2007-07-19 10:40:28 +00:00
< ? php
2007-09-16 00:44:30 +00:00
/**
* The member class which represents the users of the system
2010-12-11 00:45:05 +00:00
*
2008-02-25 02:10:37 +00:00
* @ package sapphire
* @ subpackage security
2007-09-16 00:44:30 +00:00
*/
2007-07-19 10:40:28 +00:00
class Member extends DataObject {
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
static $db = array (
2009-02-01 23:49:53 +00:00
'FirstName' => 'Varchar' ,
'Surname' => 'Varchar' ,
2011-08-22 08:52:07 +02:00
'Email' => 'Varchar(256)' , // See RFC 5321, Section 4.5.3.1.3.
2009-11-06 02:23:21 +00:00
'Password' => 'Varchar(160)' ,
2010-12-09 08:17:35 +00:00
'RememberLoginToken' => 'Varchar(50)' ,
2009-02-01 23:49:53 +00:00
'NumVisit' => 'Int' ,
API CHANGE: Renamed conflicting classes to have an "SS_" namespace, and renamed existing "SS" namespace to "SS_". The affected classes are: HTTPRequest, HTTPResponse, Query, Database, SSBacktrace, SSCli, SSDatetime, SSDatetimeTest, SSLog, SSLogTest, SSLogEmailWriter, SSLogErrorEmailFormatter, SSLogErrorFileFormatter, SSLogFileWriter and SSZendLog.
MINOR: Replaced usage of renamed classes with the new namespaced name.
From: Andrew Short <andrewjshort@gmail.com>
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90075 467b73ca-7a2a-4603-9d3b-597d59a354a9
2009-10-26 03:06:31 +00:00
'LastVisited' => 'SS_Datetime' ,
2007-09-16 01:59:59 +00:00
'Bounced' => 'Boolean' , // Note: This does not seem to be used anywhere.
2010-12-09 08:17:35 +00:00
'AutoLoginHash' => 'Varchar(50)' ,
API CHANGE: Renamed conflicting classes to have an "SS_" namespace, and renamed existing "SS" namespace to "SS_". The affected classes are: HTTPRequest, HTTPResponse, Query, Database, SSBacktrace, SSCli, SSDatetime, SSDatetimeTest, SSLog, SSLogTest, SSLogEmailWriter, SSLogErrorEmailFormatter, SSLogErrorFileFormatter, SSLogFileWriter and SSZendLog.
MINOR: Replaced usage of renamed classes with the new namespaced name.
From: Andrew Short <andrewjshort@gmail.com>
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90075 467b73ca-7a2a-4603-9d3b-597d59a354a9
2009-10-26 03:06:31 +00:00
'AutoLoginExpired' => 'SS_Datetime' ,
2009-11-06 02:23:21 +00:00
// This is an arbitrary code pointing to a PasswordEncryptor instance,
// not an actual encryption algorithm.
// Warning: Never change this field after its the first password hashing without
// providing a new cleartext password as well.
'PasswordEncryption' => " Varchar(50) " ,
2010-12-09 08:17:35 +00:00
'Salt' => 'Varchar(50)' ,
2008-04-26 06:31:52 +00:00
'PasswordExpiry' => 'Date' ,
API CHANGE: Renamed conflicting classes to have an "SS_" namespace, and renamed existing "SS" namespace to "SS_". The affected classes are: HTTPRequest, HTTPResponse, Query, Database, SSBacktrace, SSCli, SSDatetime, SSDatetimeTest, SSLog, SSLogTest, SSLogEmailWriter, SSLogErrorEmailFormatter, SSLogErrorFileFormatter, SSLogFileWriter and SSZendLog.
MINOR: Replaced usage of renamed classes with the new namespaced name.
From: Andrew Short <andrewjshort@gmail.com>
git-svn-id: svn://svn.silverstripe.com/silverstripe/open/modules/sapphire/trunk@90075 467b73ca-7a2a-4603-9d3b-597d59a354a9
2009-10-26 03:06:31 +00:00
'LockedOutUntil' => 'SS_Datetime' ,
2008-04-26 06:31:52 +00:00
'Locale' => 'Varchar(6)' ,
2009-09-10 02:42:26 +00:00
// handled in registerFailedLogin(), only used if $lock_out_after_incorrect_logins is set
2010-10-15 03:23:02 +00:00
'FailedLoginCount' => 'Int' ,
// In ISO format
'DateFormat' => 'Varchar(30)' ,
'TimeFormat' => 'Varchar(30)' ,
2007-07-19 10:40:28 +00:00
);
2007-09-15 21:51:37 +00:00
2007-07-19 10:40:28 +00:00
static $belongs_many_many = array (
2009-02-01 23:49:53 +00:00
'Groups' => 'Group' ,
2007-07-19 10:40:28 +00:00
);
2007-09-14 19:10:18 +00:00
2008-10-16 00:49:51 +00:00
static $has_one = array ();
2009-02-01 23:49:53 +00:00
2008-11-18 01:48:37 +00:00
static $has_many = array ();
2009-02-01 23:49:53 +00:00
2007-10-02 04:55:55 +00:00
static $many_many = array ();
2008-10-16 00:49:51 +00:00
2007-10-02 04:55:55 +00:00
static $many_many_extraFields = array ();
2007-09-14 18:23:28 +00:00
2008-11-23 23:28:16 +00:00
static $default_sort = '"Surname", "FirstName"' ;
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
static $indexes = array (
'Email' => true ,
2009-03-30 03:04:37 +00:00
//'AutoLoginHash' => Array('type'=>'unique', 'value'=>'AutoLoginHash', 'ignoreNulls'=>true) //Removed due to duplicate null values causing MSSQL problems
2007-07-19 10:40:28 +00:00
);
2007-09-14 18:23:28 +00:00
2008-02-25 02:10:37 +00:00
static $notify_password_change = false ;
2008-03-10 21:28:35 +00:00
/**
* All searchable database columns
* in this object , currently queried
* with a " column LIKE '%keywords%'
* statement .
*
* @ var array
* @ todo Generic implementation of $searchable_fields on DataObject ,
* with definition for different searching algorithms
* ( LIKE , FULLTEXT ) and default FormFields to construct a searchform .
*/
static $searchable_fields = array (
2008-08-26 01:45:52 +00:00
'FirstName' ,
'Surname' ,
'Email' ,
);
static $summary_fields = array (
2009-03-04 03:44:11 +00:00
'FirstName' => 'First Name' ,
'Surname' => 'Last Name' ,
'Email' => 'Email' ,
2010-04-14 04:08:22 +00:00
);
/**
* @ var Array See { @ link set_title_columns ()}
*/
static $title_format = null ;
2008-04-26 06:31:52 +00:00
2009-02-01 23:49:53 +00:00
/**
* The unique field used to identify this member .
* By default , it ' s " Email " , but another common
* field could be Username .
*
* @ var string
*/
protected static $unique_identifier_field = 'Email' ;
2008-04-26 06:31:52 +00:00
/**
* { @ link PasswordValidator } object for validating user ' s password
*/
protected static $password_validator = null ;
/**
* The number of days that a password should be valid for .
* By default , this is null , which means that passwords never expire
*/
protected static $password_expiry_days = null ;
2008-04-26 06:32:05 +00:00
protected static $lock_out_after_incorrect_logins = null ;
2008-04-26 06:31:52 +00:00
2009-10-12 03:27:41 +00:00
/**
* If this is set , then a session cookie with the given name will be set on log - in ,
* and cleared on logout .
*/
protected static $login_marker_cookie = null ;
2010-10-19 00:55:33 +00:00
/**
* Indicates that when a { @ link Member } logs in , Member : session_regenerate_id ()
* should be called as a security precaution .
*
* This doesn 't always work, especially if you' re trying to set session cookies
* across an entire site using the domain parameter to session_set_cookie_params ()
*
* @ var boolean
*/
protected static $session_regenerate_id = true ;
public static function set_session_regenerate_id ( $bool ) {
self :: $session_regenerate_id = $bool ;
}
2010-05-25 04:15:13 +00:00
/**
* Ensure the locale is set to something sensible by default .
*/
public function populateDefaults () {
parent :: populateDefaults ();
2010-10-19 00:37:43 +00:00
$this -> Locale = i18n :: get_locale ();
2010-05-25 04:15:13 +00:00
}
2010-08-03 01:05:27 +00:00
function requireDefaultRecords () {
2010-12-11 00:45:05 +00:00
parent :: requireDefaultRecords ();
2010-08-03 01:05:27 +00:00
// Default groups should've been built by Group->requireDefaultRecords() already
// Find or create ADMIN group
2009-11-22 18:16:38 +13:00
$adminGroup = Permission :: get_groups_by_permission ( 'ADMIN' ) -> First ();
if ( ! $adminGroup ) {
2010-08-03 01:05:27 +00:00
singleton ( 'Group' ) -> requireDefaultRecords ();
2009-11-22 18:16:38 +13:00
$adminGroup = Permission :: get_groups_by_permission ( 'ADMIN' ) -> First ();
2010-08-03 01:05:27 +00:00
}
// Add a default administrator to the first ADMIN group found (most likely the default
// group created through Group->requireDefaultRecords()).
2009-11-22 18:16:38 +13:00
$admins = Permission :: get_members_by_permission ( 'ADMIN' ) -> First ();
2010-08-03 01:05:27 +00:00
if ( ! $admins ) {
// Leave 'Email' and 'Password' are not set to avoid creating
// persistent logins in the database. See Security::setDefaultAdmin().
$admin = Object :: create ( 'Member' );
$admin -> FirstName = _t ( 'Member.DefaultAdminFirstname' , 'Default Admin' );
$admin -> write ();
$admin -> Groups () -> add ( $adminGroup );
2009-11-22 18:16:38 +13:00
}
2010-08-03 01:05:27 +00:00
}
2010-05-25 04:15:13 +00:00
2009-10-12 03:27:41 +00:00
/**
* If this is called , then a session cookie will be set to " 1 " whenever a user
* logs in . This lets 3 rd party tools , such as apache ' s mod_rewrite , detect
* whether a user is logged in or not and alter behaviour accordingly .
*
* One known use of this is to bypass static caching for logged in users . This is
* done by putting this into _config . php
* < pre >
* Member :: set_login_marker_cookie ( " SS_LOGGED_IN " );
* </ pre >
*
* And then adding this condition to each of the rewrite rules that make use of
* the static cache .
* < pre >
* RewriteCond % { HTTP_COOKIE } ! SS_LOGGED_IN = 1
* </ pre >
*
* @ param $cookieName string The name of the cookie to set .
*/
static function set_login_marker_cookie ( $cookieName ) {
self :: $login_marker_cookie = $cookieName ;
}
2007-09-15 21:51:37 +00:00
2007-09-16 00:32:48 +00:00
/**
2010-02-05 00:36:25 +00:00
* Check if the passed password matches the stored one ( if the member is not locked out ) .
2007-09-16 00:32:48 +00:00
*
2010-02-05 00:36:25 +00:00
* @ param string $password
* @ return ValidationResult
2007-09-16 00:32:48 +00:00
*/
public function checkPassword ( $password ) {
2010-02-05 00:36:25 +00:00
$result = $this -> canLogIn ();
2009-11-06 02:23:21 +00:00
$spec = Security :: encrypt_password (
$password ,
$this -> Salt ,
$this -> PasswordEncryption ,
$this
);
$e = $spec [ 'encryptor' ];
2010-02-05 00:36:25 +00:00
if ( ! $e -> compare ( $this -> Password , $spec [ 'password' ])) {
$result -> error ( _t (
'Member.ERRORWRONGCRED' ,
'That doesn\'t seem to be the right e-mail address or password. Please try again.'
));
}
return $result ;
2008-04-26 06:32:05 +00:00
}
2010-02-05 00:36:25 +00:00
/**
* Returns a valid { @ link ValidationResult } if this member can currently log in , or an invalid
* one with error messages to display if the member is locked out .
*
* You can hook into this with a " canLogIn " method on an attached extension .
*
* @ return ValidationResult
*/
public function canLogIn () {
$result = new ValidationResult ();
if ( $this -> isLockedOut ()) {
$result -> error ( _t (
'Member.ERRORLOCKEDOUT' ,
'Your account has been temporarily disabled because of too many failed attempts at ' .
'logging in. Please try again in 20 minutes.'
));
}
$this -> extend ( 'canLogIn' , $result );
return $result ;
}
2008-04-26 06:32:05 +00:00
/**
* Returns true if this user is locked out
*/
public function isLockedOut () {
return $this -> LockedOutUntil && time () < strtotime ( $this -> LockedOutUntil );
2007-09-16 00:32:48 +00:00
}
2008-02-25 02:10:37 +00:00
/**
* Regenerate the session_id .
2008-03-10 21:28:35 +00:00
* This wrapper is here to make it easier to disable calls to session_regenerate_id (), should you need to .
* They have caused problems in certain
2008-02-25 02:10:37 +00:00
* quirky problems ( such as using the Windmill 0.3 . 6 proxy ) .
*/
static function session_regenerate_id () {
2010-10-19 00:55:33 +00:00
if ( ! self :: $session_regenerate_id ) return ;
2008-08-13 01:43:09 +00:00
// This can be called via CLI during testing.
if ( Director :: is_cli ()) return ;
2009-02-01 23:49:53 +00:00
$file = '' ;
$line = '' ;
2009-10-21 02:21:05 +00:00
// @ is to supress win32 warnings/notices when session wasn't cleaned up properly
// There's nothing we can do about this, because it's an operating system function!
if ( ! headers_sent ( $file , $line )) @ session_regenerate_id ( true );
2009-02-01 23:49:53 +00:00
}
/**
* Get the field used for uniquely identifying a member
* in the database . { @ see Member :: $unique_identifier_field }
*
* @ return string
*/
static function get_unique_identifier_field () {
return self :: $unique_identifier_field ;
}
/**
* Set the field used for uniquely identifying a member
* in the database . { @ see Member :: $unique_identifier_field }
*
* @ param $field The field name to set as the unique field
*/
static function set_unique_identifier_field ( $field ) {
self :: $unique_identifier_field = $field ;
2008-04-26 06:31:52 +00:00
}
/**
* Set a { @ link PasswordValidator } object to use to validate member ' s passwords .
*/
static function set_password_validator ( $pv ) {
self :: $password_validator = $pv ;
}
2008-09-18 03:59:00 +00:00
/**
* Returns the current { @ link PasswordValidator }
*/
static function password_validator () {
return self :: $password_validator ;
}
2008-04-26 06:31:52 +00:00
/**
* Set the number of days that a password should be valid for .
* Set to null ( the default ) to have passwords never expire .
*/
static function set_password_expiry ( $days ) {
self :: $password_expiry_days = $days ;
}
2008-04-26 06:32:05 +00:00
/**
* Configure the security system to lock users out after this many incorrect logins
*/
static function lock_out_after_incorrect_logins ( $numLogins ) {
self :: $lock_out_after_incorrect_logins = $numLogins ;
}
2008-04-26 06:31:52 +00:00
function isPasswordExpired () {
if ( ! $this -> PasswordExpiry ) return false ;
return strtotime ( date ( 'Y-m-d' )) >= strtotime ( $this -> PasswordExpiry );
2008-02-25 02:10:37 +00:00
}
2007-09-16 00:32:48 +00:00
2007-07-19 10:40:28 +00:00
/**
2007-09-14 19:10:18 +00:00
* Logs this member in
*
2008-03-10 21:28:35 +00:00
* @ param bool $remember If set to TRUE , the member will be logged in automatically the next time .
2007-07-19 10:40:28 +00:00
*/
2007-09-14 19:10:18 +00:00
function logIn ( $remember = false ) {
2008-02-25 02:10:37 +00:00
self :: session_regenerate_id ();
2007-07-19 10:40:28 +00:00
Session :: set ( " loggedInAs " , $this -> ID );
2009-10-12 03:27:41 +00:00
// This lets apache rules detect whether the user has logged in
if ( self :: $login_marker_cookie ) Cookie :: set ( self :: $login_marker_cookie , 1 , 0 );
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
$this -> NumVisit ++ ;
2007-09-14 19:10:18 +00:00
if ( $remember ) {
2010-12-05 00:39:25 +00:00
$generator = new RandomGenerator ();
2010-12-05 00:43:10 +00:00
$token = $generator -> generateHash ( 'sha1' );
$this -> RememberLoginToken = $token ;
2009-09-10 03:23:31 +00:00
Cookie :: set ( 'alc_enc' , $this -> ID . ':' . $token , 90 , null , null , null , true );
2007-09-14 19:10:18 +00:00
} else {
$this -> RememberLoginToken = null ;
Cookie :: set ( 'alc_enc' , null );
Cookie :: forceExpiry ( 'alc_enc' );
}
2008-04-26 06:32:05 +00:00
// Clear the incorrect log-in count
if ( self :: $lock_out_after_incorrect_logins ) {
2009-09-10 02:42:26 +00:00
$this -> FailedLoginCount = 0 ;
2008-04-26 06:32:05 +00:00
}
2009-02-01 23:49:53 +00:00
// Don't set column if its not built yet (the login might be precursor to a /dev/build...)
if ( array_key_exists ( 'LockedOutUntil' , DB :: fieldList ( 'Member' ))) {
$this -> LockedOutUntil = null ;
}
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
$this -> write ();
2008-08-12 20:59:32 +00:00
// Audit logging hook
$this -> extend ( 'memberLoggedIn' );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2009-04-29 01:20:24 +00:00
/**
* Check if the member ID logged in session actually
* has a database record of the same ID . If there is
* no logged in user , FALSE is returned anyway .
*
* @ return boolean TRUE record found FALSE no record found
*/
static function logged_in_session_exists () {
if ( $id = Member :: currentUserID ()) {
if ( $member = DataObject :: get_by_id ( 'Member' , $id )) {
if ( $member -> exists ()) return true ;
}
}
return false ;
}
2007-09-14 19:10:18 +00:00
/**
* Log the user in if the " remember login " cookie is set
*
* The < i > remember login token </ i > will be changed on every successful
* auto - login .
*/
static function autoLogin () {
2009-08-11 09:16:34 +00:00
// Don't bother trying this multiple times
self :: $_already_tried_to_auto_log_in = true ;
2007-09-15 21:43:04 +00:00
if ( strpos ( Cookie :: get ( 'alc_enc' ), ':' ) && ! Session :: get ( " loggedInAs " )) {
list ( $uid , $token ) = explode ( ':' , Cookie :: get ( 'alc_enc' ), 2 );
2007-09-15 00:27:40 +00:00
$SQL_uid = Convert :: raw2sql ( $uid );
2007-09-14 19:10:18 +00:00
2008-11-24 09:31:14 +00:00
$member = DataObject :: get_one ( " Member " , " \" Member \" . \" ID \" = ' $SQL_uid ' " );
2007-09-15 00:27:40 +00:00
2009-03-17 22:25:22 +00:00
// check if autologin token matches
if ( $member && ( ! $member -> RememberLoginToken || $member -> RememberLoginToken != $token )) {
2007-10-02 21:57:12 +00:00
$member = null ;
}
2007-09-14 19:10:18 +00:00
if ( $member ) {
2008-02-25 02:10:37 +00:00
self :: session_regenerate_id ();
2007-09-14 19:10:18 +00:00
Session :: set ( " loggedInAs " , $member -> ID );
2009-10-12 03:27:41 +00:00
// This lets apache rules detect whether the user has logged in
2010-10-04 04:40:50 +00:00
if ( self :: $login_marker_cookie ) Cookie :: set ( self :: $login_marker_cookie , 1 , 0 , null , null , false , true );
2010-12-05 00:39:25 +00:00
$generator = new RandomGenerator ();
$member -> RememberLoginToken = $generator -> generateHash ( 'sha1' );
2011-05-30 10:04:55 +12:00
Cookie :: set ( 'alc_enc' , $member -> ID . ':' . $member -> RememberLoginToken , 90 , null , null , false , true );
2007-09-14 19:10:18 +00:00
$member -> NumVisit ++ ;
$member -> write ();
2008-08-12 20:59:32 +00:00
// Audit logging hook
2008-08-14 03:30:32 +00:00
$member -> extend ( 'memberAutoLoggedIn' );
2007-09-14 19:10:18 +00:00
}
}
}
2007-07-19 10:40:28 +00:00
/**
2007-09-14 19:10:18 +00:00
* Logs this member out .
2007-07-19 10:40:28 +00:00
*/
2007-09-14 19:10:18 +00:00
function logOut () {
2007-07-19 10:40:28 +00:00
Session :: clear ( " loggedInAs " );
2009-10-12 03:27:41 +00:00
if ( self :: $login_marker_cookie ) Cookie :: set ( self :: $login_marker_cookie , null , 0 );
2008-02-25 02:10:37 +00:00
self :: session_regenerate_id ();
2007-09-14 19:10:18 +00:00
2008-08-12 05:59:15 +00:00
$this -> extend ( 'memberLoggedOut' );
2007-09-14 19:10:18 +00:00
$this -> RememberLoginToken = null ;
Cookie :: set ( 'alc_enc' , null );
Cookie :: forceExpiry ( 'alc_enc' );
$this -> write ();
2008-08-12 20:59:32 +00:00
// Audit logging hook
$this -> extend ( 'memberLoggedOut' );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/**
* Generate an auto login hash
*
2007-09-16 00:32:48 +00:00
* This creates an auto login hash that can be used to reset the password .
*
2008-03-10 21:28:35 +00:00
* @ param int $lifetime The lifetime of the auto login hash in days ( by default 2 days )
2007-09-16 00:32:48 +00:00
*
2008-03-10 21:28:35 +00:00
* @ todo Make it possible to handle database errors such as a " duplicate key " error
2007-09-14 19:10:18 +00:00
*/
2007-09-16 00:32:48 +00:00
function generateAutologinHash ( $lifetime = 2 ) {
2007-09-14 18:23:28 +00:00
2007-09-16 00:32:48 +00:00
do {
2010-12-05 00:39:25 +00:00
$generator = new RandomGenerator ();
$hash = $generator -> generateHash ( 'sha1' );
2008-11-23 00:31:06 +00:00
} while ( DataObject :: get_one ( 'Member' , " \" AutoLoginHash \" = ' $hash ' " ));
2007-09-14 18:23:28 +00:00
2007-09-16 00:32:48 +00:00
$this -> AutoLoginHash = $hash ;
$this -> AutoLoginExpired = date ( 'Y-m-d' , time () + ( 86400 * $lifetime ));
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
$this -> write ();
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
/**
2007-09-16 00:32:48 +00:00
* Return the member for the auto login hash
*
* @ param bool $login Should the member be logged in ?
2007-07-19 10:40:28 +00:00
*/
2008-08-11 05:18:18 +00:00
static function member_from_autologinhash ( $RAW_hash , $login = false ) {
2007-09-14 19:10:18 +00:00
$SQL_hash = Convert :: raw2sql ( $RAW_hash );
2007-09-14 18:23:28 +00:00
2009-03-11 21:50:03 +00:00
$member = DataObject :: get_one ( 'Member' , " \" AutoLoginHash \" =' " . $SQL_hash . " ' AND \" AutoLoginExpired \" > " . DB :: getConn () -> now ());
2007-09-14 18:23:28 +00:00
2007-09-16 00:32:48 +00:00
if ( $login && $member )
2007-07-19 10:40:28 +00:00
$member -> logIn ();
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
return $member ;
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/**
* Send signup , change password or forgot password informations to an user
*
2008-03-10 21:28:35 +00:00
* @ param string $type Information type to send ( " signup " , " changePassword " or " forgotPassword " )
* @ param array $data Additional data to pass to the email ( can be used in the template )
2007-09-14 19:10:18 +00:00
*/
2007-09-16 00:32:48 +00:00
function sendInfo ( $type = 'signup' , $data = null ) {
2007-07-19 10:40:28 +00:00
switch ( $type ) {
2007-09-14 19:10:18 +00:00
case " signup " :
2008-02-25 02:10:37 +00:00
$e = Object :: create ( 'Member_SignupEmail' );
2007-09-14 19:10:18 +00:00
break ;
case " changePassword " :
2008-02-25 02:10:37 +00:00
$e = Object :: create ( 'Member_ChangePasswordEmail' );
2007-09-14 19:10:18 +00:00
break ;
case " forgotPassword " :
2008-02-25 02:10:37 +00:00
$e = Object :: create ( 'Member_ForgotPasswordEmail' );
2007-09-14 19:10:18 +00:00
break ;
2007-07-19 10:40:28 +00:00
}
2007-09-16 00:32:48 +00:00
if ( is_array ( $data )) {
foreach ( $data as $key => $value )
$e -> $key = $value ;
}
2007-07-19 10:40:28 +00:00
$e -> populateTemplate ( $this );
2009-09-18 03:07:15 +00:00
$e -> setTo ( $this -> Email );
2007-07-19 10:40:28 +00:00
$e -> send ();
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/**
2007-12-02 21:28:41 +00:00
* Returns the fields for the member form - used in the registration / profile module .
* It should return fields that are editable by the admin and the logged - in user .
2007-09-14 19:10:18 +00:00
*
2011-10-28 14:37:27 +13:00
* @ return FieldList Returns a { @ link FieldList } containing the fields for
2007-09-14 19:10:18 +00:00
* the member form .
*/
2010-01-21 22:59:19 +00:00
public function getMemberFormFields () {
$fields = parent :: getFrontendFields ();
$fields -> replaceField ( 'Password' , $password = new ConfirmedPasswordField (
'Password' ,
$this -> fieldLabel ( 'Password' ),
null ,
null ,
( bool ) $this -> ID
));
$password -> setCanBeEmpty ( true );
$fields -> replaceField ( 'Locale' , new DropdownField (
'Locale' ,
$this -> fieldLabel ( 'Locale' ),
2010-05-25 04:15:13 +00:00
i18n :: get_existing_translations ()
2010-01-21 22:59:19 +00:00
));
$fields -> removeByName ( 'RememberLoginToken' );
$fields -> removeByName ( 'NumVisit' );
$fields -> removeByName ( 'LastVisited' );
$fields -> removeByName ( 'Bounced' );
$fields -> removeByName ( 'AutoLoginHash' );
$fields -> removeByName ( 'AutoLoginExpired' );
$fields -> removeByName ( 'PasswordEncryption' );
$fields -> removeByName ( 'Salt' );
$fields -> removeByName ( 'PasswordExpiry' );
$fields -> removeByName ( 'FailedLoginCount' );
$fields -> removeByName ( 'LastViewed' );
$fields -> removeByName ( 'LockedOutUntil' );
$this -> extend ( 'updateMemberFormFields' , $fields );
2007-12-02 21:28:41 +00:00
return $fields ;
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
function getValidator () {
return new Member_Validator ();
}
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2007-09-14 19:10:18 +00:00
* Returns the current logged in user
*
* @ return bool | Member Returns the member object of the current logged in
* user or FALSE .
2007-07-19 10:40:28 +00:00
*/
static function currentUser () {
2009-08-11 09:16:34 +00:00
$id = Member :: currentUserID ();
2007-09-14 19:10:18 +00:00
if ( $id ) {
2010-12-02 15:51:35 +13:00
return DataObject :: get_one ( " Member " , " \" Member \" . \" ID \" = $id " , true , 1 );
2007-07-19 10:40:28 +00:00
}
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/**
* Get the ID of the current logged in user
*
* @ return int Returns the ID of the current logged in user or 0.
*/
2007-07-19 10:40:28 +00:00
static function currentUserID () {
$id = Session :: get ( " loggedInAs " );
2009-08-11 09:16:34 +00:00
if ( ! $id && ! self :: $_already_tried_to_auto_log_in ) {
2007-09-14 19:10:18 +00:00
self :: autoLogin ();
$id = Session :: get ( " loggedInAs " );
}
2007-07-19 10:40:28 +00:00
return is_numeric ( $id ) ? $id : 0 ;
}
2009-08-11 09:16:34 +00:00
private static $_already_tried_to_auto_log_in = false ;
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/*
2008-03-10 21:28:35 +00:00
* Generate a random password , with randomiser to kick in if there ' s no words file on the
2007-09-14 19:10:18 +00:00
* filesystem .
*
* @ return string Returns a random password .
*/
2008-02-25 02:10:37 +00:00
static function create_new_password () {
2007-10-25 01:51:53 +00:00
if ( file_exists ( Security :: get_word_list ())) {
$words = file ( Security :: get_word_list ());
2007-09-14 19:10:18 +00:00
list ( $usec , $sec ) = explode ( ' ' , microtime ());
srand ( $sec + (( float ) $usec * 100000 ));
$word = trim ( $words [ rand ( 0 , sizeof ( $words ) - 1 )]);
$number = rand ( 10 , 999 );
return $word . $number ;
} else {
$random = rand ();
$string = md5 ( $random );
$output = substr ( $string , 0 , 6 );
return $output ;
}
}
/**
2009-02-01 23:49:53 +00:00
* Event handler called before writing to the database .
2007-09-14 19:10:18 +00:00
*/
2007-07-19 10:40:28 +00:00
function onBeforeWrite () {
2008-03-11 01:30:29 +00:00
if ( $this -> SetPassword ) $this -> Password = $this -> SetPassword ;
2010-03-09 04:10:38 +00:00
// If a member with the same "unique identifier" already exists with a different ID, don't allow merging.
// Note: This does not a full replacement for safeguards in the controller layer (e.g. in a registration form),
// but rather a last line of defense against data inconsistencies.
2009-02-01 23:49:53 +00:00
$identifierField = self :: $unique_identifier_field ;
if ( $this -> $identifierField ) {
2010-03-09 04:10:38 +00:00
// Note: Same logic as Member_Validator class
$idClause = ( $this -> ID ) ? sprintf ( " AND \" Member \" . \" ID \" <> %d " , ( int ) $this -> ID ) : '' ;
$existingRecord = DataObject :: get_one (
'Member' ,
sprintf (
" \" %s \" = '%s' %s " ,
$identifierField ,
Convert :: raw2sql ( $this -> $identifierField ),
$idClause
)
);
2007-07-19 10:40:28 +00:00
if ( $existingRecord ) {
2010-10-13 03:42:49 +00:00
throw new ValidationException ( new ValidationResult ( false , sprintf (
_t (
'Member.ValidationIdentifierFailed' ,
'Can\'t overwrite existing member #%d with identical identifier (%s = %s))' ,
PR_MEDIUM ,
'The values in brackets show a fieldname mapped to a value, usually denoting an existing email address'
),
2010-03-09 04:10:38 +00:00
$existingRecord -> ID ,
$identifierField ,
$this -> $identifierField
2010-10-13 03:42:49 +00:00
)));
2007-07-19 10:40:28 +00:00
}
}
2010-03-09 04:10:38 +00:00
2008-07-20 22:36:58 +00:00
// We don't send emails out on dev/tests sites to prevent accidentally spamming users.
// However, if TestMailer is in use this isn't a risk.
2008-10-01 18:32:55 +00:00
if (
( Director :: isLive () || Email :: mailer () instanceof TestMailer )
2009-05-27 00:09:23 +00:00
&& $this -> isChanged ( 'Password' )
2008-10-01 18:32:55 +00:00
&& $this -> record [ 'Password' ]
&& Member :: $notify_password_change
) {
$this -> sendInfo ( 'changePassword' );
}
2010-03-09 04:10:38 +00:00
2009-11-06 02:23:21 +00:00
// The test on $this->ID is used for when records are initially created.
// Note that this only works with cleartext passwords, as we can't rehash
// existing passwords.
2010-10-15 03:52:38 +00:00
if (( ! $this -> ID && $this -> Password ) || $this -> isChanged ( 'Password' )) {
2008-03-11 01:30:29 +00:00
// Password was changed: encrypt the password according the settings
2009-11-06 02:23:21 +00:00
$encryption_details = Security :: encrypt_password (
$this -> Password , // this is assumed to be cleartext
$this -> Salt ,
$this -> PasswordEncryption ,
$this
);
2010-10-15 03:52:38 +00:00
2009-11-06 02:23:21 +00:00
// Overwrite the Password property with the hashed value
2010-10-19 00:37:43 +00:00
$this -> Password = $encryption_details [ 'password' ];
2008-03-11 01:30:29 +00:00
$this -> Salt = $encryption_details [ 'salt' ];
$this -> PasswordEncryption = $encryption_details [ 'algorithm' ];
2010-03-09 04:10:38 +00:00
2008-04-26 06:31:52 +00:00
// If we haven't manually set a password expiry
2009-05-27 00:09:23 +00:00
if ( ! $this -> isChanged ( 'PasswordExpiry' )) {
2008-04-26 06:31:52 +00:00
// then set it for us
if ( self :: $password_expiry_days ) {
$this -> PasswordExpiry = date ( 'Y-m-d' , time () + 86400 * self :: $password_expiry_days );
} else {
$this -> PasswordExpiry = null ;
}
}
2008-03-11 01:30:29 +00:00
}
2010-03-09 04:10:38 +00:00
2008-12-04 22:38:32 +00:00
// save locale
if ( ! $this -> Locale ) {
$this -> Locale = i18n :: get_locale ();
}
2010-10-19 00:37:43 +00:00
2007-07-19 10:40:28 +00:00
parent :: onBeforeWrite ();
}
2008-04-26 06:31:52 +00:00
function onAfterWrite () {
parent :: onAfterWrite ();
2009-05-27 00:09:23 +00:00
if ( $this -> isChanged ( 'Password' )) {
2008-04-26 06:31:52 +00:00
MemberPassword :: log ( $this );
}
}
2011-03-09 15:49:41 +13:00
/**
* If any admin groups are requested , deny the whole save operation .
*
* @ param Array $ids Database IDs of Group records
* @ return boolean
*/
function onChangeGroups ( $ids ) {
// Filter out admin groups to avoid privilege escalation,
// unless the current user is an admin already
if ( ! Permission :: checkMember ( $this , 'ADMIN' )) {
$adminGroups = Permission :: get_groups_by_permission ( 'ADMIN' );
$adminGroupIDs = ( $adminGroups ) ? $adminGroups -> column ( 'ID' ) : array ();
return count ( array_intersect ( $ids , $adminGroupIDs )) == 0 ;
} else {
return true ;
}
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2008-11-03 01:57:16 +00:00
* Check if the member is in one of the given groups .
2007-09-14 19:10:18 +00:00
*
2011-10-26 19:09:04 +13:00
* @ param array | SS_List $groups Collection of { @ link Group } DataObjects to check
2008-11-03 01:57:16 +00:00
* @ param boolean $strict Only determine direct group membership if set to true ( Default : false )
* @ return bool Returns TRUE if the member is in one of the given groups , otherwise FALSE .
2007-07-19 10:40:28 +00:00
*/
2008-11-03 01:57:16 +00:00
public function inGroups ( $groups , $strict = false ) {
2008-11-03 13:48:04 +00:00
if ( $groups ) foreach ( $groups as $group ) {
2008-11-03 01:57:16 +00:00
if ( $this -> inGroup ( $group , $strict )) return true ;
}
return false ;
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/**
2008-11-03 01:57:16 +00:00
* Check if the member is in the given group or any parent groups .
2007-09-14 19:10:18 +00:00
*
2008-09-22 16:07:28 +00:00
* @ param int | Group | string $group Group instance , Group Code or ID
2008-11-03 01:57:16 +00:00
* @ param boolean $strict Only determine direct group membership if set to TRUE ( Default : FALSE )
2008-09-22 16:07:28 +00:00
* @ return bool Returns TRUE if the member is in the given group , otherwise FALSE .
2007-07-19 10:40:28 +00:00
*/
2008-11-03 01:57:16 +00:00
public function inGroup ( $group , $strict = false ) {
2008-09-22 16:07:28 +00:00
if ( is_numeric ( $group )) {
$groupCheckObj = DataObject :: get_by_id ( 'Group' , $group );
} elseif ( is_string ( $group )) {
$SQL_group = Convert :: raw2sql ( $group );
2008-11-24 09:31:14 +00:00
$groupCheckObj = DataObject :: get_one ( 'Group' , " \" Code \" = ' { $SQL_group } ' " );
2008-11-03 01:57:16 +00:00
} elseif ( $group instanceof Group ) {
2008-09-22 16:07:28 +00:00
$groupCheckObj = $group ;
} else {
user_error ( 'Member::inGroup(): Wrong format for $group parameter' , E_USER_ERROR );
}
2009-04-29 00:07:39 +00:00
if ( ! $groupCheckObj ) return false ;
2008-11-03 01:57:16 +00:00
$groupCandidateObjs = ( $strict ) ? $this -> getManyManyComponents ( " Groups " ) : $this -> Groups ();
2008-11-03 13:48:04 +00:00
if ( $groupCandidateObjs ) foreach ( $groupCandidateObjs as $groupCandidateObj ) {
2008-11-03 01:57:16 +00:00
if ( $groupCandidateObj -> ID == $groupCheckObj -> ID ) return true ;
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
return false ;
}
2008-10-16 01:04:38 +00:00
2010-10-15 03:00:48 +00:00
/**
* Adds the member to a group . This will create the group if the given
* group code does not return a valid group object .
*
* @ param string $groupcode
* @ param string Title of the group
*/
public function addToGroupByCode ( $groupcode , $title = " " ) {
$group = DataObject :: get_one ( 'Group' , " \" Code \" = ' " . Convert :: raw2sql ( $groupcode ) . " ' " );
if ( $group ) {
$this -> Groups () -> add ( $group );
}
else {
if ( ! $title ) $title = $groupcode ;
$group = new Group ();
$group -> Code = $groupcode ;
$group -> Title = $title ;
$group -> write ();
$this -> Groups () -> add ( $group );
}
}
2008-10-16 01:04:38 +00:00
/**
* Returns true if this user is an administrator .
* Administrators have access to everything .
*
2008-11-04 23:31:33 +00:00
* @ deprecated Use Permission :: check ( 'ADMIN' ) instead
2008-10-16 01:04:38 +00:00
* @ return Returns TRUE if this user is an administrator .
*/
function isAdmin () {
2011-10-29 12:02:11 +13:00
Deprecation :: notice ( '2.4' , 'Use Permission::check(\'ADMIN\') instead.' );
2008-11-04 23:31:33 +00:00
return Permission :: checkMember ( $this , 'ADMIN' );
2008-10-16 01:04:38 +00:00
}
2010-04-14 04:08:22 +00:00
/**
* @ param Array $columns Column names on the Member record to show in { @ link getTitle ()} .
* @ param String $sep Separator
*/
static function set_title_columns ( $columns , $sep = ' ' ) {
if ( ! is_array ( $columns )) $columns = array ( $columns );
self :: $title_format = array ( 'columns' => $columns , 'sep' => $sep );
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
//------------------- HELPER METHODS -----------------------------------//
2007-07-19 10:40:28 +00:00
2007-09-14 19:10:18 +00:00
/**
2010-04-14 04:08:22 +00:00
* Get the complete name of the member , by default in the format " <Surname>, <FirstName> " .
* Falls back to showing either field on its own .
*
* You can overload this getter with { @ link set_title_format ()}
* and { @ link set_title_sql ()} .
2007-09-14 19:10:18 +00:00
*
* @ return string Returns the first - and surname of the member . If the ID
2010-04-14 04:08:22 +00:00
* of the member is equal 0 , only the surname is returned .
2007-09-14 19:10:18 +00:00
*/
2007-07-19 10:40:28 +00:00
public function getTitle () {
2010-04-14 04:08:22 +00:00
if ( self :: $title_format ) {
$values = array ();
foreach ( self :: $title_format [ 'columns' ] as $col ) {
$values [] = $this -> getField ( $col );
}
return join ( self :: $title_format [ 'sep' ], $values );
}
2007-07-19 10:40:28 +00:00
if ( $this -> getField ( 'ID' ) === 0 )
return $this -> getField ( 'Surname' );
2009-04-17 06:00:32 +00:00
else {
if ( $this -> getField ( 'Surname' ) && $this -> getField ( 'FirstName' )){
return $this -> getField ( 'Surname' ) . ', ' . $this -> getField ( 'FirstName' );
} elseif ( $this -> getField ( 'Surname' )){
return $this -> getField ( 'Surname' );
} elseif ( $this -> getField ( 'FirstName' )){
return $this -> getField ( 'FirstName' );
} else {
return null ;
}
}
2007-09-14 18:23:28 +00:00
}
2010-10-15 03:23:02 +00:00
2010-04-14 04:08:22 +00:00
/**
* Return a SQL CONCAT () fragment suitable for a SELECT statement .
* Useful for custom queries which assume a certain member title format .
*
* @ param String $tableName
* @ return String SQL
*/
static function get_title_sql ( $tableName = 'Member' ) {
2010-10-15 02:48:51 +00:00
// This should be abstracted to SSDatabase concatOperator or similar.
$op = ( DB :: getConn () instanceof MSSQLDatabase ) ? " + " : " || " ;
2010-04-14 04:08:22 +00:00
if ( self :: $title_format ) {
2010-04-14 04:08:51 +00:00
$columnsWithTablename = array ();
foreach ( self :: $title_format [ 'columns' ] as $column ) {
2010-10-14 23:50:36 +00:00
$columnsWithTablename [] = " \" $tableName\ " . \ " $column\ " " ;
2010-04-14 04:08:51 +00:00
}
2010-10-15 02:48:51 +00:00
return " ( " . join ( " $op ' " . self :: $title_format [ 'sep' ] . " ' $op " , $columnsWithTablename ) . " ) " ;
2010-04-14 04:08:22 +00:00
} else {
2010-10-15 02:48:51 +00:00
return " ( \" $tableName\ " . \ " Surname \" $op ' ' $op \" $tableName\ " . \ " FirstName \" ) " ;
2010-04-14 04:08:22 +00:00
}
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/**
* Get the complete name of the member
*
* @ return string Returns the first - and surname of the member .
*/
2007-07-19 10:40:28 +00:00
public function getName () {
2010-10-19 01:24:43 +00:00
return ( $this -> Surname ) ? trim ( $this -> FirstName . ' ' . $this -> Surname ) : $this -> FirstName ;
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
/**
* Set first - and surname
*
* This method assumes that the last part of the name is the surname , e . g .
* < i > A B C </ i > will result in firstname < i > A B </ i > and surname < i > C </ i >
*
* @ param string $name The name
*/
public function setName ( $name ) {
$nameParts = explode ( ' ' , $name );
$this -> Surname = array_pop ( $nameParts );
$this -> FirstName = join ( ' ' , $nameParts );
2007-07-19 10:40:28 +00:00
}
2007-09-14 19:10:18 +00:00
/**
* Alias for { @ link setName }
*
* @ param string $name The name
* @ see setName ()
*/
public function splitName ( $name ) {
return $this -> setName ( $name );
2007-07-19 10:40:28 +00:00
}
2010-10-15 03:23:02 +00:00
/**
* Override the default getter for DateFormat so the
* default format for the user ' s locale is used
* if the user has not defined their own .
*
* @ return string ISO date format
*/
public function getDateFormat () {
if ( $this -> getField ( 'DateFormat' )) {
return $this -> getField ( 'DateFormat' );
} elseif ( $this -> getField ( 'Locale' )) {
require_once 'Zend/Date.php' ;
return Zend_Locale_Format :: getDateFormat ( $this -> Locale );
} else {
return i18n :: get_date_format ();
}
}
/**
* Override the default getter for TimeFormat so the
* default format for the user ' s locale is used
* if the user has not defined their own .
*
* @ return string ISO date format
*/
public function getTimeFormat () {
if ( $this -> getField ( 'TimeFormat' )) {
return $this -> getField ( 'TimeFormat' );
} elseif ( $this -> getField ( 'Locale' )) {
require_once 'Zend/Date.php' ;
return Zend_Locale_Format :: getTimeFormat ( $this -> Locale );
} else {
return i18n :: get_time_format ();
}
}
2007-09-14 19:10:18 +00:00
//---------------------------------------------------------------------//
2007-07-19 10:40:28 +00:00
2007-09-14 19:10:18 +00:00
/**
2007-09-15 00:23:44 +00:00
* Get a " many-to-many " map that holds for all members their group
* memberships
*
2009-11-22 18:30:14 +13:00
* @ todo Push all this logic into Member_GroupSet ' s getIterator () ?
2007-09-14 19:10:18 +00:00
*/
2007-07-19 10:40:28 +00:00
public function Groups () {
2009-11-22 18:30:14 +13:00
$groups = new Member_GroupSet ( 'Group' , 'Group_Members' , 'GroupID' , 'MemberID' );
if ( $this -> ID ) $groups -> setForeignID ( $this -> ID );
// Filter out groups that aren't allowed from this IP
$ip = isset ( $_SERVER [ 'REMOTE_ADDR' ]) ? $_SERVER [ 'REMOTE_ADDR' ] : null ;
$disallowedGroups = array ();
foreach ( $groups as $group ) {
if ( ! $group -> allowedIPAddress ( $ip )) $disallowedGroups [] = $groupID ;
2007-07-19 10:40:28 +00:00
}
2011-04-05 21:01:57 +10:00
if ( $disallowedGroups ) $group -> where ( " \" Group \" . \" ID \" NOT IN ( " .
2009-11-22 18:30:14 +13:00
implode ( ',' , $disallowedGroups ) . " ) " );
2007-07-19 10:40:28 +00:00
2009-11-22 18:30:14 +13:00
return $groups ;
2007-07-19 10:40:28 +00:00
}
2007-09-14 19:10:18 +00:00
/**
2007-09-15 00:23:44 +00:00
* Get member SQLMap
*
* @ param string $filter Filter for the SQL statement ( WHERE clause )
* @ param string $sort Sorting function ( ORDER clause )
* @ param string $blank Shift a blank member in the items
* @ return SQLMap Returns an SQLMap that returns all Member data .
*
* @ todo Improve documentation of this function ! ( Markus )
2007-09-14 19:10:18 +00:00
*/
2011-10-29 17:08:47 +13:00
public static function map ( $filter = " " , $sort = " " , $blank = " " ) {
Deprecation :: notice ( '3.0' , 'Use DataList::("Member")->map()' );
$list = DataList :: create ( " Member " ) -> where ( $filter ) -> sort ( $sort );
$map = $list -> map ();
if ( $blank ) $map -> unshift ( 0 , $blank );
2007-09-15 00:23:44 +00:00
2011-10-29 17:08:47 +13:00
return $map ;
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
2007-09-14 19:10:18 +00:00
/**
2007-09-15 00:23:44 +00:00
* Get a member SQLMap of members in specific groups
*
* @ param mixed $groups Optional groups to include in the map . If NULL is
* passed , all groups are returned , i . e .
* { @ link map ()} will be called .
* @ return SQLMap Returns an SQLMap that returns all Member data .
* @ see map ()
*
* @ todo Improve documentation of this function ! ( Markus )
2007-09-14 19:10:18 +00:00
*/
public static function mapInGroups ( $groups = null ) {
if ( ! $groups )
2007-07-19 10:40:28 +00:00
return Member :: map ();
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
$groupIDList = array ();
2007-09-14 18:23:28 +00:00
2011-10-26 19:09:04 +13:00
if ( is_a ( $groups , 'SS_List' )) {
2007-07-19 10:40:28 +00:00
foreach ( $groups as $group )
$groupIDList [] = $group -> ID ;
2007-09-14 19:10:18 +00:00
} elseif ( is_array ( $groups )) {
2007-07-19 10:40:28 +00:00
$groupIDList = $groups ;
2007-09-14 19:10:18 +00:00
} else {
2007-07-19 10:40:28 +00:00
$groupIDList [] = $groups ;
2007-09-14 19:10:18 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
if ( empty ( $groupIDList ))
2007-09-14 18:23:28 +00:00
return Member :: map ();
2011-10-29 18:07:54 +13:00
return DataList :: create ( " Member " ) -> where ( " \" GroupID \" IN ( " . implode ( ',' , $groupIDList ) . " ) " )
-> sort ( " \" Surname \" , \" FirstName \" " ) -> map ();
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
/**
2007-09-14 19:10:18 +00:00
* Get a map of all members in the groups given that have CMS permissions
*
* If no groups are passed , all groups with CMS permissions will be used .
*
* @ param array $groups Groups to consider or NULL to use all groups with
* CMS permissions .
* @ return SQLMap Returns a map of all members in the groups given that
* have CMS permissions .
2007-07-19 10:40:28 +00:00
*/
2007-09-14 19:10:18 +00:00
public static function mapInCMSGroups ( $groups = null ) {
if ( ! $groups || $groups -> Count () == 0 ) {
2008-08-12 22:14:36 +00:00
$perms = array ( 'ADMIN' , 'CMS_ACCESS_AssetAdmin' );
$cmsPerms = singleton ( 'CMSMain' ) -> providePermissions ();
if ( ! empty ( $cmsPerms )) {
$perms = array_unique ( array_merge ( $perms , array_keys ( $cmsPerms )));
}
2008-08-18 00:51:55 +00:00
$SQL_perms = " ' " . implode ( " ', ' " , Convert :: raw2sql ( $perms )) . " ' " ;
2008-08-12 22:14:36 +00:00
2011-10-29 18:07:54 +13:00
$groups = DataObject :: get ( 'Group' ) -> innerJoin ( " Permission " , " \" Permission \" . \" GroupID \" = \" Group \" . \" ID \" AND \" Permission \" . \" Code \" IN ( $SQL_perms ) " );
2007-09-14 19:10:18 +00:00
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
$groupIDList = array ();
2007-09-14 18:23:28 +00:00
2011-10-26 19:09:04 +13:00
if ( is_a ( $groups , 'SS_List' )) {
2009-02-01 23:49:53 +00:00
foreach ( $groups as $group ) {
2007-07-19 10:40:28 +00:00
$groupIDList [] = $group -> ID ;
2009-02-01 23:49:53 +00:00
}
2007-09-14 19:10:18 +00:00
} elseif ( is_array ( $groups )) {
2007-07-19 10:40:28 +00:00
$groupIDList = $groups ;
2007-09-14 19:10:18 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
$filterClause = ( $groupIDList )
2008-11-23 00:31:06 +00:00
? " \" GroupID \" IN ( " . implode ( ',' , $groupIDList ) . " ) "
2007-09-14 19:10:18 +00:00
: " " ;
2011-10-29 18:07:54 +13:00
return DataList :: create ( " Member " ) -> where ( $filterClause ) -> sort ( " \" Surname \" , \" FirstName \" " )
-> innerJoin ( " Group_Members " , " \" MemberID \" = \" Member \" . \" ID \" " )
-> innerJoin ( " Group " , " \" Group \" . \" ID \" = \" GroupID \" " )
-> map ();
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
2007-09-14 18:23:28 +00:00
/**
2007-09-14 19:10:18 +00:00
* Get the groups in which the member is NOT in
*
* When passed an array of groups , and a component set of groups , this
* function will return the array of groups the member is NOT in .
*
* @ param array $groupList An array of group code names .
* @ param array $memberGroups A component set of groups ( if set to NULL ,
* $this -> groups () will be used )
* @ return array Groups in which the member is NOT in .
2007-07-19 10:40:28 +00:00
*/
2007-09-14 19:10:18 +00:00
public function memberNotInGroups ( $groupList , $memberGroups = null ){
2009-02-01 23:49:53 +00:00
if ( ! $memberGroups ) $memberGroups = $this -> Groups ();
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
foreach ( $memberGroups as $group ) {
if ( in_array ( $group -> Code , $groupList )) {
$index = array_search ( $group -> Code , $groupList );
2007-07-19 10:40:28 +00:00
unset ( $groupList [ $index ]);
}
}
2009-02-01 23:49:53 +00:00
2007-07-19 10:40:28 +00:00
return $groupList ;
}
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2011-10-28 14:37:27 +13:00
* Return a { @ link FieldList } of fields that would appropriate for editing
2007-09-14 19:10:18 +00:00
* this member .
*
2011-10-28 14:37:27 +13:00
* @ return FieldList Return a FieldList of fields that would appropriate for
2007-09-14 19:10:18 +00:00
* editing this member .
2007-07-19 10:40:28 +00:00
*/
public function getCMSFields () {
2010-10-15 03:23:02 +00:00
require_once ( 'Zend/Date.php' );
2008-10-14 00:29:16 +00:00
$fields = parent :: getCMSFields ();
2010-04-13 01:49:24 +00:00
2008-10-09 17:31:32 +00:00
$mainFields = $fields -> fieldByName ( " Root " ) -> fieldByName ( " Main " ) -> Children ;
2010-04-13 01:49:24 +00:00
2008-11-22 03:33:00 +00:00
$password = new ConfirmedPasswordField (
'Password' ,
2009-01-05 06:19:48 +00:00
null ,
2008-11-22 03:33:00 +00:00
null ,
null ,
true // showOnClick
);
2007-11-12 02:58:27 +00:00
$password -> setCanBeEmpty ( true );
2009-01-05 06:19:48 +00:00
if ( ! $this -> ID ) $password -> showOnClick = false ;
2008-10-09 17:31:32 +00:00
$mainFields -> replaceField ( 'Password' , $password );
2011-04-30 15:11:39 +12:00
2008-10-09 17:31:32 +00:00
$mainFields -> replaceField ( 'Locale' , new DropdownField (
2008-10-03 16:23:56 +00:00
" Locale " ,
_t ( 'Member.INTERFACELANG' , " Interface Language " , PR_MEDIUM , 'Language of the CMS' ),
2010-05-25 04:15:13 +00:00
i18n :: get_existing_translations ()
2008-10-03 16:23:56 +00:00
));
2008-10-09 17:31:32 +00:00
$mainFields -> removeByName ( 'Bounced' );
$mainFields -> removeByName ( 'RememberLoginToken' );
$mainFields -> removeByName ( 'AutoLoginHash' );
$mainFields -> removeByName ( 'AutoLoginExpired' );
$mainFields -> removeByName ( 'PasswordEncryption' );
$mainFields -> removeByName ( 'PasswordExpiry' );
$mainFields -> removeByName ( 'LockedOutUntil' );
2010-04-14 03:51:34 +00:00
if ( ! self :: $lock_out_after_incorrect_logins ) {
$mainFields -> removeByName ( 'FailedLoginCount' );
}
2008-10-09 17:31:32 +00:00
$mainFields -> removeByName ( 'Salt' );
$mainFields -> removeByName ( 'NumVisit' );
$mainFields -> removeByName ( 'LastVisited' );
2008-10-14 00:29:16 +00:00
2008-10-03 16:23:56 +00:00
$fields -> removeByName ( 'Subscriptions' );
2010-02-12 04:01:42 +00:00
2008-10-03 16:23:56 +00:00
// Groups relation will get us into logical conflicts because
// Members are displayed within group edit form in SecurityAdmin
$fields -> removeByName ( 'Groups' );
2010-02-12 04:01:42 +00:00
if ( Permission :: check ( 'EDIT_PERMISSIONS' )) {
$groupsField = new TreeMultiselectField ( 'Groups' , false , 'Group' );
$fields -> findOrMakeTab ( 'Root.Groups' , singleton ( 'Group' ) -> i18n_plural_name ());
$fields -> addFieldToTab ( 'Root.Groups' , $groupsField );
2010-02-22 04:37:36 +00:00
// Add permission field (readonly to avoid complicated group assignment logic).
// This should only be available for existing records, as new records start
// with no permissions until they have a group assignment anyway.
if ( $this -> ID ) {
$permissionsField = new PermissionCheckboxSetField_Readonly (
'Permissions' ,
singleton ( 'Permission' ) -> i18n_plural_name (),
'Permission' ,
'GroupID' ,
// we don't want parent relationships, they're automatically resolved in the field
$this -> getManyManyComponents ( 'Groups' )
);
$fields -> findOrMakeTab ( 'Root.Permissions' , singleton ( 'Permission' ) -> i18n_plural_name ());
$fields -> addFieldToTab ( 'Root.Permissions' , $permissionsField );
}
2010-02-12 04:01:42 +00:00
}
2010-10-15 03:23:02 +00:00
$defaultDateFormat = Zend_Locale_Format :: getDateFormat ( $this -> Locale );
$dateFormatMap = array (
'MMM d, yyyy' => Zend_Date :: now () -> toString ( 'MMM d, yyyy' ),
'yyyy/MM/dd' => Zend_Date :: now () -> toString ( 'yyyy/MM/dd' ),
'MM/dd/yyyy' => Zend_Date :: now () -> toString ( 'MM/dd/yyyy' ),
'dd/MM/yyyy' => Zend_Date :: now () -> toString ( 'dd/MM/yyyy' ),
);
$dateFormatMap [ $defaultDateFormat ] = Zend_Date :: now () -> toString ( $defaultDateFormat )
. sprintf ( ' (%s)' , _t ( 'Member.DefaultDateTime' , 'default' ));
$mainFields -> push (
$dateFormatField = new Member_DatetimeOptionsetField (
'DateFormat' ,
$this -> fieldLabel ( 'DateFormat' ),
$dateFormatMap
)
);
$dateFormatField -> setValue ( $this -> DateFormat );
$defaultTimeFormat = Zend_Locale_Format :: getTimeFormat ( $this -> Locale );
$timeFormatMap = array (
'h:mm a' => Zend_Date :: now () -> toString ( 'h:mm a' ),
'H:mm' => Zend_Date :: now () -> toString ( 'H:mm' ),
);
$timeFormatMap [ $defaultTimeFormat ] = Zend_Date :: now () -> toString ( $defaultTimeFormat )
. sprintf ( ' (%s)' , _t ( 'Member.DefaultDateTime' , 'default' ));
$mainFields -> push (
$timeFormatField = new Member_DatetimeOptionsetField (
'TimeFormat' ,
$this -> fieldLabel ( 'TimeFormat' ),
$timeFormatMap
)
);
$timeFormatField -> setValue ( $this -> TimeFormat );
2009-02-01 23:49:53 +00:00
$this -> extend ( 'updateCMSFields' , $fields );
2008-10-09 17:31:32 +00:00
return $fields ;
2007-07-19 10:40:28 +00:00
}
2008-10-03 18:30:27 +00:00
2009-04-29 00:07:39 +00:00
/**
*
* @ param boolean $includerelations a boolean value to indicate if the labels returned include relation fields
*
*/
function fieldLabels ( $includerelations = true ) {
$labels = parent :: fieldLabels ( $includerelations );
2008-10-03 18:30:27 +00:00
2010-04-13 01:49:24 +00:00
$labels [ 'FirstName' ] = _t ( 'Member.FIRSTNAME' , 'First Name' );
$labels [ 'Surname' ] = _t ( 'Member.SURNAME' , 'Surname' );
$labels [ 'Email' ] = _t ( 'Member.EMAIL' , 'Email' );
2008-11-02 20:04:10 +00:00
$labels [ 'Password' ] = _t ( 'Member.db_Password' , 'Password' );
$labels [ 'NumVisit' ] = _t ( 'Member.db_NumVisit' , 'Number of Visits' );
$labels [ 'LastVisited' ] = _t ( 'Member.db_LastVisited' , 'Last Visited Date' );
$labels [ 'PasswordExpiry' ] = _t ( 'Member.db_PasswordExpiry' , 'Password Expiry Date' , PR_MEDIUM , 'Password expiry date' );
$labels [ 'LockedOutUntil' ] = _t ( 'Member.db_LockedOutUntil' , 'Locked out until' , PR_MEDIUM , 'Security related date' );
$labels [ 'Locale' ] = _t ( 'Member.db_Locale' , 'Interface Locale' );
2009-04-29 00:07:39 +00:00
if ( $includerelations ){
$labels [ 'Groups' ] = _t ( 'Member.belongs_many_many_Groups' , 'Groups' , PR_MEDIUM , 'Security Groups this member belongs to' );
}
2008-10-03 18:30:27 +00:00
return $labels ;
}
2007-11-09 01:10:45 +00:00
2009-02-03 23:33:28 +00:00
/**
* Users can view their own record .
* Otherwise they ' ll need ADMIN or CMS_ACCESS_SecurityAdmin permissions .
* This is likely to be customized for social sites etc . with a looser permission model .
*/
function canView ( $member = null ) {
if ( ! $member || ! ( is_a ( $member , 'Member' )) || is_numeric ( $member )) $member = Member :: currentUser ();
2011-04-15 19:35:30 +10:00
// extended access checks
2009-02-03 23:33:28 +00:00
$results = $this -> extend ( 'canView' , $member );
2009-12-16 05:39:39 +00:00
if ( $results && is_array ( $results )) {
if ( ! min ( $results )) return false ;
else return true ;
}
2009-02-03 23:33:28 +00:00
// members can usually edit their own record
2009-12-16 05:39:39 +00:00
if ( $member && $this -> ID == $member -> ID ) return true ;
2009-02-03 23:33:28 +00:00
if (
Permission :: checkMember ( $member , 'ADMIN' )
|| Permission :: checkMember ( $member , 'CMS_ACCESS_SecurityAdmin' )
) {
return true ;
}
return false ;
}
/**
* Users can edit their own record .
* Otherwise they ' ll need ADMIN or CMS_ACCESS_SecurityAdmin permissions
*/
2008-11-25 22:34:57 +00:00
function canEdit ( $member = null ) {
2009-02-03 23:33:28 +00:00
if ( ! $member || ! ( is_a ( $member , 'Member' )) || is_numeric ( $member )) $member = Member :: currentUser ();
2011-04-15 19:35:30 +10:00
// extended access checks
2009-02-03 23:33:28 +00:00
$results = $this -> extend ( 'canEdit' , $member );
2009-12-16 05:39:39 +00:00
if ( $results && is_array ( $results )) {
if ( ! min ( $results )) return false ;
else return true ;
}
2009-02-03 23:33:28 +00:00
2009-11-21 01:43:16 +00:00
// No member found
if ( ! ( $member && $member -> exists ())) return false ;
2010-10-19 02:46:26 +00:00
// If the requesting member is not an admin, but has access to manage members,
// he still can't edit other members with ADMIN permission.
// This is a bit weak, strictly speaking he shouldn't be allowed to
// perform any action that could change the password on a member
// with "higher" permissions than himself, but thats hard to determine.
if ( ! Permission :: checkMember ( $member , 'ADMIN' ) && Permission :: checkMember ( $this , 'ADMIN' )) return false ;
2009-02-03 23:33:28 +00:00
return $this -> canView ( $member );
}
/**
* Users can edit their own record .
* Otherwise they ' ll need ADMIN or CMS_ACCESS_SecurityAdmin permissions
*/
function canDelete ( $member = null ) {
if ( ! $member || ! ( is_a ( $member , 'Member' )) || is_numeric ( $member )) $member = Member :: currentUser ();
2007-11-09 01:21:26 +00:00
2011-04-15 19:35:30 +10:00
// extended access checks
2009-02-03 23:33:28 +00:00
$results = $this -> extend ( 'canDelete' , $member );
2009-12-16 05:39:39 +00:00
if ( $results && is_array ( $results )) {
if ( ! min ( $results )) return false ;
else return true ;
}
2008-11-25 22:34:57 +00:00
2009-11-21 01:43:16 +00:00
// No member found
if ( ! ( $member && $member -> exists ())) return false ;
2009-02-03 23:33:28 +00:00
return $this -> canEdit ( $member );
2007-11-09 01:10:45 +00:00
}
2008-04-26 06:31:52 +00:00
/**
* Validate this member object .
*/
function validate () {
$valid = parent :: validate ();
2009-05-27 00:09:23 +00:00
if ( ! $this -> ID || $this -> isChanged ( 'Password' )) {
2008-10-02 02:45:58 +00:00
if ( $this -> Password && self :: $password_validator ) {
2008-04-26 06:31:52 +00:00
$valid -> combineAnd ( self :: $password_validator -> validate ( $this -> Password , $this ));
}
}
2009-05-27 00:09:23 +00:00
if (( ! $this -> ID && $this -> SetPassword ) || $this -> isChanged ( 'SetPassword' )) {
2008-10-02 02:45:58 +00:00
if ( $this -> SetPassword && self :: $password_validator ) {
2008-04-26 06:36:03 +00:00
$valid -> combineAnd ( self :: $password_validator -> validate ( $this -> SetPassword , $this ));
}
}
2008-04-26 06:31:52 +00:00
return $valid ;
}
2009-11-06 02:23:21 +00:00
/**
* Change password . This will cause rehashing according to
* the `PasswordEncryption` property .
*
* @ param String $password Cleartext password
*/
2008-04-26 06:31:52 +00:00
function changePassword ( $password ) {
$this -> Password = $password ;
$valid = $this -> validate ();
if ( $valid -> valid ()) {
$this -> AutoLoginHash = null ;
$this -> write ();
}
return $valid ;
}
2008-04-26 06:32:05 +00:00
/**
* Tell this member that someone made a failed attempt at logging in as them .
* This can be used to lock the user out temporarily if too many failed attempts are made .
*/
function registerFailedLogin () {
if ( self :: $lock_out_after_incorrect_logins ) {
// Keep a tally of the number of failed log-ins so that we can lock people out
2009-09-10 02:42:26 +00:00
$this -> FailedLoginCount = $this -> FailedLoginCount + 1 ;
$this -> write ();
2008-04-26 06:32:05 +00:00
2009-09-10 02:42:26 +00:00
if ( $this -> FailedLoginCount >= self :: $lock_out_after_incorrect_logins ) {
2008-04-26 06:32:05 +00:00
$this -> LockedOutUntil = date ( 'Y-m-d H:i:s' , time () + 15 * 60 );
$this -> write ();
}
}
}
2009-08-10 04:32:39 +00:00
/**
* Get the HtmlEditorConfig for this user to be used in the CMS .
2010-02-22 09:38:15 +00:00
* This is set by the group . If multiple configurations are set ,
* the one with the highest priority wins .
*
2009-08-10 04:32:39 +00:00
* @ return string
*/
function getHtmlEditorConfigForCMS () {
$currentName = '' ;
$currentPriority = 0 ;
foreach ( $this -> Groups () as $group ) {
$configName = $group -> HtmlEditorConfig ;
2010-02-22 09:38:15 +00:00
if ( $configName ) {
$config = HtmlEditorConfig :: get ( $group -> HtmlEditorConfig );
if ( $config && $config -> getOption ( 'priority' ) > $currentPriority ) {
$currentName = $configName ;
}
2009-08-10 04:32:39 +00:00
}
}
// If can't find a suitable editor, just default to cms
return $currentName ? $currentName : 'cms' ;
}
2007-07-19 10:40:28 +00:00
}
/**
2009-11-22 18:30:14 +13:00
* Represents a set of Groups attached to a member .
* Handles the hierarchy logic .
2008-02-25 02:10:37 +00:00
* @ package sapphire
* @ subpackage security
2007-07-19 10:40:28 +00:00
*/
2009-11-22 18:30:14 +13:00
class Member_GroupSet extends ManyManyList {
function __construct ( $dataClass , $joinTable , $localKey , $foreignKey , $extraFields = array ()) {
// Bypass the many-many constructor
DataList :: __construct ( $dataClass );
$this -> joinTable = $joinTable ;
$this -> localKey = $localKey ;
$this -> foreignKey = $foreignKey ;
$this -> extraFields = $extraFields ;
}
2007-07-19 10:40:28 +00:00
/**
2009-11-22 18:30:14 +13:00
* Link this group set to a specific member .
2007-07-19 10:40:28 +00:00
*/
2009-11-22 18:30:14 +13:00
public function setForeignID ( $id ) {
// Turn a 1-element array into a simple value
if ( is_array ( $id ) && sizeof ( $id ) == 1 ) $id = reset ( $id );
$this -> foreignID = $id ;
// Find directly applied groups
$manymanyFilter = $this -> foreignIDFilter ();
2011-10-07 14:11:07 +02:00
$groupIDs = DB :: query ( 'SELECT "GroupID" FROM "Group_Members" WHERE ' . $manymanyFilter ) -> column ();
2009-11-22 18:30:14 +13:00
// Get all ancestors
$allGroupIDs = array ();
while ( $groupIDs ) {
$allGroupIDs = array_merge ( $allGroupIDs , $groupIDs );
$groupIDs = DataObject :: get ( " Group " ) -> byIDs ( $groupIDs ) -> column ( " ParentID " );
$groupIDs = array_filter ( $groupIDs );
2007-07-19 10:40:28 +00:00
}
2009-11-22 18:30:14 +13:00
// Add a filter to this DataList
if ( $allGroupIDs ) $this -> byIDs ( $allGroupIDs );
else $this -> byIDs ( array ( 0 ));
}
/**
* @ deprecated Use setByIdList () and / or a CheckboxSetField
*/
function setByCheckboxes ( array $checkboxes , array $data ) {
2011-10-29 12:02:11 +13:00
Deprecation :: notice ( '2.4' , 'Use setByIdList() and/or a CheckboxSetField instead.' );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2007-09-14 19:10:18 +00:00
* Allows you to set groups based on a CheckboxSetField
2007-09-14 18:23:28 +00:00
*
2007-09-14 19:10:18 +00:00
* Pass the form element from your post data directly to this method , and
* it will update the groups and add and remove the member as appropriate .
2007-09-14 18:23:28 +00:00
*
2007-09-14 19:10:18 +00:00
* On the form setup :
2007-09-14 18:23:28 +00:00
*
2007-09-14 19:10:18 +00:00
* < code >
* $fields -> push (
* new CheckboxSetField (
* " NewsletterSubscriptions " ,
* " Receive email notification of events in " ,
* $sourceitems = DataObject :: get ( " NewsletterType " ) -> toDropDownMap ( " GroupID " , " Title " ),
* $selectedgroups = $member -> Groups () -> Map ( " ID " , " ID " )
* )
* );
* </ code >
2007-09-14 18:23:28 +00:00
*
* On the form handler :
*
2007-09-14 19:10:18 +00:00
* < code >
* $groups = $member -> Groups ();
* $checkboxfield = $form -> Fields () -> fieldByName ( " NewsletterSubscriptions " );
* $groups -> setByCheckboxSetField ( $checkboxfield );
* </ code >
*
* @ param CheckboxSetField $checkboxsetfield The CheckboxSetField ( with
* data ) from your form .
2007-07-19 10:40:28 +00:00
*/
2007-09-14 19:10:18 +00:00
function setByCheckboxSetField ( CheckboxSetField $checkboxsetfield ) {
2007-09-14 18:23:28 +00:00
// Get the values from the formfield.
2007-07-19 10:40:28 +00:00
$values = $checkboxsetfield -> Value ();
$sourceItems = $checkboxsetfield -> getSource ();
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
if ( $sourceItems ) {
2007-07-19 10:40:28 +00:00
// If (some) values are present, add and remove as necessary.
2007-09-14 19:10:18 +00:00
if ( $values ) {
2007-07-19 10:40:28 +00:00
// update the groups based on the selections
2007-09-14 19:10:18 +00:00
foreach ( $sourceItems as $k => $item ) {
if ( in_array ( $k , $values )) {
2007-07-19 10:40:28 +00:00
$add [] = $k ;
2007-09-14 19:10:18 +00:00
} else {
2007-07-19 10:40:28 +00:00
$remove [] = $k ;
2007-09-14 18:23:28 +00:00
}
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
// else we should be removing all from the necessary groups.
2007-09-14 19:10:18 +00:00
} else {
2008-02-25 02:10:37 +00:00
$remove = array_keys ( $sourceItems );
2007-07-19 10:40:28 +00:00
}
2007-09-14 19:10:18 +00:00
if ( $add )
$this -> addManyByGroupID ( $add );
if ( $remove )
$this -> RemoveManyByGroupID ( $remove );
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
} else {
USER_ERROR ( " Member::setByCheckboxSetField() - No source items could be found for checkboxsetfield " .
2011-10-29 13:07:40 +02:00
$checkboxsetfield -> getName (), E_USER_WARNING );
2007-07-19 10:40:28 +00:00
}
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2009-11-22 18:30:14 +13:00
* @ deprecated Use DataList :: addMany
2007-07-19 10:40:28 +00:00
*/
2009-11-22 18:30:14 +13:00
function addManyByGroupID ( $ids ){
2011-10-29 12:02:11 +13:00
Deprecation :: notice ( '2.4' , 'Use addMany() instead.' );
2009-11-22 18:30:14 +13:00
return $this -> addMany ( $ids );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2009-11-22 18:30:14 +13:00
* @ deprecated Use DataList :: removeMany
2007-07-19 10:40:28 +00:00
*/
2007-09-14 19:10:18 +00:00
function removeManyByGroupID ( $groupIds ) {
2011-10-29 12:02:11 +13:00
Deprecation :: notice ( '2.4' , 'Use removeMany() instead.' );
2009-11-22 18:30:14 +13:00
return $this -> removeMany ( $ids );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2009-11-22 18:30:14 +13:00
* @ deprecated Use DataObject :: get ( " Group " ) -> byIds ()
2007-07-19 10:40:28 +00:00
*/
2009-11-22 18:30:14 +13:00
function getGroupsFromIDs ( $ids ) {
2011-10-29 12:02:11 +13:00
Deprecation :: notice ( '2.4' , 'Use DataObject::get("Group")->byIds() instead.' );
2009-11-22 18:30:14 +13:00
return DataObject :: get ( " Group " ) -> byIDs ( $ids );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
/**
2009-11-22 18:30:14 +13:00
* @ deprecated Group . Code is deprecated
2007-07-19 10:40:28 +00:00
*/
function addManyByCodename ( $codenames ) {
2011-10-29 12:02:11 +13:00
Deprecation :: notice ( '2.4' , 'Don\'t rely on codename' );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
2007-07-19 10:40:28 +00:00
/**
2009-11-22 18:30:14 +13:00
* @ deprecated Group . Code is deprecated
2007-07-19 10:40:28 +00:00
*/
function removeManyByCodename ( $codenames ) {
2011-10-29 12:02:11 +13:00
Deprecation :: notice ( '2.4' , 'Don\'t rely on codename' );
2007-07-19 10:40:28 +00:00
}
}
2008-02-25 02:10:37 +00:00
/**
* Form for editing a member profile .
* @ package sapphire
* @ subpackage security
*/
2007-09-27 21:16:23 +00:00
class Member_ProfileForm extends Form {
function __construct ( $controller , $name , $member ) {
2011-04-30 15:11:10 +12:00
Requirements :: block ( SAPPHIRE_DIR . '/admin/css/layout.css' );
2007-09-27 21:16:23 +00:00
2010-10-15 03:23:02 +00:00
$fields = $member -> getCMSFields ();
2007-09-27 21:16:23 +00:00
$fields -> push ( new HiddenField ( 'ID' , 'ID' , $member -> ID ));
2011-05-11 17:51:54 +10:00
$actions = new FieldList (
2010-10-18 22:54:17 +00:00
new FormAction ( 'dosave' , _t ( 'CMSMain.SAVE' , 'Save' ))
2007-09-27 21:16:23 +00:00
);
2010-03-09 04:08:52 +00:00
$validator = new Member_Validator ();
2007-09-27 21:16:23 +00:00
parent :: __construct ( $controller , $name , $fields , $actions , $validator );
2011-04-30 16:48:57 +12:00
$this -> addExtraClass ( 'member-profile-form' );
2007-09-27 21:16:23 +00:00
$this -> loadDataFrom ( $member );
}
function dosave ( $data , $form ) {
2010-03-09 04:08:52 +00:00
// don't allow ommitting or changing the ID
if ( ! isset ( $data [ 'ID' ]) || $data [ 'ID' ] != Member :: currentUserID ()) {
return Director :: redirectBack ();
}
2007-09-27 21:16:23 +00:00
2010-03-09 04:08:52 +00:00
$SQL_data = Convert :: raw2sql ( $data );
2007-09-27 21:16:23 +00:00
$member = DataObject :: get_by_id ( " Member " , $SQL_data [ 'ID' ]);
2007-10-21 19:53:57 +00:00
if ( $SQL_data [ 'Locale' ] != $member -> Locale ) {
$form -> addErrorMessage ( " Generic " , _t ( 'Member.REFRESHLANG' ), " good " );
2007-09-27 21:16:23 +00:00
}
$form -> saveInto ( $member );
$member -> write ();
2008-12-04 22:38:32 +00:00
$closeLink = sprintf (
'<small><a href="' . $_SERVER [ 'HTTP_REFERER' ] . '" onclick="javascript:window.top.GB_hide(); return false;">(%s)</a></small>' ,
_t ( 'ComplexTableField.CLOSEPOPUP' , 'Close Popup' )
);
$message = _t ( 'Member.PROFILESAVESUCCESS' , 'Successfully saved.' ) . ' ' . $closeLink ;
$form -> sessionMessage ( $message , 'good' );
2007-09-27 21:16:23 +00:00
Director :: redirectBack ();
}
}
2007-09-14 19:10:18 +00:00
/**
* Class used as template to send an email to new members
2008-02-25 02:10:37 +00:00
* @ package sapphire
* @ subpackage security
2007-09-14 19:10:18 +00:00
*/
2008-06-12 09:29:05 +00:00
class Member_SignupEmail extends Email {
2007-10-25 02:47:45 +00:00
protected $from = '' ; // setting a blank from address uses the site's default administrator email
protected $subject = '' ;
protected $body = '' ;
function __construct () {
2009-09-18 03:07:15 +00:00
parent :: __construct ();
2007-10-25 02:47:45 +00:00
$this -> subject = _t ( 'Member.EMAILSIGNUPSUBJECT' , " Thanks for signing up " );
$this -> body = '
2007-11-06 05:42:28 +00:00
< h1 > ' . _t(' Member . GREETING ',' Welcome ') . ' , $FirstName .</ h1 >
2007-10-25 02:47:45 +00:00
< p > ' . _t(' Member . EMAILSIGNUPINTRO1 ',' Thanks for signing up to become a new member , your details are listed below for future reference . ') . ' </ p >
< p > ' . _t(' Member . EMAILSIGNUPINTRO2 ',' You can login to the website using the credentials listed below ') . ' :
2007-07-19 10:40:28 +00:00
< ul >
2007-10-25 02:47:45 +00:00
< li >< strong > ' . _t(' Member . EMAIL ') . ' </ strong > $Email </ li >
< li >< strong > ' . _t(' Member . PASSWORD ') . ' :</ strong > $Password </ li >
2007-07-19 10:40:28 +00:00
</ ul >
</ p >
2007-09-14 18:23:28 +00:00
2007-10-25 02:47:45 +00:00
< h3 > ' . _t(' Member . CONTACTINFO ',' Contact Information ') . ' </ h3 >
2007-07-19 10:40:28 +00:00
< ul >
2007-10-25 02:47:45 +00:00
< li >< strong > ' . _t(' Member . NAME ',' Name ') . ' :</ strong > $FirstName $Surname </ li >
2007-07-19 10:40:28 +00:00
<% if Phone %>
2007-10-25 02:47:45 +00:00
< li >< strong > ' . _t(' Member . PHONE ',' Phone ') . ' :</ strong > $Phone </ li >
2007-07-19 10:40:28 +00:00
<% end_if %>
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
<% if Mobile %>
2007-10-25 02:47:45 +00:00
< li >< strong > ' . _t(' Member . MOBILE ',' Mobile ') . ' :</ strong > $Mobile </ li >
2007-07-19 10:40:28 +00:00
<% end_if %>
2007-09-14 18:23:28 +00:00
2007-10-25 02:47:45 +00:00
< li >< strong > ' . _t(' Member . ADDRESS ',' Address ') . ' :</ strong >
< br />
$Number $Street $StreetType < br />
$Suburb < br />
$City $Postcode
</ li >
2007-09-14 18:23:28 +00:00
2007-10-25 02:47:45 +00:00
</ ul >
' ;
}
2007-07-19 10:40:28 +00:00
}
2007-09-14 19:10:18 +00:00
/**
* Class used as template to send an email saying that the password has been
* changed
2008-02-25 02:10:37 +00:00
* @ package sapphire
* @ subpackage security
2007-09-14 19:10:18 +00:00
*/
2008-06-12 09:29:05 +00:00
class Member_ChangePasswordEmail extends Email {
2007-07-19 10:40:28 +00:00
protected $from = '' ; // setting a blank from address uses the site's default administrator email
2007-10-25 02:47:45 +00:00
protected $subject = '' ;
2007-07-19 10:40:28 +00:00
protected $ss_template = 'ChangePasswordEmail' ;
2007-10-25 02:47:45 +00:00
function __construct () {
2009-09-18 03:07:15 +00:00
parent :: __construct ();
2007-10-25 02:47:45 +00:00
$this -> subject = _t ( 'Member.SUBJECTPASSWORDCHANGED' , " Your password has been changed " , PR_MEDIUM , 'Email subject' );
}
2007-07-19 10:40:28 +00:00
}
2007-09-14 19:10:18 +00:00
/**
* Class used as template to send the forgot password email
2008-02-25 02:10:37 +00:00
* @ package sapphire
* @ subpackage security
2007-09-14 19:10:18 +00:00
*/
2008-06-12 09:29:05 +00:00
class Member_ForgotPasswordEmail extends Email {
2007-09-14 19:10:18 +00:00
protected $from = '' ; // setting a blank from address uses the site's default administrator email
2007-10-25 02:47:45 +00:00
protected $subject = '' ;
2007-07-19 10:40:28 +00:00
protected $ss_template = 'ForgotPasswordEmail' ;
2007-10-25 02:47:45 +00:00
function __construct () {
2009-09-18 03:07:15 +00:00
parent :: __construct ();
2007-10-25 02:47:45 +00:00
$this -> subject = _t ( 'Member.SUBJECTPASSWORDRESET' , " Your password reset link " , PR_MEDIUM , 'Email subject' );
}
2007-07-19 10:40:28 +00:00
}
2007-09-14 19:10:18 +00:00
/**
* Member Validator
2008-02-25 02:10:37 +00:00
* @ package sapphire
* @ subpackage security
2007-09-14 19:10:18 +00:00
*/
2007-07-19 10:40:28 +00:00
class Member_Validator extends RequiredFields {
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
protected $customRequired = array ( 'FirstName' , 'Email' ); //, 'Password');
/**
* Constructor
*/
2007-07-19 10:40:28 +00:00
public function __construct () {
$required = func_get_args ();
if ( isset ( $required [ 0 ]) && is_array ( $required [ 0 ])) {
$required = $required [ 0 ];
}
$required = array_merge ( $required , $this -> customRequired );
2007-09-14 18:23:28 +00:00
2007-09-14 19:10:18 +00:00
parent :: __construct ( $required );
2007-07-19 10:40:28 +00:00
}
2007-09-14 18:23:28 +00:00
2007-07-19 10:40:28 +00:00
2007-09-14 19:10:18 +00:00
/**
2007-09-16 16:55:47 +00:00
* Check if the submitted member data is valid ( server - side )
2007-09-14 19:10:18 +00:00
*
* Check if a member with that email doesn ' t already exist , or if it does
* that it is this member .
*
* @ param array $data Submitted data
* @ return bool Returns TRUE if the submitted data is valid , otherwise
* FALSE .
*/
2007-07-19 10:40:28 +00:00
function php ( $data ) {
$valid = parent :: php ( $data );
2009-02-01 23:49:53 +00:00
$identifierField = Member :: get_unique_identifier_field ();
$SQL_identifierField = Convert :: raw2sql ( $data [ $identifierField ]);
$member = DataObject :: get_one ( 'Member' , " \" $identifierField\ " = '{$SQL_identifierField}' " );
2007-09-14 18:23:28 +00:00
2009-02-01 23:49:53 +00:00
// if we are in a complex table field popup, use ctf[childID], else use ID
if ( isset ( $_REQUEST [ 'ctf' ][ 'childID' ])) {
2008-02-25 02:10:37 +00:00
$id = $_REQUEST [ 'ctf' ][ 'childID' ];
2009-02-01 23:49:53 +00:00
} elseif ( isset ( $_REQUEST [ 'ID' ])) {
2008-02-25 02:10:37 +00:00
$id = $_REQUEST [ 'ID' ];
2009-02-01 23:49:53 +00:00
} else {
2008-02-25 02:10:37 +00:00
$id = null ;
2009-02-01 23:49:53 +00:00
}
2008-02-25 02:10:37 +00:00
if ( $id && is_object ( $member ) && $member -> ID != $id ) {
2009-02-01 23:49:53 +00:00
$uniqueField = $this -> form -> dataFieldByName ( $identifierField );
$this -> validationError (
$uniqueField -> id (),
sprintf (
_t (
'Member.VALIDATIONMEMBEREXISTS' ,
'A member already exists with the same %s'
),
strtolower ( $identifierField )
),
'required'
);
2007-07-19 10:40:28 +00:00
$valid = false ;
}
2007-09-14 18:23:28 +00:00
2007-09-16 16:55:47 +00:00
// Execute the validators on the extensions
if ( $this -> extension_instances ) {
foreach ( $this -> extension_instances as $extension ) {
2009-11-03 02:33:53 +00:00
if ( method_exists ( $extension , 'hasMethod' ) && $extension -> hasMethod ( 'updatePHP' )) {
2007-09-16 16:55:47 +00:00
$valid &= $extension -> updatePHP ( $data , $this -> form );
}
}
}
2007-07-19 10:40:28 +00:00
return $valid ;
}
2007-09-16 16:55:47 +00:00
/**
* Check if the submitted member data is valid ( client - side )
*
* @ param array $data Submitted data
* @ return bool Returns TRUE if the submitted data is valid , otherwise
* FALSE .
*/
function javascript () {
$js = parent :: javascript ();
// Execute the validators on the extensions
if ( $this -> extension_instances ) {
foreach ( $this -> extension_instances as $extension ) {
2009-11-03 02:33:53 +00:00
if ( method_exists ( $extension , 'hasMethod' ) && $extension -> hasMethod ( 'updateJavascript' )) {
2007-09-16 16:55:47 +00:00
$extension -> updateJavascript ( $js , $this -> form );
}
}
}
return $js ;
}
2010-05-25 04:15:13 +00:00
2007-07-19 10:40:28 +00:00
}
2010-10-15 03:23:02 +00:00
/**
* @ package sapphire
* @ subpackage security
*/
class Member_DatetimeOptionsetField extends OptionsetField {
function Field () {
Requirements :: javascript ( THIRDPARTY_DIR . '/thirdparty/jquery/jquery.js' );
Requirements :: javascript ( SAPPHIRE_DIR . '/javascript/MemberDatetimeOptionsetField.js' );
$options = '' ;
$odd = 0 ;
$source = $this -> getSource ();
foreach ( $source as $key => $value ) {
2010-10-18 22:37:11 +00:00
// convert the ID to an HTML safe value (dots are not replaced, as they are valid in an ID attribute)
2010-10-18 22:34:09 +00:00
$itemID = $this -> id () . '_' . preg_replace ( '/[^\.a-zA-Z0-9\-\_]/' , '_' , $key );
2010-10-15 03:23:02 +00:00
if ( $key == $this -> value ) {
$useValue = false ;
$checked = " checked= \" checked \" " ;
} else {
$checked = " " ;
}
$odd = ( $odd + 1 ) % 2 ;
$extraClass = $odd ? " odd " : " even " ;
$extraClass .= " val " . preg_replace ( '/[^a-zA-Z0-9\-\_]/' , '_' , $key );
$disabled = ( $this -> disabled || in_array ( $key , $this -> disabledItems )) ? " disabled= \" disabled \" " : " " ;
2010-10-18 22:34:09 +00:00
$ATT_key = Convert :: raw2att ( $key );
$options .= " <li class= \" " . $extraClass . " \" ><input id= \" $itemID\ " name = \ " $this->name\ " type = \ " radio \" value= \" $key\ " $checked $disabled class = \ " radio \" /> <label title= \" $ATT_key\ " for = \ " $itemID\ " > $value </ label ></ li > \n " ;
2010-10-15 03:23:02 +00:00
}
// Add "custom" input field
$value = ( $this -> value && ! array_key_exists ( $this -> value , $this -> source )) ? $this -> value : null ;
$checked = ( $value ) ? " checked= \" checked \" " : '' ;
$options .= " <li class= \" valCustom \" > "
. sprintf ( " <input id= \" %s_custom \" name= \" %s \" type= \" radio \" value= \" __custom__ \" class= \" radio \" %s /> " , $itemID , $this -> name , $checked )
. sprintf ( '<label for="%s_custom">%s:</label>' , $itemID , _t ( 'MemberDatetimeOptionsetField.Custom' , 'Custom' ))
. sprintf ( " <input class= \" customFormat \" name= \" %s_custom \" value= \" %s \" /> \n " , $this -> name , $value )
. sprintf ( " <input type= \" hidden \" class= \" formatValidationURL \" value= \" %s \" /> " , $this -> Link () . '/validate' );
$options .= ( $value ) ? sprintf (
'<span class="preview">(%s: "%s")</span>' ,
_t ( 'MemberDatetimeOptionsetField.Preview' , 'Preview' ),
Zend_Date :: now () -> toString ( $value )
) : '' ;
2010-10-15 03:23:43 +00:00
$options .= " <a class= \" formattingHelpToggle \" href= \" # \" > " . _t ( 'MemberDatetimeOptionsetField.TOGGLEHELP' , 'Toggle formatting help' ) . " </a> " ;
2010-10-15 03:23:02 +00:00
$options .= " <div class= \" formattingHelpText \" > " ;
$options .= $this -> getFormattingHelpText ();
$options .= " </div> " ;
$options .= " </li> \n " ;
$id = $this -> id ();
return " <ul id= \" $id\ " class = \ " optionset { $this -> extraClass () } \" > \n $options </ul> \n " ;
}
/**
* @ todo Put this text into a template ?
*/
function getFormattingHelpText () {
2010-10-15 03:23:22 +00:00
$output = '<ul>' ;
$output .= '<li>YYYY = ' . _t ( 'MemberDatetimeOptionsetField.FOURDIGITYEAR' , 'Four-digit year' , 40 , 'Help text describing what "YYYY" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>YY = ' . _t ( 'MemberDatetimeOptionsetField.TWODIGITYEAR' , 'Two-digit year' , 40 , 'Help text describing what "YY" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>MMMM = ' . _t ( 'MemberDatetimeOptionsetField.FULLNAMEMONTH' , 'Full name of month (e.g. June)' , 40 , 'Help text describing what "MMMM" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>MMM = ' . _t ( 'MemberDatetimeOptionsetField.SHORTMONTH' , 'Short name of month (e.g. Jun)' , 40 , 'Help text letting describing what "MMM" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>MM = ' . _t ( 'MemberDatetimeOptionsetField.TWODIGITMONTH' , 'Two-digit month (01=January, etc.)' , 40 , 'Help text describing what "MM" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>M = ' . _t ( 'MemberDatetimeOptionsetField.MONTHNOLEADING' , 'Month digit without leading zero' , 40 , 'Help text describing what "M" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>dd = ' . _t ( 'MemberDatetimeOptionsetField.TWODIGITDAY' , 'Two-digit day of month' , 40 , 'Help text describing what "dd" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>d = ' . _t ( 'MemberDatetimeOptionsetField.DAYNOLEADING' , 'Day of month without leading zero' , 40 , 'Help text describing what "d" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>hh = ' . _t ( 'MemberDatetimeOptionsetField.TWODIGITHOUR' , 'Two digits of hour (00 through 23)' , 40 , 'Help text describing what "hh" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>h = ' . _t ( 'MemberDatetimeOptionsetField.HOURNOLEADING' , 'Hour without leading zero' , 40 , 'Help text describing what "h" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>mm = ' . _t ( 'MemberDatetimeOptionsetField.TWODIGITMINUTE' , 'Two digits of minute (00 through 59)' , 40 , 'Help text describing what "mm" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>m = ' . _t ( 'MemberDatetimeOptionsetField.MINUTENOLEADING' , 'Minute without leading zero' , 40 , 'Help text describing what "m" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>ss = ' . _t ( 'MemberDatetimeOptionsetField.TWODIGITSECOND' , 'Two digits of second (00 through 59)' , 40 , 'Help text describing what "ss" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>s = ' . _t ( 'MemberDatetimeOptionsetField.DIGITSDECFRACTIONSECOND' , 'One or more digits representing a decimal fraction of a second' , 40 , 'Help text describing what "s" means in ISO date formatting' ) . '</li>' ;
$output .= '<li>a = ' . _t ( 'MemberDatetimeOptionsetField.AMORPM' , 'AM (Ante meridiem) or PM (Post meridiem)' , 40 , 'Help text describing what "a" means in ISO date formatting' ) . '</li>' ;
$output .= '</ul>' ;
return $output ;
2010-10-15 03:23:02 +00:00
}
function setValue ( $value ) {
if ( $value == '__custom__' ) {
$value = isset ( $_REQUEST [ $this -> name . '_custom' ]) ? $_REQUEST [ $this -> name . '_custom' ] : null ;
}
if ( $value ) {
parent :: setValue ( $value );
}
}
function validate () {
$value = isset ( $_POST [ $this -> name . '_custom' ]) ? $_POST [ $this -> name . '_custom' ] : null ;
if ( ! $value ) return true ; // no custom value, don't validate
// Check that the current date with the date format is valid or not
$validator = $this -> form ? $this -> form -> getValidator () : null ;
require_once 'Zend/Date.php' ;
$date = Zend_Date :: now () -> toString ( $value );
$valid = Zend_Date :: isDate ( $date , $value );
if ( $valid ) {
return true ;
} else {
if ( $validator ) {
2010-10-15 03:23:22 +00:00
$validator -> validationError ( $this -> name , _t ( 'MemberDatetimeOptionsetField.DATEFORMATBAD' , " Date format is invalid " ), " validation " , false );
2010-10-15 03:23:02 +00:00
}
return false ;
}
}
}