User edition
Added forms that allow user display names to be set and passwords to be changed. All users can modify users at this time.
This commit is contained in:
parent
ad4071b4e8
commit
9cc43ea4fe
4 changed files with 236 additions and 48 deletions
includes/t-basics
|
|
@ -15,6 +15,25 @@ class Dao_Users
|
|||
return $hash;
|
||||
}
|
||||
|
||||
private function hashNewPassword( $password )
|
||||
{
|
||||
$iterations = rand( 130 , 160 );
|
||||
|
||||
$randSource = array( );
|
||||
for ( $i = 0 ; $i < 26 ; $i ++ ) {
|
||||
array_push( $randSource , chr( $i + ord( 'a' ) ) );
|
||||
array_push( $randSource , chr( $i + ord( 'A' ) ) );
|
||||
if ( $i < 10 ) {
|
||||
array_push( $randSource , chr( $i + 48 ) );
|
||||
}
|
||||
}
|
||||
shuffle( $randSource );
|
||||
$salt = join( '' , array_splice( $randSource , 0 , 4 ) );
|
||||
|
||||
$hash = $this->hashPassword( $password , $salt , $iterations );
|
||||
return array( $iterations , $salt , $hash );
|
||||
}
|
||||
|
||||
|
||||
public function getUsers( )
|
||||
{
|
||||
|
|
@ -25,9 +44,20 @@ class Dao_Users
|
|||
}
|
||||
|
||||
|
||||
public function getUserById( $uid )
|
||||
{
|
||||
$query = $this->query( 'SELECT * FROM users_view WHERE user_id = $1' );
|
||||
$results = $query->execute( $uid );
|
||||
if ( empty( $results ) ) {
|
||||
return null;
|
||||
}
|
||||
return array_shift( $results );
|
||||
}
|
||||
|
||||
|
||||
public function getUser( $email )
|
||||
{
|
||||
$query = $this->query( 'SELECT * FROM users WHERE user_email = LOWER( $1 )' );
|
||||
$query = $this->query( 'SELECT * FROM users_view WHERE user_email = LOWER( $1 )' );
|
||||
$results = $query->execute( $email );
|
||||
if ( empty( $results ) ) {
|
||||
return null;
|
||||
|
|
@ -53,21 +83,7 @@ class Dao_Users
|
|||
|
||||
public function addUser( $email , $password , $name )
|
||||
{
|
||||
$iterations = rand( 130 , 160 );
|
||||
|
||||
$randSource = array( );
|
||||
for ( $i = 0 ; $i < 26 ; $i ++ ) {
|
||||
array_push( $randSource , chr( $i + ord( 'a' ) ) );
|
||||
array_push( $randSource , chr( $i + ord( 'A' ) ) );
|
||||
if ( $i < 10 ) {
|
||||
array_push( $randSource , chr( $i + 48 ) );
|
||||
}
|
||||
}
|
||||
shuffle( $randSource );
|
||||
$salt = join( '' , array_splice( $randSource , 0 , 4 ) );
|
||||
|
||||
$hash = $this->hashPassword( $password , $salt , $iterations );
|
||||
|
||||
list( $iterations , $salt , $hash ) = $this->hashNewPassword( $password );
|
||||
$result = $this->query( 'SELECT users_add( $1 , $2 , $3 , $4 , $5 ) AS error' )
|
||||
->execute( $email , $salt , $iterations , $hash , $name );
|
||||
return $result[ 0 ]->error;
|
||||
|
|
@ -79,4 +95,23 @@ class Dao_Users
|
|||
$result = $this->query( 'SELECT COUNT(*) AS n_users FROM users' )->execute( );
|
||||
return $result[0]->n_users > 0;
|
||||
}
|
||||
|
||||
|
||||
public function modify( $id , $email , $name )
|
||||
{
|
||||
$result = $this->query( 'SELECT users_edit( $1 , $2 , $3 ) AS error'
|
||||
)->execute( $id , $email , $name );
|
||||
return $result[0]->error;
|
||||
}
|
||||
|
||||
|
||||
public function setPassword( $id , $password )
|
||||
{
|
||||
list( $iterations , $salt , $hash ) = $this->hashNewPassword( $password );
|
||||
$this->query(
|
||||
'UPDATE users '
|
||||
. 'SET user_iterations = $1 , user_salt = $2 , user_hash = $3 '
|
||||
. 'WHERE user_id = $4'
|
||||
)->execute( $iterations , $salt , $hash , $id );
|
||||
}
|
||||
}
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue