Initial commit

Author: biscolab

.editorconfig

@@ -0,0 +1,11 @@
+[*]
+charset=utf-8
+end_of_line=lf
+insert_final_newline=false
+indent_style=space
+indent_size=4
+
+[{*.yml,*.yaml}]
+indent_style=space
+indent_size=2
+

.gitattributes

@@ -0,0 +1,12 @@
+/tests export-ignore
+/.github export-ignore
+/.gitattributes export-ignore
+/.gitignore export-ignore
+/.scrutinizer.yml export-ignore
+/.travis.yml export-ignore
+/.editorconfig export-ignore
+/phpunit.xml export-ignore
+/changelog.md export-ignore
+/README.md export-ignore
+/CONTRIBUTING.md export-ignore
+/CODE_OF_CONDUCT.md export-ignore

.gitignore

@@ -0,0 +1,16 @@
+vendor/
+/.idea
+
+# Rocketeer PHP task runner and deployment package. https://github.com/rocketeers/rocketeer
+.rocketeer/
+
+# composer
+/composer.lock
+/composer.local.*
+/composer.phar
+
+# coverage reports
+/coverage.clover
+coverage.xml
+clover.xml
+report/

.scrutinizer.yml

@@ -0,0 +1,13 @@
+build:
+  nodes:
+    coverage:
+      tests:
+        override:
+          - command: vendor/bin/phpunit --coverage-clover=clover.xml
+            coverage:
+              file: clover.xml
+              format: clover
+tools:
+    php_code_sniffer:
+        config:
+            standard: PSR2

.travis.yml

@@ -0,0 +1,12 @@
+language: php
+
+php:
+  - 7.1
+  - 7.2
+  - 7.3
+
+before_script:
+  - travis_retry composer self-update
+  - travis_retry composer install --prefer-source --no-interaction
+
+fast_finish: true

LICENSE

@@ -0,0 +1,21 @@
+MIT License
+
+Copyright (c) 2019 Roberto Belotti
+
+Permission is hereby granted, free of charge, to any person obtaining a copy
+of this software and associated documentation files (the "Software"), to deal
+in the Software without restriction, including without limitation the rights
+to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
+copies of the Software, and to permit persons to whom the Software is
+furnished to do so, subject to the following conditions:
+
+The above copyright notice and this permission notice shall be included in all
+copies or substantial portions of the Software.
+
+THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
+IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
+FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
+AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
+LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
+OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
+SOFTWARE.

README.md

@@ -0,0 +1,119 @@
+# Laravel Auth-log
+User authentication log for Laravel 5 and 6.
+This package allows you to log user's authentication and force its logout if necessary!
+
+## System requirements
+
+Set `session.driver` value
+> To use this package the only allowed values of `session.driver` are `file`, `database`, `redis` (at the moment).
+
+## Install`
+
+You can install the package via composer:
+```sh
+$ composer require biscolab/laravel-authlog
+```
+Laravel 5.5 (or greater) uses package auto-discovery, so doesn't require you to manually add the Service Provider, but if you don't use auto-discovery `AuthLogServiceProvider` must be registered in `config/app.php`:
+```php
+'providers' => [
+    ...
+    Biscolab\LaravelAuthLog\AuthLogServiceProvider::class,
+];
+```
+You can use the facade for shorter code. Add `AuthLog` to your aliases:
+```php
+'aliases' => [
+    ...
+    'AuthLog' => Biscolab\LaravelAuthLog\Facades\AuthLog::class,
+];
+```
+
+## Publish package
+Create `config/authlog.php` configuration file using the following artisan command:
+```sh
+$ php artisan vendor:publish --provider="Biscolab\LaravelAuthLog\AuthLogServiceProvider"
+```
+
+## Configuration
+
+Edit `config/authlog.php`
+
+| Variable name | Type | Description | Default value |
+|----------------|-----------------|---------------------|-----------------|
+| `safe_mode` | `bool` | Avoid to force logout by yourself | `true` |
+| `enabled` | `bool` | If `true` the package is active and user's authentication will be logged | `true` |
+| `skip_ip` | `string` | A whitelist of IP addresses (CSV format) that, if recognized, disable the package  | `''` |
+| `table_name` | `string` | The name of the AuthLog database table | `authlog` |
+| `authlog_model` | `string` | AuthLog class. You can change ìt **BUT** your custom class **MUST** implements `'Biscolab\LaravelAuthLog\Models\AuthLogInterface'` | `'Biscolab\LaravelAuthLog\Models\AuthLog'` |
+| `session_model` | `string` | Session class. You can change ìt **BUT** your custom class **MUST** implements `'Biscolab\LaravelAuthLog\Models\SessionInterface'` | `'Biscolab\LaravelAuthLog\Models\Session'` |
+| `session_auth_log_id_key` | `string` | Session key used to store your AuthLog ID | `'auth_log_id'` |
+| `add_auth_log_id_to_ajax_response` | `bool` | If `true` AuthLog ID will be added to your AJAX responses | `true` |
+| `ajax_response_auth_log_id_name` | `string` | AJAX response key used to send your AuthLog ID | `'auth_log_id'` |
+| `add_auth_log_id_header_to_http_response` | `bool` | If `true` AuthLog ID will be added to your response headers | `true` |
+| `auth_log_id_header_nameauth_log_id_header_name` | `string` | AuthLog ID header name | `'X-Auth-Log-Id'` |
+
+> Remember to run the `php artisan config:cache` command
+
+## Database
+
+Run migrations
+
+```sh
+php artisan migrate
+```
+
+AuthLog database table will be created.
+
+
+## Middleware
+
+### Register `AuthLogMiddleware
+Register `AuthLogMiddleware` in `app/Http/Kernel.php`. This middleware will handle user authentication session ID. 
+
+```php
+
+protected $routeMiddleware = [
+    ...
+    'auth.log' =>  \Biscolab\LaravelAuthLog\Middleware\AuthLogMiddleware::class
+];
+
+````
+
+### Add `AuthLogMiddleware` to routes
+
+```php
+Route::group(['middleware' => ['auth.log']], function() {
+
+    // Your routes
+});
+```
+
+## Handle logged users
+### Artisan Command
+
+To handle auth sessions type the following artisan command
+
+```sh
+php artisan authlog:logged
+```
+
+The list of logged users will be shown
+
+```sh
++--------+------------------------------------------+-----------------------+---------------------+
+| Log ID | Session ID                               | User                  | Logged @            |
++--------+------------------------------------------+-----------------------+---------------------+
+| 604    | teq4LmVM4u4sdhFTKnGsKeWs3IBOLAIOXB1c4ioy | Roberto Belotti (#22) | 2019-09-25 22:56:33 |
++--------+------------------------------------------+-----------------------+---------------------+
+
+Type Log ID to kill session. Type "exit" to quit:
+```
+
+Now you can either quit typing `exit` or force user logout typing the specific Log ID, in this case `604`.
+
+```
+ > 604
+ 
+Session "teq4LmVM4u4sdhFTKnGsKeWs3IBOLAIOXB1c4ioy" deleted. "Roberto Belotti" user logged out
+No logged user, please type "exit" to quit
+```

composer.json

@@ -0,0 +1,55 @@
+{
+    "name": "biscolab/laravel-authlog",
+    "description": "User's authentication log package for Laravel 5 and 6",
+    "version": "0.0.1",
+    "license": "MIT",
+    "type": "library",
+    "keywords": [
+        "auth",
+        "laravel"
+    ],
+    "homepage": "https://biscolab.com/laravel-authlog",
+    "authors": [
+        {
+            "name": "Roberto Belotti",
+            "email": "[email protected]",
+            "homepage": "https://biscolab.com",
+            "role": "Developer"
+        }
+    ],
+    "require": {
+        "php": "^7.1",
+        "laravel/framework": "^5.5|^6.0",
+        "illuminate/support": "^5.5|^6.0"
+    },
+    "require-dev": {
+        "orchestra/testbench": "~3.0",
+        "phpunit/phpunit": "6.*|7.*"
+    },
+    "autoload": {
+        "psr-4": {
+            "Biscolab\\LaravelAuthLog\\": "src/"
+        },
+        "files": [
+            "src/helpers.php"
+        ]
+    },
+    "autoload-dev": {
+        "psr-4": {
+            "Biscolab\\LaravelAuthLog\\Tests\\": "tests/"
+        }
+    },
+    "scripts": {
+        "test": "vendor/bin/phpunit --colors=always"
+    },
+    "extra": {
+        "laravel": {
+            "providers": [
+                "Biscolab\\LaravelAuthLog\\LaravelAuthLogServiceProvider"
+            ],
+            "aliases": {
+                "AuthLog": "Biscolab\\LaravelAuthLog\\Facades\\AuthLog"
+            }
+        }
+    }
+}

config/authlog.php

@@ -0,0 +1,68 @@
+<?php
+/**
+ * Copyright (c) 2019 - present
+ * Laravel Auth Log - authlog.php
+ * author: Roberto Belotti - [email protected]
+ * web : robertobelotti.com, github.com/biscolab
+ * Initial version created on: 13/9/2019
+ * MIT license: https://github.com/biscolab/laravel-authlog/blob/master/LICENSE
+ */
+
+return [
+
+    /**
+     * If "true" it avoids to "kill" your own session
+     */
+    'safe_mode' => env('AUTHLOG_SAFE_MODE', true),
+
+    /**
+     * If "true" Auth Log package is enabled
+     */
+    'enabled' => env('AUTHLOG_ENABLED', true),
+
+    /**
+     * Coming connections from following IP(s) won't be recorded (CSV format)
+     */
+    'skip_ip' => env('AUTHLOG_SKIP_IP', null),
+
+    /**
+     * AuthLog model table name
+     */
+    'table_name' => 'authlog',
+
+    /**
+     * AuthLog model class MUST implements Biscolab\LaravelAuthLog\Models\AuthLogInterface
+     */
+    'authlog_model' => 'Biscolab\LaravelAuthLog\Models\AuthLog',
+
+    /**
+     * Session model class MUST implements Biscolab\LaravelAuthLog\Models\SessionInterface
+     */
+    'session_model' => 'Biscolab\LaravelAuthLog\Models\Session',
+
+    /**
+     * Session key used to store your AuthLog ID
+     */
+    'session_auth_log_id_key' => 'auth_log_id',
+
+    /**
+     * If "true" AuthLog ID will be added to your AJAX responses
+     */
+    'add_auth_log_id_to_ajax_response' => true,
+
+    /**
+     * AJAX response key used to send your AuthLog ID
+     */
+    'ajax_response_auth_log_id_name' => 'auth_log_id',
+
+    /**
+     * If "true" AuthLog ID will be added to your response headers
+     */
+    'add_auth_log_id_header_to_http_response' => true,
+
+    /**
+     * AuthLog ID header name
+     */
+    'auth_log_id_header_name' => 'X-Auth-Log-Id',
+
+];

database/migrations/2019_09_19_000000_create_authlog_table.php

@@ -0,0 +1,58 @@
+<?php
+
+use Illuminate\Support\Facades\Schema;
+use Illuminate\Database\Schema\Blueprint;
+use Illuminate\Database\Migrations\Migration;
+
+/**
+ * Class CreateAuthlogTable
+ */
+class CreateAuthlogTable extends Migration
+{
+
+    /**
+     * Run the migrations.
+     *
+     * @return void
+     */
+    public function up()
+    {
+
+        Schema::create(config('authlog.table_name'), function (Blueprint $table) {
+
+            $table->increments('id');
+            $table->unsignedInteger('user_id');
+            $table->unsignedInteger('blame_on_user_id')->nullable();
+            $table->string('ip', 255)->nullable()->default('');
+            $table->string('session_id', 255)->nullable()->default('');
+            $table->text('user_agent')->nullable();
+            $table->boolean('killed_from_console')->default(false);
+            $table->dateTime('logged_out_at')->nullable();
+            $table->dateTime('created_at');
+            $table->dateTime('updated_at');
+
+            $table->index('session_id', 'session_id');
+            $table->index('user_id', 'user_id');
+            $table->index('blame_on_user_id', 'blame_on_user_id');
+            $table->index(['logged_out_at', 'blame_on_user_id', 'killed_from_console'], 'logged_out_at');
+
+            $table->foreign('blame_on_user_id', 'fk_authlog_blame_on_user')->references('id')->on('users')->onDelete('RESTRICT
+')->onUpdate('RESTRICT');
+            $table->foreign('user_id', 'fk_authlog_user')->references('id')->on('users')->onDelete('RESTRICT
+')->onUpdate('RESTRICT');
+
+        });
+
+    }
+
+    /**
+     * Reverse the migrations.
+     *
+     * @return void
+     */
+    public function down()
+    {
+
+        Schema::dropIfExists(config('authlog.table_name'));
+    }
+}