t3lib_userAuth Class Reference

Inherited by t3lib_userAuthGroup, and tslib_feUserAuth.

List of all members.

Public Member Functions
	start ()
	Starts a user session Typical configurations will: a) check if session cookie was set and if not, set one, b) check if a password/username was sent and if so, try to authenticate the user c) Lookup a session attached to a user and check timeout etc.
	check_authentication ()
	Checks if a submission of username and password is present.
	redirect ()
	Redirect to somewhere.
	logoff ()
	Log out current user! Removes the current session record, sets the internal ->user array to a blank string; Thereby the current user (if any) is effectively logged out!
	gc ()
	Garbage collector, removing old expired sessions.
	user_where_clause ()
	This returns the where-clause needed to select the user with respect flags like deleted, hidden, starttime, endtime.
	ipLockClause ()
	This returns the where-clause needed to lock a user to the IP address.
	ipLockClause_remoteIPNumber ($parts)
	Returns the IP address to lock to.
	hashLockClause ()
	This returns the where-clause needed to lock a user to a hash integer.
	hashLockClause_getHashInt ()
	Creates hash integer to lock user to.
	writeUC ($variable='')
	This writes $variable to the user-record.
	writelog ($type, $action, $error, $details_nr, $details, $data, $tablename, $recuid, $recpid)
	DUMMY: Writes to log database table (in some extension classes).
	checkLogFailures ()
	DUMMY: Check login failures (in some extension classes).
	unpack_uc ($theUC='')
	Sets $theUC as the internal variable ->uc IF $theUC is an array.
	pushModuleData ($module, $data, $noSave=0)
	Stores data for a module.
	getModuleData ($module, $type='')
	Gets module data for a module (from a loaded ->uc array).
	getSessionData ($key)
	Returns the session data stored for $key.
	setAndSaveSessionData ($key, $data)
	Sets the session data ($data) for $key and writes all session data (from ->user['ses_data']) to the database.
	setBeUserByUid ($uid)
	Raw initialization of the be_user with uid=$uid This will circumvent all login procedures and select a be_users record from the database and set the content of ->user to the record selected.
	setBeUserByName ($name)
	Raw initialization of the be_user with username=$name.
Public Attributes
	$global_database = ''
	$session_table = ''
	$name = ''
	$get_name = ''
	$user_table = ''
	$username_column = ''
	$userident_column = ''
	$userid_column = ''
	$lastLogin_column = ''
	$enablecolumns
	$formfield_uname = ''
	$formfield_uident = ''
	$formfield_chalvalue = ''
	$formfield_status = ''
	$security_level = ''
	$auth_include = ''
	$auth_timeout_field = 0
	$lifetime = 0
	$gc_time = 24
	$gc_probability = 1
	$writeStdLog = 0
	$writeAttemptLog = 0
	$sendNoCacheHeaders = 1
	$getFallBack = 0
	$hash_length = 32
	$getMethodEnabled = 0
	$lockIP = 4
	$lockHashKeyWords = 'useragent'
	$warningEmail = ''
	$warningPeriod = 3600
	$warningMax = 3
	$checkPid = 1
	$checkPid_value = 0
	$id
	$cookieId
	$loginSessionStarted = 0
	$user
	$get_URL_ID = ''
	$forceSetCookie = 0
	$dontSetCookie = 0

---

Member Function Documentation

t3lib_userAuth::check_authentication (   )

Checks if a submission of username and password is present. Returns: string Returns "login" if login, "logout" if logout, or empty if $F_status was none of these values. Definition at line 261 of file class.t3lib_userauth.php. References checkLogFailures(), hashLockClause_getHashInt(), logoff(), section(), and writelog(). Referenced by start(). { // The values fetched from input variables here are supposed to already BE slashed... if ($this->getMethodEnabled) { $F_status = t3lib_div::_GP($this->formfield_status); $F_uname = t3lib_div::_GP($this->formfield_uname); $F_uident = t3lib_div::_GP($this->formfield_uident); $F_chalvalue = t3lib_div::_GP($this->formfield_chalvalue); } else { $F_status = t3lib_div::_POST($this->formfield_status); $F_uname = t3lib_div::_POST($this->formfield_uname); $F_uident = t3lib_div::_POST($this->formfield_uident); $F_chalvalue = t3lib_div::_POST($this->formfield_chalvalue); } switch ($F_status) { case 'login': $refInfo=parse_url(t3lib_div::getIndpEnv('HTTP_REFERER')); $httpHost = t3lib_div::getIndpEnv('TYPO3_HOST_ONLY'); if (!$this->getMethodEnabled && ($httpHost!=$refInfo['host'] && !$GLOBALS['TYPO3_CONF_VARS']['SYS']['doNotCheckReferer'])) { die('Error: This host address ("'.$httpHost.'") and the referer host ("'.$refInfo['host'].'") mismatches!<br /> It\'s possible that the environment variable HTTP_REFERER is not passed to the script because of a proxy.<br /> The site administrator can disable this check in the "All Configuration" section of the Install Tool (flag: TYPO3_CONF_VARS[SYS][doNotCheckReferer]).'); } if ($F_uident && $F_uname) { // Reset this flag $loginFailure=0; // delete old user session if any $this->logoff(); // Look up the new user by the username: $dbres = $GLOBALS['TYPO3_DB']->exec_SELECTquery( '*', $this->user_table, ($this->checkPid ? 'pid IN ('.$GLOBALS['TYPO3_DB']->cleanIntList($this->checkPid_value).') AND ' : ''). $this->username_column.'="'.$GLOBALS['TYPO3_DB']->quoteStr($F_uname, $this->user_table).'" '. $this->user_where_clause() ); // Enter, if a user was found: if ($tempuser = $GLOBALS['TYPO3_DB']->sql_fetch_assoc($dbres)) { // Internal user record set (temporarily) $this->user = $tempuser; // Default: not OK - will be set true if password matches in the comparison hereafter $OK = false; // check the password switch ($this->security_level) { case 'superchallenged': // If superchallenged the password in the database ($tempuser[$this->userident_column]) must be a md5-hash of the original password. case 'challenged': if (!strcmp($F_uident,md5($tempuser[$this->username_column].':'.$tempuser[$this->userident_column].':'.$F_chalvalue))) { $OK = true; }; break; default: // normal if (!strcmp($F_uident,$tempuser[$this->userident_column])) { $OK = true; }; break; } // Write session-record in case user was verified OK if ($OK) { // Checking the domain (lockToDomain) if ($this->user['lockToDomain'] && $this->user['lockToDomain']!=t3lib_div::getIndpEnv('HTTP_HOST')) { // Lock domain didn't match, so error: if ($this->writeAttemptLog) { $this->writelog(255,3,3,1, "Login-attempt from %s (%s), username '%s', locked domain '%s' did not match '%s'!", Array(t3lib_div::getIndpEnv('REMOTE_ADDR'),t3lib_div::getIndpEnv('REMOTE_HOST'),$F_uname,$this->user['lockToDomain'],t3lib_div::getIndpEnv('HTTP_HOST'))); } $loginFailure=1; } else { // The loginsession is started. $this->loginSessionStarted = 1; // Inserting session record: $insertFields = array( 'ses_id' => $this->id, 'ses_name' => $this->name, 'ses_iplock' => $this->user['disableIPlock'] ? '[DISABLED]' : $this->ipLockClause_remoteIPNumber($this->lockIP), 'ses_hashlock' => $this->hashLockClause_getHashInt(), 'ses_userid' => $tempuser[$this->userid_column], 'ses_tstamp' => $GLOBALS['EXEC_TIME'] ); $GLOBALS['TYPO3_DB']->exec_INSERTquery($this->session_table, $insertFields); // Updating column carrying information about last login. if ($this->lastLogin_column) { $GLOBALS['TYPO3_DB']->exec_UPDATEquery( $this->user_table, $this->userid_column.'="'.$GLOBALS['TYPO3_DB']->quoteStr($tempuser[$this->userid_column], $this->user_table).'"', array($this->lastLogin_column => $GLOBALS['EXEC_TIME']) ); } // User logged in - write that to the log! if ($this->writeStdLog) { $this->writelog(255,1,0,1, 'User %s logged in from %s (%s)', Array($this->user['username'],t3lib_div::getIndpEnv('REMOTE_ADDR'),t3lib_div::getIndpEnv('REMOTE_HOST'))); } } } else { // Failed login attempt (wrong password) - write that to the log! if ($this->writeAttemptLog) { $this->writelog(255,3,3,1, "Login-attempt from %s (%s), username '%s', password not accepted!", Array(t3lib_div::getIndpEnv('REMOTE_ADDR'),t3lib_div::getIndpEnv('REMOTE_HOST'),$F_uname)); } $loginFailure=1; } // Make sure to clear the user again!! unset($this->user); } else { // Failed login attempt (no username found) if ($this->writeAttemptLog) { $this->writelog(255,3,3,2, "Login-attempt from %s (%s), username '%s' not found!!", Array(t3lib_div::getIndpEnv('REMOTE_ADDR'),t3lib_div::getIndpEnv('REMOTE_HOST'),$F_uname)); // Logout written to log } $loginFailure=1; } // If there were a login failure, check to see if a warning email should be sent: if ($loginFailure) { $this->checkLogFailures($this->warningEmail, $this->warningPeriod, $this->warningMax); } } // Return "login" - since this was the $F_status return 'login'; break; case 'logout': // Just logout: if ($this->writeStdLog) $this->writelog(255,2,0,2,'User %s logged out',Array($this->user['username'])); // Logout written to log $this->logoff(); // Return "logout" - since this was the $F_status return 'logout'; break; } }

t3lib_userAuth::checkLogFailures (   )

DUMMY: Check login failures (in some extension classes). Returns: void Definition at line 567 of file class.t3lib_userauth.php. Referenced by check_authentication(). { }

t3lib_userAuth::gc (   )

Garbage collector, removing old expired sessions. Returns: void Definition at line 441 of file class.t3lib_userauth.php. Referenced by start(). { $GLOBALS['TYPO3_DB']->exec_DELETEquery( $this->session_table, 'ses_tstamp < '.intval(time()-($this->gc_time*60*60)).' AND ses_name = "'.$GLOBALS['TYPO3_DB']->quoteStr($this->name, $this->session_table).'"' ); }

t3lib_userAuth::getModuleData (  $  module, $  type = '' )

Gets module data for a module (from a loaded ->uc array). Parameters: string  $module is the name of the module ($MCONF['name']) string  If $type = 'ses' then module data is returned only if it was stored in the current session, otherwise data from a previous session will be returned (if available). Returns: mixed The module data if available: $this->uc['moduleData'][$module]; Definition at line 605 of file class.t3lib_userauth.php. { if ($type!='ses' || $this->uc['moduleSessionID'][$module]==$this->id) { return $this->uc['moduleData'][$module]; } }

t3lib_userAuth::getSessionData (  $  key  )

Returns the session data stored for $key. The data will last only for this login session since it is stored in the session table. Parameters: string  Pointer to an associative key in the session data array which is stored serialized in the field "ses_data" of the session table. Returns: mixed Definition at line 618 of file class.t3lib_userauth.php. { $sesDat = unserialize($this->user['ses_data']); return $sesDat[$key]; }

t3lib_userAuth::hashLockClause (   )

This returns the where-clause needed to lock a user to a hash integer. Returns: string private Definition at line 508 of file class.t3lib_userauth.php. { $wherePart = 'AND '.$this->session_table.'.ses_hashlock='.intval($this->hashLockClause_getHashInt()); return $wherePart; }

t3lib_userAuth::hashLockClause_getHashInt (   )

Creates hash integer to lock user to. Depends on configured keywords Returns: integer Hash integer private Definition at line 519 of file class.t3lib_userauth.php. Referenced by check_authentication(). { $hashStr = ''; if (t3lib_div::inList($this->lockHashKeyWords,'useragent')) $hashStr.=':'.t3lib_div::getIndpEnv('HTTP_USER_AGENT'); return t3lib_div::md5int($hashStr); }

t3lib_userAuth::ipLockClause (   )

This returns the where-clause needed to lock a user to the IP address. Returns: string private Definition at line 469 of file class.t3lib_userauth.php. { if ($this->lockIP) { $wherePart = 'AND ( '.$this->session_table.'.ses_iplock="'.$GLOBALS['TYPO3_DB']->quoteStr($this->ipLockClause_remoteIPNumber($this->lockIP),$this->session_table).'" OR '.$this->session_table.'.ses_iplock="[DISABLED]" )'; return $wherePart; } }

t3lib_userAuth::ipLockClause_remoteIPNumber (  $  parts  )

Returns the IP address to lock to. The IP address may be partial based on $parts. Parameters: integer  1-4: Indicates how many parts of the IP address to return. 4 means all, 1 means only first number. Returns: string (Partial) IP address for REMOTE_ADDR private Definition at line 487 of file class.t3lib_userauth.php. References $a. { $IP = t3lib_div::getIndpEnv('REMOTE_ADDR'); if ($parts>=4) { return $IP; } else { $parts = t3lib_div::intInRange($parts,1,3); $IPparts = explode('.',$IP); for($a=4;$a>$parts;$a--) { unset($IPparts[$a-1]); } return implode('.',$IPparts); } }

t3lib_userAuth::logoff (   )

Log out current user! Removes the current session record, sets the internal ->user array to a blank string; Thereby the current user (if any) is effectively logged out! Returns: void Definition at line 426 of file class.t3lib_userauth.php. Referenced by check_authentication(), and start(). { $GLOBALS['TYPO3_DB']->exec_DELETEquery( $this->session_table, 'ses_id = "'.$GLOBALS['TYPO3_DB']->quoteStr($this->id, $this->session_table).'" AND ses_name = "'.$GLOBALS['TYPO3_DB']->quoteStr($this->name, $this->session_table).'"' ); $this->user = ""; }

t3lib_userAuth::pushModuleData (  $  module, $  data, $  noSave = 0 )

Stores data for a module. The data is stored with the session id so you can even check upon retrieval if the module data is from a previous session or from the current session. Parameters: string  $module is the name of the module ($MCONF['name']) mixed  $data is the data you want to store for that module (array, string, ...) boolean  If $noSave is set, then the ->uc array (which carries all kinds of user data) is NOT written immediately, but must be written by some subsequent call. Returns: void Definition at line 592 of file class.t3lib_userauth.php. References writeUC(). { $this->uc['moduleData'][$module] = $data; $this->uc['moduleSessionID'][$module] = $this->id; if (!$noSave) $this->writeUC(); }

t3lib_userAuth::redirect (   )

Redirect to somewhere. Obsolete, depreciated etc. Returns: void Definition at line 413 of file class.t3lib_userauth.php. Referenced by start(). { if (!$this->userid && $this->auth_url) { // if no userid AND an include-document for login is given include ($this->auth_include); exit; } }

t3lib_userAuth::setAndSaveSessionData (  $  key, $  data )

Sets the session data ($data) for $key and writes all session data (from ->user['ses_data']) to the database. The data will last only for this login session since it is stored in the session table. Parameters: string  Pointer to an associative key in the session data array which is stored serialized in the field "ses_data" of the session table. mixed  The variable to store in index $key Returns: void Definition at line 631 of file class.t3lib_userauth.php. { $sesDat = unserialize($this->user['ses_data']); $sesDat[$key] = $data; $this->user['ses_data'] = serialize($sesDat); $GLOBALS['TYPO3_DB']->exec_UPDATEquery($this->session_table, 'ses_id="'.$GLOBALS['TYPO3_DB']->quoteStr($this->user['ses_id'], $this->session_table).'"', array('ses_data' => $this->user['ses_data'])); }

t3lib_userAuth::setBeUserByName (  $  name  )

Raw initialization of the be_user with username=$name. Parameters: string  The username to look up. Returns: void See also: t3lib_userAuth::setBeUserByUid() Definition at line 663 of file class.t3lib_userauth.php. Referenced by t3lib_beUserAuth::checkCLIuser(). { $dbres = $GLOBALS['TYPO3_DB']->exec_SELECTquery('*', $this->user_table, 'username="'.$GLOBALS['TYPO3_DB']->quoteStr($name, $this->user_table).'" '.$this->user_where_clause()); $this->user = $GLOBALS['TYPO3_DB']->sql_fetch_assoc($dbres); }

t3lib_userAuth::setBeUserByUid (  $  uid  )

Raw initialization of the be_user with uid=$uid This will circumvent all login procedures and select a be_users record from the database and set the content of ->user to the record selected. Thus the BE_USER object will appear like if a user was authenticated - however without a session id and the fields from the session table of course. Will check the users for disabled, start/endtime, etc. ($this->user_where_clause()) Parameters: integer  The UID of the backend user to set in ->user Returns: void integer 'uid' of be_users record to select and set. Definition at line 650 of file class.t3lib_userauth.php. { $dbres = $GLOBALS['TYPO3_DB']->exec_SELECTquery('*', $this->user_table, 'uid="'.intval($uid).'" '.$this->user_where_clause()); $this->user = $GLOBALS['TYPO3_DB']->sql_fetch_assoc($dbres); }

t3lib_userAuth::start (   )

Starts a user session Typical configurations will: a) check if session cookie was set and if not, set one, b) check if a password/username was sent and if so, try to authenticate the user c) Lookup a session attached to a user and check timeout etc. d) Garbage collection, setting of no-cache headers. If a user is authenticated the database record of the user (array) will be set in the ->user internal variable. Returns: void Definition at line 159 of file class.t3lib_userauth.php. References $id, check_authentication(), gc(), header(), logoff(), and redirect(). { // Init vars. $mode=''; $new_id = false; // Default: not a new session $id = isset($_COOKIE[$this->name]) ? stripslashes($_COOKIE[$this->name]) : ''; // $id is set to ses_id if cookie is present. Else set to false, which will start a new session $this->hash_length = t3lib_div::intInRange($this->hash_length,6,32); // If fallback to get mode.... if (!$id && $this->getFallBack && $this->get_name) { $id = isset($_GET[$this->get_name]) ? t3lib_div::_GET($this->get_name) : ''; if (strlen($id)!=$this->hash_length) $id=''; $mode='get'; } $this->cookieId = $id; if (!$id) { // If new session... $id = substr(md5(uniqid('')),0,$this->hash_length); // New random session-$id is made $new_id = true; // New session } // Internal var 'id' is set $this->id = $id; if ($mode=='get' && $this->getFallBack && $this->get_name) { // If fallback to get mode.... $this->get_URL_ID = '&'.$this->get_name.'='.$id; } $this->user = ''; // Make certain that NO user is set initially // Setting cookies if (($new_id || $this->forceSetCookie) && $this->lifetime==0 ) { // If new session and the cookie is a sessioncookie, we need to set it only once! if (!$this->dontSetCookie) SetCookie($this->name, $id, 0, '/'); // Cookie is set } if ($this->lifetime > 0) { // If it is NOT a session-cookie, we need to refresh it. if (!$this->dontSetCookie) SetCookie($this->name, $id, time()+$this->lifetime, '/'); } // Check to see if anyone has submitted login-information and if so register the user with the session. $this->user[uid] may be used to write log... if ($this->formfield_status) { $this->check_authentication(); } unset($this->user); // Make certain that NO user is set initially. ->check_authentication may have set a session-record which will provide us with a user record in the next section: // The session_id is used to find user in the database. Two tables are joined: The session-table with user_id of the session and the usertable with its primary key $dbres = $GLOBALS['TYPO3_DB']->exec_SELECTquery( '*', $this->session_table.','.$this->user_table, $this->session_table.'.ses_id = "'.$GLOBALS['TYPO3_DB']->quoteStr($this->id, $this->session_table).'" AND '.$this->session_table.'.ses_name = "'.$GLOBALS['TYPO3_DB']->quoteStr($this->name, $this->session_table).'" AND '.$this->session_table.'.ses_userid = '.$this->user_table.'.'.$this->userid_column.' '.$this->ipLockClause().' '.$this->hashLockClause().' '.$this->user_where_clause() ); if ($this->user = $GLOBALS['TYPO3_DB']->sql_fetch_assoc($dbres)) { // A user was found if (is_string($this->auth_timeout_field)) { $timeout = intval($this->user[$this->auth_timeout_field]); // Get timeout-time from usertable } else { $timeout = intval($this->auth_timeout_field); // Get timeout from object } // If timeout > 0 (true) and currenttime has not exceeded the latest sessions-time plus the timeout in seconds then accept user // Option later on: We could check that last update was at least x seconds ago in order not to update twice in a row if one script redirects to another... if ($timeout>0 && ($GLOBALS['EXEC_TIME'] < ($this->user['ses_tstamp']+$timeout))) { $GLOBALS['TYPO3_DB']->exec_UPDATEquery( $this->session_table, 'ses_id="'.$GLOBALS['TYPO3_DB']->quoteStr($this->id, $this->session_table).'" AND ses_name="'.$GLOBALS['TYPO3_DB']->quoteStr($this->name, $this->session_table).'"', array('ses_tstamp' => $GLOBALS['EXEC_TIME']) ); $this->user['ses_tstamp'] = $GLOBALS['EXEC_TIME']; // Make sure that the timestamp is also updated in the array } else { $this->user = ''; $this->logoff(); // delete any user set... } } else { $this->logoff(); // delete any user set... } $this->redirect(); // If any redirection (inclusion of file) then it will happen in this function // Set all posible headers that could ensure that the script is not cached on the client-side if ($this->sendNoCacheHeaders) { header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT'); header('Expires: 0'); header('Cache-Control: no-cache, must-revalidate'); header('Pragma: no-cache'); } // If we're lucky we'll get to clean up old sessions.... if ((rand()%100) <= $this->gc_probability) { $this->gc(); } }

t3lib_userAuth::unpack_uc (  $  theUC = ''  )

Sets $theUC as the internal variable ->uc IF $theUC is an array. If $theUC is false, the 'uc' content from the ->user array will be unserialized and restored in ->uc Parameters: mixed  If an array, then set as ->uc, otherwise load from user record Returns: void Definition at line 576 of file class.t3lib_userauth.php. Referenced by t3lib_beUserAuth::backendSetUC(). { if (!$theUC) $theUC=unserialize($this->user['uc']); if (is_array($theUC)) { $this->uc=$theUC; } }

t3lib_userAuth::user_where_clause (   )

This returns the where-clause needed to select the user with respect flags like deleted, hidden, starttime, endtime. Returns: string private Definition at line 455 of file class.t3lib_userauth.php. { return (($this->enablecolumns['rootLevel']) ? 'AND '.$this->user_table.'.pid=0 ' : ''). (($this->enablecolumns['disabled']) ? ' AND NOT '.$this->user_table.'.'.$this->enablecolumns['disabled'] : ''). (($this->enablecolumns['deleted']) ? ' AND NOT '.$this->user_table.'.'.$this->enablecolumns['deleted'] : ''). (($this->enablecolumns['starttime']) ? ' AND ('.$this->user_table.'.'.$this->enablecolumns['starttime'].'<='.time().')' : ''). (($this->enablecolumns['endtime']) ? ' AND ('.$this->user_table.'.'.$this->enablecolumns['endtime'].'=0 OR '.$this->user_table.'.'.$this->enablecolumns['endtime'].'>'.time().')' : ''); }

t3lib_userAuth::writelog (  $  type, $  action, $  error, $  details_nr, $  details, $  data, $  tablename, $  recuid, $  recpid )

DUMMY: Writes to log database table (in some extension classes). Parameters: integer  $type: denotes which module that has submitted the entry. This is the current list: 1=tce_db; 2=tce_file; 3=system (eg. sys_history save); 4=modules; 254=Personal settings changed; 255=login / out action: 1=login, 2=logout, 3=failed login (+ errorcode 3), 4=failure_warning_email sent integer  action denotes which specific operation that wrote the entry (eg. 'delete', 'upload', 'update' and so on...). Specific for each type. Also used to trigger update of the interface. (see the log-module for the meaning of each number !!) integer  $error: flag. 0 = message, 1 = error (user problem), 2 = System Error (which should not happen), 3 = security notice (admin) integer  details_nr The message number. Specific for each type and $action. in the future this will make it possible to translate errormessages to other languages string  $details: Default text that follows the message array  $data: Data that follows the log. Might be used to carry special information. If an array the first 5 entries (0-4) will be sprintf'ed the details-text... string  tablename Special field used by tce_main.php. These ( tablename, $recuid, $recpid) holds the reference to the record which the log-entry is about. (Was used in attic status.php to update the interface.) integer  recuid Special field used by tce_main.php. These ( tablename, $recuid, $recpid) holds the reference to the record which the log-entry is about. (Was used in attic status.php to update the interface.) integer  recpid Special field used by tce_main.php. These ( tablename, $recuid, $recpid) holds the reference to the record which the log-entry is about. (Was used in attic status.php to update the interface.) Returns: void See also: t3lib_userauthgroup::writelog() Definition at line 558 of file class.t3lib_userauth.php. Referenced by check_authentication(). { }

t3lib_userAuth::writeUC (  $  variable = ''  )

This writes $variable to the user-record. This is a way of providing session-data. You can fetch the data again through $this->uc in this class! If $variable is not an array, $this->uc is saved! Parameters: array  An array you want to store for the user as session data. If $variable is not supplied (is blank string), the internal variable, ->uc, is stored by default Returns: void Definition at line 535 of file class.t3lib_userauth.php. Referenced by t3lib_beUserAuth::backendSetUC(), and pushModuleData(). { if (is_array($this->user) && $this->user['uid']) { if (!is_array($variable)) { $variable = $this->uc; } $GLOBALS['TYPO3_DB']->exec_UPDATEquery($this->user_table, 'uid='.intval($this->user['uid']), array('uc' => serialize($variable))); } }

---

Member Data Documentation

t3lib_userAuth::$auth_include = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 115 of file class.t3lib_userauth.php.

t3lib_userAuth::$auth_timeout_field = 0

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 117 of file class.t3lib_userauth.php.

t3lib_userAuth::$checkPid = 1

Definition at line 133 of file class.t3lib_userauth.php.

t3lib_userAuth::$checkPid_value = 0

Definition at line 134 of file class.t3lib_userauth.php.

t3lib_userAuth::$cookieId

Definition at line 138 of file class.t3lib_userauth.php.

t3lib_userAuth::$dontSetCookie = 0

Definition at line 145 of file class.t3lib_userauth.php.

t3lib_userAuth::$enablecolumns

Initial value: Array ( 'rootLevel' => '', // Boolean: If true, 'AND pid=0' will be a part of the query... 'disabled' => '', 'starttime' => '', 'endtime' => '', 'deleted' => '' ) Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 101 of file class.t3lib_userauth.php.

t3lib_userAuth::$forceSetCookie = 0

Definition at line 144 of file class.t3lib_userauth.php.

t3lib_userAuth::$formfield_chalvalue = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 111 of file class.t3lib_userauth.php.

t3lib_userAuth::$formfield_status = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 112 of file class.t3lib_userauth.php.

t3lib_userAuth::$formfield_uident = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 110 of file class.t3lib_userauth.php.

t3lib_userAuth::$formfield_uname = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 109 of file class.t3lib_userauth.php.

t3lib_userAuth::$gc_probability = 1

Definition at line 120 of file class.t3lib_userauth.php.

t3lib_userAuth::$gc_time = 24

Definition at line 119 of file class.t3lib_userauth.php.

t3lib_userAuth::$get_name = ''

Reimplemented in tslib_feUserAuth. Definition at line 93 of file class.t3lib_userauth.php.

t3lib_userAuth::$get_URL_ID = ''

Definition at line 142 of file class.t3lib_userauth.php.

t3lib_userAuth::$getFallBack = 0

Reimplemented in tslib_feUserAuth. Definition at line 124 of file class.t3lib_userauth.php.

t3lib_userAuth::$getMethodEnabled = 0

Reimplemented in tslib_feUserAuth. Definition at line 126 of file class.t3lib_userauth.php.

t3lib_userAuth::$global_database = ''

Definition at line 90 of file class.t3lib_userauth.php.

t3lib_userAuth::$hash_length = 32

Reimplemented in tslib_feUserAuth. Definition at line 125 of file class.t3lib_userauth.php.

t3lib_userAuth::$id

Definition at line 137 of file class.t3lib_userauth.php. Referenced by start().

t3lib_userAuth::$lastLogin_column = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 99 of file class.t3lib_userauth.php.

t3lib_userAuth::$lifetime = 0

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 118 of file class.t3lib_userauth.php.

t3lib_userAuth::$lockHashKeyWords = 'useragent'

Definition at line 128 of file class.t3lib_userauth.php.

t3lib_userAuth::$lockIP = 4

Definition at line 127 of file class.t3lib_userauth.php.

t3lib_userAuth::$loginSessionStarted = 0

Definition at line 139 of file class.t3lib_userauth.php.

t3lib_userAuth::$name = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 92 of file class.t3lib_userauth.php.

t3lib_userAuth::$security_level = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 113 of file class.t3lib_userauth.php.

t3lib_userAuth::$sendNoCacheHeaders = 1

Reimplemented in tslib_feUserAuth. Definition at line 123 of file class.t3lib_userauth.php.

t3lib_userAuth::$session_table = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 91 of file class.t3lib_userauth.php.

t3lib_userAuth::$user

Definition at line 141 of file class.t3lib_userauth.php.

t3lib_userAuth::$user_table = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 95 of file class.t3lib_userauth.php.

t3lib_userAuth::$userid_column = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 98 of file class.t3lib_userauth.php.

t3lib_userAuth::$userident_column = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 97 of file class.t3lib_userauth.php.

t3lib_userAuth::$username_column = ''

Reimplemented in tslib_feUserAuth, and t3lib_beUserAuth. Definition at line 96 of file class.t3lib_userauth.php.

t3lib_userAuth::$warningEmail = ''

Definition at line 130 of file class.t3lib_userauth.php.

t3lib_userAuth::$warningMax = 3

Definition at line 132 of file class.t3lib_userauth.php.

t3lib_userAuth::$warningPeriod = 3600

Definition at line 131 of file class.t3lib_userauth.php.

t3lib_userAuth::$writeAttemptLog = 0

Reimplemented in t3lib_beUserAuth. Definition at line 122 of file class.t3lib_userauth.php.

t3lib_userAuth::$writeStdLog = 0

Reimplemented in t3lib_beUserAuth. Definition at line 121 of file class.t3lib_userauth.php.

---

The documentation for this class was generated from the following file:

• t3lib/class.t3lib_userauth.php

---