container[$name])) { $class = '\Auth\\'.ucfirst($name); $this->container[$name] = new $class($this->container); } return $this->container[$name]; } /** * Check if the current user is authenticated * * @access public * @return bool */ public function isAuthenticated() { // If the user is already logged it's ok if ($this->userSession->isLogged()) { // Check if the user session match an existing user if (! $this->user->exists($this->userSession->getId())) { $this->backend('rememberMe')->destroy($this->userSession->getId()); $this->session->close(); return false; } return true; } // We try first with the RememberMe cookie if ($this->backend('rememberMe')->authenticate()) { return true; } // Then with the ReverseProxy authentication if (REVERSE_PROXY_AUTH && $this->backend('reverseProxy')->authenticate()) { return true; } return false; } /** * Authenticate a user by different methods * * @access public * @param string $username Username * @param string $password Password * @return boolean */ public function authenticate($username, $password) { // Try first the database auth and then LDAP if activated if ($this->backend('database')->authenticate($username, $password)) { return true; } else if (LDAP_AUTH && $this->backend('ldap')->authenticate($username, $password)) { return true; } return false; } /** * Validate user login form * * @access public * @param array $values Form values * @return array $valid, $errors [0] = Success or not, [1] = List of errors */ public function validateForm(array $values) { $v = new Validator($values, array( new Validators\Required('username', t('The username is required')), new Validators\MaxLength('username', t('The maximum length is %d characters', 50), 50), new Validators\Required('password', t('The password is required')), )); $result = $v->execute(); $errors = $v->getErrors(); if ($result) { if ($this->authenticate($values['username'], $values['password'])) { // Setup the remember me feature if (! empty($values['remember_me'])) { $credentials = $this->backend('rememberMe') ->create($this->userSession->getId(), Request::getIpAddress(), Request::getUserAgent()); $this->backend('rememberMe')->writeCookie($credentials['token'], $credentials['sequence'], $credentials['expiration']); } } else { $result = false; $errors['login'] = t('Bad username or password'); } } return array( $result, $errors ); } }