Server : Apache System : Linux server2.corals.io 4.18.0-348.2.1.el8_5.x86_64 #1 SMP Mon Nov 15 09:17:08 EST 2021 x86_64 User : corals ( 1002) PHP Version : 7.4.33 Disable Function : exec,passthru,shell_exec,system Directory : /home/corals/old/vendor/magento/module-customer/Model/ |
<?php
/**
* Copyright © Magento, Inc. All rights reserved.
* See COPYING.txt for license details.
*/
namespace Magento\Customer\Model;
use Magento\Customer\Api\CustomerRepositoryInterface;
use Magento\Customer\Model\ResourceModel\CustomerRepository;
use Magento\Customer\Model\CustomerAuthUpdate;
use Magento\Backend\App\ConfigInterface;
use Magento\Framework\Encryption\EncryptorInterface as Encryptor;
use Magento\Framework\Exception\InvalidEmailOrPasswordException;
use Magento\Framework\Exception\State\UserLockedException;
/**
* Class Authentication
* @SuppressWarnings(PHPMD.CouplingBetweenObjects)
*/
class Authentication implements AuthenticationInterface
{
/**
* Configuration path to customer lockout threshold
*/
const LOCKOUT_THRESHOLD_PATH = 'customer/password/lockout_threshold';
/**
* Configuration path to customer max login failures number
*/
const MAX_FAILURES_PATH = 'customer/password/lockout_failures';
/**
* @var CustomerRegistry
*/
protected $customerRegistry;
/**
* Backend configuration interface
*
* @var \Magento\Backend\App\ConfigInterface
*/
protected $backendConfig;
/**
* @var \Magento\Framework\Stdlib\DateTime
*/
protected $dateTime;
/**
* @var Encryptor
*/
protected $encryptor;
/**
* @var CustomerRepositoryInterface
*/
protected $customerRepository;
/**
* @var CustomerAuthUpdate
*/
private $customerAuthUpdate;
/**
* @param CustomerRepositoryInterface $customerRepository
* @param CustomerRegistry $customerRegistry
* @param ConfigInterface $backendConfig
* @param \Magento\Framework\Stdlib\DateTime $dateTime
* @param Encryptor $encryptor
*/
public function __construct(
CustomerRepositoryInterface $customerRepository,
CustomerRegistry $customerRegistry,
ConfigInterface $backendConfig,
\Magento\Framework\Stdlib\DateTime $dateTime,
Encryptor $encryptor
) {
$this->customerRepository = $customerRepository;
$this->customerRegistry = $customerRegistry;
$this->backendConfig = $backendConfig;
$this->dateTime = $dateTime;
$this->encryptor = $encryptor;
}
/**
* @inheritdoc
*/
public function processAuthenticationFailure($customerId)
{
$now = new \DateTime();
$lockThreshold = $this->getLockThreshold();
$maxFailures = $this->getMaxFailures();
$customerSecure = $this->customerRegistry->retrieveSecureData($customerId);
if (!($lockThreshold && $maxFailures)) {
return;
}
$failuresNum = (int)$customerSecure->getFailuresNum() + 1;
$firstFailureDate = $customerSecure->getFirstFailure();
if ($firstFailureDate) {
$firstFailureDate = new \DateTime($firstFailureDate);
}
$lockThreshInterval = new \DateInterval('PT' . $lockThreshold . 'S');
$lockExpires = $customerSecure->getLockExpires();
$lockExpired = ($lockExpires !== null) && ($now > new \DateTime($lockExpires));
// set first failure date when this is the first failure or the lock is expired
if (1 === $failuresNum || !$firstFailureDate || $lockExpired) {
$customerSecure->setFirstFailure($this->dateTime->formatDate($now));
$failuresNum = 1;
$customerSecure->setLockExpires(null);
// otherwise lock customer
} elseif ($failuresNum >= $maxFailures) {
$customerSecure->setLockExpires($this->dateTime->formatDate($now->add($lockThreshInterval)));
}
$customerSecure->setFailuresNum($failuresNum);
$this->getCustomerAuthUpdate()->saveAuth($customerId);
}
/**
* @inheritdoc
*/
public function unlock($customerId)
{
$customerSecure = $this->customerRegistry->retrieveSecureData($customerId);
$customerSecure->setFailuresNum(0);
$customerSecure->setFirstFailure(null);
$customerSecure->setLockExpires(null);
$this->getCustomerAuthUpdate()->saveAuth($customerId);
}
/**
* Get lock threshold
*
* @return int
*/
protected function getLockThreshold()
{
return $this->backendConfig->getValue(self::LOCKOUT_THRESHOLD_PATH) * 60;
}
/**
* Get max failures
*
* @return int
*/
protected function getMaxFailures()
{
return $this->backendConfig->getValue(self::MAX_FAILURES_PATH);
}
/**
* @inheritdoc
*/
public function isLocked($customerId)
{
$currentCustomer = $this->customerRegistry->retrieve($customerId);
return $currentCustomer->isCustomerLocked();
}
/**
* @inheritdoc
*/
public function authenticate($customerId, $password)
{
$customerSecure = $this->customerRegistry->retrieveSecureData($customerId);
$hash = $customerSecure->getPasswordHash() ?? '';
if (!$this->encryptor->validateHash($password, $hash)) {
$this->processAuthenticationFailure($customerId);
if ($this->isLocked($customerId)) {
throw new UserLockedException(__('The account is locked.'));
}
throw new InvalidEmailOrPasswordException(__('Invalid login or password.'));
}
return true;
}
/**
* Get customer authentication update model
*
* @return \Magento\Customer\Model\CustomerAuthUpdate
* @deprecated 100.1.1
*/
private function getCustomerAuthUpdate()
{
if ($this->customerAuthUpdate === null) {
$this->customerAuthUpdate =
\Magento\Framework\App\ObjectManager::getInstance()->get(CustomerAuthUpdate::class);
}
return $this->customerAuthUpdate;
}
}