engelsystem/includes/pages/guest_login.php

493 lines
17 KiB
PHP
Raw Normal View History

2011-06-02 00:48:29 +02:00
<?php
2014-09-28 14:14:04 +02:00
use Engelsystem\Database\DB;
2017-01-03 03:22:48 +01:00
/**
* @return string
*/
2017-01-02 03:57:23 +01:00
function login_title()
{
2017-01-03 14:12:17 +01:00
return _('Login');
2013-11-25 21:56:56 +01:00
}
2017-01-03 03:22:48 +01:00
/**
* @return string
*/
2017-01-02 03:57:23 +01:00
function register_title()
{
2017-01-03 14:12:17 +01:00
return _('Register');
2013-11-25 21:56:56 +01:00
}
2017-01-03 03:22:48 +01:00
/**
* @return string
*/
2017-01-02 03:57:23 +01:00
function logout_title()
{
2017-01-03 14:12:17 +01:00
return _('Logout');
2013-11-25 21:56:56 +01:00
}
2011-06-02 00:48:29 +02:00
2017-01-03 03:22:48 +01:00
/**
* Engel registrieren
*
* @return string
*/
2017-01-02 03:57:23 +01:00
function guest_register()
{
global $user;
$tshirt_sizes = config('tshirt_sizes');
$enable_tshirt_size = config('enable_tshirt_size');
$min_password_length = config('min_password_length');
2017-01-02 03:57:23 +01:00
$event_config = EventConfig();
2017-01-02 15:43:36 +01:00
2017-01-03 14:12:17 +01:00
$msg = '';
$nick = '';
$lastName = '';
$preName = '';
2017-01-03 14:12:17 +01:00
$age = '';
$tel = '';
$dect = '';
$mobile = '';
$mail = '';
2017-01-02 03:57:23 +01:00
$email_shiftinfo = false;
$email_by_human_allowed = false;
2017-01-03 14:12:17 +01:00
$jabber = '';
$hometown = '';
$comment = '';
2017-01-02 03:57:23 +01:00
$tshirt_size = '';
2017-01-03 14:12:17 +01:00
$password_hash = '';
2017-01-02 03:57:23 +01:00
$selected_angel_types = [];
$planned_arrival_date = null;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$angel_types_source = AngelTypes();
$angel_types = [];
foreach ($angel_types_source as $angel_type) {
2017-01-03 14:12:17 +01:00
$angel_types[$angel_type['id']] = $angel_type['name'] . ($angel_type['restricted'] ? ' (restricted)' : '');
2017-01-02 15:43:36 +01:00
if (!$angel_type['restricted']) {
2017-01-02 03:57:23 +01:00
$selected_angel_types[] = $angel_type['id'];
}
}
2017-01-02 15:43:36 +01:00
foreach ($tshirt_sizes as $key => $size) {
if (empty($size)) {
unset($tshirt_sizes[$key]);
}
}
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['submit'])) {
$valid = true;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['nick']) && strlen(User_validate_Nick($_REQUEST['nick'])) > 1) {
$nick = User_validate_Nick($_REQUEST['nick']);
if (count(DB::select('SELECT `UID` FROM `User` WHERE `Nick`=? LIMIT 1', [$nick])) > 0) {
2017-01-02 03:57:23 +01:00
$valid = false;
2017-01-03 14:12:17 +01:00
$msg .= error(sprintf(_('Your nick &quot;%s&quot; already exists.'), $nick), true);
2017-01-02 03:57:23 +01:00
}
} else {
$valid = false;
2017-01-02 15:43:36 +01:00
$msg .= error(sprintf(
2017-01-03 14:12:17 +01:00
_('Your nick &quot;%s&quot; is too short (min. 2 characters).'),
2017-01-02 15:43:36 +01:00
User_validate_Nick($_REQUEST['nick'])
), true);
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['mail']) && strlen(strip_request_item('mail')) > 0) {
$mail = strip_request_item('mail');
2017-01-02 15:43:36 +01:00
if (!check_email($mail)) {
2017-01-02 03:57:23 +01:00
$valid = false;
2017-01-03 14:12:17 +01:00
$msg .= error(_('E-mail address is not correct.'), true);
2017-01-02 03:57:23 +01:00
}
} else {
$valid = false;
2017-01-03 14:12:17 +01:00
$msg .= error(_('Please enter your e-mail.'), true);
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['email_shiftinfo'])) {
$email_shiftinfo = true;
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['email_by_human_allowed'])) {
$email_by_human_allowed = true;
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['jabber']) && strlen(strip_request_item('jabber')) > 0) {
$jabber = strip_request_item('jabber');
2017-01-02 15:43:36 +01:00
if (!check_email($jabber)) {
2017-01-02 03:57:23 +01:00
$valid = false;
2017-01-03 14:12:17 +01:00
$msg .= error(_('Please check your jabber account information.'), true);
2017-01-02 03:57:23 +01:00
}
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if ($enable_tshirt_size) {
if (isset($_REQUEST['tshirt_size']) && isset($tshirt_sizes[$_REQUEST['tshirt_size']]) && $_REQUEST['tshirt_size'] != '') {
$tshirt_size = $_REQUEST['tshirt_size'];
} else {
$valid = false;
2017-01-03 14:12:17 +01:00
$msg .= error(_('Please select your shirt size.'), true);
2017-01-02 03:57:23 +01:00
}
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['password']) && strlen($_REQUEST['password']) >= $min_password_length) {
if ($_REQUEST['password'] != $_REQUEST['password2']) {
$valid = false;
2017-01-03 14:12:17 +01:00
$msg .= error(_('Your passwords don\'t match.'), true);
2017-01-02 03:57:23 +01:00
}
} else {
$valid = false;
2017-01-02 15:43:36 +01:00
$msg .= error(sprintf(
2017-01-03 14:12:17 +01:00
_('Your password is too short (please use at least %s characters).'),
2017-01-02 15:43:36 +01:00
$min_password_length
), true);
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['planned_arrival_date'])) {
2017-01-03 14:12:17 +01:00
$tmp = parse_date('Y-m-d H:i', $_REQUEST['planned_arrival_date'] . ' 00:00');
2017-01-02 03:57:23 +01:00
$result = User_validate_planned_arrival_date($tmp);
$planned_arrival_date = $result->getValue();
2017-01-02 15:43:36 +01:00
if (!$result->isValid()) {
2017-01-02 03:57:23 +01:00
$valid = false;
2017-01-03 14:12:17 +01:00
error(_('Please enter your planned date of arrival. It should be after the buildup start date and before teardown end date.'));
2017-01-02 03:57:23 +01:00
}
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$selected_angel_types = [];
foreach (array_keys($angel_types) as $angel_type_id) {
if (isset($_REQUEST['angel_types_' . $angel_type_id])) {
$selected_angel_types[] = $angel_type_id;
}
}
2017-01-02 15:43:36 +01:00
// Trivia
if (isset($_REQUEST['lastname'])) {
$lastName = strip_request_item('lastname');
2017-01-02 15:43:36 +01:00
}
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['prename'])) {
$preName = strip_request_item('prename');
2017-01-02 03:57:23 +01:00
}
2017-01-21 19:47:44 +01:00
if (isset($_REQUEST['age']) && preg_match('/^\d{0,4}$/', $_REQUEST['age'])) {
2017-01-02 03:57:23 +01:00
$age = strip_request_item('age');
}
if (isset($_REQUEST['tel'])) {
$tel = strip_request_item('tel');
}
if (isset($_REQUEST['dect'])) {
$dect = strip_request_item('dect');
}
if (isset($_REQUEST['mobile'])) {
$mobile = strip_request_item('mobile');
}
if (isset($_REQUEST['hometown'])) {
$hometown = strip_request_item('hometown');
}
if (isset($_REQUEST['comment'])) {
$comment = strip_request_item_nl('comment');
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if ($valid) {
DB::insert('
INSERT INTO `User` (
`color`,
`Nick`,
`Vorname`,
`Name`,
`Alter`,
`Telefon`,
`DECT`,
`Handy`,
`email`,
`email_shiftinfo`,
`email_by_human_allowed`,
`jabber`,
`Size`,
`Passwort`,
`kommentar`,
`Hometown`,
`CreateDate`,
`Sprache`,
`arrival_date`,
`planned_arrival_date`
)
VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, NOW(), ?, NULL, ?)
',
[
config('default_theme'),
$nick,
$preName,
$lastName,
$age,
$tel,
$dect,
$mobile,
$mail,
(bool)$email_shiftinfo,
(bool)$email_by_human_allowed,
$jabber,
$tshirt_size,
$password_hash,
$comment,
$hometown,
$_SESSION['locale'],
$planned_arrival_date,
]
);
2017-01-02 15:43:36 +01:00
// Assign user-group and set password
$user_id = DB::getPdo()->lastInsertId();
DB::insert('INSERT INTO `UserGroups` (`uid`, `group_id`) VALUES (?, -2)', [$user_id]);
2017-01-02 03:57:23 +01:00
set_password($user_id, $_REQUEST['password']);
2017-01-02 15:43:36 +01:00
// Assign angel-types
$user_angel_types_info = [];
2017-01-02 03:57:23 +01:00
foreach ($selected_angel_types as $selected_angel_type_id) {
DB::insert(
'INSERT INTO `UserAngelTypes` (`user_id`, `angeltype_id`) VALUES (?, ?)',
[$user_id, $selected_angel_type_id]
);
2017-01-02 03:57:23 +01:00
$user_angel_types_info[] = $angel_types[$selected_angel_type_id];
}
2017-01-02 15:43:36 +01:00
engelsystem_log(
2017-01-03 14:12:17 +01:00
'User ' . User_Nick_render(User($user_id))
. ' signed up as: ' . join(', ', $user_angel_types_info)
2017-01-02 15:43:36 +01:00
);
2017-01-03 14:12:17 +01:00
success(_('Angel registration successful!'));
2017-01-02 15:43:36 +01:00
// User is already logged in - that means a supporter has registered an angel. Return to register page.
if (isset($user)) {
redirect(page_link_to('register'));
}
// If a welcome message is present, display registration success page.
if ($event_config != null && $event_config['event_welcome_msg'] != null) {
return User_registration_success_view($event_config['event_welcome_msg']);
}
2017-01-02 03:57:23 +01:00
redirect('?');
}
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$buildup_start_date = time();
$teardown_end_date = null;
if ($event_config != null) {
if (isset($event_config['buildup_start_date'])) {
$buildup_start_date = $event_config['buildup_start_date'];
}
if (isset($event_config['teardown_end_date'])) {
$teardown_end_date = $event_config['teardown_end_date'];
}
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
return page_with_title(register_title(), [
2017-01-03 14:12:17 +01:00
_('By completing this form you\'re registering as a Chaos-Angel. This script will create you an account in the angel task scheduler.'),
2017-01-02 15:43:36 +01:00
$msg,
msg(),
form([
div('row', [
div('col-md-6', [
div('row', [
div('col-sm-4', [
2017-01-03 14:12:17 +01:00
form_text('nick', _('Nick') . ' ' . entry_required(), $nick)
2017-01-02 15:43:36 +01:00
]),
div('col-sm-8', [
2017-01-03 14:12:17 +01:00
form_email('mail', _('E-Mail') . ' ' . entry_required(), $mail),
2017-01-02 15:43:36 +01:00
form_checkbox(
'email_shiftinfo',
2017-01-03 14:12:17 +01:00
_('The engelsystem is allowed to send me an email (e.g. when my shifts change)'),
2017-01-02 15:43:36 +01:00
$email_shiftinfo
),
form_checkbox(
'email_by_human_allowed',
2017-01-03 14:12:17 +01:00
_('Humans are allowed to send me an email (e.g. for ticket vouchers)'),
2017-01-02 15:43:36 +01:00
$email_by_human_allowed
)
])
]),
div('row', [
div('col-sm-6', [
form_date(
'planned_arrival_date',
2017-01-03 14:12:17 +01:00
_('Planned date of arrival') . ' ' . entry_required(),
2017-01-02 15:43:36 +01:00
$planned_arrival_date, $buildup_start_date, $teardown_end_date
)
]),
div('col-sm-6', [
$enable_tshirt_size ? form_select('tshirt_size',
2017-01-03 14:12:17 +01:00
_('Shirt size') . ' ' . entry_required(),
2017-01-02 15:43:36 +01:00
$tshirt_sizes, $tshirt_size) : ''
])
]),
div('row', [
div('col-sm-6', [
2017-01-03 14:12:17 +01:00
form_password('password', _('Password') . ' ' . entry_required())
2017-01-02 15:43:36 +01:00
]),
div('col-sm-6', [
2017-01-03 14:12:17 +01:00
form_password('password2', _('Confirm password') . ' ' . entry_required())
2017-01-02 15:43:36 +01:00
])
]),
form_checkboxes(
'angel_types',
2017-01-21 19:37:42 +01:00
_('What do you want to do?') . sprintf(
' (<a href="%s">%s</a>)',
2017-01-02 15:43:36 +01:00
page_link_to('angeltypes') . '&action=about',
2017-01-03 14:12:17 +01:00
_('Description of job types')
2017-01-02 15:43:36 +01:00
),
$angel_types,
$selected_angel_types
),
form_info(
2017-01-03 14:12:17 +01:00
'',
_('Restricted angel types need will be confirmed later by a supporter. You can change your selection in the options section.')
2017-01-02 15:43:36 +01:00
)
]),
div('col-md-6', [
div('row', [
div('col-sm-4', [
2017-01-03 14:12:17 +01:00
form_text('dect', _('DECT'), $dect)
2017-01-02 15:43:36 +01:00
]),
div('col-sm-4', [
2017-01-03 14:12:17 +01:00
form_text('mobile', _('Mobile'), $mobile)
2017-01-02 15:43:36 +01:00
]),
div('col-sm-4', [
2017-01-03 14:12:17 +01:00
form_text('tel', _('Phone'), $tel)
2017-01-02 15:43:36 +01:00
])
]),
2017-01-03 14:12:17 +01:00
form_text('jabber', _('Jabber'), $jabber),
2017-01-02 15:43:36 +01:00
div('row', [
div('col-sm-6', [
form_text('prename', _('First name'), $preName)
2017-01-02 15:43:36 +01:00
]),
div('col-sm-6', [
form_text('lastname', _('Last name'), $lastName)
2017-01-02 15:43:36 +01:00
])
]),
div('row', [
div('col-sm-3', [
2017-01-03 14:12:17 +01:00
form_text('age', _('Age'), $age)
2017-01-02 15:43:36 +01:00
]),
div('col-sm-9', [
2017-01-03 14:12:17 +01:00
form_text('hometown', _('Hometown'), $hometown)
2017-01-02 15:43:36 +01:00
])
]),
2017-01-03 14:12:17 +01:00
form_info(entry_required() . ' = ' . _('Entry required!'))
2017-01-02 15:43:36 +01:00
])
]),
2017-01-03 14:12:17 +01:00
// form_textarea('comment', _('Did you help at former CCC events and which tasks have you performed then?'), $comment),
form_submit('submit', _('Register'))
2017-01-02 15:43:36 +01:00
])
]);
2011-06-02 00:48:29 +02:00
}
2017-01-02 03:57:23 +01:00
function entry_required()
{
return '<span class="text-info glyphicon glyphicon-warning-sign"></span>';
2014-08-23 15:35:25 +02:00
}
2017-01-02 03:57:23 +01:00
function guest_logout()
{
session_destroy();
2017-01-03 14:12:17 +01:00
redirect(page_link_to('start'));
2017-01-03 03:22:48 +01:00
return true;
2011-06-02 00:48:29 +02:00
}
2017-01-02 03:57:23 +01:00
function guest_login()
{
2017-01-03 14:12:17 +01:00
$nick = '';
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
unset($_SESSION['uid']);
$valid = true;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (isset($_REQUEST['submit'])) {
if (isset($_REQUEST['nick']) && strlen(User_validate_Nick($_REQUEST['nick'])) > 0) {
$nick = User_validate_Nick($_REQUEST['nick']);
$login_user = DB::select('SELECT * FROM `User` WHERE `Nick`=?', [$nick]);
2017-01-02 03:57:23 +01:00
if (count($login_user) > 0) {
$login_user = $login_user[0];
if (isset($_REQUEST['password'])) {
2017-01-02 15:43:36 +01:00
if (!verify_password($_REQUEST['password'], $login_user['Passwort'], $login_user['UID'])) {
2017-01-02 03:57:23 +01:00
$valid = false;
2017-01-03 14:12:17 +01:00
error(_('Your password is incorrect. Please try it again.'));
2017-01-02 03:57:23 +01:00
}
} else {
$valid = false;
2017-01-03 14:12:17 +01:00
error(_('Please enter a password.'));
2017-01-02 03:57:23 +01:00
}
} else {
$valid = false;
2017-01-03 14:12:17 +01:00
error(_('No user was found with that Nickname. Please try again. If you are still having problems, ask a Dispatcher.'));
2017-01-02 03:57:23 +01:00
}
} else {
2017-01-02 03:57:23 +01:00
$valid = false;
2017-01-03 14:12:17 +01:00
error(_('Please enter a nickname.'));
}
2017-01-02 15:43:36 +01:00
2017-01-03 03:22:48 +01:00
if ($valid && !empty($login_user)) {
2017-01-02 03:57:23 +01:00
$_SESSION['uid'] = $login_user['UID'];
$_SESSION['locale'] = $login_user['Sprache'];
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
redirect(page_link_to('news'));
}
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$event_config = EventConfig();
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
return page([
2017-01-02 15:43:36 +01:00
div('col-md-12', [
div('row', [
EventConfig_countdown_page($event_config)
]),
div('row', [
div('col-sm-6 col-sm-offset-3 col-md-4 col-md-offset-4', [
div('panel panel-primary first', [
div('panel-heading', [
2017-01-03 14:12:17 +01:00
'<span class="icon-icon_angel"></span> ' . _('Login')
2017-01-02 15:43:36 +01:00
]),
div('panel-body', [
msg(),
form([
2017-01-03 14:12:17 +01:00
form_text_placeholder('nick', _('Nick'), $nick),
form_password_placeholder('password', _('Password')),
form_submit('submit', _('Login')),
2017-01-02 15:43:36 +01:00
!$valid ? buttons([
2017-01-03 14:12:17 +01:00
button(page_link_to('user_password_recovery'), _('I forgot my password'))
2017-01-02 15:43:36 +01:00
]) : ''
])
]),
div('panel-footer', [
2017-01-03 14:12:17 +01:00
glyph('info-sign') . _('Please note: You have to activate cookies!')
2017-01-02 15:43:36 +01:00
])
])
])
]),
div('row', [
div('col-sm-6 text-center', [
heading(register_title(), 2),
get_register_hint()
]),
div('col-sm-6 text-center', [
2017-01-03 14:12:17 +01:00
heading(_('What can I do?'), 2),
'<p>' . _('Please read about the jobs you can do to help us.') . '</p>',
2017-01-02 15:43:36 +01:00
buttons([
2017-01-03 14:12:17 +01:00
button(page_link_to('angeltypes') . '&action=about', _('Teams/Job description') . ' &raquo;')
2017-01-02 15:43:36 +01:00
])
])
])
])
]);
2016-09-28 07:28:51 +02:00
}
2017-01-02 03:57:23 +01:00
function get_register_hint()
{
global $privileges;
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if (in_array('register', $privileges)) {
return join('', [
2017-01-03 14:12:17 +01:00
'<p>' . _('Please sign up, if you want to help us!') . '</p>',
2017-01-02 15:43:36 +01:00
buttons([
button(page_link_to('register'), register_title() . ' &raquo;')
])
]);
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
2017-01-03 14:12:17 +01:00
//FIXME: return error(_('Registration is disabled.'), true);
return error('Registration is <a href="https://engelsystem.de/33c3/overwhelmed.html">disabled</a>.', true);
2011-06-02 00:48:29 +02:00
}