Update docblocks

cakephp · May 28, 2015 · 49f888f · 49f888f
1 parent c9838a7
commit 49f888f
Show file tree

Hide file tree

Showing 4 changed files with 98 additions and 19 deletions.
diff --git a/src/Auth/Storage/MemoryStorage.php b/src/Auth/Storage/MemoryStorage.php
@@ -17,22 +17,39 @@
 use Cake\Core\InstanceConfigTrait;
 use Cake\Network\Request;
 
+/**
+ * Memory based non-persistent storage for authenticated user record.
+ */
 class MemoryStorage implements StorageInterface
 {
+    /**
+     * User record.
+     *
+     * @var array
+     */
     protected $_user;
 
+    /**
+     * {@inheritDoc}
+     */
     public function get()
     {
         return $this->_user;
     }
 
+    /**
+     * {@inheritDoc}
+     */
     public function set(array $user)
     {
         $this->_user = $user;
     }
 
+    /**
+     * {@inheritDoc}
+     */
     public function remove()
     {
-        $this->_user = null;
+        unset($this->_user);
     }
 }
diff --git a/src/Auth/Storage/SessionStorage.php b/src/Auth/Storage/SessionStorage.php
@@ -17,23 +17,47 @@
 use Cake\Core\InstanceConfigTrait;
 use Cake\Network\Request;
 
+/**
+ * Session based persistent storage for authenticated user record.
+ */
 class SessionStorage implements StorageInterface
 {
 
     use InstanceConfigTrait;
 
+    /**
+     * Session object.
+     *
+     * @var \Cake\Network\Session
+     */
     protected $_session;
 
+    /**
+     * Default configuration for this class
+     *
+     * @var array
+     */
     protected $_defaultConfig = [
         'key' => 'Auth.User'
     ];
 
+    /**
+     * Constructor.
+     *
+     * @param \Cake\Network\Request $request Request instance.
+     * @param array $config Configuration list.
+     */
     public function __construct(Request $request, array $config = [])
     {
         $this->_session = $request->session();
         $this->config($config);
     }
 
+    /**
+     * Get user record from session.
+     *
+     * @return array|null
+     */
     public function get()
     {
         if (!$this->_session->check($this->_config['key'])) {
@@ -43,12 +67,27 @@ public function get()
         return $this->_session->read($this->_config['key']);
     }
 
+    /**
+     * Set user record to session.
+     *
+     * The session id is also renewed to help mitigate issues with session replays.
+     *
+     * @param array $user User record.
+     * @return void
+     */
     public function set(array $user)
     {
         $this->_session->renew();
         $this->_session->write($this->_config['key'], $user);
     }
 
+    /**
+     * Remove user record from session.
+     *
+     * The session id is also renewed to help mitigate issues with session replays.
+     *
+     * @return void
+     */
     public function remove()
     {
         $this->_session->delete($this->_config['key']);

diff --git a/src/Auth/Storage/StorageInterface.php b/src/Auth/Storage/StorageInterface.php
@@ -14,11 +14,31 @@
  */
 namespace Cake\Auth\Storage;
 
+/**
+ * Describes the methods that any class representing an Auth data storage should
+ * comply with.
+ */
 interface StorageInterface
 {
+    /**
+     * Get user record.
+     *
+     * @return array|null
+     */
     public function get();
 
+    /**
+     * Set user record.
+     *
+     * @param array $user User record.
+     * @return void
+     */
     public function set(array $user);
 
+    /**
+     * Remove user record.
+     *
+     * @return void
+     */
     public function remove();
 }
diff --git a/src/Controller/Component/AuthComponent.php b/src/Controller/Component/AuthComponent.php
@@ -28,7 +28,7 @@
 use Cake\Utility\Hash;
 
 /**
- * Authentication control component class
+ * Authentication control component class.
  *
  * Binds access control with user authentication and session management.
  *
@@ -171,6 +171,11 @@ class AuthComponent extends Component
      */
     protected $_authorizeObjects = [];
 
+    /**
+     * Storage object.
+     *
+     * @var \Cake\Auth\Storage\StorageInterface
+     */
     protected $_storageObject;
 
     /**
@@ -437,8 +442,10 @@ protected function _setDefaults()
      * Each adapter will be checked in sequence, if any of them return true, then the user will
      * be authorized for the request.
      *
-     * @param array|null $user The user to check the authorization of. If empty the user in the session will be used.
-     * @param \Cake\Network\Request|null $request The request to authenticate for. If empty, the current request will be used.
+     * @param array|null $user The user to check the authorization of.
+     *   If empty the user fetched from storage will be used.
+     * @param \Cake\Network\Request|null $request The request to authenticate for.
+     *   If empty, the current request will be used.
      * @return bool True if $user is authorized, otherwise false
      */
     public function isAuthorized($user = null, Request $request = null)
@@ -582,10 +589,10 @@ public function deny($actions = null)
     }
 
     /**
-     * Set provided user info to session as logged in user.
+     * Set provided user info to storage as logged in user.
      *
-     * The user record is written to the session key specified in AuthComponent::$sessionKey.
-     * The session id will also be changed in order to help mitigate session replays.
+     * The storage class is configured using `storage` config key or passing
+     * instance to AuthComponent::storage().
      *
      * @param array $user Array of user data.
      * @return void
@@ -601,9 +608,6 @@ public function setUser(array $user)
      *
      * Returns the logout action to redirect to. Triggers the `Auth.logout` event
      * which the authenticate classes can listen for and perform custom logout logic.
-     * AuthComponent will remove the session data, so there is no need to do that
-     * in an authentication object. Logging out will also renew the session id.
-     * This helps mitigate issues with session replays.
      *
      * @return string Normalized config `logoutRedirect`
      * @link http://book.cakephp.org/3.0/en/controllers/components/authentication.html#logging-users-out
@@ -622,13 +626,9 @@ public function logout()
     }
 
     /**
-     * Get the current user.
+     * Get the current user from storage.
      *
-     * Will prefer the user cache over sessions. The user cache is primarily used for
-     * stateless authentication. For stateful authentication,
-     * cookies + sessions will be used.
-     *
-     * @param string $key field to retrieve. Leave null to get entire User record
+     * @param string $key Field to retrieve. Leave null to get entire User record.
      * @return array|null Either User record or null if no user is logged in.
      * @link http://book.cakephp.org/3.0/en/controllers/components/authentication.html#accessing-the-logged-in-user
      */
@@ -646,10 +646,13 @@ public function user($key = null)
     }
 
     /**
-     * Similar to AuthComponent::user() except if the session user cannot be found, connected authentication
-     * objects will have their getUser() methods called. This lets stateless authentication methods function correctly.
+     * Similar to AuthComponent::user() except if user is not found in
+     * configured storage, connected authentication objects will have their
+     * getUser() methods called.
+     *
+     * This lets stateless authentication methods function correctly.
      *
-     * @return bool true if a user can be found, false if one cannot.
+     * @return bool true If a user can be found, false if one cannot.
      */
     protected function _getUser()
     {