Maurice Grönwoldt
parent
f00bdc99ec
commit
c7984873c0
|
|
@ -4,6 +4,7 @@
|
|||
namespace Venom\Admin;
|
||||
|
||||
|
||||
use Venom\Admin\Routes\LoginRoute;
|
||||
use Venom\Routing\Router;
|
||||
use Venom\Venom;
|
||||
|
||||
|
|
@ -18,6 +19,19 @@ class AdminRouterInit
|
|||
|
||||
public static function getRoutes(): array
|
||||
{
|
||||
return [];
|
||||
return [
|
||||
'/login' => [
|
||||
'cl' => LoginRoute::class,
|
||||
'roles' => ['ROLE_GUEST'],
|
||||
'routes' => [
|
||||
'*' => [
|
||||
"POST" => 'login'
|
||||
],
|
||||
'1' => [
|
||||
"GET" => 'handle'
|
||||
]
|
||||
]
|
||||
]
|
||||
];
|
||||
}
|
||||
}
|
||||
|
|
@ -4,12 +4,27 @@
|
|||
namespace Venom\Admin\Routes;
|
||||
|
||||
|
||||
use Venom\Core\ArgumentHandler;
|
||||
use Venom\Routing\Route;
|
||||
use Venom\Security\Security;
|
||||
|
||||
class LoginRoute implements Route
|
||||
{
|
||||
|
||||
public function getAll(): bool {
|
||||
public function login(): bool
|
||||
{
|
||||
Security::get()->login();
|
||||
return true;
|
||||
}
|
||||
|
||||
public function handle($fnc): bool
|
||||
{
|
||||
if ($fnc === 'logout') {
|
||||
Security::get()->logout();
|
||||
$url = ArgumentHandler::get()->getPostItem('REDIRECT_TO', '/admin/');
|
||||
header('Location: ' . $url);
|
||||
die();
|
||||
}
|
||||
return true;
|
||||
}
|
||||
}
|
||||
|
|
@ -26,13 +26,13 @@ class User
|
|||
|
||||
public function loadUser(): bool
|
||||
{
|
||||
if (isset($_SESSION['userID'])) {
|
||||
if (isset($_SESSION['userID']) || $this->username !== 'GUEST') {
|
||||
// try to load user from id!
|
||||
$user = DatabaseHandler::get()->getOne("SELECT * FROM users WHERE id = :id OR username = :name AND isActive = 1", [
|
||||
':id' => $_SESSION['userID'],
|
||||
':name' => $this->username
|
||||
]);
|
||||
if ($user) {
|
||||
if ($user !== null) {
|
||||
$this->username = $user->username ?? '';
|
||||
$this->email = $user->email ?? '';
|
||||
$this->password = $user->password ?? '';
|
||||
|
|
|
|||
|
|
@ -30,7 +30,9 @@ class BaseLogin implements Login
|
|||
|
||||
public function redirect(): void
|
||||
{
|
||||
http_redirect(URLHelper::getInstance()->getUrl(), ['redirect' => 'true'], true);
|
||||
$url = ArgumentHandler::get()->getPostItem('REDIRECT_TO', URLHelper::getInstance()->getUrl());
|
||||
header('Location: ' . $url);
|
||||
die();
|
||||
}
|
||||
|
||||
public function login(): bool
|
||||
|
|
|
|||
|
|
@ -3,7 +3,7 @@
|
|||
|
||||
namespace Venom\Security;
|
||||
|
||||
use http\Exception\RuntimeException;
|
||||
use \RuntimeException;
|
||||
use Venom\Core\Config;
|
||||
use Venom\Models\User;
|
||||
|
||||
|
|
@ -43,11 +43,11 @@ class Security
|
|||
|
||||
public function login(): void
|
||||
{
|
||||
if (!$this->user->isLoaded()) {
|
||||
if ($this->user->isLoaded()) {
|
||||
throw new RuntimeException('Try to re-login!');
|
||||
}
|
||||
$sec = Config::getInstance()->getSecurity();
|
||||
$login = new $sec->securityClass;
|
||||
$login = new $sec->securityClass($this->user);
|
||||
if ($login instanceof Login) {
|
||||
if (!$login->checkCredentials() || !$login->login()) {
|
||||
http_response_code(401);
|
||||
|
|
|
|||
|
|
@ -4,7 +4,16 @@ use Venom\Models\User;
|
|||
use \Venom\Security\Security;
|
||||
|
||||
if (!Security::get()->hasRole(User::ADMIN_ROLE)) {
|
||||
?>
|
||||
<form method="post" action="/admin/api/login">
|
||||
<input type="text" name="USERNAME" placeholder="Username">
|
||||
<input type="password" name="PASSWORD" placeholder="Password">
|
||||
<input type="hidden" name="REDIRECT_TO" value="/admin/">
|
||||
<input type="submit" value="Login">
|
||||
</form>
|
||||
<?php
|
||||
echo 'Login!';
|
||||
} else {
|
||||
echo 'Admin Interface!';
|
||||
echo '<a href="/admin/api/login/logout">Ausloggen</a>';
|
||||
}
|
||||
|
|
|
|||
Loading…
Reference in New Issue