security-guard/examples/phase5/slim/example_basic.php at main · Maatify/security-guard · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
<?php

/**
 * @copyright   ©2025 Maatify.dev
 * @Library     maatify/security-guard
 * @Project     maatify:security-guard
 * @author      Mohamed Abdulalim (megyptm) <mohamed@maatify.dev>
 * @since       2025-12-11 09:00
 * @see         https://www.maatify.dev Maatify.dev
 * @link        https://github.com/Maatify/security-guard view Project on GitHub
 * @note        Distributed in the hope that it will be useful - WITHOUT WARRANTY.
 */

declare(strict_types=1);

/**
 * Phase 5 – Slim Example #1
 * BASIC LOGIN FLOW (STRICT)
 *
 * Matches the Native equivalent but implemented using Slim's DI Container.
 *
 * Demonstrates:
 *  - Failure attempts
 *  - Success → reset counter
 *  - Dynamic resetAfter based on config
 *  - handleAttempt() Phase 5 high-level API
 */

use Maatify\SecurityGuard\DTO\LoginAttemptDTO;
use Maatify\SecurityGuard\Service\SecurityGuardService;

// Load Slim App + DI wiring
$app = require __DIR__ . '/bootstrap.php';

/** @var SecurityGuardService $guard */
$guard = $app->getContainer()->get(SecurityGuardService::class);

// Retrieve Phase 5 config
$config = $guard->getConfig();
$window = $config->windowSeconds();

echo "\n=== Slim Example #1 — BASIC LOGIN ===\n\n";

$ip = '127.0.0.50';
$subject = 'basic_login';

// ------------------------------------------------------
// ❌ Failure #1
// ------------------------------------------------------
$attempt1 = LoginAttemptDTO::now(
    ip        : $ip,
    subject   : $subject,
    resetAfter: $window,
    userAgent : 'CLI'
);

$count1 = $guard->handleAttempt($attempt1, false);
echo "Failure #1 → count = {$count1}\n";

// ------------------------------------------------------
// ❌ Failure #2
// ------------------------------------------------------
$attempt2 = LoginAttemptDTO::now(
    ip        : $ip,
    subject   : $subject,
    resetAfter: $window,
    userAgent : 'CLI'
);

$count2 = $guard->handleAttempt($attempt2, false);
echo "Failure #2 → count = {$count2}\n";

// ------------------------------------------------------
// ✔ SUCCESS → reset the attempt counter
// ------------------------------------------------------
$attemptSuccess = LoginAttemptDTO::now(
    ip        : $ip,
    subject   : $subject,
    resetAfter: $window,
    userAgent : 'CLI'
);

$guard->handleAttempt($attemptSuccess, true);
echo "✔ Success → counters reset.\n";

// ------------------------------------------------------
// ❌ Failure after reset → should return count = 1
// ------------------------------------------------------
$attempt3 = LoginAttemptDTO::now(
    ip        : $ip,
    subject   : $subject,
    resetAfter: $window
);

$count3 = $guard->handleAttempt($attempt3, false);
echo "Failure after reset → count = {$count3}\n\n";