Permet l'inscription d'utilisateurs

2 years ago · d6a3a7938a
parent 1bce756470
commit d6a3a7938a
7 changed files with 81 additions and 5 deletions
--- a/public/index.php
+++ b/public/index.php
@ -16,4 +16,5 @@ $router->get('/^recent\/(?<page>\d+)$/', [$user, 'index']);
 $router->get('/^news\/(?<id>\d+)$/', [$user, 'viewPost']);
 $router->get('/^comments\/(?<id>[\w-]+)$/', [$user, 'viewPostComments']);
 $router->match('/^login$/', [$security, 'login']);
+$router->match('/^register$/', [$security, 'register']);
 $router->run(new \Silex\DI\DI($router))->render($router, __DIR__ . '/../' . VIEW_PATH);
--- a/src/Silex/Controller/SecurityController.php
+++ b/src/Silex/Controller/SecurityController.php
@ -6,6 +6,7 @@ namespace Silex\Controller;

 use Silex\DI\DI;
 use Silex\Http\HttpResponse;
+use Silex\Model\User;

 class SecurityController
 {
@ -19,9 +20,23 @@ class SecurityController
                header('Location: ' . $di->getRouter()->url(''));
                exit();
            }
-            var_dump($success);
            $fail = !$success;
        }
        return HttpResponse::found('login', ['fail' => $fail]);
    }
+
+    public function register(DI $di): HttpResponse
+    {
+        $fail = false;
+        if ($_SERVER['REQUEST_METHOD'] === 'POST') {
+            $user = $di->getSecurity()->register(User::fromRawPassword($_POST['login'], $_POST['password']));
+            if ($user !== null) {
+                http_response_code(303);
+                header('Location: ' . $di->getRouter()->url(''));
+                exit();
+            }
+            $fail = $user === null;
+        }
+        return HttpResponse::found('register', ['fail' => $fail]);
+    }
 }
--- a/src/Silex/Gateway/UserGateway.php
+++ b/src/Silex/Gateway/UserGateway.php
@ -33,4 +33,12 @@ class UserGateway
        $user = $req->fetch();
        return $user === false ? null : $user;
    }
+
+    public function insert(User $user): bool
+    {
+        $req = $this->pdo->prepare('INSERT INTO registered_user (login, password, role) VALUES (:login, :password, :role);');
+        $req->execute(['login' => $user->getLogin(), 'password' => $user->getPasswordHash(), 'role' => $user->getRole()]);
+        $user->setId(intval($this->pdo->lastInsertId()));
+        return true;
+    }
 }
--- a/src/Silex/Model/User.php
+++ b/src/Silex/Model/User.php
@ -11,11 +11,12 @@ class User
    private string $password;
    private int $role;

-    public static function fromRawPassword(string $login, string $password): User
+    public static function fromRawPassword(string $login, string $password, int $role = 0): User
    {
        $user = new User();
        $user->login = $login;
        $user->password = password_hash($password, PASSWORD_DEFAULT);
+        $user->role = $role;
        return $user;
    }

@ -38,4 +39,9 @@ class User
    {
        return $this->role;
    }
+
+    public function setId(int $id)
+    {
+        $this->id_user = $id;
+    }
 }
--- a/src/Silex/Security/Security.php
+++ b/src/Silex/Security/Security.php
@ -45,4 +45,14 @@ class Security
        }
        return $this->user;
    }
+
+    public function register(User $user): ?User
+    {
+        if (!$this->userGateway->insert($user)) {
+            return null;
+        }
+        $this->session[USER] = $user->getId();
+        $this->user = $user;
+        return $user;
+    }
 }
--- a/views/login.php
+++ b/views/login.php
@ -12,13 +12,13 @@
    <div class="field">
        <label class="label" for="login">Login</label>
        <div class="control">
-            <input class="input" type="text" id="login" name="login">
+            <input class="input" type="text" id="login" name="login" autocomplete="username">
        </div>
    </div>
    <div class="field">
        <label class="label" for="password">Password</label>
        <div class="control">
-            <input class="input" type="password" id="password" name="password">
+            <input class="input" type="password" id="password" name="password" autocomplete="current-password">
        </div>
    </div>

--- a/views/register.php
+++ b/views/register.php
@ -0,0 +1,36 @@
+<?php if ($params['fail']) : ?>
+    <article class="message is-danger">
+        <div class="message-header">
+            <p>Registration failed</p>
+        </div>
+        <div class="message-body">
+            Login is already taken.
+        </div>
+    </article>
+<?php endif ?>
+<form action="<?= $_SERVER['REQUEST_URI'] ?>" method="post">
+    <div class="field">
+        <label class="label" for="login">Login</label>
+        <div class="control">
+            <input class="input" type="text" id="login" name="login" autocomplete="username">
+        </div>
+    </div>
+    <div class="field">
+        <label class="label" for="password">Password</label>
+        <div class="control">
+            <input class="input" type="password" id="password" name="password" autocomplete="new-password">
+        </div>
+    </div>
+    <div class="field">
+        <label class="label" for="password-confirmation">Password confirmation</label>
+        <div class="control">
+            <input class="input" type="password" id="password-confirmation" name="password-confirmation" autocomplete="new-password">
+        </div>
+    </div>
+
+    <div class="field">
+        <div class="control">
+            <button class="button is-link">Submit</button>
+        </div>
+    </div>
+</form>