public function login($email, $pwd, $mode = 'password')
{
if (empty($pwd)) {
return false;
}
if ($mode == 'password') {
$result = $this->where(array('email' => $email, 'password' => md5($pwd)))->find();
} else {
if ($mode == 'api') {
$result = $this->where(array('api_vendor' => $email, 'api_id' => $pwd))->find();
}
}
if (!$result || empty($result)) {
return false;
} elseif ($result['enabled'] == 0) {
return false;
} else {
//login successfully
//fetch other user information
$user_model = new UsersModel();
$user_data = $user_model->where(array('account_id' => $result['id']))->find();
$user_data['local_maps'] = T('local_map')->with('admin_id', $user_data['id'])->select();
$_SESSION['login_user'] = array_merge($user_data, $result);
$_SESSION['login_user']['id'] = $user_data['id'];
$this->where(array('id' => $result['id']))->data(array('last_login' => date('Y-m-d h:i:s')))->save();
$this->query("update users set login_count=login_count+1 where id={$user_id}");
return true;
}
}
public function get_ngo_network_data($ngo_id)
{
$user_model = new UsersModel();
$event_model = new EventsModel();
$ngo_id = intval($ngo_id);
//defense against exploit
//select the events of the user
$events_of_user = $event_model->field('id,longitude,latitude')->where(array('user_id' => $ngo_id))->select();
$user = $user_model->find($ngo_id);
//select the related ngo of the user
$fields = explode(',', $user['work_field']);
$sql = "select id,longitude,latitude, 0";
foreach ($fields as $field) {
$sql .= "-10*if(work_field like '%{$field}%',1,0)";
}
$sql .= " score from users where type='ngo' and is_checked=1 order by score limit 5";
$ngo_of_user = $this->query($sql);
//select the related csr with the same work field with the user
$sql = "select id,longitude,latitude, 0";
foreach ($fields as $field) {
$sql .= "-10*if(item_field like '%{$field}%',1,0)";
}
$sql .= " score from events where type='csr' and is_checked=1 order by score limit 5";
$csr_of_user = $this->query($sql);
return array('events' => $events_of_user, 'related_user' => $ngo_of_user, 'related_csr' => $csr_of_user);
}
public function store()
{
if (Auth::check()) {
$data = new Siswa();
$data->nisn = \Input::get('nisn');
$data->namalengkap = \Input::get('namalengkap');
$data->namapanggilan = \Input::get('namapanggilan');
$data->tempatlahir = \Input::get('tempatlahir');
$data->tanggallahir = \Input::get('tahun') . "-" . \Input::get('bulan') . "-" . \Input::get('tanggal');
$data->agama = \Input::get('agama');
$data->jk = \Input::get('jk');
$data->id_ortu = \Input::get('id_ortu');
$data->save();
$passortu = Ortu::where('id', '=', \Input::get('id_ortu'))->first();
$passortu = $passortu->password;
$pengguna = new UsersModel();
$pengguna->username = \Input::get('nisn');
$pengguna->password = $passortu;
$pengguna->group_id = "4";
$pengguna->save();
return \Redirect::to('siswa');
} else {
return \Redirect::to('login');
}
}
function plist_action($id, $order)
{
$model = new UsersModel();
$pupils = $model->get_pupils($id, $order);
$html = $this->render_template('application/view/templates/pupils.php', array('pupils' => $pupils));
return $html;
}
public function edit($id)
{
$news_model = new NewsModel();
$news = $news_model->find($id);
$user_model = new UsersModel();
$user = $user_model->find($news['user_id']);
$news['user_name'] = $user['name'];
$this->assign('news', $news);
$this->assign('action', 'save');
$this->display('add');
}
public function edit($id)
{
$local_map_model = new LocalMapModel();
$local_map = $local_map_model->find($id);
$user_model = new UsersModel();
$user = $user_model->find($local_map['admin_id']);
$local_map['user_name'] = $user['name'];
$this->assign('local_map', $local_map);
$this->assign('action', 'save');
$this->display('add_map');
}
public function updateConfigNotification()
{
$userId = $_SESSION['user']['id'];
$model = new UsersModel();
$model->id = $userId;
$model->subscribe_new_series = 0;
$model->subscribe_news = 0;
if ($_POST['subscribe_to_week'] == 1) {
$model->subscribe_new_series = 1;
}
if ($_POST['news_site'] == 1) {
$model->subscribe_news = 1;
}
$model->save();
}
public function updateSave($request)
{
$users_model = new UsersModel();
try {
$success = $users_model->updateMyPassword($this->session->get("username"), $request['old_password'], $request['new_password']);
} catch (WrongPasswordException $e) {
$success = false;
$this->data['reason'] = "wrong password";
}
if ($success) {
$this->data['status'] = "success";
} else {
$this->data['status'] = "failed";
}
}
function show_action($id)
{
$model = new EventsModel();
$event = $model->get_event($id);
if (isset($_POST['subscribe'])) {
$model = new UsersModel();
$result = $model->subscribe_to($id);
if ($result) {
header('Location: ./pupils?event=' . $id);
exit;
}
}
$html = $this->render_template('application/view/templates/show.php', array('event' => $event));
return $html;
}
public function Instance()
{
if (!isset(UsersModel::$_instance)) {
UsersModel::$_instance = new UsersModel();
}
return UsersModel::$_instance;
}
public static function getInstance()
{
if (!self::$instance) {
self::$instance = new UsersModel();
}
return self::$instance;
}
public static function setAbonement()
{
$model = UsersModel::model()->where("`id`='" . Auth::getUser()['id'] . "'")->findRow();
$model->abonement = 1;
$model->update();
Auth::setFields($model);
}
function indexAction()
{
if ($this->getRequest()->getParam('ref')) {
$user = new UsersModel();
$this->view->InvitedUser = $user->InvitedContact(decode($this->getRequest()->getParam('ref')));
if ($this->session->user["id"] > 0) {
$this->_redirect("bio/" . encode($this->view->InvitedUser["uid"]) . "#slams/post");
}
$user = new UsersModel($this->view->InvitedUser["uid"]);
$this->view->InviteeUser = $user->Info();
}
if ($this->getRequest()->getParam('userid')) {
if ($this->session->user["id"] > 0) {
$this->_redirect("bio/" . $this->getRequest()->getParam('userid'));
}
$user = new UsersModel(decode($this->getRequest()->getParam("userid")));
$iV = $this->view->InviteeUser = $user->Info();
$this->view->error = array("<strong>Login</strong> to view " . ($iV['gender'] == 'M' ? 'his' : 'her') . " <strong>tweets</strong>, <strong>slambook</strong> and other <strong>exciting</strong> stuffs.<br />New users can <strong>signup</strong> with a <strong>single step »</strong>", 60, "welcome");
}
if ($this->session->user["id"] > 0) {
$this->_redirect("my");
}
$user = new UsersModel();
$this->view->users = $user->Search(array(), array(0, 12), NULL, array("gender DESC"));
}
public function __construct($engine)
{
parent::__construct($engine);
if (!$this->_auth->hasIdentity()) {
$this->_engine->addHttpHeader("Location: /" . $this->_router->getUrl('cms', 'auth'));
exit;
}
$this->_cms = IndexModel::Instance();
$this->_gallery = GalleryModel::Instance();
$this->_user = UsersModel::Instance();
$this->_head->addStyleFile('jquery.ui.all.css', 'screen', true, '/css/jquery-ui/');
// JqueryUI CSS
$this->_head->addStyleToImport('index', 'cms', 'base.css');
$this->_head->addScriptFile('jquery-ui-' . $this->_config->jqueryui . '.min.js', true, '/scripts/jquery-ui/');
// JqueryUI JS
$this->_head->addScriptFile('base.js', true, '/scripts/cms/');
// JqueryUI JS
$this->_head->addScriptFile('jquery.uniform.min.js', true, '/scripts/cms/');
// JqueryUI JS
$this->_head->addScriptFile('index.js', true, '/scripts/cms/');
// JqueryUI JS
$this->_head->addScriptFile('jquery.ui.datepicker-pl.js', true, '/scripts/');
$this->_head->addScriptFile('ckeditor.js', true, '/scripts/cms/ckeditor/');
$this->_view->sidebar = $this->_view->render('modules/' . $this->_engine->getModuleName() . '/cms/templates/sidebar.tpl');
}
function init()
{
HackCheck();
$this->session = Zend_Registry::get('session');
$this->cache = Zend_Registry::get('cache');
$this->db = Zend_Registry::get('db');
$user = new UsersModel($this->getRequest()->getParam('of') == "null" || $this->getRequest()->getParam('of') == "" ? $this->session->user["id"] : decode($this->getRequest()->getParam('of')));
$this->view->userExt = $user->Info();
$this->slam = new SlamModel($this->view->userExt["id"]);
$this->admin = new AdminModel();
$this->view->user = $this->session->user;
$this->prefix = $this->session->user['id'] == $this->view->userExt['id'] ? 'You' : ($this->view->userExt['gender'] == 'M' ? 'He' : 'She');
if ($this->session->error != "") {
$this->view->error = $this->session->error;
}
$this->session->error = NULL;
}
public static function logincount()
{
if (Auth::getUser()['id']) {
$user = UsersModel::model()->where("`id`='" . Auth::getUser()['id'] . "'")->findRow();
$user->login_count = $user->login_count + 1;
$user->update();
}
}
public function view($id)
{
$event_model = new EventsModel();
$user_model = new UsersModel();
$recommend_model = new RecommendModel();
$media_model = new MediaModel();
$event = $event_model->find($id);
$user = $user_model->find($event['user_id']);
$recommended_users = $recommend_model->users_by_event($id);
$recommended_events = $recommend_model->events_by_event($id);
$images = $media_model->select_images_by_event($id);
$this->assign('images', $images);
$this->assign('event', $event);
$this->assign('user', $user);
$this->assign('rec_users', $recommended_users);
$this->assign('rec_events', $recommended_events);
$this->display();
}
public static function isPackageActive()
{
$user = UsersModel::model()->where(" `id` = '{$_SESSION['user']['id']}' ")->findRow();
$user_major = false;
if ($user->package_id != 0) {
if ($user->package_expire >= date("Y-m-d")) {
$user_major = true;
}
}
return $user_major;
}
public function indexRun($request)
{
if (!isset($request['username']) || !isset($request['password'])) {
$this->data['status'] = "failed";
} else {
$users_model = new UsersModel();
$user = $users_model->isValidUser($request['username'], $request['password']);
if ($user !== false) {
$sess_vars['username'] = $request['username'];
$sess_vars['name'] = $user['firstname'] . " " . $user['lastname'];
$sess_vars['id'] = $user['id'];
$sess_vars['groups'] = $user['groups'];
$this->session->set($sess_vars);
$this->session->regenerateId();
$this->data['status'] = "success";
$this->data['app'] = "welcome";
} else {
$this->data['status'] = "failed";
}
}
}
public function actionAll()
{
$user = UsersModel::findOneByPK(2);
$user->nickname = 'Shrek';
$user->password = '******';
$user->about = 'I am the ugliest!';
//$user->update();
$users = UsersModel::findAll();
foreach ($users as $user) {
echo $user . '<br>';
}
}
function login()
{
// die('aa');
if (isset($_POST)) {
if (!empty($_POST['login']) && !empty($_POST['password'])) {
$login = $_POST['login'];
$password = $_POST['password'];
}
}
//var_dump($login,$password);die;
$users_model = new UsersModel();
$login_data = $users_model->get_users($login, $password);
// var_dump($users);die;
if (isset($login_data['is_loggedin']) && true == $login_data['is_loggedin']) {
$_SESSION['login_data'] = array('user_id' => $login_data['id']);
$url = MVC_BASE_URL . '/admin/index';
header('Location: ' . $url);
die;
} else {
$url = MVC_BASE_URL . '/users/login';
header('Location: ' . $url);
die;
}
}
function checkAuth()
{
global $settings;
require_once "./models/users.php";
$username = $_POST["username"];
$passw = $_POST["passw"];
//echo sha1($passw)."<br />\n";
//echo "$username<br />\n";
$mUsers = new UsersModel();
if ($mUsers->verifyPassw($username, $passw)) {
$authDataArr = json_decode($mUsers->getAuthInfo_json($username), true);
if (!$authDataArr['isError']) {
$key = $authDataArr['resultStr']['last_key'];
//last key stored
$last_key_date = $authDataArr['resultStr']['last_key_date'];
//last key date
//echo "<br/>last key date: $last_key_date<br/>";
//echo "current date: ".time()."<br/>";
if ($last_key_date == "" or time() - $last_key_date > $settings->get('keyLastsFor')) {
$key = sha1($username . "@" . $passw . ":" . time());
$mUsers->updateKey($username, $key);
}
//session_name("Mandolin");
//session_start();
session_regenerate_id();
$_SESSION["key"] = $key;
$_SESSION["username"] = $username;
$_SESSION["userAdminLevel"] = $mUsers->isAdmin($username);
$_SESSION["id"] = sha1(session_id());
//print_r($_SESSION);
header("Location: .");
exit;
}
}
header("Location: ./?p=login&passw=false");
}
public function checkAuthorization($username, $password)
{
$authorized = false;
$query = $this->_db->queryAdapter()->select($this->_CP_Table, ['username' => $username, 'password' => UsersModel::ObfuscatePassword($password)], $this->queryAdapterPrefixes());
$stmt = $this->_db->prepare($query[GC_AFIELD_QUERY]);
if ($stmt->execute($query[GC_AFIELD_PARAMS])) {
$row = $stmt->fetch();
if ($row) {
$authorized = $row["{$this->_CP_ColumnsPerfix}{$this->_CP_IDColumn}"];
}
} else {
$this->_lastDBError = $stmt->errorInfo();
}
return $authorized;
}
public function actionResult()
{
$result = $_POST;
$packet = PaymentModel::model()->where(" id = '" . $result['ik_x_package_id'] . "'")->findRow();
$Date = date('Y-m-d');
//echo 'date = '.$Date.'<br/>';
$new_date = date('Y-m-d', strtotime($Date . ' + ' . $packet->day_count . ' month'));
//echo 'new_date = '.$new_date.'<br/>';
//echo date('Y-m-d', strtotime($Date. ' + 2 days'));
$users = UsersModel::model()->where("`id`='" . $result['ik_x_user_id'] . "'")->findRow();
//$users->id = $result['ik_x_user_id'];
$users->package_id = $result['ik_x_package_id'];
$users->package_expire = $new_date;
$users->promo_code = 'Куплено через интеркассу';
$users->save();
$this->view("Robokassa/result", array("result" => $_POST), false);
}
public function __construct($engine)
{
parent::__construct($engine);
if (!$this->_auth->hasIdentity()) {
$this->_engine->addHttpHeader("Location: " . $this->_router->getUrl('cms', 'auth'));
exit;
}
$this->_user = UsersModel::Instance();
$this->_cms = IndexModel::Instance();
$this->_head->addStyleFile('jquery.ui.all.css', 'screen', true, '/css/jquery-ui/');
// JqueryUI CSS
$this->_head->addStyleToImport('index', 'cms', 'base.css');
$this->_head->addScriptFile('jquery-ui-' . $this->_config->jqueryui . '.min.js', true, '/scripts/jquery-ui/');
// JqueryUI JS
$this->_head->addScriptFile('base.js', true, '/scripts/cms/');
// JqueryUI JS
$this->_head->addScriptFile('jquery.uniform.min.js', true, '/scripts/cms/');
// JqueryUI JS
$this->_head->addScriptFile('user.js', true, '/scripts/cms/');
// JqueryUI JS
}
public static function userDeleteIdle()
{
$users_model = new UsersModel();
$users_model->setCond('timestamp < "' . date('Y-m-d H:i:s', strtotime('-' . TIME_USER_IDLE . ' seconds')) . '"');
$users_model->setFields(array('active'));
$users_model->setData(array('active' => 0));
$users = $users_model->load_all();
if (count($users)) {
foreach ($users as $load) {
if (isset($_SESSION['chat_login']['timestamp']) && $load['timestamp'] >= $_SESSION['chat_login']['timestamp']) {
AlertModel::addExit($load['user'], $load['id'], $load['id_room']);
}
}
}
return $users_model->delete();
}
<?
// Include the file for the specific functions on Users
require_once '../../../Models/Users.php';
// New Helper to use the functions
$id=$_GET["id"];
$User= new UsersModel();
// Performing a select with all "*" and specifiying the RoleId=2 for selecting only users
$results = $User->SelectSpecific("*",array( "UserId" => $id ));
$results=$results[0];
//If an edit is performed
if(! empty($_POST))
{
$data=$_POST;
$answer=$User->Update($data,array( "UserId" => $id ));
header("Location: ./index.php");
}
function quotes($string)
{
return "'".$string."'";
}
?>
<? include "header.php";?>
<h2>Editer un utilisateur</h2>
<form class="form-horizontal" data-toggle="validator" role="form" method="post" >
<?php
require_once 'app/autoload.php';
if (isset($_SESSION['chat_login']['id_user'])) {
// Return
$return = '';
// Update dos users
$users = new UsersModel();
$users->setFields(array('timestamp'));
$users->setData(array('timestamp' => date('Y-m-d H:i:s')));
$users->update($_SESSION['chat_login']['id_user']);
// Lendo as messages
$users = new UsersModel();
$users->setCond('id_room = ' . $_SESSION['chat_login']['id_room']);
$users->setCond('id != ' . $_SESSION['chat_login']['id_user']);
$users->setCond('active = 1');
$users->setOrderBy('user asc');
$load = $users->load_all();
$json = array();
foreach ($load as $line) {
// Retorno
$user = Filters::convert(htmlentities($line['user']));
$return .= '<a href="#" id="user_' . $line['id'] . '" rel="' . $line['id'] . '">' . $user . '</a>';
$json[] = '["' . $line['id'] . '", "' . $user . '"]';
}
echo '[' . implode(',', $json) . ']';
} else {
echo 'error';
}
/**
* Fonction permettant de verifier si l'utilisateur est bien enregistrer dans
* la base de données avec les identifiants qu'il vient de fournir.
* Si les identifiants sont ok alors l'utilisateur
*
* @param login variable POST contenant login de l'utilisateur
* @param pass variable POST contenant le mot de passe de l'utilisateur
*
*/
public function verify()
{
if (!$this->_session->is_logged()) {
if (!empty($_POST['login']) && !empty($_POST['password'])) {
$login = $_POST["login"];
$pass = $_POST["password"];
$user = UsersModel::Login($login, $pass);
if (!empty($user)) {
if ($user->isConnected()) {
$this->_session->login($user->isConnected());
$this->_session->user = $user;
Router::redirect("/Users", "refresh");
} else {
Router::redirect("/Login?error=3", "refresh");
}
} else {
Router::redirect("/Login?error=2", "refresh");
}
} else {
Router::redirect('/Login?error=1', 'refresh');
}
} else {
Router::redirect("/Users", "refresh");
}
}
<?php include '../protected/config/db_config.php'; include '../protected/config/html_config.php'; include '../protected/library/validation_library.php'; include '../protected/controllers/index.php'; include '../protected/models/users.php'; $db = new db_config(); $formelem = new FormElem(); $userModel = new UsersModel(); $connect = $db->connect(); $userid = $_GET['userid']; ?> <?php echo $userid; echo $userModel->passwordReset($userid, $connect);
