bludit/bl-kernel/dbusers.class.php

227 lines
5.1 KiB
PHP
Raw Normal View History

2015-05-05 03:00:01 +02:00
<?php defined('BLUDIT') or die('Bludit CMS.');
class dbUsers extends dbJSON
{
public $dbFields = array(
'firstName'=> array('inFile'=>false, 'value'=>''),
'lastName'=> array('inFile'=>false, 'value'=>''),
'username'=> array('inFile'=>false, 'value'=>''),
'role'=> array('inFile'=>false, 'value'=>'editor'),
'password'=> array('inFile'=>false, 'value'=>''),
'salt'=> array('inFile'=>false, 'value'=>'!Pink Floyd!Welcome to the machine!'),
'email'=> array('inFile'=>false, 'value'=>''),
'registered'=> array('inFile'=>false, 'value'=>'1985-03-15 10:00'),
'tokenEmail'=> array('inFile'=>false, 'value'=>''),
'tokenEmailTTL'=> array('inFile'=>false, 'value'=>'2009-03-15 14:00'),
'tokenAuth'=> array('inFile'=>false, 'value'=>''),
'tokenAuthTTL'=> array('inFile'=>false, 'value'=>'2009-03-15 14:00'),
2016-02-14 01:15:19 +01:00
'twitter'=> array('inFile'=>false, 'value'=>''),
'facebook'=> array('inFile'=>false, 'value'=>''),
'googlePlus'=> array('inFile'=>false, 'value'=>''),
'instagram'=> array('inFile'=>false, 'value'=>'')
2015-05-05 03:00:01 +02:00
);
function __construct()
{
parent::__construct(DB_USERS);
2015-05-05 03:00:01 +02:00
}
// Disable the user
public function disableUser($username)
2016-01-01 00:31:51 +01:00
{
$args['username'] = $username;
$args['password'] = '!';
2016-01-01 00:31:51 +01:00
return $this->set($args);
}
// Return TRUE if the user exists, FALSE otherwise
public function exists($username)
{
return isset($this->db[$username]);
}
// Set the parameters of a user
public function set($args)
{
// Current database of the user
$user = $this->db[$args['username']];
// Verify arguments with the database fields
foreach($args as $field=>$value) {
if( isset($this->dbFields[$field]) ) {
$value = Sanitize::html($value);
settype($value, gettype($this->dbFields[$field]['value']));
$user[$field] = $value;
}
}
// Save the database
$this->db[$args['username']] = $user;
return $this->save();
}
// Delete an user
public function delete($username)
{
unset($this->db[$username]);
return $this->save();
}
public function getUser($username)
{
if($this->userExists($username)) {
$User = new User();
2016-01-01 00:31:51 +01:00
$User->setField('username', $username);
foreach($this->db[$username] as $key=>$value) {
$User->setField($key, $value);
}
return $User;
}
return false;
}
// ---- OLD
// Returns array with the username databases filtered by username, FALSE otherwise
2015-07-15 01:57:18 +02:00
public function getDb($username)
2015-05-05 03:00:01 +02:00
{
if($this->userExists($username)) {
2015-05-05 03:00:01 +02:00
$user = $this->db[$username];
return $user;
}
return false;
}
public function getAll()
{
return $this->db;
}
2015-10-24 01:23:33 +02:00
// Return the username associated to an email, if the email does not exists return FALSE.
2015-10-20 05:14:28 +02:00
public function getByEmail($email)
{
2015-10-24 01:23:33 +02:00
foreach($this->db as $username=>$values) {
if($values['email']==$email) {
return $username;
2015-10-20 05:14:28 +02:00
}
}
return false;
}
// Returns the username with the authentication token assigned, FALSE otherwise
public function getByAuthToken($token)
{
foreach($this->db as $username=>$fields) {
if($fields['tokenAuth']==$token) {
return $username;
}
}
return false;
}
2015-05-05 03:00:01 +02:00
// Return TRUE if the user exists, FALSE otherwise.
public function userExists($username)
{
return isset($this->db[$username]);
}
2015-10-20 05:14:28 +02:00
public function generateTokenEmail($username)
{
// Random hash
$token = sha1(Text::randomText(SALT_LENGTH).time());
$this->db[$username]['tokenEmail'] = $token;
2015-10-24 01:23:33 +02:00
// Token time to live, defined by TOKEN_EMAIL_TTL
$this->db[$username]['tokenEmailTTL'] = Date::currentOffset(DB_DATE_FORMAT, TOKEN_EMAIL_TTL);
2015-10-20 05:14:28 +02:00
// Save the database
if( $this->save() === false ) {
Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to save the database file.');
return false;
}
return $token;
}
public function setPassword($username, $password)
2015-06-10 00:55:23 +02:00
{
$salt = Text::randomText(SALT_LENGTH);
2015-10-19 00:45:58 +02:00
$hash = sha1($password.$salt);
2015-06-10 00:55:23 +02:00
2015-10-20 05:14:28 +02:00
$args['username'] = $username;
$args['salt'] = $salt;
$args['password'] = $hash;
2015-06-10 00:55:23 +02:00
return $this->set($args);
}
2016-09-07 02:14:57 +02:00
2015-05-15 00:07:45 +02:00
2015-05-05 03:00:01 +02:00
2015-07-22 05:15:02 +02:00
2015-05-05 03:00:01 +02:00
public function add($args)
{
$dataForDb = array();
// Verify arguments with the database fields.
foreach($this->dbFields as $field=>$options)
{
// If the user send the field.
if( isset($args[$field]) )
{
2015-05-15 00:07:45 +02:00
// Sanitize if will be saved on database.
if( !$options['inFile'] ) {
2015-05-05 03:00:01 +02:00
$tmpValue = Sanitize::html($args[$field]);
}
else {
$tmpValue = $args[$field];
}
}
// Uses a default value for the field.
else
{
$tmpValue = $options['value'];
}
2015-05-15 00:07:45 +02:00
// Set type
settype($tmpValue, gettype($options['value']));
// Save on database
2015-05-05 03:00:01 +02:00
$dataForDb[$field] = $tmpValue;
}
// Check if the user alredy exists.
if( $this->userExists($dataForDb['username']) ) {
return false;
}
2015-08-26 05:42:32 +02:00
// Current date.
$dataForDb['registered'] = Date::current(DB_DATE_FORMAT);
2015-05-05 03:00:01 +02:00
// Password
2015-05-31 03:06:55 +02:00
$dataForDb['salt'] = Text::randomText(SALT_LENGTH);
2015-05-05 03:00:01 +02:00
$dataForDb['password'] = sha1($dataForDb['password'].$dataForDb['salt']);
// Save the database
$this->db[$dataForDb['username']] = $dataForDb;
2015-05-15 00:07:45 +02:00
if( $this->save() === false ) {
Log::set(__METHOD__.LOG_SEP.'Error occurred when trying to save the database file.');
return false;
}
2015-05-05 03:00:01 +02:00
return true;
}
}