/**
* Authenticates a user.
* The example implementation makes sure if the username and password
* are both 'demo'.
* In practical applications, this should be changed to authenticate
* against some persistent user identity storage (e.g. database).
* @return boolean whether authentication succeeds.
*/
public function authenticate()
{
$user = Accounts::Model()->findByAttributes(array('userName' => $this->username));
if ($user === null) {
$this->errorCode = self::ERROR_USERNAME_INVALID;
} else {
if ($user->password !== md5($user->salt . $this->password)) {
$this->errorCode = self::ERROR_PASSWORD_INVALID;
} else {
$this->_id = $user->accountID;
$this->setState('trackingGroupID', $user->trackingGroupID);
$this->setState('userLevel', $user->userLevel);
$this->errorCode = self::ERROR_NONE;
}
}
return !$this->errorCode;
}
public function getUsers()
{
if (Yii::app()->user->userLevel == 1) {
return Accounts::Model()->findAll();
} else {
return Accounts::Model()->findByPk(Yii::app()->user->id);
}
}
