diff options
| author | n-peugnet <n.peugnet@free.fr> | 2019-11-04 23:31:31 +0100 |
|---|---|---|
| committer | n-peugnet <n.peugnet@free.fr> | 2019-11-05 19:06:40 +0100 |
| commit | e802d5204b96d645ec3d40b81b4a8bdc6e0ee675 (patch) | |
| tree | 8e6db5e36ad8f247b442583e1e9e5da2934f4b52 /app/class/Controlleruser.php | |
| parent | f1f63f556c41c99d45cd610186b0982383eff375 (diff) | |
| download | wcms-e802d5204b96d645ec3d40b81b4a8bdc6e0ee675.tar.gz wcms-e802d5204b96d645ec3d40b81b4a8bdc6e0ee675.zip | |
refactor: switch to psr-4 autoloading
Diffstat (limited to 'app/class/Controlleruser.php')
| -rw-r--r-- | app/class/Controlleruser.php | 117 |
1 files changed, 117 insertions, 0 deletions
diff --git a/app/class/Controlleruser.php b/app/class/Controlleruser.php new file mode 100644 index 0000000..3856914 --- /dev/null +++ b/app/class/Controlleruser.php @@ -0,0 +1,117 @@ +<?php + +namespace Wcms; + +class Controlleruser extends Controller +{ + + public function __construct($router) { + parent::__construct($router); + } + + public function desktop() + { + if($this->user->iseditor()) { + $getuser = $this->usermanager->get($this->user); + if($this->user->isadmin()) { + $userlist = $this->usermanager->getlister(); + $this->showtemplate('user', ['userlist' => $userlist, 'getuser' => $getuser, 'now' => $this->now->format('Y-m-d')]); + } else { + $this->showtemplate('user', ['getuser' => $getuser]); + } + } else { + $this->routedirect('home'); + } + } + + + public function pref() + { + if($this->user->iseditor()) { + $user = $this->usermanager->get($this->user); + $user->hydrate($_POST); + $this->usermanager->add($user); + $this->routedirect('user'); + } else { + $this->routedirect('home'); + } + } + + + + + + public function add() + { + if(isset($_POST['id'])) { + $user = new User($_POST); + if(empty($user->id()) || $this->usermanager->get($user)) { + $this->routedirectget('user', ['error' => 'wrong_id']); + } elseif(empty($user->password()) || $this->usermanager->passwordexist($user->password()) || !$user->validpassword()) { + $this->routedirectget('user', ['error' => 'change_password']); + } else { + if($user->passwordhashed()) { + $user->hashpassword(); + } + $this->usermanager->add($user); + $this->routedirect('user'); + } + } + } + + public function update() + { + if($this->user->isadmin() && isset($_POST['action'])) { + switch ($_POST['action']) { + case 'delete': + $user = new User($_POST); + $user = $this->usermanager->get($user); + if($user !== false) { + if($user->id() === $this->user->id()) { + $this->showtemplate('userconfirmdelete', ['userdelete' => $user, 'candelete' => false]); + } else { + $this->showtemplate('userconfirmdelete', ['userdelete' => $user, 'candelete' => true]); + } + } else { + $this->routedirect('user'); + } + break; + + case 'confirmdelete': + $user = new User($_POST); + $this->usermanager->delete($user); + $this->routedirect('user'); + break; + + case 'update': + $user = $this->usermanager->get($_POST['id']); + $userupdate = clone $user; + $userupdate->hydrate($_POST); + if(empty($userupdate->id())) { + $this->routedirectget('user', ['error' => 'wrong_id']); + } elseif (!empty($_POST['password']) && (empty($userupdate->password()) || $this->usermanager->passwordexist($userupdate->password()) || !$userupdate->validpassword())) { + $this->routedirectget('user', ['error' => 'password_unvalid']); + } elseif (empty($userupdate->level())) { + $this->routedirectget('user', ['error' => 'wrong_level']); + } elseif ($user->level() === 10 && $userupdate->level() !== 10 && $this->user->id() === $user->id()) { + $this->routedirectget('user', ['error' => 'cant_edit_yourself']); + } else { + if($userupdate->password() !== $user->password() && $user->passwordhashed()) { + $userupdate->setpasswordhashed(false); + } + if($userupdate->passwordhashed() && !$user->passwordhashed()) { + $userupdate->hashpassword(); + } + $this->usermanager->add($userupdate); + $this->routedirect('user'); + } + } + } else { + $this->routedirect('home'); + } + } +} + + + +?>
\ No newline at end of file |