2007-09-14 05:12:21 +02:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* Abstract base class for an authentication method
|
|
|
|
*
|
|
|
|
* This class is used as a base class for the different authentication
|
|
|
|
* methods like {@link MemberAuthenticator} or {@link OpenIDAuthenticator}.
|
|
|
|
*
|
|
|
|
* @author Markus Lanthaler <markus@silverstripe.com>
|
2008-02-25 03:10:37 +01:00
|
|
|
* @package sapphire
|
|
|
|
* @subpackage security
|
2007-09-14 05:12:21 +02:00
|
|
|
*/
|
2007-09-16 02:44:30 +02:00
|
|
|
abstract class Authenticator extends Object {
|
|
|
|
|
2007-09-15 02:08:23 +02:00
|
|
|
/**
|
|
|
|
* This variable holds all authenticators that should be used
|
|
|
|
*
|
|
|
|
* @var array
|
|
|
|
*/
|
|
|
|
private static $authenticators = array();
|
2007-11-06 22:18:27 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Used to influence the order of authenticators on the login-screen
|
|
|
|
* (default shows first).
|
|
|
|
*
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private static $default_authenticator = '';
|
2007-09-15 02:08:23 +02:00
|
|
|
|
|
|
|
|
2007-09-14 05:12:21 +02:00
|
|
|
/**
|
|
|
|
* Method to authenticate an user
|
|
|
|
*
|
|
|
|
* @param array $RAW_data Raw data to authenticate the user
|
2007-09-14 21:10:18 +02:00
|
|
|
* @param Form $form Optional: If passed, better error messages can be
|
|
|
|
* produced by using
|
|
|
|
* {@link Form::sessionMessage()}
|
2007-09-14 05:12:21 +02:00
|
|
|
* @return bool|Member Returns FALSE if authentication fails, otherwise
|
|
|
|
* the member object
|
|
|
|
*/
|
2008-04-26 08:51:42 +02:00
|
|
|
public abstract static function authenticate($RAW_data,
|
2007-09-16 02:44:30 +02:00
|
|
|
Form $form = null);
|
2007-09-14 05:12:21 +02:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Method that creates the login form for this authentication method
|
|
|
|
*
|
2007-09-14 21:10:18 +02:00
|
|
|
* @param Controller The parent controller, necessary to create the
|
|
|
|
* appropriate form action tag
|
2007-09-14 05:12:21 +02:00
|
|
|
* @return Form Returns the login form to use with this authentication
|
|
|
|
* method
|
|
|
|
*/
|
2007-09-16 02:44:30 +02:00
|
|
|
public abstract static function get_login_form(Controller $controller);
|
2007-09-14 21:13:12 +02:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get the name of the authentication method
|
|
|
|
*
|
|
|
|
* @return string Returns the name of the authentication method.
|
|
|
|
*/
|
2007-09-16 02:44:30 +02:00
|
|
|
public abstract static function get_name();
|
2007-09-15 02:08:23 +02:00
|
|
|
|
2008-08-12 23:32:00 +02:00
|
|
|
public static function register($authenticator) {
|
|
|
|
self::register_authenticator($authenticator);
|
|
|
|
}
|
|
|
|
|
2007-09-15 02:08:23 +02:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Register a new authenticator
|
|
|
|
*
|
|
|
|
* The new authenticator has to exist and to be derived from the
|
|
|
|
* {@link Authenticator}.
|
|
|
|
* Every authenticator can be registered only once.
|
|
|
|
*
|
2007-09-16 17:34:35 +02:00
|
|
|
* @param string $authenticator Name of the authenticator class to
|
|
|
|
* register
|
2007-09-15 02:08:23 +02:00
|
|
|
* @return bool Returns TRUE on success, FALSE otherwise.
|
|
|
|
*/
|
2007-09-16 02:44:30 +02:00
|
|
|
public static function register_authenticator($authenticator) {
|
2007-09-15 02:08:23 +02:00
|
|
|
$authenticator = trim($authenticator);
|
|
|
|
|
|
|
|
if(class_exists($authenticator) == false)
|
|
|
|
return false;
|
|
|
|
|
|
|
|
if(is_subclass_of($authenticator, 'Authenticator') == false)
|
|
|
|
return false;
|
|
|
|
|
2007-09-15 22:00:00 +02:00
|
|
|
if(in_array($authenticator, self::$authenticators) == false) {
|
2007-09-16 02:44:30 +02:00
|
|
|
if(call_user_func(array($authenticator, 'on_register')) === true) {
|
2007-09-15 22:00:00 +02:00
|
|
|
array_push(self::$authenticators, $authenticator);
|
|
|
|
} else {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
2007-09-15 02:08:23 +02:00
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
2008-04-09 13:14:30 +02:00
|
|
|
|
2008-08-12 23:32:00 +02:00
|
|
|
public static function unregister($authenticator) {
|
|
|
|
self::unregister_authenticator($authenticator);
|
|
|
|
}
|
|
|
|
|
2008-04-09 13:14:30 +02:00
|
|
|
/**
|
|
|
|
* Remove a previously registered authenticator
|
|
|
|
*
|
|
|
|
* @param string $authenticator Name of the authenticator class to register
|
|
|
|
* @return bool Returns TRUE on success, FALSE otherwise.
|
|
|
|
*/
|
|
|
|
public static function unregister_authenticator($authenticator) {
|
|
|
|
if(call_user_func(array($authenticator, 'on_unregister')) === true) {
|
|
|
|
unset(self::$authenticators[$authenticator]);
|
|
|
|
};
|
|
|
|
}
|
2007-09-15 02:08:23 +02:00
|
|
|
|
|
|
|
|
2007-09-16 17:34:35 +02:00
|
|
|
/**
|
|
|
|
* Check if a given authenticator is registered
|
|
|
|
*
|
|
|
|
* @param string $authenticator Name of the authenticator class to check
|
|
|
|
* @return bool Returns TRUE if the authenticator is registered, FALSE
|
|
|
|
* otherwise.
|
|
|
|
*/
|
|
|
|
public static function is_registered($authenticator) {
|
|
|
|
return in_array($authenticator, self::$authenticators);
|
|
|
|
}
|
|
|
|
|
|
|
|
|
2007-09-15 02:08:23 +02:00
|
|
|
/**
|
|
|
|
* Get all registered authenticators
|
|
|
|
*
|
|
|
|
* @return array Returns an array with the class names of all registered
|
|
|
|
* authenticators.
|
|
|
|
*/
|
2007-09-16 02:44:30 +02:00
|
|
|
public static function get_authenticators() {
|
2007-11-06 22:18:27 +01:00
|
|
|
// put default authenticator first (mainly for tab-order on loginform)
|
|
|
|
if($key = array_search(self::$default_authenticator,self::$authenticators)) {
|
|
|
|
unset(self::$authenticators[$key]);
|
|
|
|
array_unshift(self::$authenticators, self::$default_authenticator);
|
|
|
|
}
|
2008-04-09 13:14:30 +02:00
|
|
|
|
2007-09-15 02:08:23 +02:00
|
|
|
return self::$authenticators;
|
|
|
|
}
|
2007-11-06 22:18:27 +01:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Set a default authenticator (shows first in tabs)
|
|
|
|
*
|
|
|
|
* @param string
|
|
|
|
*/
|
|
|
|
public static function set_default_authenticator($authenticator) {
|
|
|
|
self::$default_authenticator = $authenticator;
|
|
|
|
|
|
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public static function get_default_authenticator() {
|
|
|
|
return self::$default_authenticator;
|
|
|
|
}
|
2007-09-15 22:00:00 +02:00
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Callback function that is called when the authenticator is registered
|
|
|
|
*
|
|
|
|
* Use this method for initialization of a newly registered authenticator.
|
|
|
|
* Just overload this method and it will be called when the authenticator
|
|
|
|
* is registered.
|
|
|
|
* <b>If the method returns FALSE, the authenticator won't be
|
|
|
|
* registered!</b>
|
|
|
|
*
|
|
|
|
* @return bool Returns TRUE on success, FALSE otherwise.
|
|
|
|
*/
|
2007-09-16 02:44:30 +02:00
|
|
|
protected static function on_register() {
|
2007-09-15 22:00:00 +02:00
|
|
|
return true;
|
|
|
|
}
|
2008-04-09 13:14:30 +02:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Callback function that is called when an authenticator is removed.
|
|
|
|
*
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
protected static function on_unregister() {
|
|
|
|
return true;
|
|
|
|
}
|
2007-09-14 05:12:21 +02:00
|
|
|
}
|
|
|
|
|
2007-09-15 22:00:00 +02:00
|
|
|
|
2007-09-14 05:12:21 +02:00
|
|
|
?>
|