BookStack/app/Access/ExternalBaseUserProvider.php

<?php

namespace BookStack\Access;

use Illuminate\Contracts\Auth\Authenticatable;
use Illuminate\Contracts\Auth\UserProvider;
use Illuminate\Database\Eloquent\Model;

class ExternalBaseUserProvider implements UserProvider
{
    public function __construct(
        protected string $model
    ) {
    }

    /**
     * Create a new instance of the model.
     */
    public function createModel(): Model
    {
        $class = '\\' . ltrim($this->model, '\\');

        return new $class();
    }

    /**
     * Retrieve a user by their unique identifier.
     */
    public function retrieveById(mixed $identifier): ?Authenticatable
    {
        return $this->createModel()->newQuery()->find($identifier);
    }

    /**
     * Retrieve a user by their unique identifier and "remember me" token.
     *
     * @param string $token
     */
    public function retrieveByToken(mixed $identifier, $token): null
    {
        return null;
    }

    /**
     * Update the "remember me" token for the given user in storage.
     *
     * @param Authenticatable $user
     * @param string          $token
     *
     * @return void
     */
    public function updateRememberToken(Authenticatable $user, $token)
    {
        //
    }

    /**
     * Retrieve a user by the given credentials.
     */
    public function retrieveByCredentials(array $credentials): ?Authenticatable
    {
        // Search current user base by looking up a uid
        $model = $this->createModel();

        return $model->newQuery()
            ->where('external_auth_id', $credentials['external_auth_id'])
            ->first();
    }

    /**
     * Validate a user against the given credentials.
     */
    public function validateCredentials(Authenticatable $user, array $credentials): bool
    {
        // Should be done in the guard.
        return false;
    }

    public function rehashPasswordIfRequired(Authenticatable $user, #[\SensitiveParameter] array $credentials, bool $force = false)
    {
        // No action to perform, any passwords are external in the auth system
    }
}
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`<?php`

Played around with a new app structure 2023-05-17 17:56:55 +01:00			`namespace BookStack\Access;`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00
			`use Illuminate\Contracts\Auth\Authenticatable;`
			`use Illuminate\Contracts\Auth\UserProvider;`
Applied another set of static analysis improvements 2021-11-20 14:03:56 +00:00			`use Illuminate\Database\Eloquent\Model;`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`class ExternalBaseUserProvider implements UserProvider`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`{`
Framework: Performed Laravel 11 upgrade guide steps Performed a little code cleanups when observed along the way. Tested not yet ran. 2025-01-11 11:14:49 +00:00			`public function __construct(`
			`protected string $model`
			`) {`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`}`

			`/**`
			`* Create a new instance of the model.`
			`*/`
Framework: Performed Laravel 11 upgrade guide steps Performed a little code cleanups when observed along the way. Tested not yet ran. 2025-01-11 11:14:49 +00:00			`public function createModel(): Model`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`{`
Got LDAP auth working to a functional state 2016-01-11 22:41:05 +00:00			`$class = '\\' . ltrim($this->model, '\\');`
Apply fixes from StyleCI 2021-06-26 15:23:15 +00:00
			`return new $class();`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`}`

			`/**`
			`* Retrieve a user by their unique identifier.`
			`*/`
Framework: Performed Laravel 11 upgrade guide steps Performed a little code cleanups when observed along the way. Tested not yet ran. 2025-01-11 11:14:49 +00:00			`public function retrieveById(mixed $identifier): ?Authenticatable`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`{`
			`return $this->createModel()->newQuery()->find($identifier);`
			`}`

			`/**`
			`* Retrieve a user by their unique identifier and "remember me" token.`
			`*`
Apply fixes from StyleCI 2021-06-26 15:23:15 +00:00			`* @param string $token`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`*/`
Framework: Performed Laravel 11 upgrade guide steps Performed a little code cleanups when observed along the way. Tested not yet ran. 2025-01-11 11:14:49 +00:00			`public function retrieveByToken(mixed $identifier, $token): null`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`{`
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`return null;`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`}`

			`/**`
			`* Update the "remember me" token for the given user in storage.`
			`*`
Applied another set of static analysis improvements 2021-11-20 14:03:56 +00:00			`* @param Authenticatable $user`
Tweaked custom command registration, Added StyleCI fixes Old command registration method was interfering with default commands, causing only a limited subset of commands to show overall. This change follows the method the frameworks uses when loading in from a directory to prevent issues with run/load order. 2021-11-22 22:22:31 +00:00			`* @param string $token`
Apply fixes from StyleCI 2021-06-26 15:23:15 +00:00			`*`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`* @return void`
			`*/`
			`public function updateRememberToken(Authenticatable $user, $token)`
			`{`
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`//`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`}`

			`/**`
			`* Retrieve a user by the given credentials.`
			`*/`
Framework: Performed Laravel 11 upgrade guide steps Performed a little code cleanups when observed along the way. Tested not yet ran. 2025-01-11 11:14:49 +00:00			`public function retrieveByCredentials(array $credentials): ?Authenticatable`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`{`
			`// Search current user base by looking up a uid`
Got LDAP auth working to a functional state 2016-01-11 22:41:05 +00:00			`$model = $this->createModel();`
Apply fixes from StyleCI 2021-06-26 15:23:15 +00:00
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`return $model->newQuery()`
			`->where('external_auth_id', $credentials['external_auth_id'])`
Got LDAP auth working to a functional state 2016-01-11 22:41:05 +00:00			`->first();`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`}`

			`/**`
			`* Validate a user against the given credentials.`
			`*/`
Framework: Performed Laravel 11 upgrade guide steps Performed a little code cleanups when observed along the way. Tested not yet ran. 2025-01-11 11:14:49 +00:00			`public function validateCredentials(Authenticatable $user, array $credentials): bool`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`{`
Started alignment of auth services - Removed LDAP specific logic from login controller, placed in Guard. - Created safer base user provider for ldap login, to be used for SAML soon. - Moved LDAP auth work from user provider to guard. 2020-02-01 11:42:22 +00:00			`// Should be done in the guard.`
			`return false;`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`}`
Framework: Performed Laravel 11 upgrade guide steps Performed a little code cleanups when observed along the way. Tested not yet ran. 2025-01-11 11:14:49 +00:00
			`public function rehashPasswordIfRequired(Authenticatable $user, #[\SensitiveParameter] array $credentials, bool $force = false)`
			`{`
			`// No action to perform, any passwords are external in the auth system`
			`}`
Updated laravel to 5.2 and started ldap implementation 2016-01-09 19:23:35 +00:00			`}`