当前位置: 首页>>代码示例>>PHP>>正文


PHP SecurityUtil::generateSessionToken方法代码示例

本文整理汇总了PHP中SecurityUtil::generateSessionToken方法的典型用法代码示例。如果您正苦于以下问题:PHP SecurityUtil::generateSessionToken方法的具体用法?PHP SecurityUtil::generateSessionToken怎么用?PHP SecurityUtil::generateSessionToken使用的例子?那么恭喜您, 这里精选的方法代码示例或许可以为您提供帮助。您也可以进一步了解该方法所在SecurityUtil的用法示例。


在下文中一共展示了SecurityUtil::generateSessionToken方法的2个代码示例,这些例子默认根据受欢迎程度排序。您可以为喜欢或者感觉有用的代码点赞,您的评价将有助于系统推荐出更棒的PHP代码示例。

示例1: verifyAndUpdateCurrentUser

 /**
  * @see IUserAuthentication::verifyAndUpdateCurrentUser()
  */
 public function verifyAndUpdateCurrentUser(User $currentUser)
 {
     $db = DbConnection::getInstance();
     $fromTable = $this->_website->getConfig('db_prefix') . '_user';
     if (!isset($_SESSION[SESSION_PARAM_USERID]) || !$_SESSION[SESSION_PARAM_USERID]) {
         // 'remember me' token
         $rememberMe = CookieHelper::getCookieValue('user');
         if ($rememberMe != null) {
             $columns = 'id, passwort_salt, nick, email, lang';
             $whereCondition = 'status = 1 AND tokenid = \'%s\'';
             $result = $db->querySelect($columns, $fromTable, $whereCondition, $rememberMe);
             $rememberedUser = $result->fetch_array();
             $result->free();
             if (isset($rememberedUser['id'])) {
                 $currentToken = SecurityUtil::generateSessionToken($rememberedUser['id'], $rememberedUser['passwort_salt']);
                 if ($currentToken === $rememberMe) {
                     $this->_login($rememberedUser, $db, $fromTable, $currentUser);
                     return;
                 } else {
                     CookieHelper::destroyCookie('user');
                     // invalid old token since most probably user agent changed
                     $columns = array('tokenid' => '');
                     $whereCondition = 'id = %d';
                     $parameter = $rememberedUser['id'];
                     $db->queryUpdate($columns, $fromTable, $whereCondition, $parameter);
                 }
             } else {
                 CookieHelper::destroyCookie('user');
             }
             // user is neither in session nor with cookie logged on
         } else {
             return;
         }
     }
     // get user data
     $userid = isset($_SESSION[SESSION_PARAM_USERID]) ? $_SESSION[SESSION_PARAM_USERID] : 0;
     if (!$userid) {
         return;
     }
     $columns = 'id, nick, email, lang, premium_balance, picture';
     $whereCondition = 'status = 1 AND id = %d';
     $result = $db->querySelect($columns, $fromTable, $whereCondition, $userid);
     if ($result->num_rows) {
         $userdata = $result->fetch_array();
         $this->_login($userdata, $db, $fromTable, $currentUser);
     } else {
         // user might got disabled in the meanwhile
         $this->logoutUser($currentUser);
     }
     $result->free();
 }
开发者ID:astroChasqui,项目名称:open-websoccer,代码行数:54,代码来源:SessionBasedUserAuthentication.class.php

示例2: executeAction

 /**
  * (non-PHPdoc)
  * @see IActionController::executeAction()
  */
 public function executeAction($parameters)
 {
     $loginMethodClass = $this->_websoccer->getConfig("login_method");
     if (!class_exists($loginMethodClass)) {
         throw new Exception("Login method class does not exist: " . $loginMethodClass);
     }
     $loginMethod = new $loginMethodClass($this->_websoccer, $this->_db);
     // sign in with e-mail
     if ($this->_websoccer->getConfig("login_type") == "email") {
         $userId = $loginMethod->authenticateWithEmail($parameters["loginstr"], $parameters["loginpassword"]);
         // sign in with user name
     } else {
         $userId = $loginMethod->authenticateWithUsername($parameters["loginstr"], $parameters["loginpassword"]);
     }
     // sign in failed
     if (!$userId) {
         sleep(SLEEP_SECONDS_ON_FAILURE);
         throw new Exception($this->_i18n->getMessage("formlogin_invalid_data"));
     }
     SecurityUtil::loginFrontUserUsingApplicationSession($this->_websoccer, $userId);
     // "remember me"
     if (isset($parameters["rememberme"]) && $parameters["rememberme"] == 1) {
         $fromTable = $this->_websoccer->getConfig("db_prefix") . "_user";
         $whereCondition = "id = %d";
         $parameter = $userId;
         // get password salt
         $result = $this->_db->querySelect("passwort_salt", $fromTable, $whereCondition, $parameter);
         $saltinfo = $result->fetch_array();
         $result->free();
         $salt = $saltinfo["passwort_salt"];
         if (!strlen($salt)) {
             $salt = SecurityUtil::generatePasswordSalt();
         }
         $sessionToken = SecurityUtil::generateSessionToken($userId, $salt);
         $columns = array("tokenid" => $sessionToken, "passwort_salt" => $salt);
         $this->_db->queryUpdate($columns, $fromTable, $whereCondition, $parameter);
         CookieHelper::createCookie("user", $sessionToken, REMEMBERME_COOKIE_LIFETIME_DAYS);
     }
     return strlen($this->_websoccer->getUser()->username) ? "office" : "enter-username";
 }
开发者ID:astroChasqui,项目名称:open-websoccer,代码行数:44,代码来源:FormLoginController.class.php


注:本文中的SecurityUtil::generateSessionToken方法示例由纯净天空整理自Github/MSDocs等开源代码及文档管理平台,相关代码片段筛选自各路编程大神贡献的开源项目,源码版权归原作者所有,传播和使用请参考对应项目的License;未经允许,请勿转载。