Authentication

In this section, we will cover authentication and login.

Sentry::authenticate()

Authenticates a user based on the provided credentials.

If the authentication was successful, password reset fields and any invalid authentication attempts will be cleared.

Param Required Default Type Description
$credentials true null array Array that should contain the user credentials like email and password.
$remember false false bool Flag to wether Sentry should remember the user. It sets a Cookie.

Example

  1. try
  2. {
  3.     // Login credentials
  4.     $credentials = array(
  5.         'email'    => 'john.doe@example.com',
  6.         'password' => 'password',
  7.     );
  9.     // Authenticate the user
  10.     $user = Sentry::authenticate($credentials, false);
  11. }
  12. catch (Cartalyst\Sentry\Users\LoginRequiredException $e)
  13. {
  14.     echo 'Login field is required.';
  15. }
  16. catch (Cartalyst\Sentry\Users\PasswordRequiredException $e)
  17. {
  18.     echo 'Password field is required.';
  19. }
  20. catch (Cartalyst\Sentry\Users\WrongPasswordException $e)
  21. {
  22.     echo 'Wrong password, try again.';
  23. }
  24. catch (Cartalyst\Sentry\Users\UserNotFoundException $e)
  25. {
  26.     echo 'User was not found.';
  27. }
  28. catch (Cartalyst\Sentry\Users\UserNotActivatedException $e)
  29. {
  30.     echo 'User is not activated.';
  31. }
  33. // The following is only required if the throttling is enabled
  34. catch (Cartalyst\Sentry\Throttling\UserSuspendedException $e)
  35. {
  36.     echo 'User is suspended.';
  37. }
  38. catch (Cartalyst\Sentry\Throttling\UserBannedException $e)
  39. {
  40.     echo 'User is banned.';
  41. }

Exceptions

In this section, we provide a list of all exceptions that are thrown by Sentry.

Exception Description
Cartalyst\Sentry\Users\LoginRequiredException When you don’t provide the required login field, this exception will be thrown.
Cartalyst\Sentry\Users\PasswordRequiredException When you don’t provide the password field, this exception will be thrown.
Cartalyst\Sentry\Users\UserNotActivatedException When the provided user is not activated, this exception will be thrown.
Cartalyst\Sentry\Users\UserNotFoundException If the provided user was not found, this exception will be thrown.
Cartalyst\Sentry\Users\WrongPasswordException When the provided password is incorrect, this exception will be thrown.
Cartalyst\Sentry\Throttling\UserSuspendedException When the provided user is suspended, this exception will be thrown.
Cartalyst\Sentry\Throttling\UserBannedException When the provided user is banned, this exception will be thrown.

Sentry::authenticateAndRemember()

Authenticates and Remembers a user based on credentials. This is an helper function for the authenticate() which sets the $remember flag to true so the user is remembered (using a cookie). This is the “remember me” you are used to see on web sites.

Example

  1. Sentry::authenticateAndRemember($credentials);

Sentry::login()

Logs in the provided user and sets properties in the session.

If the login is successful, password reset fields and any invalid authentication attempts will be cleared.

Param Required Default Type Description
$user true null object A user object Cartalyst\Sentry\Users\UserInterface.
$remember false false bool Flag to wether Sentry should remember the user. It sets a Cookie.

Example

  1. try
  2. {
  3.     // Find the user using the user id
  4.     $user = Sentry::findUserById(1);
  6.     // Log the user in
  7.     Sentry::login($user, false);
  8. }
  9. catch (Cartalyst\Sentry\Users\LoginRequiredException $e)
  10. {
  11.     echo 'Login field is required.';
  12. }
  13. catch (Cartalyst\Sentry\Users\UserNotFoundException $e)
  14. {
  15.     echo 'User not found.';
  16. }
  17. catch (Cartalyst\Sentry\Users\UserNotActivatedException $e)
  18. {
  19.     echo 'User not activated.';
  20. }
  22. // Following is only needed if throttle is enabled
  23. catch (Cartalyst\Sentry\Throttling\UserSuspendedException $e)
  24. {
  25.     $time = $throttle->getSuspensionTime();
  27.     echo "User is suspended for [$time] minutes.";
  28. }
  29. catch (Cartalyst\Sentry\Throttling\UserBannedException $e)
  30. {
  31.     echo 'User is banned.';
  32. }

Exceptions

Below is a list of exceptions that this method can throw.

Exception Description
Cartalyst\Sentry\Users\LoginRequiredException When you don’t provide the required login field, this exception will be thrown.
Cartalyst\Sentry\Users\UserNotFoundException If the provided user was not found, this exception will be thrown.
Cartalyst\Sentry\Users\UserNotActivatedException When the provided user is not activated, this exception will be thrown.
Cartalyst\Sentry\Throttling\UserSuspendedException When the provided user is suspended, this exception will be thrown.
Cartalyst\Sentry\Throttling\UserBannedException When the provided user is banned, this exception will be thrown.

Sentry::loginAndRemember()

Logs in and Remembers a user based on credentials. This is an helper function for the login() which sets the $remember flag to true so the user is remembered (using a cookie). This is the “remember me” you are used to see on web sites.

Example

  1. Sentry::loginAndRemember($user);

Sentry::logout()

The logout method logs the user out and destroys all Sentry sessions / cookies for the user.

This method does not fail or throw any Exceptions if there is no user logged in.

Example

  1. Sentry::logout();

Sentry::check()

The check method returns a bool of whether the user is logged in or not, or if the user is not activated.

If it’s logged in, the current User is set in Sentry so you can easily access it via getUser().

A user must be activated to pass check().

Example

  1. if ( ! Sentry::check())
  2. {
  3.     // User is not logged in, or is not activated
  4. }
  5. else
  6. {
  7.     // User is logged in
  8. }