-
Notifications
You must be signed in to change notification settings - Fork 1
/
user.class.php
96 lines (88 loc) · 2.63 KB
/
user.class.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
<?php
/**
* @name BreedUser
* @type class
* @package Breed
* @author Rogier Spieker <rogier@konfirm.net>
*/
class BreedUser extends CoreUser
{
/**
* The 'salt' to use in order to hash the password
* @name _salt
* @type string
* @access protected
*/
protected $_salt;
/**
* The number of 'salting' passes
* @name _salting
* @type int
* @access protected
*/
protected $_salting;
public function __construct( $oParent )
{
parent::__construct( $oParent );
$this->setSalt($this->get('/Config/User/passwordsalt'));
$this->_salting = $this->get('/Config/User/passwordsalting', 3);
}
public function setSalt($salt)
{
$this->_salt = $salt;
}
/**
* Create a user data record
* @name create
* @type method
* @access public
* @param integer user id
* @param string email address
* @param string password [optional]
* @param bool agree [optional]
* @param bool opt in [optional]
* @param bool track [optional]
* @returns bool
* @syntax bool BreedUser->create( integer userid, string email [, string password [, bool agree [, bool optin [, bool track ] ] ] ] );
*/
public function create($email, $password=false, $userAgree=false, $userOptIn=false, $doTrack=true)
{
return parent::create($email, $this->_passwordHash($password), $userAgree, $userOptIn, $doTrack);
}
/**
* Authenticate a user based on its credentials
* @name login
* @type method
* @access public
* @param string email address
* @param string password
* @param bool autologin [default true]
* @returns string usertracker code (or bool false on error)
* @syntax string BreedUser->login( string email, string password [, bool autologin ] );
*/
public function login($email, $password, $useAutoLogin=true)
{
return parent::login($email, $this->_passwordHash($password), $useAutoLogin);
}
/**
* Create a hashed version of the password, so no actual passwords are stored in the database
* @name _passwordHash
* @type method
* @access protected
* @param string password
* @param string addition [default empty]
* @returns string passwordhash
* @syntax string BreedUser->_passwordHash( string password [, string addition ] );
*/
protected function _passwordHash($password, $addition=null)
{
if ( $password !== false )
{
if (empty($this->_salt))
$this->exception( "No proper salt defined for hashing passwords." );
for ($i = 0; $i < $this->_salting; ++$i)
$password = hash('sha256', $this->_salt . $password . $this->_salt . $addition);
}
return $password;
}
}