public function login() { Users::redirectIf(true); $nickname = Helper::post('nickname'); $password = Helper::post('password'); if (empty($nickname) || empty($password)) { Session::setFlash('danger', '', Translate::get('error.forms.missing.content')); Router::redirect('user.signin'); } $users = Users::select()->addFields(['id', 'id_group', 'password', 'nickname', 'mail', 'user_key', 'firstname', 'lastname', 'avatar'])->where('nickname', $nickname)->andWhere('mail_check', '1')->orWhere('mail', $nickname)->get(0, 1); if (empty($users) || !password_verify($password, $users[0]->password)) { Session::setFlash('danger', '', Translate::get('user.error.login')); Router::redirect('user.signin'); } $user = $users[0]; $group = Groups::select()->where('id', $user->id_group)->get(); if (empty($group)) { Session::setFlash('danger', '', 'Vous n\'êtes pas dans un groupe valide'); Router::redirect('user.signin'); } $group = $group[0]; $br = new BinaryRight($group->auth_site); if (!$br->compare(Groups::getAuth('site', 'connection'))) { Session::setFlash('danger', '', 'Vous ne pouvez pas vous connecter !'); Router::redirect('user.signin'); } $user->connection_at = BaseModel::now(); $user->save(); Users::sessionSet($user); Session::setFlash('success', '', Translate::get('user.success.login')); Router::redirect('home.index'); }
public function index() { if (!Groups::check('site', Groups::getAuth('site', 'show_admin'))) { Router::redirect('home.index'); } $this->render('admin/home', 'home.admin.title'); }
private function checker($name, $ajax = false) { if (!Groups::check('site', Groups::getAuth('site', $name))) { if ($ajax) { echo "Vous n'avez pas les droits !"; } else { Router::redirect('home.index'); } } }
private function ajaxSub($id = 0) { if (!Groups::check('site', Groups::getAuth('site', 'update_full_admin'))) { return; } $group = Groups::findOrCreate('id', $id); $get = []; foreach (Groups::$authorization as $k => $v) { if (!isset($get[$k])) { $get[$k] = []; } $name = "auth_{$k}"; foreach ($v as $key => $value) { $get[$k][$key] = $this->isActive($k, $key, $group->{$name}); } $this->set($k, $get[$k]); } if ($group->id == 0) { $url = Router::url('admin:group.insert'); } else { $url = Router::url('admin:group.update', ['id' => $group->id]); } $this->set(['group' => $group, 'url' => $url]); $this->render('admin/groups_spec'); }