Add StorageInterface::redirectUrl().

This move redirect url reading/writing to auth storage classes and complete decoupling of AuthComponent with session.
cakephp · May 31, 2015 · 34d2472 · 34d2472
1 parent 64ad006
commit 34d2472
Show file tree

Hide file tree

Showing 4 changed files with 62 additions and 12 deletions.
diff --git a/src/Auth/Storage/MemoryStorage.php b/src/Auth/Storage/MemoryStorage.php
@@ -29,6 +29,13 @@ class MemoryStorage implements StorageInterface
      */
     protected $_user;
 
+    /**
+     * Redirect url.
+     *
+     * @var string
+     */
+    protected $_redirectUrl;
+
     /**
      * {@inheritDoc}
      */
@@ -52,4 +59,21 @@ public function delete()
     {
         $this->_user = null;
     }
+
+    /**
+     * {@inheritDoc}
+     */
+    public function redirectUrl($url = null)
+    {
+        if ($url === null) {
+            return $this->_redirectUrl;
+        }
+
+        if ($url === false) {
+            $this->_redirectUrl = null;
+            return;
+        }
+
+        $this->_redirectUrl = $url;
+    }
 }
diff --git a/src/Auth/Storage/SessionStorage.php b/src/Auth/Storage/SessionStorage.php
@@ -108,4 +108,21 @@ public function delete()
         $this->_session->delete($this->_config['key']);
         $this->_session->renew();
     }
+
+    /**
+     * {@inheritDoc}
+     */
+    public function redirectUrl($url = null)
+    {
+        if ($url === null) {
+            return $this->_session->read('Auth.redirect');
+        }
+
+        if ($url === false) {
+            $this->_session->delete('Auth.redirect');
+            return;
+        }
+
+        $this->_session->write('Auth.redirect', $url);
+    }
 }
diff --git a/src/Auth/Storage/StorageInterface.php b/src/Auth/Storage/StorageInterface.php
@@ -41,4 +41,13 @@ public function write(array $user);
      * @return void
      */
     public function delete();
+
+    /**
+     * Get/set redirect url.
+     *
+     * @param mixed $url Redirect url. If `null` returns current url. If `false`
+     *   deletes currently set url.
+     * @return mixed
+     */
+    public function redirectUrl($url = null);
 }
diff --git a/src/Controller/Component/AuthComponent.php b/src/Controller/Component/AuthComponent.php
@@ -204,6 +204,7 @@ class AuthComponent extends Component
      * Instance of the Session object
      *
      * @var \Cake\Network\Session
+     * @deprecated 3.1.0 Will be removed in 4.0
      */
     public $session;
 
@@ -333,17 +334,17 @@ protected function _unauthenticated(Controller $controller)
 
         if ($this->_isLoginAction($controller)) {
             if (empty($controller->request->data) &&
-                !$this->session->check('Auth.redirect') &&
+                !$this->storage()->redirectUrl() &&
                 $this->request->env('HTTP_REFERER')
             ) {
-                $this->session->write('Auth.redirect', $controller->referer(null, true));
+                $this->storage()->redirectUrl($controller->referer(null, true));
             }
             return;
         }
 
         if (!$controller->request->is('ajax')) {
             $this->flash($this->_config['authError']);
-            $this->session->write('Auth.redirect', $controller->request->here(false));
+            $this->storage()->redirectUrl($controller->request->here(false));
             return $controller->redirect($this->_config['loginAction']);
         }
 
@@ -620,7 +621,7 @@ public function logout()
         }
         $user = (array)$this->user();
         $this->dispatchEvent('Auth.logout', [$user]);
-        $this->session->delete('Auth.redirect');
+        $this->storage()->redirectUrl(false);
         $this->storage()->delete();
         return Router::normalize($this->_config['logoutRedirect']);
     }
@@ -658,7 +659,7 @@ protected function _getUser()
     {
         $user = $this->user();
         if ($user) {
-            $this->session->delete('Auth.redirect');
+            $this->storage()->redirectUrl(false);
             return true;
         }
 
@@ -685,10 +686,10 @@ protected function _getUser()
      * If no parameter is passed, gets the authentication redirect URL. The URL
      * returned is as per following rules:
      *
-     *  - Returns the normalized URL from session Auth.redirect value if it is
+     *  - Returns the normalized redirect URL from storage if it is
      *    present and for the same domain the current app is running on.
-     *  - If there is no session value and there is a config `loginRedirect`, the
-     *    `loginRedirect` value is returned.
+     *  - If there is no URL returned from storage and there is a config
+     *    `loginRedirect`, the `loginRedirect` value is returned.
      *  - If there is no session and no `loginRedirect`, / is returned.
      *
      * @param string|array $url Optional URL to write as the login redirect URL.
@@ -698,10 +699,9 @@ public function redirectUrl($url = null)
     {
         if ($url !== null) {
             $redir = $url;
-            $this->session->write('Auth.redirect', $redir);
-        } elseif ($this->session->check('Auth.redirect')) {
-            $redir = $this->session->read('Auth.redirect');
-            $this->session->delete('Auth.redirect');
+            $this->storage()->redirectUrl($redir);
+        } elseif ($redir = $this->storage()->redirectUrl()) {
+            $this->storage()->redirectUrl(false);
 
             if (Router::normalize($redir) === Router::normalize($this->_config['loginAction'])) {
                 $redir = $this->_config['loginRedirect'];