summaryrefslogtreecommitdiff
path: root/app/Model/UserLockingModel.php
blob: 1d4d994c3dd2f26892339d465ea85da00ef41b12 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
<?php

namespace Kanboard\Model;

use Kanboard\Core\Base;

/**
 * User Locking Model
 *
 * @package  Kanboard\Model
 * @author   Frederic Guillot
 */
class UserLockingModel extends Base
{
    /**
     * Get the number of failed login for the user
     *
     * @access public
     * @param  string  $username
     * @return integer
     */
    public function getFailedLogin($username)
    {
        return (int) $this->db->table(UserModel::TABLE)
            ->eq('username', $username)
            ->findOneColumn('nb_failed_login');
    }

    /**
     * Reset to 0 the counter of failed login
     *
     * @access public
     * @param  string  $username
     * @return boolean
     */
    public function resetFailedLogin($username)
    {
        return $this->db->table(UserModel::TABLE)
            ->eq('username', $username)
            ->update(array(
                'nb_failed_login' => 0,
                'lock_expiration_date' => 0,
            ));
    }

    /**
     * Increment failed login counter
     *
     * @access public
     * @param  string  $username
     * @return boolean
     */
    public function incrementFailedLogin($username)
    {
        return $this->db->table(UserModel::TABLE)
            ->eq('username', $username)
            ->increment('nb_failed_login', 1);
    }

    /**
     * Check if the account is locked
     *
     * @access public
     * @param  string  $username
     * @return boolean
     */
    public function isLocked($username)
    {
        return $this->db->table(UserModel::TABLE)
            ->eq('username', $username)
            ->neq('lock_expiration_date', 0)
            ->gte('lock_expiration_date', time())
            ->exists();
    }

    /**
     * Lock the account for the specified duration
     *
     * @access public
     * @param  string   $username   Username
     * @param  integer  $duration   Duration in minutes
     * @return boolean
     */
    public function lock($username, $duration = 15)
    {
        return $this->db->table(UserModel::TABLE)
            ->eq('username', $username)
            ->update(array(
                'lock_expiration_date' => time() + $duration * 60
            ));
    }

    /**
     * Return true if the captcha must be shown
     *
     * @access public
     * @param  string  $username
     * @param  integer $tries
     * @return boolean
     */
    public function hasCaptcha($username, $tries = BRUTEFORCE_CAPTCHA)
    {
        return $this->getFailedLogin($username) >= $tries;
    }
}