Home Explore Help
Register Sign In
zhangbj
/
web
Watch 1
Star 0
Fork 0
Code Issues 1 Pull Requests 0 Releases 0 Wiki Activity
2 Commits
1 Branches
Tree: 97d25c38f3
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '97d25c38f3'
${ noResults }
web/vendor/illuminate/auth/Passwords/DatabaseTokenRepository.php

DatabaseTokenRepository.php 5.0KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205 
  1. <?php

  2. 

  3. namespace Illuminate\Auth\Passwords;

  4. 

  5. use Illuminate\Support\Str;

  6. use Illuminate\Support\Carbon;

  7. use Illuminate\Database\ConnectionInterface;

  8. use Illuminate\Contracts\Hashing\Hasher as HasherContract;

  9. use Illuminate\Contracts\Auth\CanResetPassword as CanResetPasswordContract;

  10. 

  11. class DatabaseTokenRepository implements TokenRepositoryInterface

  12. {

  13.     /**

  14.      * The database connection instance.

  15.      *

  16.      * @var \Illuminate\Database\ConnectionInterface

  17.      */

  18.     protected $connection;

  19. 

  20.     /**

  21.      * The Hasher implementation.

  22.      *

  23.      * @var \Illuminate\Contracts\Hashing\Hasher

  24.      */

  25.     protected $hasher;

  26. 

  27.     /**

  28.      * The token database table.

  29.      *

  30.      * @var string

  31.      */

  32.     protected $table;

  33. 

  34.     /**

  35.      * The hashing key.

  36.      *

  37.      * @var string

  38.      */

  39.     protected $hashKey;

  40. 

  41.     /**

  42.      * The number of seconds a token should last.

  43.      *

  44.      * @var int

  45.      */

  46.     protected $expires;

  47. 

  48.     /**

  49.      * Create a new token repository instance.

  50.      *

  51.      * @param  \Illuminate\Database\ConnectionInterface  $connection

  52.      * @param  \Illuminate\Contracts\Hashing\Hasher  $hasher

  53.      * @param  string  $table

  54.      * @param  string  $hashKey

  55.      * @param  int  $expires

  56.      * @return void

  57.      */

  58.     public function __construct(ConnectionInterface $connection, HasherContract $hasher,

  59.                                 $table, $hashKey, $expires = 60)

  60.     {

  61.         $this->table = $table;

  62.         $this->hasher = $hasher;

  63.         $this->hashKey = $hashKey;

  64.         $this->expires = $expires * 60;

  65.         $this->connection = $connection;

  66.     }

  67. 

  68.     /**

  69.      * Create a new token record.

  70.      *

  71.      * @param  \Illuminate\Contracts\Auth\CanResetPassword  $user

  72.      * @return string

  73.      */

  74.     public function create(CanResetPasswordContract $user)

  75.     {

  76.         $email = $user->getEmailForPasswordReset();

  77. 

  78.         $this->deleteExisting($user);

  79. 

  80.         // We will create a new, random token for the user so that we can e-mail them

  81.         // a safe link to the password reset form. Then we will insert a record in

  82.         // the database so that we can verify the token within the actual reset.

  83.         $token = $this->createNewToken();

  84. 

  85.         $this->getTable()->insert($this->getPayload($email, $token));

  86. 

  87.         return $token;

  88.     }

  89. 

  90.     /**

  91.      * Delete all existing reset tokens from the database.

  92.      *

  93.      * @param  \Illuminate\Contracts\Auth\CanResetPassword  $user

  94.      * @return int

  95.      */

  96.     protected function deleteExisting(CanResetPasswordContract $user)

  97.     {

  98.         return $this->getTable()->where('email', $user->getEmailForPasswordReset())->delete();

  99.     }

  100. 

  101.     /**

  102.      * Build the record payload for the table.

  103.      *

  104.      * @param  string  $email

  105.      * @param  string  $token

  106.      * @return array

  107.      */

  108.     protected function getPayload($email, $token)

  109.     {

  110.         return ['email' => $email, 'token' => $this->hasher->make($token), 'created_at' => new Carbon];

  111.     }

  112. 

  113.     /**

  114.      * Determine if a token record exists and is valid.

  115.      *

  116.      * @param  \Illuminate\Contracts\Auth\CanResetPassword  $user

  117.      * @param  string  $token

  118.      * @return bool

  119.      */

  120.     public function exists(CanResetPasswordContract $user, $token)

  121.     {

  122.         $record = (array) $this->getTable()->where(

  123.             'email', $user->getEmailForPasswordReset()

  124.         )->first();

  125. 

  126.         return $record &&

  127.                ! $this->tokenExpired($record['created_at']) &&

  128.                  $this->hasher->check($token, $record['token']);

  129.     }

  130. 

  131.     /**

  132.      * Determine if the token has expired.

  133.      *

  134.      * @param  string  $createdAt

  135.      * @return bool

  136.      */

  137.     protected function tokenExpired($createdAt)

  138.     {

  139.         return Carbon::parse($createdAt)->addSeconds($this->expires)->isPast();

  140.     }

  141. 

  142.     /**

  143.      * Delete a token record by user.

  144.      *

  145.      * @param  \Illuminate\Contracts\Auth\CanResetPassword  $user

  146.      * @return void

  147.      */

  148.     public function delete(CanResetPasswordContract $user)

  149.     {

  150.         $this->deleteExisting($user);

  151.     }

  152. 

  153.     /**

  154.      * Delete expired tokens.

  155.      *

  156.      * @return void

  157.      */

  158.     public function deleteExpired()

  159.     {

  160.         $expiredAt = Carbon::now()->subSeconds($this->expires);

  161. 

  162.         $this->getTable()->where('created_at', '<', $expiredAt)->delete();

  163.     }

  164. 

  165.     /**

  166.      * Create a new token for the user.

  167.      *

  168.      * @return string

  169.      */

  170.     public function createNewToken()

  171.     {

  172.         return hash_hmac('sha256', Str::random(40), $this->hashKey);

  173.     }

  174. 

  175.     /**

  176.      * Get the database connection instance.

  177.      *

  178.      * @return \Illuminate\Database\ConnectionInterface

  179.      */

  180.     public function getConnection()

  181.     {

  182.         return $this->connection;

  183.     }

  184. 

  185.     /**

  186.      * Begin a new database query against the table.

  187.      *

  188.      * @return \Illuminate\Database\Query\Builder

  189.      */

  190.     protected function getTable()

  191.     {

  192.         return $this->connection->table($this->table);

  193.     }

  194. 

  195.     /**

  196.      * Get the hasher instance.

  197.      *

  198.      * @return \Illuminate\Contracts\Hashing\Hasher

  199.      */

  200.     public function getHasher()

  201.     {

  202.         return $this->hasher;

  203.     }

  204. }