appwrite/src/Appwrite/Auth/Auth.php

<?php

namespace Appwrite\Auth;

use Appwrite\Database\Document;

class Auth
{
    /**
     * User Status.
     */
    const USER_STATUS_UNACTIVATED = 0;
    const USER_STATUS_ACTIVATED = 1;
    const USER_STATUS_BLOCKED = 2;

    /**
     * User Roles.
     */
    const USER_ROLE_GUEST = 0;
    const USER_ROLE_MEMBER = 1;
    const USER_ROLE_ADMIN = 2;
    const USER_ROLE_DEVELOPER = 3;
    const USER_ROLE_OWNER = 4;
    const USER_ROLE_APP = 5;
    const USER_ROLE_SYSTEM = 6;
    const USER_ROLE_ALL = '*';

    /**
     * Token Types.
     */
    const TOKEN_TYPE_LOGIN = 1;
    const TOKEN_TYPE_VERIFICATION = 2;
    const TOKEN_TYPE_RECOVERY = 3;
    const TOKEN_TYPE_INVITE = 4;

    /**
     * Token Expiration times.
     */
    const TOKEN_EXPIRATION_LOGIN_LONG = 31536000;      /* 1 year */
    const TOKEN_EXPIRATION_LOGIN_SHORT = 3600;         /* 1 hour */
    const TOKEN_EXPIRATION_RECOVERY = 3600;            /* 1 hour */
    const TOKEN_EXPIRATION_CONFIRM = 3600 * 24 * 7;    /* 7 days */

    /**
     * @var string
     */
    public static $cookieName = 'a_session';

    /**
     * User Unique ID.
     *
     * @var int
     */
    public static $unique = 0;

    /**
     * User Secret Key.
     *
     * @var string
     */
    public static $secret = '';

    /**
     * Set Cookie Name.
     *
     * @param $string
     *
     * @return string
     */
    public static function setCookieName($string)
    {
        return self::$cookieName = $string;
    }

    /**
     * Encode Session.
     *
     * @param int    $id
     * @param string $secret
     *
     * @return string
     */
    public static function encodeSession($id, $secret)
    {
        return \base64_encode(\json_encode([
            'id' => $id,
            'secret' => $secret,
        ]));
    }

    /**
     * Decode Session.
     *
     * @param string $session
     *
     * @return array
     *
     * @throws \Exception
     */
    public static function decodeSession($session)
    {
        $session = \json_decode(\base64_decode($session), true);
        $default = ['id' => null, 'secret' => ''];

        if (!\is_array($session)) {
            return $default;
        }

        return \array_merge($default, $session);
    }

    /**
     * Encode.
     *
     * One-way encryption
     *
     * @param $string
     *
     * @return string
     */
    public static function hash($string)
    {
        return \hash('sha256', $string);
    }

    /**
     * Password Hash.
     *
     * One way string hashing for user passwords
     *
     * @param $string
     *
     * @return bool|string
     */
    public static function passwordHash($string)
    {
        return \password_hash($string, PASSWORD_BCRYPT, array('cost' => 8));
    }

    /**
     * Password verify.
     *
     * @param $plain
     * @param $hash
     *
     * @return bool
     */
    public static function passwordVerify($plain, $hash)
    {
        return \password_verify($plain, $hash);
    }

    /**
     * Password Generator.
     *
     * Generate random password string
     *
     * @param int $length
     *
     * @return string
     *
     * @throws \Exception
     */
    public static function passwordGenerator(int $length = 20):string
    {
        return \bin2hex(\random_bytes($length));
    }

    /**
     * Token Generator.
     *
     * Generate random password string
     *
     * @param int $length
     *
     * @return string
     *
     * @throws \Exception
     */
    public static function tokenGenerator(int $length = 128):string
    {
        return \bin2hex(\random_bytes($length));
    }

    /**
     * Verify token and check that its not expired.
     *
     * @param array  $tokens
     * @param int    $type
     * @param string $secret
     *
     * @return bool|string
     */
    public static function tokenVerify(array $tokens, int $type, string $secret)
    {
        foreach ($tokens as $token) { /* @var $token Document */
            if (isset($token['type']) &&
               isset($token['secret']) &&
               isset($token['expire']) &&
               $token['type'] == $type &&
               $token['secret'] === self::hash($secret) &&
               $token['expire']  >= \time()) {
                return $token->getId();
            }
        }

        return false;
    }
}
Added source code 2019-05-09 18:54:39 +12:00			`<?php`

Added a vendor namespace to all local libs 2020-03-25 06:56:32 +13:00			`namespace Appwrite\Auth;`
Added source code 2019-05-09 18:54:39 +12:00
Added a vendor namespace to all local libs 2020-03-25 06:56:32 +13:00			`use Appwrite\Database\Document;`
Added source code 2019-05-09 18:54:39 +12:00
			`class Auth`
			`{`
			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* User Status.`
Added source code 2019-05-09 18:54:39 +12:00			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`const USER_STATUS_UNACTIVATED = 0;`
			`const USER_STATUS_ACTIVATED = 1;`
			`const USER_STATUS_BLOCKED = 2;`
Added source code 2019-05-09 18:54:39 +12:00
			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* User Roles.`
Added source code 2019-05-09 18:54:39 +12:00			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`const USER_ROLE_GUEST = 0;`
			`const USER_ROLE_MEMBER = 1;`
			`const USER_ROLE_ADMIN = 2;`
			`const USER_ROLE_DEVELOPER = 3;`
			`const USER_ROLE_OWNER = 4;`
			`const USER_ROLE_APP = 5;`
			`const USER_ROLE_SYSTEM = 6;`
			`const USER_ROLE_ALL = '*';`
Added source code 2019-05-09 18:54:39 +12:00
			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Token Types.`
Added source code 2019-05-09 18:54:39 +12:00			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`const TOKEN_TYPE_LOGIN = 1;`
Updated naming conventions 2020-01-12 13:20:35 +13:00			`const TOKEN_TYPE_VERIFICATION = 2;`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`const TOKEN_TYPE_RECOVERY = 3;`
			`const TOKEN_TYPE_INVITE = 4;`
Added source code 2019-05-09 18:54:39 +12:00
			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Token Expiration times.`
Added source code 2019-05-09 18:54:39 +12:00			`*/`
Fixed indentation 2019-12-27 02:15:47 +13:00			`const TOKEN_EXPIRATION_LOGIN_LONG = 31536000; /* 1 year */`
			`const TOKEN_EXPIRATION_LOGIN_SHORT = 3600; /* 1 hour */`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`const TOKEN_EXPIRATION_RECOVERY = 3600; /* 1 hour */`
			`const TOKEN_EXPIRATION_CONFIRM = 3600 * 24 * 7; /* 7 days */`
Added source code 2019-05-09 18:54:39 +12:00
			`/**`
			`* @var string`
			`*/`
Improved the way we handle localhost cookies 2019-11-13 07:42:58 +13:00			`public static $cookieName = 'a_session';`
Added source code 2019-05-09 18:54:39 +12:00
			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* User Unique ID.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* @var int`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static $unique = 0;`
Added source code 2019-05-09 18:54:39 +12:00
			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* User Secret Key.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* @var string`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static $secret = '';`
Added source code 2019-05-09 18:54:39 +12:00
			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Set Cookie Name.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* @param $string`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return string`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function setCookieName($string)`
Added source code 2019-05-09 18:54:39 +12:00			`{`
			`return self::$cookieName = $string;`
			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Encode Session.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* @param int $id`
Added source code 2019-05-09 18:54:39 +12:00			`* @param string $secret`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return string`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function encodeSession($id, $secret)`
Added source code 2019-05-09 18:54:39 +12:00			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`return \base64_encode(\json_encode([`
Added source code 2019-05-09 18:54:39 +12:00			`'id' => $id,`
			`'secret' => $secret,`
			`]));`
			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Decode Session.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* @param string $session`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return array`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @throws \Exception`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function decodeSession($session)`
Added source code 2019-05-09 18:54:39 +12:00			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`$session = \json_decode(\base64_decode($session), true);`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`$default = ['id' => null, 'secret' => ''];`
Added source code 2019-05-09 18:54:39 +12:00
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`if (!\is_array($session)) {`
Added source code 2019-05-09 18:54:39 +12:00			`return $default;`
			`}`

Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`return \array_merge($default, $session);`
Added source code 2019-05-09 18:54:39 +12:00			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Encode.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* One-way encryption`
			`*`
			`* @param $string`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return string`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function hash($string)`
Added source code 2019-05-09 18:54:39 +12:00			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`return \hash('sha256', $string);`
Added source code 2019-05-09 18:54:39 +12:00			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Password Hash.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* One way string hashing for user passwords`
			`*`
			`* @param $string`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return bool\|string`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function passwordHash($string)`
Added source code 2019-05-09 18:54:39 +12:00			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`return \password_hash($string, PASSWORD_BCRYPT, array('cost' => 8));`
Added source code 2019-05-09 18:54:39 +12:00			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Password verify.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* @param $plain`
			`* @param $hash`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return bool`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function passwordVerify($plain, $hash)`
Added source code 2019-05-09 18:54:39 +12:00			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`return \password_verify($plain, $hash);`
Added source code 2019-05-09 18:54:39 +12:00			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Password Generator.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* Generate random password string`
			`*`
			`* @param int $length`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return string`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @throws \Exception`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function passwordGenerator(int $length = 20):string`
Added source code 2019-05-09 18:54:39 +12:00			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`return \bin2hex(\random_bytes($length));`
Added source code 2019-05-09 18:54:39 +12:00			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Token Generator.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
			`* Generate random password string`
			`*`
			`* @param int $length`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @return string`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added source code 2019-05-09 18:54:39 +12:00			`* @throws \Exception`
			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function tokenGenerator(int $length = 128):string`
Added source code 2019-05-09 18:54:39 +12:00			`{`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`return \bin2hex(\random_bytes($length));`
Added source code 2019-05-09 18:54:39 +12:00			`}`

			`/**`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* Verify token and check that its not expired.`
Added source code 2019-05-09 18:54:39 +12:00			`*`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`* @param array $tokens`
			`* @param int $type`
Added source code 2019-05-09 18:54:39 +12:00			`* @param string $secret`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`*`
Added unit tests for Auth library 2019-12-29 05:37:39 +13:00			`* @return bool\|string`
Added source code 2019-05-09 18:54:39 +12:00			`*/`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`public static function tokenVerify(array $tokens, int $type, string $secret)`
Added source code 2019-05-09 18:54:39 +12:00			`{`
			`foreach ($tokens as $token) { /* @var $token Document */`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`if (isset($token['type']) &&`
Added source code 2019-05-09 18:54:39 +12:00			`isset($token['secret']) &&`
			`isset($token['expire']) &&`
			`$token['type'] == $type &&`
			`$token['secret'] === self::hash($secret) &&`
Improve PHP exeution time by using fully-qualified function calls 2020-06-20 23:05:43 +12:00			`$token['expire'] >= \time()) {`
Updated $uid to $id 2020-02-17 20:16:11 +13:00			`return $token->getId();`
Added source code 2019-05-09 18:54:39 +12:00			`}`
			`}`

			`return false;`
			`}`
Run PHP-CS-FIXER to make sure code is consisted with PSR-1 + PSR-2 2019-09-07 05:04:26 +12:00			`}`