Exemplo n.º 1
0
 /**
  * Update password
  *
  * @param RecordSet $db db connection
  * @param array $info info to be updated with keys
  * 		 "name","email","notifyPage","notifyAll","notifyReply" as fields in database
  * @return string "" when success otherwise error message
  * @throws Exception
  */
 private function updateProf($db, $info)
 {
     error_log("updateProf info" . print_r($info, true));
     $toReturn = "";
     global $translate;
     $newArray = $db->sanitizeArray($info);
     $invalidInput = "";
     $dataToUpdate = "";
     $adminUserId = -1;
     foreach ($newArray as $key => $val) {
         if ($info[$key] != $val) {
             $translateKey = 'user.' . $key . ".label";
             $invalidInput .= Utils::translate($translateKey) . ", ";
         } else {
             if ($key == "email") {
                 if (!$this->checkEmail($info["email"])) {
                     if (strlen($invalidInput) > 0) {
                         $invalidInput .= ", ";
                     }
                     $invalidInput .= Utils::translate("user.email.label");
                 }
             }
         }
         if ($key != "userId") {
             if (isset($info['password']) && $key == "password") {
                 $password = $info['password'];
                 $newPass = $db->sanitize($password);
                 if ($newPass != $password) {
                     $invalidInput .= Utils::translate('pwd.invalidCharacters');
                 } else {
                     if (strlen(trim($password)) < 5) {
                         $invalidInput .= Utils::translate('pwd.tooShort');
                     } else {
                         $dataToUpdate .= $key . " = '" . md5($password) . "' ,";
                     }
                 }
             } else {
                 if ($key != 'oldPassword' && $key != 'editByAdmin') {
                     $dataToUpdate .= $key . " = '" . $val . "' ,";
                 }
             }
         } else {
             $adminUserId = $info["userId"];
         }
     }
     $dataToUpdate = substr($dataToUpdate, 0, -2);
     if ($invalidInput == "") {
         if ($this->isUqFieldViolated('email', $info['email'], $adminUserId > 0 ? $adminUserId : $this->info["userId"])) {
             $toReturn = Utils::translate('email.duplicate');
         } else {
             $query = "UPDATE users SET " . $dataToUpdate . " WHERE userId=";
             if ($adminUserId > 0) {
                 $query .= $adminUserId . ";";
             } else {
                 $query .= $this->info["userId"] . ";";
             }
             // 			$toReturn=$query;
             $toReturn = "";
             try {
                 $rows = $db->Run($query);
             } catch (Exception $e) {
                 $toReturn = $e->getMessage();
                 if ($this->isUqViolated($toReturn, "email")) {
                     $toReturn = Utils::translate('email.duplicate');
                 } else {
                     if ($this->isUqViolated($toReturn, "userName")) {
                         $toReturn = Utils::translate('username.duplicate');
                     } else {
                         throw $e;
                     }
                 }
             }
         }
         if ($toReturn == "") {
             $myrs = new RecordSet($this->dbConnectionInfo);
             $query = "SELECT * FROM users WHERE userId=" . $this->info["userId"] . ";";
             if ($myrs->Open($query) > 0 && $myrs->m_IsValid) {
                 $myrs->MoveNext();
                 $this->info['userName'] = $myrs->Field('userName');
                 $this->info['userId'] = $myrs->Field('userId');
                 $this->info['name'] = $myrs->Field('name');
                 $this->info['level'] = $myrs->Field('level');
                 $this->info['company'] = $myrs->Field('company');
                 $this->info['email'] = $myrs->Field('email');
                 $this->info['date'] = $myrs->Field('date');
                 $this->info['notifyAll'] = $myrs->Field('notifyAll');
                 $this->info['notifyReply'] = $myrs->Field('notifyReply');
                 $this->info['notifyPage'] = $myrs->Field('notifyPage');
             }
             $myrs->close();
         }
     } else {
         if (substr($invalidInput, -2) == ", ") {
             $invalidInput = substr($invalidInput, 0, -2);
         }
         $toReturn = Utils::translate('input.invalid') . $invalidInput;
     }
     return $toReturn;
 }