public function testUpdate()
{
$id = DM\Users::toId($this->testName);
$params = array('id' => $id, 'first_name' => '123', 'last_name' => '231', 'sex' => 'f', 'email' => 'f', 'password' => 'a', 'photo' => '/tmp/q.jpg', 'language_id' => 2, 'recover_hash' => '---', 'enabled' => 0, 'cid' => 1);
DM\Users::update($params);
$data = DM\Users::read($id);
$params['password'] = md5('aero' . $params['password']);
$this->assertArraySubset($params, $data);
//updateByName
unset($params['id']);
$params['name'] = $this->testName;
$params['password'] = '******';
$params['enabled'] = 1;
DM\Users::updateByName($params);
$data = DM\Users::read($id);
$params['password'] = md5('aero' . $params['password']);
$this->assertArraySubset($params, $data);
//verify password
$this->assertTrue(DM\Users::verifyPassword($id, 'b'), 'Wrong password');
//check id by mail
$id = DM\Users::getIdByEmail('f');
$this->assertTrue(is_numeric($id), 'Cant get Id by mail');
//check id by recover hash
$id = DM\Users::getIdByRecoveryHash('---');
$this->assertTrue(is_numeric($id), 'Cant get Id by recover hash');
//check owner
$this->assertTrue(DM\Users::getOwnerId($id) == 1, 'different owner set');
}
/**
* set the user enabled or disabled
* @param int $userId
* @param boolean $enabled
*/
public static function setEnabled($userId, $enabled)
{
return DM\Users::update(array('id' => $userId, 'enabled' => intval($enabled)));
}
/**
* Add a new user
* params: name, group_id
*/
public function addUser($p)
{
if (!User::isVerified()) {
return array('success' => false, 'verify' => true);
}
if (!Security::canManage()) {
throw new \Exception(L\get('Access_denied'));
}
$rez = array('success' => false, 'msg' => L\get('Missing_required_fields'));
$p['name'] = strip_tags($p['name']);
$p['name'] = trim($p['name']);
$p1 = empty($p['password']) ? '' : $p['password'];
$p2 = empty($p['confirm_password']) ? '' : $p['confirm_password'];
if (empty($p['name']) || $p1 != $p2) {
return $rez;
}
// validate input params
if (!preg_match('/^[a-z\\.0-9_]+$/i', $p['name'])) {
return array('success' => false, 'msg' => 'Invalid username. Use only letters, digits, "dot" and/or "underscore".');
}
$p['first_name'] = Purify::humanName($p['first_name']);
$p['last_name'] = Purify::humanName($p['last_name']);
if (!empty($p['email'])) {
if (!filter_var($p['email'], FILTER_VALIDATE_EMAIL)) {
return array('success' => false, 'msg' => L\get('InvalidEmail'));
}
}
//check if user with such email doesn exist
$user_id = DM\Users::getIdByEmail($p['email']);
if (!empty($user_id)) {
throw new \Exception(L\get('UserEmailExists'));
}
/*check user existance, if user already exists but is deleted
then its record will be used for new user */
$user_id = DM\Users::getIdByName($p['name']);
if (!empty($user_id)) {
throw new \Exception(L\get('User_exists'));
}
$params = array('name' => $p['name'], 'first_name' => $p['first_name'], 'last_name' => $p['last_name'], 'cid' => User::getId(), 'language_id' => Config::get('language_index'), 'email' => $p['email']);
if (!empty($p['password']) && !empty($p['psw_setup']['ps']) && $p['psw_setup']['ps'] == 2) {
$params['password'] = $p['password'];
}
$user_id = DM\Users::getIdByName($p['name'], false);
if (!empty($user_id)) {
//update
$params['id'] = $user_id;
DM\Users::update($params);
/* in case it was a deleted user we delete all old acceses */
DB\dbQuery('DELETE FROM users_groups_association WHERE user_id = $1', $user_id);
DB\dbQuery('DELETE FROM tree_acl WHERE user_group_id = $1', $rez['data']['id']);
/* end of in case it was a deleted user we delete all old acceses */
} else {
//create
$user_id = DM\Users::create($params);
}
$rez = array('success' => true, 'data' => array('id' => $user_id));
$p['id'] = $user_id;
// associating user to group if group was specified
if (isset($p['group_id']) && is_numeric($p['group_id'])) {
DB\dbQuery('INSERT INTO users_groups_association (user_id, group_id, cid)
VALUES($1, $2, $3)
ON duplicate KEY
UPDATE cid = $3', array($user_id, $p['group_id'], User::getId()));
$rez['data']['group_id'] = $p['group_id'];
} else {
$rez['data']['group_id'] = 0;
}
//check if send invite is set and create notification
if (!empty($p['psw_setup']['ps']) && $p['psw_setup']['ps'] == 1) {
$this->sendResetPasswordMail($user_id, 'invite');
}
Security::calculateUpdatedSecuritySets();
Solr\Client::runBackgroundCron();
return $rez;
}
