function users_activate_validate()
{
$email_address = Pie_Dispatcher::uri()->email_address;
$mobile_number = Pie_Dispatcher::uri()->mobile_number;
if ($email_address && !Pie_Valid::email($email_address)) {
throw new Pie_Exception_WrongValue(array('field' => 'email', 'range' => 'a valid email address'), 'email_address');
}
if ($mobile_number && !Pie_Valid::phone($mobile_number)) {
throw new Pie_Exception_WrongValue(array('field' => 'mobile phone', 'range' => 'a valid phone number'), 'mobile_number');
}
if ($email_address or $mobile_number) {
if (empty($_REQUEST['code'])) {
throw new Pie_Exception("The activation code is missing");
}
}
// This is one of the few places where we cheat,
// and fill the $_POST array even though it probably wasn't filled.
if ($email_address) {
$_POST['email_address'] = $email_address;
} else {
if ($mobile_number) {
$_POST['mobile_number'] = $mobile_number;
}
}
}
function users_user_validate()
{
if (!isset($_REQUEST['email_address'])) {
throw new Pie_Exception('email address is missing', array('email_address'));
}
if (!Pie_Valid::email($_REQUEST['email_address'])) {
throw new Pie_Exception('a valid email address is required', array('email_address'));
}
}
/**
* Starts the process of adding an email to a saved user object.
* Also modifies and saves this user object back to the database.
* @param string $email_address
* The email address to add.
* @param string $activation_email_subject
* The subject of the activation email to send.
* @param string $activation_email_view
* The view to use for the body of the activation email to send.
* @param boolean $html
* Defaults to true. Whether to send as HTML email.
* @param array $fields
* An array of additional fields to pass to the email view.
* @return boolean
* Returns true on success.
* Returns false if this email address is already verified for this user.
* @throws Pie_Exception_WrongType
* If the email address is in an invalid format, this is thrown.
* @throws Users_Exception_AlreadyVerified
* If the email address already exists and has been verified for
* another user, then this exception is thrown.
*/
function addEmail($email_address, $activation_email_subject = null, $activation_email_view = null, $html = true, $fields = array())
{
if (!Pie_Valid::email($email_address)) {
throw new Pie_Exception_WrongValue(array('field' => 'Email', 'range' => 'a valid address'), 'email_address');
}
Pie::event('users/validate/email_address', array('email_address' => &$email_address));
$e = new Users_Email();
$e->address = $email_address;
if ($e->retrieve() and $e->state !== 'unverified') {
if ($e->user_id === $this->id) {
return false;
}
// Otherwise, say it's verified for another user,
// even if it unsubscribed or was suspended.
throw new Users_Exception_AlreadyVerified(array('key' => $e->address, 'user_id' => $e->user_id), 'email_address');
}
// If we are here, then the email record either
// doesn't exist, or hasn't been verified yet.
// In either event, update the record in the database,
// and re-send the email.
$minutes = Pie_Config::get('users', 'activationCodeExpires', 60 * 24 * 7);
$e->state = 'unverified';
$e->user_id = $this->id;
$e->activation_code = Pie_Utils::unique(5);
$e->activation_code_expires = new Db_Expression("CURRENT_TIMESTAMP + INTERVAL {$minutes} MINUTE");
$e->auth_code = md5(microtime() + mt_rand());
$e->save();
if (!isset($activation_email_view)) {
$activation_email_view = Pie_Config::get('users', 'activationEmailView', 'users/email/activation.php');
}
if (!isset($activation_email_subject)) {
$activation_email_subject = Pie_Config::get('users', 'activationEmailSubject', "Welcome! Please confirm your email address.");
}
$fields2 = array_merge($fields, array('user' => $this, 'email' => $e));
$e->sendMessage($activation_email_subject, $activation_email_view, $fields2, array('html' => $html));
Pie::event('users/addEmail', compact('email_address'), 'after');
}
