function qa_log_in_external_user($source, $identifier, $fields)
{
if (qa_to_override(__FUNCTION__)) {
$args = func_get_args();
return qa_call_override(__FUNCTION__, $args);
}
require_once QA_INCLUDE_DIR . 'db/users.php';
$users = qa_db_user_login_find($source, $identifier);
$countusers = count($users);
if ($countusers > 1) {
qa_fatal_error('External login mapped to more than one user');
}
// should never happen
if ($countusers) {
// user exists so log them in
qa_set_logged_in_user($users[0]['userid'], $users[0]['handle'], false, $source);
} else {
// create and log in user
require_once QA_INCLUDE_DIR . 'app/users-edit.php';
qa_db_user_login_sync(true);
$users = qa_db_user_login_find($source, $identifier);
// check again after table is locked
if (count($users) == 1) {
qa_db_user_login_sync(false);
qa_set_logged_in_user($users[0]['userid'], $users[0]['handle'], false, $source);
} else {
$handle = qa_handle_make_valid(@$fields['handle']);
if (strlen(@$fields['email'])) {
// remove email address if it will cause a duplicate
$emailusers = qa_db_user_find_by_email($fields['email']);
if (count($emailusers)) {
qa_redirect('login', array('e' => $fields['email'], 'ee' => '1'));
unset($fields['email']);
unset($fields['confirmed']);
}
}
$userid = qa_create_new_user((string) @$fields['email'], null, $handle, isset($fields['level']) ? $fields['level'] : QA_USER_LEVEL_BASIC, @$fields['confirmed']);
qa_db_user_login_add($userid, $source, $identifier);
qa_db_user_login_sync(false);
$profilefields = array('name', 'location', 'website', 'about');
foreach ($profilefields as $fieldname) {
if (strlen(@$fields[$fieldname])) {
qa_db_user_profile_set($userid, $fieldname, $fields[$fieldname]);
}
}
if (strlen(@$fields['avatar'])) {
qa_set_user_avatar($userid, $fields['avatar']);
}
qa_set_logged_in_user($userid, $handle, false, $source);
}
}
}
function qa_log_in_external_user($source, $identifier, $fields)
{
require_once QA_INCLUDE_DIR . 'qa-db-users.php';
$users = qa_db_user_login_find($source, $identifier);
$countusers = count($users);
if ($countusers > 1) {
qa_fatal_error('External login mapped to more than one user');
}
// should never happen
if ($countusers) {
// user exists so log them in
qa_set_logged_in_user($users[0]['userid'], $users[0]['handle'], false, $source);
} else {
// create and log in user
require_once QA_INCLUDE_DIR . 'qa-app-users-edit.php';
$handle = qa_handle_make_valid(@$fields['handle']);
$userid = qa_create_new_user((string) @$fields['email'], null, $handle, isset($fields['level']) ? $fields['level'] : QA_USER_LEVEL_BASIC, @$fields['confirmed']);
qa_db_user_login_add($userid, $source, $identifier);
$profilefields = array('name', 'location', 'website', 'about');
foreach ($profilefields as $fieldname) {
if (strlen(@$fields[$fieldname])) {
qa_db_user_profile_set($userid, $fieldname, $fields[$fieldname]);
}
}
if (strlen(@$fields['avatar'])) {
qa_set_user_avatar($userid, $fields['avatar']);
}
qa_set_logged_in_user($userid, $handle, false, $source);
}
}
qa_db_user_set_flag($userid, QA_USER_FLAGS_SHOW_GRAVATAR, $inavatar == 'gravatar');
if (is_array(@$_FILES['file']) && $_FILES['file']['size']) {
require_once QA_INCLUDE_DIR . 'qa-app-limits.php';
switch (qa_user_permit_error(null, QA_LIMIT_UPLOADS)) {
case 'limit':
$errors['avatar'] = qa_lang('main/upload_limit');
break;
default:
$errors['avatar'] = qa_lang('users/no_permission');
break;
case false:
qa_limits_increment($userid, QA_LIMIT_UPLOADS);
$toobig = qa_image_file_too_big($_FILES['file']['tmp_name'], qa_opt('avatar_store_size'));
if ($toobig) {
$errors['avatar'] = qa_lang_sub('main/image_too_big_x_pc', (int) ($toobig * 100));
} elseif (!qa_set_user_avatar($userid, file_get_contents($_FILES['file']['tmp_name']), $useraccount['avatarblobid'])) {
$errors['avatar'] = qa_lang_sub('main/image_not_read', implode(', ', qa_gd_image_formats()));
}
break;
}
}
if (count($inprofile)) {
$filtermodules = qa_load_modules_with('filter', 'filter_profile');
foreach ($filtermodules as $filtermodule) {
$filtermodule->filter_profile($inprofile, $errors, $useraccount, $userprofile);
}
}
foreach ($userfields as $userfield) {
if (!isset($errors[$userfield['fieldid']])) {
qa_db_user_profile_set($userid, $userfield['title'], $inprofile[$userfield['fieldid']]);
}
/**
* Overrides the default mechanism of logging in from external sources.
*
* Adds a different way of tracking the sessions and performs some
* additional tasks when creating an user account (setting new fields,
* extra checks, etc).
*/
function qa_log_in_external_user($source, $identifier, $fields)
{
require_once QA_INCLUDE_DIR . 'qa-db-users.php';
$remember = qa_opt('open_login_remember') ? true : false;
$users = qa_db_user_login_find($source, $identifier);
$countusers = count($users);
if ($countusers > 1) {
qa_fatal_error('External login mapped to more than one user');
}
// should never happen
/*
* To allow for more than one account from the same openid/openauth provider to be
* linked to an Q2A user, we need to override the way session source is stored
* Supposing userid 01 is linked to 2 yahoo accounts, the session source will be
* something like 'yahoo-xyz' when logging in with the first yahoo account and
* 'yahoo-xyt' when logging in with the other.
*/
$aggsource = qa_open_login_get_new_source($source, $identifier);
// prepare some data
if (empty($fields['handle'])) {
$ohandle = ucfirst($source);
} else {
$ohandle = preg_replace('/[\\@\\+\\/]/', ' ', $fields['handle']);
}
$oemail = null;
if (strlen(@$fields['email']) && $fields['confirmed']) {
// only if email is confirmed
$oemail = $fields['email'];
}
if ($countusers) {
// user exists so log them in
//always update email and handle
if ($oemail) {
qa_db_user_login_set__open($source, $identifier, 'oemail', $oemail);
}
qa_db_user_login_set__open($source, $identifier, 'ohandle', $ohandle);
qa_set_logged_in_user($users[0]['userid'], $users[0]['handle'], $remember, $aggsource);
} else {
// create and log in user
require_once QA_INCLUDE_DIR . 'qa-app-users-edit.php';
qa_db_user_login_sync(true);
$users = qa_db_user_login_find($source, $identifier);
// check again after table is locked
if (count($users) == 1) {
//always update email and handle
if ($oemail) {
qa_db_user_login_set__open($source, $identifier, 'oemail', $oemail);
}
qa_db_user_login_set__open($source, $identifier, 'ohandle', $ohandle);
qa_db_user_login_sync(false);
qa_set_logged_in_user($users[0]['userid'], $users[0]['handle'], $remember, $aggsource);
} else {
$handle = qa_handle_make_valid(@$fields['handle']);
// check if email address already exists
$emailusers = array();
if (strlen(@$fields['email']) && $fields['confirmed']) {
// only if email is confirmed
$emailusers = qa_db_user_find_by_email_or_oemail__open($fields['email']);
if (count($emailusers)) {
// unset regular email to prevent duplicates
unset($fields['email']);
}
}
$userid = qa_create_new_user((string) @$fields['email'], null, $handle, isset($fields['level']) ? $fields['level'] : QA_USER_LEVEL_BASIC, @$fields['confirmed']);
qa_db_user_set($userid, 'oemail', $oemail);
qa_db_user_login_add($userid, $source, $identifier);
qa_db_user_login_set__open($source, $identifier, 'oemail', $oemail);
qa_db_user_login_set__open($source, $identifier, 'ohandle', $ohandle);
qa_db_user_login_sync(false);
$profilefields = array('name', 'location', 'website', 'about');
foreach ($profilefields as $fieldname) {
if (strlen(@$fields[$fieldname])) {
qa_db_user_profile_set($userid, $fieldname, $fields[$fieldname]);
}
}
if (strlen(@$fields['avatar'])) {
qa_set_user_avatar($userid, $fields['avatar']);
}
qa_set_logged_in_user($userid, $handle, $remember, $aggsource);
return count($emailusers);
}
}
return 0;
}
