2014-07-20 12:26:15 +02:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace Model;
|
|
|
|
|
|
|
|
|
|
use SimpleValidator\Validator;
|
|
|
|
|
use SimpleValidator\Validators;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* User model
|
|
|
|
|
*
|
|
|
|
|
* @package model
|
|
|
|
|
* @author Frederic Guillot
|
|
|
|
|
*/
|
|
|
|
|
class User extends Base
|
|
|
|
|
{
|
|
|
|
|
/**
|
|
|
|
|
* SQL table name
|
|
|
|
|
*
|
|
|
|
|
* @var string
|
|
|
|
|
*/
|
|
|
|
|
const TABLE = 'users';
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Id used for everbody (filtering)
|
|
|
|
|
*
|
|
|
|
|
* @var integer
|
|
|
|
|
*/
|
|
|
|
|
const EVERYBODY_ID = -1;
|
|
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
/**
|
|
|
|
|
* Get the default project from the session
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @return integer
|
|
|
|
|
*/
|
|
|
|
|
public function getFavoriteProjectId()
|
|
|
|
|
{
|
|
|
|
|
return isset($_SESSION['user']['default_project_id']) ? $_SESSION['user']['default_project_id'] : 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get the last seen project from the session
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @return integer
|
|
|
|
|
*/
|
|
|
|
|
public function getLastSeenProjectId()
|
|
|
|
|
{
|
|
|
|
|
return empty($_SESSION['user']['last_show_project_id']) ? 0 : $_SESSION['user']['last_show_project_id'];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Set the last seen project from the session
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @@param integer $project_id Project id
|
|
|
|
|
*/
|
|
|
|
|
public function storeLastSeenProjectId($project_id)
|
|
|
|
|
{
|
|
|
|
|
$_SESSION['user']['last_show_project_id'] = (int) $project_id;
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-20 12:26:15 +02:00
|
|
|
/**
|
|
|
|
|
* Get a specific user by id
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param integer $user_id User id
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getById($user_id)
|
|
|
|
|
{
|
|
|
|
|
return $this->db->table(self::TABLE)->eq('id', $user_id)->findOne();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get a specific user by the Google id
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param string $google_id Google unique id
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getByGoogleId($google_id)
|
|
|
|
|
{
|
|
|
|
|
return $this->db->table(self::TABLE)->eq('google_id', $google_id)->findOne();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get a specific user by the GitHub id
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param string $github_id GitHub user id
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getByGitHubId($github_id)
|
|
|
|
|
{
|
|
|
|
|
return $this->db->table(self::TABLE)->eq('github_id', $github_id)->findOne();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get a specific user by the username
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param string $username Username
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getByUsername($username)
|
|
|
|
|
{
|
|
|
|
|
return $this->db->table(self::TABLE)->eq('username', $username)->findOne();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get all users
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getAll()
|
|
|
|
|
{
|
|
|
|
|
return $this->db
|
|
|
|
|
->table(self::TABLE)
|
|
|
|
|
->asc('username')
|
2014-10-22 19:59:09 +02:00
|
|
|
->columns('id', 'username', 'name', 'email', 'is_admin', 'default_project_id', 'is_ldap_user', 'notifications_enabled', 'google_id', 'github_id')
|
2014-07-20 12:26:15 +02:00
|
|
|
->findAll();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* List all users (key-value pairs with id/username)
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getList()
|
|
|
|
|
{
|
2014-10-22 19:59:09 +02:00
|
|
|
$users = $this->db->table(self::TABLE)->columns('id', 'username', 'name')->findAll();
|
|
|
|
|
|
|
|
|
|
$result = array();
|
|
|
|
|
|
|
|
|
|
foreach ($users as $user) {
|
|
|
|
|
$result[$user['id']] = $user['name'] ?: $user['username'];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
asort($result);
|
|
|
|
|
|
|
|
|
|
return $result;
|
2014-07-20 12:26:15 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2014-10-22 19:59:09 +02:00
|
|
|
* Prepare values before an update or a create
|
2014-07-20 12:26:15 +02:00
|
|
|
*
|
|
|
|
|
* @access public
|
2014-10-22 19:59:09 +02:00
|
|
|
* @param array $values Form values
|
2014-07-20 12:26:15 +02:00
|
|
|
*/
|
2014-10-22 19:59:09 +02:00
|
|
|
public function prepare(array &$values)
|
2014-07-20 12:26:15 +02:00
|
|
|
{
|
2014-10-22 19:59:09 +02:00
|
|
|
if (isset($values['password'])) {
|
|
|
|
|
|
|
|
|
|
if (! empty($values['password'])) {
|
|
|
|
|
$values['password'] = \password_hash($values['password'], PASSWORD_BCRYPT);
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
unset($values['password']);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2014-07-20 12:26:15 +02:00
|
|
|
if (isset($values['confirmation'])) {
|
|
|
|
|
unset($values['confirmation']);
|
|
|
|
|
}
|
|
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
if (isset($values['current_password'])) {
|
|
|
|
|
unset($values['current_password']);
|
2014-07-20 12:26:15 +02:00
|
|
|
}
|
|
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
if (isset($values['is_admin']) && empty($values['is_admin'])) {
|
2014-07-20 12:26:15 +02:00
|
|
|
$values['is_admin'] = 0;
|
|
|
|
|
}
|
|
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
if (isset($values['is_ldap_user']) && empty($values['is_ldap_user'])) {
|
2014-07-20 12:26:15 +02:00
|
|
|
$values['is_ldap_user'] = 0;
|
|
|
|
|
}
|
2014-10-22 19:59:09 +02:00
|
|
|
}
|
2014-07-20 12:26:15 +02:00
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
/**
|
|
|
|
|
* Add a new user in the database
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param array $values Form values
|
|
|
|
|
* @return boolean
|
|
|
|
|
*/
|
|
|
|
|
public function create(array $values)
|
|
|
|
|
{
|
|
|
|
|
$this->prepare($values);
|
2014-07-20 12:26:15 +02:00
|
|
|
return $this->db->table(self::TABLE)->save($values);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Modify a new user
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param array $values Form values
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function update(array $values)
|
|
|
|
|
{
|
2014-10-22 19:59:09 +02:00
|
|
|
$this->prepare($values);
|
2014-07-20 12:26:15 +02:00
|
|
|
$result = $this->db->table(self::TABLE)->eq('id', $values['id'])->update($values);
|
|
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
// If the user is connected refresh his session
|
2014-07-20 12:26:15 +02:00
|
|
|
if (session_id() !== '' && $_SESSION['user']['id'] == $values['id']) {
|
|
|
|
|
$this->updateSession();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $result;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Remove a specific user
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param integer $user_id User id
|
|
|
|
|
* @return boolean
|
|
|
|
|
*/
|
|
|
|
|
public function remove($user_id)
|
|
|
|
|
{
|
|
|
|
|
$this->db->startTransaction();
|
|
|
|
|
|
|
|
|
|
// All tasks assigned to this user will be unassigned
|
2014-10-22 19:59:09 +02:00
|
|
|
$this->db->table(Task::TABLE)->eq('owner_id', $user_id)->update(array('owner_id' => 0));
|
|
|
|
|
$result = $this->db->table(self::TABLE)->eq('id', $user_id)->remove();
|
2014-07-20 12:26:15 +02:00
|
|
|
|
|
|
|
|
$this->db->closeTransaction();
|
|
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
return $result;
|
2014-07-20 12:26:15 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Update user session information
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param array $user User data
|
|
|
|
|
*/
|
|
|
|
|
public function updateSession(array $user = array())
|
|
|
|
|
{
|
|
|
|
|
if (empty($user)) {
|
|
|
|
|
$user = $this->getById($_SESSION['user']['id']);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (isset($user['password'])) {
|
|
|
|
|
unset($user['password']);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$user['id'] = (int) $user['id'];
|
|
|
|
|
$user['default_project_id'] = (int) $user['default_project_id'];
|
|
|
|
|
$user['is_admin'] = (bool) $user['is_admin'];
|
|
|
|
|
$user['is_ldap_user'] = (bool) $user['is_ldap_user'];
|
|
|
|
|
|
|
|
|
|
$_SESSION['user'] = $user;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2014-10-22 19:59:09 +02:00
|
|
|
* Common validation rules
|
2014-07-20 12:26:15 +02:00
|
|
|
*
|
2014-10-22 19:59:09 +02:00
|
|
|
* @access private
|
|
|
|
|
* @return array
|
2014-07-20 12:26:15 +02:00
|
|
|
*/
|
2014-10-22 19:59:09 +02:00
|
|
|
private function commonValidationRules()
|
2014-07-20 12:26:15 +02:00
|
|
|
{
|
2014-10-22 19:59:09 +02:00
|
|
|
return array(
|
2014-07-20 12:26:15 +02:00
|
|
|
new Validators\MaxLength('username', t('The maximum length is %d characters', 50), 50),
|
|
|
|
|
new Validators\Unique('username', t('The username must be unique'), $this->db->getConnection(), self::TABLE, 'id'),
|
2014-10-22 19:59:09 +02:00
|
|
|
new Validators\Email('email', t('Email address invalid')),
|
|
|
|
|
new Validators\Integer('default_project_id', t('This value must be an integer')),
|
|
|
|
|
new Validators\Integer('is_admin', t('This value must be an integer')),
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Common password validation rules
|
|
|
|
|
*
|
|
|
|
|
* @access private
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
private function commonPasswordValidationRules()
|
|
|
|
|
{
|
|
|
|
|
return array(
|
2014-07-20 12:26:15 +02:00
|
|
|
new Validators\Required('password', t('The password is required')),
|
|
|
|
|
new Validators\MinLength('password', t('The minimum length is %d characters', 6), 6),
|
|
|
|
|
new Validators\Required('confirmation', t('The confirmation is required')),
|
|
|
|
|
new Validators\Equals('password', 'confirmation', t('Passwords don\'t match')),
|
2014-10-22 19:59:09 +02:00
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Validate user creation
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param array $values Form values
|
|
|
|
|
* @return array $valid, $errors [0] = Success or not, [1] = List of errors
|
|
|
|
|
*/
|
|
|
|
|
public function validateCreation(array $values)
|
|
|
|
|
{
|
|
|
|
|
$rules = array(
|
|
|
|
|
new Validators\Required('username', t('The username is required')),
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$v = new Validator($values, array_merge($rules, $this->commonValidationRules(), $this->commonPasswordValidationRules()));
|
2014-07-20 12:26:15 +02:00
|
|
|
|
|
|
|
|
return array(
|
|
|
|
|
$v->execute(),
|
|
|
|
|
$v->getErrors()
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Validate user modification
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param array $values Form values
|
|
|
|
|
* @return array $valid, $errors [0] = Success or not, [1] = List of errors
|
|
|
|
|
*/
|
|
|
|
|
public function validateModification(array $values)
|
|
|
|
|
{
|
2014-10-22 19:59:09 +02:00
|
|
|
$rules = array(
|
2014-07-20 12:26:15 +02:00
|
|
|
new Validators\Required('id', t('The user id is required')),
|
|
|
|
|
new Validators\Required('username', t('The username is required')),
|
2014-10-22 19:59:09 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$v = new Validator($values, array_merge($rules, $this->commonValidationRules()));
|
2014-07-20 12:26:15 +02:00
|
|
|
|
|
|
|
|
return array(
|
|
|
|
|
$v->execute(),
|
|
|
|
|
$v->getErrors()
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2014-10-22 19:59:09 +02:00
|
|
|
* Validate user API modification
|
2014-07-20 12:26:15 +02:00
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param array $values Form values
|
|
|
|
|
* @return array $valid, $errors [0] = Success or not, [1] = List of errors
|
|
|
|
|
*/
|
2014-10-22 19:59:09 +02:00
|
|
|
public function validateApiModification(array $values)
|
2014-07-20 12:26:15 +02:00
|
|
|
{
|
2014-10-22 19:59:09 +02:00
|
|
|
$rules = array(
|
2014-07-20 12:26:15 +02:00
|
|
|
new Validators\Required('id', t('The user id is required')),
|
2014-10-22 19:59:09 +02:00
|
|
|
);
|
2014-07-20 12:26:15 +02:00
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
$v = new Validator($values, array_merge($rules, $this->commonValidationRules()));
|
2014-07-20 12:26:15 +02:00
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
return array(
|
|
|
|
|
$v->execute(),
|
|
|
|
|
$v->getErrors()
|
|
|
|
|
);
|
2014-07-20 12:26:15 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2014-10-22 19:59:09 +02:00
|
|
|
* Validate password modification
|
2014-07-20 12:26:15 +02:00
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param array $values Form values
|
|
|
|
|
* @return array $valid, $errors [0] = Success or not, [1] = List of errors
|
|
|
|
|
*/
|
2014-10-22 19:59:09 +02:00
|
|
|
public function validatePasswordModification(array $values)
|
2014-07-20 12:26:15 +02:00
|
|
|
{
|
2014-10-22 19:59:09 +02:00
|
|
|
$rules = array(
|
|
|
|
|
new Validators\Required('id', t('The user id is required')),
|
|
|
|
|
new Validators\Required('current_password', t('The current password is required')),
|
|
|
|
|
);
|
2014-07-20 12:26:15 +02:00
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
$v = new Validator($values, array_merge($rules, $this->commonPasswordValidationRules()));
|
2014-07-20 12:26:15 +02:00
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
if ($v->execute()) {
|
2014-07-20 12:26:15 +02:00
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
// Check password
|
|
|
|
|
if ($this->authentication->authenticate($_SESSION['user']['username'], $values['current_password'])) {
|
|
|
|
|
return array(true, array());
|
2014-07-20 12:26:15 +02:00
|
|
|
}
|
|
|
|
|
else {
|
2014-10-22 19:59:09 +02:00
|
|
|
return array(false, array('current_password' => array(t('Wrong password'))));
|
2014-07-20 12:26:15 +02:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2014-10-22 19:59:09 +02:00
|
|
|
return array(false, $v->getErrors());
|
2014-07-20 12:26:15 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get the user agent of the connected user
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
|
|
|
|
public function getUserAgent()
|
|
|
|
|
{
|
|
|
|
|
return empty($_SERVER['HTTP_USER_AGENT']) ? t('Unknown') : $_SERVER['HTTP_USER_AGENT'];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Get the real IP address of the connected user
|
|
|
|
|
*
|
|
|
|
|
* @access public
|
|
|
|
|
* @param bool $only_public Return only public IP address
|
|
|
|
|
* @return string
|
|
|
|
|
*/
|
|
|
|
|
public function getIpAddress($only_public = false)
|
|
|
|
|
{
|
|
|
|
|
$keys = array(
|
|
|
|
|
'HTTP_CLIENT_IP',
|
|
|
|
|
'HTTP_X_FORWARDED_FOR',
|
|
|
|
|
'HTTP_X_FORWARDED',
|
|
|
|
|
'HTTP_X_CLUSTER_CLIENT_IP',
|
|
|
|
|
'HTTP_FORWARDED_FOR',
|
|
|
|
|
'HTTP_FORWARDED',
|
|
|
|
|
'REMOTE_ADDR'
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
foreach ($keys as $key) {
|
|
|
|
|
|
|
|
|
|
if (isset($_SERVER[$key])) {
|
|
|
|
|
|
|
|
|
|
foreach (explode(',', $_SERVER[$key]) as $ip_address) {
|
|
|
|
|
|
|
|
|
|
$ip_address = trim($ip_address);
|
|
|
|
|
|
|
|
|
|
if ($only_public) {
|
|
|
|
|
|
|
|
|
|
// Return only public IP address
|
|
|
|
|
if (filter_var($ip_address, FILTER_VALIDATE_IP, FILTER_FLAG_NO_PRIV_RANGE | FILTER_FLAG_NO_RES_RANGE) !== false) {
|
|
|
|
|
return $ip_address;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
|
|
|
|
|
return $ip_address;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return t('Unknown');
|
|
|
|
|
}
|
|
|
|
|
}
|
