158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
|
}
protected function deleteAllRememberMeSelectors($user_id)
{
return $this->db->delete('users_sessions', $this->db->where('id_user', $user_id));
}
// Ajout de la gestion de LOCAL_LOGIN
public function isLogged(bool $disable_local_login = false)
{
$logged = parent::isLogged();
if (!$disable_local_login && defined('\Garradin\LOCAL_LOGIN'))
{
$login_id = \Garradin\LOCAL_LOGIN;
// On va chercher le premier membre avec le droit de gérer la config
if (-1 === $login_id) {
$login_id = $this->db->firstColumn('SELECT id FROM users
WHERE id_category IN (SELECT id FROM users_categories WHERE perm_config = ?)
LIMIT 1;', self::ACCESS_ADMIN);
}
if ($login_id > 0 && (!$logged || ($logged && $this->user->id != $login_id)))
{
$logged = $this->create($login_id);
}
}
return $logged;
}
public function forceLogin(int $id)
{
return $this->create($id);
}
// Ici checkOTP utilise NTP en second recours
public function checkOTP($secret, $code)
{
if (Security_OTP::TOTP($secret, $code))
{
|
<
>
|
<
|
<
<
<
<
<
<
<
<
<
<
<
<
>
>
>
>
>
>
>
>
>
>
>
|
>
>
>
|
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
|
}
protected function deleteAllRememberMeSelectors($user_id)
{
return $this->db->delete('users_sessions', $this->db->where('id_user', $user_id));
}
public function isLogged(bool $disable_local_login = false)
{
$logged = parent::isLogged();
// Ajout de la gestion de LOCAL_LOGIN
if (!$disable_local_login && defined('\Garradin\LOCAL_LOGIN')) {
$logged = $this->forceLogin(\Garradin\LOCAL_LOGIN);
}
return $logged;
}
public function forceLogin(int $id)
{
// On va chercher le premier membre avec le droit de gérer la config
if (-1 === $id) {
$id = $this->db->firstColumn('SELECT id FROM membres
WHERE id_category IN (SELECT id FROM users_categories WHERE perm_config = ?)
LIMIT 1', self::ACCESS_ADMIN);
}
$logged = parent::isLogged();
// Only login if required
if ($id > 0 && (!$logged || ($logged && $this->user->id != $id))) {
return $this->create($id);
}
return $logged;
}
// Ici checkOTP utilise NTP en second recours
public function checkOTP($secret, $code)
{
if (Security_OTP::TOTP($secret, $code))
{
|