate($username, $password)
Perform user authentication with a given username and password.
Definition: sessions.php:73

elseif
if($item instanceof\ElggEntity) elseif($item instanceof\ElggRiverItem) elseif($item instanceof ElggRelationship) elseif(is_callable([$item, 'getType']))
Definition: item.php:48

login
login(\ElggUser $user, $persistent=false)
Logs in a specified .
Definition: sessions.php:249

_elgg_services
_elgg_services()
Get the global service provider.
Definition: elgglib.php:777

$persistent
$persistent
Definition: login_as.php:21

elgg_trigger_after_event
elgg_trigger_after_event($event, $object_type, $object=null)
Trigger an "After event" indicating a process has finished.
Definition: elgglib.php:230

elgg_get_logged_in_user_entity
elgg_get_logged_in_user_entity()
Return the current logged in user, or null if no user is logged in.
Definition: sessions.php:26

ElggUser\isBanned
isBanned()
Is this user banned or not?
Definition: ElggUser.php:175

ElggUser

SystemMessagesService

elgg_trigger_event
elgg_trigger_event($event, $object_type, $object=null)
Definition: elgglib.php:190

$limit
$limit
Definition: comments.php:25

LoginException
Login as the specified user.

log_login_failure
log_login_failure($user_guid)
Log a failed login for $user_guid.
Definition: sessions.php:134

elgg_get_logged_in_user_guid
elgg_get_logged_in_user_guid()
Return the current logged in user by guid.
Definition: sessions.php:36

elgg
var elgg
Definition: elgglib.js:4

get_entity
get_entity($guid)
Loads and returns an entity object from a guid.
Definition: entities.php:69