forked from mirrors/easyappointments
174 lines
4.3 KiB
PHP
174 lines
4.3 KiB
PHP
<?php defined('BASEPATH') or exit('No direct script access allowed');
|
|
|
|
/* ----------------------------------------------------------------------------
|
|
* Easy!Appointments - Open Source Web Scheduler
|
|
*
|
|
* @package EasyAppointments
|
|
* @author A.Tselegidis <alextselegidis@gmail.com>
|
|
* @copyright Copyright (c) 2013 - 2020, Alex Tselegidis
|
|
* @license https://opensource.org/licenses/GPL-3.0 - GPLv3
|
|
* @link https://easyappointments.org
|
|
* @since v1.0.0
|
|
* ---------------------------------------------------------------------------- */
|
|
|
|
/**
|
|
* User controller
|
|
*
|
|
* Handles the user related operations.
|
|
*
|
|
* @package Controllers
|
|
*/
|
|
class User extends EA_Controller {
|
|
/**
|
|
* User constructor.
|
|
*/
|
|
public function __construct()
|
|
{
|
|
parent::__construct();
|
|
|
|
$this->load->library('accounts');
|
|
$this->load->library('email_messages');
|
|
}
|
|
|
|
/**
|
|
* Redirect to the login page.
|
|
*/
|
|
public function index()
|
|
{
|
|
redirect('user/login');
|
|
}
|
|
|
|
/**
|
|
* Display the login page.
|
|
*/
|
|
public function login()
|
|
{
|
|
$this->load->view('user/login', [
|
|
'base_url' => config('base_url'),
|
|
'company_name' => setting('company_name'),
|
|
'dest_url' => session('dest_url', site_url('backend'))
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Display the logout page.
|
|
*/
|
|
public function logout()
|
|
{
|
|
$this->session->sess_destroy();
|
|
|
|
$this->load->view('user/logout', [
|
|
'base_url' => config('base_url'),
|
|
'company_name' => setting('company_name')
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Display the password recovery page.
|
|
*/
|
|
public function forgot_password()
|
|
{
|
|
$this->load->view('user/forgot_password', [
|
|
'base_url' => config('base_url'),
|
|
'company_name' => setting('company_name')
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Display the no-permissions page.
|
|
*/
|
|
public function no_permissions()
|
|
{
|
|
$this->load->view('user/no_privileges', [
|
|
'base_url' => config('base_url'),
|
|
'company_name' => setting('company_name')
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* Validate the login credentials and if successful, log the user in.
|
|
*/
|
|
public function ajax_check_login()
|
|
{
|
|
try
|
|
{
|
|
$username = request('username');
|
|
|
|
if (empty($username))
|
|
{
|
|
throw new InvalidArgumentException('No username value provided.');
|
|
}
|
|
|
|
$password = request('password');
|
|
|
|
if (empty($password))
|
|
{
|
|
throw new InvalidArgumentException('No password value provided.');
|
|
}
|
|
|
|
$user_data = $this->accounts->check_login($username, $password);
|
|
|
|
if (empty($user_data))
|
|
{
|
|
throw new InvalidArgumentException('Invalid credentials provided, please try again.');
|
|
}
|
|
|
|
session($user_data); // Save data in the session.
|
|
|
|
json_encode([
|
|
'success' => TRUE,
|
|
]);
|
|
}
|
|
catch (Throwable $e)
|
|
{
|
|
json_exception($e);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Recover the user password and notify the user via email.
|
|
*/
|
|
public function ajax_forgot_password()
|
|
{
|
|
try
|
|
{
|
|
$username = request('username');
|
|
|
|
if (empty($username))
|
|
{
|
|
throw new InvalidArgumentException('No username value provided.');
|
|
}
|
|
|
|
$email = request('email');
|
|
|
|
if (empty($email))
|
|
{
|
|
throw new InvalidArgumentException('No email value provided.');
|
|
}
|
|
|
|
$new_password = $this->accounts->regenerate_password(
|
|
$username,
|
|
$email
|
|
);
|
|
|
|
if ($new_password)
|
|
{
|
|
$settings = [
|
|
'company_name' => setting('company_name'),
|
|
'company_link' => setting('company_link'),
|
|
'company_email' => setting('company_email')
|
|
];
|
|
|
|
$this->email_messages->send_password($new_password, $email, $settings);
|
|
}
|
|
|
|
json_response([
|
|
'success' => TRUE
|
|
]);
|
|
}
|
|
catch (Throwable $e)
|
|
{
|
|
json_exception($e);
|
|
}
|
|
}
|
|
}
|