aj
/
chamilo-lms2


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132
							<?php

/*
 * This file is part of the Symfony package.
 *
 * (c) Fabien Potencier <fabien@symfony.com>
 *
 * For the full copyright and license information, please view the LICENSE
 * file that was distributed with this source code.
 */

namespace Symfony\Bridge\Doctrine\Security\RememberMe;

use Symfony\Component\Security\Core\Authentication\RememberMe\TokenProviderInterface;
use Symfony\Component\Security\Core\Authentication\RememberMe\PersistentTokenInterface;
use Symfony\Component\Security\Core\Authentication\RememberMe\PersistentToken;
use Symfony\Component\Security\Core\Exception\TokenNotFoundException;
use Doctrine\DBAL\Connection;
use Doctrine\DBAL\Types\Type as DoctrineType;
use PDO, DateTime;

/**
 * This class provides storage for the tokens that is set in "remember me"
 * cookies. This way no password secrets will be stored in the cookies on
 * the client machine, and thus the security is improved.
 *
 * This depends only on doctrine in order to get a database connection
 * and to do the conversion of the datetime column.
 *
 * In order to use this class, you need the following table in your database:
 * CREATE TABLE `rememberme_token` (
 *  `series`   char(88)     UNIQUE PRIMARY KEY NOT NULL,
 *  `value`    char(88)     NOT NULL,
 *  `lastUsed` datetime     NOT NULL,
 *  `class`    varchar(100) NOT NULL,
 *  `username` varchar(200) NOT NULL
 * );
 */
class DoctrineTokenProvider implements TokenProviderInterface
{
    /**
     * Doctrine DBAL database connection
     * F.ex. service id: doctrine.dbal.default_connection
     *
     * @var \Doctrine\DBAL\Connection
     */
    private $conn;

    /**
     * new DoctrineTokenProvider for the RemembeMe authentication service
     *
     * @param \Doctrine\DBAL\Connection $conn
     */
    public function __construct(Connection $conn)
    {
        $this->conn = $conn;
    }

    /**
     * {@inheritdoc}
     */
    public function loadTokenBySeries($series)
    {
        $sql = 'SELECT class, username, value, lastUsed'
            . ' FROM rememberme_token WHERE series=:series';
        $paramValues = array('series' => $series);
        $paramTypes  = array('series' => PDO::PARAM_STR);
        $stmt = $this->conn->executeQuery($sql, $paramValues, $paramTypes);
        $row =  $stmt->fetch(PDO::FETCH_ASSOC);
        if ($row) {
            return new PersistentToken($row['class'],
                                       $row['username'],
                                       $series,
                                       $row['value'],
                                       new DateTime($row['lastUsed'])
                                       );
        }

        throw new TokenNotFoundException('No token found.');
    }

    /**
     * {@inheritdoc}
     */
    public function deleteTokenBySeries($series)
    {
        $sql = 'DELETE FROM rememberme_token WHERE series=:series';
        $paramValues = array('series' => $series);
        $paramTypes  = array('series' => PDO::PARAM_STR);
        $this->conn->executeUpdate($sql, $paramValues, $paramTypes);
    }

    /**
     * {@inheritdoc}
     */
    public function updateToken($series, $tokenValue, DateTime $lastUsed)
    {
        $sql = 'UPDATE rememberme_token SET value=:value, lastUsed=:lastUsed'
            . ' WHERE series=:series';
        $paramValues = array('value'    => $tokenValue,
                             'lastUsed' => $lastUsed,
                             'series'   => $series);
        $paramTypes =  array('value'    => PDO::PARAM_STR,
                             'lastUsed' => DoctrineType::DATETIME,
                             'series'   => PDO::PARAM_STR);
        $updated = $this->conn->executeUpdate($sql, $paramValues, $paramTypes);
        if ($updated < 1) {
            throw new TokenNotFoundException('No token found.');
        }
    }

    /**
     * {@inheritdoc}
     */
    public function createNewToken(PersistentTokenInterface $token)
    {
        $sql = 'INSERT INTO rememberme_token'
            .        ' (class, username, series, value, lastUsed)'
            . ' VALUES (:class, :username, :series, :value, :lastUsed)';
        $paramValues = array('class'    => $token->getClass(),
                             'username' => $token->getUsername(),
                             'series'   => $token->getSeries(),
                             'value'    => $token->getTokenValue(),
                             'lastUsed' => $token->getLastUsed());
        $paramTypes  = array('class'    => PDO::PARAM_STR,
                             'username' => PDO::PARAM_STR,
                             'series'   => PDO::PARAM_STR,
                             'value'    => PDO::PARAM_STR,
                             'lastUsed' => DoctrineType::DATETIME);
        $this->conn->executeUpdate($sql, $paramValues, $paramTypes);
    }
}