second commit (clean code)

Author: Franky5831

.gitignore

@@ -0,0 +1,126 @@
+#-------------------------
+# Operating Specific Junk Files
+#-------------------------
+
+# OS X
+.DS_Store
+.AppleDouble
+.LSOverride
+
+# OS X Thumbnails
+._*
+
+# Windows image file caches
+Thumbs.db
+ehthumbs.db
+Desktop.ini
+
+# Recycle Bin used on file shares
+$RECYCLE.BIN/
+
+# Windows Installer files
+*.cab
+*.msi
+*.msm
+*.msp
+
+# Windows shortcuts
+*.lnk
+
+# Linux
+*~
+
+# KDE directory preferences
+.directory
+
+# Linux trash folder which might appear on any partition or disk
+.Trash-*
+
+#-------------------------
+# Environment Files
+#-------------------------
+# These should never be under version control,
+# as it poses a security risk.
+.env
+.vagrant
+Vagrantfile
+
+#-------------------------
+# Temporary Files
+#-------------------------
+writable/cache/*
+!writable/cache/index.html
+
+writable/logs/*
+!writable/logs/index.html
+
+writable/session/*
+!writable/session/index.html
+
+writable/uploads/*
+!writable/uploads/index.html
+
+writable/debugbar/*
+!writable/debugbar/index.html
+
+writable/**/*.db
+writable/**/*.sqlite
+
+php_errors.log
+
+#-------------------------
+# User Guide Temp Files
+#-------------------------
+user_guide_src/build/*
+
+#-------------------------
+# Test Files
+#-------------------------
+tests/coverage*
+
+# Don't save phpunit under version control.
+phpunit
+
+#-------------------------
+# Composer
+#-------------------------
+vendor/
+composer.lock
+
+#-------------------------
+# IDE / Development Files
+#-------------------------
+
+# Modules Testing
+_modules/*
+
+# phpenv local config
+.php-version
+
+# Jetbrains editors (PHPStorm, etc)
+.idea/
+*.iml
+
+# Netbeans
+nbproject/
+build/
+nbbuild/
+dist/
+nbdist/
+nbactions.xml
+nb-configuration.xml
+.nb-gradle/
+
+# Sublime Text
+*.tmlanguage.cache
+*.tmPreferences.cache
+*.stTheme.cache
+*.sublime-workspace
+*.sublime-project
+.phpintel
+/api/
+
+/results/
+/phpunit*.xml
+
+/.php-cs-fixer.php

.vscode/settings.json

@@ -0,0 +1,11 @@
+{
+  "editor.formatOnSave": true,
+  "editor.defaultFormatter": "esbenp.prettier-vscode",
+  "editor.indentSize": "tabSize",
+  "editor.insertSpaces": false,
+  "editor.tabSize": 4,
+  "editor.detectIndentation": true,
+  "[xml]": {
+    "editor.defaultFormatter": "DotJoshJohnson.xml"
+  },
+}

composer.json

@@ -0,0 +1,30 @@
+{
+    "name": "franky5831/codeigniter4-user-library",
+    "description": "Codeigniter4 User Mangement Library",
+    "type": "package",
+    "version": "0.0.1",
+    "autoload": {
+        "psr-4": {
+            "Franky5831\\CodeIgniter4UserLibrary\\": "src/"
+        }
+    },
+    "authors": [
+        {
+            "name": "Francesco Ciannavei",
+            "email": "francesco@ciannavei.dev",
+            "homepage": "https://www.ciannavei.dev",
+            "role": "Developer"
+        }
+    ],
+    "require": {
+        "php": "^8.1",
+        "codeigniter4/framework": "^4.0",
+        "voku/anti-xss": "^4.1"
+    },
+    "extra": {
+        "codeigniter": {
+            "namespace": "Franky5831\\CodeIgniter4UserLibrary",
+            "views": "Views"
+        }
+    }
+}

readme.md

@@ -0,0 +1,33 @@
+# Codeigniter 4 User Management Library
+
+This is a library developed for Codeigniter 4 that will make the management of users in your application easier and more secure.
+
+The library will automatically manage the registration and login process, with security measures in pace.
+
+## Security measures:
+- [x] Xss
+- [x] SQL Injections
+- [x] Session Hijacking
+- [x] Captchas
+- [ ] Brute force attacks
+
+
+Please remember that this library is still being developed, some features might not be already available and others might not work at all 😊.
+
+
+## How to install the library:
+1. Add the following code block to the composer.json file:
+```json
+"repositories": [
+    {
+        "type": "vcs",
+        "url": "git@github.com:franky5831/CI4-PCKG-UserLib.git"
+    }
+],
+```
+Since this is a private repository, you need to add that line to your composer.json file.
+
+2. Run the following command in your terminal:
+```bash
+composer require franky5831/ci4-pckg-test
+```

src/Config/App.php

@@ -0,0 +1,109 @@
+<?php
+
+namespace Franky5831\CodeIgniter4UserLibrary\Config;
+
+use \Config\App as AppConfig;
+
+class App extends \Config\App
+{
+	/*
+	|--------------------------------------------------------------------------
+	| UserLib
+	|--------------------------------------------------------------------------
+	|
+	| UserLib is a CodeIgniter 4 package that provides a way to add simple user management to your application.
+	|
+	*/
+
+	/*
+	* Enable Registration
+	*/
+	public bool $userCanRegister = true;
+
+	/*
+	 * Decide if the user can view all pages by default.
+	 * This rule can be overrided by using the method userCanView() or userCanNotView() from the user helper.
+	 * TODO: Implement this
+	 */
+	public bool $userCanViewByDefault = false;
+
+	/*
+	* Enable Login
+	*/
+	public bool $userLibLogin = true;
+
+	/*
+	* Enable Captcha
+	*/
+	public bool $userLibCaptcha = true;
+
+	/*
+	* Captcha Type
+	* Available types: cloudflare, recaptcha
+	*/
+	public string $userLibCaptchaType = 'cloudflare';
+
+	/*
+	* Captcha Options
+	* Example: options for the cloudflare captcha: siteKey and secretKey
+	* This is just an example of the structure, the content of the array gets emptied from the constructor
+	*/
+	public array $userLibCaptchaOptions = [
+		"cloudflare" => [
+			"siteKey" => "",
+			"secretKey" => "",
+		],
+		"recaptcha-v3" => [
+			"siteKey" => "",
+			"secretKey" => "",
+		]
+	];
+
+	/*
+	* User extra attributes
+	* Example: name, phone, address, etc.
+	* This is just an example of the structure, the content of the array gets emptied from the constructor
+	! WARNING: You also need to create the column on the database
+	*/
+	public array $userExtraAttributes = [
+		"name" => [
+			"label" => "Name",
+			"type" => "text",
+			"rules" => "required|max_length[255]",
+		],
+		"username" => [
+			"label" => "Username",
+			"type" => "text",
+			"rules" => "required|max_length[255]",
+		],
+		"phone" => [
+			"label" => "Phone",
+			"type" => "text",
+			"rules" => "required|max_length[255]|regex_match[/^[0-9]{10}$/]",
+		]
+	];
+
+
+	public function __construct()
+	{
+		$appConfig = config(AppConfig::class);
+
+		$this->userLibCaptchaOptions = array();
+		$this->userExtraAttributes = array();
+		$this->userCanRegister = property_exists($appConfig, "userCanRegister") ? $appConfig->userCanRegister : $this->userCanRegister;
+		$this->userCanViewByDefault = property_exists($appConfig, "userCanViewByDefault") ? $appConfig->userCanViewByDefault : $this->userCanViewByDefault;
+		$this->userLibLogin = property_exists($appConfig, "userLibLogin") ? $appConfig->userLibLogin : $this->userLibLogin;
+		$this->userLibCaptcha = property_exists($appConfig, "userLibCaptcha") ? $appConfig->userLibCaptcha : $this->userLibCaptcha;
+		$this->userLibCaptchaType = property_exists($appConfig, "userLibCaptchaType") ? $appConfig->userLibCaptchaType : $this->userLibCaptchaType;
+		$this->userLibCaptchaOptions = property_exists($appConfig, "userLibCaptchaOptions") ? $appConfig->userLibCaptchaOptions : $this->userLibCaptchaOptions;
+		$this->userExtraAttributes = property_exists($appConfig, "userExtraAttributes") ? $appConfig->userExtraAttributes : $this->userExtraAttributes;
+
+		$allowedCaptchas = ["cloudflare", "recaptcha-v3"];
+		if (
+			!in_array($this->userLibCaptchaType, $allowedCaptchas)
+			&& $this->userLibCaptcha
+		) {
+			throw new \Exception("The selected captcha type does not exists", 1);
+		}
+	}
+}

src/Config/Filters.php

@@ -0,0 +1,9 @@
+<?php
+
+/**
+ * Adds the redirect to login filter
+ */
+config('Filters')->aliases["redirect_to_login"] = \Franky5831\CodeIgniter4UserLibrary\Filters\RedirectToLogin::class;
+config('Filters')->aliases["session_hijacking"] = \Franky5831\CodeIgniter4UserLibrary\Filters\CheckUserSession::class;
+config('Filters')->globals["before"][] = "redirect_to_login";
+config('Filters')->globals["before"][] = "session_hijacking";

src/Config/Routes.php

@@ -0,0 +1,10 @@
+<?php
+
+use CodeIgniter\Router\RouteCollection;
+
+/**
+ * @var RouteCollection $routes
+ */
+$routes->match(['get', 'post'], '/login', '\Franky5831\CodeIgniter4UserLibrary\Controllers\User::login', ["as" => "loginurl"]);
+$routes->match(['get', 'post'], '/logout', '\Franky5831\CodeIgniter4UserLibrary\Controllers\User::logout', ["as" => "logouturl"]);
+$routes->match(['get', 'post'], '/register', '\Franky5831\CodeIgniter4UserLibrary\Controllers\User::register', ["as" => "registerurl"]);