<?php
// $Id: authenticate.php 1294 2012-08-09 23:44:40Z preston $ Copyright (c) ConSked, LLC. All Rights Reserved.
require_once 'util/session.php';
require_once 'db/Worker.php';
require_once 'db/WorkerLogin.php';
// require session login
if (!isLoggedIn()) {
logMessage('authentication', 'worker not logged in');
header('Location: WorkerLoginPage.php');
include 'WorkerLoginPage.php';
return;
}
if (WorkerLogin::isDisabled(getWorkerAuthenticated()->workerid)) {
logMessage('authentication', 'worker is being forced to log out per disabling');
header('Location: WorkerLoginPage.php');
include 'WorkerLoginPage.php';
return;
}
session_cache_limiter('nocache');
session_start();
if (!isset($_SESSION[AUTHENTICATED_TEMP]) && !isLoggedIn()) {
logMessage('authentication', 'worker not logged in');
header('Location: WorkerLoginPage.php');
include 'WorkerLoginPage.php';
return;
}
require_once 'db/Worker.php';
require_once 'db/WorkerLogin.php';
require_once 'util/log.php';
require_once 'swwat/gizmos/parse.php';
$password = swwat_parse_string(html_entity_decode($_POST[PARAM_PASSWORD]), true);
if (is_null($password)) {
header('Location: WorkerLoginChangePage.php');
include 'WorkerLoginChangePage.php';
return;
}
// else
$worker = isset($_SESSION[AUTHENTICATED_TEMP]) ? $_SESSION[AUTHENTICATED_TEMP] : getWorkerAuthenticated();
WorkerLogin::password_change($worker->workerid, $password);
$worker = getWorkerAuthenticated();
$password = NULL;
if ($worker->isOrganizer()) {
header('Location: SiteAdminPage.php');
include 'SiteAdminPage.php';
} else {
header('Location: WorkerViewPage.php');
include 'WorkerViewPage.php';
}
return;
public static function inviteUnknown(Expo $expo, $expirationDate, array $invitationArray, $withCode = TRUE, $uniqueCode = TRUE)
{
$welcomeForm = self::getInvitationForm($withCode);
$welcomeParams = array("EXPONAME" => $expo->title);
$expirationDate = is_null($expirationDate) ? $expo->stopTime : $expirationDate;
$code = WorkerLogin::generate_random_password();
foreach ($invitationArray as $invite) {
$invite->expoid = $expo->expoid;
$invite->expirationDate = $expirationDate;
if ($withCode) {
$invite->code = $code;
if ($uniqueCode) {
$invite->code = WorkerLogin::generate_random_password();
}
$welcomeParams["CODE"] = $invite->code;
}
$welcomeParams["EMAIL"] = $invite->email;
$invite->insert($welcomeForm, $welcomeParams);
}
// $invite
$invite = NULL;
return;
}
<?php
// $Id: WorkerDisableAction.php 604 2012-06-07 21:11:57Z cross $ Copyright (c) ConSked, LLC. All Rights Reserved.
include 'util/authenticateOrganizer.php';
require_once 'properties/constants.php';
require_once 'db/Worker.php';
require_once 'db/WorkerLogin.php';
require_once 'util/log.php';
require_once 'util/session.php';
$worker = getWorkerCurrent();
if (isset($_REQUEST[PARAM_DISABLED])) {
// if enabled, we DISable; if disabled, we ENable
WorkerLogin::set_isDisabled($worker->workerid, !$worker->isDisabled);
$worker->isDisabled = !$worker->isDisabled;
// set after in case of DB error
}
// in all cases
header('Location: WorkerViewPage.php');
include 'WorkerViewPage.php';
public static function disable($email)
{
WorkerLogin::set_isDisabled($email, TRUE);
}
require_once 'db/WorkerLogin.php';
require_once 'util/log.php';
require_once 'util/session.php';
require_once 'swwat/gizmos/parse.php';
try {
$email = swwat_parse_string(html_entity_decode($_POST[PARAM_EMAIL]), true);
$password = swwat_parse_string(html_entity_decode($_POST[PARAM_PASSWORD]), true);
if (is_null($email)) {
throw new LoginException('username required');
}
if (is_null($password)) {
throw new LoginException('password required');
}
// else
try {
WorkerLogin::password_authenticate($email, $password);
$password = NULL;
$worker = getWorkerAuthenticated();
// see if any invites
$invitations = Invitation::selectWorker($worker->workerid);
// look for explicit-only
foreach ($invitations as $invite) {
if ($invite->workerid == $worker->workerid) {
// default to Registation page
header('Location: WorkerRegistrationPage.php');
include 'WorkerRegistrationPage.php';
return;
}
}
// $invite
//Go to the proper page
<?php require_once 'db/WorkerLogin.php'; WorkerLogin::password_change(3, 'LIhiggs61');
<?php
// $Id: WorkerLoginResetAction.php 1345 2012-08-21 15:40:38Z preston $ Copyright (c) ConSked, LLC. All Rights Reserved.
include 'util/authenticate.php';
require_once 'properties/constants.php';
require_once 'db/WorkerLogin.php';
require_once 'util/log.php';
require_once 'util/mail.php';
require_once 'util/session.php';
require_once 'swwat/gizmos/parse.php';
/**
* This Controller is used by the WorkerLoginPage's reset button (typically used by the Worker themselves)
* vs. the WorkerViewPage's reset button (typically used by an Organizer)
*/
$email = swwat_parse_string(html_entity_decode($_POST[PARAM_EMAIL]), true);
if (is_null($email)) {
throw new LoginException('username required');
}
try {
$password = WorkerLogin::password_reset($email);
FormMail::sendPasswordReset($email, $password);
$password = NULL;
} catch (Exception $ex) {
logMessage('WorkerLoginResetAction error', $ex->getMessage());
}
$password = NULL;
// in all cases; redirect back to Login page
header('Location: WorkerLoginPage.php');
include 'WorkerLoginPage.php';
