public function renderIndex($model)
{
$maxAttemptsBeforeCaptha = (int) AuthCommon::getParam('attemptsBeforeCaptcha');
if ($maxAttemptsBeforeCaptha != 0) {
$loginAtteptsInSession = (int) Yii::app()->session['loginAtteptsInSession'];
if ($loginAtteptsInSession > $maxAttemptsBeforeCaptha) {
$model->scenario = 'withCaptcha';
}
Yii::app()->session['loginAtteptsInSession'] = ++$loginAtteptsInSession;
}
$this->render('index', array('model' => $model));
}
/**
* Logs in the user using the given username and password in the model.
* @return boolean whether login is successful
*/
public function login()
{
if ($this->_identity === null) {
$this->_identity = new UserIdentity($this->username, $this->password);
$this->_identity->authenticate();
}
if ($this->_identity->errorCode === UserIdentity::ERROR_NONE) {
$days = AuthCommon::getParam('cookieBasedLoginDays');
if (empty($days)) {
$days = 14;
}
$duration = $this->rememberMe ? 3600 * 24 * $days : 0;
Yii::app()->user->login($this->_identity, $duration);
return true;
} else {
return false;
}
}
public function sendActivationtEmail($email, $guid, $username)
{
$siteName = Yii::app()->name;
$fullPageAddress = Yii::app()->createAbsoluteUrl('auth/user/activation');
$headers = AuthCommon::createMailHeader();
$subject = AuthCommon::getTemplateValue('mail', 'activation_subject');
$subject = sprintf($subject, $siteName);
$text = AuthCommon::getTemplateValue('mail', 'activation_text');
$restoreLink = $fullPageAddress . "&guid={$guid}";
$text = sprintf($text, $siteName, $username, $restoreLink, $guid, $fullPageAddress);
$subject = '=?UTF-8?B?' . base64_encode($subject) . '?=';
$body = $text;
$result = mail($email, $subject, $body, $headers);
return $result;
}
<?php
echo '<span class="col-sm-2"></span>';
echo CHtml::link(Yii::t('AuthModule.forms', 'Login. Restore password'), array('user/passrequest'));
echo '<span class="margin-right-mid"></span>';
echo CHtml::link(Yii::t('AuthModule.forms', 'Login. Register user'), array('user/registration'));
$allowSocial = Helpers::getAppParam('allowSocialServices');
if ($allowSocial) {
echo '<hr>';
echo '<div class="nojs-hide">';
if ($isAjax) {
$socialLoginLabel = '';
} else {
$socialLoginLabel = Yii::t('AuthModule.forms', 'Social login');
}
echo '<span class="col-sm-2 align-right">' . $socialLoginLabel . '</span>';
AuthCommon::renderExtAccountWindowJS();
AuthCommon::renderSocialLogin('facebook');
echo '<span class="margin-right-mid"></span>';
AuthCommon::renderSocialLogin('google');
echo '<span class="margin-right-mid"></span>';
AuthCommon::renderSocialLogin('vkontakte');
echo '</div>';
echo '<div class="nojs-show"><p>';
echo Yii::t('AuthModule.forms', 'Unable to login through social networks without JavaScript');
echo '</div>';
}
?>
</p>
public function saveUnsuccessfulIpAttempt($ip, $username)
{
if (empty($ip)) {
return;
}
$ipBlockedUntil = null;
$unsafeIp = Unsafeip::model()->getByIp($ip);
if ($unsafeIp == null) {
$unsafeIp = new Unsafeip();
$unsafeIp->ip_address = $ip;
}
$unsafeIp->attempts++;
$unsafeIp->attempts_total++;
$unsafeIp->comments = "user: " . $username;
$maxAttempts = AuthCommon::getParam('ipBlockMaxLoginAttempts');
if ($maxAttempts > 0) {
if ($unsafeIp->attempts < $maxAttempts) {
$unsafeIp->blocked_until = null;
} else {
$ipBlockTimeMinutes = AuthCommon::getParam('ipBlockTimeMinutes');
if ($ipBlockTimeMinutes > 0) {
//block user
$dt = new DateTime();
$dt->add(new DateInterval('PT' . $ipBlockTimeMinutes . 'M'));
$unsafeIp->blocked_until = $dt->format(AuthCommon::getParam('dateFormat'));
$ipBlockedUntil = $dt;
}
}
}
if (!$unsafeIp->saveModel()) {
//can't block user
$ipBlockedUntil = null;
}
return $ipBlockedUntil;
}
public function actionAjaxGenerateKey()
{
$key = AuthCommon::generateLicenceKey();
echo $key;
}
public function saveModel()
{
if ($this->scenario == 'insert') {
$hash = password_hash($this->password_entered, PASSWORD_BCRYPT, array('cost' => 10));
$this->password_hash = $hash;
$dt = new DateTime();
$this->date_reg = $dt->format(AuthCommon::getParam('dateFormat'));
$ip = AuthCommon::getUserIp();
$this->ip_endorsed = $ip;
} elseif ($this->scenario == 'update' || $this->scenario == 'passRestore') {
if (!empty($this->password_entered)) {
$hash = password_hash($this->password_entered, PASSWORD_BCRYPT, array('cost' => 10));
$this->password_hash = $hash;
}
} elseif ($this->scenario == 'activation') {
$this->activated = true;
}
$scenario = $this->scenario;
if (!$this->save()) {
yii::app()->user->setFlash('error', CHtml::errorSummary($this));
return false;
}
//add default subscriptions
if ($scenario == 'activation') {
Helpers::setUserDefaultParameters($this->id);
}
//send message to Admin about changes
if ($scenario != 'extServiceLogin' && $scenario != 'setLastLogin') {
$result = AuthCommon::notifyAdminAboutUser($this, $scenario);
}
return true;
}
private function getUserByServiceProfile($serviceProfile, $service)
{
//check if user exist in database
$serviceUserId = $serviceProfile->identifier;
$serviceUserEmail = $serviceProfile->emailVerified;
//define service username
if (array_key_exists('username', $serviceProfile) && !empty($serviceProfile->username)) {
$serviceUsername = $serviceProfile->username;
} else {
$serviceUsername = $serviceProfile->firstName . '' . $serviceProfile->lastName;
}
$dt = new DateTime();
$currentDateString = $dt->format(AuthCommon::getParam('dateFormat'));
$ExtAccount = ExtAccounts::model()->getUserByServiceIndentifier($service, $serviceUserId);
if ($ExtAccount == null) {
//create external account
$ExtAccount = new ExtAccounts();
$ExtAccount->date_connected = $currentDateString;
$ExtAccount->provider_name = $service;
//check user in database by email
if (!empty($serviceUserEmail)) {
$siteUser = Users::model()->getByEmail($serviceUserEmail);
} else {
//no external email, so we try to find by existing non manually created users
//$isCreatedManually=false;
//$siteUser=Users::model()->getByUsername($serviceUsername, $isCreatedManually);
$accountName = Yii::t('userProfile', $service);
throw new CHttpException(404, 'Нет адреса электронной почты в учетной записи ' . $accountName);
}
} else {
//serivce found in database
$userId = $ExtAccount->user_id;
$siteUser = Users::model()->findByPk($userId);
}
if ($siteUser == null) {
//create database user
$siteUser = new Users();
$siteUser->created_manually = false;
$siteUser->date_reg = $currentDateString;
$siteUser->activated = true;
//do not need activation by email
$siteUser->ip_endorsed = AuthCommon::getUserIp();
$userContemporary = new UsersComplementary();
} else {
//update database user
$userContemporary = UsersComplementary::model()->getByUserById($siteUser->id);
}
if ($userContemporary == null) {
$userContemporary = new UsersComplementary();
}
$isNewUserContemporary = $userContemporary == null;
$siteUser->scenario = 'extServiceLogin';
$siteUser->date_lastlogin = $currentDateString;
if (!$siteUser->created_manually) {
//update user data if it is not created manually
$siteUser->username = $serviceUsername;
$siteUser->full_name = $serviceProfile->firstName . ' ' . $serviceProfile->lastName;
if (empty($siteUser->email)) {
$siteUser->email = $serviceUserEmail;
}
$siteUser->comments = 'Updated from ' . ucwords($service);
}
if ($siteUser->saveModel() === false) {
throw new CHttpException(404, CHtml::errorSummary($siteUser));
}
if ($isNewUserContemporary || !$siteUser->created_manually) {
$userContemporary->scenario = 'extServiceLogin';
$userContemporary->user_id = $siteUser->id;
$userContemporary->city = $serviceProfile->city;
$userContemporary->country = $serviceProfile->country;
$userContemporary->picture_url = $serviceProfile->photoURL;
$userContemporary->language = $serviceProfile->language;
$userContemporary->comments = 'Updated from ' . ucwords($service);
if ($userContemporary->saveModel() === false) {
throw new CHttpException(404, CHtml::errorSummary($userContemporary));
}
}
//fill service user data
$ExtAccount->user_id = $siteUser->id;
$ExtAccount->connected = true;
$ExtAccount->service_user_email = $serviceUserEmail;
$ExtAccount->service_user_id = $serviceUserId;
if ($ExtAccount->saveModel() === false) {
throw new CHttpException(404, CHtml::errorSummary($ExtAccount));
}
return $siteUser;
}
<?php
$this->pageTitle = "Введите приглашение";
?>
<p>
В данное время регистрация новых пользователей производится по приглашениям (инвайтам).
</p>
<p>Если у вас нет приглашения, то его можно запросить, написав письмо на адрес:
<?php
try {
$email = Helpers::getAppParam('adminEmail');
} catch (Exception $ex) {
$email = AuthCommon::getParam('adminEmail');
}
echo CHtml::mailto($email, $email);
?>
</p>
<div class="margin-bottom-30"></div>
<div class="row">
<div class="table-responsive col-md-5">
<?php
$formRender = new FormElements($this, $model);
$formRender->fieldClass = "col-sm-8";
$formRender->labelClass = "col-sm-3";
$formRender->submitOffcet = "col-sm-offset-3";
$formRender->startForm();
$formRender->showErrors();
$formRender->textField('guid', '', '', false);
if ($model->scenario == 'withCaptcha') {
$formRender->capthaField('verifyCode');
