pkj / minibase-plugin-auth
The auth plugin implements authentication for your app.
Requires
- php: >=5.4.0
- doctrine/migrations: dev-master
- facebook/php-sdk: 3.*
- minibase/minibase: dev-master
- pkj/minibase-plugin-doctrine: dev-master
- pkj/minibase-plugin-mailer: dev-master
- pkj/minibase-plugin-twig: dev-master
This package is auto-updated.
Last update: 2024-10-29 04:30:50 UTC
README
Auth is a big and customizable plugin for Minibase framework. It's for PHP 5.4+. If you need authentication for you app look no further. This plugin is cuztomizable, such as the View customzation.
Supported authentication mechanisms:
- Normal email/password auth.
- Facebook Oauth login.
- API Authentication (for your resful apis)
Plugin requirements
This plugin requires some plugins to be installed. The most important plugin is twig, the twig plugin overrides the default php view handeling of minibase.
- Doctrine plugin: ORM
- Twig plugin: Templating engine.
- Csrf plugin: For security
Install
This plugin must be initialized before Doctrine/Twig plugin.
Sample integration with JSON:
Add the plugins like so in your app.json file.
"plugins": [ { "name": "Pkj/Minibase/Plugin/AuthPlugin/AuthPlugin", "config": { "providers": { "facebook": { "appId": "APP_ID", "secret": "FACEBOOK_SECRET_KEY" } }, "api": { "ensure_token": true, "expire_timeout": "+100 days" } } }, { "name": "Pkj/Minibase/Plugin/TwigPlugin/TwigPlugin", "config": { } }, { "name":"Pkj/Minibase/Plugin/Csrf/CsrfPlugin" }, { "name": "Pkj/Minibase/Plugin/DoctrinePlugin/DoctrinePlugin", "config": { "metadata": "annotation", "entityDirs": ["${APP_DIR}/models/"], "proxyDir": "${APP_DIR}/cache/proxies", "connection": { "driver": "pdo_sqlite", "path": "${APP_DIR}/cache/db.sqlite" } } } ]
Update your database schema.
This plugin introduces some new database tables (for users).
Note, if you already have doctrine models in your app use orm:schema-tool:update --dump-sql and import it in your current database.
php cli.php orm:schema-tool:create
The routes
/login
View used in AuthPlugin/login.html, override this in your view folder to add your own login html code.
/register
Gives users the possiblity to register.
/user/settings
The control panel for the users settings. The user may change his password from this url.
Secure your controller methods.
This plugin introduces new annotations that you can put on your controllers or controller methods.
use Pkj\Minibase\Plugin\AuthPlugin\Annotation as Restrict;
@Restrict\Authenticated
The user must be authenticated, if not the view AuthPlugin/must_authenticate.html is displayed.
@Restrict\NotAuthenticated
The user must NOT be authenticated, if this fails the view AuthPlugin/must_not_authenticate.html is displayed.
@Restrict\UserGroups(groups={"admin"})
You can restrict any controller or method to only some user groups.
Annotation parameters
The redirect parameter (eg. @Restrict\Authenticate(redirect="MyController.heyloginnowplease") will redirect the user instead
of showing the AuthPlugin/must_authenticate.html.
API Authentication
This plugin aquires some other routes, such as /api/login . These calls expects a raw JSON request. the /api/login entry point gives you some data back if the posted json was correct, ie. {"username": "myuser", "password": "mypass"}. You will get a authToken back, this key can be used to authenticate further when needed. You just need to add ?auth_token=KEY to the URL and you will get access depending on the annotations that was assigned to the entry point.
Events
auth:register:before (Pkj\Minibase\Plugin\AuthPlugin\Models\UserAccount $user)
Fires just before the user is persisted to the database. Useful for custom validation of both username and your own fields. Throw \Exception if you want not to persist the user to the database.
auth:register:after (Pkj\Minibase\Plugin\AuthPlugin\Models\UserAccount $user)
Fires on registration (not provider registration). Allows you to add custom fields to your database when a user is registered.