S2OJ/web/app/models/Auth.php
Masco Skray 96d4a3ecf7 style(judger,web): move code out from subfolder "1"
Due to historical reasons, the code is in subfolder "1".
With SVN removal, we place the code back and remove the annoying "1" folder.
2019-06-14 23:34:41 +08:00

84 lines
2.3 KiB
PHP

<?php
class Auth {
public static function check() {
global $myUser;
return $myUser != null;
}
public static function id() {
global $myUser;
return $myUser['username'];
}
public static function user() {
global $myUser;
return $myUser;
}
public static function login($username, $remember = true) {
if (!validateUsername($username)) {
return;
}
$_SESSION['username'] = $username;
if ($remember) {
$remember_token = DB::selectFirst("select remember_token from user_info where username = '$username'")['remember_token'];
if ($remember_token == '') {
$remember_token = uojRandString(60);
DB::update("update user_info set remember_token = '$remember_token' where username = '$username'");
}
$expire = time() + 60 * 60 * 24 * 365 * 10;
Cookie::safeSet('uoj_username', $username, $expire, '/', array('httponly' => true));
Cookie::safeSet('uoj_remember_token', $remember_token, $expire, '/', array('httponly' => true));
}
}
public static function logout() {
unset($_SESSION['username']);
unset($_SESSION['last_visited']);
Cookie::safeUnset('uoj_username', '/');
Cookie::safeUnset('uoj_remember_token', '/');
DB::update("update user_info set remember_token = '' where username = '".Auth::id()."'");
}
private static function initMyUser() {
global $myUser;
$myUser = null;
Cookie::safeCheck('uoj_username', '/');
Cookie::safeCheck('uoj_remember_token', '/');
if (isset($_SESSION['username'])) {
if (!validateUsername($_SESSION['username'])) {
return;
}
$myUser = queryUser($_SESSION['username']);
return;
}
$remember_token = Cookie::safeGet('uoj_remember_token', '/');
if ($remember_token != null) {
$username = Cookie::safeGet('uoj_username', '/');
if (!validateUsername($username)) {
return;
}
$myUser = queryUser($username);
if ($myUser['remember_token'] !== $remember_token) {
$myUser = null;
}
return;
}
}
public static function init() {
global $myUser;
Auth::initMyUser();
if ($myUser) {
if ($myUser['usergroup'] == 'B') {
$myUser = null;
}
}
if ($myUser) {
DB::update("update user_info set remote_addr = '".DB::escape($_SERVER['REMOTE_ADDR'])."', http_x_forwarded_for = '".DB::escape($_SERVER['HTTP_X_FORWARDED_FOR'])."' where username = '".DB::escape($myUser['username'])."'");
$_SESSION['last_visited'] = time();
}
}
}