/**
*
* Verifies access data and saves current user if successful
* @param data Array containing 'Name' and 'Password' as keys with values
* @param $dontSave If true, user is not saved in session (logged in)
* @return bool
*/
function Verify($data, $dontSave = false)
{
if (!isset($data['Password']) || !isset($data['Name'])) {
return false;
}
$name = $data['Name'];
$user = User::Schema()->ByName($name);
if ($user) {
$password = $data['Password'];
$pwHash = hash('sha256', $password . $user->GetPasswordSalt());
if ($pwHash == $user->GetPassword()) {
if (!$dontSave) {
$this->user = $user;
$_SESSION[self::$sessionParam] = $this->user->GetID();
}
return true;
}
}
return false;
}
private function UserGroupWhere(Usergroup $group)
{
$sql = Access::SqlBuilder();
$tblUug = UserUsergroup::Schema()->Table();
return $sql->Equals($tblUug->Field('User'), $sql->Value($this->user->GetID()))->And_($sql->Equals($tblUug->Field('UserGroup'), $sql->Value($group->GetID())));
}
/**
* The url to the form for the user groups
* @param User $user
* @return string
*/
protected function GroupsFormUrl(User $user)
{
$args = array('user' => $user->GetID());
return BackendRouter::ModuleUrl(new UsergroupAssignmentForm(), $args);
}