public function actionCreate()
{
$name = '';
$email = '';
$password = '';
$result = '';
if (isset($_POST['submit'])) {
$name = FunctionLibrary::clearStr($_POST['name']);
$email = FunctionLibrary::clearStr($_POST['email']);
$password = FunctionLibrary::clearStr($_POST['password']);
$errors = array();
if (!User::checkName($name)) {
$errors[] = 'Имя должно быть больше 1 символа.';
}
if (!User::checkEmail($email)) {
$errors[] = 'Невалидный Email.';
}
if (User::checkEmailExists($email)) {
$errors[] = 'Такой еmail уже существует.';
}
if (!User::checkPassword($password)) {
$errors[] = 'Пароль должен быть больше 5 символов.';
}
if (empty($errors)) {
$result = User::registerUser($name, $email, $password);
if (!$result) {
$message = 'Произошла ошибка при создании админа.';
} else {
FunctionLibrary::redirectTo('/admin/user');
}
}
}
require_once ROOT . '/views/admin_user/create.php';
return true;
}
/**
returns a list of errors if unsuccessful or true if successful
*/
public function registerUser($username, $password, $retypedPassword, $email, $retyptedEmail)
{
$result = User::registerUser($username, $password, $retypedPassword, $email, $retyptedEmail);
if (is_array($result)) {
//there are errors
return $result;
} else {
return true;
}
}
public function postCreate()
{
$data = Input::only('firstname', 'lastname', 'email', 'password', 'groupName');
$userObj = new User();
$register = $userObj->registerUser($data['firstname'], $data['lastname'], $data['email'], $data['password'], $data['groupName']);
if ($register) {
return Response::json(array('status' => '1', $data));
} else {
return Response::json(array('status' => '0', $data));
}
}
public function ajaxAction()
{
$this->_helper->layout->disableLayout();
$this->_helper->viewRenderer->setNoRender(true);
$user = new User();
$params = $this->getAllParams();
if (isset($params['case'])) {
switch ($params['case']) {
case 'registerUser':
$this->result = $user->registerUser($params);
break;
case 'loginUser':
$this->result = $user->loginUser($params);
break;
case 'logoutUser':
$this->result = $user->logoutUser();
break;
case 'forgotPassword':
$this->result = $user->userForgotPassword($params);
break;
case 'savePersonalData':
$this->result = $user->savePersonalData($params);
break;
case 'saveSettingsData':
$this->result = $user->saveSettingsData($params);
break;
case 'search':
$this->result = $this->searchRequest($params);
break;
default:
$this->result = [];
break;
}
}
/* disable feedback post*/
header("Content-Type: text/json");
echo json_encode($this->result);
}
}
/**
* Проверяем, существует ли пользователь
*/
$q_login = $db->query("SELECT COUNT(*) FROM `users` WHERE `login` = '{$login}' LIMIT 1")->fetchColumn();
// По логину
$q_email = $db->query("SELECT COUNT(*) FROM `users` WHERE `email` = '{$email}' LIMIT 1")->fetchColumn();
// По E-Mail
if ($q_email == 1 || $q_login == 1) {
$error[] = $lang['reg_user_already_exists'];
}
/**
* Если нет ошибок, регистрируем юзера
*/
if (!isset($error)) {
User::registerUser($login, $password, $email);
require_once HOME . '/includes/header.php';
/**
* Сообщение об успешной регистрации
*/
$message = $lang['reg_registration_success'] . '<br />' . '<span class="glyphicon glyphicon-user"></span> <b>' . $lang['login'] . '</b>: ' . $login . '<br />' . '<span class="glyphicon glyphicon-lock"></span> <b>' . $lang['password'] . '</b>: ' . $password . '<br />' . '<span class="glyphicon glyphicon-envelope"></span> <b>' . $lang['email'] . ':</b> ' . $email;
Core::displayMessage($message);
require_once HOME . '/includes/footer.php';
exit;
} else {
require_once HOME . '/includes/header.php';
Core::displayError($error);
// Выводим ошибки (если есть)
}
}
require_once HOME . '/includes/header.php';
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$db = Conn::getInstance();
$conn = $db->getConnection();
$user = new User($conn);
$email = sanitizeMySQL($conn, $_POST['userEmail']);
$password = sanitizeMySQL($conn, $_POST['userPassword']);
$password2 = sanitizeMySQL($conn, $_POST['userPassword2']);
$nick = sanitizeMySQL($conn, $_POST['userNick']);
if (strlen($nick) < 4) {
echo "Twój nick musi mieć długość conajmniej 4 znaków!";
} elseif (strlen($password) < 6) {
echo "Twoje hasło musi mieć conajmniej 6 znaków! (a-z, A-Z, 0-9)";
} elseif ($password !== $password2) {
echo "Podałeś różne hasła! Spróbuj ponownie.";
} else {
if ($user->registerUser($email, $password, $nick)) {
header("Location: index.php");
} else {
echo "Nie udało się zarejestrować użytkownika";
}
}
}
?>
<!DOCTYPE html>
<html lang="pl-PL">
<head>
<meta charset="utf-8">
<meta http-equiv="X-UA-Compatible" content="IE=edge">
<meta name="viewport" content="width=device-width, initial-scale=1">
<!-- The above 3 meta tags *must* come first in the head; any other head content must come *after* these tags -->
<title>MyTwitt Register</title>
return View::make('backend.changepass')->with('user', $user)->with('alert', '<div class="alert alert-success" role="alert">Password Changed successfully!</div>');
} else {
return View::make('backend.changepass')->with('user', $user)->with('alert', '<div class="alert alert-danger" role="alert">New Password confirmation did not matched!</div>');
}
} else {
echo 'Password does not match.';
return View::make('backend.changepass')->with('user', $user)->with('alert', '<div class="alert alert-danger" role="alert">Wrong password</div>');
}
} catch (Cartalyst\Sentry\Users\UserNotFoundException $e) {
return View::make('backend.changepass')->with('user', $user)->with('alert', '<div class="alert alert-danger" role="alert">User Not Found</div>');
}
});
# Admin Registration
Route::get('admin/regdo', function () {
$registerUser = new User();
$registerUser->registerUser("Live", "Admin", "*****@*****.**", "thunder32", "gods");
});
// Admin Panel | Schedule
Route::group(array('before' => 'admin.login', 'prefix' => 'admin/schedules'), function () {
# Admin Schedules
Route::get('/', function () {
$schedules = Schedule::get();
return View::make('backend.schedules')->with('schedules', $schedules);
});
# Admin Add Schedules;
Route::get('/add', function () {
$user = Sentry::getUser();
return View::make('backend.addschedules')->with('user', $user);
});
# Admin Status Change Schedules;
Route::get('/status/{status}/{id}', function ($status, $id) {
$birthday = $_POST["birthday"];
// optional
$password = $_POST["password"];
$confirm_password = $_POST["confirm_password"];
$javascript = $_POST["javascript"];
$javascript = 1;
$role_id = 2;
$lang_id = 1;
// Auto load the class when it is beeing created
spl_autoload_register(function ($class) {
require_once "../classes/" . $class . ".class.php";
});
if ($password != $confirm_password) {
die(Translate::string("register_alert.passwords_dont_match"));
}
if (empty($name) or empty($email) or empty($phone) or empty($password) or empty($confirm_password)) {
die(Translate::string("register_alert.fill_out_all_fields"));
} else {
try {
$user = new User();
$user->company_name = $company_name;
$user->company_number = $company_number;
$user->company_address = $company_address;
$user->company_zip = $company_zip;
$user->phone_2 = $phone_2;
$user->registerUser($name, $role_id, $email, $password, $phone, $lang_id, $birthday, $javascript, true);
echo Translate::string("register_alert.registration_success_please_login");
} catch (Exception $e) {
echo '' . $e->getMessage();
}
}
// Sanitize
$username = trim(filter_input(INPUT_POST, 'username', FILTER_SANITIZE_STRING));
if (!$username) {
throw new Exception('Invalid Username');
}
$password = trim(filter_input(INPUT_POST, 'password', FILTER_SANITIZE_STRING));
if (!$password) {
throw new Exception('Invalid Password');
}
// Create password hash ( Using 'bcrypt' by PASSWORD_DEFAULT )
$passwordHash = password_hash($password, PASSWORD_DEFAULT, ['cost' => 12]);
if ($passwordHash === false) {
throw new Exception('Password hash failed');
}
// Attempt to register the user into the DB
$_SESSION['User_Registered'] = User::registerUser($username, $passwordHash);
// Redirect
header('HTTP/1.1 302 Redirect');
header('Location: ' . INDEX_REDIRECT);
} catch (Exception $e) {
// Store error message in the session to view on the index page
$_SESSION['errorMessage'] = $e->getMessage();
header('HTTP/1.1 302 Redirect');
header('Location: ' . INDEX_REDIRECT);
}
// .d8b. d8888b. d8888b. .o88b. .d88b. .88b d88. .88b d88. d88888b d8b db d888888b
// d8' `8b 88 `8D 88 `8D d8P Y8 .8P Y8. 88'YbdP`88 88'YbdP`88 88' 888o 88 `~~88~~'
// 88ooo88 88 88 88 88 8P 88 88 88 88 88 88 88 88 88ooooo 88V8o 88 88
// 88~~~88 88 88 88 88 8b 88 88 88 88 88 88 88 88 88~~~~~ 88 V8o88 88
// 88 88 88 .8D 88 .8D Y8b d8 `8b d8' 88 88 88 88 88 88 88. 88 V888 88
// YP YP Y8888D' Y8888D' `Y88P' `Y88P' YP YP YP YP YP YP Y88888P VP V8P YP
<body>
<!-- navigation folder stores the dynamic navigation bar. If user logn, it will retrieve different nav bar (Capt / User nav). -->
<?php
include "navigation/guestNav.php";
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
include_once "class/User.class.php";
$username = $_POST['inputUserName'];
$pwd = md5($_POST['inputPassword']);
$fname = $_POST['inputFirstName'];
$lname = $_POST['inputLastName'];
$email = $_POST['inputEmail'];
$user = new User();
if ($user->registerUser($username, $pwd, $fname, $lname, $email)) {
echo "<div class='container'><div class='col-md-12'><div class='alert alert-success'> <strong> Registration Successful! </strong> </div></div></div>";
$to = $email;
$subject = 'Appointment has been Scheduled Successfully';
$message = "Your Appointment with user Will Stevens has been scheduled successfully at 20th November 2015 at 12:00pm - 20th November 2015 at 13:00pm ";
$headers = 'MIME-Version: 1.0' . "\r\n";
$headers .= 'Content-type: text/html; charset=iso-8859-1' . "\r\n";
// Additional headers
$headers .= 'From: Captains Hub <*****@*****.**>';
mail($to, $subject, $message, $headers);
} else {
echo "<div class='container'><div class='col-md-12'><div class='alert alert-danger'> <strong> Registration Failed! </strong> </div></div></div>";
}
} else {
?>
Route::get('admin/login', function () {
if (!Sentry::check()) {
return View::make('backend.login');
}
});
# Admin Login Post
Route::post('admin/login', array('uses' => 'RainAuthController@postLogin'));
# Admin Logout
Route::get('admin/logout', function () {
Sentry::logout();
return View::make('backend.login');
});
# Admin Registration
Route::get('admin/regdo', function () {
$registerUser = new User();
$registerUser->registerUser("Live", "Admin", "*****@*****.**", "thunder32", "gods");
});
// Admin Panel | Schedule
Route::group(array('before' => 'admin.login', 'prefix' => 'admin/schedules'), function () {
# Admin Schedules
Route::get('/', function () {
$schedules = Schedule::get();
return View::make('backend.schedules')->with('schedules', $schedules);
});
# Admin Add Schedules;
Route::get('/add', function () {
$user = Sentry::getUser();
return View::make('backend.addschedules')->with('user', $user);
});
# Admin Status Change Schedules;
Route::get('/status/{status}/{id}', function ($status, $id) {
header("Location: " . orongoURL("orongo-admin/create.php?msg=1&obj=page"));
exit;
break;
case "user":
if (getUser()->getRank() < RANK_ADMIN) {
header("Location: " . orongoURL("orongo-admin/index.php?msg=0"));
exit;
}
if (!isset($_POST['name']) || !isset($_POST['password']) || !isset($_POST['email']) || !isset($_POST['rank'])) {
header("Location: " . orongoURL("orongo-admin/create.php?user"));
exit;
}
if (User::usernameExists($_POST['name'])) {
header("Location: " . orongoURL("orongo-admin/create.php?msg=0&obj=user"));
exit;
}
try {
$user = User::registerUser($_POST['name'], $_POST['email'], Security::hash($_POST['password']), $_POST['rank']);
User::activateUser($user->getID());
} catch (Exception $e) {
header("Location: " . orongoURL("orongo-admin/create.php?msg=0&obj=user"));
exit;
}
header("Location: " . orongoURL("orongo-admin/create.php?msg=1&obj=user"));
exit;
break;
default:
header("Location: " . orongoURL("orongo-admin/create.php"));
exit;
break;
}
<?php
include_once "DBConnect.php";
if ($_SERVER['REQUEST_METHOD'] == 'POST') {
if (isset($_POST['username'])) {
$person = new User($_POST['username'], $_POST['email'], $_POST['telephone'], $_POST['password']);
$validation[] = $person->checkPass($person->_password, $_POST['password_confirm']);
$validation[] = $person->checkPhone($person->_telephone);
$validation[] = $person->checkEmail($person->_email);
$validation[] = $person->checkName($person->_name);
if (!in_array(0, $validation)) {
//Check if some function returned 0
$registerResult = $person->registerUser($person->_name, $person->_email, $person->_telephone, $person->_password);
if ($registerResult == true) {
if (!isset($_FILES['image'])) {
echo '
<div class="alert alert-success alert-dismissible" role="alert">
<button type="button" class="close" data-dismiss="alert" aria-label="Close"><span aria-hidden="true">×</span></button>
Cadastro de <b>' . $person->_name . '</b> efetuado. (sem imagem)
</div>';
} else {
$person->uploadFile($_FILES['image'], $_POST['MAX_FILE_SIZE']);
}
echo '<div class="alert alert-info" role="alert"><span class="glyphicon glyphicon-refresh glyphicon-refresh-animate"></span> Redirecionando...</div>';
echo "<meta http-equiv=\"refresh\" content=\"3;url=login.php\">";
}
}
}
if (isset($_POST['compname'])) {
if ($_POST['lat'] != "" && $_POST['lng'] != "" && $_POST['address'] != "") {
$location = "" . $_POST['lat'] . " " . $_POST['lng'] . "";
$usrObj->redirect('login.php?error=login');
}
break;
case "register":
//Formdan gelen değerler değişkenlere atandı
$username = fixTags(trim($_POST['username']));
//Hem email hem kullanıcı adı ile giriş için
$password = fixTags(trim(md5(sha1($_POST['password']))));
$mail = fixTags(trim($_POST['email']));
//yeni kayıtta email
$fullname = fixTags(trim($_POST['name']));
$userPosition = fixTags(trim($_POST['userPosition']));
if (!$username || !preg_match("/^\\S+@\\S+\$/", $mail) || !$fullname || !$userPosition) {
redirect('userList.php?msg=error');
} else {
$reg = $usrObj->registerUser($username, $password, $mail, $fullname, $userPosition);
if ($reg) {
redirect('userList.php?msg=success');
} else {
redirect('userList.php?msg=error');
}
}
break;
case "userEdit":
$username = fixTags(trim($_POST['username']));
$mail = fixTags(trim($_POST['email']));
$fullname = fixTags(trim($_POST['name']));
$userPosition = fixTags(trim($_POST['userPosition']));
$usrObj->userUpdate($_GET["userId"], $username, $mail, $fullname, $userPosition);
redirect('userList.php');
break;
}
if (strlen($_POST['username']) < 4 || strlen($_POST['username']) > 20) {
header("Location: " . orongoURL("orongo-register.php?msg=2"));
exit;
}
if (strlen($_POST['password']) < 6) {
header("Location: " . orongoURL("orongo-register.php?msg=3"));
exit;
}
$name = Security::escape($_POST['username']);
$email = Security::escape($_POST['email']);
$password = Security::hash($_POST['password']);
if (User::usernameExists($name) == false) {
$user = null;
try {
$user = User::registerUser($name, $email, $password, RANK_USER);
} catch (Exception $e) {
header("Location: " . orongoURL("orongo-login.php?msg=3"));
exit;
}
$activationLink = User::generateActivationURL($user->getID());
$mail = MailFactory::generateActivationEmail($user->getName(), $activationLink);
$sendEmail = mail($user->getEmail(), $mail['subject'], $mail['message'], $mail['headers']);
if (!$sendEmail) {
header("Location: " . orongoURL("orongo-login.php?msg=3"));
exit;
}
header("Location: " . orongoURL("orongo-login.php?msg=2"));
exit;
} else {
echo $name;
