public function changePassword($userGuid, $oldPassword, $newPassword)
{
$tblUser = new Pandamp_Modules_Identity_User_Model_User();
$row = $tblUser->find($userGuid)->current();
$obj = new Pandamp_Crypt_Password();
if ($obj->matchPassword($oldPassword, $row->password)) {
$row->password = $obj->encryptPassword($newPassword);
$row->save();
return true;
} else {
return false;
}
}
function changepasswordAction()
{
/*
if (!Pandamp_Controller_Action_Helper_IsAllowed::isAllowed('membership','all'))
{
$this->_redirect(ROOT_URL.'/'.$this->_zl->getLanguage().'/error/restricted');
}
*/
$this->_helper->layout->setLayout('layout-customer-credential');
$r = $this->getRequest();
if ($r->isPost()) {
$modelUser = new App_Model_Db_Table_User();
$row = $modelUser->find($r->getParam('id'))->current();
$obj = new Pandamp_Crypt_Password();
if ($obj->matchPassword($r->getParam('opasswd'), $row->password)) {
$row->password = $obj->encryptPassword($r->getParam('newpasswd'));
$row->save();
$this->view->message = "Password was sucessfully changed.";
} else {
$this->view->message = "Old password was wrong. Please retry with correct password.";
}
}
$id = $this->_getParam("id");
$user = App_Model_Show_User::show()->getUserById($id);
if ($user) {
$this->view->user = $user;
}
}
function authenticate()
{
$exception = null;
if ($this->_tableName == '') {
$exception = 'A table must be supplied for the Zend_Auth_Adapter_DbTable authentication adapter.';
} elseif ($this->_identityColumn == '') {
$exception = 'An identity column must be supplied for the Zend_Auth_Adapter_DbTable authentication adapter.';
} elseif ($this->_credentialColumn == '') {
$exception = 'A credential column must be supplied for the Zend_Auth_Adapter_DbTable authentication adapter.';
} elseif ($this->_identity == '') {
$exception = 'A value for the identity was not provided prior to authentication with Zend_Auth_Adapter_DbTable.';
} elseif ($this->_credential === null) {
$exception = 'A credential value was not provided prior to authentication with Zend_Auth_Adapter_DbTable.';
}
if (null !== $exception) {
/**
* @see Zend_Auth_Adapter_Exception
*/
require_once 'Zend/Auth/Adapter/Exception.php';
throw new Zend_Auth_Adapter_Exception($exception);
}
// create result array
$authResult = array('code' => Zend_Auth_Result::FAILURE, 'identity' => $this->_identity, 'messages' => array());
// build credential expression
if (empty($this->_credentialTreatment) || strpos($this->_credentialTreatment, "?") === false) {
$this->_credentialTreatment = '?';
}
$credentialExpression = new Zend_Db_Expr($this->_zendDb->quoteInto($this->_zendDb->quoteIdentifier($this->_credentialColumn) . ' = ' . $this->_credentialTreatment, $this->_credential) . ' AS zend_auth_credential_match');
// query for the identity
try {
//$resultIdentities = $this->_zendDb->fetchAll('SELECT * FROM '.$this->_tableName.' where '.$this->_identityColumn. "='" .$this->_identity."' AND isActive=1");
$resultIdentities = $this->_zendDb->fetchAll('SELECT * FROM ' . $this->_tableName . ' ku
LEFT JOIN gacl_aro_groups gag ON ku.packageId=gag.id
where ku.' . $this->_identityColumn . "='" . $this->_identity . "' AND ku.isActive IN (1,99)");
} catch (Exception $e) {
/**
* @see Zend_Auth_Adapter_Exception
*/
require_once 'Zend/Auth/Adapter/Exception.php';
throw new Zend_Auth_Adapter_Exception('The supplied parameters to Zend_Auth_Adapter_DbTable failed to ' . 'produce a valid sql statement, please check table and column names ' . 'for validity.');
}
if (count($resultIdentities) < 1) {
$authResult['code'] = Zend_Auth_Result::FAILURE_IDENTITY_NOT_FOUND;
$authResult['messages'][] = 'A record with the supplied identity could not be found.';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
} elseif (count($resultIdentities) > 1) {
$authResult['code'] = Zend_Auth_Result::FAILURE_IDENTITY_AMBIGUOUS;
$authResult['messages'][] = 'More than one record matches the supplied identity.';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
$resultIdentity = $resultIdentities[0];
$obj = new Pandamp_Crypt_Password();
if (true) {
if (!$obj->matchPassword($this->_credential, $resultIdentity[$this->_credentialColumn])) {
$authResult['code'] = Zend_Auth_Result::FAILURE_CREDENTIAL_INVALID;
$authResult['messages'][] = 'Supplied credential is invalid.';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
}
unset($resultIdentity['zend_auth_credential_match']);
$this->_resultRow = $resultIdentity;
$authResult['code'] = Zend_Auth_Result::SUCCESS;
$authResult['messages'][] = 'Authentication successful.';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
function authenticate()
{
$exception = null;
if ($this->_tableName == '') {
$exception = 'A table must be supplied for the Zend_Auth_Adapter_DbTable authentication adapter.';
} elseif ($this->_identityColumn == '') {
$exception = 'An identity column must be supplied for the Zend_Auth_Adapter_DbTable authentication adapter.';
} elseif ($this->_credentialColumn == '') {
$exception = 'A credential column must be supplied for the Zend_Auth_Adapter_DbTable authentication adapter.';
} elseif ($this->_identity == '') {
$exception = 'A value for the identity was not provided prior to authentication with Zend_Auth_Adapter_DbTable.';
} elseif ($this->_credential === null) {
$exception = 'A credential value was not provided prior to authentication with Zend_Auth_Adapter_DbTable.';
}
if (null !== $exception) {
/**
* @see Zend_Auth_Adapter_Exception
*/
require_once 'Zend/Auth/Adapter/Exception.php';
throw new Zend_Auth_Adapter_Exception($exception);
}
// create result array
$authResult = array('code' => Zend_Auth_Result::FAILURE, 'identity' => $this->_identity, 'messages' => array());
// build credential expression
if (empty($this->_credentialTreatment) || strpos($this->_credentialTreatment, "?") === false) {
$this->_credentialTreatment = '?';
}
$credentialExpression = new Zend_Db_Expr($this->_zendDb->quoteInto($this->_zendDb->quoteIdentifier($this->_credentialColumn) . ' = ' . $this->_credentialTreatment, $this->_credential) . ' AS zend_auth_credential_match');
// get select
/*$dbSelect = $this->_zendDb->select();
$dbSelect->from($this->_tableName, array('*', $credentialExpression))
->where($this->_zendDb->quoteIdentifier($this->_identityColumn) . ' = ?', $this->_identity);*/
// query for the identity
try {
//$resultIdentities = $this->_zendDb->fetchAll($dbSelect->__toString());
//$resultIdentities = $this->_zendDb->fetchAll('Select kud.id, kud.packageId, ku.guid, ku.username, ku.password, ku.picture from '.$this->_tableName.' ku INNER JOIN KutuUserDetail kud ON ku.guid=kud.uid where ku.'.$this->_identityColumn. "='" .$this->_identity."' AND kud.isActive=1 ORDER BY kud.id DESC");
$resultIdentities = $this->_zendDb->fetchAll('Select guid, kopel, username, password, packageId, picture, isContact from ' . $this->_tableName . ' where ' . $this->_identityColumn . "='" . $this->_identity . "' AND isActive=1");
} catch (Exception $e) {
/**
* @see Zend_Auth_Adapter_Exception
*/
require_once 'Zend/Auth/Adapter/Exception.php';
throw new Zend_Auth_Adapter_Exception('The supplied parameters to Zend_Auth_Adapter_DbTable failed to ' . 'produce a valid sql statement, please check table and column names ' . 'for validity.');
}
if (count($resultIdentities) < 1) {
$authResult['code'] = Zend_Auth_Result::FAILURE_IDENTITY_NOT_FOUND;
$authResult['messages'][] = 'A record with the supplied identity could not be found or Not active.';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
// elseif (count($resultIdentities) > 1) {
// $authResult['code'] = Zend_Auth_Result::FAILURE_IDENTITY_AMBIGUOUS;
// $authResult['messages'][] = 'More than one record matches the supplied identity.';
// return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
// }
$resultIdentity = $resultIdentities[0];
$obj = new Pandamp_Crypt_Password();
// print_r(strtoupper(sha1($this->_credential)) ."==". $resultIdentity[$this->_credentialColumn]);exit();
if (strtoupper(sha1($this->_credential)) == $resultIdentity[$this->_credentialColumn]) {
$resultIdentity[$this->_credentialColumn] = $obj->encryptPassword($this->_credential);
$this->_zendDb->update($this->_tableName, $resultIdentity, $this->_identityColumn . "='" . $this->_identity . "'");
$authResult['code'] = -51;
//Zend_Auth_Result::FAILURE_UNCATEGORIZED;
$authResult['messages'][] = 'You account has been updated, please click [Sign in] again';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
//if(!$this->_httpClient)
if (true) {
//if ($resultIdentity['zend_auth_credential_match'] != '1') {
if (!$obj->matchPassword($this->_credential, $resultIdentity[$this->_credentialColumn])) {
$authResult['code'] = Zend_Auth_Result::FAILURE_CREDENTIAL_INVALID;
$authResult['messages'][] = 'Supplied credential is invalid.';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
}
unset($resultIdentity['zend_auth_credential_match']);
$this->_resultRow = $resultIdentity;
if (false) {
$authResult['code'] = -51;
//Zend_Auth_Result::FAILURE_UNCATEGORIZED;
$authResult['messages'][] = 'You already login';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
$authResult['code'] = Zend_Auth_Result::SUCCESS;
$authResult['messages'][] = 'Authentication successful.';
return new Zend_Auth_Result($authResult['code'], $authResult['identity'], $authResult['messages']);
}
