function login($user, $pwd, $rem) { global $adminSession; global $adminCookieUser; global $adminCookiePassword; global $invalidUserIdOrPassword; $POST = array('user' => $user, 'pwd' => $pwd, 'rem' => $rem); $val = new validation(); $val->addSource($POST); $val->addRule('user', 'string', true, 1, 35, true)->addRule('pwd', 'string', true, 1, 35, true)->addRule('rem', 'bool'); $val->run(); if (sizeof($val->errors) > 0) { $connection->close(); $errors = implode(" <br/> ", $val->errors); return "Error: " . $errors; } else { $POST = $val->sanitized; $user = $this->escape($POST['user']); $pwd = $this->escape($POST['pwd']); $rem = $this->escape($POST['rem']); $adminTable = new adminTable($this->connection); $result = $adminTable->verifyAdminLogin($user, $pwd); if (is_bool($result)) { return $invalidUserIdOrPassword; } else { if (!isset($_SESSION)) { session_start(); } $_SESSION[$adminSession] = $result; if ($rem) { setcookie($adminCookieUser, $user, time() + 10 * 365 * 24 * 60 * 60, "/"); setcookie($adminCookiePassword, $pwd, time() + 10 * 365 * 24 * 60 * 60, "/"); } return true; } } }
function addUsers() { global $req; global $connection; $req->hasParams("adminUName", "adminFName", "adminGender", "adminEMail", "adminPassword", "adminPhone"); $adminUName = $req->getParam("adminUName"); $adminFName = $req->getParam("adminFName"); $adminGender = $req->getParam("adminGender"); $adminEMail = $req->getParam("adminEMail"); $adminPassword = $req->getParam("adminPassword"); $adminPhone = $req->getParam("adminPhone"); $POST = array('adminUName' => $adminUName, 'adminFName' => $adminFName, 'adminGender' => $adminGender, 'adminEMail' => $adminEMail, 'adminPassword' => $adminPassword, 'adminPhone' => $adminPhone); $genderValues = array('m', 'f', 'u'); $val = new validation(); $val->addSource($POST); $val->addRule('adminUName', 'string', true, 2, 50, true)->addRule('adminFName', 'string', true, 2, 50, true)->addRule('adminGender', 'string', true, 1, 1, true)->addRule('adminEMail', 'email', true, 5, 100, true)->addRule('adminPassword', 'string', true, 4, 35, true)->addRule('adminPhone', 'string', true, 4, 20, true); $val->run(); if (sizeof($val->errors) > 0) { $errors = implode(" <br/> ", $val->errors); Res::sendInvalid("Errors:" . $errors); } else { $POST = $val->sanitized; $adminTable = new adminTable($connection); $adminUName = $adminTable->escape($POST['adminUName']); $adminFName = $adminTable->escape($POST['adminFName']); $adminGender = $adminTable->escape($POST['adminGender']); $adminEMail = $adminTable->escape($POST['adminEMail']); $adminPassword = $adminTable->escape($POST['adminPassword']); $adminPhone = $adminTable->escape($POST['adminPhone']); $adminId = $adminTable->insertUsers($adminUName, $adminFName, $adminGender, $adminEMail, $adminPassword, $adminPhone); if (is_bool($adminId)) { Res::sendInvalid("Errors:" . $adminTable->message); } else { $res = new Res(); $res->addData("adminId", $adminId); $res->send(); } } }
function insertAdmin($userName, $fullname, $groupId, $password, $email, $phone, $gender, $pathName) { $miscTable = new miscTable($this->connection); $fromDetail = $miscTable->checkSendEmail(); if (is_bool($fromDetail)) { $this->message = $miscTable->message; return false; } $adminTable = new adminTable($this->connection); $result = $adminTable->checkAdminUserName($userName); if (!is_bool($result)) { $this->message = $adminTable->message; return false; } $result = $adminTable->checkAdminEmail($email); if (!is_bool($result)) { $this->message = $adminTable->message; return false; } $result = $adminTable->checkAdminPhone($phone); if (!is_bool($result)) { $this->message = $adminTable->message; return false; } $this->connection->autocommit(FALSE); $adminId = $adminTable->insert($userName, $fullname, $email, $password, $phone, $gender, $pathName); if (is_bool($adminId)) { $this->message = $adminTable->message; return false; } $groupAdminTable = new groupAdminTable($this->connection); $result = $groupAdminTable->insertGroup($adminId, $groupId); if (is_bool($result)) { $this->message = $groupAdminTable->message; return false; } $moduleGroupTable = new moduleGroupTable($this->connection); $result = $moduleGroupTable->select($groupId); if (is_bool($result)) { $this->message = $moduleGroupTable->message; return false; } $moduleAdminTable = new moduleAdminTable($this->connection); foreach ($result as $pCode) { $out = $moduleAdminTable->insert($pCode['moduleId'], $adminId, $pCode['permissionCode']); if (is_bool($out)) { $this->message = $moduleAdminTable->message; return false; } } $this->connection->commit(); $misc = new miscClass(); $subject = "Registration Successfully done in Shwapportunity Backend"; $msg = "<div style='text-align:center'><img src='" . $fromDetail['companyUrl'] . "assets/images/mainlogo.png'/><br/><a href='" . $fromDetail['companyUrl'] . "admin/' target='_blank'>Please Click here to Login into Your Account.</a><br/>Your Login Details is Given Below: <br/>Username: {$userName} <br/> Password: {$password}</div>"; $misc->mailer($fromDetail['sendEmail'], $email, $subject, $msg); return 1; }