Logging In
Once a user has been registered in the system, you can log them in to your application by using the login method. A "login" provides you with the users basic information and state, allowing you to work with the user.
In addition, a successful login of an active user marks a special login event to help track your application logins per user, which can be viewed in the Webmin user section.
You can log a user in with either a username or email (if the user has provided one).
Login Object
On a successful log in, the result will hold a basic login object as a table, with the following keys:
| Name | Description | Type |
|---|---|---|
| active | Whether the user is in an active state. | Boolean |
| confirmation | If using email confirmation, will hold sent status. | String or Nil |
| The email address associated with the user, if any. | String or Nil | |
| group | The user group this user belongs to, if any. | String |
| extra | Any extra meta data associated with the user, if any. | Table or Nil |
| oauth | If logged in using an OAuth provider, will contain provider information. | Table or Nil |
| scope | The application scope for this user. | String |
| user_id | The users unique identifier. | String |
| username | The users chosen username. | String |
| validated | Whether the user is active and confirmed (if using email confirmation). | Boolean |
Example
Username login
local function onUserLogin( evt ) if evt.error then print(evt.error) else print(evt.result.user_id) --result is a login object end end core.users.login({ username = "Donna", password = "1234" }, onUserLogin)
Email login
local function onUserLogin( evt ) if evt.error then print(evt.error) else print(evt.result.user_id) --result is a login object end end core.users.login({ email = "tina@home.com", password = "1234" }, onUserLogin)
OAuth Login
If you want to login a user that you have linked with an OAuth provider, you can log them in with different parameters. See addAuthProvider for information on adding a provider.
Example
local function onUserLogin( evt ) if evt.error then print(evt.error) else print(evt.result.user_id) --result is a login object end end core.users.login({ client_id = "fb-id-1234abcd", provider = core.FACEBOOK }, onUserLogin)
On a successful login, you will have a additional key in the user record called oauth with the provider information as a table.
The oauth table will contain the following keys:
client_id(string)access_token(string)access_token_expiry(number)access_token_expired(boolean)provider(string)
The access token expiration is calculated on the server-side. You can check if the access token is expired on login like so:
local onLogIn( evt ) if evt.error then print(evt.error) else local user = evt.result if user.oauth.access_token_expired then --token expired else --token valid end end end core.users.login({ client_id = "fb-id-1234abcd", provider = core.FACEBOOK }, onLogIn)
See also the accessTokenExpired and updateTokenExpiry methods.
Checking State
Using the various "state" keys returned with the login object, you can determine the status of a user and make decisions in your application logic accordingly.
validated
The validated key is a convenience state that allows you to check if the user is in both an "active" and "confirmed" state (if using email confirmation). You can use this value to quickly validate a user for access to your application.
Example
local function onUserLogin( evt ) if evt.error then print(evt.error) else if evt.result.validated then --user is cleared for application usage end end end core.users.login({ username = "Donna", password = "1234" }, onUserLogin)
active
To check if the user is in an "active" state, you can check the active key. If using email confirmation, a user will not be active until the confirmation has been acknowledged.
The active state allows you to mark a user disabled or enabled. You can change the active state of a user using the update method.
Example
local function onUserLogin( evt ) if evt.error then print(evt.error) else if evt.result.active then --user is in an active state end end end core.users.login({ username = "Donna", password = "1234" }, onUserLogin)
Note
While you can log in an "inactive" user, a login event is not stored.
confirmation
When using email confirmation, the login object will contain a confirmation key with the sent status of the confirmation email.
The key will contain a string value of either 'pending' if the email was sent successfully, or 'failed' on error. If the user has already acknowledged the confirmation email this key will be Nil.
Example
local function onUserLogin( evt ) if evt.error then print(evt.error) else local confirm = evt.result.confirmation if confirm and confirm.confirmation == 'pending' then --confirmation email was sent successfully, but not ackowledged end end end core.users.login({ username = "Donna", password = "1234" }, onUserLogin)
Logging Out
The login functionality itself does nothing special as far as setting any type of "token" or similar. Because of this, there is no special "logout" functionality. You as the developer determine when a user is logged out of your application.