function setupOneToken($userId, $level, $token) { if (!isset($token)) { // Clean up from previous tests $query = "DELETE FROM blogUser " . " WHERE userId='{$userId}'"; mysql_query($query); $query = "DELETE FROM blogAuth " . " WHERE userId='{$userId}'"; mysql_query($query); $user = new User($userId); $user->setAccess($level); $user->save(); $token = Auth::generateAuthId(); $auth = new Auth($token); $auth->setUserId($userId); $auth->save(); } return $token; }
/** * Test #17. * The findByHash function returns an object populated with previous * values if a hash for a previous instance is given. * @depends testUpdate * @depends testHashGetInstance */ public function testHashOldInstance() { global $testUserId1; // create the object and save it $object = new User($testUserId1); $object->setName('Test User'); $object->setExternalType('externaltype'); $object->setExternalId('externalid'); $object->setAccess('access'); $object->setEmail('*****@*****.**'); $object->setNotification('Y'); $object->setTempCode('tempcode'); $object->setDeleted('Y'); $this->assertTrue($object->save()); $this->assertEquals(1, $this->countTestRows()); $old_hash = $object->getHash(); // change values and update the object $object->setName('Test User 2'); $object->setExternalType('externaltype 2'); $object->setExternalId('externalid 2'); $object->setAccess('access 2'); $object->setEmail('*****@*****.**'); $object->setNotification('N'); $object->setTempCode('tempcode 2'); $object->setDeleted('N'); $this->assertTrue($object->save()); $this->assertEquals(2, $this->countTestRows()); $new_hash = $object->getHash(); // read the object from the database and confirm that the old // values are returned $object = User::findByHash($old_hash); $this->assertNotNull($object); $this->assertEquals($testUserId1, $object->getUserId()); $this->assertEquals('Test User', $object->getName()); $this->assertEquals('externaltype', $object->getExternalType()); $this->assertEquals('externalid', $object->getExternalId()); $this->assertEquals('access', $object->getAccess()); $this->assertEquals('*****@*****.**', $object->getEmail()); $this->assertEquals('Y', $object->getNotification()); $this->assertEquals('tempcode', $object->getTempCode()); $this->assertEquals('Y', $object->getDeleted()); $this->assertEquals($old_hash, $object->getHash()); // read the new object from the database and confirm that the new // values are returned $object = User::findByHash($new_hash); $this->assertNotNull($object); $this->assertEquals($testUserId1, $object->getUserId()); $this->assertEquals('Test User 2', $object->getName()); $this->assertEquals('externaltype 2', $object->getExternalType()); $this->assertEquals('externalid 2', $object->getExternalId()); $this->assertEquals('access 2', $object->getAccess()); $this->assertEquals('*****@*****.**', $object->getEmail()); $this->assertEquals('N', $object->getNotification()); $this->assertEquals('tempcode 2', $object->getTempCode()); $this->assertEquals('N', $object->getDeleted()); $this->assertEquals($new_hash, $object->getHash()); }
/** * Test #11. SYNCH get an existent object. * @depends testDataWipedBeforeTest * @depends testGetExistent */ public function testSynchGet() { global $testUserId1; global $synchAuthToken; $object = new User($testUserId1); $object->setName("Test User"); $object->setExternalType("externaltype"); $object->setExternalId("externalid"); $object->setAccess("Y"); $object->setEmail("*****@*****.**"); $object->setNotification("Y"); $object->setTempCode("tempcode"); $object->setDeleted('Y'); $object->save(); $hash = $object->getHash(); $data = array('hash' => $hash); $result = getApi('synchUser.php', $data, $synchAuthToken); $this->assertEquals(RESPONSE_SUCCESS, $result['resultCode']); $this->assertTrue(isset($result['userId'])); $this->assertTrue(isset($result['created'])); $this->assertTrue(isset($result['updated'])); $this->assertTrue(isset($result['name'])); $this->assertTrue(isset($result['externalType'])); $this->assertTrue(isset($result['externalId'])); $this->assertTrue(isset($result['access'])); $this->assertTrue(isset($result['email'])); $this->assertTrue(isset($result['notification'])); $this->assertTrue(isset($result['tempCode'])); $this->assertTrue(isset($result['deleted'])); $this->assertTrue(isset($result['hash'])); $this->assertEquals($testUserId1, $result['userId']); $this->assertEquals($object->getCreated(), $result['created']); $this->assertEquals($object->getUpdated(), $result['updated']); $this->assertEquals("Test User", $result['name']); $this->assertEquals("externaltype", $result['externalType']); $this->assertEquals("externalid", $result['externalId']); $this->assertEquals("Y", $result['access']); $this->assertEquals("*****@*****.**", $result['email']); $this->assertEquals("Y", $result['notification']); $this->assertEquals("tempcode", $result['tempCode']); $this->assertEquals('Y', $result['deleted']); $this->assertEquals($hash, $result['hash']); }
} else { if (!$auth->canPutUser($userId)) { $response = errorResponse(RESPONSE_UNAUTHORIZED); } else { $object = new User($userId); if (isset($data['name'])) { $object->setName($data['name']); } if (isset($data['externalType'])) { $object->setExternalType($data['externalType']); } if (isset($data['externalId'])) { $object->setExternalId($data['externalId']); } if (isset($data['access'])) { $object->setAccess($data['access']); } if (isset($data['email'])) { $object->setEmail($data['email']); } if (isset($data['notification'])) { $object->setNotification($data['notification']); } if (isset($data['tempCode'])) { $object->setTempCode($data['tempCode']); } if (isset($data['deleted'])) { $object->setDeleted($data['deleted']); } if ($object->save()) { $response = successResponse();
} if ($Config["general"]["demo"]) { if (isset($_POST["request"]) && $_POST["request"] == "auth" && !$_SESSION["logged"]) { foreach ($DemoData["users"] as $user_) { if ($user_["login"] == $_POST['login'] && $user_["passwd"] == $_POST['password'] && $user_["enabled"] == true) { echo "<!-- local auth -->"; $_SESSION["local"] = true; $_SESSION["logged"] = true; $_SESSION["access"] = $user_["access"]; break; } } } if ($_SESSION["logged"] == true) { $user->setLogined($_SESSION["logged"]); $user->setAccess($_SESSION["access"]); $user->setLocal($_SESSION["local"]); $_SESSION["demo"] = true; } if ($_SESSION["logged"]) { if (isset($_POST["request"]) && $_POST["request"] != "auth") { switch ($_POST["request"]) { case "system": $data = array('uptime' => $DemoData['Uptime'], 'last' => $DemoData['LastUser'], 'active' => $DemoData['ActiveUsers']); echo json_encode($data); break; case "memory": $rand_ = rand(-50, 100); $total = $DemoData["RAM_total"]; $used = $DemoData["RAM_used"] + $rand_; $free = $total - $used;
// create user object $this_user = new User(); if ($this_user == null) { header("Location: dashboard.php?message=parameter"); exit(0); } $this_user->setUsername($parms->getParm('username')); $this_user->setFullname($parms->getParm('fullname')); // check password matches if ($parms->getParm('newpassword') != $parms->getParm('repeatpassword')) { // in future should instead recreate form with rest of details readded header("Location: adduser.php?message=passwordmatch"); exit(0); } $this_user->setPassword(md5($parms->getParm('newpassword'))); $this_user->setAccess($parms->getParm('access')); $this_user->setEnabled($parms->getParm('status')); // expiry is a value in secs - no need to convert $this_user->setLoginexpiry($parms->getParm('loginexpiry')); $this_user->setSupervisor($parms->getParm('supervisor')); $this_user->setAdmin($parms->getParm('admin')); // save entry $kdb->insertUser($this_user); include "inc/dashboardheaders.php"; print <<<EOT {$header} {$login_banner} {$main_banner} {$menu_banner} {$main_menu}
$fullname = $_POST['fullname']; $password = $_POST['password']; $password2 = $_POST['password2']; $email = $_POST['email']; $do = $_POST['do']; if ($do) { // got user input, check it $errors = validateUser(); if ($errors) { showForm($errors); } else { updateTables($version); $user = new User($name); $user->setName($fullname); $user->setPassword($password); $user->setAccess('admin'); $user->setEmail($email); $user->save(); } } else { showForm(''); } } else { updateTables($version); } function showForm($errors) { $name = $_POST['name']; $fullname = $_POST['fullname']; $password = $_POST['password']; $password2 = $_POST['password2'];