/store/catalog/controller/account/login.php

https://github.com/elleeott/WPOC-boilerplate · PHP · 132 lines · 101 code · 28 blank · 3 comment · 24 complexity · cee0c120613d30740915f47fa6ba3a16 MD5 · raw file 

    

  1. <?php 

    2. 

  2. class ControllerAccountLogin extends Controller {

    3. 

  3. 	private $error = array();

    4. 

  4. 	

    5. 

  5. 	public function index() {

    6. 

  6. 		// Login override for admin users

    7. 

  7. 		if (!empty($this->request->get['token'])) {

    8. 

  8. 			$this->customer->logout();

    9. 

  9. 			

    10. 

  10. 			$this->load->model('account/customer');

    11. 

  11. 			

    12. 

  12. 			$customer_info = $this->model_account_customer->getCustomerByToken($this->request->get['token']);

    13. 

  13. 			

    14. 

  14. 		 	if ($customer_info && $this->customer->login($customer_info['email'], '', true)) {

    15. 

  15. 				$this->redirect($this->url->link('account/account', '', 'SSL')); 

    16. 

  16. 			}

    17. 

  17. 		}		

    18. 

  18. 		

    19. 

  19. 		if ($this->customer->isLogged()) {  

    20. 

  20.       		$this->redirect($this->url->link('account/account', '', 'SSL'));

    21. 

  21.     	}

    22. 

  22. 	

    23. 

  23.     	$this->language->load('account/login');

    24. 

  24. 

    25. 

  25.     	$this->document->setTitle($this->language->get('heading_title'));

    26. 

  26. 								

    27. 

  27. 		if (($this->request->server['REQUEST_METHOD'] == 'POST') && $this->validate()) {

    28. 

  28. 			unset($this->session->data['guest']);

    29. 

  29. 			

    30. 

  30. 			// Added strpos check to pass McAfee PCI compliance test (http://forum.opencart.com/viewtopic.php?f=10&t=12043&p=151494#p151295)

    31. 

  31. 			if (isset($this->request->post['redirect']) && (strpos($this->request->post['redirect'], HTTP_SERVER) !== false || strpos($this->request->post['redirect'], HTTPS_SERVER) !== false)) {

    32. 

  32. 				$this->redirect(str_replace('&amp;', '&', $this->request->post['redirect']));

    33. 

  33. 			} else {

    34. 

  34. 				$this->redirect($this->url->link('account/account', '', 'SSL')); 

    35. 

  35. 			}

    36. 

  36.     	}  

    37. 

  37. 		

    38. 

  38.       	$this->data['breadcrumbs'] = array();

    39. 

  39. 

    40. 

  40.       	$this->data['breadcrumbs'][] = array(

    41. 

  41.         	'text'      => $this->language->get('text_home'),

    42. 

  42. 			'href'      => $this->url->link('common/home'),       	

    43. 

  43.         	'separator' => false

    44. 

  44.       	);

    45. 

  45.   

    46. 

  46.       	$this->data['breadcrumbs'][] = array(

    47. 

  47.         	'text'      => $this->language->get('text_account'),

    48. 

  48. 			'href'      => $this->url->link('account/account', '', 'SSL'),

    49. 

  49.         	'separator' => $this->language->get('text_separator')

    50. 

  50.       	);

    51. 

  51. 		

    52. 

  52.       	$this->data['breadcrumbs'][] = array(

    53. 

  53.         	'text'      => $this->language->get('text_login'),

    54. 

  54. 			'href'      => $this->url->link('account/login', '', 'SSL'),      	

    55. 

  55.         	'separator' => $this->language->get('text_separator')

    56. 

  56.       	);

    57. 

  57. 				

    58. 

  58.     	$this->data['heading_title'] = $this->language->get('heading_title');

    59. 

  59. 

    60. 

  60.     	$this->data['text_new_customer'] = $this->language->get('text_new_customer');

    61. 

  61.     	$this->data['text_register'] = $this->language->get('text_register');

    62. 

  62.     	$this->data['text_register_account'] = $this->language->get('text_register_account');

    63. 

  63. 		$this->data['text_returning_customer'] = $this->language->get('text_returning_customer');

    64. 

  64. 		$this->data['text_i_am_returning_customer'] = $this->language->get('text_i_am_returning_customer');

    65. 

  65.     	$this->data['text_forgotten'] = $this->language->get('text_forgotten');

    66. 

  66. 

    67. 

  67.     	$this->data['entry_email'] = $this->language->get('entry_email');

    68. 

  68.     	$this->data['entry_password'] = $this->language->get('entry_password');

    69. 

  69. 

    70. 

  70.     	$this->data['button_continue'] = $this->language->get('button_continue');

    71. 

  71. 		$this->data['button_login'] = $this->language->get('button_login');

    72. 

  72. 

    73. 

  73. 		if (isset($this->error['warning'])) {

    74. 

  74. 			$this->data['error_warning'] = $this->error['warning'];

    75. 

  75. 		} else {

    76. 

  76. 			$this->data['error_warning'] = '';

    77. 

  77. 		}

    78. 

  78. 		

    79. 

  79. 		$this->data['action'] = $this->url->link('account/login', '', 'SSL');

    80. 

  80. 		$this->data['register'] = $this->url->link('account/register', '', 'SSL');

    81. 

  81. 		$this->data['forgotten'] = $this->url->link('account/forgotten', '', 'SSL');

    82. 

  82. 

    83. 

  83.     	// Added strpos check to pass McAfee PCI compliance test (http://forum.opencart.com/viewtopic.php?f=10&t=12043&p=151494#p151295)

    84. 

  84. 		if (isset($this->request->post['redirect']) && (strpos($this->request->post['redirect'], HTTP_SERVER) !== false || strpos($this->request->post['redirect'], HTTPS_SERVER) !== false)) {

    85. 

  85. 			$this->data['redirect'] = $this->request->post['redirect'];

    86. 

  86. 		} elseif (isset($this->session->data['redirect'])) {

    87. 

  87.       		$this->data['redirect'] = $this->session->data['redirect'];

    88. 

  88. 	  		

    89. 

  89. 			unset($this->session->data['redirect']);		  	

    90. 

  90.     	} else {

    91. 

  91. 			$this->data['redirect'] = '';

    92. 

  92. 		}

    93. 

  93. 

    94. 

  94. 		if (isset($this->session->data['success'])) {

    95. 

  95.     		$this->data['success'] = $this->session->data['success'];

    96. 

  96.     

    97. 

  97. 			unset($this->session->data['success']);

    98. 

  98. 		} else {

    99. 

  99. 			$this->data['success'] = '';

    100. 

  100. 		}

    101. 

  101. 

    102. 

  102. 		if (file_exists(DIR_TEMPLATE . $this->config->get('config_template') . '/template/account/login.tpl')) {

    103. 

  103. 			$this->template = $this->config->get('config_template') . '/template/account/login.tpl';

    104. 

  104. 		} else {

    105. 

  105. 			$this->template = 'default/template/account/login.tpl';

    106. 

  106. 		}

    107. 

  107. 		

    108. 

  108. 		$this->children = array(

    109. 

  109. 			'common/column_left',

    110. 

  110. 			'common/column_right',

    111. 

  111. 			'common/content_top',

    112. 

  112. 			'common/content_bottom',

    113. 

  113. 			'common/footer',

    114. 

  114. 			'common/header'	

    115. 

  115. 		);

    116. 

  116. 						

    117. 

  117. 		$this->response->setOutput($this->render());

    118. 

  118.   	}

    119. 

  119.   

    120. 

  120.   	private function validate() {

    121. 

  121.     	if (!$this->customer->login($this->request->post['email'], $this->request->post['password'])) {

    122. 

  122.       		$this->error['warning'] = $this->language->get('error_login');

    123. 

  123.     	}

    124. 

  124. 	

    125. 

  125.     	if (!$this->error) {

    126. 

  126.       		return true;

    127. 

  127.     	} else {

    128. 

  128.       		return false;

    129. 

  129.     	}  	

    130. 

  130.   	}

    131. 

  131. }

    132. 

  132. ?>
    133.