function doLogin($user)
{
system\Helper::arcSetUser($user);
Log::createLog("success", "user", "User logged in: " . $user->email);
system\Helper::arcCheckSettingExists("ARC_LOGIN_URL", "/");
$url = SystemSetting::getByKey("ARC_LOGIN_URL");
system\Helper::arcReturnJSON(["redirect" => $url->value]);
system\Helper::arcAddMessage("success", "Login successful.");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$company = Company::getByID($_POST["id"]);
$company->name = ucwords(strtolower($_POST["name"]));
if (empty($_POST["name"])) {
system\Helper::arcAddMessage("danger", "Company name cannot be empty");
return;
}
$test = Company::getByName($_POST["name"]);
if ($test->id != $company->id && $test->id != 0) {
system\Helper::arcAddMessage("danger", "Company with this name already exists");
return;
}
$company->update();
system\Helper::arcAddMessage("success", "Company saved");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$user = User::getByID($_POST["userid"]);
if ($user->id == 0) {
system\Helper::arcAddMessage("danger", "User must be saved before group can be modified.");
return;
}
if (empty($_POST["company"])) {
system\Helper::arcAddMessage("danger", "Invalid company");
return;
}
$user->addToCompany($_POST["company"]);
system\Helper::arcAddMessage("success", "User associated with company");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$user = User::getByID($_POST["id"]);
if ($user->id == 0) {
system\Helper::arcAddMessage("danger", "User must be saved before group can be modified.");
return;
}
$user->removeFromGroup($_POST["group"]);
system\Helper::arcAddMessage("success", "User removed from group");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$user = User::getByID($_POST["id"]);
if ($user->id == 0) {
system\Helper::arcAddMessage("danger", "User must be saved before group can be modified.");
return;
}
$user->addToGroup($_POST["group"]);
system\Helper::arcAddMessage("success", "User added to group");
}
}
$name = $_FILES["file"]["name"];
$ext = end(explode(".", $name));
# extra () to prevent notice
$filename = uniqid() . "." . $ext;
$path = system\Helper::arcGetPath(true) . "assets/profile";
$destination = $path . "/" . $filename;
if (!file_exists($path)) {
mkdir($path);
}
Log::createLog("info", "user", "Destination: '" . $destination . "'");
$location = $_FILES["file"]["tmp_name"];
$size = filesize($location);
if ($size == 0) {
system\Helper::arcAddMessage("danger", "Invalid file uploaded");
Log::createLog("danger", "user", "Invalid file size.");
return;
}
move_uploaded_file($location, $destination);
$profileImage = SystemSetting::getByKey("ARC_USER_IMAGE", system\Helper::arcGetUser()->id);
$profileImage->userid = system\Helper::arcGetUser()->id;
$profileImage->value = $filename;
$profileImage->update();
system\Helper::arcAddMessage("success", "File uploaded");
Log::createLog("success", "user", "Upload complete.");
} else {
Log::createLog("danger", "user", "Upload error " . $_FILES['file']['error']);
system\Helper::arcAddMessage("danger", "Error occured while uploading file");
}
}
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$company = Company::getByID($_POST["id"]);
$users = $company->getUsers();
if (count($users) > 0) {
system\Helper::arcAddMessage("danger", "Unable to remove company with users associated");
return;
}
$company->delete($_POST["id"]);
system\Helper::arcAddMessage("success", "Company deleted");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$user = User::getByID($_POST["id"]);
if ($user->id != system\Helper::arcGetUser()->id) {
system\Helper::arcImpersonateUser($user);
system\Helper::arcAddMessage("success", "Impersonation mode enabled");
Log::createLog("warning", "user", "Is impersonating " . $user->getFullname());
system\Helper::arcReturnJSON(["status" => "success"]);
} else {
system\Helper::arcAddMessage("danger", "You cannot impersonate yourself");
system\Helper::arcReturnJSON(["status" => "failed"]);
}
}
<?php
if (system\Helper::arcIsAjaxRequest() == true) {
$permission = new UserPermission();
$permission->delete($_POST["id"]);
system\Helper::arcAddMessage("success", "Permission deleted");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
// Arc logs
$logs = Log::getLogs();
foreach ($logs as $log) {
$log->delete($log->id);
}
//PHP logs
$path = system\Helper::arcGetPath(true) . ini_get('error_log');
if (file_exists($path)) {
unlink($path);
}
system\Helper::arcAddMessage("success", "Logs purged");
}
<?php
if (system\Helper::arcIsAjaxRequest() == true) {
$page = new Page();
$page->delete($_POST["id"]);
system\Helper::arcAddMessage("success", "Page deleted");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$group = UserGroup::getByID($_POST["id"]);
if ($group->name == "Administrators" || $group->name == "Guests" || $group->name == "Users") {
system\Helper::arcAddMessage("danger", "Unable to delete builtin groups");
return;
}
$group->delete($_POST["id"]);
system\Helper::arcAddMessage("success", "Group deleted");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$marked = json_decode($_POST['items']);
$path = system\Helper::arcGetPath(true) . "assets";
foreach ($marked as $item) {
if (is_file($path . $item)) {
unlink($path . $item);
} else {
$it = new RecursiveDirectoryIterator($path . $item, RecursiveDirectoryIterator::SKIP_DOTS);
$files = new RecursiveIteratorIterator($it, RecursiveIteratorIterator::CHILD_FIRST);
foreach ($files as $file) {
if ($file->isDir()) {
rmdir($file->getRealPath());
} else {
unlink($file->getRealPath());
}
}
rmdir($path . $item);
}
}
system\Helper::arcAddMessage("success", "Selected " . ngettext("item", "items", count($marked)) . " deleted");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$group = UserGroup::getByID($_POST["id"]);
$group->name = ucwords(strtolower($_POST["name"]));
if (empty($_POST["name"])) {
system\Helper::arcAddMessage("danger", "Group name cannot be empty");
return;
}
$group->description = $_POST["description"];
$group->update();
system\Helper::arcAddMessage("success", "Group saved");
}
if (empty($_POST["lastname"])) {
system\Helper::arcAddMessage("danger", "Lastname cannot be empty");
return;
}
$test = User::getByEmail($_POST["email"]);
if ($user->id == 0 && $test->id != 0) {
system\Helper::arcAddMessage("danger", "User already exists with this email address");
return;
}
if ($user->id == 0 && empty($_POST["password"])) {
system\Helper::arcAddMessage("danger", "New users must have a password");
return;
}
if (!empty($_POST["company"])) {
$comp = Company::getByName(ucwords($_POST["company"]));
if ($comp->id == 0) {
$comp = new Company();
$comp->name = ucwords($_POST["company"]);
$comp->update();
}
$user->addToCompany($comp->id);
}
if ($_POST["enabled"] == "true") {
$user->enabled = 1;
} else {
$user->enabled = 0;
}
$user->email = strtolower($_POST["email"]);
$user->update();
system\Helper::arcAddMessage("success", "Changes saved");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$user = User::getByID($_POST["userid"]);
$user->removeFromCompany($_POST["company"]);
system\Helper::arcAddMessage("success", "User removed from company");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$folder = strtolower($_POST["name"]);
$destination = system\Helper::arcGetPath(true) . "assets" . $_POST["path"];
if (substr($destination, -1) != "/") {
$destination .= "/";
}
$destination .= $folder;
if (!file_exists($destination)) {
mkdir($destination);
}
system\Helper::arcAddMessage("success", "Folder Created");
}
$setting->value = $_POST["theme"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_THUMB_WIDTH");
$setting->value = $_POST["width"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_FILE_UPLOAD_SIZE_BYTES");
$setting->value = $_POST["limit"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_ALLOWREG");
$setting->value = $_POST["allowReg"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_LOGO_PATH");
$setting->value = $_POST["siteLogo"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_DATEFORMAT");
$setting->value = $_POST["dateFormat"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_TIMEFORMAT");
$setting->value = $_POST["timeFormat"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_REQUIRECOMPANY");
$setting->value = $_POST["company"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_SITETITLE");
$setting->value = $_POST["siteTitle"];
$setting->update();
$setting = SystemSetting::getByKey("ARC_MEDIAMANAGERURL");
$setting->value = $_POST["media"];
$setting->update();
system\Helper::arcAddMessage("success", "System settings saved.");
}
<?php
if (system\Helper::arcIsAjaxRequest()) {
$user = User::getByEmail($_POST["emailf"]);
// valid user
if ($user->id > 0) {
$password = md5(uniqid($user->email, true));
$user->setPassword($password);
$user->update();
$messageS = SystemSetting::getByKey("ARC_PASSWORD_RESET_MESSAGE");
$message = html_entity_decode($messageS->value);
$message = str_replace("{password}", $password, $message);
$mail = new Mail();
$mail->Send($user->email, "Password Reset Request", $message, true);
system\Helper::arcAddMessage("success", "Password reset, please check your email.");
Log::createLog("warning", "user", "Password reset request '" . $_POST["emailf"] . "'.");
} else {
system\Helper::arcAddMessage("danger", "Email address is not registered");
Log::createLog("danger", "user", "Request to reset unknown email address '" . $_POST["emailf"] . "'.");
}
}
system\Helper::arcAddMessage("danger", "User already exists with that email address");
return;
}
$user->firstname = ucfirst(strtolower($_POST["firstname"]));
$user->lastname = ucfirst(strtolower($_POST["lastname"]));
$user->email = strtolower($_POST["emailr"]);
if (empty($user->email)) {
system\Helper::arcAddMessage("danger", "Please specifiy an email address");
return;
}
$user->setPassword($_POST["passwordr"]);
// save user
$user->update();
$company = SystemSetting::getByKey("ARC_REQUIRECOMPANY");
if (!empty($_POST["company"]) && $company->value == "true") {
$comp = Company::getByName(ucwords($_POST["company"]));
if ($comp->id == 0) {
$comp = new Company();
$comp->name = ucwords($_POST["company"]);
$comp->update();
}
$user->addToCompany($comp->id);
}
system\Helper::arcSetUser($user);
system\Helper::arcAddMessage("success", "Your details have been registered");
system\Helper::arcCheckSettingExists("ARC_LOGIN_URL", "/");
$url = SystemSetting::getByKey("ARC_LOGIN_URL");
system\Helper::arcReturnJSON(["redirect" => $url->value]);
} else {
system\Helper::arcAddFooter("js", system\Helper::arcGetModulePath() . "js/register.js");
}
