christiaangoossens
/
informaticaD4P-2017
Archived
1
0
Fork 0
Code Releases Activity

Added static object linking & authorization methods

Browse Source
merge-requests/2/head
Christiaan Goossens 7 years ago
parent 471b1cd75c
commit 1c54254c74
9 changed files with 242 additions and 36 deletions
Show Stats Download Patch File Download Diff File

2
public/index.php
Unescape Escape View File

@ -12,6 +12,8 @@
* Jelmer Hinssen
*/
// Create session
session_start();
/**
* Check if the script is running in CLI mode

37
src/Application.php
Unescape Escape View File

@ -0,0 +1,37 @@
<?php
/**
* Informatica Eindproject D4p
* 6in3, Stedelijk Gymnasium Nijmegen
* Docent: Hans de Wolf
*
* ==================
*
* Daniel Boutros,
* Christiaan Goossens,
* Jelmer Hinssen
*/
namespace Inforbank;
class Application
{
public static $container;
public static $app;
public static function set($app)
{
self::$app = $app;
self::$container = $app->getContainer();
}
public static function getContainer()
{
return self::$container;
}
public static function getApplication()
{
return self::$app;
}
}

49
src/Application/Auth/Authorization.php
Unescape Escape View File

@ -0,0 +1,49 @@
<?php
/**
* Informatica Eindproject D4p
* 6in3, Stedelijk Gymnasium Nijmegen
* Docent: Hans de Wolf
*
* ==================
*
* Daniel Boutros,
* Christiaan Goossens,
* Jelmer Hinssen
*/
namespace Inforbank\Application\Auth;
use Inforbank\Application;
class Authorization
{
public function login($rekeningnr, $passcode)
{
$container = Application::getContainer();
$db = $container->db;
$rekeningen = $db->rekeningen->where('rekeningnr', $rekeningnr);
if (count($rekeningen) !== 1) {
throw new \Exception("Rekening niet bekend.");
}
$id = $rekeningen->max("id");
$klantnr = $rekeningen[$id]['klantid'];
$klant = $db->klanten->where('id', $klantnr)[$klantnr];
if ($klant['code'] === $passcode) {
$_SESSION['user'] = $klant;
return true;
}
return false;
}
public function getUser()
{
return $_SESSION['user'];
}
}

64
src/Application/Helper/IBAN.php
Unescape Escape View File

@ -0,0 +1,64 @@
<?php
/**
* Informatica Eindproject D4p
* 6in3, Stedelijk Gymnasium Nijmegen
* Docent: Hans de Wolf
*
* ==================
*
* Daniel Boutros,
* Christiaan Goossens,
* Jelmer Hinssen
*/
namespace Inforbank\Application\Helper;
class IBAN
{
private function wordToNumbers($word)
{
$newword = "";
$wordarray = str_split($word);
foreach ($wordarray as $v) {
$newword .= ord(strtolower($v)) - 87;
}
return $newword;
}
public function getIBAN($rekeningnr)
{
$landcode = "NL"; // NL in vertaling
$landnumber = $this->wordToNumbers($landcode);
$bankcode = "INFO";
$banknumber = $this->wordToNumbers($bankcode);
$rekeningnr = str_pad($rekeningnr, 10, 0, STR_PAD_LEFT);
$bignum = $banknumber . $rekeningnr . $landnumber . "00";
$modulo97 = '';
$checkdigits = '00';
// begin modulo staartdeling
$modulo97 = (int)substr($bignum, 0, 6);
$modulo97 = $modulo97 % 97;
$modulo97 = (1000000 * $modulo97) + (int)substr($bignum, 6, 6);
$modulo97 = $modulo97 % 97;
$modulo97 = (1000000 * $modulo97) + (int)substr($bignum, 12, 6);
$modulo97 = $modulo97 % 97;
$modulo97 = (1000000 * $modulo97) + (int)substr($bignum, 18, 6);
$modulo97 = $modulo97 % 97;
$checkdigits = 98 - $modulo97;
// einde modulo staartdeling
if (strlen($checkdigits) < 2) {
$checkdigits = '0' . $checkdigits;
}
$rekeningnrarr = str_split($rekeningnr, 4);
return $landcode.$checkdigits." ".$bankcode." ".$rekeningnrarr[0]." ".$rekeningnrarr[1]." ".$rekeningnrarr[2];
}
}

42
src/Application/Helper/Rekeningen.php
Unescape Escape View File

@ -0,0 +1,42 @@
<?php
/**
* Informatica Eindproject D4p
* 6in3, Stedelijk Gymnasium Nijmegen
* Docent: Hans de Wolf
*
* ==================
*
* Daniel Boutros,
* Christiaan Goossens,
* Jelmer Hinssen
*/
namespace Inforbank\Application\Helper;
use Inforbank\Application;
class Rekeningen
{
public function getCurrentUserRekeningen()
{
$container = Application::getContainer();
$user = $container->auth->getUser();
$db = $container->db;
$ibanhelper = new IBAN;
$rekeningen = $db->rekeningen->where('klantid', $user['id']);
$returnArray = array();
foreach ($rekeningen as $rekening) {
$returnArray[] = array(
"rekeningnr" => $ibanhelper->getIBAN($rekening['rekeningnr']),
"saldo" => (double) $rekening['saldo']
);
}
return $returnArray;
}
}

41
src/Application/Login.php
Unescape Escape View File

@ -16,32 +16,31 @@ namespace Inforbank\Application;
use \Slim\App;
class Login {
public function __construct(App $app) {
class Login
{
public function __construct(App $app)
{
$app->get('/login', function ($request, $response, $args) {
// Render index view
return $this->renderer->render($response, 'login.phtml', $args);
});
$app->post('/login', function ($request, $response, $args) {
$app->post('/login', function ($request, $response, $args) {
// Render index view
$post = $request->getParsedBody();
$user = $this->db->gebruikers("username = ?", $post["username"]);
if ($user->count("*") === 0){
echo "Onjuiste gebruikersnaam of wachtwoord";
} else {
if(password_verify($post["password"], $user["password"])){
session_start();
$_SESSION["user"] = [
"uuid" => $user["uuid"],
"username" => $user["username"]
];
}else{
echo "fout";
}
}
$newResponse = $response->withHeader('Location', '');
return $this->renderer->render($newResponse, 'login.phtml', $args);
$post = $request->getParsedBody();
try {
$resp = $this->auth->login($post['rekeningnr'], $post['pascode']);
if ($resp) {
echo "HIER EEN REDIRECT GRAAG";
} else {
echo "ERR PASS!";
}
} catch (\Exception $e) {
echo "ERR REK!";
}
die();
});
}
}

15
src/bootstrap.php
Unescape Escape View File

@ -77,7 +77,11 @@ $container['db.pdo'] = function ($c) {
$pass = $settings['pass'];
$charset = $settings['charset'];
return new PDO("mysql:dbname=$name;host=$host;charset=$charset", $user, $pass);
return new PDO("mysql:dbname=$name;host=$host;charset=$charset", $user, $pass,
array(
PDO::ATTR_TIMEOUT => 5,
PDO::ATTR_ERRMODE => PDO::ERRMODE_EXCEPTION
));
};
$container['db'] = function ($c) {
@ -86,6 +90,15 @@ $container['db'] = function ($c) {
return new NotORM($pdo);
};
// Add auth object
$container['auth'] = function () {
return new \Inforbank\Application\Auth\Authorization();
};
// Link static objects
Inforbank\Application::set($app);
// Inject the application main class
/**
* ==============

2
src/settings.php
Unescape Escape View File

@ -11,7 +11,7 @@ return [
// Database settings
'db' => [
'host' => 'mysql.verictas.nl',
'host' => '185.56.145.27',
'user' => 'inforban_db',
'pass' => 'inforbank',
'name' => 'inforban_db',

26
templates/login.phtml
Unescape Escape View File

@ -13,7 +13,7 @@
padding: 15px;
margin: 0 auto;
}
.btn-primary {
color: #ff6000;
background-color: #2e652c;
@ -34,23 +34,23 @@
}
</style>
<body>
<div class = "jumbotron">
<div class = "container">
<div class="jumbotron">
<div class="container">
<h1>InforBank</h1>
</div>
</div>
<div class = "container">
<form class = "form-signin" method = "post">
<h2 class = "form-signin-heading">Inloggen</h2>
<label for="inputUsername" class = "sr-only">Gebruikersnaam</label>
<input type = "text" id = "inputUsername" name = "username" class = "form-control" placeholder="Gebruikersnaam"/>
<label for="inputPassword" class = "sr-only">Wachtwoord</label>
<input type = "password" id = "inputPassword" name = "password" class = "form-control" placeholder="Wachtwoord"/>
<button class = "btn btn-lg btn-primary btn-block" type="submit">Inloggen</button>
<div class="container">
<form class="form-signin" method="post">
<h2 class="form-signin-heading">Inloggen</h2>
<label for="inputUsername" class="sr-only">Rekeningnummer (alleen cijfers)</label>
<input type="text" id="inputUsername" name="rekeningnr" class="form-control" placeholder="012456789"/>
<label for="inputPassword" class="sr-only">Pascode</label>
<input type="password" id="inputPassword" name="pascode" class="form-control" placeholder="0000"/>
<button class="btn btn-lg btn-primary btn-block" type="submit">Inloggen</button>
</form>
</div>
<footer class = "footer">
<footer class="footer">
&copy 2017 Alle rechten voorbehouden
</footer>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.12.4/jquery.min.js"></script>