gnu-social/classes/Login_token.php

<?php
// This file is part of GNU social - https://www.gnu.org/software/social
//
// GNU social is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// GNU social is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with GNU social.  If not, see <http://www.gnu.org/licenses/>.

/**
 * Table Definition for login_token
 *
 * @copyright 2009 StatusNet, Inc.
 * @license   https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later
 */

defined('GNUSOCIAL') || die();

class Login_token extends Managed_DataObject
{
    ###START_AUTOCODE
    /* the code below is auto generated do not remove the above tag */

    public $__table = 'login_token';         // table name
    public $user_id;                         // int(4)  primary_key not_null
    public $token;                           // char(32)  not_null
    public $created;                         // datetime()
    public $modified;                        // timestamp()  not_null default_CURRENT_TIMESTAMP

    /* the code above is auto generated do not remove the tag below */
    ###END_AUTOCODE

    public static function schemaDef()
    {
        return array(
            'fields' => array(
                'user_id' => array('type' => 'int', 'not null' => true, 'description' => 'user owning this token'),
                'token' => array('type' => 'char', 'length' => 32, 'not null' => true, 'description' => 'token useable for logging in'),
                'created' => array('type' => 'datetime', 'description' => 'date this record was created'),
                'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),
            ),
            'primary key' => array('user_id'),
            'foreign keys' => array(
                'login_token_user_id_fkey' => array('user', array('user_id' => 'id')),
            ),
        );
    }

    const TIMEOUT = 120; // seconds after which to timeout the token

    public function makeNew($user)
    {
        $login_token = Login_token::getKV('user_id', $user->id);

        if (!empty($login_token)) {
            $login_token->delete();
        }

        $login_token = new Login_token();

        $login_token->user_id = $user->id;
        $login_token->token   = common_random_hexstr(16);
        $login_token->created = common_sql_now();

        $result = $login_token->insert();

        if (!$result) {
            common_log_db_error($login_token, 'INSERT', __FILE__);
            // TRANS: Exception thrown when trying creating a login token failed.
            // TRANS: %s is the user nickname for which token creation failed.
            throw new Exception(sprintf(
                _('Could not create login token for %s'),
                $user->nickname
            ));
        }

        return $login_token;
    }
}
Added 'login' command that gives you a link that can be used to login to the website 2009-12-06 02:03:27 +00:00			`<?php`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`// This file is part of GNU social - https://www.gnu.org/software/social`
			`//`
			`// GNU social is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU Affero General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`
			`//`
			`// GNU social is distributed in the hope that it will be useful,`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
			`// GNU Affero General Public License for more details.`
			`//`
			`// You should have received a copy of the GNU Affero General Public License`
			`// along with GNU social. If not, see <http://www.gnu.org/licenses/>.`

Added 'login' command that gives you a link that can be used to login to the website 2009-12-06 02:03:27 +00:00			`/**`
			`* Table Definition for login_token`
			`*`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`* @copyright 2009 StatusNet, Inc.`
			`* @license https://www.gnu.org/licenses/agpl.html GNU AGPL v3 or later`
Added 'login' command that gives you a link that can be used to login to the website 2009-12-06 02:03:27 +00:00			`*/`

[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`defined('GNUSOCIAL') \|\| die();`
Added 'login' command that gives you a link that can be used to login to the website 2009-12-06 02:03:27 +00:00
move core schema to class files 2011-08-22 22:52:02 +01:00			`class Login_token extends Managed_DataObject`
Added 'login' command that gives you a link that can be used to login to the website 2009-12-06 02:03:27 +00:00			`{`
			`###START_AUTOCODE`
			`/* the code below is auto generated do not remove the above tag */`

			`public $__table = 'login_token'; // table name`
			`public $user_id; // int(4) primary_key not_null`
			`public $token; // char(32) not_null`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`public $created; // datetime()`
			`public $modified; // timestamp() not_null default_CURRENT_TIMESTAMP`
Added 'login' command that gives you a link that can be used to login to the website 2009-12-06 02:03:27 +00:00
			`/* the code above is auto generated do not remove the tag below */`
			`###END_AUTOCODE`
Override login_token's sequenceKey() so that it behaves correctly 2009-12-10 18:08:24 +00:00
move core schema to class files 2011-08-22 22:52:02 +01:00			`public static function schemaDef()`
			`{`
			`return array(`
			`'fields' => array(`
			`'user_id' => array('type' => 'int', 'not null' => true, 'description' => 'user owning this token'),`
			`'token' => array('type' => 'char', 'length' => 32, 'not null' => true, 'description' => 'token useable for logging in'),`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`'created' => array('type' => 'datetime', 'description' => 'date this record was created'),`
			`'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),`
move core schema to class files 2011-08-22 22:52:02 +01:00			`),`
			`'primary key' => array('user_id'),`
			`'foreign keys' => array(`
			`'login_token_user_id_fkey' => array('user', array('user_id' => 'id')),`
			`),`
			`);`
			`}`

Redirect to a one-time-password when ssl and regular server are different 2010-01-09 01:20:25 +00:00			`const TIMEOUT = 120; // seconds after which to timeout the token`

[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`public function makeNew($user)`
Redirect to a one-time-password when ssl and regular server are different 2010-01-09 01:20:25 +00:00			`{`
The overloaded DB_DataObject function staticGet is now called getKV I used this hacky sed-command (run it from your GNU Social root, or change the first grep's path to where it actually lies) to do a rough fix on all ::staticGet calls and rename them to ::getKV sed -i -s -e '/DataObject::staticGet/I!s/::staticGet/::getKV/Ig' $(grep -R ::staticGet `pwd`/* \| grep -v -e '^extlib' \| grep -v DataObject:: \|grep -v "function staticGet"\|cut -d: -f1 \|sort \|uniq) If you're applying this, remember to change the Managed_DataObject and Memcached_DataObject function definitions of staticGet to getKV! This might of course take some getting used to, or modification fo StatusNet plugins, but the result is that all the static calls (to staticGet) are now properly made without breaking PHP Strict Standards. Standards are there to be followed (and they caused some very bad confusion when used with get_called_class) Reasonably any plugin or code that tests for the definition of 'GNUSOCIAL' or similar will take this change into consideration. 2013-08-18 12:04:58 +01:00			`$login_token = Login_token::getKV('user_id', $user->id);`
Redirect to a one-time-password when ssl and regular server are different 2010-01-09 01:20:25 +00:00
			`if (!empty($login_token)) {`
			`$login_token->delete();`
			`}`

			`$login_token = new Login_token();`

			`$login_token->user_id = $user->id;`
Replace common_good_random with common_random_hexstr 2013-10-21 12:20:30 +01:00			`$login_token->token = common_random_hexstr(16);`
Redirect to a one-time-password when ssl and regular server are different 2010-01-09 01:20:25 +00:00			`$login_token->created = common_sql_now();`

			`$result = $login_token->insert();`

			`if (!$result) {`
			`common_log_db_error($login_token, 'INSERT', __FILE__);`
* add translator documentation * mark strings for translation * add FIXME for unclear/confusing message 2010-07-29 12:01:04 +01:00			`// TRANS: Exception thrown when trying creating a login token failed.`
			`// TRANS: %s is the user nickname for which token creation failed.`
[SCHEMA] Improve timestamp storage Avoid the use of deprecated MariaDB "zero dates" globally. If they're present as attribute defaults somewhere, they will be replaced with NULL implicitly. The existing "zero dates" in MariaDB storage will be left intact and this should not present any issues. The "timestamp" type in table definitions now corresponds to DATETIME in MariaDB with "DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP", which should be close enough to the original behaviour for compatibility purposes. It is now the recommended type for "modified" attributes, because of the update trigger on MariaDB. But there is no such trigger implemented on PostgreSQL as of this moment. 2020-06-28 23:41:46 +01:00			`throw new Exception(sprintf(`
			`_('Could not create login token for %s'),`
			`$user->nickname`
			`));`
Redirect to a one-time-password when ssl and regular server are different 2010-01-09 01:20:25 +00:00			`}`

			`return $login_token;`
			`}`
Added 'login' command that gives you a link that can be used to login to the website 2009-12-06 02:03:27 +00:00			`}`