Class PasswordIdentifier
Password Identifier
Identifies authentication credentials with password
new PasswordIdentifier([
'fields' => [
'username' => ['username', 'email'],
'password' => 'password'
]
]);When configuring PasswordIdentifier you can pass in config to which fields, model and additional conditions are used.
Property Summary
-
$_config protected
array<string, mixed>Runtime config
-
$_configInitialized protected
boolWhether the config property has already been configured with defaults
-
$_defaultConfig protected
arrayDefault configuration.
fieldsThe fields to use to identify a user by:username: one or many username fields.password: password field.
resolverThe resolver implementation to use.passwordHasherPassword hasher class. Can be a string specifying class name or an array containingclassNamekey, any other keys will be passed as config to the class. Defaults to 'Default'.
-
$_errors protected
arrayErrors
-
$_needsPasswordRehash protected
boolWhether or not the user authenticated by this class requires their password to be rehashed with another algorithm.
-
$_passwordHasher protected
Authentication\PasswordHasher\PasswordHasherInterface|nullPassword hasher instance.
-
$resolver protected
Authentication\Identifier\Resolver\ResolverInterface|nullResolver instance.
Method Summary
-
__construct() public
Constructor
-
_checkPassword() protected
Find a user record using the username and password provided. Input passwords will be hashed even when a user doesn't exist. This helps mitigate timing attacks that are attempting to find valid usernames.
-
_configDelete() protected
Deletes a single config key.
-
_configRead() protected
Reads a config key.
-
_configWrite() protected
Writes a config key.
-
_findIdentity() protected
Find a user record using the username/identifier provided.
-
buildResolver() protected
Builds a ResolverInterface instance.
-
configShallow() public
Merge provided config with existing config. Unlike
config()which does a recursive merge for nested keys, this method does a simple merge. -
getConfig() public
Returns the config.
-
getConfigOrFail() public
Returns the config for this specific key.
-
getErrors() public
Returns errors
-
getPasswordHasher() public
Return password hasher object.
-
getResolver() public
Returns ResolverInterface instance.
-
identify() public
Identifies an user or service by the passed credentials
-
needsPasswordRehash() public
Returns whether or not the password stored in the repository for the logged in user requires to be rehashed with another algorithm
-
setConfig() public
Sets the config.
-
setPasswordHasher() public
Sets password hasher object.
-
setResolver() public
Sets ResolverInterface instance.
Method Detail
__construct() ¶ public
__construct(array $config = [])Constructor
Parameters
-
array$config optional Configuration
_checkPassword() ¶ protected
_checkPassword(ArrayAccess|array|null $identity, string|null $password): boolFind a user record using the username and password provided. Input passwords will be hashed even when a user doesn't exist. This helps mitigate timing attacks that are attempting to find valid usernames.
Parameters
-
ArrayAccess|array|null$identity The identity or null.
-
string|null$password The password.
Returns
bool_configDelete() ¶ protected
_configDelete(string $key): voidDeletes a single config key.
Parameters
-
string$key Key to delete.
Returns
voidThrows
Cake\Core\Exception\CakeExceptionif attempting to clobber existing config
_configRead() ¶ protected
_configRead(string|null $key): mixedReads a config key.
Parameters
-
string|null$key Key to read.
Returns
mixed_configWrite() ¶ protected
_configWrite(array<string, mixed>|string $key, mixed $value, string|bool $merge = false): voidWrites a config key.
Parameters
-
array<string, mixed>|string$key Key to write to.
-
mixed$value Value to write.
-
string|bool$merge optional True to merge recursively, 'shallow' for simple merge, false to overwrite, defaults to false.
Returns
voidThrows
Cake\Core\Exception\CakeExceptionif attempting to clobber existing config
_findIdentity() ¶ protected
_findIdentity(string $identifier): ArrayAccess|array|nullFind a user record using the username/identifier provided.
Parameters
-
string$identifier The username/identifier.
Returns
ArrayAccess|array|nullbuildResolver() ¶ protected
buildResolver(array|string $config): Authentication\Identifier\Resolver\ResolverInterfaceBuilds a ResolverInterface instance.
Parameters
-
array|string$config Resolver class name or config.
Returns
Authentication\Identifier\Resolver\ResolverInterfaceThrows
InvalidArgumentExceptionWhen className option is missing or class name does not exist.
RuntimeExceptionWhen resolver does not implement ResolverInterface.
configShallow() ¶ public
configShallow(array<string, mixed>|string $key, mixed|null $value = null): $thisMerge provided config with existing config. Unlike config() which does
a recursive merge for nested keys, this method does a simple merge.
Setting a specific value:
$this->configShallow('key', $value);Setting a nested value:
$this->configShallow('some.nested.key', $value);Updating multiple config settings at the same time:
$this->configShallow(['one' => 'value', 'another' => 'value']);Parameters
-
array<string, mixed>|string$key The key to set, or a complete array of configs.
-
mixed|null$value optional The value to set.
Returns
$thisgetConfig() ¶ public
getConfig(string|null $key = null, mixed $default = null): mixedReturns the config.
Usage
Reading the whole config:
$this->getConfig();Reading a specific value:
$this->getConfig('key');Reading a nested value:
$this->getConfig('some.nested.key');Reading with default value:
$this->getConfig('some-key', 'default-value');Parameters
-
string|null$key optional The key to get or null for the whole config.
-
mixed$default optional The return value when the key does not exist.
Returns
mixedgetConfigOrFail() ¶ public
getConfigOrFail(string $key): mixedReturns the config for this specific key.
The config value for this key must exist, it can never be null.
Parameters
-
string$key The key to get.
Returns
mixedThrows
InvalidArgumentExceptiongetPasswordHasher() ¶ public
getPasswordHasher(): Authentication\PasswordHasher\PasswordHasherInterfaceReturn password hasher object.
Returns
Authentication\PasswordHasher\PasswordHasherInterfacegetResolver() ¶ public
getResolver(): Authentication\Identifier\Resolver\ResolverInterfaceReturns ResolverInterface instance.
Returns
Authentication\Identifier\Resolver\ResolverInterfaceThrows
RuntimeExceptionWhen resolver has not been set.
identify() ¶ public
identify(array $credentials): ArrayAccess|array|nullIdentifies an user or service by the passed credentials
Parameters
-
array$credentials
Returns
ArrayAccess|array|nullneedsPasswordRehash() ¶ public
needsPasswordRehash(): boolReturns whether or not the password stored in the repository for the logged in user requires to be rehashed with another algorithm
Returns
boolsetConfig() ¶ public
setConfig(array<string, mixed>|string $key, mixed|null $value = null, bool $merge = true): $thisSets the config.
Usage
Setting a specific value:
$this->setConfig('key', $value);Setting a nested value:
$this->setConfig('some.nested.key', $value);Updating multiple config settings at the same time:
$this->setConfig(['one' => 'value', 'another' => 'value']);Parameters
-
array<string, mixed>|string$key The key to set, or a complete array of configs.
-
mixed|null$value optional The value to set.
-
bool$merge optional Whether to recursively merge or overwrite existing config, defaults to true.
Returns
$thisThrows
Cake\Core\Exception\CakeExceptionWhen trying to set a key that is invalid.
setPasswordHasher() ¶ public
setPasswordHasher(Authentication\PasswordHasher\PasswordHasherInterface $passwordHasher): $thisSets password hasher object.
Parameters
-
Authentication\PasswordHasher\PasswordHasherInterface$passwordHasher Password hasher instance.
Returns
$thissetResolver() ¶ public
setResolver(Authentication\Identifier\Resolver\ResolverInterface $resolver): $thisSets ResolverInterface instance.
Parameters
-
Authentication\Identifier\Resolver\ResolverInterface$resolver Resolver instance.
Returns
$thisProperty Detail
$_configInitialized ¶ protected
Whether the config property has already been configured with defaults
Type
bool$_defaultConfig ¶ protected
Default configuration.
fieldsThe fields to use to identify a user by:username: one or many username fields.password: password field.
resolverThe resolver implementation to use.passwordHasherPassword hasher class. Can be a string specifying class name or an array containingclassNamekey, any other keys will be passed as config to the class. Defaults to 'Default'.
Type
array$_needsPasswordRehash ¶ protected
Whether or not the user authenticated by this class requires their password to be rehashed with another algorithm.
Type
bool$_passwordHasher ¶ protected
Password hasher instance.
Type
Authentication\PasswordHasher\PasswordHasherInterface|null$resolver ¶ protected
Resolver instance.
Type
Authentication\Identifier\Resolver\ResolverInterface|null