function registerUser()
{
$stat = '';
try {
$userManager = new UserManager();
$userId = $userManager->getUserId($_GET["email"]);
if (!$userId) {
$user = new User();
$user->hydrate(populateUserArrayFromGet());
$userManager->save($user);
if (session_status() == PHP_SESSION_NONE) {
session_start();
}
$_SESSION['FFuser'] = serialize($user);
$stat = 'Registration successful; ' . $user->getName() . " logged in";
} else {
$stat = 'Registration failed; duplicate user email';
}
} catch (Exception $e) {
error_log('registerUser Exception: ' . $e->getMessage(), 0);
$stat = $e->getMessage();
}
return $stat;
}
// after you save User data to sesson
// otherwise, return to UserInfo page.
if (!$User) {
include 'views/userInfo.php';
} else {
$_SESSION['current_user'] = $User;
include 'views/report.php';
}
} else {
// is user entered email address, go ahead and update user in case it is a new email.
if (isset($_GET['email'])) {
$username = $_GET['name'];
$email = $_GET['email'];
$UserID = $_GET['UID'];
$User = new User();
$User->setMail($email);
$User->setName($username);
$User->setUID($UserID);
$UserManager = new UserManager();
$returnVal = $UserManager->save($User);
// URW TODO Remove commented line
// No need to set user ID. this should always be an update User was added before this page
// came up.
// $User->setUID($returnVal);
$_SESSION['current_user'] = $User;
// print("<br><br>Saving to session before PlantAdd. <br>");
/*var_dump ($User);*/
}
// now go to the plant data collection form
include_once "views/flower_add.php";
}
} elseif (isset($_GET['confirm'])) {
//visitor goes on what seems to be a good link
$message = new Alert("danger", true);
$confirmCode = htmlspecialchars($_GET['confirm']);
$userManager = new UserManager($db);
$user = $userManager->getUniqueFromConfirmCode($confirmCode);
if ($user instanceof User) {
//if code corresponds to user
//echo $user->getUserStatus();
if ($user->getUserStatus() < 2) {
//if user is not confirmed yet
//echo ' in';
//echo $user->getUserStatus();
$user->setUserStatus(2);
//echo 'in';
$userManager->save($user);
//echo $user->getUserStatus().'in';
$message = new Alert("info", true);
$message->addText('Thanks ' . $user->getFirstName() . '!</br>Your email is now confirmed. You can already login.');
$message->messageToSession();
//echo $user->getUserStatus().'should be there';
header('Location: index.php');
exit;
//echo '</br> shouldnt be there';
} else {
//user already confirmed
$message->addText("Your account is already confirmed.");
}
} else {
//confirmCode doesnt exist
$message->addText("Your comfirm link is broken.");
<?php
// Inicio la sesión
@session_start();
// Load user
require_once __DIR__ . '/../oop/manager/UserManager.php';
require_once __DIR__ . '/../oop/Security.php';
$userManager = new UserManager();
$USER = $userManager->loadSession();
// Check the login
if ($USER != null) {
$oldPIN = Security::obtainHash($_POST['oldPIN'], $USER->getID());
$newPIN1 = $_POST['newPIN1'];
$newPIN2 = $_POST['newPIN2'];
if ($newPIN1 != $newPIN2) {
echo 'different';
} else {
if ($oldPIN != $USER->getPIN()) {
echo 'wrong';
} else {
$USER->setPIN($newPIN1);
$userManager->save($USER);
echo 'correct';
}
}
} else {
echo 'wrong';
}
$user = $userManager->getUser($target);
$roles = $userManager->getAllRoles();
include '../views/user_add_edit_view.php';
break;
case 'save_user':
$userManager = new UserManager();
$arr = array();
$arr["email"] = isset($_GET["email"]) ? $_GET["email"] : '';
$arr["name"] = isset($_GET["name"]) ? $_GET["name"] : '';
$arr["password"] = isset($_GET["password"]) ? $_GET["password"] : '';
$arr["created"] = isset($_GET["created"]) ? $_GET["created"] : '';
$arr["lastLogin"] = isset($_GET["lastLogin"]) ? $_GET["lastLogin"] : '';
$arr["roleid"] = isset($_GET["roleid"]) ? $_GET["roleid"] : '';
$user = new User();
$user->hydrate($arr);
$success = $userManager->save($user);
if (!$success) {
if ($_SESSION['current_user']->getrole() == USER) {
$roles = $userManager->getUserRole();
} else {
$roles = $userManager->getAllRoles();
}
$user->setemail = '';
include '../views/user_add_edit_view.php';
break;
}
header('Location: user.php');
break;
default:
$userManager = new UserManager();
$users = $userManager->getAllUsers();
//-------If all fields are correct--------
if ($postIsCorrect) {
// Check that email doesn't exist yet
$userManager = new UserManager($db);
if (!$userManager->getUniqueFromEmail($email) instanceof User) {
//User doesn't exist yet, and data are checked
//So we register user (userType 1,userStatus 1,..)
$data = User::returnDataArrayFromData(1, 1, $email, $university->getId(), $firstName, $lastName, $passWord);
$newUser = new User($data);
$newUser->setEmailChecker();
$mailer->sendEmailVerify($newUser);
if ($mailer->sendEmailVerify($newUser)) {
$message = new Alert('info', true);
$message->addText('Welcome <strong>' . $firstName . '</strong>! Before you log in, please confirm your email by clicking the link you received.');
$message->messageToSession();
$userManager->save($newUser);
header('Location: index.php');
exit;
} else {
$message = new Alert('warning', true);
$message->addText('Sorry <strong>' . $firstName . '</strong> we had a little problem! Please try again.');
$message->messageToSession();
}
} else {
//User exist already ( email already used)
$message->addText('Email address already registered.');
}
}
//-------All fields are NOT correct OR user already registered --------
// From here, there was a problem with one of the field or user already registered
// We show the form again, prefill in with error message
header('Location: index.php?action=login');
}
$target = isset($_GET["target"]) ? $_GET["target"] : '';
//$target = $current_user->id;
//var_dump($user->getId());
switch ($action) {
case 'user_save':
$userManager = new UserManager();
$arr = array();
$arr["name"] = isset($_POST["name"]) ? $_POST["name"] : '';
$arr["email"] = isset($_POST["email"]) ? $_POST["email"] : '';
$arr["pass"] = isset($_POST["pass"]) ? $_POST["pass"] : '';
// $arr["role"] = isset($_POST["role"])?$_POST["role"]:'';
$user = new User();
$user->hydrate($arr);
$userManager->save($user);
$error = $userManager->save($user);
//var_dump($user);
// header('Location: index.php');
include '../views/register_success.php';
break;
case 'account':
$userManager = new UserManager();
$user = $userManager->getUser($target);
include '../views/user_view.php';
break;
// case 'user_edit':
// $userManager = new UserManager();
// $user = $userManager->getUser($target);
// $roles = $userManager->getAllRoles();
// include('../views/user_add_edit.php');
