auth_token/auth.php

<?php
// This file is part of Moodle - http://moodle.org/
//
// Moodle is free software: you can redistribute it and/or modify
// it under the terms of the GNU General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// Moodle is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
// GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License
// along with Moodle.  If not, see <http://www.gnu.org/licenses/>.

/**
 * Authentication Plugin: Authorization by tokens.
 *
 * @package   auth_token
 * @copyright 2017 "Valentin Popov" <info@valentineus.link>
 * @license   http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
 */

defined("MOODLE_INTERNAL") || die();

require_once($CFG->dirroot . "/admin/tool/managertokens/lib.php");
require_once($CFG->libdir  . "/authlib.php");

/**
 * Plugin user authentication plugin.
 */
class auth_plugin_token extends auth_plugin_base {
    /**
     * Constructor.
     */
    public function __construct() {
        $this->authtype = "token";
        $this->config   = get_config("auth_token");
    }

    /**
     * Old syntax of class constructor. Deprecated in PHP7.
     *
     * @deprecated since Moodle 3.1
     */
    public function auth_plugin_token() {
        debugging("Use of class name as constructor is deprecated", DEBUG_DEVELOPER);
        self::__construct();
    }

    /**
     * Returns true if the username and password work or don't exist and false
     * if the user exists and the password is wrong.
     *
     * @param  string  $username The username
     * @param  string  $password The password
     * @return boolean           Authentication success or failure.
     */
    public function user_login($username, $password) {
        global $CFG, $DB;

        if ($user = $DB->get_record("user", array("username" => $username, "mnethostid" => $CFG->mnet_localhost_id))) {
            return validate_internal_user_password($user, $password);
        }

        return false;
    }

    /**
     * Updates the user's password.
     * Called when the user password is updated.
     *
     * @param  object  $user        User table object
     * @param  string  $newpassword Plaintext password
     * @return boolean              Password updated success or failure.
     */
    public function user_update_password($user, $password) {
        $user = get_complete_user_data("id", $user->id);
        return update_internal_user_password($user, $password);
    }

    /**
     * Indicates if password hashes should be stored in local moodle database.
     *
     * @return boolean
     */
    public function prevent_local_passwords() {
        return false;
    }

    /**
     * Returns true if this authentication plugin is 'internal'.
     *
     * @return boolean
     */
    public function is_internal() {
        return true;
    }

    /**
     * Returns true if this authentication plugin can change the user's
     * password.
     *
     * @return boolean
     */
    public function can_change_password() {
        return false;
    }

    /**
     * Returns true if plugin allows resetting of internal password.
     *
     * @return boolean
     */
    public function can_reset_password() {
        return false;
    }

    /**
     * Returns true if plugin can be manually set.
     *
     * @return boolean
     */
    public function can_be_manually_set() {
        return true;
    }

    /**
     * Hook for overriding behaviour before going to the login page.
     */
    public function pre_loginpage_hook() {
        $this->loginpage_hook();
    }

    /**
     * Hook for overriding behaviour of login page.
     * This method is called from login/index.php page for all enabled auth plugins.
     */
    public function loginpage_hook() {
        global $USER;

        if ($token = $this->definition_token()) {
            if (isloggedin()) {
                tool_managertokens_perform_additional_action($token, $USER);
                $this->redirect_user();
            }

            if ($user = tool_managertokens_definition_user($token)) {
                complete_user_login($user);
                tool_managertokens_perform_additional_action($token, $user);
                $this->redirect_user();
            }
        }
    }

    /**
     * Indicates the transmitted token, if any.
     *
     * @return object
     */
    private function definition_token() {
        $key   = optional_param("token", "", PARAM_NOTAGS);
        $token = tool_managertokens_activate_token($key);
        return $token;
    }

    /**
     * Redirects the user.
     *
     * @param string $url
     */
    private function redirect_user() {
        global $CFG, $SESSION;

        $wantsurl = optional_param("wantsurl", null, PARAM_URL);
        $redirect = $CFG->wwwroot;

        if (isset($SESSION->wantsurl)) {
            $redirect = $SESSION->wantsurl;
        } else if (!empty($wantsurl)) {
            $redirect = $wantsurl;
        }

        redirect($redirect);
    }
}
Initial commit 2017-11-20 05:49:17 +04:00			`<?php`
			`// This file is part of Moodle - http://moodle.org/`
			`//`
			`// Moodle is free software: you can redistribute it and/or modify`
			`// it under the terms of the GNU General Public License as published by`
			`// the Free Software Foundation, either version 3 of the License, or`
			`// (at your option) any later version.`
			`//`
			`// Moodle is distributed in the hope that it will be useful,`
			`// but WITHOUT ANY WARRANTY; without even the implied warranty of`
Added basic functionality 2017-12-02 15:29:44 +04:00			`// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the`
Initial commit 2017-11-20 05:49:17 +04:00			`// GNU General Public License for more details.`
			`//`
			`// You should have received a copy of the GNU General Public License`
Added basic functionality 2017-12-02 15:29:44 +04:00			`// along with Moodle. If not, see <http://www.gnu.org/licenses/>.`
Initial commit 2017-11-20 05:49:17 +04:00
			`/**`
Correcting code analyzer errors 2017-12-02 16:13:30 +04:00			`* Authentication Plugin: Authorization by tokens.`
Initial commit 2017-11-20 05:49:17 +04:00			`*`
			`* @package auth_token`
			`* @copyright 2017 "Valentin Popov" <info@valentineus.link>`
			`* @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later`
			`*/`

			`defined("MOODLE_INTERNAL") \|\| die();`

Added basic functionality 2017-12-02 15:29:44 +04:00			`require_once($CFG->dirroot . "/admin/tool/managertokens/lib.php");`
			`require_once($CFG->libdir . "/authlib.php");`
Initial commit 2017-11-20 05:49:17 +04:00
			`/**`
			`* Plugin user authentication plugin.`
			`*/`
			`class auth_plugin_token extends auth_plugin_base {`
			`/**`
			`* Constructor.`
			`*/`
			`public function __construct() {`
			`$this->authtype = "token";`
Small fixes 2017-12-15 09:45:42 +04:00			`$this->config = get_config("auth_token");`
Initial commit 2017-11-20 05:49:17 +04:00			`}`

			`/**`
			`* Old syntax of class constructor. Deprecated in PHP7.`
			`*`
			`* @deprecated since Moodle 3.1`
			`*/`
			`public function auth_plugin_token() {`
			`debugging("Use of class name as constructor is deprecated", DEBUG_DEVELOPER);`
			`self::__construct();`
			`}`

			`/**`
			`* Returns true if the username and password work or don't exist and false`
			`* if the user exists and the password is wrong.`
			`*`
Added basic functionality 2017-12-02 15:29:44 +04:00			`* @param string $username The username`
			`* @param string $password The password`
			`* @return boolean Authentication success or failure.`
Initial commit 2017-11-20 05:49:17 +04:00			`*/`
			`public function user_login($username, $password) {`
			`global $CFG, $DB;`

Correcting code analyzer errors 2017-12-02 16:13:30 +04:00			`if ($user = $DB->get_record("user", array("username" => $username, "mnethostid" => $CFG->mnet_localhost_id))) {`
Initial commit 2017-11-20 05:49:17 +04:00			`return validate_internal_user_password($user, $password);`
			`}`

			`return false;`
			`}`

			`/**`
			`* Updates the user's password.`
			`* Called when the user password is updated.`
			`*`
Added basic functionality 2017-12-02 15:29:44 +04:00			`* @param object $user User table object`
			`* @param string $newpassword Plaintext password`
			`* @return boolean Password updated success or failure.`
Initial commit 2017-11-20 05:49:17 +04:00			`*/`
			`public function user_update_password($user, $password) {`
			`$user = get_complete_user_data("id", $user->id);`
			`return update_internal_user_password($user, $password);`
			`}`

			`/**`
			`* Indicates if password hashes should be stored in local moodle database.`
			`*`
			`* @return boolean`
			`*/`
			`public function prevent_local_passwords() {`
			`return false;`
			`}`

			`/**`
			`* Returns true if this authentication plugin is 'internal'.`
			`*`
			`* @return boolean`
			`*/`
			`public function is_internal() {`
			`return true;`
			`}`

			`/**`
			`* Returns true if this authentication plugin can change the user's`
			`* password.`
			`*`
			`* @return boolean`
			`*/`
			`public function can_change_password() {`
			`return false;`
			`}`

			`/**`
			`* Returns true if plugin allows resetting of internal password.`
			`*`
			`* @return boolean`
			`*/`
			`public function can_reset_password() {`
			`return false;`
			`}`

			`/**`
			`* Returns true if plugin can be manually set.`
			`*`
			`* @return boolean`
			`*/`
			`public function can_be_manually_set() {`
			`return true;`
			`}`
Added basic functionality 2017-12-02 15:29:44 +04:00
			`/**`
			`* Hook for overriding behaviour before going to the login page.`
			`*/`
			`public function pre_loginpage_hook() {`
			`$this->loginpage_hook();`
			`}`

			`/**`
			`* Hook for overriding behaviour of login page.`
			`* This method is called from login/index.php page for all enabled auth plugins.`
			`*/`
			`public function loginpage_hook() {`
Adapt authorization for the new version of the plug-in 2017-12-03 21:06:04 +04:00			`global $USER;`

Added basic functionality 2017-12-02 15:29:44 +04:00			`if ($token = $this->definition_token()) {`
Adapt authorization for the new version of the plug-in 2017-12-03 21:06:04 +04:00			`if (isloggedin()) {`
			`tool_managertokens_perform_additional_action($token, $USER);`
			`$this->redirect_user();`
Added basic functionality 2017-12-02 15:29:44 +04:00			`}`

Adapt authorization for the new version of the plug-in 2017-12-03 21:06:04 +04:00			`if ($user = tool_managertokens_definition_user($token)) {`
			`complete_user_login($user);`
			`tool_managertokens_perform_additional_action($token, $user);`
			`$this->redirect_user();`
			`}`
Added basic functionality 2017-12-02 15:29:44 +04:00			`}`
			`}`

			`/**`
			`* Indicates the transmitted token, if any.`
			`*`
			`* @return object`
			`*/`
			`private function definition_token() {`
			`$key = optional_param("token", "", PARAM_NOTAGS);`
			`$token = tool_managertokens_activate_token($key);`
			`return $token;`
			`}`

			`/**`
			`* Redirects the user.`
			`*`
			`* @param string $url`
			`*/`
Adapt authorization for the new version of the plug-in 2017-12-03 21:06:04 +04:00			`private function redirect_user() {`
Added basic functionality 2017-12-02 15:29:44 +04:00			`global $CFG, $SESSION;`

Adapt authorization for the new version of the plug-in 2017-12-03 21:06:04 +04:00			`$wantsurl = optional_param("wantsurl", null, PARAM_URL);`
Added basic functionality 2017-12-02 15:29:44 +04:00			`$redirect = $CFG->wwwroot;`

Adapt authorization for the new version of the plug-in 2017-12-03 21:06:04 +04:00			`if (isset($SESSION->wantsurl)) {`
Added basic functionality 2017-12-02 15:29:44 +04:00			`$redirect = $SESSION->wantsurl;`
			`} else if (!empty($wantsurl)) {`
			`$redirect = $wantsurl;`
			`}`

			`redirect($redirect);`
			`}`
Initial commit 2017-11-20 05:49:17 +04:00			`}`