Merge branch 'master' of git.unistra.fr:hbarbi/w31 into master

af9ce468 · BARBI HUGO · d26c815f · eae4b9ac · d26c815f · d26c815f
Commit af9ce468 authored 4 years ago by BARBI HUGO
--- a/TP5_Laravel/resources/views/account.php
+++ b/TP5_Laravel/resources/views/account.php
-<?php
-	if ( empty($_SESSION['user']) )
-	{
-		header('Location: /');
-		exit();
-	}
-?>
-<!DOCTYPE html>
-<html>
-	<head>
-		<meta charset="utf-8">
-		<title>Account</title>
-	</head>
-	<body>
-		<p>
-			Hello <?= $_SESSION['user'] ?> !<br>
-			Welcome on your account.
-		</p>
-		<ul>
-			<li><a href="formpassword">Change password.</a></li>
-			<li><a href="deleteuser">Delete my account.</a></li>
-		</ul>
-		<p><a href="signout">Sign out</a></p>
-<?php if ( !empty($_SESSION['message']) ) { ?>
-		<section>
-			<p><?= $_SESSION['message'] ?></p>
-		</section>
-<?php } ?>
-	</body>
-</html>
--- a/TP5_Laravel/resources/views/formpassword.php
+++ b/TP5_Laravel/resources/views/formpassword.php
-<?php
-	if ( empty($_SESSION['user']) )
-	{
-		header('Location: /');
-		exit();
-	}
-?>
-<!DOCTYPE html>
-<html>
-	<head>
-		<meta charset="utf-8">
-		<title>Change password</title>
-	</head>
-	<body>
-		<h1>Change password</h1>
-		<form action="changepassword" method="post">
-			<label for="newpassword">New password</label>        <input type="password" id="newpassword"	 name="newpassword"	 required>
-			<label for="confirmpassword">Confirm password</label><input type="password" id="confirmpassword" name="confirmpassword" required>
-			<input type="submit" value="Change my password">
-		</form>
-		<p>
-			Go back to <a href="account">Home</a>.
-		</p>
-<?php if ( !empty($_SESSION['message']) ) { ?>
-		<section>
-			<p><?= $_SESSION['message'] ?></p>
-		</section>
-<?php } ?>
-	</body>
-</html>
--- a/TP5_Laravel/resources/views/signin.php
+++ b/TP5_Laravel/resources/views/signin.php
-<?php
-?>
-<!DOCTYPE html>
-<html>
-	<head>
-		<meta charset="utf-8">
-		<title>Signin</title>
-	</head>
-	<body>
-		<h1>Signin</h1>
-		<form action="authenticate" method="post">
-			<label for="login">Login</label>      <input type="text"     id="login"    name="login"    required autofocus>
-			<label for="password">Password</label><input type="password" id="password" name="password" required>
-			<input type="submit" value="Signin">
-		</form>
-		<p>
-			If you don't have an account, <a href="signup">signup</a> first.
-		</p>
-<?php if ( !empty($_SESSION['message']) ) { ?>
-		<section>
-			<p><?= $_SESSION['message'] ?></p>
-		</section>
-<?php } ?>
-	</body>
-</html>
--- a/TP5_Laravel/resources/views/signup.php
+++ b/TP5_Laravel/resources/views/signup.php
-<?php
-?>
-<!DOCTYPE html>
-<html>
-	<head>
-		<meta charset="utf-8">
-		<title>Signup</title>
-	</head>
-	<body>
-		<h1>Signup</h1>
-		<form action="adduser" method="post">
-			<label for="login">Login</label>             <input type="text"     id="login"    name="login"    required autofocus>
-			<label for="password">Password</label>       <input type="password" id="password" name="password" required>
-			<label for="confirm">Confirm password</label><input type="password" id="confirm"  name="confirm"  required>
-			<input type="submit" value="Signup">
-		</form>
-		<p>
-			If you already have an account, <a href="/">signin</a>.
-		</p>
-<?php if ( !empty($_SESSION['message']) ) { ?>
-		<section>
-			<p><?= $_SESSION['message'] ?></p>
-		</section>
-<?php } ?>
-	</body>
-</html>
--- a/TP5_Laravel/routes/web.php
+++ b/TP5_Laravel/routes/web.php
-<?php
-
-use Illuminate\Support\Facades\Route;
-
-/*
-|--------------------------------------------------------------------------
-| Web Routes
-|--------------------------------------------------------------------------
-|
-| Here is where you can register web routes for your application. These
-| routes are loaded by the RouteServiceProvider within a group which
-| contains the "web" middleware group. Now create something great!
-|
-*/
-
-Route::group([], function () 
-{
-    session_start();
-
-    Route::post( 'adduser', function () {
-        return view('adduser');
-    }); 
-    
-    Route::post( 'authenticate', function () {
-        return view('authenticate');
-    });
-    
-    Route::get( '/', function () {
-        return view('signin');
-    });
-    
-    Route::get( 'signup', function () {
-        return view('signup');
-    });
-
-    Route::prefix('admin')->group( function () 
-    {
-        if( empty($_SESSION['user']) )
-        {
-            return redirect('/');
-        }
-
-        Route::post( 'changepassword', function () {
-            return view('changepassword');
-        });
-
-        Route::get( 'deleteuser', function () {
-            return view('deleteuser');
-        });
-        
-        Route::get( 'formpassword', function () {
-            return view('formpassword');
-        });
-
-        Route::get( 'account', function () {
-            return view('account');
-        });
-
-        Route::get( 'signout', function () { 	
-            session_destroy();
-            return redirect('/');
-            exit();
-        });
-    });
-
-});
\ No newline at end of file
--- a/TP5_Laravel/.editorconfig
+++ b/TP5_Laravel/.editorconfig
--- a/TP5_Laravel/.env.example
+++ b/TP5_Laravel/.env.example
@@ -5,7 +5,6 @@ APP_DEBUG=true
 APP_URL=http://localhost

 LOG_CHANNEL=stack
-LOG_LEVEL=debug

 DB_CONNECTION=mysql
 DB_HOST=127.0.0.1

--- a/TP5_Laravel/.gitattributes
+++ b/TP5_Laravel/.gitattributes
--- a/TP5_Laravel/.gitignore
+++ b/TP5_Laravel/.gitignore
--- a/TP5_Laravel/.styleci.yml
+++ b/TP5_Laravel/.styleci.yml
--- a/TP6/GITLABSSH.md
+++ b/TP6/GITLABSSH.md
+SSH et Giltab
+=============
+
+Cette procédure permet d'utiliser l'authentification par clé SSH plutôt que de taper ses login et mot de passe à chaque requête vers Gitlab (push, pull, etc.). Elle comporte deux étapes détaillées ci-dessous :
+
+1. Créer une clé SSH pour votre compte utilisateur
+2. Copier la clé publique dans Gitlab
+
+Si vous utilisez Gitlab à partir de plusieurs comptes (ordi de l'IUT, ordi perso, etc.), la procédure suivante est à répéter pour chaque compte.
+
+1 - Créer une clé SSH
+---------------------
+
+1. Dans un terminal, tapez la commande suivante :
+```
+login@ordi:~$ ssh-keygen -b 4096 -C [nom de la clé]
+```
+Pour chaque question, laissez vide et validez :
+```
+Generating public/private rsa key pair.
+Enter file in which to save the key (/.../login/.ssh/id_rsa):
+Enter passphrase (empty for no passphrase):
+Enter same passphrase again:
+Your identification has been saved in /.../login/.ssh/id_rsa.
+Your public key has been saved in /.../login/.ssh/id_rsa.pub.
+The key fingerprint is:
+SHA256:f3FTQpO9zwSY4DS2rIc1qT687x9C8CsuTD8MB61ogyU [nom de la clé]
+The key's randomart image is:
+---[RSA 4096]----+
+|          =. ooo |
+|   B     = +o.o..|
+|       .. B   ..o|
+|  E . . .B .   +.|
+|   + . oS + . oo.|
+|  . + +o.+ . o .o|
+|   . + == + o    |
+|      o.++ o .   |
+|       .o+o..    |
+----[SHA256]-----+
+```
+
+2. Deux fichiers (au moins) sont alors créés dans votre répertoire `/.../login/.ssh/` :
+```
+login@ordi:~$ ls ~/.ssh
+... id_rsa  id_rsa.pub ...
+```
+
+- `id_rsa` contient votre clé privé : ne jamais la communiquer !
+- `id_rsa.pub` contient votre clé publique : vous pouvez la communiquer au monde entier.
+
+2 - Copier la clé publique dans Gitlab
+--------------------------------------
+
+*Un GIF illustrant les 8 points suivants est disponible dans `images/sshGitlab.gif`.*
+
+1. Connectez-vous sur Gitlab avec vos identifiants Unistra : https://git.unistra.fr
+2. Cliquez sur l'icône en haut à droite de l'écran
+3. Cliquez sur le menu "Settings" ("Paramètres")
+4. Dans le menu à gauche de l'écran, cliquez sur le menu "SSH Keys" ("Clés SSH")
+5. Dans un terminal, affichez votre clé avec la commande suivante :
+```
+login@ordi:~$ cat ~/.ssh/id_rsa.pub
+ssh-rsa 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 [nom de la clé]
+```
+6. Copiez-collez votre clé `ssh-rsa AAAA...AQ== [nom de la clé]` dans le champ "Key" ("Clé") sur Giltab
+7. Cliquez sur le bouton "Add key" ("Ajouter la clé")
+8. C'est terminé : vous recevez dans la foulée un mail vous indiquant qu'une clé ssh a été ajoutée.
--- a/TP5_Laravel/README.md
+++ b/TP5_Laravel/README.md
--- a/TP5_Laravel/app/Console/Kernel.php
+++ b/TP5_Laravel/app/Console/Kernel.php
--- a/TP5_Laravel/app/Exceptions/Handler.php
+++ b/TP5_Laravel/app/Exceptions/Handler.php
--- a/TP5_Laravel/app/Http/Controllers/Controller.php
+++ b/TP5_Laravel/app/Http/Controllers/Controller.php
--- a/TP5_Laravel/app/Http/Kernel.php
+++ b/TP5_Laravel/app/Http/Kernel.php
@@ -35,7 +35,7 @@ class Kernel extends HttpKernel
            \Illuminate\Session\Middleware\StartSession::class,
            // \Illuminate\Session\Middleware\AuthenticateSession::class,
            \Illuminate\View\Middleware\ShareErrorsFromSession::class,
-            //\App\Http\Middleware\VerifyCsrfToken::class,
+            \App\Http\Middleware\VerifyCsrfToken::class,
            \Illuminate\Routing\Middleware\SubstituteBindings::class,
        ],


--- a/TP5_Laravel/app/Http/Middleware/Authenticate.php
+++ b/TP5_Laravel/app/Http/Middleware/Authenticate.php
--- a/TP5_Laravel/app/Http/Middleware/EncryptCookies.php
+++ b/TP5_Laravel/app/Http/Middleware/EncryptCookies.php
--- a/TP6/app/Http/Middleware/EnsureMyUserIsAuthenticated.php
+++ b/TP6/app/Http/Middleware/EnsureMyUserIsAuthenticated.php
+<?php 
+
+namespace App\Http\Middleware;
+
+use Closure;
+use Illuminate\Http\Request;
+
+class EnsureMyUserIsAuthenticated {
+	
+	public function handle(Request $request, Closure $next) 
+	{	
+		if( empty($_SESSION['user']) )
+        {
+            return redirect('/');
+		}
+		
+		if( !$request->session()->has('user')) {
+			return redirect('signin')->route('signin');
+		}
+		return $next($request);
+	}
+}
+
+?>
\ No newline at end of file
--- a/TP5_Laravel/app/Http/Middleware/PreventRequestsDuringMaintenance.php
+++ b/TP5_Laravel/app/Http/Middleware/PreventRequestsDuringMaintenance.php