
I have a login procedure built on the CakePHP 2.7 Framework. I use the Auth component to authenticate but for added security I am using tokens as well. When I go to the login page and attempt to login, all it does is submit the form but nothing else happens. The page just essentially reloads, no redirect, just nothing. I did some digging and found out that it might not be getting past the first conditional in the login function in the users controller. I am really confused why this is happening. I have checked all the error logs and nothing appears nor do any error messages appear on the screen. Below I have included the UsersController, AppController, UserModel, and Tour Class(used for tokens). Any help would be greatly appreciated!



class UsersController extends AppController {

  var $name = 'Users';
  var $uses = array('User', 'Team');

  function beforeFilter() {
    $this->Auth->allow('check_login', 'index', 'wsdl', 'admin_wsdl', 'admin_service');

  function login() { 
    if (!empty($this->data) && $this->Auth->user()) {
      // Delete all old tokens
      $this->Tour->recursive = -1;
      $this->Tour->deleteAll(array('Tour.userid' => $this->Auth->user('userid')));
      // Create a new token
      $this->Tour->save(array('token' => md5(rand()), 'userid' => $this->Auth->user('userid')));
      // Update login count
      $user = $this->User->read(null, $this->Auth->user('userid'));
      $this->User->saveField('logincount', $user['User']['logincount']);
      // Update last login time
      $this->User->saveField('lastlogin', date('Y-m-d h:m:s'));
       if ($this->request->is('post')) {
        if ($this->Auth->login()) {
            return $this->redirect($this->Auth->redirectUrl());
        $this->Flash->error(__('Invalid username or password, try again'));


function find_home() {

    $user = $this->User->read(null, $this->Auth->user('userid'));
    if ($user['User']['mentor'] == '1') {
    }else if ($user['User']['teacher'] == '1') {

      // Get this student's team
      $this->redirect('/projects/view/?token=' . urlencode($user['Tour'][0]['token']) . '&projectid=' . urlencode($user['Team'][0]['id']));


class AppController extends Controller {

  var $components = array(
      'loginRedirect' => array('controller' => 'users', 'action' => 'find_home'),
      'authError'=>"Please Log In to Access this Page.",
    , 'Session', 'RequestHandler');
  var $uses = array('Tour');

  function beforeFilter() {

    if ($this->Session->check('Auth.User.userid')) {
      $tour = $this->Tour->findByUserid($this->Session->read('Auth.User.userid'));
      $user = $this->Auth->user();
      $tour = $this->Tour->findByUserid($user['User']['userid']);
      $user['Tour'] = $tour['Tour'];
      $this->set('user', $user);
    }else if (isset($_GET['token'])) {
      $tour = $this->Tour->read(null, $_GET['token']);
      if ($tour) {
        $tour['Tour']['sessionmodified'] = date('Y-m-d H:i:s');
        $this->set('user', $tour);

  private function setLayout() {
    if (array_key_exists('prefix', $this->params)) {
      if ($this->params['prefix'] == 'admin') {
        $this->layout = 'admin';
      }else if ($this->params['prefix'] == 'teacher') {
        $this->layout = 'teacher';





class User extends AppModel {

    var $name = 'User';
    var $primaryKey = 'userid';
    var $displayField = 'username';

  var $hasAndBelongsToMany = array(
    'Team' => array(
      'className' => 'Team',
      'joinTable' => 'teamAssignments',
      'foreignKey' => 'userid',
      'associationForeignKey' => 'teamid',
      'unique' => 'true'

  var $hasMany = array(
    'Assessment' => array(
      'className' => 'Assessment',
      'foreignKey' => 'student_id'
    'Assessment' => array(
      'className' => 'Assessment',
      'foreignKey' => 'teacher_id'
    'AssessmentComment' => array(
      'className' => 'AssessmentComment',
      'foreignKey' => 'student_id'
    'AssessmentComment' => array(
      'className' => 'AssessmentComment',
      'foreignKey' => 'teacher_id'
    'Tour' => array(
      'className' => 'Tour',
      'foreignKey' => 'userid'
    'Wiki' => array(
      'className' => 'Wiki',
      'foreignKey' => 'user_id'

  function archive($id) {
    if (!$id) {
      return false;
      $this->recursive = -1;
      $user = $this->read(null, $id);
      $user['User']['active'] = false;
      return true;

  function getInfo($id, $team_id, $token) {
    $user = $this->read(null, $id);
    // Make sure the token is valid
    $this->Tour->recursive = 2;
    $tour = $this->Tour->findByToken($token);
    if ($team_id == '_definst_') {
      // This is the global chat application or some other exception
      $user = $this->read(null, $id);
      $info['userid'] = $user['User']['userid'];
      $info['firstName'] = $user['User']['firstName'];
      $info['lastName'] = $user['User']['lastName'];
      $info['emailAddress'] = $user['User']['emailAddress'];
      $info['logincount'] = $user['User']['logincount'];
      $info['lastlogin'] = $user['User']['lastlogin'];
      $info['mentor'] = $user['User']['mentor'];
      return http_build_query($info);
    }else if ($tour) {
      // Make sure this user has permission to look at this team
      $on_team = false;
      if ($tour['User']['mentor'] == 1) {
        $on_team = true;
        foreach ($tour['User']['Team'] as $team) {
          if ($team['id'] == $team_id) {
            $on_team = true;
      if ($on_team) {
        // Make sure the requested user is on the requested team
        $user = $this->read(null, $id);
        $on_team = false;
        if ($tour['User']['mentor'] == 1) {
          $on_team = true;
          foreach ($user['Team'] as $team) {
            if ($team['id'] == $team_id) {
              $on_team = true;
        if ($on_team) {
          $team = $this->Team->read(null, $team_id);
          $info['userid'] = $user['User']['userid'];
          $info['username'] = $user['User']['username'];
          $info['firstName'] = $user['User']['firstName'];
          $info['lastName'] = $user['User']['lastName'];
          $info['emailAddress'] = $user['User']['emailAddress'];
          $info['teacher'] = $user['User']['teacher'];
          $info['logincount'] = $user['User']['logincount'];
          $info['lastlogin'] = $user['User']['lastlogin'];
          $info['mentor'] = $user['User']['mentor'];
          $info['teamid'] = $team['Team']['id'];
          $info['teamName'] = $team['Team']['teamName'];
          $info['instancename'] = $team['Team']['instanceName'];
          return http_build_query($info);
      return '';

  function validate($token, $team_id) {
    $this->Tour->recursive = 2;
    $tour = $this->Tour->findByToken($token);
    if ($team_id == '_definst_') {
      // This is the global chat application or some other exception
      return $tour['Tour']['userid'];
    }else if ($tour) {
      // Make sure this user is on this team or is a mentor
      $on_team = false;
      if ($tour['User']['mentor'] == 1) {
        $on_team = true;
        foreach ($tour['User']['Team'] as $team) {
          if ($team['id'] == $team_id) {
            $on_team = true;
      if ($on_team) {
        return $tour['Tour']['userid'];
    return '';

  function wsKillSession($token) {
    // Delete any tours
    $this->Tour->recursive = -1;
    $tour = $this->Tour->findByToken($token);
    $this->Tour->deleteAll(array('Tour.userid' => $tour['Tour']['userid']));
    return 1;

  function getUsers($user_id, $token, $team_name) {
    $user = $this->read(null, $user_id);
    $team = $this->Team->find('first', array('conditions' => array('Team.teamName' => $team_name)));
    $users = array();
    foreach ($team['User'] as $user) {
      $users[] = array('userid' => $user['userid'], 'username' => $user['username'], 'firstName' => $user['firstName'], 'lastName' => $user['lastName'], 'emailAddress' => $user['emailAddress'], 'teacher' => $user['teacher'], 'logincount' => $user['logincount'], 'lastlogin' => $user['lastlogin'], 'mentor' => $user['mentor'], 'teamid' => $team['Team']['id'], 'teamName' => $team['Team']['teamName'], 'instanceName' => $team['Team']['instanceName']);
    return serialize($users);



Tour Class:


    class Tour extends AppModel {

        var $name = 'Tour';
      var $useTable = 'sessions';
      var $primaryKey = 'token';

      var $belongsTo = array(
        'User' => array(
          'className' => 'User',
          'foreignKey' => 'userid'



$this->Auth->user() returns null if user isn't logged in. You need to check for null. http://api.cakephp.org/2.7/source-class-AuthComponent.html#648-671

function login() { 
    if (!empty($this->data) && !$this->Auth->user()) {
