/** * The index action is the default action of this Wall Module. It prepares the widget * wall of the user and render the view according to its preferences. * * If the current user is not authenticated, it will be redirected to the users/index * action that will allows you to acces the login form of the application. * */ public function index($continuePurchase = false, $langage = null, $forcebrowser = false) { # Try to force users to use firefox // if(isset($_SESSION['forcebrowser']) && $_SESSION['forcebrowser'] == true){ // $forcebrowser = true; // } // if(!ereg("Firefox/",$_SERVER['HTTP_USER_AGENT']) && !$forcebrowser){ // require(DefaultFC::getView('compatibility.tpl')); // die(); // }else{ // $_SESSION['forcebrowser'] = true; // } if (Auth::isAuth()) { // Determine if the 'category widget' is installed. if (Widgets::isInstalled('categoryList')) { $widgetCategory = array('id' => 'categoryList', 'name' => 'Widget Categories'); } // Determine if the 'tag cloud widget' is installed. if (Widgets::isInstalled('tagCloud')) { $widgetCloud = array('id' => 'tagCloud', 'name' => 'Widget Tag Cloud'); } // Determine if the view must allow the user to manage widgets. $widgetManagement = false; if (Auth::isAdmin() || Auth::isGod()) { $widgetManagement = true; } // Determine if the view must show the list of installed widgets or // a link to the PALETTE Service Browser. $useServiceBrowser = USE_SERVICE_BROWSER; $serviceBrowserURI = USE_SERVICE_BROWSER ? SERVICE_BROWSER_URI . 'index.php/Services/Widgets?num=1' : null; require DefaultFC::getView('index.tpl'); } else { DefaultFC::redirection('users/index?ref=wall'); } }
public function editOrganizationName($organizationName) { try { Miscellaneous::editOrganizationName($organizationName); $_SESSION['isError'] = false; $_SESSION['message'] = __("The organization name was successfuly changed."); } catch (Exception $e) { $_SESSION['isError'] = true; $_SESSION['message'] = __("An error occured when changing the organization name."); } DefaultFC::redirection('adminMisc/index'); }
public function createAccount() { // Note : again, because the number of parameters may vary in the future, // I will use $_POST to retrieve request params. $username = $_POST['username']; $password = $_POST['password']; $confirmPassword = $_POST['password_confirm']; $openId = isset($_POST['openid']) ? $_POST['openid'] : ''; $userType = 0; try { UsersManagement::addUser(array('username' => $username, 'password' => $password, 'confirm_password' => $confirmPassword, 'openid' => $openId, 'rights' => $userType, 'copname' => 'cop1'), true); $_SESSION['isError'] = false; $_SESSION['message'] = __("Your account has been successfuly created."); DefaultFC::redirection('wall/index'); } catch (UsersManagementException $e) { $isError = true; $message = Util::buildAddEditUserErrorMessage($e); // Escaping to reinsert in form ... $username = htmlspecialchars($username, ENT_QUOTES, 'UTF-8'); $openId = htmlspecialchars($openId, ENT_QUOTES, 'UTF-8'); $displayOldValues = true; require_once DefaultFC::getView('register.tpl'); } }
public function subscribe() { $keys = array_keys($_GET); $widgetId = $keys[0]; if (!isset($widgetId)) { throw new BadArgumentException(MwwException::CONTROLLER, 'You must provide a widget identifier to subscribe to a widget.'); } if (!Auth::isAuth()) { // forward to the login script. DefaultFC::redirection('users/index?ref=subscribe'); exit; } // No failure for authentication and parameters. We just carry on ! UserInterface::subscribe(Auth::getUserId(), $widgetId); DefaultFC::redirection('wall/index'); }
/** * The delete action is triggered through a POST HTTP request when a user wants to delete * a specific category. */ public function delete($categoryId) { Categories::delete($categoryId); $_SESSION['isError'] = false; $_SESSION['message'] = sprintf(__("The category has been successfuly deleted.")); DefaultFC::redirection('adminCategories/index'); }
public function finish_auth() { $always_trust = false; if (isset($_GET['pal_trust'])) { $always_trust = true; // we hide this parameter from the openid library unset($_GET['pal_trust']); $_SERVER['QUERY_STRING'] = str_replace('&pal_trust=true', '', $_SERVER['QUERY_STRING']); } $db = DbUtil::accessFactory(); $store = new WMySqlStore($db); $store->createTables(); $consumer =& new Auth_OpenID_Consumer($store); $url = HttpRequest::getPathUrl(); $nb = strlen($url); $base_url = ''; if ($nb == 0 || $url[$nb - 1] != "/") { $base_url = "http://" . $_SERVER['HTTP_HOST'] . $url . "/"; } else { $base_url = "http://" . $_SERVER['HTTP_HOST'] . $url; } $return_url = $base_url . 'index.php/openid/finish_auth'; // Complete the authentication process using the server's // response. $response = $consumer->complete($return_url); $success = false; // Check the response status. if ($response->status == Auth_OpenID_CANCEL) { // This means the authentication was cancelled. $msg = __('Verification cancelled.'); } else { if ($response->status == Auth_OpenID_FAILURE) { // Authentication failed; display the error message. $msg = __("OpenID authentication failed: ") . $response->message; } else { if ($response->status == Auth_OpenID_SUCCESS) { $success = true; // This means the authentication succeeded; extract the // identity URL and Simple Registration data (if it was // returned). $openid = $response->getDisplayIdentifier(); Auth::loginByOpenid($openid); if (!Auth::isAuth()) { $success = false; $msg = __('Account not found.'); } } } } if ($success) { // for openid sso if (OPENID_SSO_MODE) { if ($always_trust) { setcookie('default_openid', $openid, time() + 60 * 60 * 24 * 30 * 12, HttpRequest::getPathUrl()); } } // Authentication process succeeded. // FIXME: log this connection // Redirection in the portal. DefaultFC::redirection('wall/index'); exit; } else { $_SESSION['isError'] = true; $_SESSION['message'] = $msg; DefaultFC::redirection('users/index'); exit; } }
/** * The Delete action of the Admin module should be triggered through an HTTP POST request in order to * uninstall a widget that was installed in the widget repository. * * @param string $widget The identifier of the widget that must uninstalled from the widget repository. */ public function delete($widget) { // Security check. if (!Auth::isAuth() && (Auth::isAdmin() || Auth::isGod())) { DefaultFC::redirection('users/index?ref=admin'); } // Action Widgets::uninstall($widget); $_SESSION['isError'] = false; $_SESSION['message'] = __("The widget has been deleted successfully."); DefaultFC::redirection('admin/index'); }
public function deleteAction($userId) { if (Auth::isAuth() && (Auth::isAdmin() || Auth::isGod())) { UsersManagement::deleteUser($userId); $_SESSION['isError'] = false; $_SESSION['message'] = __('The user has been successfuly removed from the portal.'); DefaultFC::redirection('adminUsers/index'); } else { redirect('users/index'); } }