extract($arr_form_data);
if ($dbh_user->check_uniqueness($arr_form_data)->is_unique) {
//Good, no duplicate in database
} else {
$message = "Record already exists with the same primary identifiers!";
}
if ($message == "") {
require 'password_crypto.php';
//Hash the password using default Cobalt password hashing technique
$hashed_password = cobalt_password_hash('NEW', $password, $username, $new_salt, $new_iteration, $new_method);
$arr_form_data['password'] = $hashed_password;
$arr_form_data['salt'] = $new_salt;
$arr_form_data['iteration'] = $new_iteration;
$arr_form_data['method'] = $new_method;
$dbh_user->add($arr_form_data);
//Permissions from role, if role was chosen
if ($role_id != '') {
$db = new data_abstraction();
$db->execute_query("INSERT `user_passport` SELECT '" . quote_smart($username) . "', `link_id` FROM user_role_links WHERE role_id='" . quote_smart($role_id) . "'");
}
redirect("listview_user.php?filter_field={$filter_field_used}&filter={$filter_used}&page_from={$page_from}&filter_sort_asc={$filter_sort_asc}&filter_sort_desc={$filter_sort_desc}");
}
}
}
require 'subclasses/user_html.php';
$html = new user_html();
$html->draw_header('Add User', $message, $message_type);
$html->draw_listview_referrer_info($filter_field_used, $filter_used, $page_from, $filter_sort_asc, $filter_sort_desc);
$html->fields['password']['control_type'] = 'password';
$html->draw_controls('add');
$html->draw_footer();
$password = '';
}
//check if user exists
if ($dbh_user->check_user($username)->user_exists) {
//Good
} else {
$message = 'Specified username does not exist.';
}
if ($message == "") {
require 'password_crypto.php';
$hashed_password = cobalt_password_hash('NEW', $password, $username, $new_salt, $new_iteration, $new_method);
$data_con = new data_abstraction();
$data_con->set_query_type('UPDATE');
$data_con->set_table('user');
$data_con->set_update("`password`='{$hashed_password}', `salt`='{$new_salt}', `iteration`='{$new_iteration}', `method`='{$new_method}'");
$data_con->set_where("username='******'");
$data_con->make_query();
$message = 'The password has been successfully reset.';
$message_type = 'SYSTEM';
$password = '';
}
}
}
require 'subclasses/user_html.php';
$html = new user_html();
$html->draw_header('Reset Password', $message, $message_type);
$html->fields['password']['control_type'] = 'password';
$html->fields['password']['label'] = 'Temporary Password';
$html->exception = array('person_id', 'role_id', 'skin_id');
$html->draw_controls('add', 'Password Reset Form');
$html->draw_footer();
//******************************************************************
require 'path.php';
init_cobalt('Delete user');
if (isset($_GET['username'])) {
$username = urldecode($_GET['username']);
require 'form_data_user.php';
} elseif (xsrf_guard()) {
init_var($_POST['btn_cancel']);
init_var($_POST['btn_delete']);
require 'components/query_string_standard.php';
if ($_POST['btn_cancel']) {
log_action('Pressed cancel button', $_SERVER['PHP_SELF']);
redirect("listview_user.php?{$query_string}");
} elseif ($_POST['btn_delete']) {
log_action('Pressed delete button', $_SERVER['PHP_SELF']);
require 'subclasses/user.php';
$dbh_user = new user();
$object_name = 'dbh_user';
require 'components/create_form_data.php';
$dbh_user->del($arr_form_data);
redirect("listview_user.php?{$query_string}");
}
}
require 'subclasses/user_html.php';
$html = new user_html();
$html->draw_header('Delete User', $message, $message_type);
$html->draw_listview_referrer_info($filter_field_used, $filter_used, $page_from, $filter_sort_asc, $filter_sort_desc);
$html->draw_hidden('username');
$html->detail_view = TRUE;
$html->draw_controls('delete');
$html->draw_footer();
