X-Git-Url: http://p2p-next.cs.pub.ro/gitweb/?a=blobdiff_plain;f=application%2Fcontrollers%2Fuser.php;h=169d5d2bf29abac077adf06a6324e0e453a08753;hb=refs%2Fheads%2Fmaster;hp=793d7f438e28b74e13df82edb3c7ea955fdcae18;hpb=37fe2e29a60066614f4155c292e2a2bd99b71b49;p=living-lab-site.git
diff --git a/application/controllers/user.php b/application/controllers/user.php
index 793d7f4..169d5d2 100644
--- a/application/controllers/user.php
+++ b/application/controllers/user.php
@@ -10,6 +10,7 @@ class User extends CI_Controller {
private $import = FALSE;
private $activated_account = TRUE;
+ private $user_id = NULL;
public function __construct()
{
@@ -22,6 +23,35 @@ class User extends CI_Controller {
public function index()
{
}
+
+ public function test($user_id = 1)
+ {
+// echo extension_loaded('gd') ? 'gd' : 'nu';
+ }
+
+ // DEBUG
+ public function show_session()
+ {
+ if (ENVIRONMENT == 'production')
+ die();
+
+ var_dump($this->session->all_userdata());
+ }
+ // DEBUG
+ public function destroy_session()
+ {
+ if (ENVIRONMENT == 'production')
+ die();
+
+ $this->session->sess_destroy();
+ }
+
+ public function ajax_get_captcha()
+ {
+ $this->load->library('captcha');
+ $captcha = $this->captcha->get_captcha();
+ echo $captcha['image'];
+ }
/**
* Login a user and then redirect it to the last page which must be encoded
@@ -33,11 +63,22 @@ class User extends CI_Controller {
public function login($redirect = '')
{
$this->load->library('form_validation');
-
$this->form_validation->set_error_delimiters('',
'');
+
+ // Normal or OpenID login?
+ if ($this->input->post('openid') !== FALSE)
+ $b_openid = TRUE;
+ else
+ $b_openid = FALSE;
+ // Validate the correct form.
+ $res_form_validation = FALSE;
+ if (!$b_openid)
+ $res_form_validation = $this->form_validation->run('login');
+ else
+ $res_form_validation = $this->form_validation->run('login_openid');
- if ($this->form_validation->run('signin') === FALSE)
+ if ($res_form_validation === FALSE)
{
$params = array( 'title' =>
$this->lang->line('ui_nav_menu_login')
@@ -63,8 +104,17 @@ class User extends CI_Controller {
}
else
{
+ if ($b_openid)
+ {
+ $this->users_model->openid_begin_login(
+ $this->input->post('openid'));
+ return;
+ }
+
+ // Without OpenID
if (! $this->activated_account)
- header('Location: '. site_url('catalog/test'));
+ header('Location: '
+ . site_url("user/activate/{$this->user_id}"));
else if (! $this->import)
{
// Redirect to last page before login.
@@ -80,6 +130,43 @@ class User extends CI_Controller {
}
}
+ public function check_openid_login()
+ {
+ $user = $this->users_model->openid_complete_login();
+
+ // Authentication failed.
+ if ($user == Auth_OpenID_CANCEL)
+ {
+ $this->load->helper('message');
+ show_error_msg_page($this, $this->lang->line('openid_cancel'));
+ return;
+ }
+ else if ($user == Auth_OpenID_FAILURE)
+ {
+ $this->load->helper('message');
+ show_error_msg_page($this, $this->lang->line('openid_failure'));
+ return;
+ }
+
+ // Authentication successful: set session with user data.
+ $this->session->set_userdata(array(
+ 'user_id'=> $user['id'],
+ 'username'=> $user['username'],
+ 'auth_src'=> $user['auth_src'],
+ 'time_zone'=> $user['time_zone']
+ ));
+
+ if ($user['import'])
+ header('Location: '. site_url('user/account'));
+ else
+ header('Location: '. site_url());
+ }
+
+ public function openid_policy()
+ {
+ $this->load->view('openid_policy_view');
+ }
+
/**
* Logout user and then redirect it to the last page which must be encoded
* in $redirect.
@@ -92,6 +179,7 @@ class User extends CI_Controller {
$this->session->unset_userdata('user_id');
$this->session->unset_userdata('username');
$this->session->unset_userdata('auth_src');
+ $this->session->unset_userdata('roles');
$this->session->unset_userdata('time_zone');
header('Location: '. site_url(urldecode_segments($redirect)));
@@ -102,22 +190,59 @@ class User extends CI_Controller {
$this->load->library('form_validation');
$this->load->helper('localization');
$this->load->helper('date');
+
+ $user_id = $this->session->userdata('user_id');
$this->form_validation->set_error_delimiters('',
'');
-
- if ($this->form_validation->run('register') === FALSE)
+ $error_upload = '';
+
+ if ($this->form_validation->run('register'))
+ {
+ $b_validation = TRUE;
+
+ if ($_FILES['picture']['tmp_name'])
+ {
+ // Upload library
+ $config_upload['upload_path'] = './data/user_pictures';
+ $config_upload['file_name'] =
+ str_replace('.', '-', $this->input->post('username')) .'-';
+ $config_upload['allowed_types'] = 'gif|jpg|png';
+ $config_upload['max_size'] = '10240';
+ $this->load->library('upload', $config_upload);
+
+ $b_validation = $this->upload->do_upload('picture');
+ $error_upload =
+ $this->upload->display_errors('',
+ '');
+ }
+ }
+ else
+ $b_validation = FALSE;
+
+ if (! $b_validation)
{
// Edit account data if logged in, otherwise register.
- if ($user_id = $this->session->userdata('user_id'))
+ // ** ACCOUNT
+ if ($user_id)
{
$userdata = $this->users_model->get_userdata(intval($user_id));
+ if (substr($userdata['username'], 0, 8) == 'autogen_')
+ $userdata['autogen_username'] =
+ substr($userdata['username'], 8);
$selected_menu = 'account';
+ $captcha = FALSE;
}
+ // ** REGISTER
else
{
$userdata = FALSE;
$selected_menu = 'register';
+
+ // CAPTCHA
+ $this->load->library('captcha');
+ $captcha = $this->captcha->get_captcha();
+ $captcha = $captcha['image'];
}
$params = array('title' =>
@@ -136,7 +261,8 @@ class User extends CI_Controller {
array('selected_menu' => $selected_menu));
$main_params['content'] = $this->load->view('user/register_view',
- array('userdata'=> $userdata, 'redirect'=> $redirect),
+ array('userdata'=> $userdata, 'redirect'=> $redirect,
+ 'error_upload'=> $error_upload, 'captcha'=> $captcha),
TRUE);
$main_params['side'] = $this->load->view('side_default', NULL, TRUE);
$this->load->view('main', $main_params);
@@ -146,16 +272,41 @@ class User extends CI_Controller {
}
else
{
- $user_id = $this->input->post('user-id');
+ // TODO: Security problem!
+ //$user_id = $this->input->post('user-id');
+ if ($this->input->post('username'))
+ $data['username'] = $this->input->post('username');
$data['email'] = $this->input->post('email');
$data['first_name'] = $this->input->post('first-name');
$data['last_name'] = $this->input->post('last-name');
+ $data['sex'] = intval($this->input->post('sex'));
$data['birth_date'] = $this->input->post('birth-date');
$data['country'] = $this->input->post('country');
$data['locality'] = $this->input->post('locality');
$data['ui_lang'] = $this->input->post('ui-lang');
$data['time_zone'] = $this->input->post('time-zone');
+ // Handle picture if one was uploaded.
+ if ($_FILES['picture']['tmp_name'])
+ {
+ $upload_data = $this->upload->data();
+ $this->load->library('image');
+ $this->image->load($upload_data['full_path']);
+ // Resize original to a maximum size.
+ if ($this->image->get_width() * $this->image->get_height()
+ > 640*480)
+ {
+ $this->image->save_thumbnail(
+ $upload_data['full_path'],
+ 640, 480, IMAGETYPE_AUTO);
+ }
+ // Create thumbnail.
+ $data['picture'] = $upload_data['file_name'];
+ $this->image->save_thumbnail($upload_data['file_path']
+ . $upload_data['file_name']. '-thumb.jpg', 120, 90);
+ }
+
+ // TODO: To much info as session data?
// Update session user data.
$this->_update_session_userdata($data);
@@ -164,21 +315,28 @@ class User extends CI_Controller {
{
$password = $this->input->post('new-password');
if ($password)
- $data['password'] = $this->input->post('new-password');
+ $data['password'] = $password;
$this->users_model->set_userdata($user_id, $data);
+
+ // Redirect to last page before login.
+ header('Location: '. site_url(urldecode_segments($redirect)));
}
// Registration
else
{
$data['username'] = $this->input->post('username');
$data['password'] = $this->input->post('password');
+ $data['auth_src'] = 'internal';
$this->users_model->register($data);
+ $user_id = $this->users_model->get_userdata($data['username'],
+ "id");
+ $user_id = $user_id['id'];
+
+ // Redirect account activation page.
+ header('Location: '. site_url("user/activate/$user_id"));
}
-
- // Redirect to last page before login.
- header('Location: '. site_url(urldecode_segments($redirect)));
}
}
@@ -191,6 +349,17 @@ class User extends CI_Controller {
{
// TODO handle user not found
+ $user_id = $this->session->userdata('user_id');
+ if ($user_id)
+ {
+ if (intval($user_id) & USER_ROLE_ADMIN)
+ $allow_unactivated = TRUE;
+ else
+ $allow_unactivated = FALSE;
+ }
+ else
+ $allow_unactivated = FALSE;
+
$this->load->config('localization');
$this->load->helper('date');
$this->lang->load('date');
@@ -200,33 +369,29 @@ class User extends CI_Controller {
// **
// Logged in user time zone
$time_zone = $this->session->userdata('time_zone');
- if (! $time_zone)
- $time_zone = 'UTC';
// User data
$userdata = $this->users_model->get_userdata($username);
$userdata['roles'] = Users_model::roles_to_string($userdata['roles']);
$country_list = $this->config->item('country_list');
$userdata['country_name'] = $country_list[ $userdata['country'] ];
- $userdata['last_login'] = date('Y-m-d H:i:s',
- gmt_to_local(
- strtotime($userdata['last_login']),
- $time_zone,
- TRUE)) . ($time_zone == 'UTC' ? ' (UTC)' : '');
+ $userdata['last_login'] = human_gmt_to_human_local(
+ $userdata['last_login'], $time_zone);
$userdata['time_zone'] = $this->lang->line($userdata['time_zone']);
// User's videos
$this->load->model('videos_model');
$vs_data['videos'] = $this->videos_model->get_videos_summary(
- NULL, $username, intval($videos_offset),
- $this->config->item('videos_per_page'));
+ NULL, $username, intval($videos_offset),
+ $this->config->item('videos_per_page'), 'hottest',
+ $allow_unactivated);
// Pagination
$this->load->library('pagination');
$pg_config['base_url'] = site_url("user/profile/$username/");
$pg_config['uri_segment'] = 4;
$pg_config['total_rows'] = $this->videos_model->get_videos_count(
- NULL, $username);
+ NULL, $username, $allow_unactivated);
$pg_config['per_page'] = $this->config->item('videos_per_page');
$this->pagination->initialize($pg_config);
$vs_data['pagination'] = $this->pagination->create_links();
@@ -263,16 +428,183 @@ class User extends CI_Controller {
$this->load->view('html_end');
}
- public function activate($user_id, $activation_code)
+ public function activate($user_id, $method='', $activation_code='')
{
- $user_id = intval($user_id);
- echo ''. $this->users_model->activate_account($user_id, $activation_code);
+ $user_id = intval($user_id);
+ $res_form_validation = FALSE;
+
+ if ($method == 'code')
+ {
+ if (! $activation_code)
+ $res_form_validation = $this->form_validation->run('activate');
+ // Activation code is provided in URL.
+ else
+ {
+ if ($this->_valid_activation_code($activation_code)
+ && $this->users_model->activate_account($user_id,
+ $activation_code))
+ {
+ $this->load->helper('message');
+ show_info_msg_page($this, sprintf(
+ $this->lang->line('user_msg_activated_account'),
+ site_url('user/login')));
+ return;
+ }
+ else
+ {
+ $this->load->helper('message');
+ show_error_msg_page($this,
+ $this->lang->line(
+ 'user_msg_wrong_activation_code'));
+ return;
+ }
+ }
+ }
+ else if ($method == 'resend')
+ {
+ $res_form_validation =
+ $this->form_validation->run('resend_activation');
+ }
+
+ $userdata = $this->users_model->get_userdata($user_id,
+ 'email, a.activation_code');
+ $email = $userdata['email'];
+ $activated_account = ($userdata['activation_code'] == NULL);
+
+ if ($activated_account)
+ {
+ $this->load->helper('message');
+ show_info_msg_page($this, sprintf(
+ $this->lang->line('user_msg_activated_account'),
+ site_url('user/login')));
+ return;
+ }
+
+ $this->load->library('form_validation');
+
+ $this->form_validation->set_error_delimiters('',
+ '');
+
+ if ($res_form_validation === FALSE)
+ {
+ $params = array(
+ 'title'=> $this->lang->line('user_title_activation')
+ .' – '
+ . $this->config->item('site_name'),
+ //'metas' => array('description'=>'')
+ );
+ $this->load->library('html_head_params', $params);
+
+ // **
+ // ** LOADING VIEWS
+ // **
+ $this->load->view('html_begin', $this->html_head_params);
+ $this->load->view('header', array());
+
+ // Show form
+ $main_params['content'] =
+ $this->load->view('user/activate_view',
+ array( 'user_id'=> $user_id,
+ 'email'=> $userdata['email']),
+ TRUE);
+
+ $main_params['side'] = $this->load->view('side_default', NULL, TRUE);
+ $this->load->view('main', $main_params);
+
+ $this->load->view('footer');
+ $this->load->view('html_end');
+ }
+ else
+ {
+ if ($method == 'code')
+ {
+ // A message which tells the user that the
+ // activation was successful.
+ $this->load->helper('message');
+ show_info_msg_page($this, sprintf(
+ $this->lang->line('user_msg_activated_account'),
+ site_url('user/login')));
+ return;
+ }
+ else if ($method == 'resend')
+ {
+ // Redirect to resent message
+ $this->load->helper('message');
+ show_info_msg_page($this, sprintf(
+ $this->lang->line('user_msg_activation_resent'),
+ $this->input->post('email')));
+ return;
+ }
+ }
+ }
+
+ public function recover_password()
+ {
+ $this->load->library('form_validation');
+
+ $this->form_validation->set_error_delimiters('',
+ '');
+
+ if ($this->form_validation->run('recover_password') === FALSE)
+ {
+ $params = array( 'title' =>
+ $this->lang->line(
+ 'user_title_password_recovery')
+ .' – '
+ . $this->config->item('site_name'),
+ //'metas' => array('description'=>'')
+ );
+ $this->load->library('html_head_params', $params);
+
+ // **
+ // ** LOADING VIEWS
+ // **
+ $this->load->view('html_begin', $this->html_head_params);
+ $this->load->view('header', array('selected_menu' =>
+ 'recover_password'));
+
+ $main_params['content'] = $this->load->view(
+ 'user/recover_password_view', array(),
+ TRUE);
+
+ $main_params['side'] = $this->load->view('side_default', NULL, TRUE);
+ $this->load->view('main', $main_params);
+
+ $this->load->view('footer');
+ $this->load->view('html_end');
+ }
+ else
+ {
+ // Resent message
+ $this->load->helper('message');
+ show_info_msg_page($this, sprintf(
+ $this->lang->line('user_msg_password_recovery_email_sent'),
+ $this->input->post('username'),
+ $this->input->post('email')));
+ return;
+ }
+ }
+
+ public function _format_message($msg, $val = '', $sub = '%s')
+ {
+ return str_replace($sub, $val, $this->lang->line($msg));
}
public function _update_session_userdata($data)
{
foreach ($data as $key=> $val)
- $this->session->set_userdata($key, $val);
+ {
+ if ($this->session->userdata($key))
+ $this->session->set_userdata($key, $val);
+ }
+ }
+
+ public function _is_username_unique($username)
+ {
+ if ($this->users_model->get_userdata($username))
+ return FALSE;
+
+ return TRUE;
}
public function _valid_username($username)
@@ -298,12 +630,21 @@ class User extends CI_Controller {
return (preg_match('/[\d]{4}-[\d]{2}-[\d]{2}/', $date) === 1);
}
- public function _valid_old_password($old_password, $field_username)
+ public function _postprocess_birth_date($date)
+ {
+ // If the user entered no birth date NULL needs to be inserted into DB.
+ if (! $date)
+ return NULL;
+
+ return $date;
+ }
+
+ public function _valid_old_password($old_password)
{
if (! $old_password)
return TRUE;
- $username= $this->input->post($field_username);
+ $username= $this->session->userdata('username');
if ($this->users_model->login($username, $old_password))
return TRUE;
@@ -323,13 +664,18 @@ class User extends CI_Controller {
public function _required_by_register($param)
{
- $user_id = $this->input->post('user-id');
+ $user_id = $this->session->userdata('user_id');
if (! $user_id && ! $param)
return FALSE;
return TRUE;
}
+
+ public function _valid_activation_code($activation_code)
+ {
+ return (preg_match('/^[a-fA-F0-9]{16}$/', $activation_code) == 1);
+ }
public function _do_login($username, $field_password)
{
@@ -345,6 +691,7 @@ class User extends CI_Controller {
if ($user['activation_code'] !== NULL)
{
$this->activated_account = FALSE;
+ $this->user_id = $user['id'];
return TRUE;
}
@@ -353,11 +700,74 @@ class User extends CI_Controller {
'user_id'=> $user['id'],
'username'=> $user['username'],
'auth_src'=> $user['auth_src'],
+ 'roles'=> $user['roles'],
'time_zone'=> $user['time_zone']
));
$this->import = (isset($user['import']) ? $user['import'] : FALSE);
return TRUE;
}
+
+ public function _do_activate($activation_code)
+ {
+ $user_id = $this->input->post('user-id');
+ if ($user_id === FALSE)
+ return FALSE;
+ $user_id = intval($user_id);
+
+ return $this->users_model->activate_account($user_id,
+ $activation_code);
+ }
+
+ public function _do_resend_activation($email)
+ {
+ $user_id = $this->input->post('user-id');
+ if ($user_id === FALSE)
+ return FALSE;
+ $user_id = intval($user_id);
+
+ $this->users_model->set_userdata($user_id,
+ array('email'=> $email));
+
+ return $this->users_model->send_activation_email($user_id, $email);
+ }
+
+ public function _username_exists($username)
+ {
+ $userdata = $this->users_model->get_userdata($username);
+
+ if (! $userdata)
+ return FALSE;
+
+ return TRUE;
+ }
+
+ public function _check_captcha($word)
+ {
+ $this->load->library('captcha');
+
+ return $this->captcha->check_captcha($word);
+ }
+
+ public function _internal_account($username)
+ {
+ $userdata = $this->users_model->get_userdata($username, 'auth_src');
+ if (! $userdata)
+ return FALSE;
+
+ if ($userdata['auth_src'] != 'internal')
+ return FALSE;
+
+ return TRUE;
+ }
+
+ public function _do_recover_password($username)
+ {
+ $email = $this->input->post('email');
+ if (! $email)
+ return FALSE;
+
+ return $this->users_model->recover_password($username, $email);
+ }
}
/* End of file user.php */