include_once dirname(__FILE__) . "/classes/User.php";
include_once dirname(__FILE__) . "/functions/functions.php";
session_start();
if (!isset($_SESSION['USERNAME'])) {
redirect("login.php", 301);
} else {
//TODO check Session Duration
try {
$user = new User($_SESSION['USERNAME']);
if (isset($_POST['OLDPWD']) && isset($_POST['PWD']) && isset($_POST['PWDR'])) {
if ($_POST['OLDPWD'] == "" || $_POST['PWD'] == "" || $_POST['PWDR'] == "") {
throw new Exception("Fields cannot be empty");
}
try {
if ($user->HasPassword($_POST['OLDPWD'])) {
$user->ChangePassword($_POST['PWD'], $_POST['PWDR']);
} else {
$error = "Wrong Password";
$_SESSION = array();
if (ini_get("session.use_cookies")) {
$params = session_get_cookie_params();
setcookie(session_name(), '', time() - 3600 * 24, $params["path"], $params["domain"], $params["secure"], $params["httponly"]);
}
session_destroy();
}
} catch (Exception $e) {
$error = $e->getMessage();
}
$msg = "Password Changed Successfully";
}
} catch (Exception $e) {
echo "Set Name :\n ";
$nam = readline();
} while ($nam == null);
$s = $std->ChangeName($rollno, $nam);
if ($s) {
echo "Name Changed \n";
echo "Updated Data Base\n";
$std->DisplayResult($rollno);
}
break;
case 2:
do {
echo "Set Password :\n ";
$password = readline();
} while ($password == null);
$st1 = $obj->ChangePassword($userName, $password);
if ($st1) {
echo "Password changed :) \n";
echo "Updated Data Base\n";
$obj->DisplayUsers();
}
break;
case 3:
$std->DisplayAllResults();
break;
case 4:
do {
echo "Set UserName :\n ";
$userName = readline();
#check username availability
} while ($userName == null);
break;
case 'admin_add':
$_POST['social_type'] = 'normal';
$success = User::AddUser($_POST);
if (isset($_POST['emailpassword']) && $success) {
Email::SendEmail($_POST['email'], 'New account', 'Admin created an account with your email; Your password is : ' . $_POST['password']);
}
$message = $success ? array(Config::Get('success.created')) : Error::GetAll();
break;
case 'admin_edit':
$user = new User();
$user->Load(array('id' => $_POST['user_id']));
$user->ChangeSettings($_POST);
$success = Error::HasErrors() ? false : true;
if (!empty($_POST['password']) || !empty($_POST['cpassword'])) {
$success = $success && $user->ChangePassword($_POST);
}
$message = $success ? array(Config::Get('success.saved')) : Error::GetAll();
$data = array('email' => $user->Get('email'), 'username' => $user->Get('username'));
break;
case 'admin_delete':
$user = new User();
if ($user->Load(array('id' => $_POST['user_id']))) {
$success = $user->Delete();
} else {
Error::Set('user', 'usernotfound');
}
$message = $success ? array(Config::Get('success.saved')) : Error::GetAll();
break;
case 'admin_compose':
$validator = new Validate();
if (isset($_POST["func"])) {
if ($_POST["func"] == "GetModules" && isset($_POST["system"])) {
global $m;
$m->GetModules($_POST["system"]);
} elseif ($_POST["func"] == "CreateModule") {
Page::CreatePage($_POST["value"]);
} elseif ($_POST["func"] == "EditPage") {
Page::EditPage($_POST["value"]);
} elseif ($_POST["func"] == "PrintAll") {
global $m;
$m->PrintAll();
} elseif ($_POST["func"] == "EditSystemPage") {
Page::EditSystemPage($_POST["value"]);
} elseif ($_POST["func"] == "RemovePage") {
Page::RemovePage($_POST["value"]);
} elseif ($_POST["func"] == "UserAuth") {
User::Authorize($_POST["value"]);
} elseif ($_POST["func"] == "ResetPassword") {
User::ResetPassword($_POST["value"]);
} elseif ($_POST["func"] == "ChangePass") {
User::ChangePassword($_POST["oldPass"], $_POST["newPass"]);
} elseif ($_POST["func"] == "PhotoUpload") {
PhotoUpload($_POST["value"]);
} elseif ($_POST["func"] == "PrintPDF") {
Page::PrintPDF($_POST["value"]);
}
}
if (isset($_GET["page"])) {
$page = Page::GetPageByModuleName($_GET["page"], true);
echo $page["content"];
}
public function changePassword($opass, $npass)
{
$session = SessionManager::GetSession();
if ($session) {
User::ChangePassword($session->user, $opass, $npass);
echo 1;
} else {
echo 0;
}
}
public function testUpdateSetsUserProperties()
{
$userId = 987;
$loginTime = '2010-01-01';
$language = 'en_gb';
$user = new User();
$user->WithId($userId);
$password = '******';
$salt = 'salt';
$homepageId = 19;
$fname = 'f';
$lname = 'l';
$email = 'e';
$username = '******';
$timezone = 'America/New_York';
$scheduleId = 99;
$user->ChangePassword($password, $salt);
$user->ChangeName($fname, $lname);
$user->ChangeEmailAddress($email);
$user->ChangeUsername($username);
$user->ChangeDefaultHomePage($homepageId);
$user->ChangeTimezone($timezone);
$user->EnableSubscription();
$user->Login($loginTime, $language);
$user->ChangeDefaultSchedule($scheduleId);
$publicId = $user->GetPublicId();
$command = new UpdateUserCommand($userId, $user->StatusId(), $password, $salt, $fname, $lname, $email, $username, $homepageId, $timezone, $loginTime, true, $publicId, $language, $scheduleId);
$repo = new UserRepository();
$repo->Update($user);
$this->assertTrue($this->db->ContainsCommand($command));
}
