silverstripe-framework/security/MemberAuthenticator.php

<?php

/**
 * Member authenticator
 *
 * @author Markus Lanthaler <markus@silverstripe.com>
 */


/**
 * Authenticator for the default "member" method
 *
 * @author Markus Lanthaler <markus@silverstripe.com>
 */
class MemberAuthenticator extends Authenticator {

  /**
   * Method to authenticate an user
   *
   * @param array $RAW_data Raw data to authenticate the user
   * @param Form $form Optional: If passed, better error messages can be
   *                             produced by using
   *                             {@link Form::sessionMessage()}
   * @return bool|Member Returns FALSE if authentication fails, otherwise
   *                     the member object
   */
  public function authenticate(array $RAW_data, Form $form = null) {
    $SQL_user = Convert::raw2sql($RAW_data['Email']);
    $SQL_password = Convert::raw2sql($RAW_data['Password']);

    $member = DataObject::get_one(
        "Member", "Email = '$SQL_user' AND Password = '$SQL_password'");

    if($member) {
      Session::clear("BackURL");
    } else if(!is_null($form)) {
			$form->sessionMessage(
				"That doesn't seem to be the right email address or password. Please try again.",
				"bad");
    }

    return $member;
  }


  /**
   * Method that creates the login form for this authentication method
   *
   * @param Controller The parent controller, necessary to create the
   *                   appropriate form action tag
   * @return Form Returns the login form to use with this authentication
   *              method
   */
  public static function getLoginForm(Controller $controller) {
    return Object::create("MemberLoginForm", $controller, "LoginForm");
  }


  /**
   * Get the name of the authentication method
   *
   * @return string Returns the name of the authentication method.
   */
  public static function getName() {
		return "Email &amp; Password";
	}
}

?>
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`<?php`

mlanthaler:OpenID authentication works now. To use it simple create an user account without password and put your complete OpenID identifier in the email field, e.g. "http://markus-lanthaler.myopenid.com/". You can get a free OpenID from http://www.myopenid.com (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41785 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:10:18 +02:00			`/**`
			`* Member authenticator`
			`*`
			`* @author Markus Lanthaler <markus@silverstripe.com>`
			`*/`



mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`/**`
			`* Authenticator for the default "member" method`
			`*`
			`* @author Markus Lanthaler <markus@silverstripe.com>`
			`*/`
			`class MemberAuthenticator extends Authenticator {`

			`/**`
			`* Method to authenticate an user`
			`*`
			`* @param array $RAW_data Raw data to authenticate the user`
mlanthaler:OpenID authentication works now. To use it simple create an user account without password and put your complete OpenID identifier in the email field, e.g. "http://markus-lanthaler.myopenid.com/". You can get a free OpenID from http://www.myopenid.com (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41785 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:10:18 +02:00			`* @param Form $form Optional: If passed, better error messages can be`
			`* produced by using`
			`* {@link Form::sessionMessage()}`
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`* @return bool\|Member Returns FALSE if authentication fails, otherwise`
			`* the member object`
			`*/`
mlanthaler:OpenID authentication works now. To use it simple create an user account without password and put your complete OpenID identifier in the email field, e.g. "http://markus-lanthaler.myopenid.com/". You can get a free OpenID from http://www.myopenid.com (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41785 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:10:18 +02:00			`public function authenticate(array $RAW_data, Form $form = null) {`
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`$SQL_user = Convert::raw2sql($RAW_data['Email']);`
			`$SQL_password = Convert::raw2sql($RAW_data['Password']);`

			`$member = DataObject::get_one(`
mlanthaler:OpenID authentication works now. To use it simple create an user account without password and put your complete OpenID identifier in the email field, e.g. "http://markus-lanthaler.myopenid.com/". You can get a free OpenID from http://www.myopenid.com (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41785 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:10:18 +02:00			`"Member", "Email = '$SQL_user' AND Password = '$SQL_password'");`
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00
			`if($member) {`
			`Session::clear("BackURL");`
mlanthaler:OpenID authentication works now. To use it simple create an user account without password and put your complete OpenID identifier in the email field, e.g. "http://markus-lanthaler.myopenid.com/". You can get a free OpenID from http://www.myopenid.com (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41785 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:10:18 +02:00			`} else if(!is_null($form)) {`
			`$form->sessionMessage(`
			`"That doesn't seem to be the right email address or password. Please try again.",`
			`"bad");`
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`}`

			`return $member;`
			`}`


			`/**`
			`* Method that creates the login form for this authentication method`
			`*`
mlanthaler:OpenID authentication works now. To use it simple create an user account without password and put your complete OpenID identifier in the email field, e.g. "http://markus-lanthaler.myopenid.com/". You can get a free OpenID from http://www.myopenid.com (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41785 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:10:18 +02:00			`* @param Controller The parent controller, necessary to create the`
			`* appropriate form action tag`
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`* @return Form Returns the login form to use with this authentication`
			`* method`
			`*/`
mlanthaler:OpenID authentication works now. To use it simple create an user account without password and put your complete OpenID identifier in the email field, e.g. "http://markus-lanthaler.myopenid.com/". You can get a free OpenID from http://www.myopenid.com (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41785 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:10:18 +02:00			`public static function getLoginForm(Controller $controller) {`
			`return Object::create("MemberLoginForm", $controller, "LoginForm");`
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`}`
mlanthaler: Login forms are now styled and use the tabstrip library. Make sure you create a CSS file "tabs.css" in your mysite/css folder with the following content, otherwise the tabs will be without border. Maybe it would be a good idea to create a mysite gsoc branch for changes like this. Will post that issue in the forum. div.tab { clear: left; overflow: auto; border: 1px #AAA solid; border-top: none; position: relative; top: -3px; margin: 0; padding: 10px; /width: 98%;/ } div.tabset { border: 1px solid #fff; /* Hack for FF1.5/Win Float-Bug */ clear: left; margin: 0; } ul.tabstrip li { margin-left: 0; } (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41786 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:13:12 +02:00

			`/**`
			`* Get the name of the authentication method`
			`*`
			`* @return string Returns the name of the authentication method.`
			`*/`
			`public static function getName() {`
elofgren: Use & instead of & in 'Email & Password' to prevent XML parsing error in Firefox on login form. (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41825 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-15 02:08:50 +02:00			`return "Email & Password";`
mlanthaler: Login forms are now styled and use the tabstrip library. Make sure you create a CSS file "tabs.css" in your mysite/css folder with the following content, otherwise the tabs will be without border. Maybe it would be a good idea to create a mysite gsoc branch for changes like this. Will post that issue in the forum. div.tab { clear: left; overflow: auto; border: 1px #AAA solid; border-top: none; position: relative; top: -3px; margin: 0; padding: 10px; /width: 98%;/ } div.tabset { border: 1px solid #fff; /* Hack for FF1.5/Win Float-Bug */ clear: left; margin: 0; } ul.tabstrip li { margin-left: 0; } (merged from branches/gsoc) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41786 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 21:13:12 +02:00			`}`
mlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsocmlanthaler: Switched to an authenticator and a form class to be able to add other authentication methods. (merged from branches/gsoc) mlanthaler: The missing authenticator base class... (merged from branches/gsoc)) git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@41729 467b73ca-7a2a-4603-9d3b-597d59a354a9 2007-09-14 05:12:21 +02:00			`}`

			`?>`