summaryrefslogtreecommitdiff
path: root/app/Controller/Auth.php
blob: b90e756d1db38cd69e9d1e5eb2b553206e541ff5 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
<?php

namespace Kanboard\Controller;

use Gregwar\Captcha\CaptchaBuilder;

/**
 * Authentication controller
 *
 * @package  controller
 * @author   Frederic Guillot
 */
class Auth extends Base
{
    /**
     * Display the form login
     *
     * @access public
     */
    public function login(array $values = array(), array $errors = array())
    {
        if ($this->userSession->isLogged()) {
            $this->response->redirect($this->helper->url->to('app', 'index'));
        }

        $this->response->html($this->template->layout('auth/index', array(
            'captcha' => isset($values['username']) && $this->authentication->hasCaptcha($values['username']),
            'errors' => $errors,
            'values' => $values,
            'no_layout' => true,
            'title' => t('Login')
        )));
    }

    /**
     * Check credentials
     *
     * @access public
     */
    public function check()
    {
        $values = $this->request->getValues();
        list($valid, $errors) = $this->authentication->validateForm($values);

        if ($valid) {
            if (isset($this->sessionStorage->redirectAfterLogin)
                && ! empty($this->sessionStorage->redirectAfterLogin)
                && ! filter_var($this->sessionStorage->redirectAfterLogin, FILTER_VALIDATE_URL)) {
                $redirect = $this->sessionStorage->redirectAfterLogin;
                unset($this->sessionStorage->redirectAfterLogin);
                $this->response->redirect($redirect);
            }

            $this->response->redirect($this->helper->url->to('app', 'index'));
        }

        $this->login($values, $errors);
    }

    /**
     * Logout and destroy session
     *
     * @access public
     */
    public function logout()
    {
        $this->authentication->backend('rememberMe')->destroy($this->userSession->getId());
        $this->sessionManager->close();
        $this->response->redirect($this->helper->url->to('auth', 'login'));
    }

    /**
     * Display captcha image
     *
     * @access public
     */
    public function captcha()
    {
        $this->response->contentType('image/jpeg');

        $builder = new CaptchaBuilder;
        $builder->build();
        $this->sessionStorage->captcha = $builder->getPhrase();
        $builder->output();
    }
}