PageRenderTime 46ms CodeModel.GetById 21ms RepoModel.GetById 0ms app.codeStats 0ms

/application/admin/controllers/AuthController.php

http://digitalus-site-manager.googlecode.com/
PHP | 139 lines | 86 code | 16 blank | 37 comment | 17 complexity | 94f29b0412128fa8eb050f4c87b3aa15 MD5 | raw file
Possible License(s): BSD-3-Clause, LGPL-2.1 
    

  1. <?php

    2. 

  2. /**

    3. 

  3.  * DSF CMS

    4. 

  4.  *

    5. 

  5.  * LICENSE

    6. 

  6.  *

    7. 

  7.  * This source file is subject to the new BSD license that is bundled

    8. 

  8.  * with this package in the file LICENSE.txt.

    9. 

  9.  * It is also available through the world-wide-web at this URL:

    10. 

  10.  * http://digitalus-media.com/license/new-bsd

    11. 

  11.  * If you did not receive a copy of the license and are unable to

    12. 

  12.  * obtain it through the world-wide-web, please send an email

    13. 

  13.  * to info@digitalus-media.com so we can send you a copy immediately.

    14. 

  14.  *

    15. 

  15.  * @category   DSF CMS

    16. 

  16.  * @package    DSF_CMS_Controllers

    17. 

  17.  * @copyright  Copyright (c) 2007 - 2008,  Digitalus Media USA (digitalus-media.com)

    18. 

  18.  * @license    http://digitalus-media.com/license/new-bsd     New BSD License

    19. 

  19.  * @version    $Id: AuthController.php Mon Dec 24 20:48:35 EST 2007 20:48:35 forrest lyman $

    20. 

  20.  */

    21. 

  21. 

    22. 

  22. class Admin_AuthController extends Zend_Controller_Action

    23. 

  23. {

    24. 

  24. 	

    25. 

  25. 	function init()

    26. 

  26. 	{

    27. 

  27. 	    $this->view->breadcrumbs = array(

    28. 

  28. 	       $this->view->GetTranslation('Login') =>   '/admin/auth/login'

    29. 

  29. 	    );

    30. 

  30. 	}

    31. 

  31. 	

    32. 

  32.     /**

    33. 

  33.      * if the form has not been submitted this renders the login form

    34. 

  34.      * if it has then it validates the data

    35. 

  35.      * if it is sound then it runs the DSF_Auth_Adapter function

    36. 

  36.      * to authorise the request

    37. 

  37.      * on success it redirct to the admin home page

    38. 

  38.      *

    39. 

  39.      */

    40. 

  40. 	function loginAction()

    41. 

  41.     {

    42. 

  42.         if ($this->_request->isPost()) {

    43. 

  43.             $username = DSF_Filter_Post::get('adminUsername');

    44. 

  44.             $password = DSF_Filter_Post::raw('adminPassword');

    45. 

  45. 

    46. 

  46. 			$e = new DSF_View_Error();

    47. 

  47.             

    48. 

  48.             if($username == ''){

    49. 

  49.                 $e->add($this->view->GetTranslation("You must enter a username."));

    50. 

  50.             }

    51. 

  51.             if($password == ''){

    52. 

  52.                 $e->add($this->view->GetTranslation("You must enter a password."));

    53. 

  53.             }

    54. 

  54.             

    55. 

  55.             

    56. 

  56.             if (!$e->hasErrors()) {        

    57. 

  57.                 $auth = new DSF_Auth($username, $password);

    58. 

  58.                 $result = $auth->authenticate();

    59. 

  59.                 Zend_Debug::dump($result);

    60. 

  60.                 if($result){    

    61. 

  61.                 	$url = DSF_Filter_Post::get('uri');

    62. 

  62.                 	if($url == '' || $url == '/admin/auth/login'){

    63. 

  63.                     	$url = '/admin';

    64. 

  64.                 	}

    65. 

  65.                 }else{

    66. 

  66. 					$e = new DSF_View_Error();

    67. 

  67. 					$e->add($this->view->GetTranslation('The username or password you entered was not correct.'));

    68. 

  68. 					$url = "/admin/auth/login";

    69. 

  69.                 }

    70. 

  70.              

    71. 

  71.             }else{

    72. 

  72. 					$url = "/admin/auth/login";                

    73. 

  73.             }

    74. 

  74. 			$this->_redirect($url);

    75. 

  75.         }

    76. 

  76.                     

    77. 

  77.     }

    78. 

  78.     

    79. 

  79. 	/**

    80. 

  80. 	 * kills the authorized user object

    81. 

  81. 	 * then redirects to the main index page

    82. 

  82. 	 *

    83. 

  83. 	 */

    84. 

  84. 	function logoutAction()

    85. 

  85. 	{

    86. 

  86. 		DSF_Auth::destroy();

    87. 

  87. 		$this->_redirect("/");

    88. 

  88. 	}

    89. 

  89. 	

    90. 

  90. 	function resetPasswordAction()

    91. 

  91. 	{

    92. 

  92. 		if (strtolower($_SERVER["REQUEST_METHOD"]) == "post") {

    93. 

  93. 			$email = DSF_Filter_Post::get('email');  

    94. 

  94. 			$user = new User();      		

    95. 

  95. 			$match = $user->getUserByUsername($email);

    96. 

  96.     		if($match){

    97. 

  97.     			//create the password

    98. 

  98.     			$password = DSF_Toolbox_String::random(10); //10 character random string

    99. 

  99. 

    100. 

  100.     			//load the email data

    101. 

  101.     			$data['first_name'] = $match->first_name;

    102. 

  102.     			$data['last_name'] = $match->last_name;

    103. 

  103.     			$data['username'] = $match->email;

    104. 

  104.     			$data['password'] = $password;

    105. 

  105.     			

    106. 

  106.     			//get standard site settings

    107. 

  107.                 $s = new SiteSettings();

    108. 

  108.                 $settings = $s->toObject();

    109. 

  109.                 

    110. 

  110.                 //attempt to send the email 

    111. 

  111.                 $mail = new DSF_Mail();               

    112. 

  112.                 if($mail->send($match->email, array($sender), "Password Reminder", 'passwordReminder', $data))

    113. 

  113.                 {            

    114. 

  114.     	            //update the user's password

    115. 

  115.     	            $match->password = md5($password);

    116. 

  116.     	            $match->save();//save the new password

    117. 

  117.     	            $m = new DSF_View_Message();

    118. 

  118.     	            $m->add(

    119. 

  119.     	            	$this->view->GetTranslation("Your password has been reset for security and sent to your email address")

    120. 

  120.    	            	);

    121. 

  121.                 }else{

    122. 

  122.                     $e = new DSF_View_Error();

    123. 

  123.                     $e->add(

    124. 

  124.                     	$this->view->GetTranslation("Sorry, there was an error sending you your updated password.  Please contact us for more help.")

    125. 

  125.                    	);

    126. 

  126.                 }	            

    127. 

  127.     		}else{

    128. 

  128. 	            $e = new DSF_View_Error();

    129. 

  129. 	            $e->add(

    130. 

  130. 	            	$this->view->GetTranslation("Sorry, we could not locate your account. Please contact us to resolve this issue.")

    131. 

  131.             	);

    132. 

  132.     		}

    133. 

  133.   		$url =  "/admin/auth/login";

    134. 

  134. 		$this->_redirect($url);

    135. 

  135. 			

    136. 

  136. 		 }

    137. 

  137. 	}

    138. 

  138. 

    139. 

  139. }
    140.