We use cookies to ensure you get the best experience on our website
首頁 探索 說明
註冊 登入
0ct0pu5
/
forkbb
1
0
複刻 0
Files 問題管理 0 合併請求 0 Wiki
瀏覽代碼

Update Login page for log

Visman 4 年之前
父節點
b3be3c0745
當前提交
62a9d25991
共有 1 個文件被更改,包括 57 次插入11 次删除
統一視圖 顯示文件統計
  1. 57 11
      app/Models/Pages/Auth.php

+ 57 - 11
app/Models/Pages/Auth.php
查看文件 

@@ -24,6 +24,10 @@ class Auth extends Page
 
     public function logout(array $args): Page
 
     public function logout(array $args): Page
 
     {
 
     {
 
         if (! $this->c->Csrf->verify($args['token'], 'Logout', $args)) {
 
         if (! $this->c->Csrf->verify($args['token'], 'Logout', $args)) {
 
+            $this->c->Log->warning('Logout failed', [
 
+                'user' => $this->user->fLog(),
 
+            ]);
 
+
 
             return $this->c->Redirect->page('Index')->message($this->c->Csrf->getError());
 
             return $this->c->Redirect->page('Index')->message($this->c->Csrf->getError());
 
         }
 
         }
 
 
 
@@ -31,6 +35,10 @@ class Auth extends Page
 
         $this->c->Online->delete($this->user);
 
         $this->c->Online->delete($this->user);
 
         $this->c->users->updateLastVisit($this->user);
 
         $this->c->users->updateLastVisit($this->user);
 
 
 
+        $this->c->Log->info('Logout', [
 
+            'user' => $this->user->fLog(),
 
+        ]);
 
+
 
         $this->c->Lang->load('auth');
 
         $this->c->Lang->load('auth');
 
 
 
         return $this->c->Redirect->page('Index')->message('Logout redirect');
 
         return $this->c->Redirect->page('Index')->message('Logout redirect');
 
@@ -66,10 +74,18 @@ class Auth extends Page
 
             if ($v->validation($_POST, true)) {
 
             if ($v->validation($_POST, true)) {
 
                 $this->loginEnd($v);
 
                 $this->loginEnd($v);
 
 
 
+                $this->c->Log->info('Login', [
 
+                    'user' => $this->userAfterLogin->fLog(),
 
+                ]);
 
+
 
                 return $this->c->Redirect->url($v->redirect)->message('Login redirect');
 
                 return $this->c->Redirect->url($v->redirect)->message('Login redirect');
 
             }
 
             }
 
 
 
             $this->fIswev = $v->getErrors();
 
             $this->fIswev = $v->getErrors();
 
+
 
+            $this->c->Log->warning('Login failed', [
 
+                'user' => $this->user->fLog(),
 
+            ]);
 
         }
 
         }
 
 
 
         $ref = $this->c->Secury->replInvalidChars($_SERVER['HTTP_REFERER'] ?? '');
 
         $ref = $this->c->Secury->replInvalidChars($_SERVER['HTTP_REFERER'] ?? '');
 
@@ -95,17 +111,17 @@ class Auth extends Page
 
      */
 
      */
 
     protected function loginEnd(Validator $v): void
 
     protected function loginEnd(Validator $v): void
 
     {
 
     {
 
-        $this->c->users->updateLoginIpCache($this->c->userAfterLogin, true); // ????
 
+        $this->c->users->updateLoginIpCache($this->userAfterLogin, true); // ????
 
 
 
         // сбросить запрос на смену кодовой фразы
 
         // сбросить запрос на смену кодовой фразы
 
-        if (32 === \strlen($this->c->userAfterLogin->activate_string)) {
 
-            $this->c->userAfterLogin->activate_string = '';
 
+        if (32 === \strlen($this->userAfterLogin->activate_string)) {
 
+            $this->userAfterLogin->activate_string = '';
 
         }
 
         }
 
         // изменения юзера в базе
 
         // изменения юзера в базе
 
-        $this->c->users->update($this->c->userAfterLogin);
 
+        $this->c->users->update($this->userAfterLogin);
 
 
 
         $this->c->Online->delete($this->user);
 
         $this->c->Online->delete($this->user);
 
-        $this->c->Cookie->setUser($this->c->userAfterLogin, (bool) $v->save);
 
+        $this->c->Cookie->setUser($this->userAfterLogin, (bool) $v->save);
 
     }
 
     }
 
 
 
     /**
 
     /**
 
@@ -162,22 +178,22 @@ class Auth extends Page
 
     public function vLoginCheck(Validator $v, $password)
 
     public function vLoginCheck(Validator $v, $password)
 
     {
 
     {
 
         if (empty($v->getErrors())) {
 
         if (empty($v->getErrors())) {
 
-            $this->c->userAfterLogin = $this->c->users->loadByName($v->username);
 
+            $this->userAfterLogin = $this->c->users->loadByName($v->username);
 
 
 
             if (
 
             if (
 
-                ! $this->c->userAfterLogin instanceof User
 
-                || $this->c->userAfterLogin->isGuest
 
+                ! $this->userAfterLogin instanceof User
 
+                || $this->userAfterLogin->isGuest
 
             ) {
 
             ) {
 
                 $v->addError('Wrong user/pass');
 
                 $v->addError('Wrong user/pass');
 
-            } elseif ($this->c->userAfterLogin->isUnverified) {
 
+            } elseif ($this->userAfterLogin->isUnverified) {
 
                 $v->addError('Account is not activated', 'w');
 
                 $v->addError('Account is not activated', 'w');
 
-            } elseif (! \password_verify($password, $this->c->userAfterLogin->password)) {
 
+            } elseif (! \password_verify($password, $this->userAfterLogin->password)) {
 
                 $v->addError('Wrong user/pass');
 
                 $v->addError('Wrong user/pass');
 
             }
 
             }
 
         }
 
         }
 
 
 
         if (! empty($v->getErrors())) {
 
         if (! empty($v->getErrors())) {
 
-            $this->c->userAfterLogin = null;
 
+            $this->userAfterLogin = null;
 
         }
 
         }
 
 
 
         return $password;
 
         return $password;
 
@@ -241,6 +257,11 @@ class Auth extends Page
 
                         ->send();
 
                         ->send();
 
                 } catch (MailException $e) {
 
                 } catch (MailException $e) {
 
                     $isSent = false;
 
                     $isSent = false;
 
+
 
+                    $this->c->Log->error('Passphrase reset form MailException', [
 
+                        'user'      => $this->user->fLog(), // ???? Guest only?
 
+                        'exception' => $e,
 
+                    ]);
 
                 }
 
                 }
 
 
 
                 if ($isSent) {
 
                 if ($isSent) {
 
@@ -249,6 +270,10 @@ class Auth extends Page
 
 
 
                     $this->c->users->update($tmpUser);
 
                     $this->c->users->update($tmpUser);
 
 
 
+                    $this->c->Log->info('Passphrase reset form ok', [
 
+                        'user' => $this->user->fLog(), // ???? Guest only?
 
+                    ]);
 
+
 
                     return $this->c->Message->message(__('Forget mail', $this->c->config->o_admin_email), false, 200);
 
                     return $this->c->Message->message(__('Forget mail', $this->c->config->o_admin_email), false, 200);
 
                 } else {
 
                 } else {
 
                     return $this->c->Message->message(__('Error mail', $this->c->config->o_admin_email), true, 424);
 
                     return $this->c->Message->message(__('Error mail', $this->c->config->o_admin_email), true, 424);
 
@@ -256,6 +281,10 @@ class Auth extends Page
 
             }
 
             }
 
 
 
             $this->fIswev = $v->getErrors();
 
             $this->fIswev = $v->getErrors();
 
+
 
+            $this->c->Log->warning('Passphrase reset form failed', [
 
+                'user' => $this->user->fLog(), // ???? Guest only?
 
+            ]);
 
         }
 
         }
 
 
 
         $this->hhsLevel   = 'secure';
 
         $this->hhsLevel   = 'secure';
 
@@ -319,6 +348,11 @@ class Auth extends Page
 
             || empty($user->activate_string)
 
             || empty($user->activate_string)
 
             || ! \hash_equals($user->activate_string, $args['key'])
 
             || ! \hash_equals($user->activate_string, $args['key'])
 
         ) {
 
         ) {
 
+            $this->c->Log->warning('Passphrase reset confirmation failed', [
 
+                'user' => $user instanceof User ? $user->fLog() : $this->user->fLog(),
 
+                'args' => $args,
 
+            ]);
 
+
 
             // что-то пошло не так
 
             // что-то пошло не так
 
             return $this->c->Message->message('Bad request', false);
 
             return $this->c->Message->message('Bad request', false);
 
         }
 
         }
 
@@ -354,10 +388,18 @@ class Auth extends Page
 
 
 
                 $this->fIswev = ['s', __('Pass updated')];
 
                 $this->fIswev = ['s', __('Pass updated')];
 
 
 
+                $this->c->Log->info('Passphrase updated', [
 
+                    'user' => $user->fLog(),
 
+                ]);
 
+
 
                 return $this->login([], 'GET');
 
                 return $this->login([], 'GET');
 
             }
 
             }
 
 
 
             $this->fIswev = $v->getErrors();
 
             $this->fIswev = $v->getErrors();
 
+
 
+            $this->c->Log->warning('Passphrase change form failed', [
 
+                'user' => $user->fLog(),
 
+            ]);
 
         }
 
         }
 
         // активация аккаунта (письмо активации не дошло, заказали восстановление)
 
         // активация аккаунта (письмо активации не дошло, заказали восстановление)
 
         if ($user->isUnverified) {
 
         if ($user->isUnverified) {
 
@@ -367,6 +409,10 @@ class Auth extends Page
 
             $this->c->users->update($user);
 
             $this->c->users->update($user);
 
 
 
             $this->fIswev = ['i', __('Account activated')];
 
             $this->fIswev = ['i', __('Account activated')];
 
+
 
+            $this->c->Log->info('Account activated', [
 
+                'user' => $user->fLog(),
 
+            ]);
 
         }
 
         }
 
 
 
         $this->hhsLevel   = 'secure';
 
         $this->hhsLevel   = 'secure';

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5