Class: Auth


public    class Auth

User authentication component. This is the basic authentication component; you can use this class if you only need toallow/disallow access to a page. If you need groups and roles support see the classGroupAuth and the class RoleAuth documentation.

Auth

Author(s):	Julio César Carrascal Urquijo <jcesar@phreaker.net>
Version:	2.4 pl3
Direct known subclasses:	GroupAuth, RoleAuth

Public Method Summary

void Auth([ string $options ]): Constructor.
void startSession(): Initialize the session.
void forceLogin(): Force the user to identify him self.
void logout(): Delete all session information and logout the user.
void refreshInfo(): Updates the user's information from the database.

Private Method Summary

void _callback(int $action, [ string $message ]): Just calls the callback function and dies.
void _connect(): Connect to the database only if necesary.
array _findByUsername(string $username, string $password): Search the user in the database by his username and password.
array _findById(int $userId): Search the user in the database by his user_id field.
bool _checkSession(): Validates the current session.

Public Field Summary

array	$user	Holds user information.
boolean	$isIdentified	If the user has been identified
string	$cacheLevel	Wich cache level to use.
string	$dbdriver	Database driver. Example 'mysql', 'mssql', 'oci8'...
string	$hostname	Database hostname server.
string	$username	Database username
string	$password	Database password
string	$database	Database.

Private Field Summary

string	$_conn	Holds an ADOConnection instance.
array	$_options	This array hold database configuration and execution options.

Public Constant Summary

AUTH_INVALID_USER	»`-2`«	The username/password pair is invalid.
AUTH_EXPIRED	»`-3`«	The session has expired.
AUTH_ACCESS_DENIED	»`-4`«	You don't have access to this area.
AUTH_CACHE	»`2`«	Allow the browser to cache the page but proxys can't.
AUTH_NO_CACHE	»`1`«	Do not allow anyone to cache the page.

Private Constant Summary

AUTH_NEED_LOGIN »-1« Need a valid username/password pair.

Public Method Details

Auth


public    void Auth( [ string $options ] );

Constructor.

Parameters:

`string`	`$options`	`= >>null<<`
	=> val of configuration parameters.

Returns: void

startSession


public    void startSession(  );

Initialize the session. Use this method only if loggin in to the current page is optional but you willwant to have access to the user's information if he has already been identified.

Returns: void

forceLogin


public    void forceLogin(  );

Force the user to identify him self.

Returns: void

logout


public    void logout(  );

Delete all session information and logout the user.

Returns: void

refreshInfo


public    void refreshInfo(  );

Updates the user's information from the database. The user must be identified already. Usefull if you just updated the database andyou need to update your session variable.

Returns: void

Private Method Details

_callback


private    void _callback( int $action, [ string $message ] );

Just calls the callback function and dies.

Parameters:

`int`	`$action`
	action should the callback function take. Has to be one of AUTH_NEED_LOGIN, AUTH_INVALID_USER, AUTH_ACCESS_DENIED or AUTH_EXPIRED.
`string`	`$message`	`= >>''<<`
	to show to the user, optional.

Returns: void

_connect


private    void _connect(  );

Connect to the database only if necesary.

Returns: void

_findByUsername


private    array _findByUsername( string $username, string $password );

Search the user in the database by his username and password.

Parameters:

`string`	`$username`

`string`	`$password`

Returns: array
users information.

See Also: _findById()

_findById


private    array _findById( int $userId );

Search the user in the database by his user_id field.

Parameters:

`int`	`$userId`
	the user.

Returns: array
users information.

See Also: _findByUsername()

_checkSession


private    bool _checkSession(  );

Validates the current session.

Returns: bool

Public Field Details

$user


public   array $user

Holds user information.

$isIdentified


public   boolean $isIdentified

If the user has been identified

$cacheLevel


public   string $cacheLevel

Wich cache level to use.

$dbdriver


public   string $dbdriver

Database driver. Example 'mysql', 'mssql', 'oci8'...

$hostname


public   string $hostname

Database hostname server.

$username


public   string $username

Database username

$password


public   string $password

Database password

$database


public   string $database

Database.

Private Field Details

$_conn


private   string $_conn

Holds an ADOConnection instance.

$_options


private   array $_options

This array hold database configuration and execution options.

Public Constant Details

const AUTH_INVALID_USER


define( AUTH_INVALID_USER, »-2« );

The username/password pair is invalid.

const AUTH_EXPIRED


define( AUTH_EXPIRED, »-3« );

The session has expired.

const AUTH_ACCESS_DENIED


define( AUTH_ACCESS_DENIED, »-4« );

You don't have access to this area.

const AUTH_CACHE


define( AUTH_CACHE, »2« );

Allow the browser to cache the page but proxys can't.

const AUTH_NO_CACHE


define( AUTH_NO_CACHE, »1« );

Do not allow anyone to cache the page.

Private Constant Details

const AUTH_NEED_LOGIN


define( AUTH_NEED_LOGIN, »-1« );

Need a valid username/password pair.