Refactor to separate the framework from the app; drop message stuff, this app is just user management. Add a json view for individual usersHEAD master

author: Luke Shumaker <LukeShu@sbcglobal.net> 2012-01-07 08:21:00 -0800
committer: Luke Shumaker <LukeShu@sbcglobal.net> 2012-01-07 10:20:28 -0800
commit: 464f4d3497617fadb9d7752868f1175849cfa6d2 (patch)
tree: 0771bd935b30971bf2c244b6f158ed7496b644e5 /apps/um/lib/Login.class.php
parent: 3d64793a1ee45857856be1cd71c3a0a040a3e869 (diff)
1 files changed, 41 insertions, 0 deletions
diff --git a/apps/um/lib/Login.class.php b/apps/um/lib/Login.class.php
new file mode 100644
index 0000000..bb21928
--- /dev/null
+++ b/apps/um/lib/Login.class.php
@@ -0,0 +1,41 @@
+<?php
+require_once('Database.class.php');
+require_once('Hasher.class.php');
+
+class Login {
+	/** Decalare an empty __construct() so that the login function doesn't
+	    get mistaken for the costructor. */
+	public function __construct() {}
+	
+	public static function login($username, $password) {
+		$db = Database::getInstance();
+		$hasher = Hasher::getInstance();
+		
+		$uid = $db->getUID($username);
+		if ($uid!==false && $db->getStatus($uid)>=3)
+			$uid=false;
+		if ($uid===false) {
+			// user does not exist
+			return 2;
+		}
+		$hash = $db->getPasswordHash($uid);
+		if ($hasher->check($password, $hash)) {
+			// success
+			$_SESSION['uid'] = $uid;
+			return 0;
+		} else {
+			// wrong password
+			return 1;
+		}
+	}
+	public static function isLoggedIn() {
+		if ( isset($_SESSION['uid']) && ($_SESSION['uid']!='') ) {
+			return $_SESSION['uid'];
+		} else {
+			return false;
+		}
+	}
+	public static function logout() {
+		$_SESSION['uid'] = '';
+	}
+}
author	Luke Shumaker <LukeShu@sbcglobal.net>	2012-01-07 08:21:00 -0800
committer	Luke Shumaker <LukeShu@sbcglobal.net>	2012-01-07 10:20:28 -0800
commit	464f4d3497617fadb9d7752868f1175849cfa6d2 (patch)
tree	0771bd935b30971bf2c244b6f158ed7496b644e5 /apps/um/lib/Login.class.php
parent	3d64793a1ee45857856be1cd71c3a0a040a3e869 (diff)