ドットインストール - 3分動画でマスターできるプログラミング学習サービス

Login.php

<?php

namespace MyApp\Controller;

class Login extends \MyApp\Controller {

    public function run() {
        if ($this->isLoggedIn()) {
            header('Location: ' . SITE_URL);
            exit;
        }
        if ($_SERVER['REQUEST_METHOD'] === 'POST') {
            # code...
            $this->postProcess();
        }
    }

    protected function postProcess() {
        // validate
        try {
            $this->_validate();
        } catch (\MyApp\Exception\EmptyPost $e) {
            $this->setErrors('login', $e->getMessage());
        }
        $this->setValues('email', $_POST['email']);
        if ($this->hasError()) {
            # code...
            return;
        }else {
            try {
                $userModel = new \MyApp\Model\User();
                $user = $userModel->login([
                    'email' => $_POST['email'],
                    'password' => $_POST['password']
                ]);
            } catch (\MyApp\Exception\UnmatchEmailOrPassword $e) {
                $this->setErrors('login', $e->getMessage());
                return;
            }
            // login処理
            session_regenerate_id(true);
            $_SESSION['me'] = $user;
            // redirect to home
            header('Location: ' . SITE_URL);
            exit;
        }
    }

    private function _validate()  {
        if (!isset($_POST['token']) || $_POST['token'] !== $_SESSION['token']) {
            echo 'Invalid Token!!';
            exit;
        }
        if (!isset($_POST['email']) || !isset($_POST['password'])) {
            echo 'Invalid Form!';
            exit;
        }

        if ($_POST['email'] === '' || $_POST['password'] === '') {
            throw new \MyApp\Exception\EmptyPost();
        }
    }
}