From 833a47ae432c5fa359f2d88931e6445273d2e295 Mon Sep 17 00:00:00 2001
From: Aleksandr Shelkovin <shelkovin.sashka@gmail.com>
Date: Mon, 20 Jan 2025 22:31:07 +0300
Subject: [PATCH] add session

---
 engine/app/controller/AdminController.php | 24 +++++++++---
 engine/app/controller/AuthController.php  | 45 +++++++++++++++++++++++
 engine/routes.php                         |  2 +-
 3 files changed, 65 insertions(+), 6 deletions(-)
 create mode 100644 engine/app/controller/AuthController.php

diff --git a/engine/app/controller/AdminController.php b/engine/app/controller/AdminController.php
index 9821869..8ce4a84 100644
--- a/engine/app/controller/AdminController.php
+++ b/engine/app/controller/AdminController.php
@@ -1,8 +1,22 @@
 <?php
-require_once __DIR__ . "/../view/View.php";
-class AdminController {
+session_start();
 
-    public function actionIndex() {
-        echo (View::render([], 'admin.php'));
+
+
+
+require_once __DIR__ . "/../view/View.php";
+class AdminController
+{
+
+    public function actionIndex()
+    {
+        if (
+            isset($_SESSION['IS_AUTH'])
+            and $_SESSION['IS_AUTH'] == true
+        ) {
+            echo (View::render([], 'admin.php'));
+        } else {
+            header("Location:http://localhost:8000/login");
+        };
     }
-}
\ No newline at end of file
+}
diff --git a/engine/app/controller/AuthController.php b/engine/app/controller/AuthController.php
new file mode 100644
index 0000000..51ca9d0
--- /dev/null
+++ b/engine/app/controller/AuthController.php
@@ -0,0 +1,45 @@
+<?php
+
+session_start();
+
+class AuthController
+{
+    const PASSWD = 123;
+    const LOGIN = 'none@none.ru';
+    const DOMAIN = 'http://localhost:8000/admin';
+
+    public $login = null;
+    public $password = null;
+
+    public function __construct()
+    {
+        $this->login = $_POST['login'];
+        $this->password = $_POST['password'];
+    }
+
+    public function actionLogin()
+    {
+        if (($this->login  == self::LOGIN) && ($this->password == self::PASSWD)) {
+            $_SESSION['IS_AUTH'] = true;
+            // редирект в админку
+            // setcookie("login", $this->login, time() + 3600);  // Истекает через 1 час
+            // setcookie("password", $this->password, time() + 3600);  // Истекает через 1 час
+            // header("Set-Cookie: login=$login; Secure; Path=/; SameSite=None; Partitioned;");
+            // header("Set-Cookie: passwd=$password; Secure; Path=/; SameSite=None; Partitioned;");
+            header("Location:". self::DOMAIN);
+        } else {
+            // редирект на форму логина с предупреждением
+            header("Location:http://localhost:8000/login");
+        }
+
+
+        // var_dump($this->login);
+        // var_dump($this->password);
+        // echo ("LOGIN HANDLER");
+    }
+
+    public function actionLogout()
+    {
+        echo ('print Logout');
+    }
+}
diff --git a/engine/routes.php b/engine/routes.php
index b0d84fa..377f9a1 100644
--- a/engine/routes.php
+++ b/engine/routes.php
@@ -6,7 +6,7 @@ return array(
     'about' => 'about/index',
     'admin' => 'admin/index',
     'login' => 'login/index',
-    'auth' => 'auth/index',
+    'auth' => 'auth/login',
 );
 // - где 'news' - строка запроса
 // 'news/index' - имя контроллера и экшена для обработки этого запроса (путь обработчика)