wenil/amneziavpnphp
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
23075f12097da3e36da4af72b6133f32ee9b8a42
amneziavpnphp/inc/Auth.php
T
infosave2007 a33af60f2d Add project files
2025-11-07 13:34:06 +03:00

95 lines
3.8 KiB
PHP
Raw Blame History

<?php
class Auth {
public static function register(string $name, string $email, string $password): bool {
$pdo = DB::conn();
$email = strtolower(trim($email));
if (!filter_var($email, FILTER_VALIDATE_EMAIL)) return false;
if (strlen($password) < 6) return false;
$stmt = $pdo->prepare('SELECT id FROM users WHERE email = ? LIMIT 1');
$stmt->execute([$email]);
if ($stmt->fetchColumn()) return false;
$hash = password_hash($password, PASSWORD_DEFAULT);
$stmt = $pdo->prepare('INSERT INTO users (email, password_hash, name, role, status) VALUES (?, ?, ?, ?, ?)');
return $stmt->execute([$email, $hash, $name ?: $email, 'user', 'active']);
}
public static function login(string $email, string $password): bool {
$pdo = DB::conn();
$email = strtolower(trim($email));
$stmt = $pdo->prepare('SELECT * FROM users WHERE email = ? LIMIT 1');
$stmt->execute([$email]);
$user = $stmt->fetch();
if (!$user) return false;
if (!password_verify($password, $user['password_hash'])) return false;
$_SESSION['user_id'] = (int)$user['id'];
$pdo->prepare('UPDATE users SET last_login_at = NOW() WHERE id = ?')->execute([$user['id']]);
return true;
}
public static function logout(): void { unset($_SESSION['user_id']); }
public static function check(): bool { return isset($_SESSION['user_id']); }
public static function getUserByEmail(string $email): ?array {
$pdo = DB::conn();
$email = strtolower(trim($email));
$stmt = $pdo->prepare('SELECT * FROM users WHERE email = ? LIMIT 1');
$stmt->execute([$email]);
$user = $stmt->fetch();
return $user ?: null;
}
public static function user(): ?array {
if (!self::check()) return null;
$pdo = DB::conn();
$stmt = $pdo->prepare('SELECT * FROM users WHERE id = ? LIMIT 1');
$stmt->execute([$_SESSION['user_id']]);
$u = $stmt->fetch();
return $u ?: null;
}
public static function isAdmin(): bool {
$u = self::user();
return $u && ($u['role'] === 'admin');
}
public static function seedAdmin(string $email, string $password): void {
$pdo = DB::conn();
$email = strtolower(trim($email));
$stmt = $pdo->prepare('SELECT id FROM users WHERE email = ? LIMIT 1');
$stmt->execute([$email]);
if ($stmt->fetchColumn()) return;
$hash = password_hash($password, PASSWORD_DEFAULT);
$stmt = $pdo->prepare('INSERT INTO users (email, password_hash, name, role, status) VALUES (?, ?, ?, ?, ?)');
$stmt->execute([$email, $hash, 'Administrator', 'admin', 'active']);
}
public static function listUsers(): array {
$pdo = DB::conn();
$stmt = $pdo->query('SELECT id, email, name, role, status, created_at, last_login_at FROM users ORDER BY id DESC');
return $stmt->fetchAll();
}
public static function setRole(int $userId, string $role): bool {
if (!in_array($role, ['admin','user'], true)) return false;
$pdo = DB::conn();
$stmt = $pdo->prepare('UPDATE users SET role = ? WHERE id = ?');
return $stmt->execute([$role, $userId]);
}
public static function saveSetting(?int $userId, string $namespace, string $key, string $valueJson): bool {
$pdo = DB::conn();
$stmt = $pdo->prepare('INSERT INTO settings (user_id, namespace, `key`, `value`) VALUES (?, ?, ?, CAST(? AS JSON))
ON DUPLICATE KEY UPDATE `value` = VALUES(`value`), updated_at = NOW()');
return $stmt->execute([$userId, $namespace, $key, $valueJson]);
}
public static function getSetting(?int $userId, string $namespace, string $key): array {
$pdo = DB::conn();
$stmt = $pdo->prepare('SELECT `value` FROM settings WHERE user_id <=> ? AND namespace = ? AND `key` = ? LIMIT 1');
$stmt->execute([$userId, $namespace, $key]);
$val = $stmt->fetchColumn();
if (!$val) return [];
$decoded = json_decode($val, true);
return is_array($decoded) ? $decoded : [];
}
}
Reference in New Issue View Git Blame Copy Permalink