PluginProbe ʕ •ᴥ•ʔ
Matomo Analytics – Powerful, Privacy-First Insights for WordPress / trunk
Matomo Analytics – Powerful, Privacy-First Insights for WordPress vtrunk
5.11.1 5.11.0 5.10.2 5.10.1 trunk 1.0.2 1.0.3 1.0.4 1.0.5 1.0.6 1.1.0 1.1.1 1.1.2 1.1.3 1.2.0 1.3.0 1.3.1 1.3.2 4.0.0 4.0.1 4.0.2 4.0.3 4.0.4 4.1.0 4.1.1 4.1.2 4.1.3 4.10.0 4.11.0 4.12.0 4.13.0 4.13.2 4.13.3 4.13.4 4.13.5 4.14.0 4.14.1 4.14.2 4.15.0 4.15.1 4.15.2 4.15.3 4.2.0 4.3.0 4.3.1 4.4.1 4.4.2 4.5.0 4.6.0 5.0.1 5.0.2 5.0.3 5.0.4 5.0.5 5.0.6 5.0.7 5.0.8 5.1.0 5.1.1 5.1.2 5.1.3 5.1.4 5.1.5 5.1.6 5.1.7 5.10.0 5.2.0 5.2.1 5.2.2 5.3.0 5.3.1 5.3.2 5.3.3 5.6.0 5.6.1 5.7.0 5.7.1 5.8.0 5.8.1 5.8.2
matomo / app / core / Auth.php
matomo / app / core Last commit date
API 1 month ago Access 3 months ago Application 1 month ago Archive 1 month ago ArchiveProcessor 1 month ago Archiver 2 years ago AssetManager 1 month ago Auth 6 months ago Category 6 months ago Changes 1 month ago CliMulti 1 year ago Columns 1 month ago Concurrency 1 month ago Config 1 month ago Container 1 month ago CronArchive 3 months ago DataAccess 1 month ago DataFiles 2 years ago DataTable 2 weeks ago Db 2 weeks ago DeviceDetector 1 year ago Email 2 years ago Exception 4 months ago Http 4 months ago Intl 3 months ago Log 2 years ago Mail 1 year ago Measurable 6 months ago Menu 1 month ago Metrics 3 months ago Notification 6 months ago Period 1 month ago Plugin 2 weeks ago Policy 1 month ago ProfessionalServices 1 year ago Report 1 year ago ReportRenderer 3 months ago Request 3 months ago Scheduler 1 month ago Segment 1 month ago Session 2 weeks ago Settings 1 month ago Tracker 2 weeks ago Translation 1 month ago Twig 1 year ago UpdateCheck 3 months ago Updater 1 month ago Updates 3 days ago Validators 1 year ago View 1 month ago ViewDataTable 2 weeks ago Visualization 1 year ago Widget 1 month ago .htaccess 2 years ago Access.php 1 month ago Archive.php 1 month ago ArchiveProcessor.php 1 month ago AssetManager.php 1 month ago Auth.php 6 months ago AuthResult.php 6 months ago BaseFactory.php 2 years ago Cache.php 2 years ago CacheId.php 4 months ago CliMulti.php 1 month ago Common.php 2 weeks ago Config.php 1 month ago Console.php 3 months ago Context.php 2 years ago Cookie.php 1 year ago CronArchive.php 1 month ago DI.php 3 months ago DataArray.php 1 month ago DataTable.php 1 month ago Date.php 1 month ago Db.php 1 month ago DbHelper.php 1 month ago Development.php 1 year ago ErrorHandler.php 6 months ago EventDispatcher.php 1 month ago ExceptionHandler.php 4 months ago FileIntegrity.php 1 month ago Filechecks.php 1 year ago Filesystem.php 1 month ago FrontController.php 4 months ago Http.php 1 month ago IP.php 1 year ago Log.php 3 months ago LogDeleter.php 1 year ago Mail.php 1 year ago Metrics.php 1 month ago NoAccessException.php 2 years ago Nonce.php 6 months ago Notification.php 1 month ago NumberFormatter.php 5 months ago Option.php 5 months ago Period.php 1 month ago Piwik.php 1 month ago Plugin.php 1 month ago Process.php 1 month ago Profiler.php 6 months ago ProxyHeaders.php 4 months ago ProxyHttp.php 5 months ago QuickForm2.php 3 months ago RankingQuery.php 1 month ago ReportRenderer.php 1 month ago Request.php 1 month ago Segment.php 1 month ago Sequence.php 6 months ago Session.php 2 weeks ago SettingsPiwik.php 1 month ago SettingsServer.php 1 year ago Singleton.php 2 years ago Site.php 1 month ago SiteContentDetector.php 1 month ago SupportedBrowser.php 2 years ago TCPDF.php 1 year ago Theme.php 1 year ago Timer.php 1 month ago Tracker.php 1 month ago Twig.php 1 month ago Unzip.php 1 year ago UpdateCheck.php 1 month ago Updater.php 1 month ago UpdaterErrorException.php 2 years ago Updates.php 3 months ago Url.php 3 months ago UrlHelper.php 1 month ago Version.php 3 days ago View.php 1 month ago bootstrap.php 1 year ago dispatch.php 2 years ago testMinimumPhpVersion.php 6 months ago
Auth.php
120 lines
1 <?php
2
3 /**
4 * Matomo - free/libre analytics platform
5 *
6 * @link https://matomo.org
7 * @license https://www.gnu.org/licenses/gpl-3.0.html GPL v3 or later
8 */
9 namespace Piwik;
10
11 use Exception;
12 /**
13 * Base interface for authentication implementations.
14 *
15 * Plugins that provide Auth implementations must provide a class that implements
16 * this interface. Additionally, an instance of that class must be set in the
17 * container with the 'Piwik\Auth' key during the
18 * [Request.initAuthenticationObject](https://developer.matomo.org/api-reference/events#requestinitauthenticationobject)
19 * event.
20 *
21 * Authentication implementations must support authentication via username and
22 * clear-text password and authentication via username and token auth. They can
23 * additionally support authentication via username and an MD5 hash of a password. If
24 * they don't support it, then [formless authentication](https://matomo.org/faq/how-to/faq_30/) will fail.
25 *
26 * Derived implementations should favor authenticating by password over authenticating
27 * by token auth. That is to say, if a token auth and a password are set, password
28 * authentication should be used.
29 *
30 * ### Examples
31 *
32 * **How an Auth implementation will be used**
33 *
34 * // authenticating by password
35 * $auth = StaticContainer::get('Piwik\Auth');
36 * $auth->setLogin('user');
37 * $auth->setPassword('password');
38 * $result = $auth->authenticate();
39 *
40 * // authenticating by token auth
41 * $auth = StaticContainer::get('Piwik\Auth');
42 * $auth->setLogin('user');
43 * $auth->setTokenAuth('...');
44 * $result = $auth->authenticate();
45 *
46 * @api
47 */
48 interface Auth
49 {
50 /**
51 * Must return the Authentication module's name, e.g., `"Login"`.
52 *
53 * @return ?string
54 */
55 public function getName();
56 /**
57 * Sets the authentication token to authenticate with.
58 *
59 * @param string|null $token_auth authentication token
60 */
61 public function setTokenAuth(
62 #[\SensitiveParameter]
63 $token_auth);
64 /**
65 * Returns the login of the user being authenticated.
66 *
67 * @return ?string
68 */
69 public function getLogin();
70 /**
71 * Returns the secret used to calculate a user's token auth.
72 *
73 * A users token auth is generated using the user's login and this secret. The secret
74 * should be specific to the user and not easily guessed. Piwik's default Auth implementation
75 * uses an MD5 hash of a user's password.
76 *
77 * @return ?string
78 * @throws Exception if the token auth secret does not exist or cannot be obtained.
79 */
80 public function getTokenAuthSecret();
81 /**
82 * Sets the login name to authenticate with.
83 *
84 * @param string $login The username.
85 */
86 public function setLogin($login);
87 /**
88 * Sets the password to authenticate with.
89 *
90 * @param string $password Password (not hashed).
91 */
92 public function setPassword(
93 #[\SensitiveParameter]
94 $password);
95 /**
96 * Sets the hash of the password to authenticate with. The hash will be an MD5 hash.
97 *
98 * @param string $passwordHash The hashed password.
99 * @throws Exception if authentication by hashed password is not supported.
100 */
101 public function setPasswordHash(
102 #[\SensitiveParameter]
103 $passwordHash);
104 /**
105 * Authenticates a user using the login and password set using the setters. Can also authenticate
106 * via token auth if one is set and no password is set.
107 *
108 * Note: this method must successfully authenticate if the token auth supplied is a special hash
109 * of the user's real token auth. This is because the SessionInitializer class stores a
110 * hash of the token auth in the session cookie. You can calculate the token auth hash using the
111 * {@link \Piwik\Plugins\Login\SessionInitializer::getHashTokenAuth()} method.
112 *
113 * @return AuthResult
114 * @throws Exception if the Auth implementation has an invalid state (ie, no login
115 * was specified). Note: implementations are not **required** to throw
116 * exceptions for invalid state, but they are allowed to.
117 */
118 public function authenticate();
119 }
120