First Authenticated Only Page

Author: namePlayer

config/container.php

@@ -19,6 +19,9 @@
     ->addArgument(\App\Service\Authentication\AccountService::class)
     ->addArgument(\App\Service\Authentication\PasswordService::class);
 
+$container->add(\App\Controller\Login\OverviewController::class)
+    ->addArgument(League\Plates\Engine::class);
+
 #
 # Services
 #
@@ -44,6 +47,12 @@
 #
 $container->add(\App\Validation\Authentication\RegisterValidation::class);
 
+#
+# Middlewares
+#
+$container->add(\App\Middleware\AuthenticationMiddleware::class)
+    ->addArgument(\App\Service\Authentication\AccountService::class);
+
 #
 # Dependencies
 #
@@ -63,7 +72,8 @@
 
 $container->add(League\Plates\Engine::class)
     ->addArgument(__DIR__.'/../template')
-    ->addMethodCall('loadExtension', [\App\PlatesExtension\Translator\TranslationExtension::class]);
+    ->addMethodCall('loadExtension', [\App\PlatesExtension\Translator\TranslationExtension::class])
+    ->addMethodCall('loadExtension', [\App\PlatesExtension\Authentication\AuthenticationExtension::class]);
 
 $container->add(\App\PlatesExtension\Translator\TranslationExtension::class)
     ->addArgument(\App\PlatesExtension\Translator\Translation::class);
@@ -74,6 +84,9 @@
 
 $container->add(\App\PlatesExtension\Translator\JsonTranslation::class);
 
+$container->add(\App\PlatesExtension\Authentication\AuthenticationExtension::class)
+    ->addArgument(\App\Service\Authentication\AccountService::class);
+
 $responseFactory = (new \Laminas\Diactoros\ResponseFactory());
 $jsonStrategy = (new \League\Route\Strategy\JsonStrategy($responseFactory))->setContainer($container);
 $applicationStrategy = (new \League\Route\Strategy\ApplicationStrategy())->setContainer($container);

config/routes.php

@@ -19,5 +19,9 @@
 $router->get('/authentication/login', 'App\Controller\Authentication\LoginController::load');
 $router->post('/authentication/login', 'App\Controller\Authentication\LoginController::load');
 
+$router->get('/authentication/logout', 'App\Controller\Authentication\LogoutController::load');
+
+$router->get('/overview', 'App\Controller\Login\OverviewController::load')->lazyMiddlewares([\App\Middleware\AuthenticationMiddleware::class]);
+
 $response = $router->dispatch($request);
 (new \Laminas\HttpHandlerRunner\Emitter\SapiEmitter())->emit($response);

src/App/Controller/Authentication/LoginController.php

@@ -6,6 +6,7 @@
 use App\Model\Authentication\Account;
 use App\Service\Authentication\AccountService;
 use App\Service\Authentication\PasswordService;
+use App\Software;
 use League\Plates\Engine;
 use Psr\Http\Message\ResponseInterface;
 use Psr\Http\Message\ServerRequestInterface;
@@ -62,6 +63,7 @@ public function login(ServerRequestInterface $request)
             {
                 MESSAGES->add('success', 'login-account-successful');
                 $this->accountService->updateLastUserLogin($account);
+                $_SESSION[Software::SESSION_USERID_NAME] = $account->getId();
                 if(!$account->isSetupComplete()) {
                     header("Location: /authentication/setup");
                     return;

src/App/Controller/Authentication/LogoutController.php

@@ -0,0 +1,19 @@
+<?php
+
+namespace App\Controller\Authentication;
+
+use Laminas\Diactoros\Response\RedirectResponse;
+use Psr\Http\Message\ResponseInterface;
+use Psr\Http\Message\ServerRequestInterface;
+
+class LogoutController
+{
+
+    public function load(ServerRequestInterface $request): ResponseInterface
+    {
+        session_destroy();
+
+        return new RedirectResponse('/authentication/login');
+    }
+
+}

src/App/Controller/Login/OverviewController.php

@@ -0,0 +1,26 @@
+<?php
+
+namespace App\Controller\Login;
+
+use App\Http\HtmlResponse;
+use League\Plates\Engine;
+use Psr\Http\Message\ResponseInterface;
+use Psr\Http\Message\ServerRequestInterface;
+
+class OverviewController
+{
+
+    public function __construct(
+        private readonly Engine $engine
+    )
+    {
+    }
+
+    public function load(ServerRequestInterface $request): ResponseInterface
+    {
+        return new HtmlResponse(
+            $this->engine->render('login/overview')
+        );
+    }
+
+}

src/App/Middleware/AuthenticationMiddleware.php

@@ -0,0 +1,48 @@
+<?php
+
+namespace App\Middleware;
+
+use App\Model\Authentication\Account;
+use App\Service\Authentication\AccountService;
+use App\Software;
+use Laminas\Diactoros\Response\RedirectResponse;
+use Psr\Http\Message\ResponseInterface;
+use Psr\Http\Message\ServerRequestInterface;
+use Psr\Http\Server\MiddlewareInterface;
+use Psr\Http\Server\RequestHandlerInterface;
+
+class AuthenticationMiddleware implements MiddlewareInterface
+{
+
+    public function __construct(
+        private readonly AccountService $accountService
+    )
+    {
+    }
+
+    public function process(ServerRequestInterface $request, RequestHandlerInterface $handler): ResponseInterface
+    {
+
+        if(empty($_SESSION[Software::SESSION_USERID_NAME]))
+        {
+            return new RedirectResponse('/authentication/login');
+        }
+
+        $account = new Account();
+        $account->setId($_SESSION[Software::SESSION_USERID_NAME]);
+
+        $accountData = $this->accountService->findAccountById($account->getId());
+        if($accountData === FALSE || $accountData['active'] === 0)
+        {
+            session_destroy();
+            return new RedirectResponse('/authentication/login');
+        }
+
+        $account->setEmail($accountData['email']);
+        $account->setBusiness($accountData['business']);
+        $account->setAdmin($accountData['isAdmin']);
+
+        return $handler->handle($request->withAttribute(Account::class, $account));
+
+    }
+}

src/App/Model/Authentication/Account.php

@@ -16,6 +16,7 @@ class Account
     private bool $business;
     private bool $active;
     private bool $setupComplete;
+    private bool $admin;
 
     public function getId(): int
     {
@@ -107,4 +108,14 @@ public function setSetupComplete(bool $setupComplete): void
         $this->setupComplete = $setupComplete;
     }
 
+    public function isAdmin(): bool
+    {
+        return $this->admin;
+    }
+
+    public function setAdmin(bool $admin): void
+    {
+        $this->admin = $admin;
+    }
+
 }

src/App/PlatesExtension/Authentication/AuthenticationExtension.php

@@ -0,0 +1,40 @@
+<?php
+
+namespace App\PlatesExtension\Authentication;
+
+use App\Service\Authentication\AccountService;
+use App\Software;
+use League\Plates\Engine;
+use League\Plates\Extension\ExtensionInterface;
+
+#[\AllowDynamicProperties]
+class AuthenticationExtension implements ExtensionInterface
+{
+
+    public function __construct(private readonly AccountService $accountService)
+    {
+    }
+
+    public function register(Engine $engine)
+    {
+        $engine->registerFunction('getAccountInformation', [$this, 'getAccountInformation']);
+    }
+
+    public function getAccountInformation(): false|array
+    {
+        if(
+            isset($_SESSION[Software::SESSION_USERID_NAME]) &&
+            !empty($_SESSION[Software::SESSION_USERID_NAME])
+        )
+        {
+            $account = $this->accountService->findAccountById($_SESSION[Software::SESSION_USERID_NAME]);
+            if($account !== FALSE)
+            {
+                return $account;
+            }
+        }
+
+        return false;
+    }
+
+}

src/App/Software.php

@@ -24,6 +24,7 @@ class Software
     public const CONSOLE_LOG_FILENAME = 'console.log';
 
     public const DATABASE_TIME_FORMAT = 'Y-m-d H:i:s';
+    public const SESSION_USERID_NAME = 'webtoolkit_login_id';
 
     /**
      * @throws EnvironmentException

template/authentication/login.php

@@ -1,5 +1,7 @@
 <?php $this->layout('basetemplate'); ?>
 
+<?php $this->insert('element/navigation') ?>
+
 <div class="container mt-3">
 
     <?php foreach (MESSAGES->getAll() as $alert): ?>
@@ -13,11 +15,10 @@
         <div class="col-4">
             <div class="card">
                 <div class="card-header text-center">
-                    <h3><?= $_ENV['SOFTWARE_TITLE'] ?></h3>
+                    <h4><?= $this->e($this->translate('login-account-title')) ?></h4>
                 </div>
                 <div class="card-body">
                     <form action="" method="post">
-                        <h4><?= $this->e($this->translate('login-account-title')) ?></h4>
                         <div class="mb-3">
                             <label for="email" class="form-text"><?= $this->e($this->translate('email')) ?></label>
                             <input type="email" class="form-control" name="email" id="email" required>

template/authentication/registration.php

@@ -1,5 +1,7 @@
 <?php $this->layout('basetemplate'); ?>
 
+<?php $this->insert('element/navigation') ?>
+
 <div class="container mt-3">
 
     <?php foreach (MESSAGES->getAll() as $alert): ?>
@@ -13,11 +15,10 @@
         <div class="col-4">
             <div class="card">
                 <div class="card-header text-center">
-                    <h3><?= $_ENV['SOFTWARE_TITLE'] ?></h3>
+                    <h4><?= $this->e($this->translate('create-account-title')) ?></h4>
                 </div>
                 <div class="card-body">
                     <form action="" method="post">
-                        <h4><?= $this->e($this->translate('create-account-title')) ?></h4>
                         <div class="mb-3 mt-4">
                             <span><?= $this->e($this->translate('create-account-for')) ?></span><br>
                             <div class="form-check form-check-inline">

template/element/navigation.php

@@ -0,0 +1,60 @@
+<nav class="navbar navbar-expand-lg bg-body-tertiary">
+    <div class="container">
+        <a class="navbar-brand" href="/">
+            <b><?= $_ENV['SOFTWARE_TITLE'] ?></b>
+        </a>
+        <button class="navbar-toggler" type="button" data-bs-toggle="collapse" data-bs-target="#navbarNav" aria-controls="navbarNav" aria-expanded="false" aria-label="Toggle navigation">
+            <span class="navbar-toggler-icon"></span>
+        </button>
+        <div class="collapse navbar-collapse" id="navbarNav">
+            <ul class="navbar-nav me-auto">
+                <?php if($this->getAccountInformation() === FALSE): ?>
+                    <li class="nav-item">
+                        <a class="nav-link" href="/">Startseite</a>
+                    </li>
+                <?php else: ?>
+                    <li class="nav-item">
+                        <a class="nav-link" href="/overview">Dashboard</a>
+                    </li>
+                <?php endif; ?>
+                <li class="nav-item">
+                    <a class="nav-link" href="#">Produkte</a>
+                </li>
+            </ul>
+
+            <ul class="navbar-nav ms-start">
+                <?php if($this->getAccountInformation() === FALSE): ?>
+                    <li class="nav-item">
+                        <a class="nav-link" href="/authentication/login">Anmelden</a>
+                    </li>
+                    <li class="nav-item">
+                        <a class="nav-link btn btn-primary" href="/authentication/registration">Registrieren</a>
+                    </li>
+                <?php else: ?>
+                    <li class="nav-item dropdown">
+                        <a class="nav-link dropdown-toggle" href="#" role="button" data-bs-toggle="dropdown" aria-expanded="false">
+                            Angemeldet als <b><?= $this->getAccountInformation()['name'] ?></b>
+                        </a>
+                        <ul class="dropdown-menu">
+                            <li><a class="dropdown-item" href="#">Kontoeinstellungen</a></li>
+                            <li><a class="dropdown-item" href="#">Lizenzierungen</a></li>
+                            <hr>
+                            <li><a class="dropdown-item" href="/authentication/logout">Abmelden</a></li>
+                        </ul>
+                    </li>
+                    <a class="nav-link">
+                        <span class="badge rounded-pill text-bg-secondary">Basic</span>
+                    </a>
+                    <?php if($this->getAccountInformation()['isAdmin'] === 1): ?>
+                        <a class="nav-link text-danger" href="/admin/dashboard">
+                            <svg xmlns="http://www.w3.org/2000/svg" width="16" height="16" fill="currentColor" class="bi bi-house-gear" viewBox="0 0 16 16">
+                                <path d="M7.293 1.5a1 1 0 0 1 1.414 0L11 3.793V2.5a.5.5 0 0 1 .5-.5h1a.5.5 0 0 1 .5.5v3.293l2.354 2.353a.5.5 0 0 1-.708.708L8 2.207l-5 5V13.5a.5.5 0 0 0 .5.5h4a.5.5 0 0 1 0 1h-4A1.5 1.5 0 0 1 2 13.5V8.207l-.646.647a.5.5 0 1 1-.708-.708L7.293 1.5Z"/>
+                                <path d="M11.886 9.46c.18-.613 1.048-.613 1.229 0l.043.148a.64.64 0 0 0 .921.382l.136-.074c.561-.306 1.175.308.87.869l-.075.136a.64.64 0 0 0 .382.92l.149.045c.612.18.612 1.048 0 1.229l-.15.043a.64.64 0 0 0-.38.921l.074.136c.305.561-.309 1.175-.87.87l-.136-.075a.64.64 0 0 0-.92.382l-.045.149c-.18.612-1.048.612-1.229 0l-.043-.15a.64.64 0 0 0-.921-.38l-.136.074c-.561.305-1.175-.309-.87-.87l.075-.136a.64.64 0 0 0-.382-.92l-.148-.044c-.613-.181-.613-1.049 0-1.23l.148-.043a.64.64 0 0 0 .382-.921l-.074-.136c-.306-.561.308-1.175.869-.87l.136.075a.64.64 0 0 0 .92-.382l.045-.148ZM14 12.5a1.5 1.5 0 1 0-3 0 1.5 1.5 0 0 0 3 0Z"/>
+                            </svg>
+                        </a>
+                    <?php endif; ?>
+                <?php endif; ?>
+            </ul>
+        </div>
+    </div>
+</nav>

template/login/overview.php

@@ -0,0 +1,9 @@
+<?php $this->layout('basetemplate') ?>
+
+<?php $this->insert('element/navigation') ?>
+
+<div class="container mt-3">
+
+
+
+</div>

template/publicPage/index.php

@@ -1,6 +1,10 @@
 <?php $this->layout('basetemplate') ?>
 
-<h1>Webtookit</h1>
+<?php $this->insert('element/navigation') ?>
 
-Version: <?= \App\Software::VERSION ?> <br>
-Build: <?= \App\Software::BUILD ?>
+<div class="container mt-3">
+    <h1>Webtookit</h1>
+
+    Version: <?= \App\Software::VERSION ?> <br>
+    Build: <?= \App\Software::BUILD ?>
+</div>