librenms-librenms/app/Models/ApiToken.php

<?php
/**
 * ApiToken.php
 *
 * api_tokens simple tokens for api
 *
 * This program is free software: you can redistribute it and/or modify
 * it under the terms of the GNU General Public License as published by
 * the Free Software Foundation, either version 3 of the License, or
 * (at your option) any later version.
 *
 * This program is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.See the
 * GNU General Public License for more details.
 *
 * You should have received a copy of the GNU General Public License
 * along with this program.  If not, see <http://www.gnu.org/licenses/>.
 *
 * @package    LibreNMS
 * @link       http://librenms.org
 * @copyright  2018 Tony Murray
 * @author     Tony Murray <murraytony@gmail.com>
 */

namespace App\Models;

class ApiToken extends BaseModel
{
    public $timestamps = false;
    protected $table = 'api_tokens';

    // ---- Helper Functions ----

    /**
     * Check if the given token is valid
     *
     * @param string $token
     * @return bool
     */
    public static function isValid($token, $user_id = null)
    {
        $query = self::query()->isEnabled()->where('token_hash', $token);

        if (!is_null($user_id)) {
            $query->where('user_id', $user_id);
        }

        return $query->exists();
    }

    /**
     * Get User model based on the given API token (or null if invalid)
     *
     * @param string $token
     * @return User|null
     */
    public static function userFromToken($token)
    {
        return User::find(self::idFromToken($token));
    }

    /**
     * Get the user_id for the given token.
     *
     * @param string $token
     * @return int
     */
    public static function idFromToken($token)
    {
        return self::query()->isEnabled()->where('token_hash', $token)->value('user_id');
    }

    // ---- Query scopes ----

    public function scopeIsEnabled($query)
    {
        return $query->where('disabled', 0);
    }

    // ---- Define Relationships ----

    public function user()
    {
        return $this->belongsTo('App\Models\User', 'user_id');
    }
}
Use Laravel authentication (#8702) * Use Laravel for authentication Support legacy auth methods Always create DB entry for users (segregate by auth method) Port api auth to Laravel restrict poller errors to devices the user has access to Run checks on every page load. But set a 5 minute (configurable) timer. Only run some checks if the user is an admin Move toastr down a few pixels so it isn't as annoying. Fix menu not loaded on laravel pages when twofactor is enabled for the system, but disabled for the user. Add two missing menu entries in the laravel menu Rewrite 2FA code Simplify some and verify code before applying Get http-auth working Handle legacy $_SESSION differently. Allows Auth::once(), etc to work. * Fix tests and mysqli extension check * remove duplicate Toastr messages * Fix new items * Rename 266.sql to 267.sql 2018-09-11 07:51:35 -05:00			`<?php`
			`/**`
			`* ApiToken.php`
			`*`
			`* api_tokens simple tokens for api`
			`*`
			`* This program is free software: you can redistribute it and/or modify`
			`* it under the terms of the GNU General Public License as published by`
			`* the Free Software Foundation, either version 3 of the License, or`
			`* (at your option) any later version.`
			`*`
			`* This program is distributed in the hope that it will be useful,`
			`* but WITHOUT ANY WARRANTY; without even the implied warranty of`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.See the`
			`* GNU General Public License for more details.`
			`*`
			`* You should have received a copy of the GNU General Public License`
			`* along with this program. If not, see <http://www.gnu.org/licenses/>.`
			`*`
			`* @package LibreNMS`
			`* @link http://librenms.org`
			`* @copyright 2018 Tony Murray`
			`* @author Tony Murray <murraytony@gmail.com>`
			`*/`

			`namespace App\Models;`

			`class ApiToken extends BaseModel`
			`{`
			`public $timestamps = false;`
			`protected $table = 'api_tokens';`

			`// ---- Helper Functions ----`

			`/**`
			`* Check if the given token is valid`
			`*`
			`* @param string $token`
			`* @return bool`
			`*/`
			`public static function isValid($token, $user_id = null)`
			`{`
			`$query = self::query()->isEnabled()->where('token_hash', $token);`

			`if (!is_null($user_id)) {`
			`$query->where('user_id', $user_id);`
			`}`

			`return $query->exists();`
			`}`

			`/**`
			`* Get User model based on the given API token (or null if invalid)`
			`*`
			`* @param string $token`
			`* @return User\|null`
			`*/`
			`public static function userFromToken($token)`
			`{`
			`return User::find(self::idFromToken($token));`
			`}`

			`/**`
			`* Get the user_id for the given token.`
			`*`
			`* @param string $token`
			`* @return int`
			`*/`
			`public static function idFromToken($token)`
			`{`
			`return self::query()->isEnabled()->where('token_hash', $token)->value('user_id');`
			`}`

			`// ---- Query scopes ----`

			`public function scopeIsEnabled($query)`
			`{`
			`return $query->where('disabled', 0);`
			`}`

			`// ---- Define Relationships ----`

			`public function user()`
			`{`
			`return $this->belongsTo('App\Models\User', 'user_id');`
			`}`
			`}`