. class Login extends Secrets { protected $setup; protected $postData; protected $cookies; protected $locale; protected $crypto; protected $loginMethod; protected $fieldNeeded; public $name = ''; public $password = ''; public $loginHash = ''; public $email = ''; public $website = ''; public $userIsLoggedIn = false; public $userIsAdmin = false; public function __construct (Setup $setup) { // Store parameters as properties $this->setup = $setup; // Instantiate various classes $this->postData = new PostData (); $this->cookies = new Cookies ($setup); $this->locale = new Locale ($setup); $this->crypto = new Crypto (); // Name of login method class to instantiate $login_class = 'HashOver\\' . $setup->loginMethod; // Instantiate login method class $this->loginMethod = new $login_class ($setup, $this->cookies, $this->locale); // Error message to display to the user $this->fieldNeeded = $this->locale->text['field-needed']; // Check if user is logged in $this->getLogin (); } // Prepares login credentials public function prepareCredentials () { // Set name if (isset ($this->postData->data['name'])) { $this->loginMethod->name = $this->postData->data['name']; } // Attempt to get name $name = $this->setup->getRequest ('name'); // Attempt to get password $password = $this->setup->getRequest ('password'); // Set password if ($password !== false) { $this->loginMethod->password = $this->crypto->createHash ($password); } else { $this->loginMethod->password = ''; } // Check that login hash cookie is not set if ($this->cookies->getValue ('login') === null) { // If so, generate a random password $random_password = bin2hex (openssl_random_pseudo_bytes (16)); // And use user password or random password $password = $password ?: $random_password; } // Generate a RIPEMD-160 hash to indicate user login $this->loginMethod->loginHash = hash ('ripemd160', $name . $password); // Set e-mail address if (isset ($this->postData->data['email'])) { $this->loginMethod->email = $this->postData->data['email']; } // Set website URL if (isset ($this->postData->data['website'])) { $this->loginMethod->website = $this->postData->data['website']; } } // Update login credentials public function updateCredentials () { $this->name = $this->loginMethod->name; $this->password = $this->loginMethod->password; $this->loginHash = $this->loginMethod->loginHash; $this->email = $this->loginMethod->email; $this->website = $this->loginMethod->website; // Validate e-mail address if (!empty ($this->email)) { if (!filter_var ($this->email, FILTER_VALIDATE_EMAIL)) { $this->email = ''; } } // Prepend "http://" to website URL if missing if (!empty ($this->website)) { if (!preg_match ('/htt(p|ps):\/\//i', $this->website)) { $this->website = 'http://' . $this->website; } } } // Set login credentials public function setCredentials () { // Prepare login credentials $this->prepareCredentials (); // Set login method credentials $this->loginMethod->setCredentials (); // Update login credentials $this->updateCredentials (); } // Get login method credentials public function getCredentials () { $this->loginMethod->getCredentials (); $this->updateCredentials (); } // Checks if required fields have values public function validateFields () { // Run through login field options foreach ($this->setup->fieldOptions as $field => $status) { // Check if current field is required and is empty if ($status === 'required' and empty ($this->$field)) { // If so, set cookies if request is not AJAX if ($this->postData->viaAJAX !== true) { $this->cookies->setFailedOn ($field, $this->postData->replyTo); } // And throw exception throw new \Exception (sprintf ( $this->fieldNeeded, $this->locale->text[$field] )); } } return true; } // Main login method public function setLogin () { // Set login method credentials $this->setCredentials (); // Check if required fields have values $this->validateFields (); // Execute login method's setLogin if ($this->loginMethod->enabled === true) { $this->loginMethod->setLogin (); } } // Logs user in as admin public function adminLogin () { // Do nothing if login isn't admin if ($this->isAdmin () === false) { return; } // Set e-mail to admin e-mail address $this->loginMethod->email = $this->notificationEmail; // Set website to current domain $this->loginMethod->website = $this->setup->scheme . '://' . $this->setup->domain; // Set login method credentials $this->loginMethod->setCredentials (); // Update login credentials $this->updateCredentials (); // Check if required fields have values $this->validateFields (); // And login method's setLogin $this->loginMethod->setLogin (); } // Weak verification of an admin login public function isAdmin () { // Create login hash $hash = hash ('ripemd160', $this->adminName . $this->adminPassword); // Check if the hashes match $match = ($this->loginHash === $hash); return $match; } // Strict verification of an admin login public function verifyAdmin ($password = false) { // If no password was given use the current password $password = ($password === false) ? $this->password : $password; // Check if passwords match $match = $this->crypto->verifyHash ($this->adminPassword, $password); return $match; } // Check if user is logged in public function getLogin () { // Get login method credentials $this->getCredentials (); // Check if user is logged in if (!empty ($this->loginHash)) { // If so, set login indicator $this->userIsLoggedIn = true; // Check if user is logged in as admin if ($this->isAdmin () === true) { $this->userIsAdmin = true; } } } // Main logout method public function clearLogin () { $this->loginMethod->clearLogin (); } }