user.php | searchcode

/app/models/user.php

https://github.com/cgajardo/repositorium · PHP · 265 lines · 189 code · 20 blank · 56 comment · 16 complexity · 207f4fab749e9ad3c0da15076d7d8262 MD5 · raw file

<?php
class User extends AppModel {
	var $name = 'User';
	var $displayField = 'email';
	var $virtualFields = array(
		'full_name' => 'CONCAT(first_name, \' \', last_name)'
	);
	var $validate = array(
		'email' => array(
			'email' => array(
				'rule' => array('email'),
				'message' => 'Give a valid email',
				//'allowEmpty' => false,
				//'required' => false,
				//'last' => false, // Stop validation after this rule
				//'on' => 'create', // Limit validation to 'create' or 'update' operations
			),
		),
		'first_name' => array(
			'notempty' => array(
				'rule' => array('notempty'),
				'message' => 'Please give your first name',
				//'allowEmpty' => false,
				//'required' => false,
				//'last' => false, // Stop validation after this rule
				//'on' => 'create', // Limit validation to 'create' or 'update' operations
			),
		),
		'last_name' => array(
			'notempty' => array(
				'rule' => array('notempty'),
				'message' => 'Please give your last name',
				//'allowEmpty' => false,
				//'required' => false,
				//'last' => false, // Stop validation after this rule
				//'on' => 'create', // Limit validation to 'create' or 'update' operations
			),
		),
		'password' => array(
			'notempty' => array(
				'rule' => array('notempty'),
				'message' => 'Password cannot be empty',
				//'allowEmpty' => false,
				//'required' => false,
				//'last' => false, // Stop validation after this rule
				//'on' => 'create', // Limit validation to 'create' or 'update' operations
			),
		),
		'is_administrator' => array(
			'boolean' => array(
				'rule' => array('boolean'),
				//'message' => 'Your custom message here',
				//'allowEmpty' => false,
				//'required' => false,
				//'last' => false, // Stop validation after this rule
				//'on' => 'create', // Limit validation to 'create' or 'update' operations
			),
		),
		'active' => array(
			'boolean' => array(
				'rule' => array('boolean'),
				//'message' => 'Your custom message here',
				//'allowEmpty' => false,
				//'required' => false,
				//'last' => false, // Stop validation after this rule
				//'on' => 'create', // Limit validation to 'create' or 'update' operations
			),
		),
	);
	//The Associations below have been created with all possible keys, those that are not needed can be removed

	var $hasMany = array(
		'Document' => array(
			'className' => 'Document',
			'foreignKey' => 'user_id',
			'dependent' => false,
			'conditions' => '',
			'fields' => '',
			'order' => '',
			'limit' => '',
			'offset' => '',
			'exclusive' => '',
			'finderQuery' => '',
			'counterQuery' => ''
		),
		'Expert' => array(
			'className' => 'Expert',
			'foreignKey' => 'user_id',
			'dependent' => true,
			'conditions' => '',
			'fields' => '',
			'order' => '',
			'limit' => '',
			'offset' => '',
			'exclusive' => '',
			'finderQuery' => '',
			'counterQuery' => ''
		),
		'Repository' => array(
			'className' => 'Repository',
			'foreignKey' => 'user_id',
			'dependent' => false,
			'conditions' => '',
			'fields' => '',
			'order' => '',
			'limit' => '',
			'offset' => '',
			'exclusive' => '',
			'finderQuery' => '',
			'counterQuery' => ''
		),
		'CriteriasUser' => array(
			'className' => 'CriteriasUser',
			'foreignKey' => 'user_id',
			'dependent' => true,	
			'conditions' => '',
			'fields' => '',
			'order' => '',
			'limit' => '',
			'offset' => '',
			'finderQuery' => '',
			'deleteQuery' => '',
			'insertQuery' => ''
		),
		'RepositoriesUser' => array(
			'className' => 'RepositoriesUser',
			'foreignKey' => 'user_id',
			'dependent' => true,
		)
	);
	
	/* ==================== METHODS ====================== */
	
	/**
	 * DO NOT change this method unless you know what are you doing
	 * 
	 */
	function beforeSave($options) {
		if(!empty($this->data['User']['password'])) {
			$this->data['User']['salt'] = mt_rand();
			$this->data['User']['password'] = sha1($this->data['User']['password'] . $this->data['User']['salt']);
		}
	
		return true;
	}
	
	/**
	 * Registers a new user
	 * @param array $data
	 * @return true on success, false otherwise
	 */
	function register($data=array()) {
		if(empty($data) || !array_key_exists('User', $data))
			return false;
	
		$t = array(
			array_key_exists('email', $data['User']),
			array_key_exists('first_name', $data['User']),
			array_key_exists('last_name', $data['User']),
			array_key_exists('password', $data['User']),
		);
	
		if(!($t[0] and $t[1] and $t[2] and $t[3]))
			return false;
	
		$data['User']['is_administrator'] = false;
	
		// register user
		$user = $this->save($data);
		return $user;
	}
	
	/**
	 * checks user credential
	 * @param array $data with email and password as subkeys of User, eg $data['User']['email']
	 * @return the corresponding user object, null otherwise
	 */
	function getUser($data = array()) {
		if(empty($data) or !isset($data['User']['email']) or !isset($data['User']['password'])) {
			return null;
		}
		$d = $this->findByEmail($data['User']['email']);
		
		$pass_to_check = $d['User']['password'];
		$pass_from_login = sha1($data['User']['password'] . $d['User']['salt']);
		if(strcmp($pass_to_check,$pass_from_login) == 0) {
			return $d;
		}
		return null;
	}
	
	/**
	 *  @TODO EXPERTS AND REPOSITORIES!!!
	 */
	function afterSave($created) {
		if($created) {	
			/* on create */
			if(!empty($this->data['User']['es_experto'])) {
				$this->_expert_create($this->id);
			}			
			$this->CriteriasUser->massCreateAfterUser($this->id);
			$this->RepositoriesUser->massCreateAfterUser($this->id);
			CakeLog::write('activity', 'User '.$this->id. ' created');
		} else {
			/* on update */
			if($this->data['User']['es_experto'] == 1) {
				$this->_expert_create($this->id);
			} else {
				$this->_expert_delete($this->id);
			}
			CakeLog::write('activity', 'User '.$this->id. ' updated');
		}
	}
	
	function _expert_create($id) {
		$this->Expert->create();
		$this->Expert->set(array(
			'user_id' => $this->id,
			'repository_id' => 1
		));
		$this->Expert->save();
	}
	
	function _expert_delete($id) {
		$this->Expert->deleteAll(array('Expert.user_id' => $id));
	}
	
	
	function afterFind($results, $primary) {
		$i = 0;
		foreach($results as $r) {
			if(!empty($r['Expert'])) {
				$results[$i]['User']['es_experto'] = 1;
			}
			$i += 1;
		}
		return $results;
	}
	
	/**
	 * UNTESTED
	 * 
	 * 
	 * @param integer or string $user_id
	 * @param integer or string $repo_id
	 * @return integer or null
	 */
	function get_user_points($user_id, $repo_id) {
		if(is_null($user_id) || is_null($repo_id))
			return null;
		
		$points = $this->RepositoriesUser->find('first', array(
			'conditions' => array(
				'user_id' => $user_id,
				'repository_id' => $repo_id
			),
			'fields' => array('points'),
			'recursirve' => -1,
		));
		
		return $points['RepositoriesUser']['points'];
	}

}
?>
Alerts (7)

'var' Legacy var keyword detected; use public/private/protected for class properties
3 4 5 8 72
'sha1(' Weak hashing detected; use password_hash() with PASSWORD_DEFAULT for secure password storage
141 185