Loading...
Helix SwarmHelix Swarm
Loading...

User.php

  • //
  • guest/
  • thomas_gray/
  • jambox/
  • main/
  • swarm/
  • library/
  • P4/
  • Spec/
  • User.php #1
  • View
  • Commits
  • Open Download .zip Download (22 KB) 
  1. <?php
  2. /**
  3.  * Abstracts operations against Perforce users.
  4.  *
  5.  * The P4 User class differs from the 'user' spec definition in that it
  6.  * does not have a password field. This is because the password does
  7.  * not behave like other fields. To change a user's password, use the
  8.  * setPassword() function. To test if a given string matches a user's
  9.  * password, use the isPassword() method. It is not possible to get a
  10.  * user's password.
  11.  *
  12.  * @copyright   2011 Perforce Software. All rights reserved.
  13.  * @license     Please see LICENSE.txt in top-level folder of this distribution.
  14.  * @version     <release>/<patch>
  15.  */
  16.  
  17. namespace P4\Spec;
  18.  
  19. use P4\Validate;
  20. use P4\Connection\Connection;
  21. use P4\Spec\Exception\Exception;
  22. use P4\Connection\ConnectionInterface;
  23. use P4\Connection\Exception\CommandException;
  24. use P4\Connection\Exception\LoginException;
  25. use P4\Model\Fielded\Iterator as FieldedIterator;
  26.  
  27. class User extends PluralAbstract
  28. {
  29.     const SPEC_TYPE         = 'user';
  30.     const ID_FIELD          = 'User';
  31.  
  32.     const OPERATOR_USER     = 'operator';
  33.     const SERVICE_USER      = 'service';
  34.     const STANDARD_USER     = 'standard';
  35.  
  36.     const FETCH_BY_NAME     = 'name';
  37.  
  38.     protected $fields       = array(
  39.         'Email'         => array(
  40.             'accessor'  => 'getEmail',
  41.             'mutator'   => 'setEmail'
  42.         ),
  43.         'Update'        => array(
  44.             'accessor'  => 'getUpdateDateTime'
  45.         ),
  46.         'Access'        => array(
  47.             'accessor'  => 'getAccessDateTime'
  48.         ),
  49.         'FullName'      => array(
  50.             'accessor'  => 'getFullName',
  51.             'mutator'   => 'setFullName'
  52.         ),
  53.         'JobView'       => array(
  54.             'accessor'  => 'getJobView',
  55.             'mutator'   => 'setJobView'
  56.         ),
  57.         'Reviews'       => array(
  58.             'accessor'  => 'getReviews',
  59.             'mutator'   => 'setReviews'
  60.         ),
  61.         'Password'      => array(
  62.             'accessor'  => 'getPassword',
  63.             'mutator'   => 'setPassword'
  64.         ),
  65.         'Type'          => array(
  66.             'accessor'  => 'getType',
  67.             'mutator'   => 'setType'
  68.         )
  69.     );
  70.  
  71.     /**
  72.      * Determine if the given user id exists.
  73.      *
  74.      * @param   string                      $id             the id to check for.
  75.      * @param   ConnectionInterface         $connection     optional - a specific connection to use.
  76.      * @return  bool    true if the given id matches an existing user.
  77.      */
  78.     public static function exists($id, ConnectionInterface $connection = null)
  79.     {
  80.         // check id for valid format
  81.         if (!static::isValidId($id)) {
  82.             return false;
  83.         }
  84.  
  85.         $users = static::fetchAll(
  86.             array(
  87.                 static::FETCH_BY_NAME => $id,
  88.                 static::FETCH_MAXIMUM => 1
  89.             ),
  90.             $connection
  91.         );
  92.  
  93.         return (bool) count($users);
  94.     }
  95.  
  96.     /**
  97.      * Get all users from Perforce. Adds filtering option.
  98.      *
  99.      * @param   array   $options    optional - array of options to augment fetch behavior.
  100.      *                              supported options are:
  101.      *
  102.      *                                  FETCH_MAXIMUM - set to integer value to limit to the
  103.      *                                                  first 'max' number of entries.
  104.      *                                  FETCH_BY_NAME - set to user name pattern (e.g. 'jdo*'),
  105.      *                                                  can be a single string or array of strings.
  106.      *
  107.      * @param   ConnectionInterface     $connection optional - a specific connection to use.
  108.      * @return  FieldedIterator         all records of this type.
  109.      */
  110.     public static function fetchAll($options = array(), ConnectionInterface $connection = null)
  111.     {
  112.         $connection = $connection ?: static::getDefaultConnection();
  113.  
  114.         // if not fetching by name, defer to parent
  115.         if (!isset($options[static::FETCH_BY_NAME])) {
  116.             return parent::fetchAll($options, $connection);
  117.         }
  118.  
  119.         // get fetch max option and uset it from the options as we handle it manually
  120.         $max = isset($options[static::FETCH_MAXIMUM]) ? $options[static::FETCH_MAXIMUM] : 0;
  121.         unset($options[static::FETCH_MAXIMUM]);
  122.  
  123.         // sort names before fetching users from the server, so if max is set
  124.         // we get the first max users (according to case-sensitivity of server)
  125.         $names = (array) $options[static::FETCH_BY_NAME];
  126.         if ($connection->isCaseSensitive()) {
  127.             sort($names);
  128.         } else {
  129.             usort($names, 'strcasecmp');
  130.         }
  131.  
  132.         // fetch users in several (as few as possible) runs as
  133.         // there is a potential to exceed the arg-max on this command
  134.         $users = new FieldedIterator;
  135.         foreach ($connection->batchArgs($names) as $batch) {
  136.             $options[static::FETCH_BY_NAME] = $batch;
  137.             foreach (parent::fetchAll($options, $connection) as $user) {
  138.                 $users[$user->getId()] = $user;
  139.  
  140.                 // exit loop if we've reached the max limit
  141.                 if ($max && $users->count() == $max) {
  142.                     break(2);
  143.                 }
  144.             }
  145.         }
  146.  
  147.         return $users;
  148.     }
  149.  
  150.     /**
  151.      * Save this user to Perforce. This will not save changes to the
  152.      * password field. Passwords must be set via setPassword().
  153.      *
  154.      * @return  SpecAbstract    provides a fluent interface
  155.      * @throws  Exception       if no id has been set.
  156.      */
  157.     public function save()
  158.     {
  159.         // ensure all required fields have values.
  160.         $this->validateRequiredFields();
  161.  
  162.         // set 'password' field to '******' otherwise password
  163.         // will be deleted under certain security levels.
  164.         $values = $this->getRawValues();
  165.         $values['Password'] = '******';
  166.  
  167.         // initialize command flags with first arg.
  168.         $flags = array("-i");
  169.  
  170.         // if we are connected with super user privileges, add in the -f flag.
  171.         // otherwise, if not connected as this user, connect as this user.
  172.         $connection = $this->getConnection();
  173.         if ($connection->isSuperUser()) {
  174.             $flags[] = "-f";
  175.         } elseif ($connection->getUser() != $this->getId()) {
  176.             $connection = Connection::factory(
  177.                 $connection->getPort(),
  178.                 $this->getId()
  179.             );
  180.         }
  181.  
  182.         // send user spec to server.
  183.         $password = $this->getRawValue('Password');
  184.         try {
  185.             $connection->run(static::SPEC_TYPE, $flags, $values);
  186.         } catch (CommandException $e) {
  187.  
  188.             // if saving user failed because password has not been
  189.             // set, and the caller supplied a password, try setting
  190.             // the password first, then saving user again.
  191.             //
  192.             // @todo This workaround relies on the fact, that user has been created although previous
  193.             // command had failed. At the moment it seems, that when adding a new user (with non-superuser
  194.             // connection) this error cannot be avoided.
  195.             $errors = $e->getResult()->getErrors();
  196.             if (stristr($errors[0], "password must be set") && is_array($password) && isset($password[0])) {
  197.                 $this->changePassword($password[0], null, $connection);
  198.                 $connection->run(static::SPEC_TYPE, $flags, $values);
  199.                 // avoid redundant password change
  200.                 $password[0] = null;
  201.             } else {
  202.                 throw $e;
  203.             }
  204.         }
  205.  
  206.         // change the users password if they have set a new one.
  207.         if (is_array($password) && $password[0] !== null) {
  208.             $this->changePassword($password[0], $password[1], $connection);
  209.         }
  210.  
  211.         // should re-populate (server may change values).
  212.         $this->deferPopulate(true);
  213.  
  214.         return $this;
  215.     }
  216.  
  217.     /**
  218.      * Remove this user from Perforce.
  219.      *
  220.      * @return  SpecAbstract    provides a fluent interface
  221.      * @throws  Exception       if no id has been set.
  222.      */
  223.     public function delete()
  224.     {
  225.         if ($this->getId() === null) {
  226.             throw new Exception("Cannot delete. No id has been set.");
  227.         }
  228.  
  229.         // initialize command flags with first arg.
  230.         $flags = array("-d");
  231.  
  232.         // if we are connected with super user privileges, add in the -f flag.
  233.         // otherwise, if not connected as this user, connect as this user.
  234.         $connection = $this->getConnection();
  235.         if ($connection->isSuperUser()) {
  236.             $flags[] = "-f";
  237.         } elseif ($connection->getUser() != $this->getId()) {
  238.             $connection = Connection::factory(
  239.                 $connection->getPort(),
  240.                 $this->getId()
  241.             );
  242.         }
  243.  
  244.         // issue delete user command.
  245.         $flags[] = $this->getId();
  246.         $result = $connection->run(static::SPEC_TYPE, $flags);
  247.  
  248.         // should re-populate.
  249.         $this->deferPopulate(true);
  250.  
  251.         return $this;
  252.     }
  253.  
  254.     /**
  255.      * Get the in-memory password (if one is set).
  256.      *
  257.      * @return  string|null the in-memory password.
  258.      */
  259.     public function getPassword()
  260.     {
  261.         $password = $this->getRawValue('Password');
  262.         return is_array($password) ? $password[0] : null;
  263.     }
  264.  
  265.     /**
  266.      * Set the user's password to the given password.
  267.      * Does not take effect until save() is called.
  268.      *
  269.      * @param   string|null     $newPassword    the new password string or
  270.      *                                          null to clear in-memory password.
  271.      * @param   string          $oldPassword    optional - existing password.
  272.      * @return  User            provides fluent interface.
  273.      */
  274.     public function setPassword($newPassword, $oldPassword = null)
  275.     {
  276.         $this->setRawValue('Password', array($newPassword, $oldPassword));
  277.  
  278.         return $this;
  279.     }
  280.  
  281.     /**
  282.      * Test if the given password is correct for this user.
  283.      *
  284.      * @param   string  $password   the password to test.
  285.      * @return  bool    true if the password is correct, false otherwise.
  286.      */
  287.     public function isPassword($password)
  288.     {
  289.         $p4 = Connection::factory(
  290.             $this->getConnection()->getPort(),
  291.             $this->getId(),
  292.             null,
  293.             $password
  294.         );
  295.  
  296.         try {
  297.             $p4->login();
  298.             return true;
  299.         } catch (LoginException $e) {
  300.             return false;
  301.         }
  302.     }
  303.  
  304.     /**
  305.      * Get the type for this account. Expected to be one of 'service', 'operator' or 'standard'.
  306.      *
  307.      * @return  the 'type' of this user, by default 'standard'
  308.      */
  309.     public function getType()
  310.     {
  311.         return $this->hasField('Type') && $this->getRawValue('Type')
  312.             ? $this->getRawValue('Type')
  313.             : static::STANDARD_USER;
  314.     }
  315.  
  316.     /**
  317.      * Set the user's type.
  318.      *
  319.      * @param   string|null $type   the type, expected to be one of 'service', 'operator' or 'standard'.
  320.      * @return  User        provides fluent interface.
  321.      * @throws  \InvalidArgumentException   if type field doesn't exist and a value other than null/standard is passed
  322.      */
  323.     public function setType($type)
  324.     {
  325.         $type = $type ?: 'standard';
  326.         if (!$this->hasField('Type') && $type != static::STANDARD_USER) {
  327.             throw new \InvalidArgumentException(
  328.                 'The user spec lacks a Type field, setting to a value other than null or standard is not supported'
  329.             );
  330.         }
  331.  
  332.         return $this->setRawValue('Type', $type);
  333.     }
  334.  
  335.     /**
  336.      * Get an Iterator of all the Clients this user owns.
  337.      *
  338.      * @return  FieldedIterator     Iterator of Clients owned by current user
  339.      * @throws  Exception           If no ID is set for this user
  340.      */
  341.     public function getClients()
  342.     {
  343.         if (!static::isValidId($this->getId())) {
  344.             throw new Exception("Cannot get clients. No user id has been set.");
  345.         }
  346.  
  347.         return Client::fetchAll(
  348.             array(Client::FETCH_BY_OWNER => $this->getId()),
  349.             $this->getConnection()
  350.         );
  351.     }
  352.  
  353.     /**
  354.      * Get the names of groups that this user belongs to.
  355.      *
  356.      * @return  FieldedIterator     Iterator of Groups this user belongs to.
  357.      */
  358.     public function getGroups()
  359.     {
  360.         if (!static::isValidId($this->getId())) {
  361.             throw new Exception("Cannot get groups. No user id has been set.");
  362.         }
  363.  
  364.         return Group::fetchAll(
  365.             array(Group::FETCH_BY_USER => $this->getId(), Group::FETCH_INDIRECT),
  366.             $this->getConnection()
  367.         );
  368.     }
  369.  
  370.     /**
  371.      * Add this user to the named group.
  372.      *
  373.      * @param   string  $group  the name of the group to add the user to.
  374.      * @return  User    provides fluent interface.
  375.      */
  376.     public function addToGroup($group)
  377.     {
  378.         $group = Group::fetch($group, $this->getConnection())
  379.             ->addUser($this->getId())
  380.             ->save();
  381.  
  382.         return $this;
  383.     }
  384.  
  385.     /**
  386.      * Get the user's full name.
  387.      *
  388.      * @return  string|null the user's full name.
  389.      */
  390.     public function getFullName()
  391.     {
  392.         return $this->getRawValue('FullName');
  393.     }
  394.  
  395.     /**
  396.      * Set the user's full name.
  397.      *
  398.      * @param   string|null $name   the full name to give the user.
  399.      * @return  User    provides fluent interface.
  400.      * @throws  \InvalidArgumentException   if given name is not a string.
  401.      */
  402.     public function setFullName($name)
  403.     {
  404.         if ($name !== null && !is_string($name)) {
  405.             throw new \InvalidArgumentException("Cannot set full name. Invalid type given.");
  406.         }
  407.         return $this->setRawValue('FullName', $name);
  408.     }
  409.  
  410.     /**
  411.      * Get the user's email address.
  412.      *
  413.      * @return  string|null the user's email address.
  414.      */
  415.     public function getEmail()
  416.     {
  417.         return $this->getRawValue('Email');
  418.     }
  419.  
  420.     /**
  421.      * Set the user's email address. We don't require a valid email
  422.      * address here because Perforce doesn't enforce one. If we did
  423.      * then users with invalid emails would be innaccessible.
  424.      *
  425.      * @param   string|null $email  the email of the user.
  426.      * @return  User    provides fluent interface.
  427.      * @throws  \InvalidArgumentException   if given email is not a string.
  428.      */
  429.     public function setEmail($email)
  430.     {
  431.         if ($email !== null && !is_string($email)) {
  432.             throw new \InvalidArgumentException("Cannot set email. Invalid type given.");
  433.         }
  434.         return $this->setRawValue("Email", $email);
  435.     }
  436.  
  437.     /**
  438.      * Get the user's job view (selects jobs for inclusion during changelist creation).
  439.      *
  440.      * @return  string|null the user's job view.
  441.      */
  442.     public function getJobView()
  443.     {
  444.         return $this->getRawValue('JobView');
  445.     }
  446.  
  447.     /**
  448.      * Set the user's job view (selects jobs for inclusion during changelist creation).
  449.      *
  450.      * @param   string|null $jobView    the user's job view.
  451.      * @return  User    provides fluent interface.
  452.      * @throws  \InvalidArgumentException   if given job view is not a string.
  453.      */
  454.     public function setJobView($jobView)
  455.     {
  456.         if ($jobView !== null && !is_string($jobView)) {
  457.             throw new \InvalidArgumentException("Cannot set job view. Invalid type given.");
  458.         }
  459.         return $this->setRawValue("JobView", $jobView);
  460.     }
  461.  
  462.  
  463.     /**
  464.      * Get the reviews for this client (depot paths to notify user of changes to).
  465.      *
  466.      * @return  array   list of filespec strings.
  467.      */
  468.     public function getReviews()
  469.     {
  470.         return $this->getRawValue('Reviews') ?: array();
  471.     }
  472.  
  473.     /**
  474.      * Set the reviews for this user (depot paths to notify user of changes to).
  475.      * Reviews is passed as an array of filespec strings.
  476.      *
  477.      * @param   array   $reviews    Review entries - an array of filespec strings.
  478.      * @return  User    provides a fluent interface.
  479.      * @throws  \InvalidArgumentException   if reviews is not an array.
  480.      */
  481.     public function setReviews($reviews)
  482.     {
  483.         if (!is_array($reviews)) {
  484.             throw new \InvalidArgumentException('Reviews must be passed as array.');
  485.         }
  486.  
  487.         return $this->setRawValue('Reviews', $reviews);
  488.     }
  489.  
  490.     /**
  491.      * Get the last update time for this user spec.
  492.      * This value is read only, no setUpdateTime function is provided.
  493.      *
  494.      * If this is a brand new spec, null will be returned in lieu of a time.
  495.      *
  496.      * @return  string|null  Date/Time of last update, formatted "2009/11/23 12:57:06" or null
  497.      */
  498.     public function getUpdateDateTime()
  499.     {
  500.         return $this->getRawValue('Update');
  501.     }
  502.  
  503.     /**
  504.      * Get the last access time for this user spec.
  505.      * This value is read only, no setAccessTime function is provided.
  506.      *
  507.      * If this is a brand new spec, null will be returned in lieu of a time.
  508.      *
  509.      * @return  string|null  Date/Time of last access, formatted "2009/11/23 12:57:06" or null
  510.      */
  511.     public function getAccessDateTime()
  512.     {
  513.         return $this->getRawValue('Access');
  514.     }
  515.  
  516.     /**
  517.      * Check if automatic user creation is enabled.
  518.      *
  519.      * @param   ConnectionInterface         $connection     optional - a specific connection to use.
  520.      * @return  bool                        true if auto user creation is enabled, false otherwise.
  521.      * @throws  Exception                   if we exceed the maximum number of unlikely usernames
  522.      */
  523.     public static function isAutoUserCreationEnabled(ConnectionInterface $connection = null)
  524.     {
  525.         // if no connection given, use default.
  526.         $connection = $connection ?: static::getDefaultConnection();
  527.  
  528.         $port = $connection->getPort();
  529.  
  530.         // limit the number of 'unlikely' username lookups to 3.
  531.         $maxLookups = 3;
  532.         for ($i = 0; $i < $maxLookups; $i++) {
  533.             // generate an unlikely user name.
  534.             $username = md5(mt_rand());
  535.  
  536.             // try to run p4 users as the unlikely user
  537.             // (perforce won't create an account for this lookup).
  538.             try {
  539.                 $connection = Connection::factory($port, $username);
  540.                 $result = $connection->run('users', $username);
  541.             } catch (CommandException $e) {
  542.                 return false;
  543.             }
  544.  
  545.             // ensure unlikely user doesn't exist.
  546.             if (!$result->getData()) {
  547.                 return true;
  548.             }
  549.         }
  550.  
  551.         throw new \Exception(
  552.             "Failed to determine if auto user creation is enabled."
  553.             . "Exceeded the maximum of $maxLookups 'unlikely' username lookups."
  554.         );
  555.     }
  556.  
  557.     /**
  558.      * Produce set of flags for the spec list command, given fetch all options array.
  559.      * Extends parent to add support for filter option.
  560.      *
  561.      * @param   array   $options    array of options to augment fetch behavior.
  562.      *                              see fetchAll for documented options.
  563.      * @return  array   set of flags suitable for passing to spec list command.
  564.      */
  565.     protected static function getFetchAllFlags($options)
  566.     {
  567.         $flags = parent::getFetchAllFlags($options);
  568.  
  569.         // ensure we include service/operator users
  570.         $flags[] = '-a';
  571.  
  572.         if (isset($options[static::FETCH_BY_NAME])) {
  573.             $name = $options[static::FETCH_BY_NAME];
  574.  
  575.             if ((!is_array($name) || !count($name)) && (!is_string($name) || trim($name) === "")) {
  576.                 throw new \InvalidArgumentException(
  577.                     'Filter by Name expects a non-empty string or an non-empty array as input'
  578.                 );
  579.             }
  580.  
  581.             // if array is given, ensure values are non-empty strings
  582.             if (is_array($name)) {
  583.                 $names    = $name;
  584.                 $filtered = array_filter($names, 'is_string');
  585.                 $filtered = array_filter($filtered, 'trim');
  586.  
  587.                 if (count($names) !== count($filtered)) {
  588.                     throw new \InvalidArgumentException(
  589.                         'Filter by Name expects all names in the input array to be non-empty strings'
  590.                     );
  591.                 }
  592.                 $flags = array_merge($flags, $names);
  593.             } else {
  594.                 $flags[] = $name;
  595.             }
  596.         }
  597.  
  598.         return $flags;
  599.     }
  600.  
  601.     /**
  602.      * Check if the given id is in a valid format for user specs.
  603.      *
  604.      * @param   string      $id     the id to check
  605.      * @return  bool        true if id is valid, false otherwise
  606.      */
  607.     protected static function isValidId($id)
  608.     {
  609.         $validator = new Validate\UserName;
  610.         return $validator->isValid($id);
  611.     }
  612.  
  613.     /**
  614.      * Immediately set the user's password to the given password.
  615.      * If the current password is given, it will be validated.
  616.      *
  617.      * @param   string                      $newPassword    the new password.
  618.      * @param   string                      $oldPassword    optional - existing password.
  619.      * @param   ConnectionInterface         $connection     optional - a specific connection to use.
  620.      * @return  User                        provides fluent interface.
  621.      * @throws  Exception                   if the password can't be set.
  622.      */
  623.     protected function changePassword(
  624.         $newPassword,
  625.         $oldPassword = null,
  626.         ConnectionInterface $connection = null
  627.     ) {
  628.         $input = array();
  629.  
  630.         // if caller supplied an old password, prepend it to input array.
  631.         if ($oldPassword) {
  632.             $input[] = $oldPassword;
  633.         }
  634.  
  635.         // always confirm old password
  636.         $input[] = $newPassword;
  637.         $input[] = $newPassword;
  638.  
  639.         // if no connection given, use default.
  640.         $connection = $connection ?: $this->getConnection();
  641.  
  642.         // if not connected as this user, supply user id.
  643.         $flags = array();
  644.         if ($connection->getUser() !== $this->getId()) {
  645.             $flags[] = $this->getId();
  646.         }
  647.  
  648.         // attempt to set password.
  649.         $result = $connection->run("password", $flags, $input);
  650.  
  651.         // change connection credentials if password for connected user has been changed
  652.         // if we don't do this automatically, subsequent commands will fail when using
  653.         // the command-line connection, but would succeed using the P4PHP extension.
  654.         if ($connection->getUser() === $this->getId()) {
  655.             $connection->setPassword($newPassword);
  656.             if ($connection->getTicket()) {
  657.                 $connection->login($connection->isTicketUnlocked());
  658.             }
  659.         }
  660.  
  661.         return $this;
  662.     }
  663. }
# Change User Description Committed
#1 18334 Liz Lam initial add of jambox 9 years ago