/examples/blog/app/controllers/user.php

http://skeleton.googlecode.com/ · PHP · 254 lines · 186 code · 45 blank · 23 comment · 23 complexity · 8bb4d63e28419bbd75c4d8c08b8ced39 MD5 · raw file 

    

  1. <?php
    2. 

  2. #include_once 'A/User/Session.php';
    3. 

  3. #include_once 'A/Model/Form.php';
    4. 

  4. 

  5. class user extends A_Controller_Action {
    6. 

  6. 

  7. 	public function login($locator) {
    8. 

  8. 

  9. 		$session = $locator->get('Session');
    10. 

  10. 		$user = $locator->get('UserSession');
    11. 

  11. 		$session->start();		// controller and view use session
    12. 

  12. 		$session->set('foo', 'bar');
    13. 

  13. 		
    14. 

  14. 		$form = new A_Model_Form();
    15. 

  15. 		$field = new A_Model_Form_Field('username');
    16. 

  16. 		$field->addRule(new A_Rule_Notnull('username', 'Username required'));
    17. 

  17. 		$form->addField($field);
    18. 

  18. 		$field = new A_Model_Form_Field('password');
    19. 

  19. 		$field->addRule(new A_Rule_Notnull('password', 'Password required'));
    20. 

  20. 		$form->addField($field);
    21. 

  21. 		
    22. 

  22. 		$errmsg = '';
    23. 

  23. 

  24. 		// If username and password valid and isPost
    25. 

  25. 		if($form->isValid($this->request)){ 
    26. 

  26. 			
    27. 

  27. 			$model = $this->_load('app')->model('users');
    28. 

  28. 			$userdata = $model->login($form->get('username'), $form->get('password'), $locator->get('Config')->get('SITESALT'));
    29. 

  29. 

  30. 			if ($userdata) {	// user record matching userid and password found
    31. 

  31. 				unset($userdata['password']);		// don't save passwords in the session
    32. 

  32. 				$user->login($userdata);
    33. 

  33. 				$this->_redirect($locator->get('Config')->get('BASE') . 'user/login/');	// build redirect URL back to this page
    34. 

  34. 			} else {
    35. 

  35. 				$errmsg = $model->loginErrorMsg();
    36. 

  36. 			}
    37. 

  37. 		} elseif($form->isSubmitted()){		// submitted form has errors
    38. 

  38. 			$errmsg =  $form->getErrorMsg(', ');
    39. 

  39. 		}
    40. 

  40. 		
    41. 

  41. 		$template = $this->_load()->template('user/login');
    42. 

  42. 		$template->set('errmsg', $errmsg);
    43. 

  43. 		$template->set('username', $form->get('username'));
    44. 

  44. 		$template->set('user', $user);
    45. 

  45. 		
    46. 

  46. 		$this->response->set('maincontent', $template);
    47. 

  47. 	}
    48. 

  48. 	
    49. 

  49. 	public function logout($locator) {
    50. 

  50. 		
    51. 

  51. 		$session = $locator->get('Session');
    52. 

  52. 		$user = $locator->get('UserSession');
    53. 

  53. 		$session->start();
    54. 

  54. 		
    55. 

  55. 		if ($user->isLoggedIn()) {	// user record matching userid and password found
    56. 

  56. 			$user->logout();
    57. 

  57. 		}
    58. 

  58. 		
    59. 

  59. 		$this->_redirect($locator->get('Config')->get('BASE') . 'user/login/');	// build redirect URL back to this page
    60. 

  60. 	}
    61. 

  61. 	
    62. 

  62. 	public function register($locator){
    63. 

  63. 		
    64. 

  64. 		$session = $locator->get('Session');
    65. 

  65. 		$user = $locator->get('UserSession');
    66. 

  66. 		$session->start();	
    67. 

  67. 		$request = $this->request;	
    68. 

  68. 		$messages = array();
    69. 

  69. 		
    70. 

  70. 		if($request->isPost()){
    71. 

  71. 			
    72. 

  72. 			$usermodel = $this->_load('app')->model('users');
    73. 

  73. 			$usermodel->addRule(new A_Rule_Match('passwordagain', 'password', 'Fields password and passwordagain do not match'));
    74. 

  74. 			$usermodel->addRule(new A_Rule_Regexp('/agree/', 'tos', 'Dont agree with the terms of service?'), 'tos'); 
    75. 

  75. 				
    76. 

  76. 			// Inlcude only rules for these fields
    77. 

  77. 			$usermodel->includeRules(array('username', 'password', 'passwordagain', 'email', 'tos'));
    78. 

  78. 				
    79. 

  79. 			if(!$usermodel->isValid($request))
    80. 

  80. 			{
    81. 

  81. 				$messages[] = $usermodel->getErrorMsg("</li>\n<li>");
    82. 

  82. 				$this->response->setPartial('maincontent', 'user/register/registerForm', array('messages' => $messages));
    83. 

  83. 			} 
    84. 

  84. 			else 
    85. 

  85. 			{	
    86. 

  86. 				if($usermodel->isUsernameAvailable($request->get('username')))
    87. 

  87. 				{
    88. 

  88. 					if($usermodel->isEmailAvailable($request->get('email')))
    89. 

  89. 					{
    90. 

  90. 						// Create activation key
    91. 

  91. 						$actkey = $usermodel->createActivationkey();
    92. 

  92. 						// Create a random user salt
    93. 

  93. 						$usersalt = uniqid(mt_rand().time(),true);
    94. 

  94. 						// Insert user data in db
    95. 

  95. 						$usermodel->insertUser( $request->get('username'), 
    96. 

  96. 												$request->get('password'), 
    97. 

  97. 												$request->get('email'), 
    98. 

  98. 												$actkey, 
    99. 

  99. 												$usersalt,
    100. 

  100. 												$locator->get('Config')->get('SITESALT')
    101. 

  101. 												);
    102. 

  102. 						// Send confirmation email
    103. 

  103. 						$activationlink = $locator->get('Config')->get('BASE') . 'user/activate?id=' . $actkey;
    104. 

  104. 						$this->mailActivationMessage($request->get('email'), $activationlink);
    105. 

  105. 						// Get Template SuccesfulRegistration
    106. 

  106. 						$this->response->setPartial('maincontent', 'user/register/success', array( 'email'=>$request->get('email')));
    107. 

  107. 					} 
    108. 

  108. 					else 
    109. 

  109. 					{
    110. 

  110. 						// Another account for this email adress exists, get Template email adress already in database
    111. 

  111. 						$this->response->setPartial('maincontent', 'user/register/emailTakenForm');
    112. 

  112. 					}
    113. 

  113. 				} 
    114. 

  114. 				else 
    115. 

  115. 				{
    116. 

  116. 					if($usermodel->usernameMatchesEmail($request->get('username'), $request->get('email')))
    117. 

  117. 					{ 
    118. 

  118. 						if($usermodel->isAccountActivated($request->get('username'), $request->get('email')))
    119. 

  119. 						{
    120. 

  120. 							if($usermodel->isPasswordCorrect($request->get('username'), $request->get('password'), $locator->get('Config')->get('SITESALT')))
    121. 

  121. 							{
    122. 

  122. 								// Login the user
    123. 

  123. 								$usermodel->login($request->get('username'), $request->get('password'));
    124. 

  124. 								// Get Template you have been logged in
    125. 

  125. 								$this->response->setPartial('maincontent', 'user/register/signedin');
    126. 

  126. 							} 
    127. 

  127. 							else 
    128. 

  128. 							{
    129. 

  129. 								// Password was wrong. Get Template LoginForm
    130. 

  130. 								$this->response->setPartial('maincontent', 'user/register/loginForm');
    131. 

  131. 							}
    132. 

  132. 						} 
    133. 

  133. 						else 
    134. 

  134. 						{
    135. 

  135. 							// Get Template AccountNotYetActivated
    136. 

  136. 							$this->response->setPartial('maincontent', 'user/register/activate');
    137. 

  137. 						}
    138. 

  138. 					} 
    139. 

  139. 					else 
    140. 

  140. 					{
    141. 

  141. 						// Get Template username already taken
    142. 

  142. 						$this->response->setPartial('maincontent', 'user/register/usernameUnavailable',array('username'=> $request->get('username')));
    143. 

  143. 					}
    144. 

  144. 				}
    145. 

  145. 			}
    146. 

  146. 		}
    147. 

  147. 		else
    148. 

  148. 		{
    149. 

  149. 			// Show registration form
    150. 

  150. 			$this->response->setPartial('maincontent', 'user/register/registerForm');
    151. 

  151. 		}
    152. 

  152. 		
    153. 

  153. 	}
    154. 

  154. 

  155. 	private function mailActivationMessage($email, $activationlink){
    156. 

  156. 		$subject = 'Registration at this app';
    157. 

  157. 		$message = 'Thanks for registering, ' . "\n\r";
    158. 

  158. 		$message = 'Please click the following link to activate your account' . "\n\r";
    159. 

  159. 		$message .= 'Click this: ' . $activationlink . "\n\r"; 
    160. 

  160. 		$message .= 'Thanks.';
    161. 

  161. 		$from = 'From: skeleton blog';
    162. 

  162. 		mail($email, $subject, $message, $from);
    163. 

  163. 	}
    164. 

  164. 	
    165. 

  165. 	public function activate($locator){
    166. 

  166. 

  167. 		// get the activation key
    168. 

  168. 		$activationkey = $this->request->get('id');
    169. 

  169. 		
    170. 

  170. 		$model = $this->_load('app')->model('users');
    171. 

  171. 		$model->activate($activationkey);
    172. 

  172. 		
    173. 

  173. 		$this->response->setPartial('maincontent', 'user/activate', array('errmsg' => $model->getErrorMsg(' ')));
    174. 

  174. 		
    175. 

  175. 	}
    176. 

  176. 	
    177. 

  177. 	public function password($locator){
    178. 

  178. 		
    179. 

  179. 		$session = $locator->get('Session');
    180. 

  180. 		$user = $locator->get('UserSession');
    181. 

  181. 		$session->start();
    182. 

  182. 		
    183. 

  183. 		$errmsg = '';
    184. 

  184. 

  185. 		$form = new A_Model_Form();
    186. 

  186. 		$field = new A_Model_Form_Field('username');
    187. 

  187. 		$field->addRule(new A_Rule_Notnull('username', 'username required'));
    188. 

  188. 		$form->addField($field);
    189. 

  189. 		// @todo: should we check in db if filled in username even exists
    190. 

  190. 		
    191. 

  191. 		$model = $this->_load('app')->model('users');
    192. 

  192. 		
    193. 

  193. 		// If password forgot form is posted and is valid
    194. 

  194. 		if($form->isValid($this->request)){
    195. 

  195. 			// @todo: retrieve email+password from user model and send email with pw
    196. 

  196. 			
    197. 

  197. 		} elseif($form->isSubmitted()){		// submitted form has errors
    198. 

  198. 			$errmsg =  $form->getErrorMsg(', ');
    199. 

  199. 		}
    200. 

  200. 		
    201. 

  201. 		// Show password forgot page and form
    202. 

  202. 		$template = $this->_load()->template('user/password');
    203. 

  203. 		$template->set('errmsg', $errmsg);
    204. 

  204. 		$template->set('user', $user);
    205. 

  205. 		$this->response->set('maincontent', $template);
    206. 

  206. 	}
    207. 

  207. 		
    208. 

  208. 	public function profile($locator){
    209. 

  209. 		$session 	= $locator->get('Session');
    210. 

  210. 		$user 		= $locator->get('UserSession');
    211. 

  211. 		$session->start();
    212. 

  212. 		$messages 	= array();
    213. 

  213. 		$request 	= $this->request;
    214. 

  214. 		
    215. 

  215. 		// If user is not signed in don't show profile page but redirect to login?
    216. 

  216. 		if (!$user->isLoggedIn()) {
    217. 

  217. 			$this->_redirect($locator->get('Config')->get('BASE') . 'user/login/');	// build redirect URL back to this page		
    218. 

  218. 		}
    219. 

  219. 		
    220. 

  220. 		// To show the profile we need the model
    221. 

  221. 		$model = $this->_load('app')->model('users');
    222. 

  222. 		$userdata = $model->find($user->get('id'));
    223. 

  223. 		
    224. 

  224. 		if($request->isPost()){ 
    225. 

  225. 			$model->includeRules(array('firstname', 'lastname', 'email'));
    226. 

  226. 			if(!$model->isValid($request)){
    227. 

  227. 				$messages[] = $model->getErrorMsg("</li>\n<li>");
    228. 

  228. 				$data = array(
    229. 

  229. 					'firstname' => $request->get('firstname'),
    230. 

  230. 					'lastname' 	=> $request->get('lastname'),
    231. 

  231. 					'email' 	=> $request->get('email')
    232. 

  232. 				);
    233. 

  233. 				$this->response->setPartial('maincontent', 'user/profile', array( 'messages' => $messages, 'data'=>$data ));
    234. 

  234. 			} else {
    235. 

  235. 				$data = array(
    236. 

  236. 					'firstname' => $model->get('firstname'),
    237. 

  237. 					'lastname' 	=> $model->get('lastname'),
    238. 

  238. 					'email' 	=> $model->get('email')
    239. 

  239. 				);
    240. 

  240. 				$user_id = $user->get('id');
    241. 

  241. 				$model->updateUser($data, $user_id);
    242. 

  242. 				$this->response->setPartial('maincontent', 'user/profile', array( 'messages' => $messages, 'data'=>$data ));
    243. 

  243. 			}
    244. 

  244. 			
    245. 

  245. 		} else {
    246. 

  246. 			
    247. 

  247. 			$this->response->setPartial('maincontent', 'user/profile', array( 'messages' => $messages, 'data' => $userdata ));
    248. 

  248. 		}
    249. 

  249. 		
    250. 

  250. 	}
    251. 

  251. 	
    252. 

  252. 

  253. 	
    254. 

  254. }
    255.