PageRenderTime 27ms CodeModel.GetById 27ms RepoModel.GetById 0ms app.codeStats 0ms

/app/frontendModule/presenters/registrationPresenter.php

https://github.com/Buri/Aragorn.cz
PHP | 247 lines | 199 code | 30 blank | 18 comment | 21 complexity | b2fa3a7219883abdc6d67a45c20b502f MD5 | raw file
    

  1. <?php
    2. 

  2. 

  3. /*
    4. 

  4.  * TODO:
    5. 

  5.  *  predavani parametru v url
    6. 

  6.  *  .
    7. 

  7.  *
    8. 

  8.  */
    9. 

  9. namespace frontendModule{
    10. 

  10.     use Nette\Environment;
    11. 

  11.     use Nette\Application\UI\Form;
    12. 

  12.     use \DB;
    13. 

  13.     
    14. 

  14.     class registrationPresenter extends \BasePresenter {
    15. 

  15. 

  16.         /**
    17. 

  17.          *
    18. 

  18.          * @var array
    19. 

  19.          */
    20. 

  20.         protected $config;
    21. 

  21. 

  22.         public function startup(){
    23. 

  23.             $this->template->banned = false;
    24. 

  24.             $this->template->reg = $this->getContext()->parameters['registration'];
    25. 

  25.             $this->config = $this->getContext()->parameters;
    26. 

  26. 

  27.             $bans = $this->context->database->bans('ip LIKE ?', '%'.$_SERVER['REMOTE_ADDR'].'%')->where('expires > ?', time());
    28. 

  28.             if(count($bans) > 0){
    29. 

  29.                 $this->template->banned = true;
    30. 

  30.             }else{
    31. 

  31.                 $hosts = file(CFG_DIR . '/blacklist/host');
    32. 

  32.                 $ip = $_SERVER['REMOTE_ADDR'];
    33. 

  33.                 $hostname = gethostbyaddr($ip);
    34. 

  34.                 foreach($hosts as $host){
    35. 

  35.                     if(preg_match("/$host/i", $ip) > 0 || preg_match("/$host/i", $hostname) > 0){
    36. 

  36.                         $this->template->banned = true;
    37. 

  37.                         break;
    38. 

  38.                     }
    39. 

  39.                 }
    40. 

  40.             }
    41. 

  41.             parent::startup();
    42. 

  42.         }
    43. 

  43. 

  44.         public function createComponentRegisterForm() {
    45. 

  45.             $db = $this->context->database;
    46. 

  46.             $form = new Form;
    47. 

  47.             #$form->addProtection('Cross Site Request Forgery!');
    48. 

  48.             $form->addText('username', 'Přezdívka: ')
    49. 

  49.                     ->addRule(Form::FILLED, 'Musíte vyplnit uživatelské jméno!')
    50. 

  50.                     ->addRule(function (\Nette\Forms\Controls\TextInput $user) use($db){
    51. 

  51.                         if(count($db->users()->where("username LIKE ? OR urlfragment = ?", array($user->getValue(), \Utilities::string2url($user->getValue()))))){
    52. 

  52.                             return false;
    53. 

  53.                         }
    54. 

  54.                         return true;
    55. 

  55.                     }, 'Uživatelské jméno je již obsazené.');
    56. 

  56. 

  57.             $form->addPassword('password', 'Heslo')
    58. 

  58.                     ->addRule(Form::FILLED, 'Musíte vyplnit heslo.')
    59. 

  59.                     ->addRule(Form::MIN_LENGTH, 'Heslo je příliš krátké.', 6);
    60. 

  60. 

  61.             $form->addText('mail', 'E-mail')
    62. 

  62.                     ->addRule(Form::EMAIL, 'Email není validní!')
    63. 

  63.                     ->addRule(function(\Nette\Forms\Controls\TextInput $mail) use ($db) {
    64. 

  64.                         if(count($db->users()->where("mail LIKE ?", $mail->getValue()))){
    65. 

  65.                             return false;
    66. 

  66.                         }
    67. 

  67.                         return true;
    68. 

  68.                     }, 'Emailová adresa je již obsazená.')
    69. 

  69.                     ->addRule(function(\Nette\Forms\Controls\TextInput $mail){
    70. 

  70.                         $val  = $mail->getValue();
    71. 

  71.                         $blacklist = file(CFG_DIR . '/blacklist/mail');
    72. 

  72.                         foreach($blacklist as $entry){
    73. 

  73.                             $entry = trim($entry);
    74. 

  74.                             //dump("/$entry/i ~ $val ? " . (preg_match("/$entry/i", $val) ? 'yes' : 'no'));
    75. 

  75.                             if(preg_match("/$entry/i", $val)){
    76. 

  76.                                 return false;
    77. 

  77.                             }
    78. 

  78.                         }
    79. 

  79.                         return true;
    80. 

  80.                     }, "Vaše mailová adresa je na blacklistu.");
    81. 

  81. 

  82.             /*$form->addCheckbox('eula', 'Souhlasím s podmínkami.')
    83. 

  83.                     ->addRule(Form::FILLED, 'Musíte souhlasit.');*/
    84. 

  84. 

  85.             $form->addText('spambot', 'Toto musíte vyplnit.')
    86. 

  86.                     ->addRule(Form::LENGTH, 'Špatně.', 0)
    87. 

  87.                     ->getControlPrototype()->class("hidden");
    88. 

  88.             $form['spambot']->getLabelPrototype()->class("hidden");
    89. 

  89. 

  90.             $form->addGroup('Povinné údaje')->add($form['username'],$form['password'],$form['mail'],/*$form['eula'],*/$form['spambot']);
    91. 

  91. 

  92.             $form->addSubmit('save', 'Souhlasím s podmínkami, registrovat');
    93. 

  93.             $form->onSuccess[] = callback($this, 'processRegisterForm');
    94. 

  94. 

  95.             $form->setAction($this->link("register"));
    96. 

  96.             return $form;
    97. 

  97.         }
    98. 

  98. 

  99.         public function processRegisterForm(\Nette\Application\UI\Form $form) {
    100. 

  100.             if($this->template->banned) return false;
    101. 

  101.             $data = $form->getValues();
    102. 

  102.             $data["token"] = md5(uniqid());
    103. 

  103.             $data["create_time"] = time();
    104. 

  104.             $data["password"] = sha1($data["password"]);
    105. 

  105.             unset($data['eula']);
    106. 

  106.             unset($data['spambot']);
    107. 

  107.             if(!$this->context->database->registration()->where("token = ?", $data["token"])->count()){
    108. 

  108.                 $this->context->database->registration()->insert($data);
    109. 

  109.             }
    110. 

  110.             $this->getTemplate()->mail = $data["mail"];
    111. 

  111.             $this->redirect(301, "mail", serialize(array("mail"=> $data["mail"], "token" => $data["token"])));
    112. 

  112.             return true;
    113. 

  113.         }
    114. 

  114. 

  115.         /**
    116. 

  116.          *
    117. 

  117.          * @param string $data
    118. 

  118.          */
    119. 

  119.         public function actionMail($data){
    120. 

  120.             $data = unserialize($data);
    121. 

  121.             $l = $this->link("//finish", $data["token"]);
    122. 

  122. 

  123.             $template = new \Nette\Templating\FileTemplate(__DIR__. '/../templates/registration/mail/confirm-mail.latte');
    124. 

  124.             $template->registerFilter(new \Nette\Latte\Engine);
    125. 

  125.             $template->link =$l;
    126. 

  126. 

  127.             $mail = new \Nette\Mail\Message;
    128. 

  128.             $mail->setFrom($this->config['registration']['mail']);
    129. 

  129.             $mail->addTo($data['mail']);
    130. 

  130.             $mail->setHtmlBody($template);
    131. 

  131.             $mail->send();
    132. 

  132. 

  133.             $this->template->mail = $data['mail'];            
    134. 

  134.       }
    135. 

  135. 

  136.         public function actionFinish( $id ){
    137. 

  137.             $db = $this->context->database;
    138. 

  138.             if($this->template->banned) return false;
    139. 

  139.             $this->getTemplate()->message = "";
    140. 

  140.             $reg = $db->registration()->where("token = ?", $id);
    141. 

  141.             if(!count($reg)){
    142. 

  142.                 $this->getTemplate()->message = "Registrace nebyla nalezena. Nevypršela už platnost odkazu?";
    143. 

  143.             }else{
    144. 

  144.                 foreach($reg as $r){
    145. 

  145.                     $row = $r;
    146. 

  146.                     break;
    147. 

  147.                 }
    148. 

  148.                 if($this->context->database->users()->where("username LIKE ?", $row["username"])->count() || DB::users()->where("mail = ?", $row["mail"])->count()){
    149. 

  149.                     $this->getTemplate()->message = "Uživatelské jméno/mail je již obsazen. Je nám líto.";
    150. 

  150.                     $reg->delete();
    151. 

  151.                     return false;
    152. 

  152.                 }
    153. 

  153.                 $r = $db->users()->insert(array(
    154. 

  154.                     "id"=>0,
    155. 

  155.                     "username" => $row["username"],
    156. 

  156.                     "password" => $row["password"],
    157. 

  157.                     "mail" => $row["mail"],
    158. 

  158.                     "created" => $row["create_time"],
    159. 

  159.                     "login"=>0,
    160. 

  160.                     'urlfragment'=> \Utilities::string2url($row['username'])
    161. 

  161.                 ));
    162. 

  162.                 $db->users_prerferences()->insert(array(
    163. 

  163.                     "id"=> $r['id'],
    164. 

  164.                     "color" => "#fff"
    165. 

  165.                 ));
    166. 

  166. 

  167.                 $reg->delete(); /* Vloží se pouze jednou, ale smažou se všechny odpovídající tokeny */
    168. 

  168.                 $this->getTemplate()->message = "Registrace byla dokončena. Nyní se můžete přihlásit.";
    169. 

  169.             }
    170. 

  170.         }
    171. 

  171. 

  172.         public function actionRecoverpassword(){
    173. 

  173. 

  174.         }
    175. 

  175. 

  176.         public function createComponentRecoverPassword(){
    177. 

  177.             $form = new Form;
    178. 

  178.             $form->addText('mail', '')
    179. 

  179.                     ->addRule(Form::FILLED, 'Je nutné vyplnit e-mail.')
    180. 

  180.                     ->addRule(Form::EMAIL, 'Zadaný e-mail není platný');
    181. 

  181.             $form->addSubmit('send', 'Obnovit heslo');
    182. 

  182.             $form->onSuccess[] = callback($this, 'handleRecoverPassword');
    183. 

  183.             return $form;
    184. 

  184.         }
    185. 

  185. 

  186.         protected function generatePassword($length=9, $strength=0) {
    187. 

  187. 	$vowels = 'aeuy';
    188. 

  188. 	$consonants = 'bdghjmnpqrstvz';
    189. 

  189. 	if ($strength & 1) {
    190. 

  190. 		$consonants .= 'BDGHJLMNPQRSTVWXZ';
    191. 

  191. 	}
    192. 

  192. 	if ($strength & 2) {
    193. 

  193. 		$vowels .= "AEUY";
    194. 

  194. 	}
    195. 

  195. 	if ($strength & 4) {
    196. 

  196. 		$consonants .= '23456789';
    197. 

  197. 	}
    198. 

  198. 	if ($strength & 8) {
    199. 

  199. 		$consonants .= '@#$%';
    200. 

  200. 	}
    201. 

  201. 

  202. 	$password = '';
    203. 

  203. 	$alt = time() % 2;
    204. 

  204. 	for ($i = 0; $i < $length; $i++) {
    205. 

  205. 		if ($alt == 1) {
    206. 

  206. 			$password .= $consonants[(rand() % strlen($consonants))];
    207. 

  207. 			$alt = 0;
    208. 

  208. 		} else {
    209. 

  209. 			$password .= $vowels[(rand() % strlen($vowels))];
    210. 

  210. 			$alt = 1;
    211. 

  211. 		}
    212. 

  212. 	}
    213. 

  213. 	return $password;
    214. 

  214. }
    215. 

  215. 

  216. 

  217.         public function handleRecoverPassword(Form $form){
    218. 

  218.             $vals = $form->getValues();
    219. 

  219.             $db = $this->context->database;
    220. 

  220.             $row = $db->users('mail', $vals->mail);
    221. 

  221.             if($row->count()){
    222. 

  222.                 $row = $row->fetch();
    223. 

  223.                 $user = $row['username'];
    224. 

  224. 

  225.                 $password = $this->generatePassword(9, 1 | 2 | 4);
    226. 

  226. 

  227.                 $mail = new \Nette\Mail\Message();
    228. 

  228.                 $mail->addTo($vals->mail);
    229. 

  229.                 $mail->setFrom('system@' . $this->context->parameters['servers']['domain']);
    230. 

  230.                 $template = new \Nette\Templating\FileTemplate(__DIR__. '/../templates/registration/mail/recover-password.latte');
    231. 

  231.                 $template->registerFilter(new \Nette\Latte\Engine);
    232. 

  232.                 $template->username = $user;
    233. 

  233.                 $template->password = $password;
    234. 

  234.                 $mail->setHtmlBody($template);
    235. 

  235.                 $mail->send();
    236. 

  236.                 $row->update(array(
    237. 

  237.                     "password" => sha1($password)
    238. 

  238.                 ));
    239. 

  239. 

  240.                 $this->flashMessage('Na váš e-mail bylo odesláno nové heslo.');
    241. 

  241.                 $this->redirect('this');
    242. 

  242.             }else{
    243. 

  243.                 $form->addError('Zadaný mail nebyl nalezen v databázi.');
    244. 

  244.             }
    245. 

  245.         }
    246. 

  246.     }
    247. 

  247. }
    248.