CodeMirror/appwrite
1
0
Fork 0
mirror of synced 2024-06-03 11:24:48 +12:00
Code Issues Projects Releases Wiki Activity
appwrite/app/sdks/php/src/Appwrite/Services/Auth.php
Frieder Bluemle 8297eec3dc
Fix typos
2019-10-02 11:08:34 -07:00

275 lines
9 KiB
PHP
Raw Blame History

<?php
namespace Appwrite\Services;
use Exception;
use Appwrite\Client;
use Appwrite\Service;
class Auth extends Service
{
/**
* Login User
*
* Allow the user to login into his account by providing a valid email and
* password combination. Use the success and failure arguments to provide a
* redirect URL\'s back to your app when login is completed.
*
* Please notice that in order to avoid a [Redirect
* Attacks](https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.md)
* the only valid redirect URL's are the once from domains you have set when
* added your platforms in the console interface.
*
* When accessing this route using JavaScript from the browser, success and
* failure parameter URLs are required. Appwrite server will respond with a
* 301 redirect status code and will set the user session cookie. This
* behavior is enforced because modern browsers are limiting 3rd party cookies
* in XHR of fetch requests to protect user privacy.
*
* @param string $email
* @param string $password
* @param string $success
* @param string $failure
* @throws Exception
* @return array
*/
public function login($email, $password, $success, $failure)
{
$path = str_replace([], [], '/auth/login');
$params = [];
$params['email'] = $email;
$params['password'] = $password;
$params['success'] = $success;
$params['failure'] = $failure;
return $this->client->call(Client::METHOD_POST, $path, [
], $params);
}
/**
* Logout Current Session
*
* Use this endpoint to log out the currently logged in user from his account.
* When succeed this endpoint will delete the user session and remove the
* session secret cookie from the user client.
*
* @throws Exception
* @return array
*/
public function logout()
{
$path = str_replace([], [], '/auth/logout');
$params = [];
return $this->client->call(Client::METHOD_DELETE, $path, [
], $params);
}
/**
* Logout Specific Session
*
* Use this endpoint to log out the currently logged in user from all his
* account sessions across all his different devices. When using the option id
* argument, only the session unique ID provider will be deleted.
*
* @param string $id
* @throws Exception
* @return array
*/
public function logoutBySession($id)
{
$path = str_replace(['{id}'], [$id], '/auth/logout/{id}');
$params = [];
return $this->client->call(Client::METHOD_DELETE, $path, [
], $params);
}
/**
* OAuth Login
*
* @param string $provider
* @param string $success
* @param string $failure
* @throws Exception
* @return array
*/
public function oauth($provider, $success = '', $failure = '')
{
$path = str_replace(['{provider}'], [$provider], '/auth/oauth/{provider}');
$params = [];
$params['success'] = $success;
$params['failure'] = $failure;
return $this->client->call(Client::METHOD_GET, $path, [
], $params);
}
/**
* Password Recovery
*
* Sends the user an email with a temporary secret token for password reset.
* When the user clicks the confirmation link he is redirected back to your
* app password reset redirect URL with a secret token and email address
* values attached to the URL query string. Use the query string params to
* submit a request to the /auth/password/reset endpoint to complete the
* process.
*
* @param string $email
* @param string $reset
* @throws Exception
* @return array
*/
public function recovery($email, $reset)
{
$path = str_replace([], [], '/auth/recovery');
$params = [];
$params['email'] = $email;
$params['reset'] = $reset;
return $this->client->call(Client::METHOD_POST, $path, [
], $params);
}
/**
* Password Reset
*
* Use this endpoint to complete the user account password reset. Both the
* **userId** and **token** arguments will be passed as query parameters to
* the redirect URL you have provided when sending your request to the
* /auth/recovery endpoint.
*
* Please notice that in order to avoid a [Redirect
* Attacks](https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.md)
* the only valid redirect URL's are the once from domains you have set when
* added your platforms in the console interface.
*
* @param string $userId
* @param string $token
* @param string $passwordA
* @param string $passwordB
* @throws Exception
* @return array
*/
public function recoveryReset($userId, $token, $passwordA, $passwordB)
{
$path = str_replace([], [], '/auth/recovery/reset');
$params = [];
$params['userId'] = $userId;
$params['token'] = $token;
$params['password-a'] = $passwordA;
$params['password-b'] = $passwordB;
return $this->client->call(Client::METHOD_PUT, $path, [
], $params);
}
/**
* Register User
*
* Use this endpoint to allow a new user to register an account in your
* project. Use the success and failure URL's to redirect users back to your
* application after signup completes.
*
* If registration completes successfully user will be sent with a
* confirmation email in order to confirm he is the owner of the account email
* address. Use the confirmation parameter to redirect the user from the
* confirmation email back to your app. When the user is redirected, use the
* /auth/confirm endpoint to complete the account confirmation.
*
* Please notice that in order to avoid a [Redirect
* Attacks](https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.md)
* the only valid redirect URL's are the once from domains you have set when
* added your platforms in the console interface.
*
* When accessing this route using JavaScript from the browser, success and
* failure parameter URLs are required. Appwrite server will respond with a
* 301 redirect status code and will set the user session cookie. This
* behavior is enforced because modern browsers are limiting 3rd party cookies
* in XHR of fetch requests to protect user privacy.
*
* @param string $email
* @param string $password
* @param string $confirm
* @param string $success
* @param string $failure
* @param string $name
* @throws Exception
* @return array
*/
public function register($email, $password, $confirm, $success = '', $failure = '', $name = '')
{
$path = str_replace([], [], '/auth/register');
$params = [];
$params['email'] = $email;
$params['password'] = $password;
$params['confirm'] = $confirm;
$params['success'] = $success;
$params['failure'] = $failure;
$params['name'] = $name;
return $this->client->call(Client::METHOD_POST, $path, [
], $params);
}
/**
* Confirm User
*
* Use this endpoint to complete the confirmation of the user account email
* address. Both the **userId** and **token** arguments will be passed as
* query parameters to the redirect URL you have provided when sending your
* request to the /auth/register endpoint.
*
* @param string $userId
* @param string $token
* @throws Exception
* @return array
*/
public function confirm($userId, $token)
{
$path = str_replace([], [], '/auth/register/confirm');
$params = [];
$params['userId'] = $userId;
$params['token'] = $token;
return $this->client->call(Client::METHOD_POST, $path, [
], $params);
}
/**
* Resend Confirmation
*
* This endpoint allows the user to request your app to resend him his email
* confirmation message. The redirect arguments acts the same way as in
* /auth/register endpoint.
*
* Please notice that in order to avoid a [Redirect
* Attacks](https://github.com/OWASP/CheatSheetSeries/blob/master/cheatsheets/Unvalidated_Redirects_and_Forwards_Cheat_Sheet.md)
* the only valid redirect URL's are the once from domains you have set when
* added your platforms in the console interface.
*
* @param string $confirm
* @throws Exception
* @return array
*/
public function confirmResend($confirm)
{
$path = str_replace([], [], '/auth/register/confirm/resend');
$params = [];
$params['confirm'] = $confirm;
return $this->client->call(Client::METHOD_POST, $path, [
], $params);
}
}
Reference in a new issue View git blame Copy permalink