PageRenderTime 37ms CodeModel.GetById 15ms RepoModel.GetById 0ms app.codeStats 1ms

/lib/Foorum/Controller/Profile.pm

http://foorum.googlecode.com/
Perl | 381 lines | 293 code | 60 blank | 28 comment | 32 complexity | 3a9507397795d6afa0671e02c91589c6 MD5 | raw file
    

  1. package Foorum::Controller::Profile;
    2. 

  2. 

  3. use strict;
    4. 

  4. use warnings;
    5. 

  5. our $VERSION = '1.000005';
    6. 

  6. use base 'Catalyst::Controller';
    7. 

  7. use Foorum::XUtils qw/theschwartz/;
    8. 

  8. use Digest ();
    9. 

  9. use Locale::Country::Multilingual;
    10. 

  10. use vars qw/$lcm/;
    11. 

  11. $lcm = Locale::Country::Multilingual->new();
    12. 

  12. 

  13. sub edit : Local {
    14. 

  14.     my ( $self, $c ) = @_;
    15. 

  15. 

  16.     return $c->res->redirect('/login') unless ( $c->user_exists );
    17. 

  17. 

  18.     $c->stash->{template} = 'user/profile/edit.html';
    19. 

  19. 

  20.     # get all countries code
    21. 

  21.     $lcm->set_lang( $c->stash->{lang} );
    22. 

  22.     my @codes = $lcm->all_country_codes();
    23. 

  23.     my %countries;
    24. 

  24.     foreach (@codes) {
    25. 

  25.         $countries{$_} = $lcm->code2country($_);
    26. 

  26.     }
    27. 

  27.     $c->stash->{countries} = \%countries;
    28. 

  28. 

  29.     unless ( $c->req->method eq 'POST' ) {
    30. 

  30.         my $birthday = $c->user->{details}->{birthday};
    31. 

  31.         if (    $birthday
    32. 

  32.             and $birthday
    33. 

  33.             and $birthday =~ /^(\d+)\-(\d+)\-(\d+)$/ ) {
    34. 

  34.             $c->stash(
    35. 

  35.                 {   year  => $1,
    36. 

  36.                     month => $2,
    37. 

  37.                     day   => $3,
    38. 

  38.                 }
    39. 

  39.             );
    40. 

  40.         }
    41. 

  41.         $c->stash->{user_details} = $c->user->{details};
    42. 

  42.         return;
    43. 

  43.     }
    44. 

  44. 

  45.     my $birthday
    46. 

  46.         = $c->req->param('year') . '-'
    47. 

  47.         . $c->req->param('month') . '-'
    48. 

  48.         . $c->req->param('day');
    49. 

  49.     my ( @extra_valid, @extra_insert );
    50. 

  50.     if ( length($birthday) > 2 ) {    # is not --
    51. 

  51.         @extra_valid
    52. 

  52.             = ( { birthday => [ 'year', 'month', 'day' ] } => ['DATE'] );
    53. 

  53.         @extra_insert = ( birthday => $birthday );
    54. 

  54.     }
    55. 

  55. 

  56.     # be compatible with Yahoo! ID and email
    57. 

  57.     foreach my $param ( 'gtalk', 'yahoo', 'skype' ) {
    58. 

  58.         if ( $c->req->param($param) =~ /^(\w+)\@/ ) {
    59. 

  59.             $c->req->param( $param, $1 );    # only need the username before @
    60. 

  60.         }
    61. 

  61.     }
    62. 

  62. 

  63.     $c->form(
    64. 

  64.         gender => [ [ 'REGEX', qr/^(M|F)?$/ ] ],
    65. 

  65.         lang   => [ [ 'REGEX', qr/^\w{2}$/ ] ],
    66. 

  66.         @extra_valid,
    67. 

  67.         homepage => ['HTTP_URL'],
    68. 

  68.         nickname => [ qw/NOT_BLANK/, [qw/LENGTH 4 20/] ],
    69. 

  69.         'qq'     => [ [ 'REGEX', qr/^\d{6,14}$/ ] ],
    70. 

  70.         msn => [ qw/EMAIL_LOOSE/, [qw/LENGTH 5 64/] ],
    71. 

  71.         gtalk   => [ [ 'REGEX', qr/^\w{2,64}$/ ] ],
    72. 

  72.         yahoo   => [ [ 'REGEX', qr/^\w{2,64}$/ ] ],
    73. 

  73.         skype   => [ [ 'REGEX', qr/^\w{2,64}$/ ] ],
    74. 

  74.         country => [ [ 'REGEX', qr/^\w{2}$/ ] ],
    75. 

  75.     );
    76. 

  76.     return if ( $c->form->has_error );
    77. 

  77. 

  78.     # validate country
    79. 

  79.     unless ( $lcm->code2country( $c->req->param('country') ) ) {
    80. 

  80.         $c->req->param( 'country', '' );
    81. 

  81.     }
    82. 

  82.     $c->model('DBIC::User')->update_user(
    83. 

  83.         $c->user,
    84. 

  84.         {   nickname => $c->req->param('nickname') || $c->user->username,
    85. 

  85.             gender   => $c->req->param('gender')   || 'NA',
    86. 

  86.             lang => $c->req->param('lang') || $c->config->{default_lang},
    87. 

  87.             country => $c->req->param('country') || '',
    88. 

  88.         }
    89. 

  89.     );
    90. 

  90. 

  91.     $c->model('DBIC::UserDetails')->update_or_create(
    92. 

  92.         {   user_id  => $c->user->user_id,
    93. 

  93.             homepage => $c->req->param('homepage') || '',
    94. 

  94.             'qq'     => $c->req->param('qq') || '',
    95. 

  95.             msn      => $c->req->param('msn') || '',
    96. 

  96.             gtalk    => $c->req->param('gtalk') || '',
    97. 

  97.             yahoo    => $c->req->param('yahoo') || '',
    98. 

  98.             skype    => $c->req->param('skype') || '',
    99. 

  99.             @extra_insert,
    100. 

  100.         }
    101. 

  101.     );
    102. 

  102. 

  103.     # clear user cache too
    104. 

  104.     $c->model('DBIC::User')->delete_cache_by_user( $c->user );
    105. 

  105. 

  106.     $c->res->redirect( '/u/' . $c->user->username );
    107. 

  107. }
    108. 

  108. 

  109. sub change_password : Local {
    110. 

  110.     my ( $self, $c, $username, $security_code ) = @_;
    111. 

  111. 

  112.     my $password = $c->req->param('password');
    113. 

  113.     $c->stash->{template} = 'user/profile/change_password.html';
    114. 

  114. 

  115.     my $user;
    116. 

  116. 

  117.     # the user input old password
    118. 

  118.     # or the user click from forget_password email
    119. 

  119.     # CAN change password
    120. 

  120.     my $can_change_password = 0;
    121. 

  121.     if ( $username and $security_code ) {
    122. 

  122. 

  123.         # check if that's mataches.
    124. 

  124.         $user = $c->model('User')->get( { username => $username } );
    125. 

  125.         if ($user) {
    126. 

  126.             my $security_code2 = $c->model('DBIC::SecurityCode')
    127. 

  127.                 ->get( 'forget_password', $user->{user_id} );
    128. 

  128.             if ( $security_code2 and $security_code2 eq $security_code ) {
    129. 

  129.                 $can_change_password = 1;
    130. 

  130.                 $c->stash->{use_security_code} = 1;
    131. 

  131.             }
    132. 

  132.         }
    133. 

  133.         $c->stash->{user} = $user;
    134. 

  134.     }
    135. 

  135.     unless ($can_change_password) {
    136. 

  136.         return $c->res->redirect('/login') unless ( $c->user_exists );
    137. 

  137.         $user = $c->user;
    138. 

  138.         $c->stash->{user} = $user;
    139. 

  139. 

  140.         # check the password typed in is correct
    141. 

  141.         if ($password) {
    142. 

  142.             my $d = Digest->new(
    143. 

  143.                 $c->config->{authentication}->{password_hash_type} );
    144. 

  144.             $d->add($password);
    145. 

  145.             my $computed = $d->digest;
    146. 

  146.             if ( $computed ne $c->user->{password} ) {
    147. 

  147.                 $c->set_invalid_form( password => 'WRONG_PASSWORD' );
    148. 

  148.                 $c->stash->{user} = $user;
    149. 

  149.                 return;
    150. 

  150.             }
    151. 

  151.             $can_change_password = 1;
    152. 

  152.         }
    153. 

  153.     }
    154. 

  154. 

  155.     return unless ($can_change_password);
    156. 

  156. 

  157.     # execute validation.
    158. 

  158.     $c->form(
    159. 

  159.         new_password => [ qw/NOT_BLANK/, [qw/LENGTH 6 20/] ],
    160. 

  160.         { passwords => [ 'new_password', 'confirm_password' ] } =>
    161. 

  161.             ['DUPLICATION'],
    162. 

  162.     );
    163. 

  163.     return if ( $c->form->has_error );
    164. 

  164. 

  165.     # encrypted the new password
    166. 

  166.     my $new_password = $c->req->param('new_password');
    167. 

  167.     my $d = Digest->new( $c->config->{authentication}->{password_hash_type} );
    168. 

  168.     $d->reset;
    169. 

  169.     $d->add($new_password);
    170. 

  170.     my $new_computed = $d->digest;
    171. 

  171. 

  172.     $c->model('DBIC::User')
    173. 

  173.         ->update_user( $user, { password => $new_computed } );
    174. 

  174. 

  175.     # delete so that can't use again
    176. 

  176.     if ( $c->stash->{use_security_code} ) {
    177. 

  177.         $c->model('DBIC::SecurityCode')
    178. 

  178.             ->remove( 'forget_password', $user->{user_id} );
    179. 

  179.     }
    180. 

  180. 

  181.     $c->detach(
    182. 

  182.         '/print_message',
    183. 

  183.         [   {   msg          => 'Reset Password OK',
    184. 

  184.                 url          => '/profile/edit',
    185. 

  185.                 stay_in_page => 1,
    186. 

  186.             }
    187. 

  187.         ]
    188. 

  188.     );
    189. 

  189. }
    190. 

  190. 

  191. sub forget_password : Local {
    192. 

  192.     my ( $self, $c ) = @_;
    193. 

  193. 

  194.     $c->stash->{template} = 'user/profile/forget_password.html';
    195. 

  195.     return unless ( $c->req->method eq 'POST' );
    196. 

  196. 

  197.     my $username = $c->req->param('username');
    198. 

  198.     my $email    = $c->req->param('email');
    199. 

  199. 

  200.     my $user;
    201. 

  201.     if ($username) {
    202. 

  202.         $user = $c->model('DBIC::User')->get( { username => $username } );
    203. 

  203.         return $c->stash->{ERROR_NOT_SUCH_USER} = 1 unless ($user);
    204. 

  204.         $email = $user->{email};
    205. 

  205.     } elsif ($email) {
    206. 

  206.         $user = $c->model('DBIC::User')->get( { email => $email } );
    207. 

  207.         return $c->stash->{ERROR_NOT_SUCH_EMAIL} = 1 unless ($user);
    208. 

  208.         $username = $user->{username};
    209. 

  209.     } else {
    210. 

  210.         return;
    211. 

  211.     }
    212. 

  212. 

  213.     # create a security code
    214. 

  214.     # URL contains the security_code can change his password later
    215. 

  215.     my $security_code = $c->model('DBIC::SecurityCode')
    216. 

  216.         ->get_or_create( 'forget_password', $user->{user_id} );
    217. 

  217. 

  218.     # send email
    219. 

  219.     $c->model('DBIC::ScheduledEmail')->create_email(
    220. 

  220.         {   template => 'forget_password',
    221. 

  221.             to       => $email,
    222. 

  222.             lang     => $c->stash->{lang},
    223. 

  223.             stash    => {
    224. 

  224.                 username      => $username,
    225. 

  225.                 security_code => $security_code,
    226. 

  226.                 IP            => $c->req->address,
    227. 

  227.             }
    228. 

  228.         }
    229. 

  229.     );
    230. 

  230.     $c->detach(
    231. 

  231.         '/print_message',
    232. 

  232.         [   {   msg =>
    233. 

  233.                     'The instruction to rest your password is sent to your email, please have a check',
    234. 

  234.                 url          => '/',
    235. 

  235.                 stay_in_page => 1,
    236. 

  236.             }
    237. 

  237.         ]
    238. 

  238.     );
    239. 

  239. }
    240. 

  240. 

  241. sub change_email : Local {
    242. 

  242.     my ( $self, $c ) = @_;
    243. 

  243. 

  244.     return $c->res->redirect('/login') unless ( $c->user_exists );
    245. 

  245. 

  246.     $c->stash->{template} = 'user/profile/change_email.html';
    247. 

  247. 

  248.     return unless ( $c->req->method eq 'POST' );
    249. 

  249. 

  250.     # check the password typed in is correct
    251. 

  251.     my $password = $c->req->param('password');
    252. 

  252.     my $d = Digest->new( $c->config->{authentication}->{password_hash_type} );
    253. 

  253.     $d->add($password);
    254. 

  254.     my $computed = $d->digest;
    255. 

  255.     if ( $computed ne $c->user->{password} ) {
    256. 

  256.         $c->set_invalid_form( password => 'WRONG_PASSWORD' );
    257. 

  257.         return;
    258. 

  258.     }
    259. 

  259. 

  260.     # validation
    261. 

  261.     my $email = $c->req->param('email');
    262. 

  262.     if ( $email eq $c->user->email ) {
    263. 

  263.         return $c->set_invalid_form( email => 'EMAIL_DUPLICATION' );
    264. 

  264.     }
    265. 

  265.     my $err = $c->model('DBIC::User')->validate_email($email);
    266. 

  266.     if ($err) {
    267. 

  267.         return $c->set_invalid_form( email => $err );
    268. 

  268.     }
    269. 

  269. 

  270.     $c->model('DBIC::User')->update_user( $c->user, { email => $email } );
    271. 

  271.     $c->res->redirect('/profile/edit');
    272. 

  272. }
    273. 

  273. 

  274. sub change_username : Local {
    275. 

  275.     my ( $self, $c ) = @_;
    276. 

  276. 

  277.     return $c->res->redirect('/login') unless ( $c->user_exists );
    278. 

  278. 

  279.     $c->stash->{template} = 'user/profile/change_username.html';
    280. 

  280. 

  281.     return unless ( $c->req->method eq 'POST' );
    282. 

  282. 

  283.     # check the password typed in is correct
    284. 

  284.     my $password = $c->req->param('password');
    285. 

  285.     my $d = Digest->new( $c->config->{authentication}->{password_hash_type} );
    286. 

  286.     $d->add($password);
    287. 

  287.     my $computed = $d->digest;
    288. 

  288.     if ( $computed ne $c->user->{password} ) {
    289. 

  289.         $c->set_invalid_form( password => 'WRONG_PASSWORD' );
    290. 

  290.         return;
    291. 

  291.     }
    292. 

  292. 

  293.     # execute validation.
    294. 

  294.     $c->form(
    295. 

  295.         new_username => [qw/NOT_BLANK/],
    296. 

  296.         { usernames => [ 'new_username', 'confirm_username' ] } =>
    297. 

  297.             ['DUPLICATION'],
    298. 

  298.     );
    299. 

  299.     return if ( $c->form->has_error );
    300. 

  300. 

  301.     my $new_username = $c->req->param('new_username');
    302. 

  302.     my $err = $c->model('DBIC::User')->validate_username($new_username);
    303. 

  303.     if ($err) {
    304. 

  304.         $c->set_invalid_form( new_username => $err );
    305. 

  305.         return;
    306. 

  306.     }
    307. 

  307. 

  308.     $c->model('DBIC::User')
    309. 

  309.         ->update_user( $c->user, { username => $new_username, } );
    310. 

  310.     $c->session->{__user} = $new_username;
    311. 

  311. 

  312.     $c->res->redirect("/u/$new_username");
    313. 

  313. }
    314. 

  314. 

  315. sub profile_photo : Local {
    316. 

  316.     my ( $self, $c ) = @_;
    317. 

  317. 

  318.     return $c->res->redirect('/login') unless ( $c->user_exists );
    319. 

  319. 

  320.     $c->stash->{template} = 'user/profile/profile_photo.html';
    321. 

  321. 

  322.     return unless ( $c->req->method eq 'POST' );
    323. 

  323. 

  324.     my $new_upload = $c->req->upload('upload');
    325. 

  325.     my $old_upload_id
    326. 

  326.         = ( $c->user->{profile_photo}->{type} eq 'upload' )
    327. 

  327.         ? $c->user->{profile_photo}->{value}
    328. 

  328.         : 0;
    329. 

  329.     my $new_upload_id = $old_upload_id;
    330. 

  330.     if ( ( $c->req->param('attachment_action') eq 'delete' ) or $new_upload )
    331. 

  331.     {
    332. 

  332. 

  333.         # delete old upload
    334. 

  334.         if ($old_upload_id) {
    335. 

  335.             $c->model('DBIC::Upload')
    336. 

  336.                 ->remove_by_upload( $c->user->{profile_photo}->{upload} );
    337. 

  337.             $new_upload_id = 0;
    338. 

  338.         }
    339. 

  339. 

  340.         # add new upload
    341. 

  341.         if ($new_upload) {
    342. 

  342.             $new_upload_id = $c->model('DBIC::Upload')
    343. 

  343.                 ->add_file( $new_upload, { user_id => $c->user->user_id } );
    344. 

  344.             unless ( $new_upload_id =~ /^\d+$/ ) {
    345. 

  345.                 return $c->set_invalid_form( upload => $new_upload_id );
    346. 

  346.             }
    347. 

  347. 

  348.             my $client = theschwartz();
    349. 

  349.             $client->insert(
    350. 

  350.                 'Foorum::TheSchwartz::Worker::ResizeProfilePhoto',
    351. 

  351.                 $new_upload_id );
    352. 

  352.         }
    353. 

  353.     }
    354. 

  354. 

  355.     $c->model('DBIC')->resultset('UserProfilePhoto')
    356. 

  356.         ->search( { user_id => $c->user->{user_id} } )->delete;
    357. 

  357.     $c->model('DBIC')->resultset('UserProfilePhoto')->create(
    358. 

  358.         {   user_id => $c->user->{user_id},
    359. 

  359.             type    => 'upload',
    360. 

  360.             value   => $new_upload_id,
    361. 

  361.             width   => 0,
    362. 

  362.             height  => 0,
    363. 

  363.             time    => time(),
    364. 

  364.         }
    365. 

  365.     );
    366. 

  366. 

  367.     $c->model('DBIC::User')->delete_cache_by_user( $c->user );
    368. 

  368. 

  369.     $c->res->redirect( '/u/' . $c->user->{username} );
    370. 

  370. }
    371. 

  371. 

  372. 1;
    373. 

  373. __END__
    374. 

  374. 

  375. =pod
    376. 

  376. 

  377. =head1 AUTHOR
    378. 

  378. 

  379. Fayland Lam <fayland at gmail.com>
    380. 

  380. 

  381. =cut
    382. 

  382.