/**
* Changes user's username.
* User must enter security number to prevent robot attacks.
*/
public function changeUsername()
{
checkUnauthorizedAccess();
$main = new Main();
$main->setPageTitle("Username settings");
$changeUsername = new ChangeUsername();
$main->setBody($changeUsername);
echo $main;
$oldUsername = getUsername();
if (post('change-username')) {
$newUsername = post('first');
$confirmNewUsername = post('second');
$userSecurityNumber = post('security');
$error = false;
if (!ctype_alnum($newUsername) || strlen($newUsername) < 4 || strlen($newUsername) > 25) {
$error = true;
}
if (!ctype_alnum($confirmNewUsername) || strlen($confirmNewUsername) < 4 || strlen($confirmNewUsername) > 25) {
$error = true;
}
if ($userSecurityNumber < 1113 || $userSecurityNumber > 1207) {
$error = true;
}
if ($newUsername === $confirmNewUsername && !$error) {
UserRepository::changeUsername($oldUsername, $newUsername);
$_SESSION['username'] = $newUsername;
}
}
}
