easyappointments/application/controllers/User.php

<?php defined('BASEPATH') or exit('No direct script access allowed');

/* ----------------------------------------------------------------------------
 * Easy!Appointments - Open Source Web Scheduler
 *
 * @package     EasyAppointments
 * @author      A.Tselegidis <alextselegidis@gmail.com>
 * @copyright   Copyright (c) 2013 - 2020, Alex Tselegidis
 * @license     https://opensource.org/licenses/GPL-3.0 - GPLv3
 * @link        https://easyappointments.org
 * @since       v1.0.0
 * ---------------------------------------------------------------------------- */

/**
 * User controller.
 *
 * Handles the user related operations.
 *
 * @package Controllers
 */
class User extends EA_Controller {
    /**
     * User constructor.
     */
    public function __construct()
    {
        parent::__construct();

        $this->load->library('accounts');
        $this->load->library('email_messages');
    }

    /**
     * Redirect to the login page.
     */
    public function index()
    {
        redirect('user/login');
    }

    /**
     * Display the login page.
     */
    public function login()
    {
        $this->load->view('pages/account/account_login_page', [
            'base_url' => config('base_url'),
            'company_name' => setting('company_name'),
            'dest_url' => session('dest_url', site_url('backend'))
        ]);
    }

    /**
     * Display the logout page.
     */
    public function logout()
    {
        $this->session->sess_destroy();

        $this->load->view('pages/account/account_logout_page', [
            'base_url' => config('base_url'),
            'company_name' => setting('company_name')
        ]);
    }

    /**
     * Display the password recovery page.
     */
    public function forgot_password()
    {
        $this->load->view('pages/account/account_recovery_page', [
            'base_url' => config('base_url'),
            'company_name' => setting('company_name')
        ]);
    }

    /**
     * Display the no-permissions page.
     */
    public function no_permissions()
    {
        $this->load->view('user/no_privileges', [
            'base_url' => config('base_url'),
            'company_name' => setting('company_name')
        ]);
    }

    /**
     * Validate the login credentials and if successful, log the user in.
     */
    public function ajax_check_login()
    {
        try
        {
            $username = request('username');

            if (empty($username))
            {
                throw new InvalidArgumentException('No username value provided.');
            }

            $password = request('password');

            if (empty($password))
            {
                throw new InvalidArgumentException('No password value provided.');
            }

            $user_data = $this->accounts->check_login($username, $password);

            if (empty($user_data))
            {
                throw new InvalidArgumentException('Invalid credentials provided, please try again.');
            }

            session($user_data); // Save data in the session.

            json_response([
                'success' => TRUE,
            ]);
        }
        catch (Throwable $e)
        {
            json_exception($e);
        }
    }

    /**
     * Recover the user password and notify the user via email.
     */
    public function ajax_forgot_password()
    {
        try
        {
            $username = request('username');

            if (empty($username))
            {
                throw new InvalidArgumentException('No username value provided.');
            }

            $email = request('email');

            if (empty($email))
            {
                throw new InvalidArgumentException('No email value provided.');
            }

            $new_password = $this->accounts->regenerate_password(
                $username,
                $email
            );

            if ($new_password)
            {
                $settings = [
                    'company_name' => setting('company_name'),
                    'company_link' => setting('company_link'),
                    'company_email' => setting('company_email')
                ];

                $this->email_messages->send_password($new_password, $email, $settings);
            }

            json_response([
                'success' => TRUE
            ]);
        }
        catch (Throwable $e)
        {
            json_exception($e);
        }
    }
}
Major refactoring and improvements to the application API code. 2020-04-22 22:48:56 +03:00			`<?php defined('BASEPATH') or exit('No direct script access allowed');`
Minor code format corrections. 2015-12-30 13:02:14 +02:00
			`/* ----------------------------------------------------------------------------`
			`* Easy!Appointments - Open Source Web Scheduler`
			`*`
			`* @package EasyAppointments`
			`* @author A.Tselegidis <alextselegidis@gmail.com>`
Updated copyright year in source files. 2020-03-11 12:10:59 +03:00			`* @copyright Copyright (c) 2013 - 2020, Alex Tselegidis`
Updated URLs in the file comments 2020-11-14 22:36:25 +03:00			`* @license https://opensource.org/licenses/GPL-3.0 - GPLv3`
			`* @link https://easyappointments.org`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`* @since v1.0.0`
			`* ---------------------------------------------------------------------------- */`

			`/**`
Minor comment changes for consistency 2021-11-06 18:21:27 +03:00			`* User controller.`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`*`
			`* Handles the user related operations.`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`*`
			`* @package Controllers`
			`*/`
Grouped the property tag into parent core classes so that it does not need to be repeated. 2020-11-16 11:29:36 +03:00			`class User extends EA_Controller {`
Moved all the loader commands to the constructors 2020-12-05 12:55:09 +03:00			`/**`
			`* User constructor.`
			`*/`
			`public function __construct()`
			`{`
			`parent::__construct();`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00
			`$this->load->library('accounts');`
Refactored the login controller callback 2021-11-06 18:09:29 +03:00			`$this->load->library('email_messages');`
Moved all the loader commands to the constructors 2020-12-05 12:55:09 +03:00			`}`

Minor code format corrections. 2015-12-30 13:02:14 +02:00			`/**`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`* Redirect to the login page.`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`*/`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`public function index()`
			`{`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`redirect('user/login');`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

			`/**`
			`* Display the login page.`
			`*/`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`public function login()`
			`{`
Updated the controller classes to use the slots instead 2021-11-15 11:49:19 +03:00			`$this->load->view('pages/account/account_login_page', [`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`'base_url' => config('base_url'),`
			`'company_name' => setting('company_name'),`
			`'dest_url' => session('dest_url', site_url('backend'))`
			`]);`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

			`/**`
			`* Display the logout page.`
			`*/`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`public function logout()`
			`{`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`$this->session->sess_destroy();`

Updated the controller classes to use the slots instead 2021-11-15 11:49:19 +03:00			`$this->load->view('pages/account/account_logout_page', [`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`'base_url' => config('base_url'),`
			`'company_name' => setting('company_name')`
			`]);`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

			`/**`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`* Display the password recovery page.`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`*/`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`public function forgot_password()`
			`{`
Updated the controller classes to use the slots instead 2021-11-15 11:49:19 +03:00			`$this->load->view('pages/account/account_recovery_page', [`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`'base_url' => config('base_url'),`
			`'company_name' => setting('company_name')`
			`]);`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

Refactor PHP controllers and models (use of protected members and corrections in docblock comments). 2016-04-27 09:21:40 +03:00			`/**`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`* Display the no-permissions page.`
Refactor PHP controllers and models (use of protected members and corrections in docblock comments). 2016-04-27 09:21:40 +03:00			`*/`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`public function no_permissions()`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`$this->load->view('user/no_privileges', [`
			`'base_url' => config('base_url'),`
			`'company_name' => setting('company_name')`
			`]);`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

			`/**`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`* Validate the login credentials and if successful, log the user in.`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`*/`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`public function ajax_check_login()`
			`{`
			`try`
			`{`
Refactored the login controller callback 2021-11-06 18:09:29 +03:00			`$username = request('username');`

			`if (empty($username))`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Replaced the old engine class use with the new Email_messages library 2021-11-06 18:11:55 +03:00			`throw new InvalidArgumentException('No username value provided.');`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`$password = request('password');`

Refactored the login controller callback 2021-11-06 18:09:29 +03:00			`if (empty($password))`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Replaced the old engine class use with the new Email_messages library 2021-11-06 18:11:55 +03:00			`throw new InvalidArgumentException('No password value provided.');`
Reformatted code files. 2018-01-23 12:08:37 +03:00			`}`
Refactored the login controller callback 2021-11-06 18:09:29 +03:00
			`$user_data = $this->accounts->check_login($username, $password);`

			`if (empty($user_data))`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Refactored the login controller callback 2021-11-06 18:09:29 +03:00			`throw new InvalidArgumentException('Invalid credentials provided, please try again.');`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`
Refactored the login controller callback 2021-11-06 18:09:29 +03:00
			`session($user_data); // Save data in the session.`

Corrected the login HTTP callback 2021-11-06 18:51:36 +03:00			`json_response([`
Refactored the login controller callback 2021-11-06 18:09:29 +03:00			`'success' => TRUE,`
			`]);`
Reformatted PHP files 2017-09-23 02:30:22 +03:00			`}`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`catch (Throwable $e)`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Refactored the login controller callback 2021-11-06 18:09:29 +03:00			`json_exception($e);`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`
			`}`

			`/**`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`* Recover the user password and notify the user via email.`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`*/`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`public function ajax_forgot_password()`
			`{`
			`try`
			`{`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`$username = request('username');`

			`if (empty($username))`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`throw new InvalidArgumentException('No username value provided.');`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`$email = request('email');`
Minor code format corrections. 2015-12-30 13:02:14 +02:00
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`if (empty($email))`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`throw new InvalidArgumentException('No email value provided.');`
			`}`

			`$new_password = $this->accounts->regenerate_password(`
			`$username,`
			`$email`
			`);`
Major refactoring and improvements to the application API code. 2020-04-22 22:48:56 +03:00
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`if ($new_password)`
			`{`
			`$settings = [`
			`'company_name' => setting('company_name'),`
			`'company_link' => setting('company_link'),`
			`'company_email' => setting('company_email')`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`];`
Replaced the notifications library with the new one (fixes #178). 2016-07-16 17:56:02 +03:00
Replaced the old engine class use with the new Email_messages library 2021-11-06 18:11:55 +03:00			`$this->email_messages->send_password($new_password, $email, $settings);`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`

Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`json_response([`
			`'success' => TRUE`
			`]);`
Reformatted PHP files 2017-09-23 02:30:22 +03:00			`}`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`catch (Throwable $e)`
Autoformatted php files based on CodeIgniter style guide. 2017-09-15 14:36:37 +03:00			`{`
Updated all the main controllers to work with the updated code. 2021-10-28 15:01:17 +03:00			`json_exception($e);`
Minor code format corrections. 2015-12-30 13:02:14 +02:00			`}`
			`}`
			`}`