Continue working on the base implementation

Author: Florian Krämer

Diff for: .editorconfig

@@ -0,0 +1,18 @@
+; This file is for unifying the coding style for different editors and IDEs.
+; More information at http://editorconfig.org
+
+root = true
+
+[*]
+indent_style = space
+indent_size = 4
+end_of_line = lf
+insert_final_newline = true
+trim_trailing_whitespace = true
+
+[*.bat]
+end_of_line = crlf
+
+[*.yml]
+indent_style = space
+indent_size = 2

Diff for: composer.json

@@ -1,29 +1,29 @@
 {
-  "name": "cakephp/middleware-authentication",
-  "description": "Authentication for the middleware stack",
-  "type": "cakephp-plugin",
-  "require": {
-    "cakephp/cakephp": "^3.3"
-  },
-  "require-dev": {
-    "cakephp/cakephp-codesniffer": "^2.1",
-    "phpunit/phpunit": "^5.5"
-  },
-  "license": "MIT",
-  "minimum-stability": "dev",
-  "autoload": {
-    "psr-4": {
-      "MiddlewareAuth\\": "src"
-    }
-  },
-  "autoload-dev": {
-    "psr-4": {
-      "MiddlewareAuthTest\\": "tests/test_app/Plugin/MiddlewareAuthTest/src",
-      "MiddlewareAuth\\Test\\": "tests",
-      "MiddlewareAuth\\Test\\App\\": "tests/test_app/App",
-      "Cake\\Test\\": "./vendor/cakephp/cakephp/tests",
-      "TestApp\\": "./vendor/cakephp/cakephp/tests/test_app/TestApp"
-    }
-  },
-  "prefer-source": true
+    "name": "cakephp/middleware-authentication",
+    "description": "Authentication for the middleware stack",
+    "type": "cakephp-plugin",
+    "require": {
+        "cakephp/cakephp": "^3.3"
+    },
+    "require-dev": {
+        "cakephp/cakephp-codesniffer": "^2.1",
+        "phpunit/phpunit": "^5.5"
+    },
+    "license": "MIT",
+    "minimum-stability": "dev",
+    "autoload": {
+        "psr-4": {
+            "MiddlewareAuth\\": "src"
+        }
+    },
+    "autoload-dev": {
+        "psr-4": {
+            "MiddlewareAuthTest\\": "tests/test_app/Plugin/MiddlewareAuthTest/src",
+            "MiddlewareAuth\\Test\\": "tests",
+            "MiddlewareAuth\\Test\\App\\": "tests/test_app/App",
+            "Cake\\Test\\": "./vendor/cakephp/cakephp/tests",
+            "TestApp\\": "./vendor/cakephp/cakephp/tests/test_app/TestApp"
+        }
+    },
+    "prefer-source": true
 }

Diff for: src/Routing/Middleware/Authentication/AbstractAuthenticator.php renamed to src/Auth/Authentication/AbstractAuthenticator.php

@@ -8,20 +8,21 @@
  *
  * @copyright     Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
  * @link          http://cakephp.org CakePHP(tm) Project
- * @since         2.0.0
+ * @since         4.0.0
  * @license       http://www.opensource.org/licenses/mit-license.php MIT License
  */
-namespace MiddlewareAuth\Routing\Middleware\Authentication;
+namespace MiddlewareAuth\Auth\Authentication;
 
-use Cake\Auth\PasswordHasherFactory;
 use Cake\Core\InstanceConfigTrait;
 use Cake\ORM\TableRegistry;
+use MiddlewareAuth\Auth\PasswordHasherTrait;
 use Psr\Http\Message\ResponseInterface;
 use Psr\Http\Message\ServerRequestInterface;
 
-abstract class AbstractAuthenticator {
+abstract class AbstractAuthenticator implements AuthenticateInterface {
 
 	use InstanceConfigTrait;
+    use PasswordHasherTrait;
 
 	/**
 	 * Default config for this object.
@@ -51,28 +52,6 @@ abstract class AbstractAuthenticator {
 		'passwordHasher' => 'Default'
 	];
 
-	/**
-	 * A Component registry, used to get more components.
-	 *
-	 * @var \Cake\Controller\ComponentRegistry
-	 */
-	protected $_registry;
-
-	/**
-	 * Password hasher instance.
-	 *
-	 * @var \Cake\Auth\AbstractPasswordHasher
-	 */
-	protected $_passwordHasher;
-
-	/**
-	 * Whether or not the user authenticated by this class
-	 * requires their password to be rehashed with another algorithm.
-	 *
-	 * @var bool
-	 */
-	protected $_needsPasswordRehash = false;
-
 	/**
 	 * Constructor
 	 *
@@ -149,33 +128,6 @@ protected function _query($username) {
 		return $query;
 	}
 
-	/**
-	 * Return password hasher object
-	 *
-	 * @return \Cake\Auth\AbstractPasswordHasher Password hasher instance
-	 * @throws \RuntimeException If password hasher class not found or
-	 *   it does not extend AbstractPasswordHasher
-	 */
-	public function passwordHasher() {
-		if ($this->_passwordHasher) {
-			return $this->_passwordHasher;
-		}
-
-		$passwordHasher = $this->_config['passwordHasher'];
-
-		return $this->_passwordHasher = PasswordHasherFactory::build($passwordHasher);
-	}
-
-	/**
-	 * Returns whether or not the password stored in the repository for the logged in user
-	 * requires to be rehashed with another algorithm
-	 *
-	 * @return bool
-	 */
-	public function needsPasswordRehash() {
-		return $this->_needsPasswordRehash;
-	}
-
 	/**
 	 * Authenticate a user based on the request information.
 	 *
@@ -226,4 +178,4 @@ public function unauthenticated(ResponseInterface $request, ServerRequestInterfa
 	public function implementedEvents() {
 		return [];
 	}
-}
+}

Diff for: src/Auth/Authentication/AuthenticateInterface.php

@@ -0,0 +1,29 @@
+<?php
+/**
+ * CakePHP(tm) : Rapid Development Framework (http://cakephp.org)
+ * Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
+ * Licensed under The MIT License
+ * For full copyright and license information, please see the LICENSE.txt
+ * Redistributions of files must retain the above copyright notice.
+ *
+ * @copyright     Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
+ * @link          http://cakephp.org CakePHP(tm) Project
+ * @since         4.0.0
+ * @license       http://www.opensource.org/licenses/mit-license.php MIT License
+ */
+namespace MiddlewareAuth\Auth\Authentication;
+
+use Psr\Http\Message\ResponseInterface;
+use Psr\Http\Message\ServerRequestInterface;
+
+interface AuthenticateInterface
+{
+    /**
+     * Authenticate user.
+     *
+     * @param \Psr\Http\Message\ServerRequestInterface $request The request.
+     * @param \Psr\Http\Message\ResponseInterface $response The response.
+     * @return \Cake\Auth\Result
+     */
+    public function authenticate(ServerRequestInterface $request, ResponseInterface $response);
+}

Diff for: src/Routing/Middleware/Authentication/FormAuthenticator.php renamed to src/Auth/Authentication/FormAuthenticator.php

@@ -1,39 +1,23 @@
 <?php
 /**
- *
  * CakePHP(tm) : Rapid Development Framework (http://cakephp.org)
  * Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
- *
  * Licensed under The MIT License
  * For full copyright and license information, please see the LICENSE.txt
  * Redistributions of files must retain the above copyright notice.
  *
  * @copyright     Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
  * @link          http://cakephp.org CakePHP(tm) Project
- * @since         2.0.0
+ * @since         4.0.0
  * @license       http://www.opensource.org/licenses/mit-license.php MIT License
  */
-namespace MiddlewareAuth\Routing\Middleware\Authentication;
+namespace MiddlewareAuth\Auth\Authentication;
 
 use Psr\Http\Message\ResponseInterface;
 use Psr\Http\Message\ServerRequestInterface;
 
 /**
- * An authentication adapter for AuthComponent. Provides the ability to authenticate using POST
- * data. Can be used by configuring AuthComponent to use it via the AuthComponent::$authenticate config.
- *
- * ```
- *  $this->Auth->authenticate = [
- *      'Form' => [
- *          'finder' => ['auth' => ['some_finder_option' => 'some_value']]
- *      ]
- *  ]
- * ```
- *
- * When configuring FormAuthenticate you can pass in config to which fields, model and additional conditions
- * are used. See FormAuthenticate::$_config for more information.
  *
- * @see \Cake\Controller\Component\AuthComponent::$authenticate
  */
 class FormAuthenticator extends AbstractAuthenticator
 {
@@ -77,9 +61,15 @@ public function authenticate(ServerRequestInterface $request, ResponseInterface
 
         $body = $request->getParsedBody();
 
-        return $this->_findUser(
+        $user = $this->_findUser(
             $body[$fields['username']],
             $body[$fields['password']]
         );
+
+        if (empty($user)) {
+            return new Result(null, Result::FAILURE_IDENTITY_NOT_FOUND);
+        }
+
+        return new Result($user, Result::SUCCESS);
     }
-}
+}

Diff for: src/Auth/Authentication/Result.php

@@ -0,0 +1,124 @@
+<?php
+/**
+ * CakePHP(tm) : Rapid Development Framework (http://cakephp.org)
+ * Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
+ * Licensed under The MIT License
+ * For full copyright and license information, please see the LICENSE.txt
+ * Redistributions of files must retain the above copyright notice.
+ *
+ * @copyright     Copyright (c) Cake Software Foundation, Inc. (http://cakefoundation.org)
+ * @link          http://cakephp.org CakePHP(tm) Project
+ * @since         4.0.0
+ * @license       http://www.opensource.org/licenses/mit-license.php MIT License
+ */
+namespace MiddlewareAuth\Auth\Authentication;
+
+/**
+ * Authentication result object
+ */
+class Result
+{
+    /**
+     * General Failure
+     */
+    const FAILURE = 0;
+
+    /**
+     * Failure due to identity not being found.
+     */
+    const FAILURE_IDENTITY_NOT_FOUND = -1;
+
+    /**
+     * Failure due to invalid credential being supplied.
+     */
+    const FAILURE_CREDENTIAL_INVALID = -2;
+
+    /**
+     * Failure due to other circumstances.
+     */
+    const FAILURE_OTHER = -3;
+
+    /**
+     * Authentication success.
+     */
+    const SUCCESS = 1;
+
+    /**
+     * Authentication result code
+     *
+     * @var int
+     */
+    protected $code;
+
+    /**
+     * The identity used in the authentication attempt
+     *
+     * @var mixed
+     */
+    protected $identity;
+
+    /**
+     * An array of string reasons why the authentication attempt was unsuccessful
+     *
+     * If authentication was successful, this should be an empty array.
+     *
+     * @var array
+     */
+    protected $messages;
+
+    /**
+     * Sets the result code, identity, and failure messages
+     *
+     * @param mixed $identity
+     * @param int $code
+     * @param array $messages
+     */
+    public function __construct($identity, $code, array $messages = [])
+    {
+        $this->code = (int)$code;
+        $this->identity = $identity;
+        $this->messages = $messages;
+    }
+
+    /**
+     * Returns whether the result represents a successful authentication attempt.
+     *
+     * @return bool
+     */
+    public function isValid()
+    {
+        return $this->code > 0;
+    }
+
+    /**
+     * Get the result code for this authentication attempt.
+     *
+     * @return int
+     */
+    public function getCode()
+    {
+        return $this->code;
+    }
+
+    /**
+     * Returns the identity used in the authentication attempt.
+     *
+     * @return mixed
+     */
+    public function getIdentity()
+    {
+        return $this->identity;
+    }
+
+    /**
+     * Returns an array of string reasons why the authentication attempt was unsuccessful.
+     *
+     * If authentication was successful, this method returns an empty array.
+     *
+     * @return array
+     */
+    public function getMessages()
+    {
+        return $this->messages;
+    }
+}

Diff for: src/Routing/Middleware/Authentication/Storage/MemoryStorage.php renamed to src/Auth/Authentication/Storage/MemoryStorage.php

@@ -12,7 +12,7 @@
  * @since         3.1.0
  * @license       http://www.opensource.org/licenses/mit-license.php MIT License
  */
-namespace MiddlewareAuth\Routing\Middleware\Authentication\Storage;
+namespace MiddlewareAuth\Auth\Authentication\Storage;
 
 /**
  * Memory based non-persistent storage for authenticated user record.