2010-07-15 16:09:22 +04:00
|
|
|
<?php
|
|
|
|
|
|
|
|
/**
|
2011-04-15 19:14:02 +04:00
|
|
|
* ownCloud
|
|
|
|
*
|
|
|
|
* @author Frank Karlitschek
|
|
|
|
* @copyright 2010 Frank Karlitschek karlitschek@kde.org
|
|
|
|
*
|
|
|
|
* This library is free software; you can redistribute it and/or
|
|
|
|
* modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
|
|
|
|
* License as published by the Free Software Foundation; either
|
|
|
|
* version 3 of the License, or any later version.
|
|
|
|
*
|
|
|
|
* This library is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
|
|
* GNU AFFERO GENERAL PUBLIC LICENSE for more details.
|
|
|
|
*
|
|
|
|
* You should have received a copy of the GNU Affero General Public
|
|
|
|
* License along with this library. If not, see <http://www.gnu.org/licenses/>.
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
/*
|
|
|
|
*
|
|
|
|
* The following SQL statement is just a help for developers and will not be
|
|
|
|
* executed!
|
|
|
|
*
|
|
|
|
* CREATE TABLE `users` (
|
|
|
|
* `uid` varchar(64) COLLATE utf8_unicode_ci NOT NULL,
|
|
|
|
* `password` varchar(255) COLLATE utf8_unicode_ci NOT NULL,
|
|
|
|
* PRIMARY KEY (`uid`)
|
|
|
|
* ) ENGINE=MyISAM DEFAULT CHARSET=utf8 COLLATE=utf8_unicode_ci;
|
|
|
|
*
|
|
|
|
*/
|
2010-07-15 16:09:22 +04:00
|
|
|
|
2011-04-16 12:12:53 +04:00
|
|
|
require_once('User/backend.php');
|
2010-07-19 23:33:29 +04:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2010-07-21 19:53:51 +04:00
|
|
|
* Class for user management in a SQL Database (e.g. MySQL, SQLite)
|
2010-07-15 22:57:14 +04:00
|
|
|
*
|
2010-07-15 16:09:22 +04:00
|
|
|
*/
|
2010-07-21 19:53:51 +04:00
|
|
|
class OC_USER_DATABASE extends OC_USER_BACKEND {
|
2010-09-12 19:04:52 +04:00
|
|
|
static private $userGroupCache=array();
|
2011-03-02 01:20:16 +03:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2010-07-23 01:42:18 +04:00
|
|
|
* Try to create a new user
|
|
|
|
*
|
|
|
|
* @param string $username The username of the user to create
|
|
|
|
* @param string $password The password of the new user
|
|
|
|
*/
|
2011-04-15 19:14:02 +04:00
|
|
|
public static function createUser( $uid, $password ){
|
|
|
|
$query = OC_DB::prepare( "SELECT * FROM `*PREFIX*users` WHERE `uid` = ?" );
|
2011-04-15 21:24:23 +04:00
|
|
|
$result = $query->execute( array( $uid ));
|
2011-04-15 19:14:02 +04:00
|
|
|
|
2010-07-23 01:42:18 +04:00
|
|
|
// Check if the user already exists
|
2011-04-15 19:14:02 +04:00
|
|
|
if ( $result->numRows() > 0 ){
|
2010-07-15 16:09:22 +04:00
|
|
|
return false;
|
2011-04-15 19:14:02 +04:00
|
|
|
}
|
|
|
|
else{
|
|
|
|
$query = OC_DB::prepare( "INSERT INTO `*PREFIX*users` ( `uid`, `password` ) VALUES( ?, ? )" );
|
2011-04-15 21:24:23 +04:00
|
|
|
$result = $query->execute( array( $uid, sha1( $password )));
|
2011-04-15 19:14:02 +04:00
|
|
|
|
2010-07-23 01:42:18 +04:00
|
|
|
return $result ? true : false;
|
2010-07-15 21:56:13 +04:00
|
|
|
}
|
2010-07-21 19:53:51 +04:00
|
|
|
}
|
2010-07-23 01:42:18 +04:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2010-07-23 01:42:18 +04:00
|
|
|
* Try to login a user
|
|
|
|
*
|
|
|
|
* @param string $username The username of the user to log in
|
|
|
|
* @param string $password The password of the user
|
|
|
|
*/
|
2011-04-15 19:14:02 +04:00
|
|
|
public static function login( $username, $password ){
|
2011-04-17 01:02:54 +04:00
|
|
|
$query = OC_DB::prepare( "SELECT `uid` FROM `*PREFIX*users` WHERE `uid` = ? AND `password` = ?" );
|
2011-04-15 21:24:23 +04:00
|
|
|
$result = $query->execute( array( $username, sha1( $password )));
|
2010-07-15 16:09:22 +04:00
|
|
|
|
2011-04-15 19:14:02 +04:00
|
|
|
if( $result->numRows() > 0 ){
|
|
|
|
$row = $result->fetchRow();
|
|
|
|
$_SESSION['user_id'] = $row["uid"];
|
2010-07-15 16:09:22 +04:00
|
|
|
return true;
|
|
|
|
}
|
2011-04-15 19:14:02 +04:00
|
|
|
else{
|
|
|
|
return false;
|
2010-07-15 16:09:22 +04:00
|
|
|
}
|
|
|
|
}
|
2010-07-23 01:42:18 +04:00
|
|
|
|
2011-03-02 01:20:16 +03:00
|
|
|
/**
|
|
|
|
* Kick the user
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
public static function logout() {
|
2011-04-15 19:14:02 +04:00
|
|
|
OC_LOG::add( "core", $_SESSION['user_id'], "logout" );
|
2011-03-02 01:20:16 +03:00
|
|
|
$_SESSION['user_id'] = false;
|
|
|
|
}
|
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2010-07-23 01:42:18 +04:00
|
|
|
* Check if the user is logged in
|
|
|
|
*
|
|
|
|
*/
|
|
|
|
public static function isLoggedIn() {
|
2011-04-15 19:14:02 +04:00
|
|
|
if( isset($_SESSION['user_id']) AND $_SESSION['user_id'] ){
|
2010-07-23 01:42:18 +04:00
|
|
|
return true;
|
|
|
|
}
|
2011-04-15 19:14:02 +04:00
|
|
|
else{
|
2010-07-15 16:09:22 +04:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
2010-07-23 01:42:18 +04:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Generate a random password
|
|
|
|
*/
|
2010-07-21 19:53:51 +04:00
|
|
|
public static function generatePassword(){
|
2010-07-23 01:42:18 +04:00
|
|
|
return uniqId();
|
2010-07-15 16:09:22 +04:00
|
|
|
}
|
2010-07-19 20:52:49 +04:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2010-07-23 01:42:18 +04:00
|
|
|
* Set the password of a user
|
|
|
|
*
|
|
|
|
* @param string $username User who password will be changed
|
|
|
|
* @param string $password The new password for the user
|
|
|
|
*/
|
2011-04-15 19:14:02 +04:00
|
|
|
public static function setPassword( $username, $password ){
|
|
|
|
$query = OC_DB::prepare( "UPDATE `*PREFIX*users` SET `password` = ? WHERE `uid` = ?" );
|
2011-04-15 21:24:23 +04:00
|
|
|
$result = $query->execute( array( sha1( $password ), $username ));
|
2010-07-15 16:09:22 +04:00
|
|
|
|
2011-04-15 19:14:02 +04:00
|
|
|
if( $result->numRows() > 0 ){
|
2010-07-21 19:53:51 +04:00
|
|
|
return true;
|
2011-04-15 19:14:02 +04:00
|
|
|
}
|
|
|
|
else{
|
2010-07-21 19:53:51 +04:00
|
|
|
return false;
|
|
|
|
}
|
2010-07-15 16:09:22 +04:00
|
|
|
}
|
2010-07-19 20:52:49 +04:00
|
|
|
|
2010-07-15 16:09:22 +04:00
|
|
|
/**
|
2010-07-23 01:42:18 +04:00
|
|
|
* Check if the password of the user is correct
|
|
|
|
*
|
|
|
|
* @param string $username Name of the user
|
|
|
|
* @param string $password Password of the user
|
|
|
|
*/
|
2011-04-15 19:14:02 +04:00
|
|
|
public static function checkPassword( $username, $password ){
|
|
|
|
$query = OC_DB::prepare( "SELECT `uid` FROM `*PREFIX*users` WHERE `uid` = ? AND `password` = ?" );
|
2011-04-15 21:24:23 +04:00
|
|
|
$result = $query->execute( array( $username, sha1( $password )));
|
2010-07-15 16:09:22 +04:00
|
|
|
|
2011-04-15 19:14:02 +04:00
|
|
|
if( $result->numRows() > 0 ){
|
2010-07-15 16:09:22 +04:00
|
|
|
return true;
|
2011-04-15 19:14:02 +04:00
|
|
|
}
|
|
|
|
else{
|
2010-07-15 16:09:22 +04:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
2010-09-12 19:04:52 +04:00
|
|
|
/**
|
|
|
|
* get a list of all users
|
|
|
|
*
|
|
|
|
*/
|
2011-04-15 19:14:02 +04:00
|
|
|
public static function getUsers(){
|
|
|
|
$query = OC_DB::prepare( "SELECT `uid` FROM `*PREFIX*users`" );
|
|
|
|
$result = $query->execute();
|
2011-03-02 01:20:16 +03:00
|
|
|
|
2010-09-12 19:04:52 +04:00
|
|
|
$users=array();
|
2011-04-15 19:14:02 +04:00
|
|
|
while( $row = $result->fetchRow()){
|
|
|
|
$users[] = $row["uid"];
|
2010-09-12 19:04:52 +04:00
|
|
|
}
|
|
|
|
return $users;
|
|
|
|
}
|
2010-07-15 21:56:13 +04:00
|
|
|
}
|