Ceratic/MediaCollectorLibary
1
0
Fork 0
mirror of https://github.com/ceratic/MediaCollectorLibary.git synced 2026-05-13 23:56:46 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
7a7977d8b0b18f0b2cb0e70d22d3a48d39d14e76
MediaCollectorLibary/app/Services/AuthService.php
Lars Behrends 929ee43001 first commit
2025-10-17 13:29:28 +02:00

122 lines
2.9 KiB
PHP
Raw Blame History

<?php
namespace App\Services;
use App\Models\User;
use PDO;
class AuthService
{
private PDO $pdo;
private ?array $user = null;
public function __construct(PDO $pdo)
{
$this->pdo = $pdo;
$this->checkSession();
}
public function checkSession(): void
{
if (isset($_SESSION['user_id'])) {
$user = User::findByUsername($this->pdo, $_SESSION['username']);
if (!$user || !$user['is_active']) {
$this->logout();
} else {
$this->user = $user;
}
}
}
public function login(string $username, string $password, string $ip = null): bool
{
$user = User::findByUsername($this->pdo, $username);
if (!$user || !$user['is_active']) {
return false;
}
// Verify password directly using the hash from database
if (!password_verify($password, $user['password'])) {
return false;
}
// Set session
$_SESSION['user_id'] = $user['id'];
$_SESSION['username'] = $user['username'];
$_SESSION['role'] = $user['role'];
// Update last login
$this->updateUserLastLogin($user['id'], $ip);
$this->user = $user;
return true;
}
public function logout(): void
{
unset($_SESSION['user_id']);
unset($_SESSION['username']);
unset($_SESSION['role']);
$this->user = null;
}
public function getCurrentUser(): ?array
{
return $this->user;
}
public function isLoggedIn(): bool
{
return $this->user !== null;
}
public function isAdmin(): bool
{
return $this->isLoggedIn() && $this->user['role'] === 'admin';
}
public function requireLogin(): void
{
if (!$this->isLoggedIn()) {
header('Location: /login');
exit;
}
}
public function requireAdmin(): void
{
$this->requireLogin();
if (!$this->isAdmin()) {
http_response_code(403);
echo 'Access denied. Admin privileges required.';
exit;
}
}
public function generateCSRFToken(): string
{
if (!isset($_SESSION['csrf_token'])) {
$_SESSION['csrf_token'] = bin2hex(random_bytes(32));
}
return $_SESSION['csrf_token'];
}
public function verifyCSRFToken(string $token): bool
{
return isset($_SESSION['csrf_token']) && $_SESSION['csrf_token'] === $token;
}
private function updateUserLastLogin(int $userId, string $ip = null): void
{
$stmt = $this->pdo->prepare("UPDATE users SET last_login_at = :last_login_at, login_ip = :login_ip WHERE id = :id");
$stmt->execute([
'id' => $userId,
'last_login_at' => date('Y-m-d H:i:s'),
'login_ip' => $ip
]);
}
}
Reference in New Issue View Git Blame Copy Permalink