Add single user security mode (#3)

- Tweaks to SQL column definitions - Implement class autoloading - Split user config into its own file
2024-04-05 22:14:24 -04:00
parent 8db4216ea2
commit 74bc83f266
5 changed files with 127 additions and 25 deletions
--- a/src/lib/Data.php
+++ b/src/lib/Data.php
@@ -14,6 +14,9 @@ class Data {
        return $db;
    }

+    /**
+     * Make sure the expected tables exist
+     */
    public static function ensureDb(): void {
        $db = self::getConnection();
        $tables = array();
@@ -24,8 +27,7 @@ class Data {
                CREATE TABLE frc_user (
                    id       INTEGER NOT NULL PRIMARY KEY,
                    email    TEXT    NOT NULL,
-                    password TEXT    NOT NULL,
-                    salt     TEXT    NOT NULL)
+                    password TEXT    NOT NULL)
                SQL;
            $db->exec($query);
            $db->exec('CREATE INDEX idx_user_email ON frc_user (email)');
@@ -50,15 +52,46 @@ class Data {
                    published_on  TEXT    NOT NULL,
                    updated_on    TEXT,
                    content       TEXT    NOT NULL,
-                    is_encoded    INTEGER NOT NULL,
-                    is_read       INTEGER NOT NULL,
-                    is_bookmarked INTEGER NOT NULL,
+                    is_encoded    BOOLEAN NOT NULL,
+                    is_read       BOOLEAN NOT NULL,
+                    is_bookmarked BOOLEAN NOT NULL,
                    FOREIGN KEY (feed_id) REFERENCES feed (id))
                SQL;
            $db->exec($query);
        }
        $db->close();
    }
-}

-Data::ensureDb();
+    /**
+     * Find a user by their ID
+     *
+     * @param string $email The e-mail address of the user to retrieve
+     * @return array|null The user information, or null if the user is not found
+     */
+    public static function findUserByEmail(string $email): ?array {
+        $db = self::getConnection();
+        $query = $db->prepare('SELECT * FROM frc_user WHERE email = :email');
+        $query->bindValue(':email', $email);
+        $result = $query->execute();
+        if ($result) {
+            $user = $result->fetchArray(SQLITE3_ASSOC);
+            if ($user) return $user;
+            return null;
+        }
+        return null;
+    }
+
+    /**
+     * Add a user
+     *
+     * @param string $email The e-mail address for the user
+     * @param string $password The user's password
+     */
+    public static function addUser(string $email, string $password): void {
+        $db = self::getConnection();
+        $query = $db->prepare('INSERT INTO frc_user (email, password) VALUES (:email, :password)');
+        $query->bindValue(':email', $email);
+        $query->bindValue(':password', password_hash($password, PASSWORD_DEFAULT));
+        $query->execute();
+    }
+}