ComunicAPI/classes/user.php

199 lines
5.4 KiB
PHP
Raw Normal View History

2017-05-17 12:43:12 +00:00
<?php
/**
* Main user class
*
* @author Pierre HUBER
*/
class User{
/**
* Try to login user with returning a service token
*
* @param String $email The e-mail address of the user
* @param String $password The password of the user
* @param String $serviceID The ID of the service
* @return String Token if success, false if fails
*/
public function generateUserLoginTokens($email, $password, $serviceID){
//Try to find user ID in the database
$conditions = "WHERE mail = ? AND password = ?";
$values = array(
$email,
$this->cryptPassword($password)
);
$userInfos = CS::get()->db->select("utilisateurs", $conditions, $values);
//Check if there is anything
if(count($userInfos) == 0)
return false; //Not any account was found
//Extract first value ID
$userID = $userInfos[0]['ID'];
//Check if any other token already exists
$existingTokens = $this->getUserLoginTokenByIDs($userID, $serviceID, CS::get()->db);
if(is_array($existingTokens)){
//Return result
return $existingTokens;
}
//Generate random tokens
$token1 = random_str(75);
$token2 = random_str(75);
//Insert token in the database
$tableName = "API_userLoginToken";
$insertValues = array(
"ID_utilisateurs" => $userID,
"ID_API_ServicesToken" => $serviceID,
"token1" => $token1,
"token2" => $token2
);
if(!CS::get()->db->addLine($tableName, $insertValues))
return false; //Something went wrong
//We can return tokens
return array($token1, $token2);
}
/**
* Get token with the help of userID and serviceID
*
* @param Integer $userID The ID of the user
* @param Integer $serviceID The ID of the service
* @return False if it fails, or tokens if success
*/
2017-05-19 16:07:52 +00:00
public function getUserLoginTokenByIDs($userID, $serviceID){
2017-05-17 12:43:12 +00:00
//Prepare database request
$conditions = "WHERE ID_utilisateurs = ? AND ID_API_ServicesToken = ?";
$values = array(
$userID,
$serviceID
);
$tokenInfos = CS::get()->db->select("API_userLoginToken", $conditions, $values);
if(count($tokenInfos) == 0)
return false; //There is nobody at this address
else {
//Return tokens
$token1 = $tokenInfos[0]['token1'];
$token2 = $tokenInfos[0]['token2'];
return array($token1, $token2);
}
}
/**
* Delete token from given informations
*
2017-05-24 16:41:24 +00:00
* @param Integer $userID The ID of the user to delete
2017-05-17 12:43:12 +00:00
* @param String $serviceID The service ID
* @return Boolean False if it fails
*/
2017-05-24 16:41:24 +00:00
public function deleteUserLoginToken($userID, $serviceID){
2017-05-17 12:43:12 +00:00
//Prepare database request
2017-05-24 16:41:24 +00:00
$condition = "ID_utilisateurs = ? AND ID_API_ServicesToken = ?";
2017-05-17 12:43:12 +00:00
$values = array(
2017-05-24 16:41:24 +00:00
$userID,
2017-05-17 12:43:12 +00:00
$serviceID
);
//Try to perform request
if(!CS::get()->db->deleteEntry("API_userLoginToken", $condition, $values))
return false; //Something went wrong during the request
//Everything is ok
return true;
}
/**
2017-05-19 16:07:52 +00:00
* Get User ID from token
2017-05-17 12:43:12 +00:00
*
* @param Array $tokens The user login tokens
* @param String $serviceID The ID of the service
2017-05-19 16:07:52 +00:00
* @return Integer User ID (0 for a failure)
2017-05-17 12:43:12 +00:00
*/
2017-05-19 16:07:52 +00:00
public function getUserIDfromToken($serviceID, array $tokens){
2017-05-17 12:43:12 +00:00
//Check token number
if(count($tokens) != 2)
2017-05-19 16:07:52 +00:00
return 0;
2017-05-17 12:43:12 +00:00
//Prepare database request
2017-05-19 16:07:52 +00:00
$tablesName = "API_userLoginToken";
$conditions = "WHERE API_userLoginToken.ID_API_ServicesToken = ? AND API_userLoginToken.token1 = ? AND API_userLoginToken.token2 = ?";
2017-05-17 12:43:12 +00:00
$conditionsValues = array(
$serviceID,
$tokens[0],
$tokens[1]
);
//Perform request
$userInfos = CS::get()->db->select($tablesName, $conditions, $conditionsValues);
2017-05-19 16:07:52 +00:00
//Check if result is correct or not
if(count($userInfos) == 0)
return 0; //No result
//Return ID
return $userInfos[0]["ID_utilisateurs"];
}
/**
* Get User Infos
*
* @param Integer $userID The user ID
* @return Array The result of the function (user informations) (empty one if it fails)
*/
2017-05-25 13:16:34 +00:00
public function getUserInfos($userID) : array {
2017-05-19 16:07:52 +00:00
//Prepare database request
$tablesName = "utilisateurs";
$conditions = "WHERE utilisateurs.ID = ?";
$conditionsValues = array(
$userID*1,
);
//Perform request
$userInfos = CS::get()->db->select($tablesName, $conditions, $conditionsValues);
2017-05-17 12:43:12 +00:00
//Check if result is correct or not
if(count($userInfos) == 0)
return array(); //No result
//Prepare return
$return = array();
2017-05-19 16:07:52 +00:00
$return['userID'] = $userInfos[0]['ID'];
2017-05-25 13:12:00 +00:00
$return['firstName'] = $userInfos[0]['prenom'];
$return['lastName'] = $userInfos[0]['nom'];
2017-05-17 12:43:12 +00:00
$return['accountCreationDate'] = $userInfos[0]['date_creation'];
$return['publicPage'] = $userInfos[0]['public'];
$return['openPage'] = $userInfos[0]['pageouverte'];
$return['allowPostFromFriendOnHisPage'] = $userInfos[0]['autoriser_post_amis'];
2017-05-19 16:07:52 +00:00
$return['noCommentOnHisPage'] = $userInfos[0]['bloquecommentaire'];
2017-05-17 12:43:12 +00:00
$return['virtualDirectory'] = $userInfos[0]['sous_repertoire'];
$return['personnalWebsite'] = $userInfos[0]['site_web'];
2017-05-19 16:07:52 +00:00
$return['isPublicFriendList'] = $userInfos[0]['liste_amis_publique'];
2017-05-25 13:16:34 +00:00
//Add account image url
2017-05-25 13:24:41 +00:00
$return['accountImage'] = path_account_image("0Reverse.png");
2017-05-25 13:16:34 +00:00
2017-05-19 16:07:52 +00:00
//Only the user may get its mail address
if(userID === $userID)
$return['mailAdress'] = $userInfos[0]['mail'];
2017-05-17 12:43:12 +00:00
//Return result
return $return;
}
/**
* Crypt user password
*
* @param String $userPassword The password to crypt
* @return String The encrypted password
*/
public function cryptPassword($userPassword){
return crypt(sha1($userPassword), sha1($userPassword));
}
}