Arsse/lib/User.php

<?php
/** @license MIT
 * Copyright 2017 J. King, Dustin Wilson et al.
 * See LICENSE and AUTHORS files for details */

declare(strict_types=1);

namespace JKingWeb\Arsse;

use JKingWeb\Arsse\Misc\ValueInfo as V;
use JKingWeb\Arsse\User\ExceptionConflict as Conflict;
use PasswordGenerator\Generator as PassGen;

class User {
    public const DRIVER_NAMES = [
        'internal' => \JKingWeb\Arsse\User\Internal\Driver::class,
    ];
    public const PROPERTIES = [
        'admin'            => V::T_BOOL,
        'lang'             => V::T_STRING,
        'tz'               => V::T_STRING,
        'root_folder_name' => V::T_STRING,
        'sort_asc'         => V::T_BOOL,
        'theme'            => V::T_STRING,
        'page_size'        => V::T_INT, // greater than zero
        'shortcuts'        => V::T_BOOL,
        'gestures'         => V::T_BOOL,
        'reading_time'     => V::T_BOOL,
        'stylesheet'       => V::T_STRING,
    ];
    public const PROPERTIES_LARGE = ["stylesheet"];

    public $id = null;

    /** @var User\Driver */
    protected $u;

    public function __construct(\JKingWeb\Arsse\User\Driver $driver = null) {
        $this->u = $driver ?? new Arsse::$conf->userDriver;
    }

    public function __toString() {
        return (string) $this->id;
    }

    public function begin(): Db\Transaction {
        /* TODO: A proper implementation of this would return a meta-transaction
           object which would contain both a user-manager transaction (when
           applicable) and a database transaction, and commit or roll back both
           as the situation calls.

           In theory, an external user driver would probably have to implement its
           own approximation of atomic transactions and rollback. In practice the
           only driver is the internal one, which is always backed by an ACID
           database; the added complexity is thus being deferred until such time
           as it is actually needed for a concrete implementation.
        */
        return Arsse::$db->begin();
    }

    public function auth(string $user, string $password): bool {
        $prevUser = $this->id;
        $this->id = $user;
        if (Arsse::$conf->userPreAuth) {
            $out = true;
        } else {
            $out = $this->u->auth($user, $password);
        }
        // if authentication was successful and we don't have the user in the internal database, add it
        // users must be in the internal database to preserve referential integrity
        if ($out && !Arsse::$db->userExists($user)) {
            Arsse::$db->userAdd($user, $password);
        }
        $this->id = $prevUser;
        return $out;
    }

    public function list(): array {
        return $this->u->userList();
    }

    public function lookup(int $num): string {
        // the user number is always stored in the internal database, so the user driver is not called here
        return Arsse::$db->userLookup($num);
    }

    public function add(string $user, ?string $password = null): string {
        // ensure the user name does not contain any U+003A COLON or control characters, as
        // this is incompatible with HTTP Basic authentication
        if (preg_match("/[\x{00}-\x{1F}\x{7F}:]/", $user, $m)) {
            $c = ord($m[0]);
            throw new User\ExceptionInput("invalidUsername", "U+".str_pad((string) $c, 4, "0", \STR_PAD_LEFT)." ".\IntlChar::charName($c, \IntlChar::EXTENDED_CHAR_NAME));
        }
        try {
            $out = $this->u->userAdd($user, $password) ?? $this->u->userAdd($user, $this->generatePassword());
        } catch (Conflict $e) {
            if (!Arsse::$db->userExists($user)) {
                Arsse::$db->userAdd($user, null);
            }
            throw $e;
        }
        // synchronize the internal database
        if (!Arsse::$db->userExists($user)) {
            Arsse::$db->userAdd($user, $out);
        }
        return $out;
    }

    public function rename(string $user, string $newName): bool {
        // ensure the new user name does not contain any U+003A COLON or
        // control characters, as this is incompatible with HTTP Basic authentication
        if (preg_match("/[\x{00}-\x{1F}\x{7F}:]/", $newName, $m)) {
            $c = ord($m[0]);
            throw new User\ExceptionInput("invalidUsername", "U+".str_pad((string) $c, 4, "0", \STR_PAD_LEFT)." ".\IntlChar::charName($c, \IntlChar::EXTENDED_CHAR_NAME));
        }
        if ($this->u->userRename($user, $newName)) {
            $tr = Arsse::$db->begin();
            if (!Arsse::$db->userExists($user)) {
                Arsse::$db->userAdd($newName, null);
            } else {
                Arsse::$db->userRename($user, $newName);
                // invalidate any sessions and Fever passwords
                Arsse::$db->sessionDestroy($newName);
                Arsse::$db->tokenRevoke($newName, "fever.login");
            }
            $tr->commit();
            return true;
        }
        return false;
    }

    public function remove(string $user): bool {
        try {
            $out = $this->u->userRemove($user);
        } catch (Conflict $e) {
            if (Arsse::$db->userExists($user)) {
                Arsse::$db->userRemove($user);
            }
            throw $e;
        }
        if (Arsse::$db->userExists($user)) {
            // if the user was removed and we (still) have it in the internal database, remove it there
            Arsse::$db->userRemove($user);
        }
        return $out;
    }

    public function passwordSet(string $user, ?string $newPassword, $oldPassword = null): string {
        $out = $this->u->userPasswordSet($user, $newPassword, $oldPassword) ?? $this->u->userPasswordSet($user, $this->generatePassword(), $oldPassword);
        if (Arsse::$db->userExists($user)) {
            // if the password change was successful and the user exists, set the internal password to the same value
            Arsse::$db->userPasswordSet($user, $out);
            // also invalidate any current sessions for the user
            Arsse::$db->sessionDestroy($user);
        } else {
            // if the user does not exist, add it with the new password
            Arsse::$db->userAdd($user, $out);
        }
        return $out;
    }

    public function passwordUnset(string $user, $oldPassword = null): bool {
        $out = $this->u->userPasswordUnset($user, $oldPassword);
        if (Arsse::$db->userExists($user)) {
            // if the password change was successful and the user exists, set the internal password to the same value
            Arsse::$db->userPasswordSet($user, null);
            // also invalidate any current sessions for the user
            Arsse::$db->sessionDestroy($user);
        }
        return $out;
    }

    public function generatePassword(): string {
        return (new PassGen)->length(Arsse::$conf->userTempPasswordLength)->get();
    }

    public function propertiesGet(string $user, bool $includeLarge = true): array {
        $extra = $this->u->userPropertiesGet($user, $includeLarge);
        // synchronize the internal database
        if (!Arsse::$db->userExists($user)) {
            Arsse::$db->userAdd($user, null);
            Arsse::$db->userPropertiesSet($user, $extra);
        }
        // retrieve from the database to get at least the user number, and anything else the driver does not provide
        $meta = Arsse::$db->userPropertiesGet($user, $includeLarge);
        // combine all the data
        $out = ['num' => $meta['num']];
        foreach (self::PROPERTIES as $k => $t) {
            if (array_key_exists($k, $extra)) {
                $v = $extra[$k];
            } elseif (array_key_exists($k, $meta)) {
                $v = $meta[$k];
            } else {
                $v = null;
            }
            $out[$k] = V::normalize($v, $t | V::M_NULL);
        }
        return $out;
    }

    public function propertiesSet(string $user, array $data): array {
        $in = [];
        foreach (self::PROPERTIES as $k => $t) {
            if (array_key_exists($k, $data)) {
                try {
                    $in[$k] = V::normalize($data[$k], $t | V::M_NULL | V::M_STRICT);
                } catch (\JKingWeb\Arsse\ExceptionType $e) {
                    throw new User\ExceptionInput("invalidValue", ['field' => $k, 'type' => $t], $e);
                }
            }
        }
        if (isset($in['tz']) && !@timezone_open($in['tz'])) {
            throw new User\ExceptionInput("invalidTimezone", ['field' => "tz", 'value' => $in['tz']]);
        } elseif (isset($in['page_size']) && $in['page_size'] < 1) {
            throw new User\ExceptionInput("invalidNonZeroInteger", ['field' => "page_size"]);
        }
        $out = $this->u->userPropertiesSet($user, $in);
        // synchronize the internal database
        if (!Arsse::$db->userExists($user)) {
            Arsse::$db->userAdd($user, null);
        }
        Arsse::$db->userPropertiesSet($user, $out);
        return $out;
    }
}
Functioning (but still incomplete) user management 8 years ago			`<?php`
Added per-file legal boilerplate Includes PHPDoc license tag in the file-level block with accompanying copyright notice. Also added an AUTHORS file on the off chance of outside contributions 7 years ago			`/** @license MIT`
			`* Copyright 2017 J. King, Dustin Wilson et al.`
			`* See LICENSE and AUTHORS files for details */`

Functioning (but still incomplete) user management 8 years ago			`declare(strict_types=1);`
Apply new rules 3 years ago
Changed "NewsSync" to "Arsse" 7 years ago			`namespace JKingWeb\Arsse;`
Functioning (but still incomplete) user management 8 years ago
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`use JKingWeb\Arsse\Misc\ValueInfo as V;`
More work on user management 4 years ago			`use JKingWeb\Arsse\User\ExceptionConflict as Conflict;`
Move password generation to the User class This allows user drivers which wish to generate their own passwords to do so, and those which do not to defer to the built-in generator 6 years ago			`use PasswordGenerator\Generator as PassGen;`
Remove the distinction between internal and external user functionality 6 years ago
Functioning (but still incomplete) user management 8 years ago			`class User {`
Add class constant visibility 4 years ago			`public const DRIVER_NAMES = [`
Validate configuration parameters on import, and other changes - Each parameter is checked for type and normalized - Interval strings are converted to DateInterval objects - Timeouts can be specified as interval strings - Most intervals can be null to signify infinity - Driver classes are checked that they implement the correct interface - Short driver names may be used, and are used by default - Helpful errors messages are printed in case of erroneous configuration Exporting is currently broken; this will be fixed in an upcoming commit 5 years ago			`'internal' => \JKingWeb\Arsse\User\Internal\Driver::class,`
			`];`
WIP redesign of user properties 3 years ago			`public const PROPERTIES = [`
Query Miniflux categories 3 years ago			`'admin' => V::T_BOOL,`
			`'lang' => V::T_STRING,`
			`'tz' => V::T_STRING,`
Implement CLI for user metadata 3 years ago			`'root_folder_name' => V::T_STRING,`
Query Miniflux categories 3 years ago			`'sort_asc' => V::T_BOOL,`
			`'theme' => V::T_STRING,`
			`'page_size' => V::T_INT, // greater than zero`
			`'shortcuts' => V::T_BOOL,`
			`'gestures' => V::T_BOOL,`
			`'reading_time' => V::T_BOOL,`
Implement CLI for user metadata 3 years ago			`'stylesheet' => V::T_STRING,`
WIP redesign of user properties 3 years ago			`];`
Adjust database portion of user property manager 3 years ago			`public const PROPERTIES_LARGE = ["stylesheet"];`
Validate configuration parameters on import, and other changes - Each parameter is checked for type and normalized - Interval strings are converted to DateInterval objects - Timeouts can be specified as interval strings - Most intervals can be null to signify infinity - Driver classes are checked that they implement the correct interface - Short driver names may be used, and are used by default - Helpful errors messages are printed in case of erroneous configuration Exporting is currently broken; this will be fixed in an upcoming commit 5 years ago
Passed code through linter 7 years ago			`public $id = null;`
Converted all hard tabs to soft tabs 7 years ago
Style fixes 4 years ago			`/** @var User\Driver */`
Converted all hard tabs to soft tabs 7 years ago			`protected $u;`
Fix whitespace Also fixed my editor so tabs won't happen again! 7 years ago
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`public function __construct(\JKingWeb\Arsse\User\Driver $driver = null) {`
			`$this->u = $driver ?? new Arsse::$conf->userDriver;`
Converted all hard tabs to soft tabs 7 years ago			`}`

			`public function __toString() {`
			`return (string) $this->id;`
			`}`

Add backend functionality to rename users 3 years ago			`public function begin(): Db\Transaction {`
			`/* TODO: A proper implementation of this would return a meta-transaction`
Style fixes 3 years ago			`object which would contain both a user-manager transaction (when`
Add backend functionality to rename users 3 years ago			`applicable) and a database transaction, and commit or roll back both`
Style fixes 3 years ago			`as the situation calls.`
Add backend functionality to rename users 3 years ago
			`In theory, an external user driver would probably have to implement its`
Style fixes 3 years ago			`own approximation of atomic transactions and rollback. In practice the`
Add backend functionality to rename users 3 years ago			`only driver is the internal one, which is always backed by an ACID`
			`database; the added complexity is thus being deferred until such time`
			`as it is actually needed for a concrete implementation.`
			`*/`
			`return Arsse::$db->begin();`
			`}`

Strip out unused user management functionality Tests have been removed as well; new tests are forthcoming 6 years ago			`public function auth(string $user, string $password): bool {`
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`$prevUser = $this->id;`
Strip out unused user management functionality Tests have been removed as well; new tests are forthcoming 6 years ago			`$this->id = $user;`
Remove the distinction between internal and external user functionality 6 years ago			`if (Arsse::$conf->userPreAuth) {`
			`$out = true;`
			`} else {`
			`$out = $this->u->auth($user, $password);`
			`}`
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`// if authentication was successful and we don't have the user in the internal database, add it`
			`// users must be in the internal database to preserve referential integrity`
Remove the distinction between internal and external user functionality 6 years ago			`if ($out && !Arsse::$db->userExists($user)) {`
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`Arsse::$db->userAdd($user, $password);`
More code coverage accommodation 7 years ago			`}`
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`$this->id = $prevUser;`
Strip out unused user management functionality Tests have been removed as well; new tests are forthcoming 6 years ago			`return $out;`
Converted all hard tabs to soft tabs 7 years ago			`}`

Strip out unused user management functionality Tests have been removed as well; new tests are forthcoming 6 years ago			`public function list(): array {`
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`return $this->u->userList();`
Converted all hard tabs to soft tabs 7 years ago			`}`

More Miniflux user tests Also added user lookup functionality 3 years ago			`public function lookup(int $num): string {`
			`// the user number is always stored in the internal database, so the user driver is not called here`
			`return Arsse::$db->userLookup($num);`
			`}`

Differentiate between duplicate/missing users and other failure modes 4 years ago			`public function add(string $user, ?string $password = null): string {`
Forbid more user names - Control characters are now forbidden - Controls and colons are now also forbidden when renaming 3 years ago			`// ensure the user name does not contain any U+003A COLON or control characters, as`
More work on user management 4 years ago			`// this is incompatible with HTTP Basic authentication`
Forbid more user names - Control characters are now forbidden - Controls and colons are now also forbidden when renaming 3 years ago			`if (preg_match("/[\x{00}-\x{1F}\x{7F}:]/", $user, $m)) {`
			`$c = ord($m[0]);`
			`throw new User\ExceptionInput("invalidUsername", "U+".str_pad((string) $c, 4, "0", \STR_PAD_LEFT)." ".\IntlChar::charName($c, \IntlChar::EXTENDED_CHAR_NAME));`
More work on user management 4 years ago			`}`
Differentiate between duplicate/missing users and other failure modes 4 years ago			`try {`
			`$out = $this->u->userAdd($user, $password) ?? $this->u->userAdd($user, $this->generatePassword());`
More work on user management 4 years ago			`} catch (Conflict $e) {`
Differentiate between duplicate/missing users and other failure modes 4 years ago			`if (!Arsse::$db->userExists($user)) {`
More work on user management 4 years ago			`Arsse::$db->userAdd($user, null);`
Differentiate between duplicate/missing users and other failure modes 4 years ago			`}`
More work on user management 4 years ago			`throw $e;`
			`}`
			`// synchronize the internal database`
			`if (!Arsse::$db->userExists($user)) {`
			`Arsse::$db->userAdd($user, $out);`
Refinements to user manager A greater effort is made to keep the internal database synchronized 4 years ago			`}`
			`return $out;`
Converted all hard tabs to soft tabs 7 years ago			`}`

Add backend functionality to rename users 3 years ago			`public function rename(string $user, string $newName): bool {`
Style fixes 3 years ago			`// ensure the new user name does not contain any U+003A COLON or`
Forbid more user names - Control characters are now forbidden - Controls and colons are now also forbidden when renaming 3 years ago			`// control characters, as this is incompatible with HTTP Basic authentication`
			`if (preg_match("/[\x{00}-\x{1F}\x{7F}:]/", $newName, $m)) {`
			`$c = ord($m[0]);`
			`throw new User\ExceptionInput("invalidUsername", "U+".str_pad((string) $c, 4, "0", \STR_PAD_LEFT)." ".\IntlChar::charName($c, \IntlChar::EXTENDED_CHAR_NAME));`
			`}`
Add backend functionality to rename users 3 years ago			`if ($this->u->userRename($user, $newName)) {`
Invalidate sessions and Fever passwords when renaming users 3 years ago			`$tr = Arsse::$db->begin();`
Add backend functionality to rename users 3 years ago			`if (!Arsse::$db->userExists($user)) {`
			`Arsse::$db->userAdd($newName, null);`
			`} else {`
Invalidate sessions and Fever passwords when renaming users 3 years ago			`Arsse::$db->userRename($user, $newName);`
			`// invalidate any sessions and Fever passwords`
			`Arsse::$db->sessionDestroy($newName);`
			`Arsse::$db->tokenRevoke($newName, "fever.login");`
Add backend functionality to rename users 3 years ago			`}`
Invalidate sessions and Fever passwords when renaming users 3 years ago			`$tr->commit();`
			`return true;`
Add backend functionality to rename users 3 years ago			`}`
			`return false;`
			`}`

Converted all hard tabs to soft tabs 7 years ago			`public function remove(string $user): bool {`
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`try {`
More work on user management 4 years ago			`$out = $this->u->userRemove($user);`
			`} catch (Conflict $e) {`
More simplification Authentication is now used as the primary point of synchronization between the internal database and any external database 6 years ago			`if (Arsse::$db->userExists($user)) {`
			`Arsse::$db->userRemove($user);`
			`}`
More work on user management 4 years ago			`throw $e;`
Converted all hard tabs to soft tabs 7 years ago			`}`
More work on user management 4 years ago			`if (Arsse::$db->userExists($user)) {`
			`// if the user was removed and we (still) have it in the internal database, remove it there`
			`Arsse::$db->userRemove($user);`
			`}`
			`return $out;`
Converted all hard tabs to soft tabs 7 years ago			`}`

Differentiate between duplicate/missing users and other failure modes 4 years ago			`public function passwordSet(string $user, ?string $newPassword, $oldPassword = null): string {`
Move password generation to the User class This allows user drivers which wish to generate their own passwords to do so, and those which do not to defer to the built-in generator 6 years ago			`$out = $this->u->userPasswordSet($user, $newPassword, $oldPassword) ?? $this->u->userPasswordSet($user, $this->generatePassword(), $oldPassword);`
			`if (Arsse::$db->userExists($user)) {`
Remove the distinction between internal and external user functionality 6 years ago			`// if the password change was successful and the user exists, set the internal password to the same value`
			`Arsse::$db->userPasswordSet($user, $out);`
Invalidate sessions on password change; closes #170 5 years ago			`// also invalidate any current sessions for the user`
			`Arsse::$db->sessionDestroy($user);`
Refinements to user manager A greater effort is made to keep the internal database synchronized 4 years ago			`} else {`
			`// if the user does not exist, add it with the new password`
			`Arsse::$db->userAdd($user, $out);`
Remove the distinction between internal and external user functionality 6 years ago			`}`
			`return $out;`
Converted all hard tabs to soft tabs 7 years ago			`}`
Move password generation to the User class This allows user drivers which wish to generate their own passwords to do so, and those which do not to defer to the built-in generator 6 years ago
Add means of unsetting a password in the backend 5 years ago			`public function passwordUnset(string $user, $oldPassword = null): bool {`
			`$out = $this->u->userPasswordUnset($user, $oldPassword);`
			`if (Arsse::$db->userExists($user)) {`
			`// if the password change was successful and the user exists, set the internal password to the same value`
			`Arsse::$db->userPasswordSet($user, null);`
Invalidate sessions on password change; closes #170 5 years ago			`// also invalidate any current sessions for the user`
			`Arsse::$db->sessionDestroy($user);`
Add means of unsetting a password in the backend 5 years ago			`}`
			`return $out;`
			`}`

Basic Fever skeleton Authentication should work, but not tests have been written yet 5 years ago			`public function generatePassword(): string {`
Move password generation to the User class This allows user drivers which wish to generate their own passwords to do so, and those which do not to defer to the built-in generator 6 years ago			`return (new PassGen)->length(Arsse::$conf->userTempPasswordLength)->get();`
			`}`
More user tests 4 years ago
WIP redesign of user properties 3 years ago			`public function propertiesGet(string $user, bool $includeLarge = true): array {`
			`$extra = $this->u->userPropertiesGet($user, $includeLarge);`
Refinements to user manager A greater effort is made to keep the internal database synchronized 4 years ago			`// synchronize the internal database`
			`if (!Arsse::$db->userExists($user)) {`
More user tests 4 years ago			`Arsse::$db->userAdd($user, null);`
			`Arsse::$db->userPropertiesSet($user, $extra);`
Refinements to user manager A greater effort is made to keep the internal database synchronized 4 years ago			`}`
More user tests 4 years ago			`// retrieve from the database to get at least the user number, and anything else the driver does not provide`
Fix user manager and tests 3 years ago			`$meta = Arsse::$db->userPropertiesGet($user, $includeLarge);`
WIP redesign of user properties 3 years ago			`// combine all the data`
			`$out = ['num' => $meta['num']];`
			`foreach (self::PROPERTIES as $k => $t) {`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`if (array_key_exists($k, $extra)) {`
WIP redesign of user properties 3 years ago			`$v = $extra[$k];`
			`} elseif (array_key_exists($k, $meta)) {`
			`$v = $meta[$k];`
			`} else {`
			`$v = null;`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`}`
WIP redesign of user properties 3 years ago			`$out[$k] = V::normalize($v, $t \| V::M_NULL);`
More user tests 4 years ago			`}`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`return $out;`
			`}`
More user tests 4 years ago
Last bits of the new user metadata handling 4 years ago			`public function propertiesSet(string $user, array $data): array {`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`$in = [];`
WIP redesign of user properties 3 years ago			`foreach (self::PROPERTIES as $k => $t) {`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`if (array_key_exists($k, $data)) {`
Fix user manager and tests 3 years ago			`try {`
			`$in[$k] = V::normalize($data[$k], $t \| V::M_NULL \| V::M_STRICT);`
			`} catch (\JKingWeb\Arsse\ExceptionType $e) {`
			`throw new User\ExceptionInput("invalidValue", ['field' => $k, 'type' => $t], $e);`
			`}`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`}`
			`}`
WIP redesign of user properties 3 years ago			`if (isset($in['tz']) && !@timezone_open($in['tz'])) {`
			`throw new User\ExceptionInput("invalidTimezone", ['field' => "tz", 'value' => $in['tz']]);`
			`} elseif (isset($in['page_size']) && $in['page_size'] < 1) {`
			`throw new User\ExceptionInput("invalidNonZeroInteger", ['field' => "page_size"]);`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`}`
			`$out = $this->u->userPropertiesSet($user, $in);`
			`// synchronize the internal database`
Refinements to user manager A greater effort is made to keep the internal database synchronized 4 years ago			`if (!Arsse::$db->userExists($user)) {`
Last set of tests for user management. Fixes #180 4 years ago			`Arsse::$db->userAdd($user, null);`
Refinements to user manager A greater effort is made to keep the internal database synchronized 4 years ago			`}`
Last bits of the new user metadata handling 4 years ago			`Arsse::$db->userPropertiesSet($user, $out);`
Prototype changes to user management The driver itself has not been expnaded; more is probably required to ensure metadata is kept in sync and users created when the internal database does not list a user an external database claims to have 4 years ago			`return $out;`
			`}`
Passed code through linter 7 years ago			`}`