/** * The login form. * * @return string|\yii\web\Response * @throws \yii\base\InvalidConfigException */ public function actionLogin() { // Before filled login form. if (!isset(Yii::$app->request->post()['LoginForm']['username'])) { return $this->render('login', ['model' => new LoginForm()]); } $identity = User::findByUsername([Yii::$app->request->post()['LoginForm']['username']]); // User not found by username. if ($identity == null) { // Login error. Yii::$app->session->setFlash('error', 'Wrong username. Please check.'); return $this->render('login', ['model' => new LoginForm()]); } $inserted_password = Yii::$app->request->post()['LoginForm']['password']; // Successful login. if (Yii::$app->security->validatePassword($inserted_password, $identity->password_hash)) { Yii::$app->user->login($identity); PasswordController::teamSecretCheck(); return $this->redirect('/'); } else { // Login error. Yii::$app->session->setFlash('error', 'Wrong password. Please check.'); return $this->render('login', ['model' => new LoginForm()]); } }
/** * Creates data provider instance with search query applied * * @param array $params * * @return ActiveDataProvider */ public function search($params) { $query = User::find(); $dataProvider = new ActiveDataProvider(['query' => $query]); $this->load($params); if (!$this->validate()) { // uncomment the following line if you do not want to return any records when validation fails // $query->where('0=1'); return $dataProvider; } $query->andFilterWhere(['id' => $this->id, 'status' => $this->status, 'created_at' => $this->created_at, 'updated_at' => $this->updated_at]); $query->andFilterWhere(['like', 'username', $this->username])->andFilterWhere(['like', 'auth_key', $this->auth_key])->andFilterWhere(['like', 'password_hash', $this->password_hash])->andFilterWhere(['like', 'password_reset_token', $this->password_reset_token])->andFilterWhere(['like', 'email', $this->email]); return $dataProvider; }
public static function removeAllAuthAssignments($id) { // Remove the permission itself. $permission = \Yii::$app->authManager->getPermission('password-id-' . $id); if ($permission !== null) { $all_users = User::find()->all(); foreach ($all_users as $user) { UserController::removePermissionFromUser($user->id, 'password-id-' . $id); } \Yii::$app->authManager->remove($permission); } }
/** * Finds the User model based on its primary key value. * If the model is not found, a 404 HTTP exception will be thrown. * @param integer $id * @return User the loaded model * @throws NotFoundHttpException if the model cannot be found */ protected function findModel($id) { if (($model = User::findOne($id)) !== null) { return $model; } else { throw new NotFoundHttpException('The requested page does not exist.'); } }
/** * @inheritdoc */ public static function findIdentity($id) { return User::findOne(['id' => $id]); }