function login() { $email = $_POST['login_email']; $password = $_POST['login_password']; $id = User::getIdByEmail($email); if (!User::loginIsValid($email, md5($password))) { throw new Exception("Error when loggin in user."); } if (!User::accountIsActivated($id)) { echo "Your account has not yet been activated. Click \r\n\t\t\tthe link in the confirmation email which was sent to your email account when you registered"; return; } $this->session->set_userdata('userid', $id); redirect('/main'); }
public static function addEmployee($name, $emp_id, $address_1, $address_2, $landmark, $city, $state, $pincode, $phone, $fax, $email, $website, $description) { $defaultPassword = '******'; if (!empty($_SESSION['user']['company'])) { //$retCode = User::add($name, '', $emp_id, $defaultPassword, $phone, $phone, $email, $address_1, $address_2, $landmark, $city, $state, $pincode, $_SESSION['user']['company']); if (User::add($name, '', $emp_id, $defaultPassword, $phone, $phone, $email, $address_1, $address_2, $landmark, $city, $state, $pincode, $_SESSION['user']['company'])) { User::activate(User::getIdByEmail($email)); $mEmployee = new User(User::getIdByEmail($email)); $mAddedBy = new User(); $mEmployee->SetAddedby($mAddedBy->getId()); Mailer::sendEmployeeAddedMessage($name, $emp_id, $email, $defaultPassword, $_SESSION['user']['company'], $mAddedBy->getFullname()); return Timeline::addTimelineEvent("staff_addition", "", "", $mEmployee->getId(), $mAddedBy->getId(), 1); return true; } return false; } else { return false; } }
} break; case "logout": if ($mUser->logout()) { header('Location:login.php'); exit; } else { header('Location:abc.php'); exit; } break; case "activate": if (!isset($_GET['email']) || !isset($_GET['key'])) { echo "<script>window.location.href = '../user/login.php'</script>"; break; } $email = $_GET['email']; $key = $_GET['key']; $id = User::getIdByEmail($email); $securityKey = Security::getSecurityKey($id); if ($key == $securityKey) { //die("match!!"); if (User::activate($id)) { header('Location:activate.php?q=1'); } } else { //die("sorry!!"); echo "<script>window.location.href = '../user/login.php'</script>"; } break; }
if (!empty($_POST['title']) && !empty($_POST['rating'])) { $user = new User(); $post = new MediaPost(); $from_user = $_SESSION['authenticated_user']; $title = $_POST['title']; $rating = $_POST['rating']; $comment = $_POST['comment']; $date_created = date("Y-m-d H:i:s"); $media = $post->getMediaIdByTitle($title); if (!$media) { $media = $post->storeMedia($title); $new_media = true; } if ($_POST['review_type'] == 'private') { $email = $_POST['username']; $to_user = $user->getIdByEmail($email); if ($to_user) { $post->storeRecommendation($from_user, $to_user, $media, $rating, $comment, $date_created); } else { $error = "User with email did not exist"; } } else { $post->storePublicReview($from_user, $media, $rating, $comment, $date_created); } } if ($error === "") { ?> <div class="container"> <div class="jumbotron"> <span>Recommendation Created</span><br/>
public static function resetpasswordmail($id) { $securityKey = Security::getSecurityKey($id); $idk = User::getIdByEmail($id); $passresetlink = "http://www.findgaddi.com/navigator/ui/user/resetPassword.php?id={$idk}&key={$securityKey}"; $messagereset = '<br > Please click on the below link or if link does not work please copy paste the link in your browser.<br >'; $messagereset .= $passresetlink; return Mailer::SendResetPasswd($id, 'Please reset your passwword', $messagereset); }
</head> <body> <section id="head-bar"> <?php require_once 'user.php'; $login_successful = false; if (!empty($_POST['email']) && !empty($_POST['password'])) { $email = $_POST['email']; $password = hash("sha256", $_POST['password']); $authUser = new User(); $checkUser = $authUser->checkLoginCredentials($email, $password); if ($checkUser) { $first_name = $authUser->getFirstNameByEmail($email); $last_name = $authUser->getLastNameByEmail($email); $_SESSION['authenticated_user'] = $authUser->getIdByEmail($email); $login_successful = true; } else { $login_successful = false; } } ?> <?php include_once 'navbar.php'; ?> </section> <div class="container"> <div class="jumbotron"> <?php
<?php include_once 'navbar.php'; ?> </section> <div class="container"> <?php if (isset($_SESSION['authenticated_user'])) { require_once 'watchlist.php'; require_once 'mediapost.php'; require_once 'user.php'; $watchlist = new Watchlist(); $post = new MediaPost(); $user = new User(); if ($_SERVER['REQUEST_METHOD'] === 'POST') { if (!empty($_POST['friend_email'])) { $new_friend_id = $user->getIdByEmail($_POST['friend_email']); if (!$new_friend_id) { echo "<h2 style='color: white; background-color: #d61616;'>User not found with email address " . $_POST['friend_email'] . ". Try again.</h2>"; } else { $date_created = date("Y-m-d H:i:s"); $watchlist->addNewBoy($_SESSION['authenticated_user'], $new_friend_id, $date_created); } } } $this_user = $_SESSION['authenticated_user']; $friends = $watchlist->getMyBoys($this_user); if ($friends) { while ($friend = $friends->fetch_object()) { $friend_watchlist = $watchlist->getWatchlistForUser($friend->friend); $url_string = "conversation.php?friend_id=" . $friend->friend; $user_email = $post->getUserById($friend->friend)->email;