d2/d05/DBLite_8php_source.html

<?php

/* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */


require_once 'Auth/Container.php';

require_once 'DB.php';


class Auth_Container_DBLite extends Auth_Container

{


    // {{{ properties


    var $options = array();


    var $db = null;

    var $dsn = '';


    var $activeUser = '';


    // }}}

    // {{{ Auth_Container_DBLite() [constructor]


    function Auth_Container_DBLite($dsn)

    {

        $this->options['table']       = 'auth';

        $this->options['usernamecol'] = 'username';

        $this->options['passwordcol'] = 'password';

        $this->options['dsn']         = '';

        $this->options['db_fields']   = '';

        $this->options['cryptType']   = 'md5';

        $this->options['db_options']  = array();

        $this->options['db_where']    = '';

        $this->options['auto_quote']  = true;


        if (is_array($dsn)) {

            $this->_parseOptions($dsn);

            if (empty($this->options['dsn'])) {

                PEAR::raiseError('No connection parameters specified!');

            }

        } else {

            $this->options['dsn'] = $dsn;

        }

    }


    // }}}

    // {{{ _connect()


    function _connect(&$dsn)

    {

        $this->log('Auth_Container_DBLite::_connect() called.', AUTH_LOG_DEBUG);

        if (is_string($dsn) || is_array($dsn)) {

            $this->db =& DB::connect($dsn, $this->options['db_options']);

        } elseif (is_subclass_of($dsn, "db_common")) {

            $this->db =& $dsn;

        } else {

            return PEAR::raiseError("Invalid dsn or db object given");

        }


        if (DB::isError($this->db) || PEAR::isError($this->db)) {

            return PEAR::raiseError($this->db->getMessage(), $this->db->getCode());

        } else {

            return true;

        }

    }


    // }}}

    // {{{ _prepare()


    function _prepare()

    {

        if (!DB::isConnection($this->db)) {

            $res = $this->_connect($this->options['dsn']);

            if (DB::isError($res) || PEAR::isError($res)) {

                return $res;

            }

        }

        if ($this->options['auto_quote'] && $this->db->dsn['phptype'] != 'sqlite') {

            if (strpos('.', $this->options['table']) === false) {

                $this->options['final_table'] = $this->db->quoteIdentifier($this->options['table']);

            } else {

                $t = explode('.', $this->options['table']);

                for ($i = 0, $count = count($t); $i < $count; $i++)

                    $t[$i] = $this->db->quoteIdentifier($t[$i]);

                $this->options['final_table'] = implode('.', $t);

            }

            $this->options['final_usernamecol'] = $this->db->quoteIdentifier($this->options['usernamecol']);

            $this->options['final_passwordcol'] = $this->db->quoteIdentifier($this->options['passwordcol']);

        } else {

            $this->options['final_table'] = $this->options['table'];

            $this->options['final_usernamecol'] = $this->options['usernamecol'];

            $this->options['final_passwordcol'] = $this->options['passwordcol'];

        }

        return true;

    }


    // }}}

    // {{{ _parseOptions()


    function _parseOptions($array)

    {

        foreach ($array as $key => $value) {

            if (isset($this->options[$key])) {

                $this->options[$key] = $value;

            }

        }

    }


    // }}}

    // {{{ _quoteDBFields()


    function _quoteDBFields()

    {

        if (isset($this->options['db_fields'])) {

            if (is_array($this->options['db_fields'])) {

                if ($this->options['auto_quote']) {

                    $fields = array();

                    foreach ($this->options['db_fields'] as $field) {

                        $fields[] = $this->db->quoteIdentifier($field);

                    }

                    return implode(', ', $fields);

                } else {

                    return implode(', ', $this->options['db_fields']);

                }

            } else {

                if (strlen($this->options['db_fields']) > 0) {

                    if ($this->options['auto_quote']) {

                        return $this->db->quoteIdentifier($this->options['db_fields']);

                    } else {

                        $this->options['db_fields'];

                    }

                }

            }

        }


        return '';

    }


    // }}}

    // {{{ fetchData()


    function fetchData($username, $password)

    {

        $this->log('Auth_Container_DBLite::fetchData() called.', AUTH_LOG_DEBUG);

        // Prepare for a database query

        $err = $this->_prepare();

        if ($err !== true) {

            return PEAR::raiseError($err->getMessage(), $err->getCode());

        }


        // Find if db_fields contains a *, if so assume all col are selected

        if (is_string($this->options['db_fields'])

            && strstr($this->options['db_fields'], '*')) {

            $sql_from = "*";

        } else {

            $sql_from = $this->options['final_usernamecol'].

                ", ".$this->options['final_passwordcol'];


            if (strlen($fields = $this->_quoteDBFields()) > 0) {

                $sql_from .= ', '.$fields;

            }

        }


        $query = "SELECT ".$sql_from.

                " FROM ".$this->options['final_table'].

                " WHERE ".$this->options['final_usernamecol']." = ".$this->db->quoteSmart($username);


        // check if there is an optional parameter db_where

        if ($this->options['db_where'] != '') {

            // there is one, so add it to the query

            $query .= " AND ".$this->options['db_where'];

        }


        $this->log('Running SQL against DB: '.$query, AUTH_LOG_DEBUG);


        $res = $this->db->getRow($query, null, DB_FETCHMODE_ASSOC);


        if (DB::isError($res)) {

            return PEAR::raiseError($res->getMessage(), $res->getCode());

        }

        if (!is_array($res)) {

            $this->activeUser = '';

            return false;

        }

        if ($this->verifyPassword(trim($password, "\r\n"),

                                  trim($res[$this->options['passwordcol']], "\r\n"),

                                  $this->options['cryptType'])) {

            // Store additional field values in the session

            foreach ($res as $key => $value) {

                if ($key == $this->options['passwordcol'] ||

                    $key == $this->options['usernamecol']) {

                    continue;

                }


                $this->log('Storing additional field: '.$key, AUTH_LOG_DEBUG);


                // Use reference to the auth object if exists

                // This is because the auth session variable can change so a static call to setAuthData does not make sence

                if (is_object($this->_auth_obj)) {

                    $this->_auth_obj->setAuthData($key, $value);

                } else {

                    Auth::setAuthData($key, $value);

                }

            }

            $this->activeUser = $res[$this->options['usernamecol']];

            return true;

        }

        $this->activeUser = $res[$this->options['usernamecol']];

        return false;

    }


    // }}}


}

?>

AUTH_LOG_DEBUG
const AUTH_LOG_DEBUG
Auth Log level - DEBUG.
Definition: Auth.php:59

Auth_Container_DBLite
Definition: DBLite.php:53

Auth_Container_DBLite\fetchData
fetchData($username, $password)
Get user information from database.
Definition: DBLite.php:247

Auth_Container_DBLite\_parseOptions
_parseOptions($array)
Parse options passed to the container class.
Definition: DBLite.php:185

Auth_Container_DBLite\$db
$db
Definition: DBLite.php:67

Auth_Container_DBLite\_quoteDBFields
_quoteDBFields()
Quote the db_fields option to avoid the possibility of SQL injection.
Definition: DBLite.php:204

Auth_Container_DBLite\_connect
_connect(&$dsn)
Connect to database by using the given DSN string.
Definition: DBLite.php:119

Auth_Container_DBLite\_prepare
_prepare()
Prepare database connection.
Definition: DBLite.php:149

Auth_Container_DBLite\Auth_Container_DBLite
Auth_Container_DBLite($dsn)
Constructor of the container class.
Definition: DBLite.php:87

Auth_Container_DBLite\$options
$options
Definition: DBLite.php:61

Auth_Container_DBLite\$activeUser
$activeUser
Definition: DBLite.php:74

Auth_Container_DBLite\$dsn
$dsn
Definition: DBLite.php:68

Auth_Container
Definition: Container.php:40

Auth_Container\verifyPassword
verifyPassword($password1, $password2, $cryptType="md5")
Crypt and verfiy the entered password.
Definition: Container.php:101

Auth_Container\log
log($message, $level=AUTH_LOG_DEBUG)
Log a message to the Auth log.
Definition: Container.php:246

Auth\setAuthData
setAuthData($name, $value, $overwrite=true)
Register additional information that is to be stored in the session.
Definition: Auth.php:777

PEAR\isError
isError($data, $code=null)
Tell whether a value is a PEAR error.
Definition: PEAR.php:279

PEAR\raiseError
& raiseError($message=null, $code=null, $mode=null, $options=null, $userinfo=null, $error_class=null, $skipmsg=false)
This method is a wrapper that returns an instance of the configured error class with this object's de...
Definition: PEAR.php:524

$t
$t
Definition: class.ilBMFType_duration.php:154

DB_FETCHMODE_ASSOC
const DB_FETCHMODE_ASSOC
Definition: class.ilDB.php:10

$res
$res
Definition: examplelayouts.sql.php:25

$query
$query
Definition: examplelayouts.sql.php:24