Add single-user password utils (#9)

- Constrain images to reading viewport
2024-04-27 16:34:59 -04:00
parent 0df40f3cfd
commit 9611893da3
6 changed files with 75 additions and 25 deletions
--- a/src/lib/Feed.php
+++ b/src/lib/Feed.php
@@ -245,7 +245,7 @@ class Feed {
        $code   = curl_getinfo($feedReq, CURLINFO_RESPONSE_CODE);
        if ($error) {
            $result['error'] = $error;
-        } else if ($code == 200) {
+        } elseif ($code == 200) {
            $parsed = self::parseFeed($feedContent);
            if (array_key_exists('error', $parsed)) {
                $result['error'] = $parsed['error'];
@@ -398,7 +398,7 @@ class Feed {
        $feedExtract = self::retrieveFeed($url);
        if (array_key_exists('error', $feedExtract)) return $feedExtract;

-        $feed = $feedExtract['ok'];
+        $feed  = $feedExtract['ok'];
        $query = $db->prepare(<<<'SQL'
            INSERT INTO feed (user_id, url, title, updated_on, checked_on)
            VALUES (:user, :url, :title, :updated, :checked)
--- a/src/lib/Security.php
+++ b/src/lib/Security.php
@@ -18,7 +18,7 @@ class Security {
    public const string SINGLE_USER_EMAIL = 'solouser@example.com';

    /** @var string The password for the single user with no password */
-    private const string SINGLE_USER_PASSWORD = 'no-password-required';
+    public const string SINGLE_USER_PASSWORD = 'no-password-required';

    /** @var string The password algorithm to use for our passwords */
    public const string PW_ALGORITHM = PASSWORD_DEFAULT;
@@ -82,11 +82,16 @@ class Security {
     * @param SQLite3 $db The database connection to use to verify the user's credentials
     */
    public static function logOnUser(string $email, string $password, ?string $returnTo, SQLite3 $db): void {
-        if ($email == self::SINGLE_USER_EMAIL) {
-            add_error('Invalid credentials; log on unsuccessful');
-            return;
+        if (SECURITY_MODEL == self::SINGLE_USER_WITH_PASSWORD) {
+            $dbEmail = self::SINGLE_USER_EMAIL;
+        } else {
+            if ($email == self::SINGLE_USER_EMAIL) {
+                add_error('Invalid credentials; log on unsuccessful');
+                return;
+            }
+            $dbEmail = $email;
        }
-        $user = self::findUserByEmail($email, $db);
+        $user = self::findUserByEmail($dbEmail, $db);
        if ($user) self::verifyPassword($user, $password, $returnTo, $db);
        add_error('Invalid credentials; log on unsuccessful');
    }