IdentityInterface.php 4.0 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110
  1. <?php
  2. /**
  3. * @link https://www.yiiframework.com/
  4. * @copyright Copyright (c) 2008 Yii Software LLC
  5. * @license https://www.yiiframework.com/license/
  6. */
  7. namespace yii\web;
  8. /**
  9. * IdentityInterface is the interface that should be implemented by a class providing identity information.
  10. *
  11. * This interface can typically be implemented by a user model class. For example, the following
  12. * code shows how to implement this interface by a User ActiveRecord class:
  13. *
  14. * ```php
  15. * class User extends ActiveRecord implements IdentityInterface
  16. * {
  17. * public static function findIdentity($id)
  18. * {
  19. * return static::findOne($id);
  20. * }
  21. *
  22. * public static function findIdentityByAccessToken($token, $type = null)
  23. * {
  24. * return static::findOne(['access_token' => $token]);
  25. * }
  26. *
  27. * public function getId()
  28. * {
  29. * return $this->id;
  30. * }
  31. *
  32. * public function getAuthKey()
  33. * {
  34. * return $this->authKey;
  35. * }
  36. *
  37. * public function validateAuthKey($authKey)
  38. * {
  39. * return $this->authKey === $authKey;
  40. * }
  41. * }
  42. * ```
  43. *
  44. * In some situations not all of these methods are required to be implemented.
  45. * For example, if your application is a pure stateless RESTful application,
  46. * you would only need to implement [[yii\web\IdentityInterface::findIdentityByAccessToken()|findIdentityByAccessToken()]]
  47. * and [[yii\web\IdentityInterface::getId()|getId()]] while leaving all other methods with an empty body.
  48. * Or if your application uses session only authentication, you would need to implement all the methods
  49. * except [[yii\web\IdentityInterface::findIdentityByAccessToken()|findIdentityByAccessToken()]].
  50. *
  51. * @author Qiang Xue <qiang.xue@gmail.com>
  52. * @since 2.0
  53. */
  54. interface IdentityInterface
  55. {
  56. /**
  57. * Finds an identity by the given ID.
  58. * @param string|int $id the ID to be looked for
  59. * @return IdentityInterface|null the identity object that matches the given ID.
  60. * Null should be returned if such an identity cannot be found
  61. * or the identity is not in an active state (disabled, deleted, etc.)
  62. */
  63. public static function findIdentity($id);
  64. /**
  65. * Finds an identity by the given token.
  66. * @param mixed $token the token to be looked for
  67. * @param mixed $type the type of the token. The value of this parameter depends on the implementation.
  68. * For example, [[\yii\filters\auth\HttpBearerAuth]] will set this parameter to be `yii\filters\auth\HttpBearerAuth`.
  69. * @return IdentityInterface|null the identity object that matches the given token.
  70. * Null should be returned if such an identity cannot be found
  71. * or the identity is not in an active state (disabled, deleted, etc.)
  72. */
  73. public static function findIdentityByAccessToken($token, $type = null);
  74. /**
  75. * Returns an ID that can uniquely identify a user identity.
  76. * @return string|int an ID that uniquely identifies a user identity.
  77. */
  78. public function getId();
  79. /**
  80. * Returns a key that can be used to check the validity of a given identity ID.
  81. *
  82. * The key should be unique for each individual user, and should be persistent
  83. * so that it can be used to check the validity of the user identity.
  84. *
  85. * The space of such keys should be big enough to defeat potential identity attacks.
  86. *
  87. * The returned key is used to validate session and auto-login (if [[User::enableAutoLogin]] is enabled).
  88. *
  89. * Make sure to invalidate earlier issued authKeys when you implement force user logout, password change and
  90. * other scenarios, that require forceful access revocation for old sessions.
  91. *
  92. * @return string|null a key that is used to check the validity of a given identity ID.
  93. * @see validateAuthKey()
  94. */
  95. public function getAuthKey();
  96. /**
  97. * Validates the given auth key.
  98. *
  99. * @param string $authKey the given auth key
  100. * @return bool|null whether the given auth key is valid.
  101. * @see getAuthKey()
  102. */
  103. public function validateAuthKey($authKey);
  104. }