Exemplo n.º 1
0
global $db, $home_dir, $custAuth;
if (!$custAuth->customer->val('customer_anonymous')) {
    $messages->add(t('You are already registered and logged in.'));
} else {
    $email = myTrim(strtolower(_g('register_email')));
    $password = _g('register_password');
    // validate email and password once again
    if ($custAuth->isValidEmail($email) && $custAuth->isValidPassword($password)) {
        // check if email exists
        $customer = new Customer($db);
        $customer->loadByEmail($email);
        if ($customer->is_loaded) {
            $messages->error(t('This email is already used. '));
        } else {
            $custAuth->customer->data['customer_name'] = null;
            $custAuth->customer->data['customer_email'] = $email;
            $custAuth->customer->data['customer_anonymous'] = 0;
            $custAuth->customer->data['customer_password_hash'] = CustomerAuthentication::hashPassword($password);
            $custAuth->customer->save();
            $custAuth->login($email, $password);
            if ($custAuth->isAuth()) {
                redirect(_g('ret', '/'));
            } else {
                $messages->add(t('Cannot log you in. Sorry'));
            }
        }
    } else {
        $messages->error(t('Invalid password or email.'));
    }
}
Exemplo n.º 2
0
 public function checkAuthentication()
 {
     $this->customer = null;
     if (isset($_COOKIE[$this->cookie_name])) {
         $arr = explode('-', $_COOKIE[$this->cookie_name]);
         $session_id = intval($arr[0]);
         $session_token = $arr[1];
     }
     if (isset($session_id)) {
         $this->session = new CustomerSession($this->db, $session_id);
         if (isset($this->session) && $this->session->is_loaded && CustomerAuthentication::verifyPassword($session_token, $this->session->val('customer_session_token_hash'))) {
             $expires = time() + CustomerAuthentication::$session_expire;
             $session = new CustomerSession($this->db);
             $session->data['customer_session_id'] = $session_id;
             $session->data['customer_session_expires'] = SqlQuery::mysqlTimestamp($expires);
             $session->save();
             setcookie($this->cookie_name, $this->session->val('customer_session_id') . '-' . $session_token, $expires, '/', false, false);
             $this->customer = new Customer($this->db, $this->session->val('customer_session_customer_id'));
             $this->updateLastAccess();
         }
     }
     if ($this->isAuth()) {
         $this->customer_id = $this->customer->val('customer_id');
     } else {
         $this->customer_id = 0;
     }
 }
Exemplo n.º 3
0
require_once $home_dir . 'models/customer.m.php';
require_once $home_dir . 'classes/forms.php';
$form = new AdminForm('customer');
$page = 'admin/form';
$form->add([['name' => 'customer_created', 'label' => 'Date', 'type' => 'static'], ['name' => 'customer_last_access', 'label' => 'Last visited', 'type' => 'static'], ['name' => 'customer_deleted', 'label' => 'Deleted', 'type' => 'bool'], ['name' => 'customer_anonymous', 'label' => 'Anonymous', 'type' => 'bool'], ['label' => 'Login', 'type' => 'begin_group'], ['name' => 'customer_email', 'label' => 'E-mail', 'type' => 'text', 'validations' => [['type' => 'email']]], ['name' => 'customer_password', 'label' => 'Password', 'type' => 'password', 'validations' => [['type' => 'password']]], ['name' => 'customer_password_confirm', 'label' => 'Confirm Password', 'type' => 'password', 'validations' => [['type' => 'confirm', 'param' => 'customer_password']]], ['type' => 'end_group'], ['label' => 'Address', 'type' => 'begin_group'], ['name' => 'customer_name', 'label' => 'Name', 'type' => 'text', 'validations' => [['type' => 'maxlen', 'param' => 50]]], ['name' => 'customer_address_city', 'label' => 'City', 'type' => 'text', 'validations' => [['type' => 'maxlen', 'param' => 50]]], ['name' => 'customer_address_street', 'label' => 'Street with house n.', 'type' => 'text', 'validations' => [['type' => 'maxlen', 'param' => 50]]], ['name' => 'customer_address_zip', 'label' => 'ZIP', 'type' => 'text', 'validations' => [['type' => 'integer', 'param' => true]]], ['type' => 'end_group'], ['label' => 'Shipping Address', 'type' => 'begin_group'], ['name' => 'customer_ship_name', 'label' => 'Name (shipping)', 'type' => 'text', 'validations' => [['type' => 'maxlen', 'param' => 50]]], ['name' => 'customer_ship_city', 'label' => 'City (shipping)', 'type' => 'text', 'validations' => [['type' => 'maxlen', 'param' => 50]]], ['name' => 'customer_ship_street', 'label' => 'Street (shipping)', 'type' => 'text', 'validations' => [['type' => 'maxlen', 'param' => 50]]], ['name' => 'customer_ship_zip', 'label' => 'ZIP (shipping)', 'type' => 'text', 'validations' => [['type' => 'integer', 'param' => true]]], ['type' => 'end_group'], ['name' => 'customer_failed_attempts', 'label' => 'Failed attempts', 'type' => 'text', 'validations' => [['type' => 'integer']]], ['name' => 'customer_delivery_type_id', 'label' => 'Delivery Type', 'type' => 'select', 'select_table' => 'delivery_types', 'select_id_field' => 'delivery_type_id', 'select_label_field' => 'delivery_type_name'], ['name' => 'customer_payment_type_id', 'label' => 'Payment Type', 'type' => 'select', 'select_table' => 'payment_types', 'select_id_field' => 'payment_type_id', 'select_label_field' => 'payment_type_name']]);
if (isset($_POST['customer_id'])) {
    if ($_POST['customer_id'] > 0) {
        $customer = new Customer($db, $_POST['customer_id']);
    } else {
        $customer = new Customer($db);
    }
    $customer->setData($form->processInput($_POST));
    unset($customer->data['customer_password']);
    unset($customer->data['customer_password_confirm']);
    if (isset($_POST['customer_password']) && strlen($_POST['customer_password']) > 0) {
        $customer->data['customer_password_hash'] = CustomerAuthentication::hashPassword($_POST['customer_password']);
    }
    if ($customer->save()) {
        redirect(_g('r', '/admin/customers'));
    }
} elseif (isset($path[2]) && $path[2] == 'edit') {
    $customer = new Customer($db, $path[3]);
    $page_title = t('Editing Customer');
} elseif (isset($path[2]) && $path[2] == 'delete') {
    if (Customer::del($db, $path[3])) {
        redirect(_g('r', '/admin/customers'));
    }
} else {
    $customer = new Customer($db);
    $page_title = t('New Customer');
}