From c776b36fd884808435dd1208f0dd9a57216b3927 Mon Sep 17 00:00:00 2001
From: Malf Furious <m@lfurio.us>
Date: Mon, 1 Feb 2016 19:18:55 -0500
Subject: Implement authentication helper functions in User class

Added function to initialize a User object by username wrather than GUID.
Added function to validate a user-supplied plain-text password for a given user
---
 app/class/user.class.php | 24 ++++++++++++++++++++++++
 1 file changed, 24 insertions(+)

(limited to 'app/class')

diff --git a/app/class/user.class.php b/app/class/user.class.php
index 6bce26c..bd2e174 100644
--- a/app/class/user.class.php
+++ b/app/class/user.class.php
@@ -27,6 +27,21 @@ class User extends Object
         $this->loadObj($guid);
     }
 
+    /*
+     * Initialize object by username
+     */
+    function initByUsername($username)
+    {
+        $query = "SELECT guid FROM object WHERE type = 'user' AND name = '" . $this->db->esc($username) . "'";
+        $result = $this->db->query($query);
+
+        if (count($result) == 0)
+            return false;
+
+        $this->loadObj($result[0]['guid']);
+        return true;
+    }
+
     /*
      * Get all users -- ordered by name, ascending
      */
@@ -96,6 +111,15 @@ class User extends Object
 
         return true;
     }
+
+    /*
+     * Validate the password for this user.  Returns true if correct, false otherwise
+     */
+    function validatePassword($password)
+    {
+        $key = $this->getKey($password, $this->salt);
+        return $key == $this->key;
+    }
 }
 
 ?>
-- 
cgit v1.2.3