application/controllers/LoginController.php

   1 <?php
   2 /*  This file is part of Syj, Copyright (c) 2010 Arnaud Renevier,
   3     and is published under the AGPL license. */
   4
   5 class LoginController extends Zend_Controller_Action
   6 {
   7     public function init() {
   8         $this->view->headTitle($this->view->translate("login"));
   9         $this->view->headScript()->appendFile('js/prototype.js');
  10         $this->view->headScript()->appendFile('js/utils.js');
  11         $this->view->headScript()->appendFile('js/login.js');
  12         $this->view->headLink()->appendStylesheet('css/generic.css');
  13         $this->view->headLink()->appendStylesheet('css/login.css');
  14     }
  15
  16     public function loginAction() {
  17         $form = new Syj_Form_Login(array('name' => 'loginform'));
  18         $request = $this->getRequest();
  19         $formData = $request->getPost();
  20         $this->view->form = $form;
  21         $httprequest = $request->isXmlHttpRequest();
  22
  23         if (!$httprequest) {
  24             $this->_jsLocaleStrings();
  25         }
  26
  27         if (empty ($formData) or !$form->isValid($formData)) {
  28             if ($httprequest) {
  29                 throw new Syj_Exception_Request();
  30             } else {
  31                 return;
  32             }
  33         }
  34
  35         /* form has been filled */
  36
  37         $adapter = Zend_Db_Table_Abstract::getDefaultAdapter();
  38         $authAdapter = new Zend_Auth_Adapter_DbTable($adapter, 'users', 'pseudo', 'password');
  39         $authAdapter->setIdentity($formData['login_user'])
  40                 ->setCredential(sha1($formData['login_password']));
  41
  42         $auth = Zend_Auth::getInstance();
  43         $result = $auth->authenticate($authAdapter);
  44         if (!$result->isValid()) {
  45             if ($httprequest) {
  46                 throw new Syj_Exception_Forbidden();
  47             } else {
  48                 $form->addError('Wrong login/password');
  49                 return;
  50             }
  51         }
  52
  53         $userid = $authAdapter->getResultRowObject('id')->id;
  54         $this->_helper->SyjSession->login($userid);
  55
  56         if ($httprequest) {
  57             $api = $this->_helper->SyjApi->setCode(200);
  58
  59             $login_geom_id = $formData['login_geom_id'];
  60             if ($login_geom_id) {
  61                 $path = new Syj_Model_Path();
  62                 $pathMapper = new Syj_Model_PathMapper();
  63                 if (!$pathMapper->find((int)$login_geom_id, $path)) {
  64                     throw new Syj_Exception_Request();
  65                 }
  66                 if ($path->creator->id === $userid) {
  67                     $api->setBody("1"); // creator of displayed geometry
  68                 } else {
  69                     $api->setBody("0");
  70                 }
  71             } else {
  72                 $api->setBody("1"); // no geometry displayed: creator of the (future) geometry
  73             }
  74         } else {
  75             $this->redirect();
  76         }
  77     }
  78
  79     public function logoutAction() {
  80         $this->_helper->SyjSession->logout();
  81         $this->redirect();
  82     }
  83
  84     protected function redirect($target = null) {
  85         if (!isset($target)) {
  86             $target = $this->getRequest()->getQuery('redirect');
  87         }
  88
  89         if (!isset($target)) {
  90             $target = $this->view->baseUrl();
  91         }
  92         if (!$target) {
  93             $target = '/';
  94         }
  95
  96         $this->_helper->Redirector->gotoURL($target, array('prependBase' => false));
  97     }
  98
  99     protected function _jsLocaleStrings() {
 100         $this->view->jslocales = array(
 101             'userEmptyWarn' => __("you must enter a login name"));
 102     }
 103 }