forked from nette/security
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathSimpleAuthenticator.php
More file actions
64 lines (52 loc) · 1.59 KB
/
Copy pathSimpleAuthenticator.php
File metadata and controls
64 lines (52 loc) · 1.59 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
<?php
/**
* This file is part of the Nette Framework (https://nette.org)
* Copyright (c) 2004 David Grudl (https://davidgrudl.com)
*/
declare(strict_types=1);
namespace Nette\Security;
use Nette;
/**
* Trivial implementation of Authenticator.
*/
class SimpleAuthenticator implements Authenticator
{
use Nette\SmartObject;
/**
* @param array $passwords list of pairs username => password
* @param array $roles list of pairs username => role[]
* @param array $data list of pairs username => mixed[]
*/
public function __construct(
private array $passwords,
private array $roles = [],
private array $data = [],
private ?Passwords $verifier = null,
) {
}
/**
* Performs an authentication against e.g. database.
* and returns IIdentity on success or throws AuthenticationException
* @throws AuthenticationException
*/
public function authenticate(string $username, string $password): IIdentity
{
foreach ($this->passwords as $name => $pass) {
if (strcasecmp($name, $username) === 0) {
if ($this->verifyPassword($password, $pass)) {
return new SimpleIdentity($name, $this->roles[$name] ?? null, $this->data[$name] ?? []);
} else {
throw new AuthenticationException('Invalid password.', self::INVALID_CREDENTIAL);
}
}
}
throw new AuthenticationException("User '$username' not found.", self::IDENTITY_NOT_FOUND);
}
protected function verifyPassword(string $password, string $passOrHash): bool
{
if (preg_match('~\$.{50,}~A', $passOrHash)) {
return $this->verifier->verify($password, $passOrHash);
}
return $password === $passOrHash;
}
}