The PRG Pattern and Flash old Form Data

ismaildasci · ismaildasci · commit 289e8373ea8a · 2023-04-23T21:10:51.000+03:00
diff --git a/Core/Authenticator.php b/Core/Authenticator.php
@@ -13,7 +13,7 @@ public function attempt($email, $password)
 
     ])->find();
 
-    if (!$user) {
+    if ($user) {
       if (password_verify($password, $user['password'])) {
         $this->login([
 
@@ -40,12 +40,6 @@ public function login($user)
 
   public function logout()
   {
-    $_SESSION = [];
-
-    session_destroy();
-
-    $params = session_get_cookie_params();
-
-    setcookie('PHPSESSID', '', time() - 3600, $params['path'], $params['domain'], $params['secure'], $params['httponly']);
+    Session::destroy();
   }
 }
diff --git a/Core/Session.php b/Core/Session.php
@@ -0,0 +1,46 @@
+<?php
+
+namespace Core;
+
+class Session
+{
+  public static function has($key)
+  {
+    return (bool) static::get($key);
+  }
+
+  public static function put($key, $value)
+  {
+    $_SESSION[$key] = $value;
+  }
+
+  public static function get($key, $default = null)
+  {
+    return $_SESSION['_flash'][$key] ?? $_SESSION[$key] ?? $default;
+  }
+
+  public static function flash($key, $value)
+  {
+    $_SESSION['_flash'][$key] = $value;
+  }
+
+  public static function unflash()
+  {
+    unset($_SESSION['_flash']);
+  }
+
+  public static function flush()
+  {
+    $_SESSION = [];
+  }
+
+  public static function destroy()
+  {
+    static::flush();
+
+    session_destroy();
+
+    $params = session_get_cookie_params();
+    setcookie('PHPSESSID', '', time() - 3600, $params['path'], $params['domain'], $params['secure'], $params['httponly']);
+  }
+}
diff --git a/Core/functions.php b/Core/functions.php
@@ -1,4 +1,7 @@
 <?php
+
+use Core\Session;
+
 function dd($value)
 {
     echo "<pre>";
@@ -55,3 +58,22 @@ function redirect($path)
 
     exit();
 }
+
+function login($user)
+{
+    $_SESSION['user'] = [
+        'email' => $user['email']
+    ];
+
+    session_regenerate_id(true);
+}
+
+function logout()
+{
+    Session::destroy();
+}
+
+function old($key, $default = '')
+{
+    return Core\Session::get('old')[$key] ?? $default;
+}
diff --git a/Http/controllers/session/create.php b/Http/controllers/session/create.php
@@ -1,3 +1,8 @@
 <?php
 
-view('session/create.view.php');
+use Core\Session;
+
+
+view('session/create.view.php', [
+  'errors' => Session::get('errors')
+]);
diff --git a/Http/controllers/session/store.php b/Http/controllers/session/store.php
@@ -1,6 +1,7 @@
 <?php
 
 use Core\Authenticator;
+use Core\Session;
 use Http\Forms\LoginForm;
 
 
@@ -20,8 +21,10 @@
   $form->error('email', 'No matching account found for that email address and password.');
 }
 
+Session::flash('errors', $form->errors());
+Session::flash('old', [
+  'email' => $_POST['email']
+]);
 
-return view('session/create.view.php', [
 
-  'errors' => $form->errors()
-]);
+return redirect('/login');
diff --git a/public/index.php b/public/index.php
@@ -1,5 +1,7 @@
 <?php
 
+use Core\Session;
+
 session_start();
 
 
@@ -22,4 +24,7 @@
 
 $uri = parse_url($_SERVER['REQUEST_URI'])['path'];
 $method = $_POST['_method'] ?? $_SERVER['REQUEST_METHOD'];
+
 $router->route($uri, $method);
+
+Session::unflash();
diff --git a/views/partials/nav.php b/views/partials/nav.php
@@ -47,14 +47,16 @@
                     </div>
 
 
-                    <div class="ml-3">
-                        <form method="post" action="/session">
+                    <?php if ($_SESSION['user'] ?? false) : ?>
+                        <div class="ml-3">
+                            <form method="post" action="/session">
 
-                            <input type="hidden" name="_method" value="DELETE">
+                                <input type="hidden" name="_method" value="DELETE">
 
-                            <button class="text-white">Log Out</button>
-                        </form>
-                    </div>
+                                <button class="text-white">Log Out</button>
+                            </form>
+                        </div>
+                    <?php endif; ?>
 
                 </div>
             </div>
diff --git a/views/session/create.view.php b/views/session/create.view.php
@@ -14,7 +14,7 @@
         <div class="-space-y-px rounded-md shadow-sm">
           <div>
             <label for="email" class="sr-only">Email address</label>
-            <input id="email" name="email" type="email" autocomplete="email" required class="relative block w-full appearance-none rounded-none rounded-t-md border border-gray-300 px-3 py-2 text-gray-900 placeholder-gray-500 focus:z-10 focus:border-indigo-500 focus:outline-none focus:ring-indigo-500 sm:text-sm" placeholder="Email address">
+            <input id="email" name="email" type="email" autocomplete="email" required class="relative block w-full appearance-none rounded-none rounded-t-md border border-gray-300 px-3 py-2 text-gray-900 placeholder-gray-500 focus:z-10 focus:border-indigo-500 focus:outline-none focus:ring-indigo-500 sm:text-sm" placeholder="Email address" value="<?= old('email') ?>">
           </div>
 
           <div>

Original file line number	Diff line number	Diff line change
`@@ -13,7 +13,7 @@ public function attempt($email, $password)`
`13`	`13`
`14`	`14`	`])->find();`
`15`	`15`
`16`		`- if (!$user) {`
	`16`	`+ if ($user) {`
`17`	`17`	`if (password_verify($password, $user['password'])) {`
`18`	`18`	`$this->login([`
`19`	`19`
`@@ -40,12 +40,6 @@ public function login($user)`
`40`	`40`
`41`	`41`	`public function logout()`
`42`	`42`	`{`
`43`		`- $_SESSION = [];`
`44`		`-`
`45`		`- session_destroy();`
`46`		`-`
`47`		`- $params = session_get_cookie_params();`
`48`		`-`
`49`		`- setcookie('PHPSESSID', '', time() - 3600, $params['path'], $params['domain'], $params['secure'], $params['httponly']);`
	`43`	`+ Session::destroy();`
`50`	`44`	`}`
`51`	`45`	`}`