]> git.wh0rd.org - tt-rss.git/blob - classes/auth/base.php
git.wh0rd.org / tt-rss.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
auth/base: PDO
[tt-rss.git] / classes / auth / base.php
1 <?php
2 class Auth_Base {
3 private $dbh;
4 private $pdo;
5
6 function __construct() {
7 $this->dbh = Db::get();
8 $this->pdo = Db::pdo();
9 }
10
11 /**
12 * @SuppressWarnings(unused)
13 */
14 function check_password($owner_uid, $password) {
15 return false;
16 }
17
18 /**
19 * @SuppressWarnings(unused)
20 */
21 function authenticate($login, $password) {
22 return false;
23 }
24
25 // Auto-creates specified user if allowed by system configuration
26 // Can be used instead of find_user_by_login() by external auth modules
27 function auto_create_user($login, $password = false) {
28 if ($login && defined('AUTH_AUTO_CREATE') && AUTH_AUTO_CREATE) {
29 $user_id = $this->find_user_by_login($login);
30
31 if (!$password) $password = make_password();
32
33 if (!$user_id) {
34 $salt = substr(bin2hex(get_random_bytes(125)), 0, 250);
35 $pwd_hash = encrypt_password($password, $salt, true);
36
37 $sth = $this->pdo->prepare("INSERT INTO ttrss_users
38 (login,access_level,last_login,created,pwd_hash,salt)
39 VALUES (?, 0, null, NOW(), ?,?)");
40 $sth->execute([$login, $pwd_hash, $salt]);
41
42 return $this->find_user_by_login($login);
43
44 } else {
45 return $user_id;
46 }
47 }
48
49 return $this->find_user_by_login($login);
50 }
51
52 function find_user_by_login($login) {
53 $sth = $this->pdo->prepare("SELECT id FROM ttrss_users WHERE
54 login = ?");
55 $sth->execute([$login]);
56
57 if ($row = $sth->fetch()) {
58 return $row["id"];
59 } else {
60 return false;
61 }
62
63 }
64 }
web-based news feed (RSS/Atom) reader and aggregator; see https://tt-rss.org/