/**
* Create user details form (single user).
*
* @return void
*/
public function init()
{
// Invoke the agent user manager
$agentUserManager = new Manager_Core_Agent_User();
// Create array of possible security questions
$securityQuestions = array('' => '--- please select ---');
$securityQuestions += $agentUserManager->getUserSecurityAllQuestions();
// Add real name element
$this->addElement('text', 'realname', array('label' => 'Full name', 'required' => true, 'filters' => array('StringTrim'), 'validators' => array(array('NotEmpty', true, array('messages' => array('isEmpty' => 'Please enter your full name', 'notEmptyInvalid' => 'Please enter your full name'))), array('regex', true, array('pattern' => '/^[a-z\\-\\ \']{2,}$/i', 'messages' => 'Name must contain at least two alphabetic characters and only basic punctuation (hyphen, space and single quote)')))));
// Add username element
$this->addElement('text', 'username', array('label' => 'Username', 'required' => false, 'filters' => array('StringTrim'), 'validators' => array(array('NotEmpty', true, array('messages' => array('isEmpty' => 'Please enter your username', 'notEmptyInvalid' => 'Please enter your username'))), array('regex', true, array('pattern' => '/^[a-z0-9]{1,64}$/i', 'messages' => 'Username must contain between 1 and 64 alphanumeric characters')))));
if ($this->_role == Model_Core_Agent_UserRole::MASTER) {
$this->getElement('username')->setRequired(true);
} else {
$this->getElement('username')->setAttrib('disabled', 'disabled');
}
// Add password1 element
$passwordElement1 = new Zend_Form_Element_Password('password1');
$passwordElement1->setRequired(false);
$passwordElement1->setLabel('New password:'******'password2');
$validator->setMessage('Passwords are not the same', Zend_Validate_Identical::NOT_SAME);
$passwordElement1->addValidator($validator);
$passwordElement2 = new Zend_Form_Element_Password('password2');
$passwordElement2->setRequired(false);
$passwordElement2->setLabel('New password (again)');
$this->addElement($passwordElement2);
// Add e-mail element
$this->addElement('text', 'email', array('label' => 'E-mail address', 'required' => false, 'filters' => array('StringTrim'), 'validators' => array(array('NotEmpty', true, array('messages' => array('isEmpty' => 'Please enter your e-mail address'))))));
$emailValidator = new Zend_Validate_EmailAddress();
$emailValidator->setMessages(array(Zend_Validate_EmailAddress::INVALID_HOSTNAME => 'Domain name invalid in e-mail address', Zend_Validate_EmailAddress::INVALID_FORMAT => 'Invalid e-mail address'));
$this->getElement('email')->addValidator($emailValidator);
if ($this->_role == Model_Core_Agent_UserRole::MASTER) {
$this->getElement('email')->setRequired(true);
} else {
$this->getElement('email')->setAttrib('disabled', 'disabled');
}
// Add e-mail element
$this->addElement('text', 'emailcopyto', array('label' => 'Copy e-mail to', 'required' => false, 'filters' => array('StringTrim'), 'validators' => array(array('NotEmpty', true, array('messages' => array('isEmpty' => 'Please enter a copy-to e-mail address'))))));
$emailCopyToValidator = new Zend_Validate_EmailAddress();
$emailCopyToValidator->setMessages(array(Zend_Validate_EmailAddress::INVALID_HOSTNAME => 'Domain name invalid in copy-to e-mail address', Zend_Validate_EmailAddress::INVALID_FORMAT => 'Invalid copy-to e-mail address'));
$this->getElement('emailcopyto')->addValidator($emailCopyToValidator);
// Add security question element
$this->addElement('select', 'question', array('label' => 'Security question', 'required' => false, 'multiOptions' => $securityQuestions));
// Add security answer element
$this->addElement('text', 'answer', array('label' => 'Security answer', 'required' => false, 'filters' => array('StringTrim'), 'validators' => array(array('regex', true, array('pattern' => '/^[\\w\\ \\.\\-\'\\,]{2,}$/i', 'messages' => 'Security answer must contain at least two characters and only basic punctuation (hyphen, apostrophe, comma, full stop and space)')))));
// Add master user element
$this->addElement('checkbox', 'master', array('label' => 'Master user', 'required' => false, 'checkedValue' => '1', 'uncheckedValue' => '0'));
// Add agent reports element
$this->addElement('checkbox', 'reports', array('label' => 'Agent reports', 'required' => false, 'checkedValue' => '1', 'uncheckedValue' => '0'));
// Add status element
$this->addElement('checkbox', 'status', array('label' => 'Active', 'required' => false, 'checkedValue' => '1', 'uncheckedValue' => '0'));
// Set custom subform decorator
$this->setDecorators(array(array('ViewScript', array('viewScript' => 'settings/subforms/useraccount.phtml', 'role' => $this->_role))));
$this->setElementFilters(array('StripTags'));
$this->setElementDecorators(array(array('ViewHelper', array('escape' => false)), array('Label', array('escape' => false))));
}
/**
* Generate user accounts HTML.
*
* @param integer $userStatus
* Must correspond to one of the consts exposed by the Model_Core_Agent_UserStatus class.
*
* @param null|int|array $filterOutUserIds Optional filter, can be empty
* (null) for no filtering, have one ID (int), or an array of IDs (array of
* int)
*
* @return string
* Returns the HTML as a string.
*/
public function listUsers($userStatus, $filterOutUserIds = null)
{
$returnVal = '';
$userManager = new Manager_Core_Agent_User();
$users = $userManager->getUsersByStatus($this->_agentSchemeNumber, $userStatus);
if ($userStatus == Model_Core_Agent_UserStatus::ACTIVATED) {
$userStatusClass = 'activated';
} else {
$userStatusClass = 'deactivated';
}
// Set up to do any on-the-fly filtering
if (is_numeric($filterOutUserIds)) {
// Convert numeric to single element array
$filterOutUserIds = array($filterOutUserIds);
}
if (!is_array($filterOutUserIds)) {
// Convert null to empty array
$filterOutUserIds = array();
}
// Instantiate form - a single instantiation is recycled to save CPU
// time and mem footprint!
$userForm = new Connect_Form_SettingsUserAccount(Model_Core_Agent_UserRole::MASTER);
$firstRow = true;
$userManager = new Manager_Core_Agent_User();
foreach ($users as $userObj) {
// Filter out?
if (!in_array($userObj->id, $filterOutUserIds)) {
// Populate form with user object stuffs
$userForm->subform_useraccount->getElement('realname')->setValue($userObj->name);
$userForm->subform_useraccount->getElement('username')->setValue($userObj->username);
$userForm->subform_useraccount->getElement('email')->setValue($userObj->email->emailAddress);
$userForm->subform_useraccount->getElement('emailcopyto')->setValue($userObj->copyMailTo->emailAddress);
$userSecurity = $userManager->getUserSecurityDetails($userObj->id);
$userForm->subform_useraccount->getElement('question')->setValue($userSecurity['questionID']);
$userForm->subform_useraccount->getElement('answer')->setValue($userSecurity['answer']);
$userRole = $userObj->role == Model_Core_Agent_UserRole::MASTER ? '1' : '0';
$userForm->subform_useraccount->getElement('master')->setValue($userRole);
$userResourcesReports = in_array(Model_Core_Agent_UserResources::REPORTS, $userObj->resources) ? '1' : '0';
$userForm->subform_useraccount->getElement('reports')->setValue($userResourcesReports);
$userStatus = $userObj->status == Model_Core_Agent_UserStatus::ACTIVATED ? '1' : '0';
$userForm->subform_useraccount->getElement('status')->setValue($userStatus);
// Generate HTML using partial view
$returnVal .= $this->view->partial('partials/edit-user-account.phtml', array('form' => $userForm, 'userId' => $userObj->id, 'firstRow' => $firstRow, 'userStatusClass' => $userStatusClass));
$firstRow = false;
}
}
return $returnVal;
}
/**
* Returns an active MOTD that is applicable to the agent user.
*
* If no MOTDs are applicable to the agent user, then this method will
* return null.
*
* @param integer $agentId
* Identifies the agent user.
*
* @param integer $agentSchemeNumber
* Identifies the agent user's scheme number.
*
* @return mixed
* Returns a MOTD, if an applicable one can be found from the list of active
* MOTDs. Otherwise will return null.
*/
function getMotd($agentId, $agentSchemeNumber)
{
// First identify if any active MOTDs
if (empty($this->_allActiveMotds)) {
return null;
}
// Determine the agent user type (basic or master)
$agentUser = new Manager_Core_Agent_User($agentId);
$agentUserType = $agentUser->getUserRole();
// Determine the agent type (standard, premier or premier-plus)
$agentManager = new Manager_Core_Agent($agentSchemeNumber);
$agent = $agentManager->getAgent();
$agentType = $agent->premierStatus;
$isMotdRequired = false;
foreach ($this->_allActiveMotds as $currentMotd) {
//Identify if the MOTD applies to the agent user type.
$agentUserTypesList = $currentMotd->getAgentUserTypes();
$agentUserTypes = explode(',', $agentUserTypesList);
if (!in_array($agentUserType, $agentUserTypes)) {
continue;
}
//Identify if the MOTD applies to the agent type.
$agentTypesList = $currentMotd->getAgentTypes();
$agentTypes = explode(',', $agentTypesList);
if (!in_array($agentType, $agentTypes)) {
continue;
}
//Identify if the agent user has viewed the MOTD already.
if ($this->_motdAcceptanceLoggerDatasource->checkMotdAccepted($currentMotd->getId(), $agentId)) {
continue;
}
//If here then the _currentMotd should be displayed to the user.
$isMotdRequired = true;
break;
}
if ($isMotdRequired) {
$returnVal = $currentMotd;
} else {
$returnVal = null;
}
return $returnVal;
}
/**
* Overridden isValid() method for pre-validation code.
*
* @param array $formData data typically from a POST or GET request.
*
* @return bool
*/
public function isValid($formData = array())
{
// If a password is given, username is mandatory
if (isset($formData['password']) && trim($formData['password']) != '') {
$this->getElement('username')->setRequired(true);
}
// If a security question is given, security answer is mandatory
if (isset($formData['question']) && trim($formData['question']) != '') {
$this->getElement('answer')->setRequired(true);
}
// Check what has been supplied is enough detail to find a single agent user with
$agentUserManager = new Manager_Core_Agent_User();
$fuzzySearchResult = $agentUserManager->searchByFuzzyCredentials($formData);
if (is_string($fuzzySearchResult)) {
// Agent details can't be found; set form-level error
$this->addError('A problem occurred: ' . $fuzzySearchResult);
}
// Call original isValid()
return parent::isValid($formData);
}
public function fetchExternalNewsAction()
{
// Check user is logged in
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_connect'));
if ($auth->hasIdentity()) {
// Fetch news according to this user's prefs
$userId = $auth->getStorage()->read()->agentid;
$userManager = new Manager_Core_Agent_User($userId);
// Check cache contents
$params = Zend_Registry::get('params');
// Initialise the user items cache
$frontendOptions = array('lifetime' => $params->cms->extnews->fetchUserFilteredItemsCacheLifetime, 'automatic_serialization' => true);
$backendOptions = array('cache_dir' => $params->cms->extnews->cachePath);
$cache = Zend_Cache::factory('Core', 'File', $frontendOptions, $backendOptions);
if (($newsJson = $cache->load('externalNews_user_' . $userId)) === false) {
// Cache miss, get new results
// Check user's news category preferences
$newsCategoryFilter = array();
list(, $newsPrefs) = $userManager->getUserExternalNewsPreferences();
foreach ($newsPrefs as $id => $obj) {
$newsCategoryFilter[] = $id;
}
$extNewsManager = new Manager_Cms_ExternalNews();
$externalNews = $extNewsManager->fetchNews($newsCategoryFilter);
// Create array ready for JSON output
$newsArray = array('news' => array());
$count = 0;
foreach ($externalNews as $newsItem) {
$newsArray['news']["item{$count}"] = array('title' => $newsItem->title, 'summary' => $newsItem->summary, 'link' => $newsItem->linkUrl, 'attribution' => "{$newsItem->sourceName}: {$newsItem->categoryName}");
$count++;
}
// Generate JSON
$newsJson = Zend_Json::encode($newsArray);
// Save in secondary cache for this user
$cache->save($newsJson, 'externalNews_user_' . $userId);
}
echo $newsJson;
}
}
public function initWeb()
{
// Start the zend layout engine and load the cms admin layout
Zend_Layout::startMvc();
$this->_helper->layout->setLayout('default');
if ($this->_hasAuth) {
$userAccountManager = new Manager_Core_Agent_User($this->_agentId);
$this->view->userresources = $userAccountManager->getUserResources();
// Set view parameters that are commonly used
$this->view->agentUsername = $this->_auth->getStorage()->read()->username;
$this->view->userRealName = $this->_agentrealname;
$agentNameArray = explode(' ', $this->_agentrealname);
$this->view->userRealFirstName = array_shift($agentNameArray);
$this->view->agentSchemeNumber = $this->_agentSchemeNumber;
$this->view->agentId = $this->_agentId;
$this->view->level = $this->_level;
$this->view->fsastatusabbr = $this->_fsastatusabbr;
// Pass agent object to view
$this->view->agentObj = $this->_agentObj;
}
// Pass params to view
$this->view->params = $this->_params;
}
/**
* Opens a PDF from local storage, populates it with agent details (if
* needed) and outputs it to either browser or by e-mail.
*
* @param string $formName The name of the PDF form, or 'all' for all by e-mail.
* @param mixed $asn Agent scheme number of agent whose details are to be inserted.
* @param int $agentUserId Optional user ID - needed for e-mailing forms.
* @param string $destination Optional output mechanism, if set should be 'browser' or not 'browser'.
* @param mixed $refno Optional reference number, for a special case PDF that requires applicant data injection.
*/
public function populateAndOuput($formName, $asn, $agentUserId = null, $destination = 'browser', $refno = null)
{
$attachmentList = array();
switch ($formName) {
// Forms that require agent details to be injected
case 'Agent-Company':
case 'Agent-Guarantor':
case 'Agent-Individual':
case 'Agent-Student-guarantor':
case 'Agent-Unemployed-guarantor':
// Instantiate agent manager and fetch agent details
$agentManager = new Manager_Core_Agent();
$agent = $agentManager->getAgent($asn);
// Shove agent details through form
$this->setForm($formName);
$this->agentPopulate($agent);
// For "Print Guarantor Form" from ref summary screen:
if (!is_null($refno)) {
// Fetch reference by refno using the Referencing MUNT Manager class
$refMuntManager = new Manager_ReferencingLegacy_Munt();
$reference = $refMuntManager->getReference($refno);
// For safety, ensure reference belongs to this ASN before injecting applicant details
if ($reference->customer->customerId == $asn) {
$this->applicantPopulate($reference);
}
}
if ($destination == 'browser') {
$this->output('browser');
} else {
$attachmentList[$formName] = $this->output('file');
}
break;
// Forms that are a pass-through
// Forms that are a pass-through
case 'Tenant-Declaration':
case 'Guarantor-Declaration':
$this->setForm($formName);
if ($destination == 'browser') {
$this->output('browser');
} else {
$attachmentList[$formName] = $this->output('file');
}
break;
// Send all forms - by e-mail only
// Send all forms - by e-mail only
case 'all':
// Instantiate agent manager and fetch agent details
$agentManager = new Manager_Core_Agent();
$agent = $agentManager->getAgent($asn);
// Generate those needing agent data merged in
foreach (array('Agent-Company', 'Agent-Guarantor', 'Agent-Individual', 'Agent-Student-guarantor', 'Agent-Unemployed-guarantor') as $thisFormName) {
$this->setForm($thisFormName);
$this->agentPopulate($agent);
$attachmentList[$thisFormName] = $this->output('file');
}
// Generate straight throughs
foreach (array('Tenant-Declaration', 'Guarantor-Declaration') as $thisFormName) {
$this->setForm($thisFormName);
$attachmentList[$thisFormName] = $this->output('file');
}
break;
}
// If there are attachments, this is/these are to be sent by e-mail
if (count($attachmentList) > 0) {
// Instantiate agent user manager to get name and e-mail address
$agentUserManager = new Manager_Core_Agent_User();
$agentUser = $agentUserManager->getUser($agentUserId);
// Generate e-mail
$mailer = new Application_Core_Mail();
$mailer->setTo($agentUser->email->emailAddress, $agentUser->name);
// TODO: Parameterise:
$mailer->setFrom('*****@*****.**', 'HomeLet Referencing');
$mailer->setSubject('HomeLet Referencing Application Form');
$mailer->setBodyText('Please find your HomeLet referencing application forms attached.');
foreach ($attachmentList as $name => $location) {
$mailer->addAttachment($location, "{$name}.pdf");
}
$mailer->send();
// Garbage collection
$this->garbageCollect($attachmentList);
}
}
/**
* Re-routes traffic appropriately.
*
* @param Zend_Controller_Request_Abstract $request
*/
public function preDispatch(Zend_Controller_Request_Abstract $request)
{
parent::preDispatch($request);
$controller = $request->getControllerName();
$action = $request->getActionName();
$module = $request->getModuleName();
// Perform authentication
switch ($module) {
case 'cms-admin':
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_admin'));
if (!$auth->hasIdentity()) {
$request->setControllerName('index');
$request->setActionName('login');
}
break;
case 'connect':
$params = Zend_Registry::get('params');
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_connect'));
// Set the session expiry timeout time
$sessionTimeOutSeconds = $params->connect->loginexpiry->sessionTimeOutSeconds;
$session = new Zend_Session_Namespace('hl_connect');
$session->setExpirationSeconds($sessionTimeOutSeconds);
if (!$auth->hasIdentity() && $action != 'lost-login' && $action != 'reset-password') {
$request->setControllerName('index');
$request->setActionName('login');
} else {
if ($auth->hasIdentity()) {
// Ignore logout - for when redirecting back to login, and own account expiration/deactivated actions.
if (!in_array($action, array('logout', 'account-deactivated', 'account-expired'))) {
// Perform account validation checks and display an error message in
// the event of...
// - the account is deactivated
// - the account expiry time from the last login has passed
$user_status = $auth->getStorage()->read()->status;
$user_lastlogindate = $auth->getStorage()->read()->lastlogindate;
$userlevel = $auth->getStorage()->read()->level;
$agentschemenumber = $auth->getStorage()->read()->agentschemeno;
$fsastatusabbr = $auth->getStorage()->read()->fsastatusabbr;
$agentAccountStatus = $auth->getStorage()->read()->agentAccountStatus;
if ($agentAccountStatus == Model_Core_Agent_Status::ON_HOLD) {
$request->setControllerName('index');
$request->setActionName('agent-fsa-nostatus');
} else {
if ($user_status == 'deactivated') {
// Deactivated, forward to new action to deal with deactivated users
$request->setControllerName('index');
$request->setActionName('account-deactivated');
// Important! Clears the successful authentication token
// given now that we know that the users session has expired
// and should not be permitted access.
$storage = $auth->getStorage();
$storage->clear();
break;
} else {
if ($fsastatusabbr == null || $fsastatusabbr == '') {
// Check FSA status. If the user is of level 3, display a message about their status
// Otherwise display a generic error
if ($userlevel == Model_Core_Agent_UserRole::MASTER) {
$request->setControllerName('index');
$request->setActionName('agent-fsa-nostatus');
} else {
$request->setControllerName('index');
$request->setActionName('account-deactivated');
}
// Important! Clears the successful authentication token
// given now that we know that the users session has expired
// and should not be permitted access.
$storage = $auth->getStorage();
$storage->clear();
break;
} else {
if ($user_lastlogindate != '0000-00-00') {
// Check account expiry
$expiry = 0;
if (@isset($params->connect->loginexpiry->time)) {
$expiry = $params->connect->loginexpiry->time;
}
// Add x worth days as per configuration and convert the unix
// timestamp to mysql date format for easy comparison below.
$unixTimeStamp = strtotime("+{$expiry} day", strtotime($user_lastlogindate));
$permissableDate = date("Y-m-d", $unixTimeStamp);
// If the current date is greater than the last login period
// + x days, the account has not been used for x days and so
// has expired
if (date("Y-m-d") > $permissableDate) {
//The user account is expired. Update the User entity to
//reflect this.
$userManager = new Manager_Core_Agent_User();
$user = $userManager->getUser($auth->getStorage()->read()->agentid);
$user->status = Model_Core_Agent_UserStatus::DEACTIVATED;
$userManager->setUser($user);
// forward to new action to deal with expired user accounts
$request->setControllerName('index');
$request->setActionName('account-expired');
// Important! Clears the successful authentication token
// given now that we know that the users session has expired
// and should not be permitted access.
$storage = $auth->getStorage();
$storage->clear();
break;
}
}
}
}
}
// Update the existing last login time in the database and the session data to the current date
$agentid = $auth->getStorage()->read()->agentid;
$currentdate = new Zend_Date();
$agentuser = new Datasource_Core_Agent_UserAccounts();
$agentuser->setLastLoginDate($currentdate, $agentid);
$storage = $auth->getStorage();
$data = $storage->read();
$data->lastlogindate = $currentdate->get(Zend_Date::YEAR . '-' . Zend_Date::MONTH . '-' . Zend_Date::DAY);
$storage->write($data);
}
}
}
break;
case 'agent-admin-suite':
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_admin'));
if (!$auth->hasIdentity()) {
$request->setControllerName('index');
$request->setActionName('login');
}
break;
case 'landlords-referencing':
// TODO: This is fairly dirty - it's excluding pages that we want to use in the CMS.
// Could do with restructuring referencing at some point so the application process
// isn't in the way for CMS pages
if ($action != 'products' && $action != 'rent-guarantee-products') {
$this->_referencingPreDespatch($request);
}
break;
default:
// Set default expiration seconds for homelet customer portal access
$params = Zend_Registry::get('params');
$sessionTimeOutSeconds = $params->myhomelet->loginexpiry->sessionTimeOutSeconds;
$session = new Zend_Session_Namespace('homelet_customer');
$session->setExpirationSeconds($sessionTimeOutSeconds);
}
$front = Zend_Controller_Front::getInstance();
// Check to see if this request is actually dispatchable
if (!$this->_actionExists($request)) {
// Is this a connect request?
$module = $request->getModuleName();
if ($module == 'connect') {
$request->setControllerName('index');
$request->setActionName('view-static-page');
} else {
// Not a Connect request, into the CMS we go!
$request->setModuleName('cms');
$request->setControllerName('index');
$request->setActionName('view-page');
}
}
// Set a custom layout route
$layoutPath = APPLICATION_PATH . '/modules/' . $request->getModuleName() . '/layouts/scripts/';
Zend_Layout::getMvcInstance()->setLayoutPath($layoutPath);
}
/**
* Password retrieval - reset password after following reset password link.
*
* @return void
*/
public function resetPasswordAction()
{
$this->_helper->layout->setLayout('login');
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_connect'));
if ($auth->hasIdentity()) {
// User is already logged in so just push them into the system
$this->_redirect('/');
}
// Instantiate form definition
$pageForm = new Connect_Form_ResetPassword();
// Instantiate an agent user object for querying and updating
$agentUserManager = new Manager_Core_Agent_User();
// Check if a valid reset code is present
if (!is_null($this->getRequest()->getParam('code')) && $agentUserManager->checkPasswordResetCodeValid($this->getRequest()->getParam('code')) === true) {
$agentUser = $agentUserManager->getUser();
// Set variables for display
$this->view->realname = $agentUser->name;
$this->view->agentschemeno = $agentUser->agentSchemeNumber;
$this->view->username = $agentUser->username;
// Validate form if POSTed
$request = $this->getRequest();
if ($request->isPost()) {
$postData = $request->getPost();
if ($pageForm->isValid($postData)) {
// Set password
$agentUserManager->resetPassword($postData['password1'], $agentUser->id);
// Output for quick login "continue" button
$this->view->password = $postData['password1'];
// Show user confirmation that password has been reset
$this->_helper->viewRenderer('reset-password-success');
}
}
} else {
// Code invalid, show error message
$this->view->error = 'The password reset link you followed is either invalid, been used or has expired.';
// Show user the error page
$this->_helper->viewRenderer('reset-password-invalid');
}
$this->view->form = $pageForm;
}
/**
* Displays the customer and policy summary + dynamic options for a policy
* plucked from the legacy DB by its policyno taken from a GET parameter.
*
* @return void
*/
public function showPolicyAction()
{
// Agents with wrong FSA status cannot access insurance functionality.
$this->view->pageTitle = 'Policy Details';
$baseInsuranceUrl = $this->_params->connect->baseUrl->insurance;
// Non SSL URL must be used for document production. :-/
$baseInsuranceUrlNoSsl = preg_replace('/^https?(.*)/i', 'http$1', $baseInsuranceUrl);
$request = $this->getRequest();
// See if there's a GET-based policyno
if ($request->isGet() && !is_null($request->getParam('policyno'))) {
$usermanager = new Manager_Core_Agent_User();
$user = $usermanager->getUser($this->_agentId);
// Fetch policy by policyno using the Insurance MUNT Manager class
$insMuntManager = new Manager_Insurance_Munt();
$policyResults = $insMuntManager->getPolicy($request->getParam('policyno'));
if ($policyResults['companyschemenumber'] == $this->_agentSchemeNumber) {
if (in_array($this->_fsastatusabbr, $this->_blockFsaStatus)) {
return;
}
$coverResults = $insMuntManager->getCover($request->getParam('policyno'));
$customerResults = $insMuntManager->getCustomer($policyResults['refno']);
// Update start/end dates for Zend Dates
if ($policyResults['startdate'] == '0000-00-00') {
$policyResults['startdate'] = null;
} else {
$policyResults['startdate'] = new Zend_Date($policyResults['startdate']);
}
if ($policyResults['enddate'] == '0000-00-00') {
$policyResults['enddate'] = null;
} else {
$policyResults['enddate'] = new Zend_Date($policyResults['enddate']);
}
$documentManager = new Manager_Insurance_Document();
$docHistoryResults = $documentManager->getDocuments($request->getParam('policyno'), null, array('holder', 'agent'));
// Show user search results
$this->view->policy = $policyResults;
$this->view->cover = $coverResults;
$this->view->customer = $customerResults;
$this->view->baseUrl = $baseInsuranceUrl;
$this->view->baseUrlNoSsl = $baseInsuranceUrlNoSsl;
$this->view->agentsEmail = $user->email->emailAddress;
$this->view->docHistoryResults = $docHistoryResults;
} else {
// Not the agents policy, protect the display of data, report an error
$this->view->policynumber = $policyResults['policynumber'];
$this->render('show-policy-denied');
}
}
}
