update Piwik to version 2.16 (fixes #91)
This commit is contained in:
oliver
parent
296343bf3b
commit
d885a4baa9
5833 changed files with 418860 additions and 226988 deletions
|
|
@ -1,6 +1,6 @@
|
|||
<?php
|
||||
/**
|
||||
* Piwik - Open source web analytics
|
||||
* Piwik - free/libre analytics platform
|
||||
*
|
||||
* @link http://piwik.org
|
||||
* @license http://www.gnu.org/licenses/gpl-3.0.html GPL v3 or later
|
||||
|
|
@ -9,49 +9,123 @@
|
|||
|
||||
namespace Piwik;
|
||||
|
||||
use Exception;
|
||||
|
||||
/**
|
||||
* Base for authentication modules
|
||||
* Base interface for authentication implementations.
|
||||
*
|
||||
* Plugins that provide Auth implementations must provide a class that implements
|
||||
* this interface. Additionally, an instance of that class must be set in the
|
||||
* container with the 'Piwik\Auth' key during the
|
||||
* [Request.initAuthenticationObject](http://developer.piwik.org/api-reference/events#requestinitauthenticationobject)
|
||||
* event.
|
||||
*
|
||||
* Authentication implementations must support authentication via username and
|
||||
* clear-text password and authentication via username and token auth. They can
|
||||
* additionally support authentication via username and an MD5 hash of a password. If
|
||||
* they don't support it, then [formless authentication](http://piwik.org/faq/how-to/faq_30/) will fail.
|
||||
*
|
||||
* Derived implementations should favor authenticating by password over authenticating
|
||||
* by token auth. That is to say, if a token auth and a password are set, password
|
||||
* authentication should be used.
|
||||
*
|
||||
* ### Examples
|
||||
*
|
||||
* **How an Auth implementation will be used**
|
||||
*
|
||||
* // authenticating by password
|
||||
* $auth = StaticContainer::get('Piwik\Auth');
|
||||
* $auth->setLogin('user');
|
||||
* $auth->setPassword('password');
|
||||
* $result = $auth->authenticate();
|
||||
*
|
||||
* // authenticating by token auth
|
||||
* $auth = StaticContainer::get('Piwik\Auth');
|
||||
* $auth->setLogin('user');
|
||||
* $auth->setTokenAuth('...');
|
||||
* $result = $auth->authenticate();
|
||||
*
|
||||
* @api
|
||||
*/
|
||||
interface Auth
|
||||
{
|
||||
/**
|
||||
* Authentication module's name, e.g., "Login"
|
||||
* Must return the Authentication module's name, e.g., `"Login"`.
|
||||
*
|
||||
* @return string
|
||||
*/
|
||||
public function getName();
|
||||
|
||||
/**
|
||||
* Authenticates user
|
||||
*
|
||||
* @return AuthResult
|
||||
*/
|
||||
public function authenticate();
|
||||
|
||||
/**
|
||||
* Authenticates the user and initializes the session.
|
||||
*/
|
||||
public function initSession($login, $md5Password, $rememberMe);
|
||||
|
||||
/**
|
||||
* Accessor to set authentication token. If set, you can authenticate the tokenAuth by calling the authenticate()
|
||||
* method afterwards.
|
||||
* Sets the authentication token to authenticate with.
|
||||
*
|
||||
* @param string $token_auth authentication token
|
||||
*/
|
||||
public function setTokenAuth($token_auth);
|
||||
|
||||
/**
|
||||
* Accessor to set login name
|
||||
* Returns the login of the user being authenticated.
|
||||
*
|
||||
* @param string $login user login
|
||||
* @return string
|
||||
*/
|
||||
public function getLogin();
|
||||
|
||||
/**
|
||||
* Returns the secret used to calculate a user's token auth.
|
||||
*
|
||||
* A users token auth is generated using the user's login and this secret. The secret
|
||||
* should be specific to the user and not easily guessed. Piwik's default Auth implementation
|
||||
* uses an MD5 hash of a user's password.
|
||||
*
|
||||
* @return string
|
||||
* @throws Exception if the token auth secret does not exist or cannot be obtained.
|
||||
*/
|
||||
public function getTokenAuthSecret();
|
||||
|
||||
/**
|
||||
* Sets the login name to authenticate with.
|
||||
*
|
||||
* @param string $login The username.
|
||||
*/
|
||||
public function setLogin($login);
|
||||
|
||||
/**
|
||||
* Sets the password to authenticate with.
|
||||
*
|
||||
* @param string $password Password (not hashed).
|
||||
*/
|
||||
public function setPassword($password);
|
||||
|
||||
/**
|
||||
* Sets the hash of the password to authenticate with. The hash will be an MD5 hash.
|
||||
*
|
||||
* @param string $passwordHash The hashed password.
|
||||
* @throws Exception if authentication by hashed password is not supported.
|
||||
*/
|
||||
public function setPasswordHash($passwordHash);
|
||||
|
||||
/**
|
||||
* Authenticates a user using the login and password set using the setters. Can also authenticate
|
||||
* via token auth if one is set and no password is set.
|
||||
*
|
||||
* Note: this method must successfully authenticate if the token auth supplied is a special hash
|
||||
* of the user's real token auth. This is because the SessionInitializer class stores a
|
||||
* hash of the token auth in the session cookie. You can calculate the token auth hash using the
|
||||
* {@link Piwik\Plugins\Login\SessionInitializer::getHashTokenAuth()} method.
|
||||
*
|
||||
* @return AuthResult
|
||||
* @throws Exception if the Auth implementation has an invalid state (ie, no login
|
||||
* was specified). Note: implementations are not **required** to throw
|
||||
* exceptions for invalid state, but they are allowed to.
|
||||
*/
|
||||
public function authenticate();
|
||||
}
|
||||
|
||||
/**
|
||||
* Authentication result
|
||||
* Authentication result. This is what is returned by authentication attempts using {@link Auth}
|
||||
* implementations.
|
||||
*
|
||||
* @api
|
||||
*/
|
||||
class AuthResult
|
||||
{
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue