<?php // $Id: authenticate.php 1294 2012-08-09 23:44:40Z preston $ Copyright (c) ConSked, LLC. All Rights Reserved. require_once 'util/session.php'; require_once 'db/Worker.php'; require_once 'db/WorkerLogin.php'; // require session login if (!isLoggedIn()) { logMessage('authentication', 'worker not logged in'); header('Location: WorkerLoginPage.php'); include 'WorkerLoginPage.php'; return; } if (WorkerLogin::isDisabled(getWorkerAuthenticated()->workerid)) { logMessage('authentication', 'worker is being forced to log out per disabling'); header('Location: WorkerLoginPage.php'); include 'WorkerLoginPage.php'; return; }
session_cache_limiter('nocache'); session_start(); if (!isset($_SESSION[AUTHENTICATED_TEMP]) && !isLoggedIn()) { logMessage('authentication', 'worker not logged in'); header('Location: WorkerLoginPage.php'); include 'WorkerLoginPage.php'; return; } require_once 'db/Worker.php'; require_once 'db/WorkerLogin.php'; require_once 'util/log.php'; require_once 'swwat/gizmos/parse.php'; $password = swwat_parse_string(html_entity_decode($_POST[PARAM_PASSWORD]), true); if (is_null($password)) { header('Location: WorkerLoginChangePage.php'); include 'WorkerLoginChangePage.php'; return; } // else $worker = isset($_SESSION[AUTHENTICATED_TEMP]) ? $_SESSION[AUTHENTICATED_TEMP] : getWorkerAuthenticated(); WorkerLogin::password_change($worker->workerid, $password); $worker = getWorkerAuthenticated(); $password = NULL; if ($worker->isOrganizer()) { header('Location: SiteAdminPage.php'); include 'SiteAdminPage.php'; } else { header('Location: WorkerViewPage.php'); include 'WorkerViewPage.php'; } return;
public static function inviteUnknown(Expo $expo, $expirationDate, array $invitationArray, $withCode = TRUE, $uniqueCode = TRUE) { $welcomeForm = self::getInvitationForm($withCode); $welcomeParams = array("EXPONAME" => $expo->title); $expirationDate = is_null($expirationDate) ? $expo->stopTime : $expirationDate; $code = WorkerLogin::generate_random_password(); foreach ($invitationArray as $invite) { $invite->expoid = $expo->expoid; $invite->expirationDate = $expirationDate; if ($withCode) { $invite->code = $code; if ($uniqueCode) { $invite->code = WorkerLogin::generate_random_password(); } $welcomeParams["CODE"] = $invite->code; } $welcomeParams["EMAIL"] = $invite->email; $invite->insert($welcomeForm, $welcomeParams); } // $invite $invite = NULL; return; }
<?php // $Id: WorkerDisableAction.php 604 2012-06-07 21:11:57Z cross $ Copyright (c) ConSked, LLC. All Rights Reserved. include 'util/authenticateOrganizer.php'; require_once 'properties/constants.php'; require_once 'db/Worker.php'; require_once 'db/WorkerLogin.php'; require_once 'util/log.php'; require_once 'util/session.php'; $worker = getWorkerCurrent(); if (isset($_REQUEST[PARAM_DISABLED])) { // if enabled, we DISable; if disabled, we ENable WorkerLogin::set_isDisabled($worker->workerid, !$worker->isDisabled); $worker->isDisabled = !$worker->isDisabled; // set after in case of DB error } // in all cases header('Location: WorkerViewPage.php'); include 'WorkerViewPage.php';
public static function disable($email) { WorkerLogin::set_isDisabled($email, TRUE); }
require_once 'db/WorkerLogin.php'; require_once 'util/log.php'; require_once 'util/session.php'; require_once 'swwat/gizmos/parse.php'; try { $email = swwat_parse_string(html_entity_decode($_POST[PARAM_EMAIL]), true); $password = swwat_parse_string(html_entity_decode($_POST[PARAM_PASSWORD]), true); if (is_null($email)) { throw new LoginException('username required'); } if (is_null($password)) { throw new LoginException('password required'); } // else try { WorkerLogin::password_authenticate($email, $password); $password = NULL; $worker = getWorkerAuthenticated(); // see if any invites $invitations = Invitation::selectWorker($worker->workerid); // look for explicit-only foreach ($invitations as $invite) { if ($invite->workerid == $worker->workerid) { // default to Registation page header('Location: WorkerRegistrationPage.php'); include 'WorkerRegistrationPage.php'; return; } } // $invite //Go to the proper page
<?php require_once 'db/WorkerLogin.php'; WorkerLogin::password_change(3, 'LIhiggs61');
<?php // $Id: WorkerLoginResetAction.php 1345 2012-08-21 15:40:38Z preston $ Copyright (c) ConSked, LLC. All Rights Reserved. include 'util/authenticate.php'; require_once 'properties/constants.php'; require_once 'db/WorkerLogin.php'; require_once 'util/log.php'; require_once 'util/mail.php'; require_once 'util/session.php'; require_once 'swwat/gizmos/parse.php'; /** * This Controller is used by the WorkerLoginPage's reset button (typically used by the Worker themselves) * vs. the WorkerViewPage's reset button (typically used by an Organizer) */ $email = swwat_parse_string(html_entity_decode($_POST[PARAM_EMAIL]), true); if (is_null($email)) { throw new LoginException('username required'); } try { $password = WorkerLogin::password_reset($email); FormMail::sendPasswordReset($email, $password); $password = NULL; } catch (Exception $ex) { logMessage('WorkerLoginResetAction error', $ex->getMessage()); } $password = NULL; // in all cases; redirect back to Login page header('Location: WorkerLoginPage.php'); include 'WorkerLoginPage.php';