[feat] Added session handler & authorization

MrAnyx · MrAnyx · commit 646130265750 · 2020-10-20T10:25:01.000+02:00
diff --git a/src/Exception/SessionHandlerException.php b/src/Exception/SessionHandlerException.php
@@ -0,0 +1,17 @@
+<?php
+
+namespace TimePHP\Exception;
+
+class SessionHandlerException extends \Exception {
+
+   public function __construct($message = null, $code = 1000) {
+      if (!$message) {
+         throw new $this('Unknown ' . get_class($this));
+      }
+      parent::__construct($message, $code);
+   }
+
+   public function __toString(): string {
+      return __CLASS__ . "[{$this->code}] : {$this->message} at line {$this->line}";
+   }
+}
diff --git a/src/Foundation/AbstractController.php b/src/Foundation/AbstractController.php
@@ -9,8 +9,11 @@
 namespace TimePHP\Foundation;
 
 use Twig\Environment;
+use TimePHP\UrlParser\Parser;
 use TimePHP\Foundation\Router;
 use TimePHP\Security\CsrfToken;
+use TimePHP\Foundation\Authorization;
+use TimePHP\Foundation\SessionHandler;
 use TimePHP\Exception\SessionException;
 use TimePHP\Exception\RedirectionException;
 
@@ -27,8 +30,18 @@ abstract class AbstractController
      */
     protected $twig;
 
-    public function __construct(Environment $twig){
+
+    /**
+     * @var Parser
+     */
+    protected $request;
+
+    public function __construct(Environment $twig)
+    {
         $this->twig = $twig;
+        $this->request = new Parser();
+        $this->session = new SessionHandler();
+        $this->authorization = new Authorization();
     }
 
     /**
@@ -38,7 +51,8 @@ public function __construct(Environment $twig){
      * @param array $parameters
      * @return void
      */
-    public function render(string $view, array $parameters = []){
+    public function render(string $view, array $parameters = [])
+    {
         echo $this->twig->render($view, $parameters);
     }
 
@@ -50,25 +64,29 @@ public function render(string $view, array $parameters = []){
      * @param array|null $flags (optionel) correspond au parametres à donner a l'url
      * @return string
      */
-    public function generate(string $name, array $params = [], array $flags = []): string {
+    public function generate(string $name, array $params = [], array $flags = []): string
+    {
         return Router::generate($name, $params, $flags);
     }
 
     /**
      * Create a session based on parameters
      *
+     * @param object $user
      * @param array $params
      * @return void
      */
-    public function createSession(array $params): void {
-        if($params === null || empty($params) || empty($params)){
+    public function createSession( \App\Bundle\Entity\User $user, ?array $params = []): void
+    {
+        if ($user === null || empty($user)) {
             throw new SessionException("createSession function requires an array, null given", 1001);
-        } else if(!empty($_SESSION)) {
+        } else if (!empty($this->session->get())) {
             throw new SessionException('A session has already been started', 1002);
         } else {
-            $_SESSION["csrf_token"] = CsrfToken::generate();
-            foreach($params as $key => $value){
-                $_SESSION[$key] = $value;
+            $this->session->set("csrf_token", CsrfToken::generate())
+                ->set("user", $user);
+            foreach ($params as $key => $value) {
+                $this->session->set($key, $value);
             }
         }
     }
@@ -78,35 +96,24 @@ public function createSession(array $params): void {
      *
      * @return void
      */
-    public function closeSession(): void {
-        if(empty($_SESSION) === 0){
+    public function closeSession(): void
+    {
+        if (empty($this->session->get())) {
             throw new SessionException('No session was created. $_SESSION is empty', 1003);
         } else {
             session_unset();
             session_destroy();
         }
     }
 
-    /**
-     * Return the ucrrent session
-     *
-     * @return array|null
-     */
-    public function getSession(): ?array {
-        if(empty($_SESSION)) {
-            return null;
-        } else {
-            return $_SESSION;
-        }
-    }
-
     /**
      * Redirect to a url using a specific url
      *
      * @param string $url
      * @return void
      */
-    public function redirectUrl(string $url): void {
+    public function redirectUrl(string $url): void
+    {
         header("Location: $url");
     }
 
@@ -118,41 +125,13 @@ public function redirectUrl(string $url): void {
      * @param array $flags
      * @return void
      */
-    public function redirectRouteName(string $routeName, array $params = [], array $flags = []): void {
-        if(is_string($routeName)) {
-            header("Location: {$this->generate($routeName, $params, $flags)}");
+    public function redirectRouteName(string $routeName, array $params = [], array $flags = []): void
+    {
+        if (is_string($routeName)) {
+            header("Location: {$this->generate($routeName,$params,$flags)}");
         } else {
             throw new RedirectionException("$routeName doesn't exists");
         }
     }
 
-
-    /**
-     * Return a value from $_POST for a specific index
-     *
-     * @param string $index
-     * @return mixed|null
-     */
-    public function post(string $index){
-        return isset($_POST[$index]) ? $_POST[$index] : null; 
-    }
-
-    /**
-     * Return a value from $_GET for a specific index
-     *
-     * @param string $index
-     * @return mixed|null
-     */
-    public function get(string $index) {
-        if(isset($_GET[$index])){
-            if(is_numeric($_GET[$index])){
-                return (int) $_GET[$index];
-            } else {
-                return $_GET[$index];
-            }
-        } else {
-            return null;
-        }
-    }
-
-}
+}
diff --git a/src/Foundation/Authorization.php b/src/Foundation/Authorization.php
@@ -0,0 +1,55 @@
+<?php
+
+namespace TimePHP\Foundation;
+
+use TimePHP\Foundation\SessionHandler;
+
+class Authorization
+{
+
+   /**
+    * session handler
+    *
+    * @var SessionHandler
+    */
+   private $session;
+   
+
+   public function __construct()
+   {
+      $this->session = new SessionHandler();
+   }
+
+   /**
+    * Check if the current user is admin
+    *
+    * @return boolean
+    */
+   public function isAdmin(): bool
+   {
+      if ($this->session->get("user")->role === "admin") return true;
+      else return false;
+   }
+
+   /**
+    * Check if the current user is a user
+    *
+    * @return boolean
+    */
+   public function isUser(): bool
+   {
+      if ($this->session->get("user")->role === "user") return true;
+      else return false;
+   }
+
+   /**
+    * Check if the current user is a user
+    *
+    * @return boolean
+    */
+   public function isConnected(): bool
+   {
+      if ($this->session->get("csrf_token") !== null) return true;
+      else return false;
+   }
+}
diff --git a/src/Foundation/SessionHandler.php b/src/Foundation/SessionHandler.php
@@ -0,0 +1,55 @@
+<?php
+
+namespace TimePHP\Foundation;
+
+use TimePHP\Exception\SessionHandlerException;
+
+class SessionHandler
+{
+
+   /**
+    * Return a value from $_SESSION for a specific index
+    *
+    * @param string $index
+    * @return mixed|null
+    */
+   public function get(string $index = null)
+   {
+      if ($index === null) {
+         $list = [];
+         foreach ($_SESSION as $key => $value) {
+            if (filter_var($value, FILTER_VALIDATE_INT)) $list[$key] = (int)$value;
+            elseif (filter_var($value, FILTER_VALIDATE_FLOAT)) $list[$key] = (float)$value;
+            elseif (filter_var($value, FILTER_VALIDATE_BOOLEAN)) $list[$key] = (bool)$value;
+            else $list[$key] = $value;
+         }
+         return $list;
+      } else {
+         if (array_key_exists($index, $_SESSION)) {
+            if (filter_var($_SESSION[$index], FILTER_VALIDATE_INT)) return (int)$_SESSION[$index];
+            elseif (filter_var($_SESSION[$index], FILTER_VALIDATE_FLOAT)) return (float)$_SESSION[$index];
+            elseif (filter_var($_SESSION[$index], FILTER_VALIDATE_BOOLEAN)) return (bool)$_SESSION[$index];
+            else return $_SESSION[$index];
+         } else {
+            return null;
+         }
+      }
+   }
+
+   /**
+    * Set a $_SESSION value for a specifid index
+    *
+    * @param mixed $index
+    * @param mixed $object
+    * @return self
+    */
+   public function set(string $index, $object): self
+   {
+      if($object === null || empty($object)){
+         throw new SessionHandlerException("set function must have 1 parameter", 7001);
+      } else {
+         $_SESSION[$index] = $object;
+         return $this;
+      }
+   }
+}
diff --git a/src/Foundation/Twig.php b/src/Foundation/Twig.php
@@ -3,12 +3,16 @@
 namespace TimePHP\Foundation;
 
 use Closure;
+use DateTime;
+use Illuminate\Support\Facades\Session;
 use Twig\Markup;
 use Twig\TwigFilter;
 use Twig\Environment;
 use Twig\TwigFunction;
+use TimePHP\UrlParser\Parser;
 use Twig\Loader\FilesystemLoader;
 use TimePHP\Exception\TwigException;
+use TimePHP\Foundation\SessionHandler;
 
 class Twig
 {
@@ -20,6 +24,22 @@ class Twig
     */
    private $twig;
 
+
+   /**
+    * session handler
+    *
+    * @var SessionHandler
+    */
+   private $session;
+
+
+   /**
+    * Url parser
+    *
+    * @var Parser
+    */
+   private $request;
+
    /**
     * array of custom options
     *
@@ -28,6 +48,9 @@ class Twig
    public function __construct(array $options)
    {
 
+      $this->session = new SessionHandler();
+      $this->request = new Parser();
+
       $this->twig = new Environment(new FilesystemLoader(__DIR__ . "/../../../../../App/Bundle/Views"));
 
       $this->twig->addFunction(new TwigFunction('asset', function ($asset): string {
@@ -40,13 +63,36 @@ public function __construct(array $options)
          return sprintf(Router::generate($nameUrl, $params, $flags));
       }));
       $this->twig->addFunction(new TwigFunction('provideCsrf', function (string $csrfInputName = "csrf_token"): string {
-         return !empty($_SESSION) ? new Markup("<input type=\"hidden\" name=\"$csrfInputName\" value\"".$_SESSION["csrf_token"]."\"/>", "utf-8") : "";
+         return !empty($_SESSION) ? new Markup("<input type=\"hidden\" name=\"$csrfInputName\" value=\"{$_SESSION["csrf_token"]}\"/>", "utf-8") : "";
       }, ['is_safe' => ['html']]));
       $this->twig->addFunction(new TwigFunction('dump', function ($object): string {
          ob_start();
          dump($object);
          return ob_get_clean();
       }));
+      $this->twig->addFunction(new TwigFunction("get", function (string $param) {
+         return $this->request->get($param) !== null ? $this->request->get($param) : null;
+      }));
+      $this->twig->addFunction(new TwigFunction("isConnected", function () {
+         return $this->session->get("csrf_token") !== null;
+      }));
+      $this->twig->addFunction(new TwigFunction("isAdmin", function () {
+         return $this->session->get("csrf_token") !== null && $this->session->get("user")->role === "admin";
+      }));
+      $this->twig->addFunction(new TwigFunction("isUser", function () {
+         return $this->session->get("csrf_token") !== null && $this->session->get("user")->role === "user";
+      }));
+
+
+
+      $this->twig->addFilter(new TwigFilter("truncate", function (string $text, int $length) {
+         return substr($text, 0, $length);
+      }));
+      $this->twig->addFilter(new TwigFilter("formatDate", function (DateTime $date, string $format) {
+         $date = new DateTime($date);
+         return $date->format($format);
+      }));
+
 
       foreach ($options["twig"] as $function) {
 
