sergio.hinojosa
/
eval-desempeno-v2
1
0
Förgrening 0
Kod Ärenden 0 Pull-förfrågningar 0 Släpp 0 Wiki Aktiviteter
Du kan inte välja fler än 25 ämnen Ämnen måste starta med en bokstav eller siffra, kan innehålla bindestreck ('-') och vara max 35 tecken långa.
4 Incheckningar
3 Grenar
14MB
Gren: cambio-db
Grenar Taggar
${ item.name }
Skapa branchen ${ searchTerm }
från 'cambio-db'
${ noResults }
eval-desempeno-v2/app/Config/Auth.php

381 lines
13KB
Permalänk Blame Historik 

  1. <?php

  2. 

  3. namespace Config;

  4. 

  5. 

  6. class Auth extends \Myth\Auth\Config\Auth

  7. {

  8.     /**

  9.      * --------------------------------------------------------------------

  10.      * Default User Group

  11.      * --------------------------------------------------------------------

  12.      *

  13.      * The name of a group a user will be added to when they register,

  14.      * i.e. $defaultUserGroup = 'guests'.

  15.      *

  16.      * @var string

  17.      */

  18.     public $defaultUserGroup = 'Prestadores';

  19. 

  20.     /**

  21.      * --------------------------------------------------------------------

  22.      * Landing Route

  23.      * --------------------------------------------------------------------

  24.      *

  25.      * This is your landing page (route name) after user success to login,

  26.      * i.e $landingRoute = 'dashboard'.

  27.      *

  28.      * If you set $silent = true the Permission and Role filters will

  29.      * use this config too for the routing.

  30.      *

  31.      * @var string

  32.      */

  33.     public $landingRoute = '/';

  34. 

  35.     /**

  36.      * --------------------------------------------------------------------

  37.      * Reserverd Routes

  38.      * --------------------------------------------------------------------

  39.      *

  40.      * The auth routes config is listed in here and you can customize it,

  41.      * i.e. $reservedRoutes = ['forgot' => 'forgot-password'].

  42.      *

  43.      * Do Not Change The Key!!! Because it's the identity for routing.

  44.      *

  45.      * @var array

  46.      */

  47.     public $reservedRoutes = [

  48.         'login'                   => 'login',

  49.         'logout'                  => 'logout',

  50.         'register'                => 'register',

  51.         'activate-account'        => 'activate-account',

  52.         'resend-activate-account' => 'resend-activate-account',

  53.         'forgot'                  => 'forgot',

  54.         'reset-password'          => 'reset-password',

  55.     ];

  56. 

  57.     /**

  58.      * --------------------------------------------------------------------

  59.      * Libraries

  60.      * --------------------------------------------------------------------

  61.      *

  62.      * @var array

  63.      */

  64.     public $authenticationLibs = [

  65.         'local' => 'Myth\Auth\Authentication\LocalAuthenticator',

  66.     ];

  67. 

  68.     /**

  69.      * --------------------------------------------------------------------

  70.      * Views used by Auth Controllers

  71.      * --------------------------------------------------------------------

  72.      *

  73.      * @var array

  74.      */

  75.     public $views = [

  76.         'login'           => 'App\Views\Auth\login',

  77.         'register'        => 'App\Views\Auth\register',

  78.         'forgot'          => 'App\Views\Auth\forgot',

  79.         'reset'           => 'App\Views\Auth\reset',

  80.         'emailForgot'     => 'App\Views\Auth\emails\forgot',

  81.         'emailActivation' => 'App\Views\Auth\emails\activation',

  82.     ];

  83. 

  84.     /**

  85.      * --------------------------------------------------------------------

  86.      * Layout for the views to extend

  87.      * --------------------------------------------------------------------

  88.      *

  89.      * @var string

  90.      */

  91.     public $viewLayout = 'App\Views\Auth\layout';

  92. 

  93.     /**

  94.      * --------------------------------------------------------------------

  95.      * Authentication

  96.      * --------------------------------------------------------------------

  97.      *

  98.      * Fields that are available to be used as credentials for login.

  99.      *

  100.      * @var string[]

  101.      */

  102.     public $validFields = [

  103.         'email',

  104.     ];

  105. 

  106.     /**

  107.      * --------------------------------------------------------------------

  108.      * Additional Fields for "Nothing Personal"

  109.      * --------------------------------------------------------------------

  110.      *

  111.      * The `NothingPersonalValidator` prevents personal information from

  112.      * being used in passwords. The email and username fields are always

  113.      * considered by the validator. Do not enter those field names here.

  114.      *

  115.      * An extend User Entity might include other personal info such as

  116.      * first and/or last names. `$personalFields` is where you can add

  117.      * fields to be considered as "personal" by the NothingPersonalValidator.

  118.      *

  119.      * For example:

  120.      *	 $personalFields = ['firstname', 'lastname'];

  121.      *

  122.      * @var string[]

  123.      */

  124.     public $personalFields = [];

  125. 

  126.     /**

  127.      * --------------------------------------------------------------------

  128.      * Password / Username Similarity

  129.      * --------------------------------------------------------------------

  130.      *

  131.      * Among other things, the NothingPersonalValidator checks the

  132.      * amount of sameness between the password and username.

  133.      * Passwords that are too much like the username are invalid.

  134.      *

  135.      * The value set for $maxSimilarity represents the maximum percentage

  136.      * of similarity at which the password will be accepted. In other words, any

  137.      * calculated similarity equal to, or greater than $maxSimilarity

  138.      * is rejected.

  139.      *

  140.      * The accepted range is 0-100, with 0 (zero) meaning don't check similarity.

  141.      * Using values at either extreme of the *working range* (1-100) is

  142.      * not advised. The low end is too restrictive and the high end is too permissive.

  143.      * The suggested value for $maxSimilarity is 50.

  144.      *

  145.      * You may be thinking that a value of 100 should have the effect of accepting

  146.      * everything like a value of 0 does. That's logical and probably true,

  147.      * but is unproven and untested. Besides, 0 skips the work involved

  148.      * making the calculation unlike when using 100.

  149.      *

  150.      * The (admittedly limited) testing that's been done suggests a useful working range

  151.      * of 50 to 60. You can set it lower than 50, but site users will probably start

  152.      * to complain about the large number of proposed passwords getting rejected.

  153.      * At around 60 or more it starts to see pairs like 'captain joe' and 'joe*captain' as

  154.      * perfectly acceptable which clearly they are not.

  155.      *

  156.      *

  157.      * To disable similarity checking set the value to 0.

  158.      *	  public $maxSimilarity = 0;

  159.      *

  160.      * @var int

  161.      */

  162.     public $maxSimilarity = 50;

  163. 

  164.     /**

  165.      * --------------------------------------------------------------------

  166.      * Allow User Registration

  167.      * --------------------------------------------------------------------

  168.      *

  169.      * When enabled (default) any unregistered user may apply for a new

  170.      * account. If you disable registration you may need to ensure your

  171.      * controllers and views know not to offer registration.

  172.      *

  173.      * @var bool

  174.      */

  175.     public $allowRegistration = true;

  176. 

  177.     /**

  178.      * --------------------------------------------------------------------

  179.      * Require Confirmation Registration via Email

  180.      * --------------------------------------------------------------------

  181.      *

  182.      * When enabled, every registered user will receive an email message

  183.      * with an activation link to confirm the account.

  184.      *

  185.      * @var string|null Name of the ActivatorInterface class

  186.      */

  187.     public $requireActivation = 'Myth\Auth\Authentication\Activators\EmailActivator';

  188. 

  189.     /**

  190.      * --------------------------------------------------------------------

  191.      * Allow Password Reset via Email

  192.      * --------------------------------------------------------------------

  193.      *

  194.      * When enabled, users will have the option to reset their password

  195.      * via the specified Resetter. Default setting is email.

  196.      *

  197.      * @var string|null Name of the ResetterInterface class

  198.      */

  199.     public $activeResetter = 'Myth\Auth\Authentication\Resetters\EmailResetter';

  200. 

  201.     /**

  202.      * --------------------------------------------------------------------

  203.      * Allow Persistent Login Cookies (Remember me)

  204.      * --------------------------------------------------------------------

  205.      *

  206.      * While every attempt has been made to create a very strong protection

  207.      * with the remember me system, there are some cases (like when you

  208.      * need extreme protection, like dealing with users financials) that

  209.      * you might not want the extra risk associated with this cookie-based

  210.      * solution.

  211.      *

  212.      * @var bool

  213.      */

  214.     public $allowRemembering = false;

  215. 

  216.     /**

  217.      * --------------------------------------------------------------------

  218.      * Remember Length

  219.      * --------------------------------------------------------------------

  220.      *

  221.      * The amount of time, in seconds, that you want a login to last for.

  222.      * Defaults to 30 days.

  223.      *

  224.      * @var int

  225.      */

  226.     public $rememberLength = 30 * DAY;

  227. 

  228.     /**

  229.      * --------------------------------------------------------------------

  230.      * Error handling

  231.      * --------------------------------------------------------------------

  232.      *

  233.      * If true, will continue instead of throwing exceptions.

  234.      *

  235.      * @var bool

  236.      */

  237.     public $silent = false;

  238. 

  239.     /**

  240.      * --------------------------------------------------------------------

  241.      * Encryption Algorithm to Use

  242.      * --------------------------------------------------------------------

  243.      *

  244.      * Valid values are

  245.      * - PASSWORD_DEFAULT (default)

  246.      * - PASSWORD_BCRYPT

  247.      * - PASSWORD_ARGON2I  - As of PHP 7.2 only if compiled with support for it

  248.      * - PASSWORD_ARGON2ID - As of PHP 7.3 only if compiled with support for it

  249.      *

  250.      * If you choose to use any ARGON algorithm, then you might want to

  251.      * uncomment the "ARGON2i/D Algorithm" options to suit your needs

  252.      *

  253.      * @var int|string

  254.      */

  255.     public $hashAlgorithm = PASSWORD_DEFAULT;

  256. 

  257.     /**

  258.      * --------------------------------------------------------------------

  259.      * ARGON2i/D Algorithm options

  260.      * --------------------------------------------------------------------

  261.      *

  262.      * The ARGON2I method of encryption allows you to define the "memory_cost",

  263.      * the "time_cost" and the number of "threads", whenever a password hash is

  264.      * created.

  265.      *

  266.      * This defaults to a value of 10 which is an acceptable number.

  267.      * However, depending on the security needs of your application

  268.      * and the power of your hardware, you might want to increase the

  269.      * cost. This makes the hashing process takes longer.

  270.      */

  271. 

  272.     /**

  273.      * @var int

  274.      */

  275.     public $hashMemoryCost = 2048; // PASSWORD_ARGON2_DEFAULT_MEMORY_COST;

  276. 

  277.     /**

  278.      * @var int

  279.      */

  280.     public $hashTimeCost = 4; // PASSWORD_ARGON2_DEFAULT_TIME_COST;

  281. 

  282.     /**

  283.      * @var int

  284.      */

  285.     public $hashThreads = 4; // PASSWORD_ARGON2_DEFAULT_THREADS;

  286. 

  287.     /**

  288.      * --------------------------------------------------------------------

  289.      * Password Hashing Cost

  290.      * --------------------------------------------------------------------

  291.      *

  292.      * The BCRYPT method of encryption allows you to define the "cost"

  293.      * or number of iterations made, whenever a password hash is created.

  294.      * This defaults to a value of 10 which is an acceptable number.

  295.      * However, depending on the security needs of your application

  296.      * and the power of your hardware, you might want to increase the

  297.      * cost. This makes the hashing process takes longer.

  298.      *

  299.      * Valid range is between 4 - 31.

  300.      *

  301.      * @var int

  302.      */

  303.     public $hashCost = 10;

  304. 

  305.     /**

  306.      * --------------------------------------------------------------------

  307.      * Minimum Password Length

  308.      * --------------------------------------------------------------------

  309.      *

  310.      * The minimum length that a password must be to be accepted.

  311.      * Recommended minimum value by NIST = 8 characters.

  312.      *

  313.      * @var int

  314.      */

  315.     public $minimumPasswordLength = 8;

  316. 

  317.     /**

  318.      * --------------------------------------------------------------------

  319.      * Password Check Helpers

  320.      * --------------------------------------------------------------------

  321.      *

  322.      * The PasswordValidator class runs the password through all of these

  323.      * classes, each getting the opportunity to pass/fail the password.

  324.      *

  325.      * You can add custom classes as long as they adhere to the

  326.      * Password\ValidatorInterface.

  327.      *

  328.      * @var string[]

  329.      */

  330.     public $passwordValidators = [

  331.         'Myth\Auth\Authentication\Passwords\CompositionValidator',

  332.         'Myth\Auth\Authentication\Passwords\NothingPersonalValidator',

  333.         'Myth\Auth\Authentication\Passwords\DictionaryValidator',

  334.         // 'Myth\Auth\Authentication\Passwords\PwnedValidator',

  335.     ];

  336. 

  337.     /**

  338.      * --------------------------------------------------------------------

  339.      * Activator classes

  340.      * --------------------------------------------------------------------

  341.      *

  342.      * Available activators with config settings

  343.      *

  344.      * @var array

  345.      */

  346.     public $userActivators = [

  347.         'Myth\Auth\Authentication\Activators\EmailActivator' => [

  348.             'fromEmail' => null,

  349.             'fromName'  => null,

  350.         ],

  351.     ];

  352. 

  353.     /**

  354.      * --------------------------------------------------------------------

  355.      * Resetter Classes

  356.      * --------------------------------------------------------------------

  357.      *

  358.      * Available resetters with config settings

  359.      *

  360.      * @var array

  361.      */

  362.     public $userResetters = [

  363.         'Myth\Auth\Authentication\Resetters\EmailResetter' => [

  364.             'fromEmail' => null,

  365.             'fromName'  => null,

  366.         ],

  367.     ];

  368. 

  369.     /**

  370.      * --------------------------------------------------------------------

  371.      * Reset Time

  372.      * --------------------------------------------------------------------

  373.      *

  374.      * The amount of time that a password reset-token is valid for,

  375.      * in seconds.

  376.      *

  377.      * @var int

  378.      */

  379.     public $resetTime = 3600;

  380. }