make class

Author: Richard McDaniel

api/application/controllers/cli.php

@@ -71,7 +71,8 @@ public function install()
         // ... add your custom resources to protect here
         // ...
 
-        echo "installed\r\n";
+		if (!defined('PHPUNIT_TEST'))
+	        echo "installed\r\n";
 	}
 
 	public function add($type, $email, $password)
@@ -82,15 +83,17 @@ public function add($type, $email, $password)
 		{
 			$this->Users->register($email, $password);
 
-	        echo "user added\r\n";
+			if (!defined('PHPUNIT_TEST'))
+		        echo "user added\r\n";
 		}
 		else if ($type == 'administrator')
 		{
 			$id = $this->Users->register($email, $password);
 	        $acl = new ACL();
 			$acl->addUserRoles($id, 'administrator');
 
-	        echo "administrator added\r\n";
+			if (!defined('PHPUNIT_TEST'))
+		        echo "administrator added\r\n";
 		}
 	}
 

api/application/controllers/resource.php

@@ -6,7 +6,7 @@ public function table()
 	{
 		$this->form_validation->set_rules('params', 'params', 'required');
 		$this->form_validation->set_rules('role', 'role', 'required');
-		validate($this, 'resource', 'read', function($token, $output)
+		return Validation::validate($this, 'resource', 'read', function($token, $output)
 		{
 			$params = json_decode(stripslashes($this->input->post('params')));
 			$role = $this->input->post('role');

api/application/controllers/user.php

@@ -6,7 +6,7 @@ public function login()
 	{
 		$this->form_validation->set_rules('email', 'email', 'required|valid_email|max_length[256]');
 		$this->form_validation->set_rules('password', 'password', 'required|min_length[8]|max_length[256]');
-		return validate($this, '', '', function($token, $output)
+		return Validation::validate($this, '', '', function($token, $output)
 		{
 			$email = $this->input->post('email');
 			$password = $this->input->post('password');
@@ -30,7 +30,7 @@ public function register()
 	{
 		$this->form_validation->set_rules('email', 'email', 'required|valid_email|is_unique[users.email]|max_length[256]');
 		$this->form_validation->set_rules('password', 'password', 'required|min_length[8]|max_length[256]');
-		return validate($this, '', '', function($token, $output)
+		return Validation::validate($this, '', '', function($token, $output)
 		{
 			$email = $this->input->post('email');
 			$password = $this->input->post('password');
@@ -43,7 +43,7 @@ public function register()
 	public function permissions()
 	{
 		$this->form_validation->set_rules('resource', 'resource', 'required');
-		return validate($this, 'user', 'read', function($token, $output)
+		return Validation::validate($this, 'user', 'read', function($token, $output)
 		{
 			$resource = $this->input->post('resource');
 			$acl = new ACL();

api/application/core/REST_Controller.php

@@ -20,7 +20,7 @@ public function table()
 	{
 		$this->__load();
 		$this->form_validation->set_rules('params', 'params', 'required');
-		return validate($this, $this->resource, 'read', function($token, $output)
+		return Validation::validate($this, $this->resource, 'read', function($token, $output)
 		{
 			$params = json_decode(stripslashes($this->input->post('params')));
 			$table = $this->model->table($params);
@@ -35,7 +35,7 @@ public function create()
 	{
 		$this->__load();
 		$this->form_validation->set_rules($this->resource, $this->resource, 'required');
-		validate($this, $this->resource, 'create', function($token, $output)
+		return Validation::validate($this, $this->resource, 'create', function($token, $output)
 		{
 			$resource = $this->input->post($this->resource);
 			$this->model->create($resource);
@@ -48,7 +48,7 @@ public function read()
 	{
 		$this->__load();
 		$this->form_validation->set_rules('id', 'id', 'required');
-		return validate($this, $this->resource, 'read', function($token, $output)
+		return Validation::validate($this, $this->resource, 'read', function($token, $output)
 		{
 			$id = $this->input->post('id');
 			$resource = $this->model->read($id);
@@ -62,7 +62,7 @@ public function update()
 	{
 		$this->__load();
 		$this->form_validation->set_rules($this->resource, $this->resource, 'required');
-		return validate($this, $this->resource, 'update', function($token, $output)
+		return Validation::validate($this, $this->resource, 'update', function($token, $output)
 		{
 			$resource = json_decode(stripslashes($this->input->post($this->resource)));
 			$resource = $this->model->update($resource);
@@ -76,7 +76,7 @@ public function delete()
 	{
 		$this->__load();
 		$this->form_validation->set_rules('id', 'id', 'required');
-		return validate($this, $this->resource, 'delete', function($token, $output)
+		return Validation::validate($this, $this->resource, 'delete', function($token, $output)
 		{
 			$id = $this->input->post('id');
 			$this->model->delete($id);

api/application/helpers/password_helper.php

@@ -11,75 +11,79 @@
 define("HASH_SALT_INDEX", 2);
 define("HASH_PBKDF2_INDEX", 3);
 
-function create_hash($password)
-{
-    $salt = base64_encode(mcrypt_create_iv(PBKDF2_SALT_BYTES, MCRYPT_DEV_URANDOM));
-    return PBKDF2_HASH_ALGORITHM . ":" . PBKDF2_ITERATIONS . ":" .  $salt . ":" . 
-        base64_encode(pbkdf2(
-            PBKDF2_HASH_ALGORITHM,
-            $password,
-            $salt,
-            PBKDF2_ITERATIONS,
-            PBKDF2_HASH_BYTES,
-            true
-        ));
-}
+class Password {
 
-function validate_password($password, $good_hash)
-{
-    $params = explode(":", $good_hash);
-    if(count($params) < HASH_SECTIONS)
-       return false; 
-    $pbkdf2 = base64_decode($params[HASH_PBKDF2_INDEX]);
-    return slow_equals(
-        $pbkdf2,
-        pbkdf2(
-            $params[HASH_ALGORITHM_INDEX],
-            $password,
-            $params[HASH_SALT_INDEX],
-            (int)$params[HASH_ITERATION_INDEX],
-            strlen($pbkdf2),
-            true
-        )
-    );
-}
-
-function slow_equals($a, $b)
-{
-    $diff = strlen($a) ^ strlen($b);
-    for($i = 0; $i < strlen($a) && $i < strlen($b); $i++)
+    public static function create_hash($password)
     {
-        $diff |= ord($a[$i]) ^ ord($b[$i]);
+        $salt = base64_encode(mcrypt_create_iv(PBKDF2_SALT_BYTES, MCRYPT_DEV_URANDOM));
+        return PBKDF2_HASH_ALGORITHM . ":" . PBKDF2_ITERATIONS . ":" .  $salt . ":" . 
+            base64_encode(self::pbkdf2(
+                PBKDF2_HASH_ALGORITHM,
+                $password,
+                $salt,
+                PBKDF2_ITERATIONS,
+                PBKDF2_HASH_BYTES,
+                true
+            ));
     }
-    return $diff === 0; 
-}
-
-function pbkdf2($algorithm, $password, $salt, $count, $key_length, $raw_output = false)
-{
-    $algorithm = strtolower($algorithm);
-    if(!in_array($algorithm, hash_algos(), true))
-        die('PBKDF2 ERROR: Invalid hash algorithm.');
-    if($count <= 0 || $key_length <= 0)
-        die('PBKDF2 ERROR: Invalid parameters.');
-
-    $hash_length = strlen(hash($algorithm, "", true));
-    $block_count = ceil($key_length / $hash_length);
-
-    $output = "";
-    for($i = 1; $i <= $block_count; $i++) {
-        // $i encoded as 4 bytes, big endian.
-        $last = $salt . pack("N", $i);
-        // first iteration
-        $last = $xorsum = hash_hmac($algorithm, $last, $password, true);
-        // perform the other $count - 1 iterations
-        for ($j = 1; $j < $count; $j++) {
-            $xorsum ^= ($last = hash_hmac($algorithm, $last, $password, true));
+    
+    public static function validate_password($password, $good_hash)
+    {
+        $params = explode(":", $good_hash);
+        if(count($params) < HASH_SECTIONS)
+           return false; 
+        $pbkdf2 = base64_decode($params[HASH_PBKDF2_INDEX]);
+        return self::slow_equals(
+            $pbkdf2,
+            self::pbkdf2(
+                $params[HASH_ALGORITHM_INDEX],
+                $password,
+                $params[HASH_SALT_INDEX],
+                (int)$params[HASH_ITERATION_INDEX],
+                strlen($pbkdf2),
+                true
+            )
+        );
+    }
+    
+    public static function slow_equals($a, $b)
+    {
+        $diff = strlen($a) ^ strlen($b);
+        for($i = 0; $i < strlen($a) && $i < strlen($b); $i++)
+        {
+            $diff |= ord($a[$i]) ^ ord($b[$i]);
+        }
+        return $diff === 0; 
+    }
+    
+    public static function pbkdf2($algorithm, $password, $salt, $count, $key_length, $raw_output = false)
+    {
+        $algorithm = strtolower($algorithm);
+        if(!in_array($algorithm, hash_algos(), true))
+            die('PBKDF2 ERROR: Invalid hash algorithm.');
+        if($count <= 0 || $key_length <= 0)
+            die('PBKDF2 ERROR: Invalid parameters.');
+    
+        $hash_length = strlen(hash($algorithm, "", true));
+        $block_count = ceil($key_length / $hash_length);
+    
+        $output = "";
+        for($i = 1; $i <= $block_count; $i++) {
+            // $i encoded as 4 bytes, big endian.
+            $last = $salt . pack("N", $i);
+            // first iteration
+            $last = $xorsum = hash_hmac($algorithm, $last, $password, true);
+            // perform the other $count - 1 iterations
+            for ($j = 1; $j < $count; $j++) {
+                $xorsum ^= ($last = hash_hmac($algorithm, $last, $password, true));
+            }
+            $output .= $xorsum;
         }
-        $output .= $xorsum;
+    
+        if($raw_output)
+            return substr($output, 0, $key_length);
+        else
+            return bin2hex(substr($output, 0, $key_length));
     }
 
-    if($raw_output)
-        return substr($output, 0, $key_length);
-    else
-        return bin2hex(substr($output, 0, $key_length));
-}
+}

api/application/helpers/validation_helper.php

@@ -1,39 +1,43 @@
 <?php
 
-function validate($context, $class, $function, $callback) {
-	$output = array();
-	$output['status'] = false;
-    $token = false;
-    if (!empty($class)) {
-    	$token = ACL::authenticate($class, $function);
-    	if ($token == false) {
-			if (defined('PHPUNIT_TEST')) {
-				return json_encode(array('output' => $output));
-			} else {
-				$context->load->view('json', array('output' => $output));
+class Validation {
+
+	public static function validate($context, $class, $function, $callback) {
+		$output = array();
+		$output['status'] = false;
+	    $token = false;
+	    if (!empty($class)) {
+	    	$token = ACL::authenticate($class, $function);
+	    	if ($token == false) {
+				if (defined('PHPUNIT_TEST')) {
+					return json_encode(array('output' => $output));
+				} else {
+					$context->load->view('json', array('output' => $output));
+				}
+	    	}
+	    }
+		$context->form_validation->set_error_delimiters('', '');
+		$validated = $context->form_validation->run();
+		if ($validated)
+		{
+	        $output = $callback($token, $output);
+		}
+		else
+		{
+			$output['errors'] = validation_errors();
+		}
+		if (array_key_exists('errors', $output)) {
+			$errors = explode("\n", $output['errors']);
+			foreach ($errors as $key => $error) {
+				$errors[$key] = json_decode($error);
 			}
-    	}
-    }
-	$context->form_validation->set_error_delimiters('', '');
-	$validated = $context->form_validation->run();
-	if ($validated)
-	{
-        $output = $callback($token, $output);
-	}
-	else
-	{
-		$output['errors'] = validation_errors();
-	}
-	if (array_key_exists('errors', $output)) {
-		$errors = explode("\n", $output['errors']);
-		foreach ($errors as $key => $error) {
-			$errors[$key] = json_decode($error);
+			$output['errors'] = $errors;
+		}
+		if (defined('PHPUNIT_TEST')) {
+			return json_encode(array('output' => $output));
+		} else {
+			$context->load->view('json', array('output' => $output));
 		}
-		$output['errors'] = $errors;
-	}
-	if (defined('PHPUNIT_TEST')) {
-		return json_encode(array('output' => $output));
-	} else {
-		$context->load->view('json', array('output' => $output));
 	}
+
 }

api/application/models/users.php

@@ -12,7 +12,7 @@ public function login($email, $password)
 		if ($query->num_rows() == 1)
 		{
 			$result = $query->result();
-			if (validate_password($password, $result[0]->password))
+			if (Password::validate_password($password, $result[0]->password))
 			{
 				return $result[0]->id;
 			}
@@ -24,7 +24,7 @@ public function login($email, $password)
 	public function register($email, $password)
 	{
 		$this->db->set('email',  $email);
-		$this->db->set('password', create_hash($password));
+		$this->db->set('password', Password::create_hash($password));
 		$this->db->insert('users');
 		return $this->db->insert_id();
 	}