2012-12-26 14:02:27 +01:00
< ? php
2014-09-28 14:50:08 +02:00
2014-05-13 15:51:45 +02:00
/**
* User model
*/
2014-12-26 01:49:59 +01:00
/**
* Update user .
2014-12-26 19:26:53 +01:00
*
2014-12-26 01:49:59 +01:00
* @ param User $user
*/
function User_update ( $user ) {
return sql_query ( " UPDATE `User` SET
`Nick` = '" . sql_escape($user[' Nick ']) . "' ,
`Name` = '" . sql_escape($user[' Name ']) . "' ,
`Vorname` = '" . sql_escape($user[' Vorname ']) . "' ,
2014-12-28 13:44:56 +01:00
`Alter` = '" . sql_escape($user[' Alter ']) . "' ,
2014-12-26 01:49:59 +01:00
`Telefon` = '" . sql_escape($user[' Telefon ']) . "' ,
`DECT` = '" . sql_escape($user[' DECT ']) . "' ,
`Handy` = '" . sql_escape($user[' Handy ']) . "' ,
`email` = '" . sql_escape($user[' email ']) . "' ,
2014-12-28 13:44:56 +01:00
`email_shiftinfo` = " . sql_bool( $user['email_shiftinfo'] ) . " ,
2014-12-26 01:49:59 +01:00
`jabber` = '" . sql_escape($user[' jabber ']) . "' ,
`Size` = '" . sql_escape($user[' Size ']) . "' ,
2014-12-28 13:44:56 +01:00
`Gekommen` = '" . sql_escape($user[' Gekommen ']) . "' ,
`Aktiv` = '" . sql_escape($user[' Aktiv ']) . "' ,
`force_active` = " . sql_bool( $user['force_active'] ) . " ,
`Tshirt` = '" . sql_escape($user[' Tshirt ']) . "' ,
`color` = '" . sql_escape($user[' color ']) . "' ,
2014-12-26 01:49:59 +01:00
`Sprache` = '" . sql_escape($user[' Sprache ']) . "' ,
`Hometown` = '" . sql_escape($user[' Hometown ']) . "' ,
2015-07-12 14:45:58 +02:00
`got_voucher` = " . sql_bool( $user['got_voucher'] ) . " ,
2015-08-11 12:04:22 +02:00
`arrival_date` = '" . sql_escape($user[' arrival_date ']) . "' ,
2015-07-12 14:45:58 +02:00
`planned_arrival_date` = '" . sql_escape($user[' planned_arrival_date ']) . "'
WHERE `UID` = '" . sql_escape($user[' UID ']) . "' " );
2014-12-26 01:49:59 +01:00
}
2014-09-28 15:01:02 +02:00
/**
* Counts all forced active users .
*/
function User_force_active_count () {
return sql_select_single_cell ( " SELECT COUNT(*) FROM `User` WHERE `force_active` = 1 " );
}
function User_active_count () {
return sql_select_single_cell ( " SELECT COUNT(*) FROM `User` WHERE `Aktiv` = 1 " );
}
2014-12-26 01:49:59 +01:00
function User_got_voucher_count () {
return sql_select_single_cell ( " SELECT COUNT(*) FROM `User` WHERE `got_voucher` = TRUE " );
}
2014-09-28 15:01:02 +02:00
function User_arrived_count () {
return sql_select_single_cell ( " SELECT COUNT(*) FROM `User` WHERE `Gekommen` = 1 " );
}
function User_tshirts_count () {
return sql_select_single_cell ( " SELECT COUNT(*) FROM `User` WHERE `Tshirt` = 1 " );
}
/**
* Returns all column names for sorting in an array .
*/
function User_sortable_columns () {
return array (
'Nick' ,
'Name' ,
'Vorname' ,
'Alter' ,
'DECT' ,
'email' ,
'Size' ,
'Gekommen' ,
'Aktiv' ,
'force_active' ,
'Tshirt' ,
2014-12-26 01:49:59 +01:00
'lastLogIn'
2014-09-28 15:01:02 +02:00
);
}
2014-09-28 14:50:08 +02:00
/**
* Get all users , ordered by Nick by default or by given param .
2014-09-28 15:01:02 +02:00
*
2014-12-26 01:49:59 +01:00
* @ param string $order_by
2014-09-28 14:50:08 +02:00
*/
function Users ( $order_by = 'Nick' ) {
return sql_select ( " SELECT * FROM `User` ORDER BY ` " . sql_escape ( $order_by ) . " ` ASC " );
}
2014-08-23 01:55:18 +02:00
/**
* Returns true if user is freeloader
*
2014-12-26 01:49:59 +01:00
* @ param User $user
2014-08-23 01:55:18 +02:00
*/
function User_is_freeloader ( $user ) {
global $max_freeloadable_shifts , $user ;
2014-12-26 01:49:59 +01:00
2014-08-23 01:55:18 +02:00
return count ( ShiftEntries_freeloaded_by_user ( $user )) >= $max_freeloadable_shifts ;
}
2014-05-13 15:51:45 +02:00
/**
* Returns all users that are not member of given angeltype .
*
2014-12-26 01:49:59 +01:00
* @ param Angeltype $angeltype
2014-05-13 15:51:45 +02:00
*/
function Users_by_angeltype_inverted ( $angeltype ) {
return sql_select ( "
2014-12-12 23:39:54 +01:00
SELECT `User` .*
FROM `User`
2014-12-28 13:44:56 +01:00
LEFT JOIN `UserAngelTypes` ON ( `User` . `UID` = `UserAngelTypes` . `user_id` AND `angeltype_id` = '" . sql_escape($angeltype[' id ']) . "' )
2014-05-13 15:51:45 +02:00
WHERE `UserAngelTypes` . `id` IS NULL
ORDER BY `Nick` " );
}
2013-10-13 00:52:44 +02:00
2014-01-05 19:30:06 +01:00
/**
* Returns all members of given angeltype .
2014-05-13 15:51:45 +02:00
*
2014-12-26 01:49:59 +01:00
* @ param Angeltype $angeltype
2014-01-05 19:30:06 +01:00
*/
function Users_by_angeltype ( $angeltype ) {
return sql_select ( "
2014-12-12 23:39:54 +01:00
SELECT
`User` .* ,
`UserAngelTypes` . `id` as `user_angeltype_id` ,
2014-05-13 15:51:45 +02:00
`UserAngelTypes` . `confirm_user_id` ,
`UserAngelTypes` . `coordinator`
2014-01-05 19:30:06 +01:00
FROM `User`
JOIN `UserAngelTypes` ON `User` . `UID` = `UserAngelTypes` . `user_id`
2014-12-28 13:44:56 +01:00
WHERE `UserAngelTypes` . `angeltype_id` = '" . sql_escape($angeltype[' id ']) . "'
2014-01-05 19:30:06 +01:00
ORDER BY `Nick` " );
}
2013-12-29 15:08:21 +01:00
/**
* Returns User id array
*/
2014-01-07 15:50:16 +01:00
function User_ids () {
return sql_select ( " SELECT `UID` FROM `User` " );
2013-12-29 15:08:21 +01:00
}
2013-12-27 19:45:50 +01:00
/**
* Strip unwanted characters from a users nick .
2014-01-05 19:30:06 +01:00
*
2014-12-26 01:49:59 +01:00
* @ param string $nick
2013-12-27 19:45:50 +01:00
*/
function User_validate_Nick ( $nick ) {
return preg_replace ( " /([^a-z0-9üöäß. _+*-] { 1,})/ui " , '' , $nick );
}
2012-12-26 14:02:27 +01:00
/**
* Returns user by id .
2013-10-13 00:52:44 +02:00
*
2014-12-26 01:49:59 +01:00
* @ param $id UID
2012-12-26 14:02:27 +01:00
*/
function User ( $id ) {
2014-12-28 13:44:56 +01:00
$user_source = sql_select ( " SELECT * FROM `User` WHERE `UID`=' " . sql_escape ( $id ) . " ' LIMIT 1 " );
2013-10-13 00:52:44 +02:00
if ( $user_source === false )
2013-09-18 01:38:36 +02:00
return false ;
2013-10-13 00:52:44 +02:00
if ( count ( $user_source ) > 0 )
2012-12-26 14:02:27 +01:00
return $user_source [ 0 ];
return null ;
}
2013-12-29 15:08:21 +01:00
/**
2014-01-07 15:50:16 +01:00
* TODO : Merge into normal user function
2013-12-29 15:08:21 +01:00
* Returns user by id ( limit informations .
*
2014-12-26 01:49:59 +01:00
* @ param $id UID
2013-12-29 15:08:21 +01:00
*/
function mUser_Limit ( $id ) {
2015-07-12 13:51:39 +02:00
$user_source = sql_select ( " SELECT `UID`, `Nick`, `Name`, `Vorname`, `Telefon`, `DECT`, `Handy`, `email`, `jabber` FROM `User` WHERE `UID`=' " . sql_escape ( $id ) . " ' LIMIT 1 " );
2013-12-29 15:08:21 +01:00
if ( $user_source === false )
return false ;
if ( count ( $user_source ) > 0 )
return $user_source [ 0 ];
return null ;
}
2013-09-10 14:27:31 +02:00
/**
* Returns User by api_key .
2013-10-13 00:52:44 +02:00
*
* @ param string $api_key
* User api key
2013-09-10 14:27:31 +02:00
* @ return Matching user , null or false on error
*/
function User_by_api_key ( $api_key ) {
$user = sql_select ( " SELECT * FROM `User` WHERE `api_key`=' " . sql_escape ( $api_key ) . " ' LIMIT 1 " );
2013-10-13 00:52:44 +02:00
if ( $user === false )
2013-09-10 14:27:31 +02:00
return false ;
if ( count ( $user ) == 0 )
return null ;
return $user [ 0 ];
}
2013-12-26 13:34:48 +01:00
/**
* Returns User by email .
*
2014-12-26 01:49:59 +01:00
* @ param string $email
2013-12-26 13:34:48 +01:00
* @ return Matching user , null or false on error
*/
function User_by_email ( $email ) {
$user = sql_select ( " SELECT * FROM `User` WHERE `email`=' " . sql_escape ( $email ) . " ' LIMIT 1 " );
if ( $user === false )
return false ;
if ( count ( $user ) == 0 )
return null ;
return $user [ 0 ];
}
/**
* Returns User by password token .
*
2014-12-26 01:49:59 +01:00
* @ param string $token
2013-12-26 13:34:48 +01:00
* @ return Matching user , null or false on error
*/
function User_by_password_recovery_token ( $token ) {
$user = sql_select ( " SELECT * FROM `User` WHERE `password_recovery_token`=' " . sql_escape ( $token ) . " ' LIMIT 1 " );
if ( $user === false )
return false ;
if ( count ( $user ) == 0 )
return null ;
return $user [ 0 ];
}
2013-09-10 14:27:31 +02:00
/**
* Generates a new api key for given user .
2013-10-13 00:52:44 +02:00
*
2014-12-26 01:49:59 +01:00
* @ param User $user
2013-09-10 14:27:31 +02:00
*/
2014-12-16 00:54:50 +01:00
function User_reset_api_key ( & $user , $log = true ) {
2013-09-10 14:27:31 +02:00
$user [ 'api_key' ] = md5 ( $user [ 'Nick' ] . time () . rand ());
2013-09-18 01:38:36 +02:00
$result = sql_query ( " UPDATE `User` SET `api_key`=' " . sql_escape ( $user [ 'api_key' ]) . " ' WHERE `UID`=' " . sql_escape ( $user [ 'UID' ]) . " ' LIMIT 1 " );
2013-10-13 00:52:44 +02:00
if ( $result === false )
2013-09-18 01:38:36 +02:00
return false ;
2014-12-16 00:54:50 +01:00
if ( $log )
2014-12-26 01:49:59 +01:00
engelsystem_log ( sprintf ( " API key resetted (%s). " , User_Nick_render ( $user )));
2013-09-10 14:27:31 +02:00
}
2013-12-26 13:34:48 +01:00
/**
* Generates a new password recovery token for given user .
*
2014-12-26 01:49:59 +01:00
* @ param User $user
2013-12-26 13:34:48 +01:00
*/
function User_generate_password_recovery_token ( & $user ) {
$user [ 'password_recovery_token' ] = md5 ( $user [ 'Nick' ] . time () . rand ());
$result = sql_query ( " UPDATE `User` SET `password_recovery_token`=' " . sql_escape ( $user [ 'password_recovery_token' ]) . " ' WHERE `UID`=' " . sql_escape ( $user [ 'UID' ]) . " ' LIMIT 1 " );
if ( $result === false )
return false ;
2014-12-26 19:26:53 +01:00
engelsystem_log ( " Password recovery for " . User_Nick_render ( $user ) . " started. " );
2013-12-26 13:34:48 +01:00
return $user [ 'password_recovery_token' ];
}
2013-12-29 15:08:21 +01:00
?>