/**
* @param $user User
* @param $sessionOnly boolean
* @param null $expireDate int
* @return UserSession
*/
public static function createForUser($user, $expireDate)
{
$session = new UserSession();
$session->user = $user->id;
$session->token = Auth::generateSessionToken($user->salt);
$session->createDate = Database::now();
$session->expireDate = CommonUtil::sqlTimeStamp($expireDate);
$session->expired = 0;
$session->save();
return $session;
}
public static function createEdit($article, $user)
{
$edit = new ArticleEdit();
$edit->article = $article->id;
$edit->user = $user->id;
$edit->title = $article->title;
$edit->text = $article->text;
$edit->timestamp = Database::now();
$edit->save();
return $edit;
}
public static function create($userId, $sessionId)
{
$ip = $_SERVER["REMOTE_ADDR"];
$userAgent = $_SERVER["HTTP_USER_AGENT"];
$uri = $_SERVER["REQUEST_URI"];
$log = new AccessLog();
$log->user = $userId;
$log->session = $sessionId;
$log->ip = $ip;
$log->userAgent = UserAgent::getId($userAgent);
$log->uri = $uri;
$log->date = Database::now();
$log->save();
return $log;
}
/**
* @param $username string
* @param $password string
* @param $firstName string
* @param $lastName string
* @return mixed
*/
public static function register($username, $password, $firstName, $lastName, $accessLevel = 0, $premade = 0, $email = "", $phone = "")
{
if (User::findByUsername($username)) {
return null;
}
$user = new User();
$user->username = $username;
$user->salt = Auth::generatePasswordSalt();
$user->password = Auth::hashPassword($password, $user->salt);
$user->firstName = $firstName;
$user->lastName = $lastName;
$user->email = $email;
$user->phone = $phone;
$user->accessLevel = $accessLevel;
$user->premade = $premade;
$user->createDate = Database::now();
if (!$user->save()) {
return null;
}
return $user;
}
<?php
require_once "inc/init.php";
if (!Session::getUser()) {
CommonUtil::redirect("index");
exit(0);
}
if (!isset($_POST["feedback"])) {
CommonUtil::redirect("index");
exit(0);
}
$fb = new Feedback();
$fb->user = Session::getUser()->id;
$fb->feedback = $_POST["feedback"];
$fb->timestamp = Database::now();
$fb->save();
require "views/head.php";
?>
<div style="width: 20em; padding: 2em; background-color: #555; margin: 3em auto; color: #f5f5f5">
<h2>Kiitos palautteestasi!</h2>
<p>Sivu uudelleenohjaa <a href="index">etusivulle</a> automaattisesti kolmen sekunnin kuluessa.</p>
</div>
<script>
setTimeout(function(){
document.location = "index";
},3000);
</script>
<?php
require "views/foot.php";
$article->published = 0;
} else {
$article = Article::model()->findByPk($_POST["id"]);
}
if (!$article) {
CommonUtil::redirect("admin/contentmanager");
exit(0);
}
// set info
$article->title = $_POST["title"];
$article->description = $_POST["description"];
$article->text = $_POST["text"];
$article->category = $_POST["category"];
$article->accessLevel = $_POST["accessLevel"];
$article->unlisted = false;
$article->updateDate = Database::now();
// save article
$article->save();
// save history
ArticleEdit::createEdit($article, Session::getUser());
if ($_POST["externalAttachment"]) {
$url = $_POST["externalAttachment"];
$parsedUrl = parse_url($url);
// make sure it's a youtube link.
if ($parsedUrl["host"] == "www.youtube.com" || $parsedUrl["host"] == "youtube.com") {
parse_str($parsedUrl["query"], $query);
if (isset($query["v"])) {
$attachment = new ArticleAttachment();
$attachment->data = $query["v"];
$attachment->article = $article->id;
$attachment->type = ArticleAttachment::TYPE_VIDEO;
