standardebooks/web
1
0
Fork 0
mirror of https://github.com/standardebooks/web.git synced 2025-07-06 14:50:39 -04:00
Code Issues Projects Releases Packages Wiki Activity Actions

Log user in automatically if a request with HTTP auth is received

Browse source
This commit is contained in:
Alex Cabal 2022-07-12 11:30:03 -05:00
parent 216e63f014
commit c457af896c
6 changed files with 25 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

12
lib/Core.php
View file

@ -28,3 +28,15 @@ if(SITE_STATUS == SITE_STATUS_LIVE){
} }
$GLOBALS['User'] = Session::GetLoggedInUser(); $GLOBALS['User'] = Session::GetLoggedInUser();
if($GLOBALS['User'] === null){
$httpBasicAuthLogin = $_SERVER['PHP_AUTH_USER'] ?? null;
if($httpBasicAuthLogin !== null){
// If there's no logged in user, but a username was sent via HTTP basic auth,
// log them in while we're here.
$session = new Session();
$session->Create($httpBasicAuthLogin);
}
}

11
lib/Session.php
View file

@ -48,17 +48,18 @@ class Session extends PropertiesBase{
$this->Created = new DateTime(); $this->Created = new DateTime();
Db::Query('INSERT into Sessions (UserId, SessionId, Created) values (?, ?, ?)', [$this->UserId, $this->SessionId, $this->Created]); Db::Query('INSERT into Sessions (UserId, SessionId, Created) values (?, ?, ?)', [$this->UserId, $this->SessionId, $this->Created]);
} }
$this->SetSessionCookie($this->SessionId);
} }
public static function GetLoggedInUser(): ?User{ public static function GetLoggedInUser(): ?User{
$sessionId = HttpInput::Str(COOKIE, 'sessionid'); $sessionId = HttpInput::Str(COOKIE, 'sessionid');
if($sessionId !== null){ if($sessionId !== null){
$result = Db::Query('select u.* from Users u inner join Sessions s using (UserId) where s.SessionId = ?', [$sessionId], 'User'); $result = Db::Query('SELECT u.* from Users u inner join Sessions s using (UserId) where s.SessionId = ?', [$sessionId], 'User');
if(sizeof($result) > 0){ if(sizeof($result) > 0){
// Refresh the login cookie for another 2 weeks self::SetSessionCookie($sessionId);
setcookie('sessionid', $sessionId, time() + 60 * 60 * 24 * 14 * 1, '/', SITE_DOMAIN, true, false); // Expires in two weeks
return $result[0]; return $result[0];
} }
} }
@ -66,6 +67,10 @@ class Session extends PropertiesBase{
return null; return null;
} }
public static function SetSessionCookie($sessionId): void{
setcookie('sessionid', $sessionId, time() + 60 * 60 * 24 * 14 * 1, '/', SITE_DOMAIN, true, false); // Expires in two weeks
}
public static function Get(?string $sessionId): Session{ public static function Get(?string $sessionId): Session{
if($sessionId === null){ if($sessionId === null){
throw new Exceptions\InvalidSessionException(); throw new Exceptions\InvalidSessionException();

6
templates/FeedHowTo.php
View file

@ -7,6 +7,10 @@
<li><p><a href="/contribute">Produce an ebook</a> for Standard Ebooks to get lifetime access to our ebook feeds. (If youve already done that, <a href="/about#editor-in-chief">contact us</a> to enable your access.)</p></li> <li><p><a href="/contribute">Produce an ebook</a> for Standard Ebooks to get lifetime access to our ebook feeds. (If youve already done that, <a href="/about#editor-in-chief">contact us</a> to enable your access.)</p></li>
<li><p><a href="/donate#corporate-sponsors">Corporate sponsors</a> get access to all of our ebook feeds for the duration of their sponsorship. <a href="/about#editor-in-chief">Contact us</a> to chat about having your organization sponsor our mission.</p></li> <li><p><a href="/donate#corporate-sponsors">Corporate sponsors</a> get access to all of our ebook feeds for the duration of their sponsorship. <a href="/about#editor-in-chief">Contact us</a> to chat about having your organization sponsor our mission.</p></li>
</ul> </ul>
<? } ?>
<p><i>If youre a Patrons Circle member, when prompted enter your email address and leave the password field blank to access a feed.</i></p> <p><i>If youre a Patrons Circle member, when prompted enter your email address and leave the password field blank to access a feed.</i></p>
<? }elseif($GLOBALS['User']->Benefits->CanAccessFeeds){ ?>
<p>When prompted enter your email address and leave the password field blank to access a feed.</p>
<? }else{ ?>
<p><i>If youre a Patrons Circle member, when prompted enter your email address and leave the password field blank to access a feed.</i></p>
<? } ?>
</section> </section>

3
www/css/core.css
View file

@ -3130,9 +3130,6 @@ ul.feed p{
margin: 0 10px; margin: 0 10px;
} }
.ebooks-toolbar{
}
.ebooks-toolbar a.button{ .ebooks-toolbar a.button{
font-size: 0; font-size: 0;
gap: 0; gap: 0;

1
www/polls/votes/get.php
View file

@ -30,7 +30,6 @@ catch(Exceptions\SeException $ex){
<? }else{ ?> <? }else{ ?>
<p class="center-notice">Your vote in the <a href="<?= $vote->PollItem->Poll->Url ?>"><?= Formatter::ToPlainText($vote->PollItem->Poll->Name) ?> poll</a> was submitted on <?= $vote->Created->format('F j, Y g:i A') ?>.</p> <p class="center-notice">Your vote in the <a href="<?= $vote->PollItem->Poll->Url ?>"><?= Formatter::ToPlainText($vote->PollItem->Poll->Name) ?> poll</a> was submitted on <?= $vote->Created->format('F j, Y g:i A') ?>.</p>
<? } ?> <? } ?>
<p class="button-row narrow"><a class="button" href="<?= $vote->PollItem->Poll->Url ?>/votes"> view results</a></p> <p class="button-row narrow"><a class="button" href="<?= $vote->PollItem->Poll->Url ?>/votes"> view results</a></p>
</section> </section>
</main> </main>

2
www/sessions/post.php
View file

@ -24,8 +24,6 @@ try{
$session->Create($email); $session->Create($email);
setcookie('sessionid', $session->SessionId, time() + 60 * 60 * 24 * 14 * 1, '/', SITE_DOMAIN, true, false); // Expires in two weeks
if($requestType == WEB){ if($requestType == WEB){
http_response_code(303); http_response_code(303);
header('Location: ' . $redirect); header('Location: ' . $redirect);