2008-06-13 20:20:23 +00:00
< ? php
/*
2008-12-21 11:07:58 +00:00
* e107 website system
*
2011-09-14 11:09:05 +00:00
* Copyright ( C ) 2008 - 2011 e107 Inc ( e107 . org )
2008-12-21 11:07:58 +00:00
* Released under the terms and conditions of the
* GNU General Public License ( http :// www . gnu . org / licenses / gpl . txt )
*
* Handler - user - related functions
*
2010-05-13 15:47:31 +00:00
* $URL $
* $Id $
2008-12-21 11:07:58 +00:00
*
2008-06-13 20:20:23 +00:00
*/
2010-01-31 22:21:11 +00:00
/**
2010-05-13 15:47:31 +00:00
*
2010-01-31 22:21:11 +00:00
* @ package e107
* @ subpackage e107_handlers
2010-02-10 18:18:01 +00:00
* @ version $Id $ ;
2010-01-31 22:21:11 +00:00
*
* USER HANDLER CLASS - manages login and various user functions
*
* @ todo - consider vetting of user_xup ( if we keep it )
*/
2008-06-13 20:20:23 +00:00
if ( ! defined ( 'e107_INIT' )) { exit ; }
2008-12-21 11:07:58 +00:00
// Codes for `user_ban` field (not all used ATM)
2008-06-13 20:20:23 +00:00
define ( 'USER_VALIDATED' , 0 );
define ( 'USER_BANNED' , 1 );
define ( 'USER_REGISTERED_NOT_VALIDATED' , 2 );
define ( 'USER_EMAIL_BOUNCED' , 3 );
define ( 'USER_BOUNCED_RESET' , 4 );
define ( 'USER_TEMPORARY_ACCOUNT' , 5 );
define ( 'PASSWORD_E107_MD5' , 0 );
define ( 'PASSWORD_E107_SALT' , 1 );
define ( 'PASSWORD_E107_ID' , '$E$' ); // E107 salted
define ( 'PASSWORD_INVALID' , FALSE );
define ( 'PASSWORD_VALID' , TRUE );
define ( 'PASSWORD_DEFAULT_TYPE' , PASSWORD_E107_MD5 );
//define ('PASSWORD_DEFAULT_TYPE',PASSWORD_E107_SALT);
2008-12-21 11:07:58 +00:00
// Required language file - if not loaded elsewhere, uncomment next line
//include_lan(e_LANGUAGEDIR.e_LANGUAGE.'/lan_user.php');
2008-06-13 20:20:23 +00:00
class UserHandler
{
2008-12-21 11:07:58 +00:00
var $userVettingInfo = array ();
2008-06-13 20:20:23 +00:00
var $preferred = PASSWORD_DEFAULT_TYPE ; // Preferred password format
var $passwordOpts = 0 ; // Copy of pref
var $passwordEmail = FALSE ; // True if can use email address to log in
2008-12-21 11:07:58 +00:00
var $otherFields = array ();
2008-06-13 20:20:23 +00:00
// Constructor
2010-01-31 22:21:11 +00:00
public function __construct ()
2008-06-13 20:20:23 +00:00
{
2011-09-14 11:09:05 +00:00
$pref = e107 :: getPref ();
2008-12-21 11:07:58 +00:00
2010-01-31 22:21:11 +00:00
/**
2008-12-21 11:07:58 +00:00
Table of vetting methods for user data - lists every field whose value could be set manually .
Valid 'vetMethod' values ( use comma separated list for multiple vetting ) :
0 - Null method
1 - Check for duplicates
2 - Check against $pref [ 'signup_disallow_text' ]
2009-11-30 20:40:03 +00:00
3 - Check email address against remote server , only if option enabled
2008-12-30 14:05:44 +00:00
2008-12-21 11:07:58 +00:00
Index is the destination field name . If the source index name is different , specify 'srcName' in the array .
2008-12-30 14:05:44 +00:00
2008-12-21 11:07:58 +00:00
Possible processing options :
2008-12-28 22:37:43 +00:00
'dbClean' - 'sanitising' method for final value :
- 'toDB' - passes final value through $tp -> toDB ()
- 'intval' - converts to an integer
- 'image' - checks image for size
- 'avatar' - checks an image in the avatars directory
2008-12-21 11:07:58 +00:00
'stripTags' - strips HTML tags from the value ( not an error if there are some )
'minLength' - minimum length ( in utf - 8 characters ) for the string
'maxLength' - minimum length ( in utf - 8 characters ) for the string
'longTrim' - if set , and the string exceeds maxLength , its trimmed
'enablePref' - value is processed only if the named $pref evaluates to true ; otherwise any input is discarded without error
*/
$this -> userVettingInfo = array (
2009-01-11 21:06:52 +00:00
'user_name' => array ( 'niceName' => LAN_USER_01 , 'fieldType' => 'string' , 'vetMethod' => '1,2' , 'vetParam' => 'signup_disallow_text' , 'srcName' => 'username' , 'stripTags' => TRUE , 'stripChars' => '/ |\#|\=|\$/' , fixedBlock => 'anonymous' , 'minLength' => 2 , 'maxLength' => varset ( $pref [ 'displayname_maxlength' ], 15 )), // Display name
2010-05-28 20:04:04 +00:00
'user_loginname' => array ( 'niceName' => LAN_USER_02 , 'fieldType' => 'string' , 'vetMethod' => '1' , 'vetParam' => '' , 'srcName' => 'loginname' , 'stripTags' => TRUE , 'stripChars' => '#[^a-z0-9_\.]#i' , 'minLength' => 2 , 'maxLength' => varset ( $pref [ 'loginname_maxlength' ], 30 )), // User name
2009-01-11 21:06:52 +00:00
'user_login' => array ( 'niceName' => LAN_USER_03 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'realname' , 'dbClean' => 'toDB' ), // Real name (no real vetting)
'user_customtitle' => array ( 'niceName' => LAN_USER_04 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'customtitle' , 'dbClean' => 'toDB' , 'enablePref' => 'signup_option_customtitle' ), // No real vetting
'user_password' => array ( 'niceName' => LAN_USER_05 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'password1' , 'dataType' => 2 , 'minLength' => varset ( $pref [ 'signup_pass_len' ], 1 )),
2009-11-07 02:17:02 +00:00
'user_sess' => array ( 'niceName' => LAN_USER_06 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'stripChars' => " # \" |'|(|)# " , 'dbClean' => 'image' , 'imagePath' => e_UPLOAD . 'avatars/' , 'maxHeight' => varset ( $pref [ 'im_height' ], 100 ), 'maxWidth' => varset ( $pref [ 'im_width' ], 120 )), // Photo
2012-06-18 09:06:20 +00:00
'user_image' => array ( 'niceName' => LAN_USER_07 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'image' , 'stripChars' => " # \" |'|(|)# " , 'dbClean' => 'avatar' ), //, 'maxHeight' => varset($pref['im_height'], 100), 'maxWidth' => varset($pref['im_width'], 120) resized on-the-fly // Avatar
2009-10-06 18:58:08 +00:00
'user_email' => array ( 'niceName' => LAN_USER_08 , 'fieldType' => 'string' , 'vetMethod' => '1,3' , 'vetParam' => '' , 'fieldOptional' => varset ( $pref [ 'disable_emailcheck' ], 0 ), 'srcName' => 'email' , 'dbClean' => 'toDB' ),
2009-01-11 21:06:52 +00:00
'user_signature' => array ( 'niceName' => LAN_USER_09 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'signature' , 'dbClean' => 'toDB' ),
'user_hideemail' => array ( 'niceName' => LAN_USER_10 , 'fieldType' => 'int' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'hideemail' , 'dbClean' => 'intval' ),
'user_xup' => array ( 'niceName' => LAN_USER_11 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'user_xup' , 'dbClean' => 'toDB' ),
'user_class' => array ( 'niceName' => LAN_USER_12 , 'fieldType' => 'string' , 'vetMethod' => '0' , 'vetParam' => '' , 'srcName' => 'class' , 'dataType' => '1' )
2008-12-21 11:07:58 +00:00
);
$this -> otherFields = array (
'user_join' => LAN_USER_14 ,
'user_lastvisit' => LAN_USER_15 ,
'user_currentvisit' => LAN_USER_16 ,
'user_comments' => LAN_USER_17 ,
'user_ip' => LAN_USER_18 ,
'user_ban' => LAN_USER_19 ,
'user_prefs' => LAN_USER_20 ,
'user_visits' => LAN_USER_21 ,
'user_admin' => LAN_USER_22 ,
'user_perms' => LAN_USER_23 ,
'user_pwchange' => LAN_USER_24
// user_chats int(10) unsigned NOT NULL default '0',
);
2009-01-11 22:11:19 +00:00
$this -> otherFieldTypes = array (
'user_join' => 'int' ,
'user_lastvisit' => 'int' ,
'user_currentvisit' => 'int' ,
'user_comments' => 'int' ,
'user_ip' => 'string' ,
'user_ban' => 'int' ,
'user_prefs' => 'string' ,
'user_visits' => 'int' ,
'user_admin' => 'int' ,
'user_perms' => 'string' ,
'user_pwchange' => 'int'
);
2008-12-21 11:07:58 +00:00
2008-06-13 20:20:23 +00:00
$this -> passwordOpts = varset ( $pref [ 'passwordEncoding' ], 0 );
$this -> passwordEmail = varset ( $pref [ 'allowEmailLogin' ], FALSE );
switch ( $this -> passwordOpts )
{
case 1 :
case 2 :
$this -> preferred = PASSWORD_E107_SALT ;
break ;
case 0 :
default :
$this -> preferred = PASSWORD_E107_MD5 ;
$this -> passwordOpts = 0 ; // In case it got set to some stupid value
break ;
}
return FALSE ;
}
2010-01-31 22:21:11 +00:00
/**
* Given plaintext password and login name , generate password string to store in DB
*
* @ param string $password - plaintext password as entered by user
* @ param string $login_name - string used to log in ( could actually be email address )
* @ param empty | PASSWORD_E107_MD5 | PASSWORD_E107_SALT $force - if non - empty , forces a particular type of password
*
* @ return string | boolean - FALSE if invalid emcoding method , else encoded password to store in DB
*/
public function HashPassword ( $password , $login_name , $force = '' )
2008-06-13 20:20:23 +00:00
{
if ( $force == '' ) $force = $this -> preferred ;
switch ( $force )
{
case PASSWORD_E107_MD5 :
return md5 ( $password );
2008-12-30 14:05:44 +00:00
2008-06-13 20:20:23 +00:00
case PASSWORD_E107_SALT :
return PASSWORD_E107_ID . md5 ( md5 ( $password ) . $login_name );
break ;
}
return FALSE ;
}
2010-01-31 22:21:11 +00:00
/**
* Verify existing plaintext password against a stored hash value ( which defines the encoding format and any 'salt' )
*
* @ param string $password - plaintext password as entered by user
* @ param string $login_name - string used to log in ( could actually be email address )
* @ param string $stored_hash - required value for password to match
2010-05-13 15:47:31 +00:00
*
* @ return PASSWORD_INVALID | PASSWORD_VALID | string
2010-01-31 22:21:11 +00:00
* PASSWORD_INVALID if no match
* PASSWORD_VALID if valid password
* Return a new hash to store if valid password but non - preferred encoding
*/
public function CheckPassword ( $password , $login_name , $stored_hash )
2008-06-13 20:20:23 +00:00
{
2010-01-31 22:21:11 +00:00
if ( strlen ( trim ( $password )) == 0 ) return PASSWORD_INVALID ;
if (( $this -> passwordOpts <= 1 ) && ( strlen ( $stored_hash ) == 32 ))
{ // Its simple md5 encoding
if ( md5 ( $password ) !== $stored_hash ) return PASSWORD_INVALID ;
if ( $this -> preferred == PASSWORD_E107_MD5 ) return PASSWORD_VALID ;
return $this -> HashPassword ( $password ); // Valid password, but non-preferred encoding; return the new hash
}
2008-06-13 20:20:23 +00:00
2010-01-31 22:21:11 +00:00
// Allow the salted password even if disabled - for those that do try to go back!
// if (($this->passwordOpts >= 1) && (strlen($stored_hash) == 35) && (substr($stored_hash,0,3) == PASSWORD_E107_ID))
if (( strlen ( $stored_hash ) == 35 ) && ( substr ( $stored_hash , 0 , 3 ) == PASSWORD_E107_ID ))
{ // Its the standard E107 salted hash
$hash = $this -> HashPassword ( $password , $login_name , PASSWORD_E107_SALT );
if ( $hash === FALSE ) return PASSWORD_INVALID ;
return ( $hash == $stored_hash ) ? PASSWORD_VALID : PASSWORD_INVALID ;
}
return PASSWORD_INVALID ;
2008-06-13 20:20:23 +00:00
}
2010-01-31 22:21:11 +00:00
/**
* Verifies a standard response to a CHAP challenge
*
* @ param string $challenge - the string sent to the user
* @ param string $response - the response returned by the user
* @ param string $login_name - user ' s login name
* @ param string $stored_hash - password hash as stored in DB
*
* @ return PASSWORD_INVALID | PASSWORD_VALID
*/
public function CheckCHAP ( $challenge , $response , $login_name , $stored_hash )
2008-06-13 20:20:23 +00:00
{
2010-01-31 22:21:11 +00:00
if ( strlen ( $challenge ) != 40 ) return PASSWORD_INVALID ;
if ( strlen ( $response ) != 32 ) return PASSWORD_INVALID ;
$valid_ret = PASSWORD_VALID ;
if ( strlen ( $stored_hash ) == 32 )
{ // Its simple md5 password storage
$stored_hash = PASSWORD_E107_ID . md5 ( $stored_hash . $login_name ); // Convert to the salted format always used by CHAP
if ( $this -> passwordOpts != PASSWORD_E107_MD5 ) $valid_ret = $stored_response ;
}
$testval = md5 ( substr ( $stored_hash , strlen ( PASSWORD_E107_ID )) . $challenge );
if ( $testval == $response ) return $valid_ret ;
return PASSWORD_INVALID ;
2008-06-13 20:20:23 +00:00
}
2010-01-31 22:21:11 +00:00
/**
* Checks whether the user has to validate a change of user settings by entering password ( basically , if that field affects the
* stored password value )
*
* @ param string $fieldName - name of field being changed
*
* @ return bool TRUE if change required , FALSE otherwise
*/
public function isPasswordRequired ( $fieldName )
2008-06-13 20:20:23 +00:00
{
2008-12-21 11:07:58 +00:00
if ( $this -> preferred == PASSWORD_E107_MD5 ) return FALSE ;
switch ( $fieldName )
{
case 'user_email' :
return $this -> passwordEmail ;
case 'user_loginname' :
return TRUE ;
}
return FALSE ;
2008-06-13 20:20:23 +00:00
}
2008-12-21 11:07:58 +00:00
2010-01-31 22:21:11 +00:00
/**
* Determines whether its necessary to store a separate password for email address validation
*
* @ return bool TRUE if separate password
*/
public function needEmailPassword ()
2008-12-21 11:07:58 +00:00
{
if ( $this -> preferred == PASSWORD_E107_MD5 ) return FALSE ;
if ( $this -> passwordEmail ) return TRUE ;
return FALSE ;
}
2008-12-30 14:05:44 +00:00
2010-01-31 22:21:11 +00:00
/**
* Checks whether the password value can be converted to the current default
*
* @ param string $password - hashed password
* @ return bool TRUE if conversion possible , FALSE if not possible , or not needed .
*/
public function canConvert ( $password )
2008-06-13 20:20:23 +00:00
{
2010-01-31 22:21:11 +00:00
if ( $this -> preferred == PASSWORD_E107_MD5 ) return FALSE ;
if ( strlen ( $password ) == 32 ) return TRUE ; // Can convert from md5 to salted
return FALSE ;
2008-06-13 20:20:23 +00:00
}
2010-01-31 22:21:11 +00:00
/**
* Given md5 - encoded password and login name , generate password string to store in DB
*
* @ param string $password - MD5 - hashed password
* @ param string $login_name - user ' s login name
*
* @ return string hashed password to store in DB , converted as necessary
*/
public function ConvertPassword ( $password , $login_name )
2008-06-13 20:20:23 +00:00
{
2010-01-31 22:21:11 +00:00
if ( $this -> canConvert ( $password ) === FALSE ) return $password ;
return PASSWORD_E107_ID . md5 ( $password . $login_name );
2008-06-13 20:20:23 +00:00
}
2010-01-31 22:21:11 +00:00
/**
* Generates a random user login name according to some pattern .
* Checked for uniqueness .
*
* @ param string $pattern - defines the format of the username
* @ param int $seed - may be used with the random pattern generator
*
* @ return string a user login name , guaranteed unique in the database .
*/
public function generateUserLogin ( $pattern , $seed = '' )
2008-06-13 20:20:23 +00:00
{
2010-01-31 22:21:11 +00:00
$ul_sql = new db ;
if ( strlen ( $pattern ) < 6 ) $pattern = '##....' ;
do
{
$newname = $this -> generateRandomString ( $pattern , $seed );
} while ( $ul_sql -> db_Select ( 'user' , 'user_id' , " `user_loginname`=' { $newname } ' " ));
return $newname ;
2008-06-13 20:20:23 +00:00
}
2010-01-31 22:21:11 +00:00
/**
* Generates a random string - for user login name , password etc , according to some pattern .
* @ param string $pattern - defines the output format :
* # - an alpha character
* . - a numeric character
* * - an alphanumeric character
* ^ - next character from seed
* alphanumerics are included 'as is'
* @ param int $seed - may be used with the random pattern generator
*
* @ return string - the required random string
*/
public function generateRandomString ( $pattern , $seed = '' )
2008-06-13 20:20:23 +00:00
{
2009-08-08 23:09:08 +00:00
if ( strlen ( $pattern ) < 6 )
$pattern = '##....' ;
$newname = '' ;
// Create alpha [A-Z][a-z]
$alpha = '' ;
for ( $i = 65 ; $i < 91 ; $i ++ )
2008-06-13 20:20:23 +00:00
{
2009-08-08 23:09:08 +00:00
$alpha .= chr ( $i ) . chr ( $i + 32 );
}
$alphaLength = strlen ( $alpha ) - 1 ;
// Create digit [0-9]
$digit = '' ;
for ( $i = 48 ; $i < 57 ; $i ++ )
{
$digit .= chr ( $i );
}
$digitLength = strlen ( $digit ) - 1 ;
// Create alpha numeric [A-Z][a-z]
2012-02-07 16:37:44 +00:00
$alphaNum = $alpha . $digit . chr ( 45 ) . chr ( 95 ); // add support for - and _
2009-08-08 23:09:08 +00:00
$alphaNumLength = strlen ( $alphaNum ) - 1 ;
// Next character of seed (if used)
$seed_ptr = 0 ;
for ( $i = 0 , $patternLength = strlen ( $pattern ); $i < $patternLength ; $i ++ )
{
$c = $pattern [ $i ];
switch ( $c )
2008-06-13 20:20:23 +00:00
{
2009-08-08 23:09:08 +00:00
// Alpha only (upper and lower case)
case '#' :
$t = rand ( 0 , $alphaLength );
$newname .= $alpha [ $t ];
break ;
// Numeric only - [0-9]
case '.' :
$t = rand ( 0 , $digitLength );
$newname .= $digit [ $t ];
break ;
// Alphanumeric
case '*' :
$t = rand ( 0 , $alphaNumLength );
$newname .= $alphaNum [ $t ];
break ;
// Next character from seed
case '^' :
if ( $seed_ptr < strlen ( $seed ))
{
$newname .= $seed [ $seed_ptr ];
$seed_ptr ++ ;
}
break ;
// (else just ignore other characters in pattern)
default :
if ( strrpos ( $alphaNum , $c ) !== FALSE )
{
$newname .= $c ;
}
2008-06-13 20:20:23 +00:00
}
}
2009-08-08 23:09:08 +00:00
return $newname ;
2008-06-13 20:20:23 +00:00
}
2010-01-31 22:21:11 +00:00
/**
* Split up an email address to check for banned domains .
* @ param string $email - email address to process
* @ param string $fieldname - name of field being searched in DB
*
* @ return bool | string false if invalid address . Otherwise returns a set of values to check
2012-01-02 22:06:22 +00:00
* Moved to IPHandler
2010-01-31 22:21:11 +00:00
*/
2012-01-02 22:06:22 +00:00
/*
2010-01-31 22:21:11 +00:00
public function make_email_query ( $email , $fieldname = 'banlist_ip' )
2008-06-13 20:20:23 +00:00
{
2012-01-02 22:06:22 +00:00
return e107 :: getIPHandler () -> makeEmailQuery ( $v , $fieldname ); // Valid 'stub' if required
2010-01-31 22:21:11 +00:00
$tp = e107 :: getParser ();
2009-11-19 20:37:09 +00:00
$tmp = strtolower ( $tp -> toDB ( trim ( substr ( $email , strrpos ( $email , " @ " ) + 1 )))); // Pull out the domain name
if ( $tmp == '' ) return FALSE ;
if ( strpos ( $tmp , '.' ) === FALSE ) return FALSE ;
$em = array_reverse ( explode ( '.' , $tmp ));
$line = '' ;
2010-02-21 16:04:26 +00:00
$out = array ( $fieldname . " ='*@ { $tmp } ' " ); // First element looks for domain as email address
2009-11-19 20:37:09 +00:00
foreach ( $em as $e )
{
$line = '.' . $e . $line ;
$out [] = '`' . $fieldname . " `='* { $line } ' " ;
}
return implode ( ' OR ' , $out );
2008-06-13 20:20:23 +00:00
}
2012-01-02 22:06:22 +00:00
*/
2008-06-13 20:20:23 +00:00
2010-01-31 22:21:11 +00:00
/**
* Create user cookie
*
* @ param array $lode - user information from DB - 'user_id' and 'user_password' required
* @ param bool $autologin - TRUE if the 'Remember Me' box ticked
*
2010-05-13 15:47:31 +00:00
* @ return void
2010-01-31 22:21:11 +00:00
*/
public function makeUserCookie ( $lode , $autologin = FALSE )
2008-08-26 19:45:42 +00:00
{
2010-01-31 22:21:11 +00:00
$cookieval = $lode [ 'user_id' ] . '.' . md5 ( $lode [ 'user_password' ]); // (Use extra md5 on cookie value to obscure hashed value for password)
2010-05-13 15:47:31 +00:00
if ( e107 :: getPref ( 'user_tracking' ) == 'session' )
2008-08-26 19:45:42 +00:00
{
2010-05-13 15:47:31 +00:00
$_SESSION [ e107 :: getPref ( 'cookie_name' )] = $cookieval ;
2008-12-30 14:05:44 +00:00
}
else
2008-08-26 19:45:42 +00:00
{
2008-12-30 14:05:44 +00:00
if ( $autologin == 1 )
2008-12-28 22:37:43 +00:00
{ // Cookie valid for up to 30 days
2010-05-13 15:47:31 +00:00
cookie ( e107 :: getPref ( 'cookie_name' ), $cookieval , ( time () + 3600 * 24 * 30 ));
$_COOKIE [ e107 :: getPref ( 'cookie_name' )] = $cookieval ; // make it available to the global scope before the page is reloaded
2008-12-30 14:05:44 +00:00
}
else
2008-12-28 22:37:43 +00:00
{
2010-05-13 15:47:31 +00:00
cookie ( e107 :: getPref ( 'cookie_name' ), $cookieval );
$_COOKIE [ e107 :: getPref ( 'cookie_name' )] = $cookieval ; // make it available to the global scope before the page is reloaded
2008-12-28 22:37:43 +00:00
}
2008-08-26 19:45:42 +00:00
}
}
2008-06-13 20:20:23 +00:00
2008-12-21 11:07:58 +00:00
2010-01-31 22:21:11 +00:00
/**
* Generate an array of all the basic classes a user belongs to
*
* Note that the passed data may relate to the currently logged in user , or if an admin is logged in , to a different user
*
* @ param array $userData - user 's data record - must include the ' user_class ' element
* @ param boolean $asArray if TRUE , returns results in an array ; else as a comma - separated string
* @ param boolean $incInherited if TRUE , includes inherited classes
* @ param boolean $fromAdmin - if TRUE , adds e_UC_ADMIN and e_UC_MAINADMIN in if current user ' s entitlement permits
*
* @ return array | string of userclass information according to $asArray
*/
public function addCommonClasses ( $userData , $asArray = FALSE , $incInherited = FALSE , $fromAdmin = FALSE )
2008-12-21 11:07:58 +00:00
{
if ( $incInherited )
{
2010-01-31 22:21:11 +00:00
$classList = e107 :: getUserClass () -> get_all_user_classes ( $var [ 'user_class' ]);
2008-12-21 11:07:58 +00:00
}
else
{
if ( $userData [ 'user_class' ] != '' ) $classList = explode ( ',' , $userData [ 'user_class' ]);
}
foreach ( array ( e_UC_MEMBER , e_UC_READONLY , e_UC_PUBLIC ) as $c )
{
2012-12-09 18:12:18 +01:00
if ( ! in_array ( $c , vartrue ( $classList )))
2008-12-21 11:07:58 +00:00
{
$classList [] = $c ;
}
}
2010-01-31 22:21:11 +00:00
if ((( varset ( $userData [ 'user_admin' ], 0 ) == 1 ) && strlen ( $userData [ 'user_perms' ])) || ( $fromAdmin && ADMIN ))
2008-12-21 11:07:58 +00:00
{
2010-01-31 22:21:11 +00:00
$classList [] = e_UC_ADMIN ;
if (( strpos ( $userData [ 'user_perms' ], '0' ) === 0 ) || getperms ( '0' ))
{
$classList [] = e_UC_MAINADMIN ;
}
2008-12-21 11:07:58 +00:00
}
if ( $asArray ) return $classList ;
return implode ( ',' , $classList );
}
2010-01-31 22:21:11 +00:00
/**
* Return an array of descriptive names for each field in the user DB .
*
* @ param bool $all if false , just returns modifiable fields . Else returns all
*
* $return array - key is field name , value is 'nice name' ( descriptive name )
*/
public function getNiceNames ( $all = FALSE )
2008-12-21 11:07:58 +00:00
{
// $ret = array('user_id' => LAN_USER_13);
foreach ( $this -> userVettingInfo as $k => $v )
{
$ret [ $k ] = $v [ 'niceName' ];
}
if ( $all )
{
$ret = array_merge ( $ret , $this -> otherFields );
}
return $ret ;
}
//===================================================
// User Field validation
//===================================================
/* $_POST field names :
DB signup usersettings quick add function
------------------------------------------------------------------------------
user_id - user_id - Unique user ID
2008-12-21 22:17:05 +00:00
user_name name $ username username Display name
2008-12-21 11:07:58 +00:00
user_loginname loginname loginname loginname User name ( login name )
user_customtitle - customtitle - Custom title
user_password password1 password1 password1 Password ( prior to encoding )
password2 password2 password1 ( Check password field )
user_sess * - Photo ( file on server )
user_email email email email Email address
email_confirm
user_signature signature signature - User signature
user_image image image * - Avatar ( may be external URL or file on server )
user_hideemail hideemail hideemail - Flag to hide user ' s email address
user_login realname realname realname User Real name
2008-12-21 22:17:05 +00:00
user_xup xupexist $ user_xup - XUP file link
2008-12-21 11:07:58 +00:00
user_class class class userclass User class ( array on form )
2008-12-30 14:05:44 +00:00
2008-12-21 11:07:58 +00:00
user_loginname may be auto - generated
* avatar ( user_image ) and photo ( user_sess ) may be uploaded files
2008-12-21 22:17:05 +00:00
$changed to match the majority vote
2008-12-21 11:07:58 +00:00
Following fields auto - filled in code as required :
user_join
user_lastvisit
user_currentvisit
user_chats
user_comments
user_forums
user_ip
user_ban
user_prefs
user_viewed
user_visits
user_admin
user_perms
user_pwchange
*/
2010-01-31 22:21:11 +00:00
/**
* Function does validation specific to user data . Updates the $targetData array as appropriate .
*
* @ param array $targetData - user data generated from earlier vetting stages - only the data in $targetData [ 'data' ] is checked
*
* @ return bool TRUE if nothing updated ; FALSE if errors found
*/
public function userValidation ( & $targetData )
2008-12-21 11:07:58 +00:00
{
2011-09-14 11:09:05 +00:00
$u_sql = e107 :: getDb ( 'u' );
2008-12-21 11:07:58 +00:00
$ret = TRUE ;
2009-10-06 18:58:08 +00:00
$errMsg = '' ;
2009-01-11 21:06:52 +00:00
if ( isset ( $targetData [ 'data' ][ 'user_email' ]))
2008-12-21 11:07:58 +00:00
{
2009-01-11 21:06:52 +00:00
$v = trim ( $targetData [ 'data' ][ 'user_email' ]); // Always check email address if its entered
2008-12-21 11:07:58 +00:00
if ( $v == '' )
{
2011-09-14 11:09:05 +00:00
if ( ! e107 :: getPref ( 'disable_emailcheck' ))
2009-10-06 18:58:08 +00:00
{
$errMsg = ERR_MISSING_VALUE ;
}
2008-12-21 11:07:58 +00:00
}
elseif ( ! check_email ( $v ))
{
$errMsg = ERR_INVALID_EMAIL ;
}
elseif ( $u_sql -> db_Count ( 'user' , '(*)' , " WHERE `user_email`=' " . $v . " ' AND `user_ban`=1 " ))
{
2011-09-15 13:03:25 +00:00
$errMsg = ERR_BANNED_USER ;
2008-12-21 11:07:58 +00:00
}
else
{ // See if email address banned
2012-01-02 22:06:22 +00:00
$wc = e107 :: getIPHandler () -> makeEmailQuery ( $v ); // Generate the query for the ban list
2008-12-21 11:07:58 +00:00
if ( $wc ) { $wc = " `banlist_ip`=' { $v } ' OR " . $wc ; }
2012-01-02 22:06:22 +00:00
if (( $wc === FALSE ) || ! e107 :: getIPHandler () -> checkBan ( $wc , FALSE , TRUE ))
2008-12-21 11:07:58 +00:00
{
2009-10-06 18:58:08 +00:00
// echo "Email banned<br />";
2008-12-21 11:07:58 +00:00
$errMsg = ERR_BANNED_EMAIL ;
}
}
if ( $errMsg )
{
2009-01-11 21:06:52 +00:00
unset ( $targetData [ 'data' ][ 'user_email' ]); // Remove the valid entry
2008-12-21 11:07:58 +00:00
}
}
else
{
2011-09-14 11:09:05 +00:00
if ( ! isset ( $targetData [ 'errors' ][ 'user_email' ]) && ! e107 :: getPref ( 'disable_emailcheck' ))
2008-12-21 11:07:58 +00:00
{ // We may have already picked up an error on the email address - or it may be allowed to be empty
$errMsg = ERR_MISSING_VALUE ;
}
}
if ( $errMsg )
{ // Update the error
$targetData [ 'errors' ][ 'user_email' ] = $errMsg ;
$targetData [ 'failed' ][ 'user_email' ] = $v ;
$ret = FALSE ;
}
return $ret ;
}
2010-01-31 22:21:11 +00:00
/**
* Given an array of user data intended to be written to the DB , adds empty strings ( or other default value ) for any field which doesn ' t have a default in the SQL definition .
* ( Avoids problems with MySQL in STRICT mode . ) .
*
* @ param array $userInfo - user data destined for the database
*
* @ return bool TRUE if additions made , FALSE if no change .
*
* @ todo - may be unnecessary with auto - generation of _NOTNULL array in db handler
*/
public function addNonDefaulted ( & $userInfo )
2008-12-21 11:07:58 +00:00
{
2009-06-12 20:41:35 +00:00
// $nonDefaulted = array('user_signature' => '', 'user_prefs' => '', 'user_class' => '', 'user_perms' => '');
$nonDefaulted = array ( 'user_signature' => '' , 'user_prefs' => '' , 'user_class' => '' , 'user_perms' => '' , 'user_realm' => '' ); // Delete when McFly finished
2008-12-21 11:07:58 +00:00
$ret = FALSE ;
foreach ( $nonDefaulted as $k => $v )
{
if ( ! isset ( $userInfo [ $k ]))
{
$userInfo [ $k ] = $v ;
$ret = TRUE ;
}
}
return $ret ;
}
2008-12-30 14:05:44 +00:00
2010-01-31 22:21:11 +00:00
/**
* Delete time - expired partial registrations from the user DB , clean up user_extended table
*
* @ param bool $force - set TRUE to force check of user_extended table
*
* @ return int number of user records deleted
*/
public function deleteExpired ( $force = FALSE )
2008-12-21 11:07:58 +00:00
{
2011-09-14 11:09:05 +00:00
$pref = e107 :: getPref ();
$sql = e107 :: getDb ();
2009-04-23 19:58:28 +00:00
$temp1 = 0 ;
2008-12-21 11:07:58 +00:00
if ( isset ( $pref [ 'del_unv' ]) && $pref [ 'del_unv' ] && $pref [ 'user_reg_veri' ] != 2 )
{
2008-12-28 22:37:43 +00:00
$threshold = intval ( time () - ( $pref [ 'del_unv' ] * 60 ));
2009-04-23 19:58:28 +00:00
if (( $temp1 = $sql -> db_Delete ( 'user' , 'user_ban = 2 AND user_join < ' . $threshold )) > 0 ) { $force = TRUE ; }
2008-12-21 11:07:58 +00:00
}
2009-04-23 19:58:28 +00:00
if ( $force )
{ // Remove 'orphaned' extended user field records
2009-09-28 21:32:08 +00:00
$sql -> db_Select_gen ( " DELETE `#user_extended` FROM `#user_extended` LEFT JOIN `#user` ON `#user_extended`.`user_extended_id` = `#user`.`user_id`
2009-04-23 19:58:28 +00:00
WHERE `#user` . `user_id` IS NULL " );
}
return $temp1 ;
2008-12-21 11:07:58 +00:00
}
2009-04-23 19:58:28 +00:00
2009-06-12 20:41:35 +00:00
2010-01-31 22:21:11 +00:00
/**
* Called to update initial user classes , probationary user class etc after various user events
*
* @ param array $user - user data . 'user_class' must be present
* @ param string $event = userveri | userall | userfull | userpartial - defines event
*
* @ return boolean - true if $user [ 'user_class' ] updated , false otherwise
*/
public function userClassUpdate ( & $user , $event = 'userveri' )
2009-06-12 20:41:35 +00:00
{
2011-09-14 11:09:05 +00:00
$pref = e107 :: getPref ();
2010-01-31 22:21:11 +00:00
$tp = e107 :: getParser ();
2009-06-12 20:41:35 +00:00
$initClasses = array ();
$doClasses = FALSE ;
$doProbation = FALSE ;
$ret = FALSE ;
switch ( $event )
{
case 'userall' :
$doClasses = TRUE ;
$doProbation = TRUE ;
break ;
case 'userfull' : // A 'fully fledged' user
if ( ! $pref [ 'user_reg_veri' ] || ( $pref [ 'init_class_stage' ] == '2' ))
{
$doClasses = TRUE ;
}
$doProbation = TRUE ;
break ;
case 'userpartial' :
if ( $pref [ 'init_class_stage' ] == '1' )
{ // Set initial classes if to be done on partial signup, or if selected to add them now
$doClasses = TRUE ;
}
$doProbation = TRUE ;
break ;
}
if ( $doClasses )
{
if ( isset ( $pref [ 'initial_user_classes' ])) { $initClasses = explode ( ',' , $pref [ 'initial_user_classes' ]); } // Any initial user classes to be set at some stage
if ( $doProbation && ( varset ( $pref [ 'user_new_period' ], 0 ) > 0 ))
{
$initClasses [] = e_UC_NEWUSER ; // Probationary user class
}
if ( count ( $initClasses ))
{ // Update the user classes
if ( $user [ 'user_class' ])
{
$initClasses = array_unique ( array_merge ( $initClasses , explode ( ',' , $user [ 'user_class' ])));
}
$user [ 'user_class' ] = $tp -> toDB ( implode ( ',' , $initClasses ));
$ret = TRUE ;
}
}
2010-01-31 22:21:11 +00:00
return $ret ;
2009-11-30 20:40:03 +00:00
}
2009-06-12 20:41:35 +00:00
2010-01-31 22:21:11 +00:00
2009-11-30 20:40:03 +00:00
/**
* Updates user status , primarily the user_ban field , to reflect outside events
2010-01-31 22:21:11 +00:00
*
2009-12-16 22:26:27 +00:00
* @ param string $start - 'ban' , 'bounce'
* @ param integer $uid - internal user ID , zero if not known
* @ param string $emailAddress - email address ( optional )
2010-01-31 22:21:11 +00:00
*
2009-11-30 20:40:03 +00:00
* @ return boolean | string - FALSE if user found , error message if not
*/
public function userStatusUpdate ( $action , $uid , $emailAddress = '' )
{
$db = e107 :: getDb ();
$qry = '' ;
$error = FALSE ; // Assume no error to start with
$uid = intval ( $uid ); // Precautionary - should have already been done
switch ( $action )
{
case 'ban' :
$newVal = USER_BANNED ;
$logEvent = USER_AUDIT_BANNED ;
break ;
case 'bounce' :
$newVal = USER_EMAIL_BOUNCED ;
$logEvent = USER_AUDIT_MAIL_BOUNCE ;
break ;
case 'reset' :
$newVal = USER_BOUNCED_RESET ;
$logEvent = USER_AUDIT_BOUNCE_RESET ;
break ;
case 'temp' :
$newVal = USER_TEMPORARY_ACCOUNT ;
$logEvent = USER_AUDIT_TEMP_ACCOUNT ;
break ;
default :
return 'Invalid action: ' . $action ;
}
if ( $uid ) { $qry = '`user_id`=' . $uid ; }
if ( $emailAddress ) { if ( $qry ) $qry .= ' OR ' ; $qry .= " `user_email` = ' { $emailAddress } ' " ; }
if ( FALSE === $db -> db_Select ( 'user' , 'user_id, user_email, user_ban, user_loginname' , $qry . ' LIMIT 1' ))
{
$error = 'User not found: ' . $uid . '/' . $emailAddress ;
}
else
{
$row = $db -> db_Fetch ( MYSQL_ASSOC );
if ( $uid && ( $uid != $row [ 'user_id' ]))
{
$error = 'UID mismatch: ' . $uid . '/' . $row [ 'user_id' ];
}
elseif ( $emailAddress && ( $emailAddress != $row [ 'user_email' ]))
{
$error = 'User email mismatch: ' . $emailAddress . '/' . $row [ 'user_email' ];
}
else
{ // Valid user!
if ( $row [ 'user_ban' ] != $newVal ) // We could implement a hierarchy here, so that an important status isn't overridden by a lesser one
{ // Only update if needed
$db -> db_Update ( 'user' , '`user_ban` = ' . $newVal . ', `user_email` = \'\' WHERE `user_id` = ' . $row [ 'user_id' ] . ' LIMIT 1' );
// Add to user audit log TODO: Should we log to admin log as well?
$adminLog = e107 :: getAdminLog ();
$adminLog -> user_audit ( $logEvent , array ( 'user_ban' => $newVal , 'user_email' => $row [ 'user_email' ]), $row [ 'user_id' ], $row [ 'user_loginname' ]);
}
}
}
return $error ;
2009-06-12 20:41:35 +00:00
}
2008-06-13 20:20:23 +00:00
}
2012-07-31 07:32:00 +00:00
class e_user_provider
{
/**
* @ var string
*/
protected $_provider ;
/**
* Hybridauth adapter
* @ var Hybrid_Provider_Model
*/
public $adapter ;
/**
* Hybridauth object
* @ var Hybrid_Auth
*/
public $hybridauth ;
protected $_config = array ();
public function __construct ( $provider , $config = array ())
{
if ( ! empty ( $config ))
{
$this -> _config = $config ;
$this -> hybridauth = new Hybrid_Auth ( $this -> _config );
}
else
{
$this -> _config = array (
" base_url " => e107 :: getUrl () -> create ( 'system/xup/endpoint' , array (), array ( 'full' => true )),
" providers " => e107 :: getPref ( 'social_login' , array ())
);
$this -> hybridauth = e107 :: getHybridAuth ();
}
2009-11-30 20:40:03 +00:00
2012-07-31 07:32:00 +00:00
$this -> setProvider ( $provider );
//require_once(e_HANDLER."hybridauth/Hybrid/Auth.php");
}
public function setProvider ( $provider )
{
$this -> _provider = $provider && isset ( $this -> _config [ 'providers' ][ $provider ]) ? $provider : null ;
}
public function setBackUrl ( $url )
{
# system/xup/endpoint by default
$this -> _config [ 'base_url' ] = $url ;
}
public function getProvider ()
{
return $this -> _provider ;
}
public function getConfig ()
{
return $this -> _config ;
}
public function getUserProfile ()
{
if ( $this -> adapter )
{
return $this -> adapter -> getUserProfile ();
}
return null ;
}
public function userId ()
{
if ( $this -> adapter && $this -> adapter -> getUserProfile () -> identifier )
{
return $this -> getProvider () . '_' . $this -> adapter -> getUserProfile () -> identifier ;
}
return null ;
}
public function signup ( $redirectUrl = true , $loginAfterSuccess = true , $emailAfterSuccess = true )
{
if ( ! e107 :: getPref ( 'social_login_active' , false ))
{
throw new Exception ( " Signup failed! This feature is disabled. " , 100 ); // TODO lan
}
if ( ! $this -> getProvider ())
{
throw new Exception ( " Signup failed! Wrong provider. " , 2 ); // TODO lan
}
if ( $redirectUrl )
{
if ( true === $redirectUrl )
{
$redirectUrl = SITEURL ;
}
elseif ( strpos ( $redirectUrl , 'http://' ) !== 0 && strpos ( $redirectUrl , 'https://' ) !== 0 )
{
$redirectUrl = e107 :: getUrl () -> create ( $redirectUrl );
}
}
if ( e107 :: getUser () -> isUser ())
{
throw new Exception ( " Signup failed! User already signed in. " , 1 ); // TODO lan
}
$this -> adapter = $this -> hybridauth -> authenticate ( $this -> getProvider ());
$profile = $this -> adapter -> getUserProfile ();
// returned back, if success...
if ( $profile -> identifier )
{
$sql = e107 :: getDb ();
$userMethods = e107 :: getUserSession ();
$plainPwd = $userMethods -> generateRandomString ( '************' ); // auto plain passwords
// TODO - auto login name, shouldn't be used if system set to user_email login...
$userdata [ 'user_loginname' ] = $this -> getProvider () . $userMethods -> generateUserLogin ( e107 :: getPref ( 'predefinedLoginName' , '_..#..#..#' ));
$userdata [ 'user_email' ] = $sql -> escape ( $profile -> emailVerified ? $profile -> emailVerified : $profile -> email );
$userdata [ 'user_name' ] = $sql -> escape ( $profile -> displayName );
$userdata [ 'user_login' ] = $userdata [ 'user_name' ];
$userdata [ 'user_customtitle' ] = '' ; // not used
$userdata [ 'user_password' ] = $userMethods -> HashPassword ( $plainPwd , $userdata [ 'user_loginname' ]); // pwd
2012-08-02 11:26:47 +00:00
$userdata [ 'user_sess' ] = '' ; //
$userdata [ 'user_image' ] = $profile -> photoURL ; // avatar
2012-07-31 07:32:00 +00:00
$userdata [ 'user_signature' ] = '' ; // not used
$userdata [ 'user_hideemail' ] = 1 ; // hide it by default
$userdata [ 'user_xup' ] = $sql -> escape ( $this -> userId ());
$userdata [ 'user_class' ] = '' ; // TODO - check (with Steve) initial class for new users feature...
// user_name, user_xup, user_email and user_loginname shouldn't match
if ( $sql -> db_Count ( " user " , " (*) " , " user_xup=' " . $sql -> escape ( $this -> userId ()) . " ' OR user_email=' { $userdata [ 'user_email' ] } ' OR user_loginname=' { $userdata [ 'user_loginname' ] } ' OR user_name=' { $userdata [ 'user_name' ] } ' " ))
{
throw new Exception ( " Signup failed! User already exists. Please use 'login' instead. " , 3 ); // TODO lan
}
if ( empty ( $userdata [ 'user_email' ]))
{
throw new Exception ( " Signup failed! Can't access user email - registration without an email is impossible. " , 4 ); // TODO lan
}
// other fields
$now = time ();
$userdata [ 'user_id' ] = null ;
$userdata [ 'user_join' ] = $now ;
$userdata [ 'user_lastvisit' ] = 0 ;
$userdata [ 'user_currentvisit' ] = 0 ;
$userdata [ 'user_comments' ] = 0 ;
$userdata [ 'user_ip' ] = e107 :: getIPHandler () -> getIP ( FALSE );
$userdata [ 'user_ban' ] = USER_VALIDATED ;
$userdata [ 'user_prefs' ] = '' ;
$userdata [ 'user_visits' ] = 0 ;
$userdata [ 'user_admin' ] = 0 ;
$userdata [ 'user_perms' ] = '' ;
$userdata [ 'user_realm' ] = '' ;
$userdata [ 'user_pwchange' ] = $now ;
$user = e107 :: getSystemUser ( 0 , false );
$user -> setData ( $userdata );
$user -> getExtendedModel (); // init
//$user->setEditor(e107::getSystemUser(1, false));
$user -> save ( true );
// user model error
if ( $user -> hasError ())
{
throw new Exception ( $user -> renderMessages (), 5 );
}
### Successful signup!
// FIXME documentation of new signup trigger - usersupprov
//$user->set('provider', $this->getProvider());
$userdata = $user -> getData ();
$userdata [ 'provider' ] = $this -> getProvider ();
$ret = e107 :: getEvent () -> trigger ( 'usersupprov' , $userdata ); // XXX - it's time to pass objects instead of array?
if ( true === $ret ) return $this ;
// send email
if ( $emailAfterSuccess )
{
$user -> set ( 'user_password' , $plainPwd ) -> email ( 'signup' );
}
e107 :: getUser () -> setProvider ( $this );
// auto login
if ( $loginAfterSuccess )
{
e107 :: getUser () -> loginProvider ( $this -> userId ()); // if not proper after-login, return true so user can see login screen
}
if ( $redirectUrl )
{
e107 :: getRedirect () -> redirect ( $redirectUrl );
}
return true ;
}
return false ;
}
public function login ( $redirectUrl = true )
{
if ( ! e107 :: getPref ( 'social_login_active' , false ))
{
throw new Exception ( " Signup failed! This feature is disabled. " , 100 ); // TODO lan
}
if ( ! $this -> getProvider ())
{
throw new Exception ( " Login failed! Wrong provider. " , 22 ); // TODO lan
}
if ( $redirectUrl )
{
if ( true === $redirectUrl )
{
$redirectUrl = SITEURL ;
}
elseif ( strpos ( $redirectUrl , 'http://' ) !== 0 && strpos ( $redirectUrl , 'https://' ) !== 0 )
{
$redirectUrl = e107 :: getUrl () -> create ( $redirectUrl );
}
}
if ( e107 :: getUser () -> isUser ())
{
if ( $redirectUrl )
{
e107 :: getRedirect () -> redirect ( $redirectUrl );
}
return true ;
}
$this -> adapter = $this -> hybridauth -> authenticate ( $this -> getProvider ());
$check = e107 :: getUser () -> setProvider ( $this ) -> loginProvider ( $this -> userId (), false );
if ( $redirectUrl )
{
e107 :: getRedirect () -> redirect ( $redirectUrl );
}
return $check ;
}
public function init ()
{
if ( ! e107 :: getPref ( 'social_login_active' , false ))
{
return ;
}
$this -> adapter = null ;
$providerId = $this -> _provider ;
if ( $providerId && Hybrid_Auth :: isConnectedWith ( $providerId ))
{
$this -> adapter = Hybrid_Auth :: setup ( $providerId );
}
}
public function logout ()
{
if ( ! e107 :: getPref ( 'social_login_active' , false ) || ! $this -> adapter || ! Hybrid_Auth :: isConnectedWith ( $this -> getProvider ())) return true ;
try
{
$this -> adapter -> logout ();
$this -> adapter = null ;
}
catch ( Exception $e )
{
return $e -> getMessage ();
}
return true ;
}
}
2009-11-30 20:40:03 +00:00
2012-07-31 07:32:00 +00:00
e107 :: coreLan ( 'administrator' , true );
2008-12-21 11:07:58 +00:00
2009-11-12 01:53:16 +00:00
class e_userperms
{
2011-05-11 11:56:42 +00:00
2012-06-04 09:08:54 +00:00
protected $core_perms = array ();
protected $plugin_perms = array ();
protected $language_perms = array ();
protected $main_perms = array ();
protected $full_perms = array ();
protected $permSectionDiz = array (
'core' => ADMSLAN_74 ,
'plugin' => ADLAN_CL_7 ,
'language' => ADLAN_132 ,
'main' => ADMSLAN_58
);
function __construct ()
{
require_once ( e_ADMIN . " ad_links.php " );
$this -> core_perms = array (
2010-05-13 15:47:31 +00:00
2011-05-11 11:56:42 +00:00
// In the same order as admin navigation!
// Settings
" C " => array ( ADMSLAN_64 , E_16_CACHE , E_32_CACHE ), // Clear the system cache
" F " => array ( ADMSLAN_31 , E_16_EMOTE , E_32_EMOTE ), // Emoticons
" G " => array ( ADMSLAN_32 , E_16_FRONT , E_32_FRONT ), // Front-Page Configuration
2012-07-23 09:35:32 +00:00
" L " => array ( ADMSLAN_76 , E_16_LANGUAGE , E_32_LANGUAGE ), // Meta tags
2011-05-11 22:25:02 +00:00
" T " => array ( ADMSLAN_34 , E_16_META , E_32_META ), // Meta tags
2011-05-11 11:56:42 +00:00
" 1 " => array ( ADMSLAN_19 , E_16_PREFS , E_32_PREFS ), // Alter Site Preferences
2011-05-11 22:25:02 +00:00
" X " => array ( ADMSLAN_66 , E_16_SEARCH , E_32_SEARCH ), // Search
2011-05-11 11:56:42 +00:00
" I " => array ( ADMSLAN_40 , E_16_LINKS , E_32_LINKS ), // Post SiteLinks
" 8 " => array ( ADMSLAN_27 , E_16_LINKS , E_32_LINKS ), // Oversee SiteLink Categories
2012-07-23 09:35:32 +00:00
" K " => array ( ADMSLAN_43 , E_16_EURL , E_32_EURL ), // Configure URLs
2011-05-11 11:56:42 +00:00
// Users
" 3 " => array ( ADMSLAN_21 , E_16_ADMIN , E_32_ADMIN ), // Modify Admin perms
2011-05-11 22:25:02 +00:00
" 4 " => array ( LAN_USER_MANAGEALL , E_16_USER , E_32_USER ), // Manage all user access and settings etc
" U0 " => array ( ADMSLAN_22 , E_16_USER , E_32_USER ), // moderate users/bans but not userclasses or extended fields,
" U1 " => array ( LAN_USER_QUICKADD , E_16_USER , E_32_USER ), // "User: Quick Add User",
" U2 " => array ( LAN_USER_OPTIONS , E_16_USER , E_32_USER ), // Manage only user-options
" U3 " => array ( LAN_USER_RANKS , E_16_USER , E_32_USER ), // Manage only user-ranks
" W " => array ( ADMSLAN_65 , E_16_MAIL , E_32_MAIL ), // Configure mail settings and mailout
2011-05-11 11:56:42 +00:00
2011-05-11 22:25:02 +00:00
// Content
" 5 " => array ( ADMSLAN_23 , E_16_CUST , E_32_CUST ), // create/edit custom PAGES
" J " => array ( ADMSLAN_41 , E_16_CUST , E_32_CUST ), // create/edit custom MENUS
" H " => array ( ADMSLAN_39 , E_16_NEWS , E_32_NEWS ), // Post News
" N " => array ( ADMSLAN_47 , E_16_NEWS , E_32_NEWS ), // Moderate submitted news
2011-05-11 11:56:42 +00:00
" V " => array ( ADMSLAN_35 , E_16_UPLOADS , E_32_UPLOADS ), // Configure public file uploads
" M " => array ( ADMSLAN_46 , E_16_WELCOME , E_32_WELCOME ), // Welcome Messages
// Tools
" Y " => array ( ADMSLAN_67 , E_16_INSPECT , E_32_INSPECT ), // File inspector
2011-07-06 03:17:00 +00:00
" 9 " => array ( ADMSLAN_28 , E_16_MAINTAIN , E_32_MAINTAIN ), // Take Down site for Maintenance
2011-05-11 22:25:02 +00:00
" O " => array ( ADMSLAN_68 , E_16_NOTIFY , E_32_NOTIFY ), // Notify
" U " => array ( ADMSLAN_45 , E_16_CRON , E_32_CRON ), // Schedule Tasks
2011-05-11 11:56:42 +00:00
" S " => array ( ADMSLAN_33 , E_16_ADMINLOG , E_32_ADMINLOG ), // System Logging
// Manage
" B " => array ( ADMSLAN_37 , E_16_COMMENT , E_32_COMMENT ), // Moderate Comments
2011-05-11 22:25:02 +00:00
" 6 " => array ( ADMSLAN_25 , E_16_FILE , E_32_FILE ), // File-Manager - Upload /manage files -
2012-07-23 09:35:32 +00:00
" A " => array ( ADMSLAN_36 , E_16_IMAGES , E_32_IMAGES ), // Media-Manager All Areas.
" A1 " => array ( ADMSLAN_36 , E_16_IMAGES , E_32_IMAGES ), // Media-Manager (Media Add/Import)
" A2 " => array ( ADMSLAN_36 , E_16_IMAGES , E_32_IMAGES ), // Media-Manager (Media-Categories)
2011-05-11 11:56:42 +00:00
" 2 " => array ( ADMSLAN_20 , E_16_MENUS , E_32_MENUS ), // Alter Menus
2012-06-04 09:08:54 +00:00
// "D"=> ADMSLAN_29, // Manage Banners (deprecated - now a plugin)
// "E"=> ADMSLAN_30, // News feed headlines (deprecated - now a plugin)
// "K"=>
2011-05-11 11:56:42 +00:00
2012-06-04 09:08:54 +00:00
// "P" // Reserved for Plugins
2011-05-11 11:56:42 +00:00
2012-06-04 09:08:54 +00:00
// "Q"=> array(ADMSLAN_24), // Manage download categories (deprecated - now a plugin)
// "R"=> ADMSLAN_44, // Post Downloads (deprecated)
2011-05-11 11:56:42 +00:00
2012-06-04 09:08:54 +00:00
// "Z"=> ADMSLAN_62, // Plugin Manager.. included under Plugins category.
);
2011-07-06 03:17:00 +00:00
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
$sql = e107 :: getDb ( 'sql2' );
$tp = e107 :: getParser ();
2010-05-13 15:47:31 +00:00
2011-05-18 08:58:35 +00:00
$plg = e107 :: getPlugin ();
$installed = $plg -> getall ( 1 );
// print_a($installed);
foreach ( $installed as $k => $row2 )
{
if ( $plg -> parse_plugin ( $row2 [ 'plugin_path' ]))
{
$plug_vars = $plg -> plug_vars ;
$this -> plugin_perms [( " P " . $row2 [ 'plugin_id' ])] = array ( $tp -> toHTML ( $row2 [ 'plugin_name' ], FALSE , 'RAWTEXT,defs' ));
$this -> plugin_perms [( " P " . $row2 [ 'plugin_id' ])][ 1 ] = $plg -> getIcon ( $row2 [ 'plugin_path' ], 16 );
$this -> plugin_perms [( " P " . $row2 [ 'plugin_id' ])][ 2 ] = $plg -> getIcon ( $row2 [ 'plugin_path' ], 32 );
}
}
// echo $plg->getIcon('forum');
2011-07-06 03:17:00 +00:00
// $sql->db_Select("plugin", "*", "plugin_installflag='1'");
// while ($row2 = $sql->db_Fetch())
// {
2011-05-18 08:58:35 +00:00
// $this->plugin_perms[("P".$row2['plugin_id'])] = array($tp->toHTML($row2['plugin_name'], FALSE, 'RAWTEXT,defs'));
// $this->plugin_perms[("P".$row2['plugin_id'])][1] = $plg->getIcon('forum')
2011-07-06 03:17:00 +00:00
// }
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
asort ( $this -> plugin_perms );
2010-05-13 15:47:31 +00:00
2011-07-06 03:17:00 +00:00
$this -> plugin_perms = array ( " Z " => array ( '0' => ADMSLAN_62 )) + $this -> plugin_perms ;
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
if ( e107 :: getConfig () -> getPref ( 'multilanguage' ))
{
$lanlist = explode ( " , " , e_LANLIST );
sort ( $lanlist );
foreach ( $lanlist as $langs )
{
2011-07-06 03:17:00 +00:00
$this -> language_perms [ $langs ] = array ( " 0 " => $langs );
2009-11-12 01:53:16 +00:00
}
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
if ( getperms ( '0' ))
{
2011-07-06 03:17:00 +00:00
$this -> main_perms = array ( '0' => array ( '0' => ADMSLAN_58 ));
2009-11-12 01:53:16 +00:00
}
2010-05-13 15:47:31 +00:00
2011-07-06 03:17:00 +00:00
// Note: Using array_merge or array_merge_recursive will corrupt the array.
$this -> full_perms = $this -> core_perms + $this -> plugin_perms + $this -> language_perms + $this -> main_perms ;
2009-11-12 01:53:16 +00:00
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
function renderSectionDiz ( $key )
{
2010-05-13 15:47:31 +00:00
return $this -> permSectionDiz [ $key ];
2009-11-12 01:53:16 +00:00
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
function getPermList ( $type = 'all' )
{
if ( $type == 'core' )
{
return $this -> core_perms ;
}
if ( $type == 'plugin' )
{
return $this -> plugin_perms ;
}
if ( $type == 'language' )
{
return $this -> language_perms ;
}
if ( $type == 'main' )
{
return $this -> main_perms ;
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
if ( $type == 'grouped' )
{
$ret = array ();
$ret [ 'core' ] = $this -> core_perms ;
$ret [ 'plugin' ] = $this -> plugin_perms ;
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
if ( vartrue ( $this -> language_perms ))
{
$ret [ 'language' ] = $this -> language_perms ;
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
if ( vartrue ( $this -> main_perms ))
{
$ret [ 'main' ] = $this -> main_perms ;
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
return $ret ;
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
}
2010-05-13 15:47:31 +00:00
2011-07-06 03:17:00 +00:00
return $this -> full_perms ;
2009-11-12 01:53:16 +00:00
}
2010-05-13 15:47:31 +00:00
2011-05-11 11:56:42 +00:00
function checkb ( $arg , $perms , $info = '' )
2009-11-12 01:53:16 +00:00
{
$frm = e107 :: getForm ();
2011-05-11 11:56:42 +00:00
if ( is_array ( $info ))
2009-11-12 01:53:16 +00:00
{
2011-05-11 11:56:42 +00:00
$label = $info [ 0 ];
$icon_16 = $info [ 1 ];
$icon_32 = $info [ 2 ];
2009-11-12 01:53:16 +00:00
}
2011-05-11 11:56:42 +00:00
elseif ( $info )
{
$label = $info ;
$icon_16 = " " ;
$icon_32 = " " ;
}
$par = " <tr>
< td style = 'text-align:center' > " . $icon_16 . " </ td >
< td style = 'text-align:center' > " . $frm->checkbox ('perms[]', $arg , getperms( $arg , $perms )). " </ td >
< td > " . $frm->label ( $label ,'perms[]', $arg ). " </ td >
</ tr > " ;
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
return $par ;
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
function renderPerms ( $perms , $uniqueID = '' )
{
$tmp = explode ( " . " , $perms );
$permdiz = $this -> getPermList ();
$ptext = array ();
2011-07-06 03:17:00 +00:00
2009-11-12 01:53:16 +00:00
foreach ( $tmp as $p )
{
2011-05-11 11:56:42 +00:00
$ptext [] = is_array ( $permdiz [ $p ]) ? $permdiz [ $p ][ 0 ] : $permdiz [ $p ];
2010-05-13 15:47:31 +00:00
}
2009-11-12 01:53:16 +00:00
$id = " id_ " . $uniqueID ;
2010-05-13 15:47:31 +00:00
2012-05-24 07:24:49 +00:00
$text = " <div href='#id_ { $id } ' class='e-pointer e-expandit' title=' " . ADMSLAN_71 . " '> { $perms } </div> \n " ;
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
if ( varset ( $ptext ))
{
2011-07-06 03:17:00 +00:00
$text .= " <div id='id_ { $id } ' class='e-hideme'><ul><li> " . implode ( " </li> \n <li> " , $ptext ) . " </li></ul></div> \n " ;
2009-11-12 01:53:16 +00:00
}
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
/*
$text = " <a href='# " . $id . " ' class='e-expandit' title=' " . ADMSLAN_71 . " '> { $perms } </a> " ;
2010-05-13 15:47:31 +00:00
2009-11-12 01:53:16 +00:00
if ( varset ( $ptext ))
{
$text .= " <div class='e-hideme' id=' " . $id . " ' ><ul><li> " . implode ( " </li><li> " , $ptext ) . " </li></ul></div> " ;
}
2010-05-13 15:47:31 +00:00
*/
2009-11-12 01:53:16 +00:00
return $text ;
}
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
/**
2010-05-13 15:47:31 +00:00
* Render edit admin perms form .
2009-11-17 14:50:37 +00:00
*
2009-11-12 05:11:47 +00:00
* @ param array $row [ optional ] containing $row [ 'user_id' ], $row [ 'user_name' ], $row [ 'user_perms' ];
2009-11-17 14:50:37 +00:00
* @ return void
2009-11-12 05:11:47 +00:00
*/
2009-11-17 14:50:37 +00:00
function edit_administrator ( $row = '' )
2009-11-12 05:11:47 +00:00
{
2009-11-17 14:50:37 +00:00
$pref = e107 :: getPref ();
$lanlist = explode ( " , " , e_LANLIST );
2009-11-12 05:11:47 +00:00
require_once ( e_HANDLER . " user_handler.php " );
$prm = $this ;
$ns = e107 :: getRender ();
$sql = e107 :: getDb ();
$frm = e107 :: getForm ();
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
$a_id = $row [ 'user_id' ];
$ad_name = $row [ 'user_name' ];
$a_perms = $row [ 'user_perms' ];
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
$text = "
< form method = 'post' action = '".e_SELF."' id = 'myform' >
< fieldset id = 'core-administrator-edit' >
< legend class = 'e-hideme' > " .ADMSLAN_52. " </ legend >
2012-05-16 06:05:39 +00:00
< table class = 'adminform' >
< colgroup >
2009-11-12 05:11:47 +00:00
< col class = 'col-label' />
< col class = 'col-control' />
</ colgroup >
< tbody >
< tr >
< td class = 'label' > " .ADMSLAN_16. " : </ td >
< td class = 'control' >
" . $ad_name . "
< input type = 'hidden' name = 'ad_name' size = '60' value = '{$ad_name}' />
</ td >
</ tr >
< tr >
< td class = 'label' > " .ADMSLAN_18. " </ td >
< td class = 'control' >
2011-05-11 11:56:42 +00:00
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
" ;
2010-05-13 15:47:31 +00:00
2011-05-11 11:56:42 +00:00
$text .= $this -> renderPermTable ( 'grouped' , $a_perms );
2010-05-13 15:47:31 +00:00
2012-12-08 21:09:58 +02:00
$text .= $this -> renderCheckAllButtons () . "
2011-05-11 11:56:42 +00:00
2009-11-12 05:11:47 +00:00
</ td >
</ tr >
</ tbody >
</ table >
2012-12-08 21:09:58 +02:00
" . $this->renderSubmitButtons (). "
2009-11-12 05:11:47 +00:00
</ fieldset >
</ form >
" ;
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
$ns -> tablerender ( ADMSLAN_52 , $text );
}
2010-05-13 15:47:31 +00:00
2012-12-08 21:09:58 +02:00
function renderCheckAllButtons ()
{
$frm = e107 :: getForm ();
return "
< div class = 'field-section' >
" . $frm->admin_button ('check_all', 'jstarget:perms', 'action', LAN_CHECKALL). "
" . $frm->admin_button ('uncheck_all', 'jstarget:perms', 'action', LAN_UNCHECKALL). "
</ div >
" ;
}
function renderSubmitButtons ()
{
$frm = e107 :: getForm ();
return "
< div class = 'buttons-bar center' >
< input type = 'hidden' name = 'a_id' value = '{$a_id}' />
" . $frm->admin_button ('update_admin', ADMSLAN_52, 'update'). "
" . $frm->admin_button ('go_back', ADMSLAN_70). "
</ div >
" ;
}
2011-05-11 11:56:42 +00:00
function renderPermTable ( $type , $a_perms = '' )
{
$groupedList = $this -> getPermList ( $type );
$text = " " ;
foreach ( $groupedList as $section => $list )
{
2012-11-26 14:41:32 -08:00
$text .= " \t \t <table class='table adminlist'>
2012-05-16 06:05:39 +00:00
< colgroup >
< col class = 'center' style = 'width:50px' />
< col style = 'width:50px' />
< col />
2011-05-11 11:56:42 +00:00
</ colgroup >
< tbody >< tr >< td class = 'field-section' colspan = '3' >< h4 > " . $this->renderSectionDiz ( $section ). " </ h4 ></ td ></ tr > " ; //XXX Lan - General
// $text .= "\t\t<div class='field-section'><h4>".$prm->renderSectionDiz($section)."</h4>"; //XXX Lan - General
foreach ( $list as $key => $diz )
{
$text .= $this -> checkb ( $key , $a_perms , $diz );
}
$text .= " </tbody>
</ table > " ;
}
return $text ;
}
2009-11-12 05:11:47 +00:00
/**
2009-11-17 14:50:37 +00:00
* Update user ( admin ) permissions .
* NOTE : exit if $uid is not an integer or is 0.
*
* @ param integer $uid
* @ param array $permArray eg . array ( 'A' , 'K' , '1' );
2010-05-13 15:47:31 +00:00
* @ return void
2009-11-12 05:11:47 +00:00
*/
2009-11-17 14:50:37 +00:00
function updatePerms ( $uid , $permArray )
2009-11-12 05:11:47 +00:00
{
global $admin_log ;
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
$sql = e107 :: getDb ();
$tp = e107 :: getParser ();
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
$modID = intval ( $uid );
if ( $modID == 0 )
{
2009-11-17 14:50:37 +00:00
exit ();
2009-11-12 05:11:47 +00:00
}
2010-05-13 15:47:31 +00:00
2012-12-08 21:09:58 +02:00
$sysuser = e107 :: getSystemUser ( $modID , false );
$row = $sysuser -> getData ();
2009-11-12 05:11:47 +00:00
$a_name = $row [ 'user_name' ];
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
$perm = " " ;
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
foreach ( $permArray as $value )
{
$value = $tp -> toDB ( $value );
if ( $value == " 0 " )
{
if ( ! getperms ( '0' )) { $value = " " ; break ; }
$perm = " 0 " ; break ;
}
2010-05-13 15:47:31 +00:00
2009-11-12 05:11:47 +00:00
if ( $value )
{
$perm .= $value . " . " ;
}
2012-12-08 21:09:58 +02:00
}
//$sql->db_Update("user", "user_perms='{$perm}' WHERE user_id='{$modID}' ")
e107 :: getMessage () -> addAuto ( $sysuser -> set ( 'user_perms' , $perm ) -> save (), 'update' , sprintf ( ADMSLAN_2 , $tp -> toDB ( $_POST [ 'ad_name' ])), false , false );
2009-11-12 05:11:47 +00:00
$logMsg = str_replace ( array ( '--ID--' , '--NAME--' ), array ( $modID , $a_name ), ADMSLAN_72 ) . $perm ;
$admin_log -> log_event ( 'ADMIN_01' , $logMsg , E_LOG_INFORMATIVE , '' );
}
2009-06-12 20:41:35 +00:00
2009-11-17 14:50:37 +00:00
}