صفحهٔ اصلی گشت‌و‌گذار راهنما
ورود
kevin
/
Ethica-vitrine
1
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
درخت: 3e2a1f9930
شاخه‌ها تگ‌ها
Ethica-vitrine
/
user
/
plugins
/
login
/
cli
/
NewUserCommand.php

NewUserCommand.php 11 KB
تاريخچه خام

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * @package    Grav\Plugin\Login
    4. 

  4.  *
    5. 

  5.  * @copyright  Copyright (C) 2014 - 2017 RocketTheme, LLC. All rights reserved.
    6. 

  6.  * @license    MIT License; see LICENSE file for details.
    7. 

  7.  */
    8. 

  8. namespace Grav\Plugin\Console;
    9. 

  9. 

  10. use Grav\Common\Config\Config;
    11. 

  11. use Grav\Console\ConsoleCommand;
    12. 

  12. use Grav\Common\File\CompiledYamlFile;
    13. 

  13. use Grav\Common\User\User;
    14. 

  14. use Grav\Common\Grav;
    15. 

  15. use RocketTheme\Toolbox\ResourceLocator\UniformResourceLocator;
    16. 

  16. use Symfony\Component\Console\Input\InputOption;
    17. 

  17. use Symfony\Component\Console\Helper\Helper;
    18. 

  18. use Symfony\Component\Console\Question\ChoiceQuestion;
    19. 

  19. use Symfony\Component\Console\Question\Question;
    20. 

  20. 

  21. /**
    22. 

  22.  * Class CleanCommand
    23. 

  23.  *
    24. 

  24.  * @package Grav\Console\Cli
    25. 

  25.  */
    26. 

  26. class NewUserCommand extends ConsoleCommand
    27. 

  27. {
    28. 

  28. 

  29.     /**
    30. 

  30.      * @var array
    31. 

  31.      */
    32. 

  32.     protected $options = [];
    33. 

  33. 

  34.     /**
    35. 

  35.      * Configure the command
    36. 

  36.      */
    37. 

  37.     protected function configure()
    38. 

  38.     {
    39. 

  39.         $this
    40. 

  40.             ->setName('new-user')
    41. 

  41.             ->setAliases(['add-user', 'newuser'])
    42. 

  42.             ->addOption(
    43. 

  43.                 'user',
    44. 

  44.                 'u',
    45. 

  45.                 InputOption::VALUE_REQUIRED,
    46. 

  46.                 'The username'
    47. 

  47.             )
    48. 

  48.             ->addOption(
    49. 

  49.                 'password',
    50. 

  50.                 'p',
    51. 

  51.                 InputOption::VALUE_REQUIRED,
    52. 

  52.                 "The password. Note that this option is not recommended because the password will be visible by users listing the processes. You should also make sure the password respects Grav's password policy."
    53. 

  53.             )
    54. 

  54.             ->addOption(
    55. 

  55.                 'email',
    56. 

  56.                 'e',
    57. 

  57.                 InputOption::VALUE_REQUIRED,
    58. 

  58.                 'The user email'
    59. 

  59.             )
    60. 

  60.             ->addOption(
    61. 

  61.                 'permissions',
    62. 

  62.                 'P',
    63. 

  63.                 InputOption::VALUE_REQUIRED,
    64. 

  64.                 'The user permissions. It can be either `a` for Admin access only, `s` for Site access only and `b` for both Admin and Site access.'
    65. 

  65.             )
    66. 

  66.             ->addOption(
    67. 

  67.                 'fullname',
    68. 

  68.                 'N',
    69. 

  69.                 InputOption::VALUE_REQUIRED,
    70. 

  70.                 'The user full name.'
    71. 

  71.             )
    72. 

  72.             ->addOption(
    73. 

  73.                 'title',
    74. 

  74.                 't',
    75. 

  75.                 InputOption::VALUE_REQUIRED,
    76. 

  76.                 'The title of the user. Usually used as a subtext. Example: Admin, Collaborator, Developer'
    77. 

  77.             )
    78. 

  78.             ->addOption(
    79. 

  79.                 'state',
    80. 

  80.                 's',
    81. 

  81.                 InputOption::VALUE_REQUIRED,
    82. 

  82.                 'The state of the account. Can be either `enabled` or `disabled`. [default: "enabled"]'
    83. 

  83.             )
    84. 

  84.             ->setDescription('Creates a new user')
    85. 

  85.             ->setHelp('The <info>new-user</info> creates a new user file in user/accounts/ folder')
    86. 

  86.         ;
    87. 

  87.     }
    88. 

  88. 

  89.     /**
    90. 

  90.      * @return int|null|void
    91. 

  91.      */
    92. 

  92.     protected function serve()
    93. 

  93.     {
    94. 

  94.         $this->options = [
    95. 

  95.             'user'        => $this->input->getOption('user'),
    96. 

  96.             'password1'   => $this->input->getOption('password'),
    97. 

  97.             'email'       => $this->input->getOption('email'),
    98. 

  98.             'permissions' => $this->input->getOption('permissions'),
    99. 

  99.             'fullname'    => $this->input->getOption('fullname'),
    100. 

  100.             'title'       => $this->input->getOption('title'),
    101. 

  101.             'state'       => $this->input->getOption('state')
    102. 

  102.         ];
    103. 

  103. 

  104.         $this->validateOptions();
    105. 

  105. 

  106.         $helper = $this->getHelper('question');
    107. 

  107.         $data   = [];
    108. 

  108. 

  109.         $this->output->writeln('<green>Creating new user</green>');
    110. 

  110.         $this->output->writeln('');
    111. 

  111. 

  112.         if (!$this->options['user']) {
    113. 

  113.             // Get username and validate
    114. 

  114.             $question = new Question('Enter a <yellow>username</yellow>: ', 'admin');
    115. 

  115.             $question->setValidator(function ($value) {
    116. 

  116.                 return $this->validate('user', $value);
    117. 

  117.             });
    118. 

  118. 

  119.             $username = $helper->ask($this->input, $this->output, $question);
    120. 

  120.         } else {
    121. 

  121.             $username = $this->options['user'];
    122. 

  122.         }
    123. 

  123. 

  124. 

  125.         if (!$this->options['password1']) {
    126. 

  126.             // Get password and validate
    127. 

  127.             $password = $this->askForPassword($helper, 'Enter a <yellow>password</yellow>: ', function ($password1) use ($helper) {
    128. 

  128.                 $this->validate('password1', $password1);
    129. 

  129. 

  130.                 // Since input is hidden when prompting for passwords, the user is asked to repeat the password
    131. 

  131.                 return $this->askForPassword($helper, 'Repeat the <yellow>password</yellow>: ', function ($password2) use ($password1) {
    132. 

  132.                     return $this->validate('password2', $password2, $password1);
    133. 

  133.                 });
    134. 

  134.             });
    135. 

  135. 

  136.             $data['password'] = $password;
    137. 

  137.         } else {
    138. 

  138.             $data['password'] = $this->options['password1'];
    139. 

  139.         }
    140. 

  140. 

  141.         if (!$this->options['email']) {
    142. 

  142.             // Get email and validate
    143. 

  143.             $question = new Question('Enter an <yellow>email</yellow>:   ');
    144. 

  144.             $question->setValidator(function ($value) {
    145. 

  145.                 return $this->validate('email', $value);
    146. 

  146.             });
    147. 

  147. 

  148.             $data['email'] = $helper->ask($this->input, $this->output, $question);
    149. 

  149.         } else {
    150. 

  150.             $data['email'] = $this->options['email'];
    151. 

  151.         }
    152. 

  152. 

  153.         if (!$this->options['permissions']) {
    154. 

  154.             // Choose permissions
    155. 

  155.             $question = new ChoiceQuestion(
    156. 

  156.                 'Please choose a set of <yellow>permissions</yellow>:',
    157. 

  157.                 array('a' => 'Admin Access', 's' => 'Site Access', 'b' => 'Admin and Site Access'),
    158. 

  158.                 'a'
    159. 

  159.             );
    160. 

  160. 

  161.             $question->setErrorMessage('Permissions %s is invalid.');
    162. 

  162.             $permissions_choice = $helper->ask($this->input, $this->output, $question);
    163. 

  163.         } else {
    164. 

  164.             $permissions_choice = $this->options['permissions'];
    165. 

  165.         }
    166. 

  166. 

  167.         switch ($permissions_choice) {
    168. 

  168.             case 'a':
    169. 

  169.                 $data['access']['admin'] = ['login' => true, 'super' => true];
    170. 

  170.                 break;
    171. 

  171.             case 's':
    172. 

  172.                 $data['access']['site'] = ['login' => true];
    173. 

  173.                 break;
    174. 

  174.             case 'b':
    175. 

  175.                 $data['access']['admin'] = ['login' => true, 'super' => true];
    176. 

  176.                 $data['access']['site']  = ['login' => true];
    177. 

  177.         }
    178. 

  178. 

  179.         if (!$this->options['fullname']) {
    180. 

  180.             // Get fullname
    181. 

  181.             $question = new Question('Enter a <yellow>fullname</yellow>: ');
    182. 

  182.             $question->setValidator(function ($value) {
    183. 

  183.                 return $this->validate('fullname', $value);
    184. 

  184.             });
    185. 

  185. 

  186.             $data['fullname'] = $helper->ask($this->input, $this->output, $question);
    187. 

  187.         } else {
    188. 

  188.             $data['fullname'] = $this->options['fullname'];
    189. 

  189.         }
    190. 

  190. 

  191. 

  192.         if (!$this->options['title'] && !count(array_filter($this->options))) {
    193. 

  193.             // Get title
    194. 

  194.             $question      = new Question('Enter a <yellow>title</yellow>:    ');
    195. 

  195.             $data['title'] = $helper->ask($this->input, $this->output, $question);
    196. 

  196.         } else {
    197. 

  197.             $data['title'] = $this->options['title'];
    198. 

  198.         }
    199. 

  199. 

  200.         if (!$this->options['state'] && !count(array_filter($this->options))) {
    201. 

  201.             // Choose State
    202. 

  202.             $question = new ChoiceQuestion(
    203. 

  203.                 'Please choose the <yellow>state</yellow> for the account:',
    204. 

  204.                 array('enabled' => 'Enabled', 'disabled' => 'Disabled'),
    205. 

  205.                 'enabled'
    206. 

  206.             );
    207. 

  207. 

  208.             $question->setErrorMessage('State %s is invalid.');
    209. 

  209.             $data['state'] = $helper->ask($this->input, $this->output, $question);
    210. 

  210.         } else {
    211. 

  211.             $data['state'] = $this->options['state'] ?: 'enabled';
    212. 

  212.         }
    213. 

  213. 

  214.         // Lowercase the username for the filename
    215. 

  215.         $username = strtolower($username);
    216. 

  216. 

  217.         /** @var UniformResourceLocator $locator */
    218. 

  218.         $locator = Grav::instance()['locator'];
    219. 

  219. 

  220.         // Create user object and save it
    221. 

  221.         $user = new User($data);
    222. 

  222.         $file = CompiledYamlFile::instance($locator->findResource('account://' . $username . YAML_EXT, true, true));
    223. 

  223.         $user->file($file);
    224. 

  224.         $user->save();
    225. 

  225. 

  226.         $this->output->writeln('');
    227. 

  227.         $this->output->writeln('<green>Success!</green> User <cyan>' . $username . '</cyan> created.');
    228. 

  228.     }
    229. 

  229. 

  230.     /**
    231. 

  231.      *
    232. 

  232.      */
    233. 

  233.     protected function validateOptions()
    234. 

  234.     {
    235. 

  235.         foreach (array_filter($this->options) as $type => $value) {
    236. 

  236.             $this->validate($type, $value);
    237. 

  237.         }
    238. 

  238.     }
    239. 

  239. 

  240.     /**
    241. 

  241.      * @param        $type
    242. 

  242.      * @param        $value
    243. 

  243.      * @param string $extra
    244. 

  244.      *
    245. 

  245.      * @return mixed
    246. 

  246.      */
    247. 

  247.     protected function validate($type, $value, $extra = '')
    248. 

  248.     {
    249. 

  249.         /** @var Config $config */
    250. 

  250.         $config = Grav::instance()['config'];
    251. 

  251. 

  252.         /** @var UniformResourceLocator $locator */
    253. 

  253.         $locator = Grav::instance()['locator'];
    254. 

  254. 

  255. 

  256.         $username_regex = '/' . $config->get('system.username_regex') . '/';
    257. 

  257.         $pwd_regex      = '/' . $config->get('system.pwd_regex') . '/';
    258. 

  258. 

  259.         switch ($type) {
    260. 

  260.             case 'user':
    261. 

  261.                 if (!preg_match($username_regex, $value)) {
    262. 

  262.                     throw new \RuntimeException('Username should be between 3 and 16 characters, including lowercase letters, numbers, underscores, and hyphens. Uppercase letters, spaces, and special characters are not allowed');
    263. 

  263.                 }
    264. 

  264.                 if (file_exists($locator->findResource('account://' . $value . YAML_EXT))) {
    265. 

  265.                     throw new \RuntimeException('Username "' . $value . '" already exists, please pick another username');
    266. 

  266.                 }
    267. 

  267. 

  268.                 break;
    269. 

  269. 

  270.             case 'password1':
    271. 

  271.                 if (!preg_match($pwd_regex, $value)) {
    272. 

  272.                     throw new \RuntimeException('Password must contain at least one number and one uppercase and lowercase letter, and at least 8 or more characters');
    273. 

  273.                 }
    274. 

  274. 

  275.                 break;
    276. 

  276. 

  277.             case 'password2':
    278. 

  278.                 if (strcmp($value, $extra)) {
    279. 

  279.                     throw new \RuntimeException('Passwords did not match.');
    280. 

  280.                 }
    281. 

  281. 

  282.                 break;
    283. 

  283. 

  284.             case 'email':
    285. 

  285.                 if (!filter_var($value, FILTER_VALIDATE_EMAIL)) {
    286. 

  286.                     throw new \RuntimeException('Not a valid email address');
    287. 

  287.                 }
    288. 

  288. 

  289.                 break;
    290. 

  290. 

  291.             case 'permissions':
    292. 

  292.                 if (!in_array($value, ['a', 's', 'b'])) {
    293. 

  293.                     throw new \RuntimeException('Permissions ' . $value . ' are invalid.');
    294. 

  294.                 }
    295. 

  295. 

  296.                 break;
    297. 

  297. 

  298.             case 'fullname':
    299. 

  299.                 if ($value === null || trim($value) === '') {
    300. 

  300.                     throw new \RuntimeException('Fullname cannot be empty');
    301. 

  301.                 }
    302. 

  302. 

  303.                 break;
    304. 

  304. 

  305.             case 'state':
    306. 

  306.                 if ($value !== 'enabled' && $value !== 'disabled') {
    307. 

  307.                     throw new \RuntimeException('State is not valid');
    308. 

  308.                 }
    309. 

  309. 

  310.                 break;
    311. 

  311.         }
    312. 

  312. 

  313.         return $value;
    314. 

  314.     }
    315. 

  315. 

  316.     /**
    317. 

  317.      * Get password and validate.
    318. 

  318.      *
    319. 

  319.      * @param Helper   $helper
    320. 

  320.      * @param string   $question
    321. 

  321.      * @param callable $validator
    322. 

  322.      *
    323. 

  323.      * @return string
    324. 

  324.      */
    325. 

  325.     protected function askForPassword(Helper $helper, $question, callable $validator)
    326. 

  326.     {
    327. 

  327.         $question = new Question($question);
    328. 

  328.         $question->setValidator($validator);
    329. 

  329.         $question->setHidden(true);
    330. 

  330.         $question->setHiddenFallback(true);
    331. 

  331.         return $helper->ask($this->input, $this->output, $question);
    332. 

  332.     }
    333. 

  333. }
    334.