X-Git-Url: http://git.roojs.org/?p=Pman.Core;a=blobdiff_plain;f=DataObjects%2FCore_person.php;h=b45eef49f091484a895f58f34c5dfc248ac6fbe6;hp=05dbd5c56533d47d069c5991c431715c9a8a3c53;hb=HEAD;hpb=e13d64bdf09ce0a71178dd9ab67946a8a5c3432b diff --git a/DataObjects/Core_person.php b/DataObjects/Core_person.php index 05dbd5c5..4208198e 100644 --- a/DataObjects/Core_person.php +++ b/DataObjects/Core_person.php @@ -1445,12 +1445,17 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject function beforeInsert($req, $roo) { + if (!empty($req['_bulk_update_passwords'])) { + $this->bulkUpdatePasswords($req['_bulk_update_passwords'], $roo); + return; + } + $p = DB_DataObject::factory('core_person'); if ($roo->authUser->id > -1 || $p->count() > 1) { $pp = DB_DataObject::factory('core_person'); - $pp->email = trim($this->email); + $pp->whereAdd('LOWER(email) = "' . $pp->escape(strtolower(trim($this->email))) . '"'); if ($pp->count()){ - $roo->jerr("that email already exists in the database"); + $roo->jerror("NOTICE-DUPE-EMAIL", "that email already exists in the database"); } @@ -1619,9 +1624,7 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject $ff= HTML_FlexyFramework::get(); $appname = empty($ff->appNameShort) ? $ff->project : $ff->project . '-' . $ff->appNameShort; - $dname = method_exists($this, 'getDatabaseConnection') ? $this->getDatabaseConnection()->dsn['database'] : $this->databaseNickname(); - $sesPrefix = $appname.'-' .get_class($this) .'-' . $dname; return $sesPrefix; @@ -1630,9 +1633,7 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject function loginPublic() // used where??? { $this->isAuth(); // force session start.. - $db = $this->getDatabaseConnection(); - $ff = HTML_FlexyFramework::get(); if(empty($ff->Pman) || empty($ff->Pman['login_public'])){ @@ -1652,6 +1653,16 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject function beforeUpdate($old, $q, $roo) { $this->email = trim($this->email); + + $p = DB_DataObject::factory('core_person'); + if ($roo->authUser->id > -1 || $p->count() > 1) { + $pp = DB_DataObject::factory('core_person'); + $pp->whereAdd('LOWER(email) = "' . $pp->escape(strtolower(trim($this->email))) . '"'); + $pp->whereAdd('id != ' . $old->id); + if ($pp->count()){ + $roo->jerror("NOTICE-DUPE-EMAIL", "that email already exists in the database"); + } + } } function generateOathKey() @@ -1718,6 +1729,62 @@ class Pman_Core_DataObjects_Core_person extends DB_DataObject return $content; } - + function bulkUpdatePasswords($data, $roo) + { + + if ( !$roo->hasPerm("Core.Staff", "E")) { + $roo->jerr("permission denied"); + } + $rows = explode("\n",$data); + $upd = array(); + $bad = array(); + + foreach($rows as $i=>$row) { + if (!strlen(trim($row))) { + continue; + } + $bits = preg_split('/\s+/', trim($row)); + if (count($bits) != 2) { + $bad[] = "Invalid line: {$row}"; + continue; + } + // validate. + $upd[strtolower($bits[0])] = $bits[1]; + + } + if (empty($upd)) { + + $roo->jerr(empty($bad) ? "No rows to update": ("ERRORS: ". implode("\n", $bad))); + return; + } + // next fetch them all. + $p = DB_DataObject::factory('core_person'); + $p->whereAddIn('email', array_keys($upd), 'string'); + foreach($p->fetchAll() as $p) { + $map[strtolower($p->email)] = $p; + } + foreach($upd as $k=>$nv) { + if (!isset($map[$k])) { + $bad[] = "Missing account with email: " . $k; + continue; + } + if ($map[$k]->id == $roo->authUser->id) { + $bad[] = "You can not update your own password here: " . $k; + continue; + } + } + if (!empty($bad)) { + $roo->jerr("ERRORS: ". implode("\n", $bad)); + return; + } + foreach($map as $k => $p) { + $pp = clone($p); + $p->setPassword($upd[$k]); + $p->update($pp); + } + $roo->jok("Updated"); + + + } }