CDCC
/
OLAS
Seguir 3
Destacar 0
Cuchillo 0
Código Incidencias 0 Peticiones pull 0 Lanzamientos 0 Wiki Actividad
Sin descripción
232 Commits
14 Ramas
Árbol: 545d4f2446
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '545d4f2446'
${ noResults }
OLAS/app/controllers/AuthController.php

AuthController.php 4.8KB
Histórico Original

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177 
  1. <?php

  2. 

  3. class AuthController extends \BaseController

  4. {

  5. 

  6. 	/**

  7. 	 * Display a listing of the resource.

  8. 	 * GET /auth

  9. 	 *

  10. 	 * @return Response

  11. 	 */

  12. 	public function showLogin()

  13. 	{

  14. 		$title = "Online Learning Assessment System";

  15. 		return View::make('global.login', compact('title'));

  16. 	}

  17. 

  18. 	public function login()

  19. 	{

  20. 		/** Validate data */

  21. 		$validator = Validator::make(

  22. 			Input::all(),

  23. 			array(

  24. 				'email' => 'required|email',

  25. 				'password' => 'required|min:4|max:16'

  26. 			)

  27. 		);

  28. 

  29. 		if (!$validator->fails()) {

  30. 			//			TODO: Remove this for production environment

  31. // 			if (App::environment('local', 'staging')) {

  32. // 				return $this->processLogin();

  33. // 			}

  34. 			try {

  35. 				// User input

  36. 				$username = str_replace('@upr.edu', '', Input::get('email'));

  37. 				$password = Input::get('password');

  38. 

  39. 				// Radius connection info

  40. 				$radius = radius_auth_open();

  41. 				$radius_ip = '136.145.223.27';

  42. 				$radius_secret = '8reC6ujatArecHe63spech5Wa';

  43. 

  44. 				radius_add_server($radius, $radius_ip, 1812, $radius_secret, 5, 3);

  45. 

  46. 				// Create radius request and add params

  47. 				radius_create_request($radius, RADIUS_ACCESS_REQUEST);

  48. 				radius_put_attr($radius, RADIUS_USER_NAME, $username);

  49. 				radius_put_attr($radius, RADIUS_USER_PASSWORD, $password);

  50. 

  51. 				$result = radius_send_request($radius);

  52. 

  53. 				switch ($result) {

  54. 						// Credentials are correct

  55. 					case RADIUS_ACCESS_ACCEPT:

  56. 

  57. 						return $this->processLogin();

  58. 						break;

  59. 					case RADIUS_ACCESS_REJECT:

  60. 						// If email is a workshop email,

  61. 						if (Input::get('email') == 'taller1@upr.edu' && Input::get('password') == 'o34eAvaluo') {

  62. 							return $this->processLogin();

  63. 						}

  64. 

  65. 						// Tell user credentials are incorrect

  66. 						Session::flash('status', 'danger');

  67. 						Session::flash('message', 'Incorrect email/password combination.');

  68. 						return Redirect::action('AuthController@showLogin');

  69. 						break;

  70. 						// Throw exception in case of any other error

  71. 					default:

  72. 						throw new Exception("-", 1);

  73. 						break;

  74. 				}

  75. 			} catch (Exception $e) {

  76. 				// Tell user access is denied and return to login page.

  77. 				Session::flash('status', 'danger');

  78. 				Session::flash('message', 'An error occurred while connecting to the authentication service. Please try again later. If the problem persists, contact the help desk at x. 80400 or the administrators at oeae.uprrp.edu.');

  79. 				return Redirect::action('AuthController@showLogin');

  80. 			}

  81. 			return Redirect::route('login');

  82. 		} else {

  83. 			/** Prepare error message */

  84. 			$message = '<ul>';

  85. 

  86. 			foreach ($validator->messages()->all('<li>:message</li>') as $validationError) {

  87. 				$message .= $validationError;

  88. 			}

  89. 

  90. 			$message .= '</ul>';

  91. 

  92. 			Session::flash('status', 'danger');

  93. 			Session::flash('message', $message);

  94. 			return Redirect::action('AuthController@showLogin');

  95. 		}

  96. 	}

  97. 

  98. 	private function processLogin()

  99. 	{

  100. 		// Get user record in OLAS database, if it exists

  101. 		$user = User::where('email', Input::get('email'))->first();

  102. 

  103. 		// If user exists in the database AND is authorized

  104. 		if ($user and $user->has_access) {

  105. 			// Log in user and direct to main page

  106. 			Auth::login($user);

  107. 

  108. 			// Get last visible AND running term;

  109. 			$semester = Semester::where('is_visible', 1)

  110. 				->where('start', '<=', date('Y-m-d H:i:s'))

  111. 				->orderBy('start', 'DESC')

  112. 				->first();

  113. 

  114. 			Session::forget('current_semester');

  115. 			Session::put('current_semester', $semester);

  116. 

  117. 			// Push into semesters variable

  118. 			$semesters_id = array();

  119. 			$semesters_info = array();

  120. 

  121. 			$semesters_ids[] = $semester->id;

  122. 			$semesters_info[] = $semester->name . ' (' . $semester->code . ')';

  123. 

  124. 			// Put semesters information arrays into Session

  125. 			Session::forget('semesters_ids');

  126. 			Session::put('semesters_ids', $semesters_ids);

  127. 

  128. 			Session::forget('semesters_info');

  129. 			Session::put('semesters_info', $semesters_info);

  130. 

  131. 			// Record last login

  132. 			User::where('id', Auth::user()->id)

  133. 				->update(

  134. 					array(

  135. 						'last_login' => DB::raw('NOW()')

  136. 					)

  137. 				);

  138. 

  139. 			if (!Auth::user()->office_phone) {

  140. 				return Redirect::action('UsersController@edit');

  141. 			}

  142. 

  143. 			// Redirect depending on user

  144. 			return Redirect::intended('agreement');

  145. 			switch (Auth::user()->role) {

  146. 				case 1:

  147. 					return Redirect::intended('administrator');

  148. 					break;

  149. 

  150. 				case 2:

  151. 					return Redirect::intended('school-coordinator');

  152. 					// 					return Redirect::intended('agreement');

  153. 					break;

  154. 

  155. 				case 3:

  156. 					return Redirect::intended('program-coordinator');

  157. 					break;

  158. 

  159. 				case 4:

  160. 					return Redirect::intended('professor');

  161. 					break;

  162. 			}

  163. 		} else {

  164. 			// Tell user access is denied and return to login page.

  165. 			Session::flash('status', 'danger');

  166. 			Session::flash('message', 'You are not an authorized user. You may request access by contacting oeae.uprrp.edu.');

  167. 			return Redirect::action('AuthController@showLogin');

  168. 		}

  169. 	}

  170. 

  171. 	public function logout()

  172. 	{

  173. 		Auth::logout();

  174. 		Session::flush();

  175. 		return Redirect::action('AuthController@showLogin');

  176. 	}

  177. }