new StringType('username', 32), 'email' => new StringType('email', 64, true), 'password' => new StringType('password'), 'confirmPassword' => new StringType('confirmPassword'), )); $this->csrfTokenRequired = true; $this->loginRequired = true; $this->requiredGroup = USER_GROUP_ADMIN; } public function execute($values = array()) { if(!parent::execute($values)) { return false; } $username = $this->getParam('username'); $email = $this->getParam('email'); if(!$this->userExists($username, $email) || !$this->success) { return false; } $password = $this->getParam('password'); $confirmPassword = $this->getParam('confirmPassword'); if($password !== $confirmPassword) { return false; } $sql = $this->user->getSQL(); $this->success = $this->createUser($username, $email, $password); return $this->success; } private function userExists($username, $email){ $sql = $this->user->getSQL(); $res = $sql->select("User.name", "User.email") ->from("User") ->where(new Compare("User.name", $username), new Compare("User.email",$email)) ->execute(); $this->success = ($res !== FALSE); $this->lastError = $sql->getLastError(); if($res !== 0) { $this->success = false; $row = $res[0]; $message = ""; if (strcmp($username,row['name']) != 0 && strcmp($email, row['email']) != 0) { $message = "Username and email are already taken"; }else if (strcmp($username,row['name']) != 0) { $message = "Username is already taken"; }else{ $message = "Email is already taken"; } $this->lastError = $message; return true; } return false; } private function createUser($username, $email, $password){ $sql = $this->user->getSQL(); $salt = generateRandomString(16); $hash = hash('sha256', $password . $salt); $res = $sql->insert("User",array( 'username' => $username, 'password' => $hash, 'email' => $email ))->execute(); $this->lastError = $sql->getLastError(); return $res === TRUE; } }