summaryrefslogtreecommitdiff
path: root/demos/blog-tutorial/samples/day4/blog/protected/BlogUser.php
blob: 7fb20b1c84543390af4f23dcb2741e0dc7d4d837 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
<?php

// Include TDbUserManager.php file which defines TDbUser
Prado::using('System.Security.TDbUserManager');

/**
 * BlogUser Class.
 * BlogUser represents the user data that needs to be kept in session.
 * Default implementation keeps username and role information.
 */
class BlogUser extends TDbUser
{
	/**
	 * Creates a BlogUser object based on the specified username.
	 * This method is required by TDbUser. It checks the database
	 * to see if the specified username is there. If so, a BlogUser
	 * object is created and initialized.
	 * @param string the specified username
	 * @return BlogUser the user object, null if username is invalid.
	 */
	public function createUser($username)
	{
		// use UserRecord Active Record to look for the specified username
		$userRecord=UserRecord::finder()->findByPk($username);
		if($userRecord instanceof UserRecord) // if found
		{
			$user=new BlogUser($this->Manager);
			$user->Name=$username;  // set username
			$user->Roles=($userRecord->role==1?'admin':'user'); // set role
			$user->IsGuest=false;   // the user is not a guest
			return $user;
		}
		else
			return null;
	}

	/**
	 * Checks if the specified (username, password) is valid.
	 * This method is required by TDbUser.
	 * @param string username
	 * @param string password
	 * @return boolean whether the username and password are valid.
	 */
	public function validateUser($username,$password)
	{
		// use UserRecord Active Record to look for the (username, password) pair.
		return UserRecord::finder()->findBy_username_AND_password($username,$password)!==null;
	}

	/**
	 * @return boolean whether this user is an administrator.
	 */
	public function getIsAdmin()
	{
		return $this->isInRole('admin');
	}
}