Handles user login and logout

2025-11-04 04:04:20 +00:00 · 2017-05-17 14:43:12 +02:00
parent 3b0272a196
commit 033da4e0e3
7 changed files with 409 additions and 3 deletions
--- a/RestControllers/userController.php
+++ b/RestControllers/userController.php
@@ -0,0 +1,104 @@
+<?php
+/**
+ * Main user controller file
+ *
+ * @author Pierre HUBERT
+ */
+
+//Enable access to exceptions handler
+use \Jacwright\RestServer\RestException;
+
+class userController
+{
+	/**
+	 * Try to connect user and return login tokens
+	 * 
+	 * @url POST /user/connectUSER
+	 */
+	public function connectUSER(){
+		 //Check variables sent in request
+		 if(!isset($_POST['userMail']) OR !isset($_POST['userPassword']))
+			throw new RestException(401, "Missing data !");
+		
+		//Retrieve database connection
+		$db = CS::get()->db;;
+
+		//Extract data
+		$userMail = $_POST["userMail"];
+		$userPassword = $_POST['userPassword'];
+
+		//Try to perform login
+		$loginTokens = CS::get()->user->generateUserLoginTokens($userMail, $userPassword, APIServiceID, $db);
+
+		if(!$loginTokens)
+			throw new RestException(401, "Invalid e-mail address / password !");
+
+		//Return result with tokens
+		return array(
+			"success" => "User logged in !",
+			"tokens" => array(
+				"token1" => $loginTokens[0],
+				"token2" => $loginTokens[1],
+			),
+		);
+	 }
+
+	 /**
+	  * Request token delete (= disconnectUSER)
+	  *
+	  * @url POST /user/disconnectUSER
+	  */
+	  public function disconnectUSER(){
+		//Check variables sent in request
+		if(!isset($_POST['token1']) OR !isset($_POST['token2']))
+			throw new RestException(401, "Missing data !");
+
+		//Prepare data
+		$tokens = array($_POST['token1'], $_POST['token2']);
+
+		//Try to delete token
+		if(!CS::get()->user->deleteUserLoginToken($tokens, APIServiceID))
+			throw new RestException(500, "Something went wrong while trying to logout user !");
+
+		//Everything is ok
+		return array("success" => "The user has been disconnected !");
+	  }
+
+	/**
+	 * Get current user infos using tokens
+	 *
+	 * @url POST /user/getCurrentUserInfos
+	 * @return array The result
+	 */
+	public function getCurrentUserInfosWithTokens() : array{
+		//Check variables sent in request (for login)
+		if(!isset($_POST['token1']) OR !isset($_POST['token2']))
+			throw new RestException(401, "Missing tokens !");
+
+		//Preparing data
+		$tokens = array($_POST['token1'], $_POST['token2']);
+
+		//Try to get user infos from token
+		$userInfos = CS::get()->user->getUserInfosFromToken($tokens, APIServiceID);
+		
+		//Check if response is empty
+		if(count($userInfos) == 0)
+			throw new RestException(401, "Couldn't get user data !");
+		
+		//Return result
+		return array($userInfos);
+	}
+
+	/**
+	 * Get current user infos using tokens
+	 *
+	 * @url POST /user/getCurrentUserID
+	 */
+	public function getCurrentUserIDUsingTokens(){
+		  //Get user infos
+		  $userInfos = $this->getCurrentUserInfosWithTokens();
+
+		  //Return userID
+		  return array("userID" => $userInfos[0]["userID"]);
+	}
+}