We use cookies to ensure you get the best experience on our website
Home Explore Help
Register Sign In
0ct0pu5
/
forkbb
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: e92cd585b7
Branches Tags
forkbb
/
app
/
Models
/
Pages
/
Profile
/
Email.php

Email.php 9.2 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * This file is part of the ForkBB <https://github.com/forkbb>.
    4. 

  4.  *
    5. 

  5.  * @copyright (c) Visman <mio.visman@yandex.ru, https://github.com/MioVisman>
    6. 

  6.  * @license   The MIT License (MIT)
    7. 

  7.  */
    8. 

  8. 

  9. declare(strict_types=1);
    10. 

  10. 

  11. namespace ForkBB\Models\Pages\Profile;
    12. 

  12. 

  13. use ForkBB\Core\Validator;
    14. 

  14. use ForkBB\Core\Exceptions\MailException;
    15. 

  15. use ForkBB\Models\Page;
    16. 

  16. use ForkBB\Models\Pages\Profile;
    17. 

  17. use ForkBB\Models\User\User;
    18. 

  18. use function \ForkBB\__;
    19. 

  19. 

  20. class Email extends Profile
    21. 

  21. {
    22. 

  22.     /**
    23. 

  23.      * Изменяет почтовый адрес пользователя по ссылке активации
    24. 

  24.      */
    25. 

  25.     public function setEmail(array $args, string $method): Page
    26. 

  26.     {
    27. 

  27.         if (
    28. 

  28.             $this->user->id !== $args['id']
    29. 

  29.             || ! $this->c->Csrf->verify($args['hash'], 'SetNewEmail', $args)
    30. 

  30.             || ! \hash_equals($this->user->activate_string, $args['key'])
    31. 

  31.         ) {
    32. 

  32.             return $this->c->Message->message('Bad request', false);
    33. 

  33.         }
    34. 

  34. 

  35.         $this->c->Lang->load('profile');
    36. 

  36. 

  37.         $this->user->email           = $args['email'];
    38. 

  38.         $this->user->email_confirmed = 1;
    39. 

  39.         $this->user->activate_string = '';
    40. 

  40. 

  41.         $change = $this->user->isModified('email');
    42. 

  42. 

  43.         $this->c->users->update($this->user);
    44. 

  44. 

  45.         return $this->c->Redirect
    46. 

  46.             ->url($this->user->link)
    47. 

  47.             ->message($change ? 'Email changed redirect' : 'Email confirmed redirect');
    48. 

  48.     }
    49. 

  49. 

  50.     /**
    51. 

  51.      * Подготавливает данные для шаблона смены почтового адреса
    52. 

  52.      */
    53. 

  53.     public function email(array $args, string $method): Page
    54. 

  54.     {
    55. 

  55.         if (
    56. 

  56.             false === $this->initProfile($args['id'])
    57. 

  57.             || ! $this->rules->editEmail
    58. 

  58.         ) {
    59. 

  59.             return $this->c->Message->message('Bad request');
    60. 

  60.         }
    61. 

  61. 

  62.         $this->c->Lang->load('validator');
    63. 

  63. 

  64.         if ('POST' === $method) {
    65. 

  65.             $isSent = null;
    66. 

  66.             $key    = null;
    67. 

  67. 

  68.             $v = $this->c->Validator->reset()
    69. 

  69.                 ->addValidators([
    70. 

  70.                     'check_password' => [$this, 'vCheckPassword'],
    71. 

  71.                 ])->addRules([
    72. 

  72.                     'token'     => 'token:EditUserEmail',
    73. 

  73.                     'password'  => 'required|string:trim|max:100000|check_password',
    74. 

  74.                     'new_email' => 'required|string:trim|email',
    75. 

  75.                     'submit'    => 'required|string',
    76. 

  76.                 ])->addAliases([
    77. 

  77.                     'new_email' => 'New email',
    78. 

  78.                     'password'  => 'Your passphrase',
    79. 

  79.                 ])->addArguments([
    80. 

  80.                     'token'           => $args,
    81. 

  81.                 ])->addMessages([
    82. 

  82.                 ]);
    83. 

  83. 

  84.             $isValid = $v->validation($_POST);
    85. 

  85. 

  86.             if ($isValid) {
    87. 

  87.                 if (
    88. 

  88.                     $v->new_email === $this->curUser->email
    89. 

  89.                     && ! $this->rules->confirmEmail
    90. 

  90.                 ) {
    91. 

  91.                     return $this->c->Redirect
    92. 

  92.                         ->page('EditUserProfile', $args)
    93. 

  93.                         ->message('Email is old redirect');
    94. 

  94.                 }
    95. 

  95. 

  96.                 $v = $v->reset()
    97. 

  97.                     ->addRules([
    98. 

  98.                         'new_email' => 'required|string:trim|email:noban,flood',
    99. 

  99.                     ])->addAliases([
    100. 

  100.                         'new_email' => 'New email',
    101. 

  101.                     ])->addArguments([
    102. 

  102.                         'new_email.email' => $this->curUser,
    103. 

  103.                     ]);
    104. 

  104. 

  105.                 $isValid = $v->validation($_POST);
    106. 

  106.             }
    107. 

  107. 

  108.             if ($isValid) {
    109. 

  109.                 $v = $this->c->Validator->reset()
    110. 

  110.                     ->addRules([
    111. 

  111.                         'new_email' => 'required|string:trim|email:unique',
    112. 

  112.                     ])->addAliases([
    113. 

  113.                         'new_email' => 'New email',
    114. 

  114.                     ])->addArguments([
    115. 

  115.                         'new_email.email' => $this->curUser,
    116. 

  116.                     ]);
    117. 

  117. 

  118.                 $isValid = $v->validation($_POST);
    119. 

  119. 

  120.                 if ($isValid) {
    121. 

  121.                     if (
    122. 

  122.                         ! $this->rules->my
    123. 

  123.                         && $this->rules->admin
    124. 

  124.                     ) {
    125. 

  125.                         $this->curUser->email           = $v->new_email;
    126. 

  126.                         $this->curUser->email_confirmed = 0;
    127. 

  127. 

  128.                         $this->c->users->update($this->curUser);
    129. 

  129. 

  130.                         return $this->c->Redirect
    131. 

  131.                             ->page('EditUserProfile', $args)
    132. 

  132.                             ->message('Email changed redirect');
    133. 

  133.                     } else {
    134. 

  134.                         $this->c->Csrf->setHashExpiration(259200); // ???? хэш действует 72 часа
    135. 

  135. 

  136.                         $key  = $this->c->Secury->randomPass(33);
    137. 

  137.                         $link = $this->c->Router->link(
    138. 

  138.                             'SetNewEmail',
    139. 

  139.                             [
    140. 

  140.                                 'id'    => $this->curUser->id,
    141. 

  141.                                 'email' => $v->new_email,
    142. 

  142.                                 'key'   => $key,
    143. 

  143.                             ]
    144. 

  144.                         );
    145. 

  145.                         $tplData = [
    146. 

  146.                             'fRootLink' => $this->c->Router->link('Index'),
    147. 

  147.                             'fMailer'   => __(['Mailer', $this->c->config->o_board_title]),
    148. 

  148.                             'username'  => $this->curUser->username,
    149. 

  149.                             'link'      => $link,
    150. 

  150.                         ];
    151. 

  151. 

  152.                         try {
    153. 

  153.                             $isSent = $this->c->Mail
    154. 

  154.                                 ->reset()
    155. 

  155.                                 ->setMaxRecipients(1)
    156. 

  156.                                 ->setFolder($this->c->DIR_LANG)
    157. 

  157.                                 ->setLanguage($this->curUser->language)
    158. 

  158.                                 ->setTo($v->new_email, $this->curUser->username)
    159. 

  159.                                 ->setFrom($this->c->config->o_webmaster_email, $tplData['fMailer'])
    160. 

  160.                                 ->setTpl('activate_email.tpl', $tplData)
    161. 

  161.                                 ->send();
    162. 

  162.                         } catch (MailException $e) {
    163. 

  163.                             $isSent = false;
    164. 

  164. 

  165.                             $this->c->Log->error('Email activation: MailException', [
    166. 

  166.                                 'exception' => $e,
    167. 

  167.                                 'headers'   => false,
    168. 

  168.                             ]);
    169. 

  169.                         }
    170. 

  170.                     }
    171. 

  171.                 } elseif (! $this->user->isAdmin) {
    172. 

  172.                     // обманка
    173. 

  173.                     $isSent = true;
    174. 

  174.                 }
    175. 

  175. 

  176.                 if (null !== $isSent) {
    177. 

  177.                     if ($isSent) {
    178. 

  178.                         if (\is_string($key)) {
    179. 

  179.                             $this->curUser->activate_string = $key;
    180. 

  180.                         }
    181. 

  181. 

  182.                         $this->curUser->last_email_sent = \time();
    183. 

  183. 

  184.                         $this->c->users->update($this->curUser);
    185. 

  185. 

  186.                         return $this->c->Message
    187. 

  187.                             ->message(['Activate email sent', $this->c->config->o_admin_email], false, 200);
    188. 

  188.                     } else {
    189. 

  189.                         return $this->c->Message
    190. 

  190.                             ->message(['Error mail', $this->c->config->o_admin_email], true, 200);
    191. 

  191.                     }
    192. 

  192.                 }
    193. 

  193.             }
    194. 

  194. 

  195.             $this->curUser->__email = $v->new_email;
    196. 

  196.             $this->fIswev           = $v->getErrors();
    197. 

  197.         }
    198. 

  198. 

  199.         $this->crumbs     = $this->crumbs(
    200. 

  200.             [
    201. 

  201.                 $this->c->Router->link('EditUserEmail', $args),
    202. 

  202.                 'Change email',
    203. 

  203.             ],
    204. 

  204.             [
    205. 

  205.                 $this->c->Router->link('EditUserProfile', $args),
    206. 

  206.                 'Editing profile',
    207. 

  207.             ]
    208. 

  208.         );
    209. 

  209.         $this->form       = $this->form($args);
    210. 

  210.         $this->actionBtns = $this->btns('edit');
    211. 

  211. 

  212.         return $this;
    213. 

  213.     }
    214. 

  214. 

  215.     /**
    216. 

  216.      * Создает массив данных для формы
    217. 

  217.      */
    218. 

  218.     protected function form(array $args): array
    219. 

  219.     {
    220. 

  220.         $form = [
    221. 

  221.             'action' => $this->c->Router->link('EditUserEmail', $args),
    222. 

  222.             'hidden' => [
    223. 

  223.                 'token' => $this->c->Csrf->create('EditUserEmail', $args),
    224. 

  224.             ],
    225. 

  225.             'sets'   => [
    226. 

  226.                 'new-email' => [
    227. 

  227.                     'class'  => ['data-edit'],
    228. 

  228.                     'fields' => [
    229. 

  229.                         'new_email' => [
    230. 

  230.                             'autofocus' => true,
    231. 

  231.                             'type'      => 'text',
    232. 

  232.                             'maxlength' => '80',
    233. 

  233.                             'caption'   => $this->rules->confirmEmail ? 'New or old email' : 'New email',
    234. 

  234.                             'required'  => true,
    235. 

  235.                             'pattern'   => '.+@.+',
    236. 

  236.                             'value'     => $this->curUser->email,
    237. 

  237.                             'help'      => $this->rules->my ? 'Email instructions' : null,
    238. 

  238.                         ],
    239. 

  239.                         'password' => [
    240. 

  240.                             'type'      => 'password',
    241. 

  241.                             'caption'   => 'Your passphrase',
    242. 

  242.                             'required'  => true,
    243. 

  243.                         ],
    244. 

  244.                     ],
    245. 

  245.                 ],
    246. 

  246.             ],
    247. 

  247.             'btns'   => [
    248. 

  248.                 'submit' => [
    249. 

  249.                     'type'  => 'submit',
    250. 

  250.                     'value' => __('Submit'),
    251. 

  251.                 ],
    252. 

  252.             ],
    253. 

  253.         ];
    254. 

  254. 

  255.         return $form;
    256. 

  256.     }
    257. 

  257. }
    258.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5