streams/Code/Module/Settings/Account.php

<?php

namespace Code\Module\Settings;

use App;
use Code\Extend\Hook;
use Code\Render\Theme;


class Account
{

    public function post()
    {
        check_form_security_token_redirectOnErr('/settings/account', 'settings_account');

        Hook::call('account_settings_post', $_POST);

        $errs = [];

        $email = ((x($_POST, 'email')) ? trim(notags($_POST['email'])) : '');

        $account = App::get_account();
        if ($email != $account['account_email']) {
            if (!validate_email($email)) {
                $errs[] = t('Not valid email.');
            }
            $adm = trim(get_config('system', 'admin_email'));
            if (($adm) && (strcasecmp($email, $adm) == 0)) {
                $errs[] = t('Protected email address. Cannot change to that email.');
                $email = App::$account['account_email'];
            }
            if (!$errs) {
                $r = q(
                    "update account set account_email = '%s' where account_id = %d",
                    dbesc($email),
                    intval($account['account_id'])
                );
                if (!$r) {
                    $errs[] = t('System failure storing new email. Please try again.');
                }
            }
        }

        if ($errs) {
            foreach ($errs as $err) {
                notice($err . EOL);
            }
            $errs = [];
        }


        if ((x($_POST, 'npassword')) || (x($_POST, 'confirm'))) {
            $origpass = trim($_POST['origpass']);

            require_once('include/auth.php');
            if (!account_verify_password($email, $origpass)) {
                $errs[] = t('Password verification failed.');
            }

            $newpass = trim($_POST['npassword']);
            $confirm = trim($_POST['confirm']);

            if ($newpass != $confirm) {
                $errs[] = t('Passwords do not match. Password unchanged.');
            }

            if ((!x($newpass)) || (!x($confirm))) {
                $errs[] = t('Empty passwords are not allowed. Password unchanged.');
            }

            if (!$errs) {
                $salt = random_string(32);
                $password_encoded = hash('whirlpool', $salt . $newpass);
                $r = q(
                    "update account set account_salt = '%s', account_password = '%s', account_password_changed = '%s' 
					where account_id = %d",
                    dbesc($salt),
                    dbesc($password_encoded),
                    dbesc(datetime_convert()),
                    intval(get_account_id())
                );
                if ($r) {
                    info(t('Password changed.') . EOL);
                } else {
                    $errs[] = t('Password update failed. Please try again.');
                }
            }
        }


        if ($errs) {
            foreach ($errs as $err) {
                notice($err . EOL);
            }
        }
        goaway(z_root() . '/settings/account');
    }


    public function get()
    {
        $account_settings = "";

        Hook::call('account_settings', $account_settings);

        $email = App::$account['account_email'];


        $tpl = Theme::get_template("settings_account.tpl");
        $o .= replace_macros($tpl, array(
            '$form_security_token' => get_form_security_token("settings_account"),
            '$title' => t('Account Settings'),
            '$origpass' => array('origpass', t('Current Password'), ' ', ''),
            '$password1' => array('npassword', t('Enter New Password'), '', ''),
            '$password2' => array('confirm', t('Confirm New Password'), '', t('Leave password fields blank unless changing')),
            '$submit' => t('Submit'),
            '$email' => array('email', t('Email Address:'), $email, ''),
            '$removeme' => t('Remove Account'),
            '$removeaccount' => t('Remove this account including all its channels'),
            '$account_settings' => $account_settings
        ));
        return $o;
    }
}
turn Settings page into sub-modules 2016-09-07 03:10:56 +00:00			`<?php`

it's done 2022-02-16 04:08:28 +00:00			`namespace Code\Module\Settings;`
turn Settings page into sub-modules 2016-09-07 03:10:56 +00:00
initial psr12 conversion 2021-12-02 22:33:36 +00:00			`use App;`
it's done 2022-02-16 04:08:28 +00:00			`use Code\Extend\Hook;`
			`use Code\Render\Theme;`
fixes 2022-02-12 20:43:29 +00:00
initial psr12 conversion 2021-12-02 22:33:36 +00:00
psr12 updates 2021-12-02 23:02:31 +00:00			`class Account`
			`{`

			`public function post()`
			`{`
			`check_form_security_token_redirectOnErr('/settings/account', 'settings_account');`

This checkin is surely broken, but I need to commit it because it represents a fair bit of work. 2022-02-12 08:50:48 +00:00			`Hook::call('account_settings_post', $_POST);`
psr12 updates 2021-12-02 23:02:31 +00:00
			`$errs = [];`

			`$email = ((x($_POST, 'email')) ? trim(notags($_POST['email'])) : '');`

			`$account = App::get_account();`
			`if ($email != $account['account_email']) {`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`if (!validate_email($email)) {`
psr12 updates 2021-12-02 23:02:31 +00:00			`$errs[] = t('Not valid email.');`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`}`
psr12 updates 2021-12-02 23:02:31 +00:00			`$adm = trim(get_config('system', 'admin_email'));`
			`if (($adm) && (strcasecmp($email, $adm) == 0)) {`
			`$errs[] = t('Protected email address. Cannot change to that email.');`
			`$email = App::$account['account_email'];`
			`}`
			`if (!$errs) {`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`$r = q(`
			`"update account set account_email = '%s' where account_id = %d",`
psr12 updates 2021-12-02 23:02:31 +00:00			`dbesc($email),`
			`intval($account['account_id'])`
			`);`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`if (!$r) {`
psr12 updates 2021-12-02 23:02:31 +00:00			`$errs[] = t('System failure storing new email. Please try again.');`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`}`
psr12 updates 2021-12-02 23:02:31 +00:00			`}`
			`}`

			`if ($errs) {`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`foreach ($errs as $err) {`
psr12 updates 2021-12-02 23:02:31 +00:00			`notice($err . EOL);`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`}`
psr12 updates 2021-12-02 23:02:31 +00:00			`$errs = [];`
			`}`


			`if ((x($_POST, 'npassword')) \|\| (x($_POST, 'confirm'))) {`
			`$origpass = trim($_POST['origpass']);`

			`require_once('include/auth.php');`
			`if (!account_verify_password($email, $origpass)) {`
			`$errs[] = t('Password verification failed.');`
			`}`

			`$newpass = trim($_POST['npassword']);`
			`$confirm = trim($_POST['confirm']);`

			`if ($newpass != $confirm) {`
			`$errs[] = t('Passwords do not match. Password unchanged.');`
			`}`

			`if ((!x($newpass)) \|\| (!x($confirm))) {`
			`$errs[] = t('Empty passwords are not allowed. Password unchanged.');`
			`}`

			`if (!$errs) {`
			`$salt = random_string(32);`
			`$password_encoded = hash('whirlpool', $salt . $newpass);`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`$r = q(`
			`"update account set account_salt = '%s', account_password = '%s', account_password_changed = '%s'`
turn Settings page into sub-modules 2016-09-07 03:10:56 +00:00			`where account_id = %d",`
psr12 updates 2021-12-02 23:02:31 +00:00			`dbesc($salt),`
			`dbesc($password_encoded),`
			`dbesc(datetime_convert()),`
			`intval(get_account_id())`
			`);`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`if ($r) {`
psr12 updates 2021-12-02 23:02:31 +00:00			`info(t('Password changed.') . EOL);`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`} else {`
psr12 updates 2021-12-02 23:02:31 +00:00			`$errs[] = t('Password update failed. Please try again.');`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`}`
psr12 updates 2021-12-02 23:02:31 +00:00			`}`
			`}`


			`if ($errs) {`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`foreach ($errs as $err) {`
psr12 updates 2021-12-02 23:02:31 +00:00			`notice($err . EOL);`
psr12 rewrites, continued 2021-12-03 03:01:39 +00:00			`}`
psr12 updates 2021-12-02 23:02:31 +00:00			`}`
			`goaway(z_root() . '/settings/account');`
			`}`


			`public function get()`
			`{`
			`$account_settings = "";`

This checkin is surely broken, but I need to commit it because it represents a fair bit of work. 2022-02-12 08:50:48 +00:00			`Hook::call('account_settings', $account_settings);`
psr12 updates 2021-12-02 23:02:31 +00:00
			`$email = App::$account['account_email'];`


fixes 2022-02-12 20:43:29 +00:00			`$tpl = Theme::get_template("settings_account.tpl");`
psr12 updates 2021-12-02 23:02:31 +00:00			`$o .= replace_macros($tpl, array(`
			`'$form_security_token' => get_form_security_token("settings_account"),`
			`'$title' => t('Account Settings'),`
			`'$origpass' => array('origpass', t('Current Password'), ' ', ''),`
			`'$password1' => array('npassword', t('Enter New Password'), '', ''),`
			`'$password2' => array('confirm', t('Confirm New Password'), '', t('Leave password fields blank unless changing')),`
			`'$submit' => t('Submit'),`
			`'$email' => array('email', t('Email Address:'), $email, ''),`
			`'$removeme' => t('Remove Account'),`
			`'$removeaccount' => t('Remove this account including all its channels'),`
			`'$account_settings' => $account_settings`
			`));`
			`return $o;`
			`}`
fix settings/account 2016-09-12 13:03:51 +00:00			`}`