2020-06-20 15:49:53 +02:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
2022-11-18 18:06:46 +01:00
|
|
|
namespace Core\Documents;
|
2020-06-20 15:49:53 +02:00
|
|
|
|
2022-11-18 18:06:46 +01:00
|
|
|
use Core\Elements\TemplateDocument;
|
|
|
|
use Core\Objects\Router\Router;
|
2020-06-20 15:49:53 +02:00
|
|
|
|
|
|
|
|
2021-12-08 16:53:43 +01:00
|
|
|
class Account extends TemplateDocument {
|
2022-06-01 12:28:50 +02:00
|
|
|
public function __construct(Router $router, string $templateName) {
|
|
|
|
parent::__construct($router, $templateName);
|
2022-08-20 22:17:17 +02:00
|
|
|
$this->title = "Account";
|
|
|
|
$this->searchable = false;
|
2021-12-08 16:53:43 +01:00
|
|
|
$this->enableCSP();
|
2020-06-20 15:49:53 +02:00
|
|
|
}
|
|
|
|
|
2021-12-08 16:53:43 +01:00
|
|
|
private function createError(string $message) {
|
|
|
|
$this->parameters["view"]["success"] = false;
|
|
|
|
$this->parameters["view"]["message"] = $message;
|
|
|
|
}
|
2020-07-01 22:13:50 +02:00
|
|
|
|
2021-12-08 16:53:43 +01:00
|
|
|
protected function loadParameters() {
|
|
|
|
$this->parameters["view"] = ["success" => true];
|
|
|
|
if ($this->getTemplateName() === "account/reset_password.twig") {
|
|
|
|
if (isset($_GET["token"]) && is_string($_GET["token"]) && !empty($_GET["token"])) {
|
|
|
|
$this->parameters["view"]["token"] = $_GET["token"];
|
2022-11-18 18:06:46 +01:00
|
|
|
$req = new \Core\API\User\CheckToken($this->getContext());
|
2021-12-08 16:53:43 +01:00
|
|
|
$this->parameters["view"]["success"] = $req->execute(array("token" => $_GET["token"]));
|
|
|
|
if ($this->parameters["view"]["success"]) {
|
|
|
|
if (strcmp($req->getResult()["token"]["type"], "password_reset") !== 0) {
|
|
|
|
$this->createError("The given token has a wrong type.");
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
$this->createError("Error requesting password reset: " . $req->getLastError());
|
|
|
|
}
|
|
|
|
}
|
|
|
|
} else if ($this->getTemplateName() === "account/register.twig") {
|
2022-06-01 12:28:50 +02:00
|
|
|
$settings = $this->getSettings();
|
2022-06-20 19:52:31 +02:00
|
|
|
if ($this->getUser()) {
|
2021-12-08 16:53:43 +01:00
|
|
|
$this->createError("You are already logged in.");
|
|
|
|
} else if (!$settings->isRegistrationAllowed()) {
|
|
|
|
$this->createError("Registration is not enabled on this website.");
|
|
|
|
}
|
2022-06-20 19:52:31 +02:00
|
|
|
} else if ($this->getTemplateName() === "account/login.twig" && $this->getUser()) {
|
2022-02-21 14:04:49 +01:00
|
|
|
header("Location: /admin");
|
|
|
|
exit();
|
2021-12-08 16:53:43 +01:00
|
|
|
} else if ($this->getTemplateName() === "account/accept_invite.twig") {
|
|
|
|
if (isset($_GET["token"]) && is_string($_GET["token"]) && !empty($_GET["token"])) {
|
|
|
|
$this->parameters["view"]["token"] = $_GET["token"];
|
2022-11-18 18:06:46 +01:00
|
|
|
$req = new \Core\API\User\CheckToken($this->getContext());
|
2021-12-08 16:53:43 +01:00
|
|
|
$this->parameters["view"]["success"] = $req->execute(array("token" => $_GET["token"]));
|
|
|
|
if ($this->parameters["view"]["success"]) {
|
|
|
|
if (strcmp($req->getResult()["token"]["type"], "invite") !== 0) {
|
|
|
|
$this->createError("The given token has a wrong type.");
|
|
|
|
} else {
|
|
|
|
$this->parameters["view"]["invited_user"] = $req->getResult()["user"];
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
$this->createError("Error confirming e-mail address: " . $req->getLastError());
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
$this->createError("The link you visited is no longer valid");
|
2020-06-20 15:49:53 +02:00
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|