/protected/modules/user/controllers/AdminController.php

https://github.com/joshuaswarren/weatherhub · PHP · 165 lines · 117 code · 16 blank · 32 comment · 13 complexity · d478461e7c82ab787651172501dcc13b MD5 · raw file 

    

  1. <?php

    2. 

  2. 

    3. 

  3. class AdminController extends Controller

    4. 

  4. {

    5. 

  5. 	public $defaultAction = 'admin';

    6. 

  6. 	

    7. 

  7. 	private $_model;

    8. 

  8. 

    9. 

  9. 	/**

    10. 

  10. 	 * @return array action filters

    11. 

  11. 	 */

    12. 

  12. 	public function filters()

    13. 

  13. 	{

    14. 

  14. 		return CMap::mergeArray(parent::filters(),array(

    15. 

  15. 			'accessControl', // perform access control for CRUD operations

    16. 

  16. 		));

    17. 

  17. 	}

    18. 

  18. 	/**

    19. 

  19. 	 * Specifies the access control rules.

    20. 

  20. 	 * This method is used by the 'accessControl' filter.

    21. 

  21. 	 * @return array access control rules

    22. 

  22. 	 */

    23. 

  23. 	public function accessRules()

    24. 

  24. 	{

    25. 

  25. 		return array(

    26. 

  26. 			array('allow', // allow admin user to perform 'admin' and 'delete' actions

    27. 

  27. 				'actions'=>array('admin','delete','create','update','view'),

    28. 

  28. 				'users'=>UserModule::getAdmins(),

    29. 

  29. 			),

    30. 

  30. 			array('deny',  // deny all users

    31. 

  31. 				'users'=>array('*'),

    32. 

  32. 			),

    33. 

  33. 		);

    34. 

  34. 	}

    35. 

  35. 	/**

    36. 

  36. 	 * Manages all models.

    37. 

  37. 	 */

    38. 

  38. 	public function actionAdmin()

    39. 

  39. 	{

    40. 

  40. 		$dataProvider=new CActiveDataProvider('User', array(

    41. 

  41. 			'pagination'=>array(

    42. 

  42. 				'pageSize'=>Yii::app()->controller->module->user_page_size,

    43. 

  43. 			),

    44. 

  44. 		));

    45. 

  45. 

    46. 

  46. 		$this->render('index',array(

    47. 

  47. 			'dataProvider'=>$dataProvider,

    48. 

  48. 		));

    49. 

  49. 	}

    50. 

  50. 

    51. 

  51. 

    52. 

  52. 	/**

    53. 

  53. 	 * Displays a particular model.

    54. 

  54. 	 */

    55. 

  55. 	public function actionView()

    56. 

  56. 	{

    57. 

  57. 		$model = $this->loadModel();

    58. 

  58. 		$this->render('view',array(

    59. 

  59. 			'model'=>$model,

    60. 

  60. 		));

    61. 

  61. 	}

    62. 

  62. 

    63. 

  63. 	/**

    64. 

  64. 	 * Creates a new model.

    65. 

  65. 	 * If creation is successful, the browser will be redirected to the 'view' page.

    66. 

  66. 	 */

    67. 

  67. 	public function actionCreate()

    68. 

  68. 	{

    69. 

  69. 		$model=new User;

    70. 

  70. 		$profile=new Profile;

    71. 

  71. 		if(isset($_POST['User']))

    72. 

  72. 		{

    73. 

  73. 			$model->attributes=$_POST['User'];

    74. 

  74. 			$model->activkey=Yii::app()->controller->module->encrypting(microtime().$model->password);

    75. 

  75. 			$model->createtime=time();

    76. 

  76. 			$model->lastvisit=time();

    77. 

  77. 			$profile->attributes=$_POST['Profile'];

    78. 

  78. 			$profile->user_id=0;

    79. 

  79. 			if($model->validate()&&$profile->validate()) {

    80. 

  80. 				$model->password=Yii::app()->controller->module->encrypting($model->password);

    81. 

  81. 				if($model->save()) {

    82. 

  82. 					$profile->user_id=$model->id;

    83. 

  83. 					$profile->save();

    84. 

  84. 				}

    85. 

  85. 				$this->redirect(array('view','id'=>$model->id));

    86. 

  86. 			} else $profile->validate();

    87. 

  87. 		}

    88. 

  88. 

    89. 

  89. 		$this->render('create',array(

    90. 

  90. 			'model'=>$model,

    91. 

  91. 			'profile'=>$profile,

    92. 

  92. 		));

    93. 

  93. 	}

    94. 

  94. 

    95. 

  95. 	/**

    96. 

  96. 	 * Updates a particular model.

    97. 

  97. 	 * If update is successful, the browser will be redirected to the 'view' page.

    98. 

  98. 	 */

    99. 

  99. 	public function actionUpdate()

    100. 

  100. 	{

    101. 

  101. 		$model=$this->loadModel();

    102. 

  102. 		$profile=$model->profile;

    103. 

  103. 		if(isset($_POST['User']))

    104. 

  104. 		{

    105. 

  105. 			$model->attributes=$_POST['User'];

    106. 

  106. 			$profile->attributes=$_POST['Profile'];

    107. 

  107. 			

    108. 

  108. 			if($model->validate()&&$profile->validate()) {

    109. 

  109. 				$old_password = User::model()->notsafe()->findByPk($model->id);

    110. 

  110. 				if ($old_password->password!=$model->password) {

    111. 

  111. 					$model->password=Yii::app()->controller->module->encrypting($model->password);

    112. 

  112. 					$model->activkey=Yii::app()->controller->module->encrypting(microtime().$model->password);

    113. 

  113. 				}

    114. 

  114. 				$model->save();

    115. 

  115. 				$profile->save();

    116. 

  116. 				$this->redirect(array('view','id'=>$model->id));

    117. 

  117. 			} else $profile->validate();

    118. 

  118. 		}

    119. 

  119. 

    120. 

  120. 		$this->render('update',array(

    121. 

  121. 			'model'=>$model,

    122. 

  122. 			'profile'=>$profile,

    123. 

  123. 		));

    124. 

  124. 	}

    125. 

  125. 

    126. 

  126. 

    127. 

  127. 	/**

    128. 

  128. 	 * Deletes a particular model.

    129. 

  129. 	 * If deletion is successful, the browser will be redirected to the 'index' page.

    130. 

  130. 	 */

    131. 

  131. 	public function actionDelete()

    132. 

  132. 	{

    133. 

  133. 		if(Yii::app()->request->isPostRequest)

    134. 

  134. 		{

    135. 

  135. 			// we only allow deletion via POST request

    136. 

  136. 			$model = $this->loadModel();

    137. 

  137. 			$profile = Profile::model()->findByPk($model->id);

    138. 

  138. 			$profile->delete();

    139. 

  139. 			$model->delete();

    140. 

  140. 			// if AJAX request (triggered by deletion via admin grid view), we should not redirect the browser

    141. 

  141. 			if(!isset($_POST['ajax']))

    142. 

  142. 				$this->redirect(array('/user/admin'));

    143. 

  143. 		}

    144. 

  144. 		else

    145. 

  145. 			throw new CHttpException(400,'Invalid request. Please do not repeat this request again.');

    146. 

  146. 	}

    147. 

  147. 	

    148. 

  148. 	

    149. 

  149. 	/**

    150. 

  150. 	 * Returns the data model based on the primary key given in the GET variable.

    151. 

  151. 	 * If the data model is not found, an HTTP exception will be raised.

    152. 

  152. 	 */

    153. 

  153. 	public function loadModel()

    154. 

  154. 	{

    155. 

  155. 		if($this->_model===null)

    156. 

  156. 		{

    157. 

  157. 			if(isset($_GET['id']))

    158. 

  158. 				$this->_model=User::model()->notsafe()->findbyPk($_GET['id']);

    159. 

  159. 			if($this->_model===null)

    160. 

  160. 				throw new CHttpException(404,'The requested page does not exist.');

    161. 

  161. 		}

    162. 

  162. 		return $this->_model;

    163. 

  163. 	}

    164. 

  164. 	

    165. 

  165. }
    166.