2020-07-22 02:47:56 +01:00
< ? php
2021-10-21 14:45:18 +01:00
declare ( strict_types = 1 );
2020-07-22 02:47:56 +01:00
// {{{ License
2020-09-05 21:19:58 +01:00
2020-07-22 02:47:56 +01:00
// This file is part of GNU social - https://www.gnu.org/software/social
//
// GNU social is free software: you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// GNU social is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with GNU social. If not, see <http://www.gnu.org/licenses/>.
2020-09-05 21:19:58 +01:00
2020-07-22 02:47:56 +01:00
// }}}
namespace App\Entity ;
2021-10-21 14:45:18 +01:00
use App\Core\Cache ;
2020-07-22 12:45:03 +01:00
use App\Core\DB\DB ;
2020-08-13 00:37:59 +01:00
use App\Core\Entity ;
2020-07-22 02:47:56 +01:00
use App\Core\UserRoles ;
2020-07-22 12:45:03 +01:00
use App\Util\Common ;
2021-12-03 02:51:41 +00:00
use App\Util\Exception\NicknameEmptyException ;
use App\Util\Exception\NicknameException ;
use App\Util\Exception\NicknameInvalidException ;
use App\Util\Exception\NicknameNotAllowedException ;
use App\Util\Exception\NicknameNotFoundException ;
use App\Util\Exception\NicknameTakenException ;
use App\Util\Exception\NicknameTooLongException ;
use App\Util\Nickname ;
2020-07-22 02:47:56 +01:00
use DateTimeInterface ;
2020-07-25 17:09:43 +01:00
use Exception ;
2020-07-27 04:36:34 +01:00
use libphonenumber\PhoneNumber ;
2021-11-16 14:48:18 +00:00
use Symfony\Component\Security\Core\User\PasswordAuthenticatedUserInterface ;
2020-07-22 02:47:56 +01:00
use Symfony\Component\Security\Core\User\UserInterface ;
2021-12-03 02:51:41 +00:00
use function App\Core\I18n\_m ;
2020-07-22 02:47:56 +01:00
/**
* Entity for users
*
* @ category DB
* @ package GNUsocial
*
* @ author Zach Copley < zach @ status . net >
* @ copyright 2010 StatusNet Inc .
* @ author Mikael Nordfeldth < mmn @ hethane . se >
* @ copyright 2009 - 2014 Free Software Foundation , Inc http :// www . fsf . org
2021-02-19 23:29:43 +00:00
* @ author Hugo Sales < hugo @ hsal . es >
* @ copyright 2020 - 2021 Free Software Foundation , Inc http :// www . fsf . org
2020-07-22 02:47:56 +01:00
* @ license https :// www . gnu . org / licenses / agpl . html GNU AGPL v3 or later
*/
2021-11-16 14:48:18 +00:00
class LocalUser extends Entity implements UserInterface , PasswordAuthenticatedUserInterface
2020-07-22 02:47:56 +01:00
{
// {{{ Autocode
2021-05-05 17:03:03 +01:00
// @codeCoverageIgnoreStart
2020-09-05 21:19:58 +01:00
private int $id ;
private string $nickname ;
2020-07-22 02:47:56 +01:00
private ? string $password ;
private ? string $outgoing_email ;
private ? string $incoming_email ;
2020-07-25 03:00:33 +01:00
private ? bool $is_email_verified ;
2020-07-22 02:47:56 +01:00
private ? string $timezone ;
2020-07-27 04:36:34 +01:00
private ? PhoneNumber $phone_number ;
2020-07-22 02:47:56 +01:00
private ? int $sms_carrier ;
private ? string $sms_email ;
2021-11-08 13:44:35 +00:00
private ? bool $auto_subscribe_back ;
private ? int $subscription_policy ;
2020-07-22 02:47:56 +01:00
private ? bool $is_stream_private ;
2021-10-21 14:45:18 +01:00
private DateTimeInterface $created ;
private DateTimeInterface $modified ;
2020-07-22 02:47:56 +01:00
2020-09-05 21:19:58 +01:00
public function setId ( int $id ) : self
{
$this -> id = $id ;
return $this ;
}
public function getId () : int
{
return $this -> id ;
}
public function setNickname ( string $nickname ) : self
2020-07-22 02:47:56 +01:00
{
$this -> nickname = $nickname ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-09-05 21:19:58 +01:00
public function getNickname () : string
2020-07-22 02:47:56 +01:00
{
return $this -> nickname ;
}
public function setPassword ( ? string $password ) : self
{
$this -> password = $password ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-22 02:47:56 +01:00
public function getPassword () : ? string
{
return $this -> password ;
}
public function setOutgoingEmail ( ? string $outgoing_email ) : self
{
$this -> outgoing_email = $outgoing_email ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-22 02:47:56 +01:00
public function getOutgoingEmail () : ? string
{
return $this -> outgoing_email ;
}
public function setIncomingEmail ( ? string $incoming_email ) : self
{
$this -> incoming_email = $incoming_email ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-22 02:47:56 +01:00
public function getIncomingEmail () : ? string
{
return $this -> incoming_email ;
}
2020-07-25 03:00:33 +01:00
public function setIsEmailVerified ( ? bool $is_email_verified ) : self
{
$this -> is_email_verified = $is_email_verified ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-25 03:00:33 +01:00
public function getIsEmailVerified () : ? bool
{
return $this -> is_email_verified ;
}
2020-07-22 02:47:56 +01:00
public function setTimezone ( ? string $timezone ) : self
{
$this -> timezone = $timezone ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-22 02:47:56 +01:00
public function getTimezone () : ? string
{
return $this -> timezone ;
}
2020-07-27 04:36:34 +01:00
public function setPhoneNumber ( ? PhoneNumber $phone_number ) : self
2020-07-22 02:47:56 +01:00
{
2020-07-26 01:18:15 +01:00
$this -> phone_number = $phone_number ;
2020-07-22 02:47:56 +01:00
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-27 04:36:34 +01:00
public function getPhoneNumber () : ? PhoneNumber
2020-07-22 02:47:56 +01:00
{
2020-07-26 01:18:15 +01:00
return $this -> phone_number ;
2020-07-22 02:47:56 +01:00
}
public function setSmsCarrier ( ? int $sms_carrier ) : self
{
$this -> sms_carrier = $sms_carrier ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-22 02:47:56 +01:00
public function getSmsCarrier () : ? int
{
return $this -> sms_carrier ;
}
public function setSmsEmail ( ? string $sms_email ) : self
{
$this -> sms_email = $sms_email ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-22 02:47:56 +01:00
public function getSmsEmail () : ? string
{
return $this -> sms_email ;
}
2021-11-08 13:44:35 +00:00
public function setAutoSubscribeBack ( ? bool $auto_subscribe_back ) : self
2020-07-22 02:47:56 +01:00
{
2021-11-08 13:44:35 +00:00
$this -> auto_subscribe_back = $auto_subscribe_back ;
2020-07-22 02:47:56 +01:00
return $this ;
}
2020-08-08 17:11:18 +01:00
2021-11-08 13:44:35 +00:00
public function getAutoSubscribeBack () : ? bool
2020-07-22 02:47:56 +01:00
{
2021-11-08 13:44:35 +00:00
return $this -> auto_subscribe_back ;
2020-07-22 02:47:56 +01:00
}
2021-11-08 13:44:35 +00:00
public function setSubscriptionPolicy ( ? int $subscription_policy ) : self
2020-07-22 02:47:56 +01:00
{
2021-11-08 13:44:35 +00:00
$this -> subscription_policy = $subscription_policy ;
2020-07-22 02:47:56 +01:00
return $this ;
}
2020-08-08 17:11:18 +01:00
2021-11-08 13:44:35 +00:00
public function getSubscriptionPolicy () : ? int
2020-07-22 02:47:56 +01:00
{
2021-11-08 13:44:35 +00:00
return $this -> subscription_policy ;
2020-07-22 02:47:56 +01:00
}
public function setIsStreamPrivate ( ? bool $is_stream_private ) : self
{
$this -> is_stream_private = $is_stream_private ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2020-07-22 02:47:56 +01:00
public function getIsStreamPrivate () : ? bool
{
return $this -> is_stream_private ;
}
2021-05-05 17:03:03 +01:00
public function setCreated ( DateTimeInterface $created ) : self
2020-07-22 02:47:56 +01:00
{
$this -> created = $created ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2021-05-05 17:03:03 +01:00
public function getCreated () : DateTimeInterface
2020-07-22 02:47:56 +01:00
{
return $this -> created ;
}
2021-05-05 17:03:03 +01:00
public function setModified ( DateTimeInterface $modified ) : self
2020-07-22 02:47:56 +01:00
{
$this -> modified = $modified ;
return $this ;
}
2020-08-08 17:11:18 +01:00
2021-05-05 17:03:03 +01:00
public function getModified () : DateTimeInterface
2020-07-22 02:47:56 +01:00
{
return $this -> modified ;
}
2021-05-05 17:03:03 +01:00
// @codeCoverageIgnoreEnd
2020-07-22 02:47:56 +01:00
// }}} Autocode
2021-10-28 17:34:01 +01:00
// {{{ Authentication
2020-07-22 02:47:56 +01:00
/**
* Returns the salt that was originally used to encode the password .
* BCrypt and Argon2 generate their own salts
*/
2021-10-21 14:45:18 +01:00
public function getSalt () : ? string
2020-07-22 02:47:56 +01:00
{
return null ;
}
/**
* Removes sensitive data from the user .
*
* This is important if , at any given point , sensitive information like
* the plain - text password is stored on this object .
*/
public function eraseCredentials ()
{
}
2020-07-22 12:45:03 +01:00
2021-08-04 21:06:58 +01:00
/**
* When authenticating , check a user ' s password in a timing safe
* way . Will update the password by rehashing if deemed necessary
*/
public function checkPassword ( string $password_plain_text ) : bool
2020-07-22 12:45:03 +01:00
{
2020-07-25 17:09:43 +01:00
// Timing safe password verification
2021-08-04 21:06:58 +01:00
if ( password_verify ( $password_plain_text , $this -> password )) {
2020-07-25 17:09:43 +01:00
// Update old formats
2021-10-21 14:45:18 +01:00
if ( password_needs_rehash (
$this -> password ,
self :: algoNameToConstant ( Common :: config ( 'security' , 'algorithm' )),
Common :: config ( 'security' , 'options' ),
)
2020-07-25 17:09:43 +01:00
) {
2021-08-18 17:30:02 +01:00
// @codeCoverageIgnoreStart
2021-08-04 21:06:58 +01:00
$this -> changePassword ( null , $password_plain_text , override : true );
2021-08-18 17:30:02 +01:00
// @codeCoverageIgnoreEnd
2020-07-25 17:09:43 +01:00
}
2020-07-22 12:45:03 +01:00
return true ;
}
return false ;
}
2021-08-04 21:06:58 +01:00
public function changePassword ( ? string $old_password_plain_text , string $new_password_plain_text , bool $override = false ) : bool
2020-07-22 12:45:03 +01:00
{
2021-08-04 21:06:58 +01:00
if ( $override || $this -> checkPassword ( $old_password_plain_text )) {
$this -> setPassword ( self :: hashPassword ( $new_password_plain_text ));
2020-07-22 12:45:03 +01:00
DB :: flush ();
2021-08-04 21:06:58 +01:00
return true ;
2020-07-22 12:45:03 +01:00
}
2021-08-04 21:06:58 +01:00
return false ;
2020-07-22 12:45:03 +01:00
}
2021-11-16 14:48:18 +00:00
public static function hashPassword ( string $password ) : string
2020-07-22 12:45:03 +01:00
{
2020-07-25 17:09:43 +01:00
$algorithm = self :: algoNameToConstant ( Common :: config ( 'security' , 'algorithm' ));
$options = Common :: config ( 'security' , 'options' );
return password_hash ( $password , $algorithm , $options );
}
2021-08-18 17:30:02 +01:00
/**
* Public for testing
*/
public static function algoNameToConstant ( string $algo )
2020-07-25 17:09:43 +01:00
{
switch ( $algo ) {
2020-07-22 12:45:03 +01:00
case 'bcrypt' :
case 'argon2i' :
2020-07-25 17:09:43 +01:00
case 'argon2d' :
2020-07-22 12:45:03 +01:00
case 'argon2id' :
2021-10-21 14:45:18 +01:00
$c = 'PASSWORD_' . mb_strtoupper ( $algo );
if ( \defined ( $c )) {
return \constant ( $c );
2020-07-27 23:18:23 +01:00
}
// fallthrough
// no break
2020-07-25 17:09:43 +01:00
default :
throw new Exception ( 'Unsupported or unsafe hashing algorithm requested' );
2020-07-22 12:45:03 +01:00
}
}
2021-11-16 14:48:18 +00:00
/**
* Returns the username used to authenticate the user .
* Part of the Symfony UserInterface
*
* @ return string
*
* @ deprecated since Symfony 5.3 , use getUserIdentifier () instead
*/
public function getUsername () : string
{
return $this -> getUserIdentifier ();
}
/**
* returns the identifier for this user ( e . g . its nickname )
* Part of the Symfony UserInterface
* @ return string
*/
public function getUserIdentifier () : string
{
return $this -> getNickname ();
}
2021-10-28 17:34:01 +01:00
// }}} Authentication
2021-12-03 02:51:41 +00:00
/**
* Checks if desired nickname is allowed , and in case it is , it sets Actor ' s nickname cache to newly set nickname
*
* @ param string $nickname Desired new nickname
* @ param int $actor_id Used to cache Actor nickname
* @ return $this
* @ throws NicknameEmptyException
* @ throws NicknameInvalidException
* @ throws NicknameNotAllowedException
* @ throws NicknameTakenException
* @ throws NicknameTooLongException
*/
public function setNicknameSanitizedAndCached ( string $nickname , int $actor_id ) : self
{
try {
$nickname = Nickname :: normalize ( $nickname , check_already_used : false , which : Nickname :: CHECK_LOCAL_USER , check_is_allowed : true );
$this -> nickname = $nickname ;
Cache :: set ( 'actor-nickname-id-' . $actor_id , $nickname );
} catch ( NicknameEmptyException $e ) {
throw new NicknameEmptyException ();
} catch ( NicknameInvalidException $e ) {
throw new NicknameInvalidException ();
} catch ( NicknameNotAllowedException $e ) {
throw new NicknameNotAllowedException ();
} catch ( NicknameTakenException $e ) {
throw new NicknameTakenException ();
} catch ( NicknameTooLongException $e ) {
throw new NicknameTooLongException ();
} catch ( NicknameException $e ) {
}
return $this ;
}
2021-10-28 17:34:01 +01:00
public function getActor ()
{
return DB :: find ( 'actor' , [ 'id' => $this -> id ]);
}
/**
* Returns the roles granted to the user
*/
public function getRoles ()
{
return UserRoles :: toArray ( $this -> getActor () -> getRoles ());
}
public static function getByNickname ( string $nickname ) : ? self
{
2021-11-16 13:14:21 +00:00
$key = str_replace ( '_' , '-' , $nickname );
return Cache :: get ( " user-nickname- { $key } " , fn () => DB :: findOneBy ( 'local_user' , [ 'nickname' => $nickname ]));
2021-10-28 17:34:01 +01:00
}
/**
* @ return self Returns self if email found
*/
public static function getByEmail ( string $email ) : ? self
{
2021-11-14 23:15:24 +00:00
$key = str_replace ( '@' , '-' , $email );
return Cache :: get ( " user-email- { $key } " , fn () => DB :: findOneBy ( 'local_user' , [ 'or' => [ 'outgoing_email' => $email , 'incoming_email' => $email ]]));
2021-10-28 17:34:01 +01:00
}
2020-08-13 00:37:59 +01:00
public static function schemaDef () : array
{
return [
'name' => 'local_user' ,
'description' => 'local users, bots, etc' ,
'fields' => [
2021-11-14 23:15:24 +00:00
'id' => [ 'type' => 'int' , 'foreign key' => true , 'target' => 'Actor.id' , 'multiplicity' => 'one to one' , 'not null' => true , 'description' => 'foreign key to actor table' ],
'nickname' => [ 'type' => 'varchar' , 'not null' => true , 'length' => 64 , 'description' => 'nickname or username, foreign key to actor' ],
'password' => [ 'type' => 'varchar' , 'length' => 191 , 'description' => 'salted password, can be null for users with federated authentication' ],
'outgoing_email' => [ 'type' => 'varchar' , 'length' => 191 , 'description' => 'email address for password recovery, notifications, etc.' ],
'incoming_email' => [ 'type' => 'varchar' , 'length' => 191 , 'description' => 'email address for post-by-email' ],
'is_email_verified' => [ 'type' => 'bool' , 'default' => false , 'description' => 'Whether the user opened the comfirmation email' ],
'timezone' => [ 'type' => 'varchar' , 'length' => 50 , 'description' => 'timezone' ],
'phone_number' => [ 'type' => 'phone_number' , 'description' => 'phone number' ],
'sms_carrier' => [ 'type' => 'int' , 'foreign key' => true , 'target' => 'SmsCarrier.id' , 'multiplicity' => 'one to one' , 'description' => 'foreign key to sms_carrier' ],
'sms_email' => [ 'type' => 'varchar' , 'length' => 191 , 'description' => 'built from sms and carrier (see sms_carrier)' ],
'auto_subscribe_back' => [ 'type' => 'bool' , 'default' => false , 'description' => 'automatically subscribe to users who subscribed us' ],
'subscription_policy' => [ 'type' => 'int' , 'size' => 'tiny' , 'default' => 0 , 'description' => '0 = anybody can subscribe; 1 = require approval' ],
'is_stream_private' => [ 'type' => 'bool' , 'default' => false , 'description' => 'whether to limit all notices to subscribers only' ],
'created' => [ 'type' => 'datetime' , 'not null' => true , 'default' => 'CURRENT_TIMESTAMP' , 'description' => 'date this record was created' ],
'modified' => [ 'type' => 'timestamp' , 'not null' => true , 'default' => 'CURRENT_TIMESTAMP' , 'description' => 'date this record was modified' ],
2020-08-13 00:37:59 +01:00
],
2020-09-05 21:19:58 +01:00
'primary key' => [ 'id' ],
2020-08-13 00:37:59 +01:00
'unique keys' => [
2020-09-05 21:19:58 +01:00
'user_nickname_key' => [ 'nickname' ],
2020-08-13 00:37:59 +01:00
'user_outgoing_email_key' => [ 'outgoing_email' ],
'user_incoming_email_key' => [ 'incoming_email' ],
'user_phone_number_key' => [ 'phone_number' ],
],
'indexes' => [
'user_nickname_idx' => [ 'nickname' ],
'user_created_idx' => [ 'created' ],
'user_sms_email_idx' => [ 'sms_email' ],
],
];
}
2020-07-22 02:47:56 +01:00
}