add actionUpdateLastLogin

silinternational · Sep 19, 2024 · f65c3c3 · f65c3c3
1 parent 5c05687
commit f65c3c3
Show file tree

Hide file tree

Showing 7 changed files with 53 additions and 21 deletions.
diff --git a/application/common/models/Authentication.php b/application/common/models/Authentication.php
@@ -2,8 +2,6 @@
 
 namespace common\models;
 
-use common\components\Emailer;
-use common\helpers\MySqlDateTime;
 use yii\web\HttpException;
 
 /**
@@ -91,7 +89,7 @@ protected function authenticateByInvite($invite)
     /**
      * Run User validation rules. If all rules pass, $this->authenticatedUser will be a
      * clone of the User, and the User record in the database will be updated with new
-     * login and reminder dates.
+     * reminder dates.
      *
      * @param User $user
      */
@@ -100,15 +98,13 @@ protected function validateUser(User $user)
         if ($user->validate()) {
             $this->authenticatedUser = clone $user;
 
-            $user->last_login_utc = MySqlDateTime::now();
-
             $user->updateProfileReviewDates();
 
             $user->checkAndProcessHIBP();
 
             if (!$user->save()) {
                 \Yii::error([
-                    'action' => 'save last_login_utc and nag dates for user after authentication',
+                    'action' => 'save nag dates for user after authentication',
                     'status' => 'error',
                     'message' => $user->getFirstErrors(),
                 ]);

diff --git a/application/common/models/User.php b/application/common/models/User.php
@@ -4,7 +4,6 @@
 
 use Br33f\Ga4\MeasurementProtocol\Dto\Event\BaseEvent;
 use Closure;
-use common\components\Emailer;
 use common\components\HIBP;
 use common\components\Sheets;
 use common\helpers\MySqlDateTime;
@@ -13,7 +12,6 @@
 use Ramsey\Uuid\Uuid;
 use Sil\EmailService\Client\EmailServiceClientException;
 use Sil\PhpArrayDotNotation\DotNotation;
-use TheIconic\Tracking\GoogleAnalytics\Analytics;
 use Yii;
 use yii\behaviors\AttributeBehavior;
 use yii\data\ActiveDataProvider;
@@ -802,6 +800,13 @@ public function save($runValidation = true, $attributeNames = null)
 
         return parent::save($runValidation, $attributeNames);
     }
+
+    public function updateLastLogin()
+    {
+        $this->last_login_utc = MySqlDateTime::now();
+
+        return $this->save(true, ['last_login_utc']);
+    }
 
     /**
      * @param bool $isNewUser

diff --git a/application/features/authentication.feature b/application/features/authentication.feature
@@ -51,8 +51,7 @@ Feature: Authentication
         | active       | yes                   |
         | locked       | no                    |
       And a record still exists with an employee_id of "123"
-# TODO: check that last_login_utc was updated and current
-#      And none of the data has changed
+# TODO: check that none of the data has changed
 
   Scenario: Attempt to authenticate an unknown user
     Given I provide the following valid data:

diff --git a/application/features/bootstrap/FeatureContext.php b/application/features/bootstrap/FeatureContext.php
@@ -452,9 +452,9 @@ public function shouldBeStoredAsNowUTC($property)
         $minAcceptable = $expectedNow - self::ACCEPTABLE_DELTA_IN_SECONDS;
         $maxAcceptable = $expectedNow + self::ACCEPTABLE_DELTA_IN_SECONDS;
 
-        $storedNow = strtotime($this->userFromDb->$property);
+        $storedNow = $this->userFromDb->$property ? strtotime($this->userFromDb->$property) : 0;
 
-        Assert::range($storedNow, $minAcceptable, $maxAcceptable);
+        Assert::range($storedNow, $minAcceptable, $maxAcceptable, "Stored time $storedNow is not within acceptable range of $minAcceptable to $maxAcceptable");
     }
 
     /**
@@ -490,8 +490,8 @@ public function theOnlyPropertyToChangeShouldBe($property)
             $previous = $this->userFromDbBefore->$name;
             $current = $this->userFromDb->$name;
 
-            $name === $property ? Assert::notEq($current, $previous)
-                                : Assert::eq($current, $previous);
+            $name === $property ? Assert::notEq($current, $previous, "$property is equal. Previous: $previous, Current: $current")
+                                : Assert::eq($current, $previous,"$property is not equal.  Previous: $previous, Current: $current");
         }
     }
 

diff --git a/application/features/user.feature b/application/features/user.feature
@@ -135,6 +135,17 @@ Feature: User
       | hide            | yes                |
       | groups          | mensa,hackers      |
 
+  Scenario: update the last_login_utc of an existing user
+    Given the requester is authorized
+      And I add a user with a employee_id of 123
+      When I request "/user/123/update-last-login" be updated
+      #And a record exists with an employee_id of "123"
+      Then the response status code should be 200
+      And last_login_utc should be stored as now UTC
+      And a record exists with a employee_id of "123"
+      And the only property to change should be last_login_utc
+     #* @Then /^a record exists with (?:a|an) (.*) of "?([^"]*)"?$/
+
   Scenario: Deactivate an existing user
     Given a record does not exist with an employee_id of "123"
       And the requester is authorized
@@ -771,4 +782,4 @@ Feature: User
     Examples:
       | active | isOrIsNot |
       | no     | is NOT    |
-      | yes    | is        |
+      | yes    | is        |
diff --git a/application/frontend/config/main.php b/application/frontend/config/main.php
@@ -45,12 +45,13 @@
                 /*
                  * User routes
                  */
-                'GET  user'                                  => 'user/index',
-                'GET  user/<employeeId:\w+>'                 => 'user/view',
-                'POST user'                                  => 'user/create',
-                'PUT  user/<employeeId:\w+>'                 => 'user/update',
-                'PUT  user/<employeeId:\w+>/password'        => 'user/update-password',
-                'PUT  user/<employeeId:\w+>/password/assess' => 'user/assess-password',
+                'GET  user'                                     => 'user/index',
+                'GET  user/<employeeId:\w+>'                    => 'user/view',
+                'POST user'                                     => 'user/create',
+                'PUT  user/<employeeId:\w+>'                    => 'user/update',
+                'PUT  user/<employeeId:\w+>/update-last-login'  => 'user/update-last-login',
+                'PUT  user/<employeeId:\w+>/password'           => 'user/update-password',
+                'PUT  user/<employeeId:\w+>/password/assess'    => 'user/assess-password',
 
                 /*
                  * Authentication routes

diff --git a/application/frontend/controllers/UserController.php b/application/frontend/controllers/UserController.php
@@ -75,6 +75,26 @@ public function actionUpdate(string $employeeId)
         return $user;
     }
 
+    public function actionUpdateLastLogin(string $employeeId)
+    {
+        $user = User::findOne(condition: ['employee_id' => $employeeId]);
+
+        if ($user === null) {
+            Yii::$app->response->statusCode = 404;
+
+            return null;
+        }
+
+        $user->scenario = User::SCENARIO_UPDATE_USER;
+
+        if (!$user->updateLastLogin()) {
+            Yii::$app->response->statusCode = 500;
+            return null;
+        }
+
+        return $user;
+    }
+
     public function actionUpdatePassword(string $employeeId)
     {
         $user = User::findOne(['employee_id' => $employeeId]);