public static function roles() { if (empty(static::$roles)) { static::$roles = User::extractRoles(Auth::user()->id); } return static::$roles; }
public function postChangepassword() { $uid = Input::get('id'); $uroles = User::extractRoles($uid); if ((User::has('user-chpwd') && !User::has('user-ptpsw', $uroles) || $uid == Auth::user()->id) == FALSE) { throw new Exception("Access denied;"); } $password = trim(Input::get('password')); if ($password) { $user = User::find($uid); $user->password = Hash::make($password); $user->save(); } Log::info('Change password #' . Input::get('id')); return []; }
<?php $uroles = User::extractRoles($user->id); ?> <?php if (User::has('user-chpwd') && !User::has('user-ptpsw', $uroles) || $user->id == Auth::user()->id) { ?> <?php if (User::has('user-edit')) { ?> <form action="<?php echo url('user/save'); ?> " method="post" class="ajax-auto-submit"> <h4><?php echo varlang('edit-details'); ?> </h4> <input type="hidden" name="id" value="<?php echo $user->id; ?> " /> <table class="table table-bordered table-hover"> <tr> <th><?php echo varlang('username-1'); ?>