PHP download

Download the PHP package strykeslammerii/selftermination-sprinkle without Composer

On this page you can find all versions of the php package strykeslammerii/selftermination-sprinkle. It is possible to download/install these versions without Composer. Possible dependencies are resolved automatically.

Table of contents
Download strykeslammerii/selftermination-sprinkle
More information about strykeslammerii/selftermination-sprinkle
Files in strykeslammerii/selftermination-sprinkle

Vendor strykeslammerii
Package selftermination-sprinkle
Short Description A UserFrosting sprinkle providing 1) redaction of basic user personal data during account deletion 2) a button to delete user's own account
License unlicense
Homepage https://github.com/StrykeSlammerII/UF-sprinkle-selftermination

Keywords User management Account management redaction

FAQ

After the download, you have to make one include require_once('vendor/autoload.php');. After that you have to import the classes with use statements.

Example:

If you use only one package a project is not needed. But if you use more then one package, without a project it is not possible to import the classes with use statements.

In general, it is recommended to use always a project to download your libraries. In an application normally there is more than one library needed.

Some PHP packages are not free to download and because of that hosted in private repositories. In this case some credentials are needed to access such packages. Please use the auth.json textarea to insert credentials, if a package is coming from a private repository. You can look here for more information.

Some hosting areas are not accessible by a terminal or SSH. Then it is not possible to use Composer.
To use Composer is sometimes complicated. Especially for beginners.
Composer needs much resources. Sometimes they are not available on a simple webspace.
If you are using private repositories you don't need to share your credentials. You can set up everything on our site and then you provide a simple download link to your team member.
Simplify your Composer build process. Use our own command line tool to download the vendor folder as binary. This makes your build process faster and you don't need to expose your credentials for private repositories.

Please rate this library. Is it a good library?

Example code of strykeslammerii/selftermination-sprinkle

Informations about the package selftermination-sprinkle

UF-sprinkle-selftermination

This UserFrosting sprinkle does two things: 1) Redacts basic user personal data when deleting an account 2) Provides a button for each user to delete their own account.

Install directions

Include `SelfTermination::class` in your Sprinkle Recipe:

Include `strykeslammerii/selftermination-sprinkle` in `composer.json`

Include `strykeslammerii/selftermination-sprinkle` in `package.json`

Include `'selftermination-sprinkle/webpack.entries'` in `webpack.config.js`

Install `SelfTermination\Sprinkle\Database\Seeds\SelfTerminationPermission` seed

First, in Bakery

Then, add to appropriate roles through UF's user management UI

In more detail

Redacts Personal Data

Base UF only soft-deletes users. This allows for users to be un-deleted, and leaves their personal data in the user database.

This sprinkle overrides the delete('/u/{user_name}') route to redact a user's email (to "redacted".$user->id."@test.com"), username (to "redacted".$user->id), and first and last name (both to "redacted") in the user database.
- The redacted email and username retain the user id number, in case of questions about the deletion. Discussion about this lack of redaction would be appreciated.
The hashed user password is also changed to a two-character entry using bin2hex(random_bytes(1), which should be too short to match any password the application checks for login.
The activity log is noted with the redacted username; either "redacted15 self-deleted" or "User Admin_Alice deleted the account for redacted15."
- Existing activity logs are NOT redacted. They are currently stored completely as strings with the user data embedded, rather than referencing the users they refer to.
- A search-and-replace or complete refactoring of the activity log system were both beyond the scope of this sprinkle. Pull requests which address this point are welcome.
- Users of this sprinkle should be aware of how user personal data is stored elsewhere in their systems. This sprinkle can be extended to fit other use cases, but does not on its own search out and redact personal data that may be generated or stored by other sprinkles.
  - Specifically, we mention above two ways that personal data can be stored: "references" and "embedded". A sprinkle generating its own embedded personal data will need to do extra work to redact that.
  - If user content is allowed, it is very common for users to mention each other by name. @mentions may already be pulled out and used as a reference to a user, but nicknames or shortened forms would be treated as any other text. Using myself as an example: @StrykeSlammerII is obviously me. Even a search-and-redact would find those easily. Strike, however, would not be a valid @mention and is a "normal" word that should not be redacted throughout all user comments!
A soft delete is then performed as usual. However, un-deletion cannot revert the redactions, and a new password would need to be set before the "restored" account could be used again.
It is theoretically possible than a deleted account could still be stolen by a third party: they would need access to either an admin user or the User database. If this sprinkle is used in an environment where users can interact, it is important to be certain to redact connections and interactions between users... and to consider using hard deletes instead of soft ones.

Self-deletion

This button requires the Self-termination permission (included) to be added to the user's role (which this sprinkle does NOT attempt to do!) The button is located at the bottom of the "My account" page. It looks less like a button and more like a link--but it just brings up an "Are you sure?" modal with proper yes/no buttons, similar to the way the Admin "delete user" modal works.

Moving forward

This being my second sprinkle ever, I'm sure there are plenty of bad practices and inefficiencies. It doesn't even have any unit or integration tests! Manual testing made me think basic functionality works. I'm using it in my main project, so if I find issues I will patch them, but I don't have plans to work on this sprinkle just to work on it.

Pull requests are appreciated, though other projects may prefer to fork and extend this if additional redactions need to be made.

Localization

This is mostly a personal project and I'm monolingual... so any messaging I've added will not be localized. Again, pull requests are appreciated!

All versions of selftermination-sprinkle with dependencies

PHP Build Version

Package Version

Version v0.3.0-p4 Release 05. May 2024
create-project require 0 people choosed require and
0 people choosed create-project.

Download

Download latest version of selftermination-sprinkle from vendor strykeslammerii

Requires php Version ^8.1
ext-gd Version *
userfrosting/framework Version ~5.1.0
userfrosting/sprinkle-core Version ~5.1.0
userfrosting/sprinkle-account Version ~5.1.0
userfrosting/sprinkle-admin Version ~5.1.0
userfrosting/theme-adminlte Version ~5.1.0

Composer command for our command line client (download client) This client runs in each environment. You don't need a specific PHP version etc. The first 20 API calls are free. Standard composer command

The package strykeslammerii/selftermination-sprinkle contains the following files

Loading the files please wait ....

Download the PHP package strykeslammerii/selftermination-sprinkle without Composer

FAQ

How can I use the PHP package after the download?

Do I need to create a project on this site?

When is it necessary to insert some auth.json content?

What is the advantage to use this site for my Composer projects?