engelsystem/includes/pages/guest_login.php

544 lines
19 KiB
PHP
Raw Normal View History

2011-06-02 00:48:29 +02:00
<?php
2014-09-28 14:14:04 +02:00
use Carbon\Carbon;
use Engelsystem\Database\Database;
2021-11-23 11:59:53 +01:00
use Engelsystem\Events\Listener\OAuth2;
use Engelsystem\Config\GoodieType;
2023-04-06 19:19:04 +02:00
use Engelsystem\Http\Validation\Rules\Username;
2022-11-09 00:02:30 +01:00
use Engelsystem\Models\AngelType;
use Engelsystem\Models\Group;
2020-11-15 18:47:30 +01:00
use Engelsystem\Models\OAuth;
2018-10-14 18:24:42 +02:00
use Engelsystem\Models\User\Contact;
use Engelsystem\Models\User\PersonalData;
use Engelsystem\Models\User\Settings;
use Engelsystem\Models\User\State;
2018-10-09 21:47:31 +02:00
use Engelsystem\Models\User\User;
use Illuminate\Database\Connection;
use Illuminate\Database\Eloquent\Collection;
2017-01-03 03:22:48 +01:00
/**
* @return string
*/
2017-01-02 03:57:23 +01:00
function register_title()
{
return __('Register');
2013-11-25 21:56:56 +01:00
}
2017-01-03 03:22:48 +01:00
/**
* Engel registrieren
*
* @return string
*/
2017-01-02 03:57:23 +01:00
function guest_register()
{
2018-10-31 12:48:22 +01:00
$authUser = auth()->user();
$tshirt_sizes = config('tshirt_sizes');
$goodie = GoodieType::from(config('goodie_type'));
$goodie_enabled = $goodie !== GoodieType::None;
$goodie_tshirt = $goodie === GoodieType::Tshirt;
$enable_user_name = config('enable_user_name');
$enable_dect = config('enable_dect');
$enable_planned_arrival = config('enable_planned_arrival');
$min_password_length = config('min_password_length');
$enable_password = config('enable_password');
2020-11-14 01:36:37 +01:00
$enable_pronoun = config('enable_pronoun');
$enable_mobile_show = config('enable_mobile_show');
$config = config();
$request = request();
2017-08-30 19:57:01 +02:00
$session = session();
/** @var Connection $db */
$db = app(Database::class)->getConnection();
$is_oauth = $session->has('oauth2_connect_provider');
2017-01-02 15:43:36 +01:00
2017-01-03 14:12:17 +01:00
$msg = '';
$nick = '';
$lastName = '';
$preName = '';
2017-01-03 14:12:17 +01:00
$dect = '';
$mobile = '';
$mobile_show = false;
$email = '';
2020-11-14 01:36:37 +01:00
$pronoun = '';
2017-01-02 03:57:23 +01:00
$email_shiftinfo = false;
$email_by_human_allowed = false;
$email_messages = false;
2020-12-28 16:04:05 +01:00
$email_news = false;
$email_goody = false;
2017-01-02 03:57:23 +01:00
$tshirt_size = '';
2017-01-03 14:12:17 +01:00
$password_hash = '';
2017-01-02 03:57:23 +01:00
$selected_angel_types = [];
$planned_arrival_date = null;
2017-01-02 15:43:36 +01:00
/** @var AngelType[]|Collection $angel_types_source */
2022-11-09 00:02:30 +01:00
$angel_types_source = AngelType::all();
2017-01-02 03:57:23 +01:00
$angel_types = [];
2021-11-23 11:59:53 +01:00
if (!empty($session->get('oauth2_groups'))) {
/** @var OAuth2 $oauth */
$oauth = app()->get(OAuth2::class);
$ssoTeams = $oauth->getSsoTeams($session->get('oauth2_connect_provider'));
foreach ($ssoTeams as $name => $team) {
if (in_array($name, $session->get('oauth2_groups'))) {
$selected_angel_types[] = $team['id'];
}
}
}
2017-01-02 03:57:23 +01:00
foreach ($angel_types_source as $angel_type) {
2022-11-09 00:02:30 +01:00
if ($angel_type->hide_register) {
continue;
}
2022-11-09 00:02:30 +01:00
$angel_types[$angel_type->id] = $angel_type->name
2022-12-03 00:57:04 +01:00
. ($angel_type->restricted ? ' (' . __('Requires introduction') . ')' : '');
2022-11-09 00:02:30 +01:00
if (!$angel_type->restricted) {
$selected_angel_types[] = $angel_type->id;
2017-01-02 03:57:23 +01:00
}
}
2017-01-02 15:43:36 +01:00
$oauth_enable_password = $session->get('oauth2_enable_password');
if (!is_null($oauth_enable_password)) {
$enable_password = $oauth_enable_password;
}
if (
!auth()->can('register') // No registration permission
// Not authenticated and
|| (!$authUser && !config('registration_enabled') && !$session->get('oauth2_allow_registration')) // Registration disabled
|| (!$authUser && !$enable_password && !$is_oauth) // Password disabled and not oauth
) {
error(__('Registration is disabled.'));
return page_with_title(register_title(), [
msg(),
]);
}
if ($request->hasPostData('submit')) {
2017-01-02 03:57:23 +01:00
$valid = true;
2017-01-02 15:43:36 +01:00
if ($request->has('username')) {
2023-04-06 19:19:04 +02:00
$nick = trim($request->get('username'));
$nickValid = (new Username())->validate($nick);
2019-05-31 04:03:19 +02:00
2023-04-06 19:19:04 +02:00
if (!$nickValid) {
2019-04-28 14:34:04 +02:00
$valid = false;
2022-10-18 19:15:22 +02:00
$msg .= error(sprintf(
2023-04-06 19:19:04 +02:00
__('Please enter a valid nick.') . ' ' . __('Use up to 24 letters, numbers or connecting punctuations for your nickname.'),
2022-10-18 19:15:22 +02:00
$nick
), true);
2019-04-28 14:34:04 +02:00
}
2018-10-14 18:24:42 +02:00
if (User::whereName($nick)->count() > 0) {
2017-01-02 03:57:23 +01:00
$valid = false;
2023-02-02 22:53:51 +01:00
$msg .= error(sprintf(__('Your nick "%s" already exists.'), htmlspecialchars($nick)), true);
2017-01-02 03:57:23 +01:00
}
} else {
$valid = false;
2019-04-28 14:34:04 +02:00
$msg .= error(__('Please enter a nickname.'), true);
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
if ($request->has('mobile_show') && $enable_mobile_show) {
$mobile_show = true;
}
if ($request->has('email') && strlen(strip_request_item('email')) > 0) {
$email = strip_request_item('email');
if (!check_email($email)) {
2017-01-02 03:57:23 +01:00
$valid = false;
$msg .= error(__('E-mail address is not correct.'), true);
2017-01-02 03:57:23 +01:00
}
if (User::whereEmail($email)->first()) {
$valid = false;
$msg .= error(__('E-mail address is already used by another user.'), true);
}
2017-01-02 03:57:23 +01:00
} else {
$valid = false;
$msg .= error(__('Please enter your e-mail.'), true);
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
if ($request->has('email_shiftinfo')) {
2017-01-02 03:57:23 +01:00
$email_shiftinfo = true;
}
2017-01-02 15:43:36 +01:00
if ($request->has('email_by_human_allowed')) {
2017-01-02 03:57:23 +01:00
$email_by_human_allowed = true;
}
2017-01-02 15:43:36 +01:00
if ($request->has('email_messages')) {
$email_messages = true;
}
2020-12-28 16:04:05 +01:00
if ($request->has('email_news')) {
$email_news = true;
}
if ($request->has('email_goody')) {
$email_goody = true;
}
if ($goodie_tshirt) {
if ($request->has('tshirt_size') && isset($tshirt_sizes[$request->input('tshirt_size')])) {
$tshirt_size = $request->input('tshirt_size');
2017-01-02 03:57:23 +01:00
} else {
$valid = false;
$msg .= error(__('Please select your shirt size.'), true);
2017-01-02 03:57:23 +01:00
}
}
2017-01-02 15:43:36 +01:00
if ($enable_password && $request->has('password') && strlen($request->postData('password')) >= $min_password_length) {
if ($request->postData('password') != $request->postData('password2')) {
2017-01-02 03:57:23 +01:00
$valid = false;
$msg .= error(__('Your passwords don\'t match.'), true);
2017-01-02 03:57:23 +01:00
}
2022-10-18 19:15:22 +02:00
} elseif ($enable_password) {
2017-01-02 03:57:23 +01:00
$valid = false;
2017-01-02 15:43:36 +01:00
$msg .= error(sprintf(
__('Your password is too short (please use at least %s characters).'),
2017-01-02 15:43:36 +01:00
$min_password_length
), true);
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
if ($request->has('planned_arrival_date') && $enable_planned_arrival) {
$tmp = parse_date('Y-m-d H:i', $request->input('planned_arrival_date') . ' 00:00');
2017-01-02 03:57:23 +01:00
$result = User_validate_planned_arrival_date($tmp);
$planned_arrival_date = $result->getValue();
2017-01-02 15:43:36 +01:00
if (!$result->isValid()) {
2017-01-02 03:57:23 +01:00
$valid = false;
error(__('Please enter your planned date of arrival. It should be after the buildup start date and before teardown end date.'));
2017-01-02 03:57:23 +01:00
}
} elseif ($enable_planned_arrival) {
$valid = false;
error(__('Please enter your planned date of arrival. It should be after the buildup start date and before teardown end date.'));
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$selected_angel_types = [];
foreach (array_keys($angel_types) as $angel_type_id) {
if ($request->has('angel_types_' . $angel_type_id)) {
2017-01-02 03:57:23 +01:00
$selected_angel_types[] = $angel_type_id;
}
}
2017-01-02 15:43:36 +01:00
// Trivia
if ($enable_user_name && $request->has('lastname')) {
$lastName = strip_request_item('lastname');
2017-01-02 15:43:36 +01:00
}
if ($enable_user_name && $request->has('prename')) {
$preName = strip_request_item('prename');
2017-01-02 03:57:23 +01:00
}
2020-11-14 01:36:37 +01:00
if ($enable_pronoun && $request->has('pronoun')) {
$pronoun = strip_request_item('pronoun');
}
if ($enable_dect && $request->has('dect')) {
if (strlen(strip_request_item('dect')) <= 40) {
2017-11-21 19:00:42 +01:00
$dect = strip_request_item('dect');
} else {
$valid = false;
error(__('For dect numbers are only 40 digits allowed.'));
2017-11-21 19:00:42 +01:00
}
2017-01-02 03:57:23 +01:00
}
if ($request->has('mobile')) {
2017-01-02 03:57:23 +01:00
$mobile = strip_request_item('mobile');
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
if ($valid) {
// Safeguard against partially created user data
$db->beginTransaction();
2018-10-14 18:24:42 +02:00
$user = new User([
'name' => $nick,
'password' => $password_hash,
'email' => $email,
2018-10-14 18:24:42 +02:00
'api_key' => '',
'last_login_at' => null,
]);
$user->save();
$contact = new Contact([
'dect' => $dect,
'mobile' => $mobile,
]);
$contact->user()
->associate($user)
->save();
$personalData = new PersonalData([
'first_name' => $preName,
'last_name' => $lastName,
2020-11-14 01:36:37 +01:00
'pronoun' => $pronoun,
2018-10-14 18:24:42 +02:00
'shirt_size' => $tshirt_size,
'planned_arrival_date' => $enable_planned_arrival ? Carbon::createFromTimestamp($planned_arrival_date) : null,
2018-10-14 18:24:42 +02:00
]);
$personalData->user()
->associate($user)
->save();
$settings = new Settings([
'language' => $session->get('locale'),
'theme' => config('theme'),
'email_human' => $email_by_human_allowed,
'email_messages' => $email_messages,
'email_goody' => $email_goody,
2018-10-14 18:24:42 +02:00
'email_shiftinfo' => $email_shiftinfo,
2020-12-28 16:04:05 +01:00
'email_news' => $email_news,
'mobile_show' => $mobile_show,
2018-10-14 18:24:42 +02:00
]);
$settings->user()
->associate($user)
->save();
$state = new State([]);
if (config('autoarrive')) {
$state->arrived = true;
$state->arrival_date = new Carbon();
}
$state->user()
2018-10-14 18:24:42 +02:00
->associate($user)
->save();
2017-01-02 15:43:36 +01:00
2020-11-15 18:47:30 +01:00
if ($session->has('oauth2_connect_provider') && $session->has('oauth2_user_id')) {
$oauth = new OAuth([
2020-12-26 18:24:20 +01:00
'provider' => $session->get('oauth2_connect_provider'),
'identifier' => $session->get('oauth2_user_id'),
'access_token' => $session->get('oauth2_access_token'),
'refresh_token' => $session->get('oauth2_refresh_token'),
'expires_at' => $session->get('oauth2_expires_at'),
2020-11-15 18:47:30 +01:00
]);
$oauth->user()
->associate($user)
->save();
$session->remove('oauth2_connect_provider');
$session->remove('oauth2_user_id');
2020-12-26 18:24:20 +01:00
$session->remove('oauth2_access_token');
$session->remove('oauth2_refresh_token');
$session->remove('oauth2_expires_at');
2020-11-15 18:47:30 +01:00
}
2017-01-02 15:43:36 +01:00
// Assign user-group and set password
$defaultGroup = Group::find(auth()->getDefaultRole());
$user->groups()->attach($defaultGroup);
if ($enable_password) {
auth()->setPassword($user, $request->postData('password'));
}
2017-01-02 15:43:36 +01:00
// Assign angel-types
$user_angel_types_info = [];
2017-01-02 03:57:23 +01:00
foreach ($selected_angel_types as $selected_angel_type_id) {
2022-12-03 00:57:04 +01:00
$angelType = AngelType::findOrFail($selected_angel_type_id);
$user->userAngelTypes()->attach($angelType);
$user_angel_types_info[] = $angelType->name;
2017-01-02 03:57:23 +01:00
}
2017-01-02 15:43:36 +01:00
// Commit complete user data
$db->commit();
2017-01-02 15:43:36 +01:00
engelsystem_log(
2019-05-31 04:03:19 +02:00
'User ' . User_Nick_render($user, true)
2017-01-03 14:12:17 +01:00
. ' signed up as: ' . join(', ', $user_angel_types_info)
2017-01-02 15:43:36 +01:00
);
success(__('Angel registration successful!'));
2017-01-02 15:43:36 +01:00
// User is already logged in - that means a supporter has registered an angel. Return to register page.
2018-10-14 18:24:42 +02:00
if ($authUser) {
2019-09-08 02:25:49 +02:00
throw_redirect(page_link_to('register'));
2017-01-02 15:43:36 +01:00
}
// If a welcome message is present, display it on the next page
2023-02-02 22:53:51 +01:00
if ($config->get('welcome_msg')) {
$session->set('show_welcome', true);
2017-01-02 15:43:36 +01:00
}
2020-11-15 18:47:30 +01:00
// Login the user
if ($user->oauth->count()) {
/** @var OAuth $provider */
$provider = $user->oauth->first();
throw_redirect(url('/oauth/' . $provider->provider));
}
2019-09-08 02:25:49 +02:00
throw_redirect(page_link_to('/'));
2017-01-02 03:57:23 +01:00
}
}
2017-01-02 15:43:36 +01:00
2017-01-02 03:57:23 +01:00
$buildup_start_date = time();
$teardown_end_date = null;
if ($buildup = $config->get('buildup_start')) {
/** @var Carbon $buildup */
$buildup_start_date = $buildup->getTimestamp();
}
if ($teardown = $config->get('teardown_end')) {
/** @var Carbon $teardown */
$teardown_end_date = $teardown->getTimestamp();
}
2017-01-02 15:43:36 +01:00
2020-11-15 18:47:30 +01:00
$form_data = $session->get('form_data');
$session->remove('form_data');
if (!$nick && !empty($form_data['name'])) {
$nick = $form_data['name'];
}
if (!$email && !empty($form_data['email'])) {
$email = $form_data['email'];
}
if (!$preName && !empty($form_data['first_name'])) {
$preName = $form_data['first_name'];
}
if (!$lastName && !empty($form_data['last_name'])) {
$lastName = $form_data['last_name'];
}
2017-01-02 03:57:23 +01:00
return page_with_title(register_title(), [
__('By completing this form you\'re registering as a Chaos-Angel. This script will create you an account in the angel task scheduler.'),
form_info(entry_required() . ' = ' . __('Entry required!')),
2017-01-02 15:43:36 +01:00
$msg,
msg(),
form([
div('row', [
div('col', [
form_text(
'username',
__('Nick') . ' ' . entry_required(),
$nick,
false,
24,
'nickname'
),
2022-10-18 19:15:22 +02:00
form_info(
'',
2023-04-06 19:19:04 +02:00
__('Use up to 24 letters, numbers or connecting punctuations for your nickname.')
),
]),
$enable_pronoun ? div('col', [
form_text('pronoun', __('Pronoun'), $pronoun, false, 15),
]) : '',
]),
$enable_user_name ? div('row', [
div('col', [
form_text('prename', __('First name'), $preName, false, 64, 'given-name'),
]),
div('col', [
form_text('lastname', __('Last name'), $lastName, false, 64, 'family-name'),
]),
]) : '',
div('row', [
div('col', [
form_email(
'email',
__('E-Mail') . ' ' . entry_required(),
$email,
false,
'email',
254
),
form_checkbox(
'email_shiftinfo',
__(
'The %s is allowed to send me an email (e.g. when my shifts change)',
[config('app_name')]
),
$email_shiftinfo
),
form_checkbox(
'email_news',
__('Notify me of new news'),
$email_news
),
form_checkbox(
'email_messages',
__('settings.profile.email_messages'),
$email_messages
),
form_checkbox(
'email_by_human_allowed',
__('Allow heaven angels to contact you by e-mail.'),
$email_by_human_allowed
),
$goodie_enabled ?
form_checkbox(
'email_goody',
__('To receive vouchers, give consent that nick, email address, worked hours and shirt size will be stored until the next similar event.')
. (config('privacy_email') ? ' ' . __('To withdraw your approval, send an email to <a href="mailto:%s">%1$s</a>.', [config('privacy_email')]) : ''),
$email_goody
) : '',
]),
$enable_dect ? div('col', [
form_text('dect', __('DECT'), $dect, false, 40, 'tel-local'),
]) : '',
div('col', [
form_text('mobile', __('Mobile'), $mobile, false, 40, 'tel-national'),
$enable_mobile_show ? form_checkbox(
'mobile_show',
__('Show mobile number to other users to contact me'),
$mobile_show
) : '',
]),
]),
div('row', [
$enable_password ? div('col', [
form_password('password', __('Password') . ' ' . entry_required(), 'new-password'),
]) : '',
$enable_planned_arrival ? div('col', [
form_date(
'planned_arrival_date',
__('Planned date of arrival') . ' ' . entry_required(),
2022-10-18 19:15:22 +02:00
$planned_arrival_date,
$buildup_start_date,
$teardown_end_date
),
]) : '',
]),
div('row', [
$enable_password ? div('col', [
form_password('password2', __('Confirm password') . ' ' . entry_required(), 'new-password'),
]) : '',
div('col', [
$goodie_tshirt ? form_select(
2022-10-18 19:15:22 +02:00
'tshirt_size',
__('Shirt size') . ' ' . entry_required(),
2022-10-18 19:15:22 +02:00
$tshirt_sizes,
$tshirt_size,
__('Please select...')
) : '',
]),
]),
div('row', [
div('col', [
2017-01-02 15:43:36 +01:00
form_checkboxes(
'angel_types',
__('What do you want to do?') . sprintf(
2017-01-21 19:37:42 +01:00
' (<a href="%s">%s</a>)',
2023-02-13 19:28:10 +01:00
url('/angeltypes/about'),
__('Description of job types')
2017-01-02 15:43:36 +01:00
),
$angel_types,
$selected_angel_types
),
form_info(
2017-01-03 14:12:17 +01:00
'',
__('Some angel types have to be confirmed later by a supporter at an introduction meeting. You can change your selection in the options section.')
),
]),
2017-01-02 15:43:36 +01:00
]),
form_submit('submit', __('Register')),
]),
2017-01-02 15:43:36 +01:00
]);
2011-06-02 00:48:29 +02:00
}
2017-08-30 19:57:01 +02:00
/**
* @return string
*/
2017-01-02 03:57:23 +01:00
function entry_required()
{
return icon('exclamation-triangle', 'text-info');
2014-08-23 15:35:25 +02:00
}