{ return $s == '*****@*****.**' || $s == '*****@*****.**'; } } # class DbLessSpotDb /* * Create an DbLessSpotDb object to satisfy the user subsystem */ $db = new DbLessSpotDb($_SESSION['spotsettings']['db']); $db->connect(); /* * And initiate the user system, this allows us to use * validateUserRecord() */ $spotUserSystem = new SpotUserSystem($db, new SpotSettings(array())); $errorList = $spotUserSystem->validateUserRecord($form, false); if (!empty($errorList)) { throw new Exception($errorList[0]); } # if /* * and call the next stage in the setup */ Header("Location: " . $_SERVER['SCRIPT_NAME'] . '?page=99'); } catch (Exception $x) { ?> <div id='error'><?php echo $x->getMessage(); ?> <br /><br /> Please correct the errors in below form and try again
function render() { $groupMembership = array(); $formMessages = array('errors' => array(), 'info' => array()); # check the users' permissions if ($this->_userIdToEdit == $this->_currentSession['user']['userid']) { $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_edit_own_user, ''); } else { $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_edit_other_users, ''); } # if # per default the result is 'not tried' $editResult = array(); # Instantiate the spotuser object $spotUserSystem = new SpotUserSystem($this->_db, $this->_settings); # and create a nic and shiny page title $this->_pageTitle = "spot: edit user"; # retrieve the to-edit user $spotUser = $this->_db->getUser($this->_userIdToEdit); if ($spotUser === false) { $formMessages['errors'][] = sprintf(_('User %d can not be found'), $this->_userIdToEdit); $editResult = array('result' => 'failure'); } # if # request the users' groupmembership if ($spotUser != false) { $groupMembership = $this->_db->getGroupList($spotUser['userid']); } # if /* * bring the forms' action into the local scope for * easier access */ $formAction = $this->_editUserForm['action']; # Only perform certain validations when the form is actually submitted if (!empty($formAction) && empty($formMessages['errors'])) { # sta niet toe, dat de admin user gewist wordt if ($spotUser['userid'] <= SPOTWEB_ADMIN_USERID && $formAction == 'delete') { $formMessages['errors'][] = _('Admin and Anonymous can not be deleted'); $editResult = array('result' => 'failure'); } # if } # if # Only perform certain validations when the form is actually submitted if (!empty($formAction) && empty($formMessages['errors'])) { switch ($formAction) { case 'delete': $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_delete_user, ''); $spotUser = array_merge($spotUser, $this->_editUserForm); $spotUserSystem->removeUser($spotUser['userid']); $editResult = array('result' => 'success'); break; # case delete # case delete case 'edit': # Remove any non-valid fields from the array $this->_editUserForm = $this->cleanseEditForm($this->_editUserForm); # validate the user fields $spotUser = array_merge($spotUser, $this->_editUserForm); $formMessages['errors'] = $spotUserSystem->validateUserRecord($spotUser, true); if (empty($formMessages['errors'])) { # actually update the user record $spotUserSystem->setUser($spotUser); /* * Update the users' password, but only when * a new password is given */ if (!empty($spotUser['newpassword1'])) { $spotUserSystem->setUserPassword($spotUser); } # if /* * Did we get an groupmembership list? If so, * try to update it as well */ if (isset($this->_editUserForm['grouplist'])) { # retrieve the list of user groups $groupList = array(); foreach ($this->_editUserForm['grouplist'] as $val) { if ($val != 'dummy') { $groupList[] = array('groupid' => $val, 'prio' => count($groupList)); } # if } # for # make sure there is at least one group if (count($groupList) < 1) { $formMessages['errors'][] = _('A user must be member of at least one group'); $editResult = array('result' => 'failure'); } else { # Mangle the current group membership to a common format $currentGroupList = array(); foreach ($groupList as $value) { $currentGroupList[] = $value['groupid']; } # foreach # and mangle the new requested group membership $tobeGroupList = array(); foreach ($groupMembership as $value) { $tobeGroupList[] = $value['id']; } # foreach /* * Try to compare the grouplist with the current * grouplist. If the grouplist changes, the user * needs change group membership permissions */ sort($currentGroupList, SORT_NUMERIC); sort($tobeGroupList, SORT_NUMERIC); /* * If the groupmembership list changes, lets make sure * the user has the specific permission */ $groupDiff = count($currentGroupList) != count($tobeGroupList); for ($i = 0; $i < count($currentGroupList) && !$groupDiff; $i++) { $groupDiff = $currentGroupList[$i] != $tobeGroupList[$i]; } # for if ($groupDiff) { if ($this->_spotSec->allowed(SpotSecurity::spotsec_edit_groupmembership, '')) { $spotUserSystem->setUserGroupList($spotUser, $groupList); } else { $formMessages['errors'][] = _('Changing group membership is not allowed'); $editResult = array('result' => 'failure'); } # else } # if } # if } # if # report success $editResult = array('result' => 'success'); } else { $editResult = array('result' => 'failure'); } # else break; # case 'edit' # case 'edit' case 'removeallsessions': $spotUserSystem->removeAllUserSessions($spotUser['userid']); $editResult = array('result' => 'success'); break; # case 'removeallsessions' # case 'removeallsessions' case 'resetuserapi': $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_consume_api, ''); $user = $spotUserSystem->resetUserApi($spotUser); $editResult = array('result' => 'success', 'newapikey' => $user['apikey']); break; # case resetuserapi } # switch } # if #- display stuff -# $this->template('edituser', array('edituserform' => $spotUser, 'formmessages' => $formMessages, 'editresult' => $editResult, 'groupMembership' => $groupMembership)); }
function render() { $formMessages = array('errors' => array(), 'info' => array()); # Controleer de users' rechten $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_create_new_user, ''); # creeer een default spotuser zodat het form altijd # de waardes van het form kan renderen $spotUser = array('username' => '', 'firstname' => '', 'lastname' => '', 'mail' => ''); # createuser resultaat is standaard niet geprobeerd $createResult = array(); # Instantieer het Spot user system $spotUserSystem = new SpotUserSystem($this->_db, $this->_settings); # zet de page title $this->_pageTitle = "spot: create user"; # Is dit een submit van een form, of nog maar de aanroep? if (isset($this->_createUserForm['submit'])) { # submit unsetten we altijd unset($this->_createUserForm['submit']); # userid zetten we altijd op false voor het maken van een # nieuwe user, omdat validateUserRecord() anders denkt # dat we een bestaande user aan het bewerken zijn en we bv. # het mailaddress niet controleren op dubbelen behalve 'zichzelf' $this->_createUserForm['userid'] = false; # creeer een random password voor deze user $spotUser['newpassword1'] = substr($spotUserSystem->generateUniqueId(), 1, 9); $spotUser['newpassword2'] = $spotUser['newpassword1']; # valideer de user $spotUser = array_merge($spotUser, $this->_createUserForm); $formMessages['errors'] = $spotUserSystem->validateUserRecord($spotUser, false); # Is er geen andere user met dezelfde username? if ($this->_db->usernameExists($spotUser['username'])) { $formMessages['errors'][] = array('validateuser_usernameexists', array($spotUser['username'])); } # if if (empty($formMessages['errors'])) { # Creer een private en public key paar voor deze user $spotSigning = new SpotSigning(); $userKey = $spotSigning->createPrivateKey($this->_settings->get('openssl_cnf_path')); $spotUser['publickey'] = $userKey['public']; $spotUser['privatekey'] = $userKey['private']; # Notificatiesysteem initialiseren $spotsNotifications = new SpotNotifications($this->_db, $this->_settings, $this->_currentSession); # voeg de user toe $spotUserSystem->addUser($spotUser); # als het toevoegen van de user gelukt is, laat het weten $createResult = array('result' => 'success', 'user' => $spotUser['username'], 'password' => $spotUser['newpassword1']); # verstuur een e-mail naar de nieuwe gebruiker als daar om is gevraagd if ($this->_createUserForm['sendmail'] == "true" || $this->_createUserForm['sendmail'] == "on" || $this->_settings->get('sendwelcomemail')) { $spotsNotifications->sendNewUserMail($spotUser); } # if # en verstuur een notificatie $spotsNotifications->sendUserAdded($spotUser['username'], $spotUser['newpassword1']); } else { $createResult = array('result' => 'failure'); } # else } # if #- display stuff -# $this->template('createuser', array('createuserform' => $spotUser, 'formmessages' => $formMessages, 'createresult' => $createResult)); }
function render() { $groupMembership = array(); $formMessages = array('errors' => array(), 'info' => array()); # Controleer de users' rechten if ($this->_userIdToEdit == $this->_currentSession['user']['userid']) { $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_edit_own_user, ''); } else { $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_edit_other_users, ''); } # if # edituser resultaat is standaard niet geprobeerd $editResult = array(); # Instantieer het Spot user system $spotUserSystem = new SpotUserSystem($this->_db, $this->_settings); # zet de page title $this->_pageTitle = "spot: edit user"; # haal de te editten user op $spotUser = $this->_db->getUser($this->_userIdToEdit); if ($spotUser === false) { $formMessages['errors'][] = array('edituser_usernotfound', array($spotUser['username'])); $editResult = array('result' => 'failure'); } # if # Vraag group membership van deze user op if ($spotUser != false) { $groupMembership = $this->_db->getGroupList($spotUser['userid']); } # if # Bepaal welke actie er gekozen was (welke knop ingedrukt was) $formAction = ''; if (isset($this->_editUserForm['submitedit'])) { $formAction = 'edit'; unset($this->_editUserForm['submitedit']); } elseif (isset($this->_editUserForm['submitdelete'])) { $formAction = 'delete'; unset($this->_editUserForm['submitdelete']); $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_delete_user, ''); } elseif (isset($this->_editUserForm['submitresetuserapi'])) { $formAction = 'resetapi'; unset($this->_editUserForm['submitresetuserapi']); $this->_spotSec->fatalPermCheck(SpotSecurity::spotsec_consume_api, ''); } elseif (isset($this->_editUserForm['removeallsessions'])) { $formAction = 'removeallsessions'; unset($this->_editUserForm['removeallsessions']); } # else # Is dit een submit van een form, of nog maar de aanroep? if ((!empty($formAction)) && (empty($formMessages['errors']))) { # sta niet toe, dat de anonymous user gewijzigd wordt if ($spotUser['userid'] == SPOTWEB_ANONYMOUS_USERID) { $formMessages['errors'][] = array('edituser_cannoteditanonymous', array()); $editResult = array('result' => 'failure'); } # if # sta niet toe, dat de admin user gewist wordt if (($spotUser['userid'] <= SPOTWEB_ADMIN_USERID) && ($formAction == 'delete')) { $formMessages['errors'][] = array('edituser_cannotremovesystemuser', array()); $editResult = array('result' => 'failure'); } # if } # if # Is dit een submit van een form, of nog maar de aanroep? if ((!empty($formAction)) && (empty($formMessages['errors']))) { switch($formAction) { case 'delete' : { $spotUser = array_merge($spotUser, $this->_editUserForm); $spotUserSystem->removeUser($spotUser['userid']); $editResult = array('result' => 'success'); break; } # case delete case 'edit' : { # Verwijder eventueel niet geldige velden uit het formulier $this->_editUserForm = $this->cleanseEditForm($this->_editUserForm); # valideer de user $spotUser = array_merge($spotUser, $this->_editUserForm); $formMessages['errors'] = $spotUserSystem->validateUserRecord($spotUser, true); if (empty($formMessages['errors'])) { # bewerkt de user $spotUserSystem->setUser($spotUser); # als de gebruker een nieuw wachtwoord opgegeven heeft, update dan # het wachtwoord ook if (!empty($spotUser['newpassword1'])) { $spotUserSystem->setUserPassword($spotUser); } # if # Zijn er ook groupmembership lijsten meegestuurd? Zo ja, # en als de user het recht heeft, update die dan ook if (isset($this->_editUserForm['grouplist'])) { # vraag de lijst met usergroepen op $groupList = array(); foreach($this->_editUserForm['grouplist'] as $val) { if ($val != 'dummy') { $groupList[] = array('groupid' => $val, 'prio' => count($groupList)); } # if } # for # zorg er voor dat er meer dan 1 groep overblijft if (count($groupList) < 1) { $formMessages['errors'][] = array('edituser_usermusthaveonegroup', array()); $editResult = array('result' => 'failure'); } else { $spotUserSystem->setUserGroupList($spotUser, $groupList); } # if } # if # als het toevoegen van de user gelukt is, laat het weten $editResult = array('result' => 'success'); } else { $editResult = array('result' => 'failure'); } # else break; } # case 'edit' case 'removeallsessions' : { $spotUserSystem->removeAllUserSessions($spotUser['userid']); $editResult = array('result' => 'success'); break; } # case 'removeallsessions' case 'resetapi' : { $user = $spotUserSystem->resetUserApi($spotUser); $editResult = array('result' => 'success', 'newapikey' => $user['apikey']); break; } # case resetapi } # switch } # if #- display stuff -# $this->template('edituser', array('edituserform' => $spotUser, 'formmessages' => $formMessages, 'editresult' => $editResult, 'groupMembership' => $groupMembership)); } # render