core/services/Auth.php

<?php
declare(strict_types=1);

namespace Core\Services;

class Auth
{
    private const SESSION_KEY = 'admin_id';
    private const SESSION_ROLE_KEY = 'admin_role';
    private const SESSION_NAME_KEY = 'admin_name';

    public static function init(): void
    {
        if (session_status() !== PHP_SESSION_ACTIVE) {
            session_start();
        }
    }

    public static function check(): bool
    {
        self::init();
        return isset($_SESSION[self::SESSION_KEY]);
    }

    public static function id(): int
    {
        self::init();
        return (int)($_SESSION[self::SESSION_KEY] ?? 0);
    }

    public static function login(int $adminId, string $role = 'admin', string $name = ''): void
    {
        self::init();
        session_regenerate_id(true);
        $_SESSION[self::SESSION_KEY] = $adminId;
        $_SESSION[self::SESSION_ROLE_KEY] = $role;
        if ($name !== '') {
            $_SESSION[self::SESSION_NAME_KEY] = $name;
        }
    }

    public static function logout(): void
    {
        self::init();
        $_SESSION = [];
        if (ini_get('session.use_cookies')) {
            $params = session_get_cookie_params();
            setcookie(session_name(), '', time() - 42000, $params['path'], $params['domain'], (bool)$params['secure'], (bool)$params['httponly']);
        }
        session_destroy();
        session_start();
        session_regenerate_id(true);
    }

    public static function role(): string
    {
        self::init();
        return (string)($_SESSION[self::SESSION_ROLE_KEY] ?? 'admin');
    }

    public static function name(): string
    {
        self::init();
        return (string)($_SESSION[self::SESSION_NAME_KEY] ?? 'Admin');
    }

    public static function hasRole(array $roles): bool
    {
        return in_array(self::role(), $roles, true);
    }

    public static function can(string $permission): bool
    {
        if (!self::check()) {
            return false;
        }
        return Permissions::can(self::role(), $permission);
    }
}
Initial dev export (exclude uploads/runtime) 2026-03-04 20:46:11 +00:00			`<?php`
			`declare(strict_types=1);`

			`namespace Core\Services;`

			`class Auth`
			`{`
			`private const SESSION_KEY = 'admin_id';`
			`private const SESSION_ROLE_KEY = 'admin_role';`
			`private const SESSION_NAME_KEY = 'admin_name';`

			`public static function init(): void`
			`{`
			`if (session_status() !== PHP_SESSION_ACTIVE) {`
Release v1.5.1 2026-04-01 14:12:17 +00:00			`session_start();`
Initial dev export (exclude uploads/runtime) 2026-03-04 20:46:11 +00:00			`}`
			`}`

			`public static function check(): bool`
			`{`
			`self::init();`
			`return isset($_SESSION[self::SESSION_KEY]);`
			`}`

			`public static function id(): int`
			`{`
			`self::init();`
			`return (int)($_SESSION[self::SESSION_KEY] ?? 0);`
			`}`

			`public static function login(int $adminId, string $role = 'admin', string $name = ''): void`
			`{`
			`self::init();`
			`session_regenerate_id(true);`
			`$_SESSION[self::SESSION_KEY] = $adminId;`
			`$_SESSION[self::SESSION_ROLE_KEY] = $role;`
			`if ($name !== '') {`
			`$_SESSION[self::SESSION_NAME_KEY] = $name;`
			`}`
			`}`

			`public static function logout(): void`
			`{`
			`self::init();`
Release v1.5.1 2026-04-01 14:12:17 +00:00			`$_SESSION = [];`
			`if (ini_get('session.use_cookies')) {`
			`$params = session_get_cookie_params();`
			`setcookie(session_name(), '', time() - 42000, $params['path'], $params['domain'], (bool)$params['secure'], (bool)$params['httponly']);`
			`}`
			`session_destroy();`
			`session_start();`
			`session_regenerate_id(true);`
Initial dev export (exclude uploads/runtime) 2026-03-04 20:46:11 +00:00			`}`

			`public static function role(): string`
			`{`
			`self::init();`
			`return (string)($_SESSION[self::SESSION_ROLE_KEY] ?? 'admin');`
			`}`

			`public static function name(): string`
			`{`
			`self::init();`
			`return (string)($_SESSION[self::SESSION_NAME_KEY] ?? 'Admin');`
			`}`

			`public static function hasRole(array $roles): bool`
			`{`
			`return in_array(self::role(), $roles, true);`
			`}`

			`public static function can(string $permission): bool`
			`{`
			`if (!self::check()) {`
			`return false;`
			`}`
			`return Permissions::can(self::role(), $permission);`
			`}`
			`}`