Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php defined('BASEPATH') OR exit('No direct script access allowed');
- //$this->ion_auth->is_admin()
- /*
- If someone successfully login from a new country (and not on the same device as one you usually use), they show you a page where you verify that you really are who you say you are while sending a mail to let you know someone logged in from abroad
- */
- class Auth extends CI_Controller {
- public function __construct()
- {
- parent::__construct();
- // Establishes database connection
- $this->load->database();
- // imports ion_auth and form_vaildation
- $this->load->library(array('ion_auth','form_validation'));
- // loads the language helper (will also try to get rid of this)
- $this->load->helper(array('url','language'));
- // loads ion_auth configs
- $this->form_validation->set_error_delimiters($this->config->item('error_start_delimiter', 'ion_auth'), $this->config->item('error_end_delimiter', 'ion_auth'));
- // working on getting rid of this.. not needed
- $this->lang->load('auth');
- }
- public function index()
- {
- if (!$this->ion_auth->logged_in()):
- // redirect them to the login page
- redirect('login', 'refresh');
- else:
- redirect('dashboard', 'refresh');
- endif;
- }
- // log the user in
- public function login()
- {
- if($this->ion_auth->logged_in()):
- redirect('dashboard', 'refresh');
- exit;
- endif;
- //validate form input
- $this->form_validation->set_rules('ss_username', 'Username', 'required');
- $this->form_validation->set_rules('ss_password', 'Password', 'required');
- if ($this->form_validation->run() == true):
- // check to see if the user is logging in
- // check for "remember me"
- $remember = (bool) $this->input->post('remember');
- if($this->ion_auth->is_max_login_attempts_exceeded($this->input->post('ss_username'))):
- $this->check_captcha_response();
- else:
- // Redirect to dashboard
- $this->dashboard_redirect($remember);
- endif;
- else:
- // the user is not logging in so display the login page
- $message = (validation_errors()) ? validation_errors() : $this->session->flashdata('message');
- $this->render_login($message);
- endif;
- }
- // Redirect to dashboard
- public function dashboard_redirect($remember)
- {
- if ($this->ion_auth->login($this->input->post('ss_username'), $this->input->post('ss_password'), $remember)):
- //redirect them to the dashboard
- redirect('dashboard', 'refresh');
- else:
- // if the login was un-successful
- // redirect them back to the login page
- $message = $this->ion_auth->errors();
- $this->render_login($message);
- endif;
- }
- // Check the CAPTCHA response
- public function check_captcha_response()
- {
- $url = 'https://www.google.com/recaptcha/api/siteverify';
- $data = array('secret' => '6LcrHiYTAAAAADB6VSoy8Mv7Pv5vSR5OETil6f3S', 'response' => $this->input->post('ss_response'));
- $options = array(
- 'http' => array(
- 'header' => "Content-type: application/x-www-form-urlencoded\r\n",
- 'method' => 'POST',
- 'content' => http_build_query($data)
- )
- );
- $context = stream_context_create($options);
- $result = file_get_contents($url, false, $context);
- if($result === FALSE):
- $this->render_login('The CAPTCHA was not correct');
- else:
- $decode = json_decode($result);
- // If it was correct..
- if($decode->success == true):
- //redirect them to the dashboard
- redirect('dashboard', 'refresh');
- else:
- $this->render_login('The CAPTCHA was not correct');
- endif;
- endif;
- }
- // Redirects the user to the login page with a message (error message or whatever suits)
- public function render_login($message)
- {
- if(isset($message)):
- $this->data['message'] = $message;
- endif;
- if($this->ion_auth->is_max_login_attempts_exceeded($this->input->post('ss_username'))):
- // send a post request to the google server and catch the response..
- $this->data['captcha'] = true;
- endif;
- // This array of data will be used to generate the username input field
- $this->data['username'] = array(
- 'name' => 'ss_username',
- 'id' => 'inputUserName',
- 'class' => 'form-control form-white username',
- 'placeholder' => 'Username',
- 'value' => $this->form_validation->set_value('ss_username')
- );
- // This array of data will be used to generate the password input field
- $this->data['password'] = array(
- 'name' => 'ss_password',
- 'type' => 'password',
- 'class' => 'form-control form-white password',
- 'id' => 'inputPassword',
- 'placeholder' => 'Password'
- );
- // This array of data will be used to generate the Button.
- $this->data['button'] = array(
- 'id' => 'submit-form',
- 'value' => 'Sign In',
- 'class' => 'btn btn-lg btn-dark btn-rounded ladda-button',
- 'data-style' => 'expand-left'
- );
- // This array of data will be used to generate the hidden input field used for the google authentication.
- $this->data['ss_response'] = array(
- 'name' => 'ss_response',
- 'type' => 'hidden',
- 'id' => 'ss_response'
- );
- $this->load->view('auth/login', $this->data);
- }
- // log the user out
- public function logout()
- {
- // log the user out
- $logout = $this->ion_auth->logout();
- // redirect them to the login page
- $this->session->set_flashdata('message', $this->ion_auth->messages());
- redirect('login', 'refresh');
- }
- // change password
- public function change_password()
- {
- $this->form_validation->set_rules('old', $this->lang->line('change_password_validation_old_password_label'), 'required');
- $this->form_validation->set_rules('new', $this->lang->line('change_password_validation_new_password_label'), 'required|min_length[' . $this->config->item('min_password_length', 'ion_auth') . ']|max_length[' . $this->config->item('max_password_length', 'ion_auth') . ']|matches[new_confirm]');
- $this->form_validation->set_rules('new_confirm', $this->lang->line('change_password_validation_new_password_confirm_label'), 'required');
- if (!$this->ion_auth->logged_in())
- {
- redirect('auth/login', 'refresh');
- }
- $user = $this->ion_auth->user()->row();
- if ($this->form_validation->run() == false)
- {
- // display the form
- // set the flash data error message if there is one
- $this->data['message'] = (validation_errors()) ? validation_errors() : $this->session->flashdata('message');
- $this->data['min_password_length'] = $this->config->item('min_password_length', 'ion_auth');
- $this->data['old_password'] = array(
- 'name' => 'old',
- 'id' => 'old',
- 'type' => 'password',
- );
- $this->data['new_password'] = array(
- 'name' => 'new',
- 'id' => 'new',
- 'type' => 'password',
- 'pattern' => '^.{'.$this->data['min_password_length'].'}.*$',
- );
- $this->data['new_password_confirm'] = array(
- 'name' => 'new_confirm',
- 'id' => 'new_confirm',
- 'type' => 'password',
- 'pattern' => '^.{'.$this->data['min_password_length'].'}.*$',
- );
- $this->data['user_id'] = array(
- 'name' => 'user_id',
- 'id' => 'user_id',
- 'type' => 'hidden',
- 'value' => $user->id,
- );
- // render
- $this->_render_page('auth/change_password', $this->data);
- }
- else
- {
- $identity = $this->session->userdata('identity');
- $change = $this->ion_auth->change_password($identity, $this->input->post('old'), $this->input->post('new'));
- if ($change)
- {
- //if the password was successfully changed
- $this->session->set_flashdata('message', $this->ion_auth->messages());
- $this->logout();
- }
- else
- {
- $this->session->set_flashdata('message', $this->ion_auth->errors());
- redirect('auth/change_password', 'refresh');
- }
- }
- }
- // register
- public function register()
- {
- $user = $this->ion_auth->user($id)->row();
- $groups=$this->ion_auth->groups()->result_array();
- $currentGroups = $this->ion_auth->get_users_groups($id)->result();
- // validate form input
- $this->form_validation->set_rules('first_name', 'First Name', 'required');
- $this->form_validation->set_rules('last_name', 'Last Name', 'required');
- $this->form_validation->set_rules('phone', 'Phone', 'required');
- $this->form_validation->set_rules('company', 'Company', 'required');
- if (isset($_POST) && !empty($_POST))
- {
- // do we have a valid request?
- if ($this->_valid_csrf_nonce() === FALSE || $id != $this->input->post('id'))
- {
- show_error($this->lang->line('error_csrf'));
- }
- // update the password if it was posted
- if ($this->input->post('password'))
- {
- $this->form_validation->set_rules('password', 'Password', 'required|min_length[' . $this->config->item('min_password_length', 'ion_auth') . ']|max_length[' . $this->config->item('max_password_length', 'ion_auth') . ']|matches[password_confirm]');
- $this->form_validation->set_rules('password_confirm', 'Password Confirm', 'required');
- }
- if ($this->form_validation->run() === TRUE)
- {
- $data = array(
- 'first_name' => $this->input->post('first_name'),
- 'last_name' => $this->input->post('last_name'),
- 'company' => $this->input->post('company'),
- 'phone' => $this->input->post('phone'),
- );
- // update the password if it was posted
- if ($this->input->post('password'))
- {
- $data['password'] = $this->input->post('password');
- }
- }
- }
- // display the edit user form
- $this->data['csrf'] = $this->_get_csrf_nonce();
- // set the flash data error message if there is one
- $this->data['message'] = (validation_errors() ? validation_errors() : ($this->ion_auth->errors() ? $this->ion_auth->errors() : $this->session->flashdata('message')));
- // pass the user to the view
- $this->data['user'] = $user;
- $this->data['groups'] = $groups;
- $this->data['currentGroups'] = $currentGroups;
- $this->data['first_name'] = array(
- 'name' => 'first_name',
- 'id' => 'first_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('first_name', $user->first_name),
- );
- $this->data['last_name'] = array(
- 'name' => 'last_name',
- 'id' => 'last_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('last_name', $user->last_name),
- );
- $this->data['company'] = array(
- 'name' => 'company',
- 'id' => 'company',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('company', $user->company),
- );
- $this->data['phone'] = array(
- 'name' => 'phone',
- 'id' => 'phone',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('phone', $user->phone),
- );
- $this->data['password'] = array(
- 'name' => 'password',
- 'id' => 'password',
- 'type' => 'password'
- );
- $this->data['password_confirm'] = array(
- 'name' => 'password_confirm',
- 'id' => 'password_confirm',
- 'type' => 'password'
- );
- $this->_render_page('auth/edit_user', $this->data);$this->data['title'] = $this->lang->line('edit_user_heading');
- if (!$this->ion_auth->logged_in() || (!$this->ion_auth->is_admin() && !($this->ion_auth->user()->row()->id == $id)))
- {
- redirect('auth', 'refresh');
- }
- }
- // forgot password
- public function forgot_password()
- {
- // setting validation rules by checking whether identity is username or email
- if($this->config->item('identity', 'ion_auth') != 'email' )
- {
- $this->form_validation->set_rules('identity', $this->lang->line('forgot_password_identity_label'), 'required');
- }
- else
- {
- $this->form_validation->set_rules('identity', $this->lang->line('forgot_password_validation_email_label'), 'required|valid_email');
- }
- if ($this->form_validation->run() == false)
- {
- $this->data['type'] = $this->config->item('identity','ion_auth');
- // setup the input
- $this->data['identity'] = array('name' => 'identity',
- 'id' => 'identity',
- );
- if ( $this->config->item('identity', 'ion_auth') != 'email' ){
- $this->data['identity_label'] = $this->lang->line('forgot_password_identity_label');
- }
- else
- {
- $this->data['identity_label'] = $this->lang->line('forgot_password_email_identity_label');
- }
- // set any errors and display the form
- $this->data['message'] = (validation_errors()) ? validation_errors() : $this->session->flashdata('message');
- $this->_render_page('auth/forgot_password', $this->data);
- }
- else
- {
- $identity_column = $this->config->item('identity','ion_auth');
- $identity = $this->ion_auth->where($identity_column, $this->input->post('identity'))->users()->row();
- if(empty($identity)) {
- if($this->config->item('identity', 'ion_auth') != 'email')
- {
- $this->ion_auth->set_error('forgot_password_identity_not_found');
- }
- else
- {
- $this->ion_auth->set_error('forgot_password_email_not_found');
- }
- $this->session->set_flashdata('message', $this->ion_auth->errors());
- redirect("auth/forgot_password", 'refresh');
- }
- // run the forgotten password method to email an activation code to the user
- $forgotten = $this->ion_auth->forgotten_password($identity->{$this->config->item('identity', 'ion_auth')});
- if ($forgotten)
- {
- // if there were no errors
- redirect("auth/success", 'refresh');
- }
- else
- {
- $this->session->set_flashdata('message', $this->ion_auth->errors());
- redirect("auth/forgot_password", 'refresh');
- }
- }
- }
- // reset password - final step for forgotten password
- public function reset_password($code = NULL)
- {
- if (!$code)
- {
- show_404();
- }
- $user = $this->ion_auth->forgotten_password_check($code);
- if ($user)
- {
- // if the code is valid then display the password reset form
- $this->form_validation->set_rules('new', $this->lang->line('reset_password_validation_new_password_label'), 'required|min_length[' . $this->config->item('min_password_length', 'ion_auth') . ']|max_length[' . $this->config->item('max_password_length', 'ion_auth') . ']|matches[new_confirm]');
- $this->form_validation->set_rules('new_confirm', $this->lang->line('reset_password_validation_new_password_confirm_label'), 'required');
- if ($this->form_validation->run() == false)
- {
- // display the form
- // set the flash data error message if there is one
- $this->data['message'] = (validation_errors()) ? validation_errors() : $this->session->flashdata('message');
- $this->data['min_password_length'] = $this->config->item('min_password_length', 'ion_auth');
- $this->data['new_password'] = array(
- 'name' => 'new',
- 'id' => 'new',
- 'type' => 'password',
- 'pattern' => '^.{'.$this->data['min_password_length'].'}.*$',
- );
- $this->data['new_password_confirm'] = array(
- 'name' => 'new_confirm',
- 'id' => 'new_confirm',
- 'type' => 'password',
- 'pattern' => '^.{'.$this->data['min_password_length'].'}.*$',
- );
- $this->data['user_id'] = array(
- 'name' => 'user_id',
- 'id' => 'user_id',
- 'type' => 'hidden',
- 'value' => $user->id,
- );
- $this->data['csrf'] = $this->_get_csrf_nonce();
- $this->data['code'] = $code;
- // render
- $this->_render_page('auth/reset_password', $this->data);
- }
- else
- {
- // do we have a valid request?
- if ($this->_valid_csrf_nonce() === FALSE || $user->id != $this->input->post('user_id'))
- {
- // something fishy might be up
- $this->ion_auth->clear_forgotten_password_code($code);
- show_error($this->lang->line('error_csrf'));
- }
- else
- {
- // finally change the password
- $identity = $user->{$this->config->item('identity', 'ion_auth')};
- $change = $this->ion_auth->reset_password($identity, $this->input->post('new'));
- if ($change)
- {
- // if the password was successfully changed
- $this->session->set_flashdata('message', $this->ion_auth->messages());
- redirect("auth/login", 'refresh');
- }
- else
- {
- $this->session->set_flashdata('message', $this->ion_auth->errors());
- redirect('auth/reset_password/' . $code, 'refresh');
- }
- }
- }
- }
- else
- {
- // if the code is invalid then send them back to the forgot password page
- $this->session->set_flashdata('message', $this->ion_auth->errors());
- redirect("auth/forgot_password", 'refresh');
- }
- }
- // activate the user
- public function activate($id, $code=false)
- {
- if ($code !== false)
- {
- $activation = $this->ion_auth->activate($id, $code);
- }
- else if ($this->ion_auth->is_admin())
- {
- $activation = $this->ion_auth->activate($id);
- }
- if ($activation)
- {
- // redirect them to the auth page
- $this->session->set_flashdata('message', $this->ion_auth->messages());
- redirect("auth", 'refresh');
- }
- else
- {
- // redirect them to the forgot password page
- $this->session->set_flashdata('message', $this->ion_auth->errors());
- redirect("auth/forgot_password", 'refresh');
- }
- }
- // deactivate the user
- public function deactivate($id = NULL)
- {
- if (!$this->ion_auth->logged_in() || !$this->ion_auth->is_admin())
- {
- // redirect them to the home page because they must be an administrator to view this
- return show_error('You must be an administrator to view this page.');
- }
- $id = (int) $id;
- $this->load->library('form_validation');
- $this->form_validation->set_rules('confirm', $this->lang->line('deactivate_validation_confirm_label'), 'required');
- $this->form_validation->set_rules('id', $this->lang->line('deactivate_validation_user_id_label'), 'required|alpha_numeric');
- if ($this->form_validation->run() == FALSE)
- {
- // insert csrf check
- $this->data['csrf'] = $this->_get_csrf_nonce();
- $this->data['user'] = $this->ion_auth->user($id)->row();
- $this->_render_page('auth/deactivate_user', $this->data);
- }
- else
- {
- // do we really want to deactivate?
- if ($this->input->post('confirm') == 'yes')
- {
- // do we have a valid request?
- if ($this->_valid_csrf_nonce() === FALSE || $id != $this->input->post('id'))
- {
- show_error($this->lang->line('error_csrf'));
- }
- // do we have the right userlevel?
- if ($this->ion_auth->logged_in() && $this->ion_auth->is_admin())
- {
- $this->ion_auth->deactivate($id);
- }
- }
- // redirect them back to the auth page
- redirect('auth', 'refresh');
- }
- }
- // create a new user
- public function create_user()
- {
- $this->data['title'] = $this->lang->line('create_user_heading');
- if (!$this->ion_auth->logged_in() || !$this->ion_auth->is_admin())
- {
- redirect('auth', 'refresh');
- }
- $tables = $this->config->item('tables','ion_auth');
- $identity_column = $this->config->item('identity','ion_auth');
- $this->data['identity_column'] = $identity_column;
- // validate form input
- $this->form_validation->set_rules('first_name', $this->lang->line('create_user_validation_fname_label'), 'required');
- $this->form_validation->set_rules('last_name', $this->lang->line('create_user_validation_lname_label'), 'required');
- if($identity_column!=='email')
- {
- $this->form_validation->set_rules('identity',$this->lang->line('create_user_validation_identity_label'),'required|is_unique['.$tables['users'].'.'.$identity_column.']');
- $this->form_validation->set_rules('email', $this->lang->line('create_user_validation_email_label'), 'required|valid_email');
- }
- else
- {
- $this->form_validation->set_rules('email', $this->lang->line('create_user_validation_email_label'), 'required|valid_email|is_unique[' . $tables['users'] . '.email]');
- }
- $this->form_validation->set_rules('phone', $this->lang->line('create_user_validation_phone_label'), 'trim');
- $this->form_validation->set_rules('company', $this->lang->line('create_user_validation_company_label'), 'trim');
- $this->form_validation->set_rules('password', $this->lang->line('create_user_validation_password_label'), 'required|min_length[' . $this->config->item('min_password_length', 'ion_auth') . ']|max_length[' . $this->config->item('max_password_length', 'ion_auth') . ']|matches[password_confirm]');
- $this->form_validation->set_rules('password_confirm', $this->lang->line('create_user_validation_password_confirm_label'), 'required');
- if ($this->form_validation->run() == true)
- {
- $email = strtolower($this->input->post('email'));
- $identity = ($identity_column==='email') ? $email : $this->input->post('identity');
- $password = $this->input->post('password');
- $additional_data = array(
- 'first_name' => $this->input->post('first_name'),
- 'last_name' => $this->input->post('last_name'),
- 'company' => $this->input->post('company'),
- 'phone' => $this->input->post('phone'),
- );
- }
- if ($this->form_validation->run() == true && $this->ion_auth->register($identity, $password, $email, $additional_data))
- {
- // check to see if we are creating the user
- // redirect them back to the admin page
- $this->session->set_flashdata('message', $this->ion_auth->messages());
- redirect("auth", 'refresh');
- }
- else
- {
- // display the create user form
- // set the flash data error message if there is one
- $this->data['message'] = (validation_errors() ? validation_errors() : ($this->ion_auth->errors() ? $this->ion_auth->errors() : $this->session->flashdata('message')));
- $this->data['first_name'] = array(
- 'name' => 'first_name',
- 'id' => 'first_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('first_name'),
- );
- $this->data['last_name'] = array(
- 'name' => 'last_name',
- 'id' => 'last_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('last_name'),
- );
- $this->data['identity'] = array(
- 'name' => 'identity',
- 'id' => 'identity',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('identity'),
- );
- $this->data['email'] = array(
- 'name' => 'email',
- 'id' => 'email',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('email'),
- );
- $this->data['company'] = array(
- 'name' => 'company',
- 'id' => 'company',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('company'),
- );
- $this->data['phone'] = array(
- 'name' => 'phone',
- 'id' => 'phone',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('phone'),
- );
- $this->data['password'] = array(
- 'name' => 'password',
- 'id' => 'password',
- 'type' => 'password',
- 'value' => $this->form_validation->set_value('password'),
- );
- $this->data['password_confirm'] = array(
- 'name' => 'password_confirm',
- 'id' => 'password_confirm',
- 'type' => 'password',
- 'value' => $this->form_validation->set_value('password_confirm'),
- );
- $this->_render_page('auth/create_user', $this->data);
- }
- }
- // edit a user
- public function edit_user($id)
- {
- $this->data['title'] = $this->lang->line('edit_user_heading');
- if (!$this->ion_auth->logged_in() || (!$this->ion_auth->is_admin() && !($this->ion_auth->user()->row()->id == $id)))
- {
- redirect('auth', 'refresh');
- }
- $user = $this->ion_auth->user($id)->row();
- $groups=$this->ion_auth->groups()->result_array();
- $currentGroups = $this->ion_auth->get_users_groups($id)->result();
- // validate form input
- $this->form_validation->set_rules('first_name', $this->lang->line('edit_user_validation_fname_label'), 'required');
- $this->form_validation->set_rules('last_name', $this->lang->line('edit_user_validation_lname_label'), 'required');
- $this->form_validation->set_rules('phone', $this->lang->line('edit_user_validation_phone_label'), 'required');
- $this->form_validation->set_rules('company', $this->lang->line('edit_user_validation_company_label'), 'required');
- if (isset($_POST) && !empty($_POST))
- {
- // do we have a valid request?
- if ($this->_valid_csrf_nonce() === FALSE || $id != $this->input->post('id'))
- {
- show_error($this->lang->line('error_csrf'));
- }
- // update the password if it was posted
- if ($this->input->post('password'))
- {
- $this->form_validation->set_rules('password', $this->lang->line('edit_user_validation_password_label'), 'required|min_length[' . $this->config->item('min_password_length', 'ion_auth') . ']|max_length[' . $this->config->item('max_password_length', 'ion_auth') . ']|matches[password_confirm]');
- $this->form_validation->set_rules('password_confirm', $this->lang->line('edit_user_validation_password_confirm_label'), 'required');
- }
- if ($this->form_validation->run() === TRUE)
- {
- $data = array(
- 'first_name' => $this->input->post('first_name'),
- 'last_name' => $this->input->post('last_name'),
- 'company' => $this->input->post('company'),
- 'phone' => $this->input->post('phone'),
- );
- // update the password if it was posted
- if ($this->input->post('password'))
- {
- $data['password'] = $this->input->post('password');
- }
- // Only allow updating groups if user is admin
- if ($this->ion_auth->is_admin())
- {
- //Update the groups user belongs to
- $groupData = $this->input->post('groups');
- if (isset($groupData) && !empty($groupData)) {
- $this->ion_auth->remove_from_group('', $id);
- foreach ($groupData as $grp) {
- $this->ion_auth->add_to_group($grp, $id);
- }
- }
- }
- // check to see if we are updating the user
- if($this->ion_auth->update($user->id, $data))
- {
- // redirect them back to the admin page if admin, or to the base url if non admin
- $this->session->set_flashdata('message', $this->ion_auth->messages() );
- if ($this->ion_auth->is_admin())
- {
- redirect('auth', 'refresh');
- }
- else
- {
- redirect('/', 'refresh');
- }
- }
- else
- {
- // redirect them back to the admin page if admin, or to the base url if non admin
- $this->session->set_flashdata('message', $this->ion_auth->errors() );
- if ($this->ion_auth->is_admin())
- {
- redirect('auth', 'refresh');
- }
- else
- {
- redirect('/', 'refresh');
- }
- }
- }
- }
- // display the edit user form
- $this->data['csrf'] = $this->_get_csrf_nonce();
- // set the flash data error message if there is one
- $this->data['message'] = (validation_errors() ? validation_errors() : ($this->ion_auth->errors() ? $this->ion_auth->errors() : $this->session->flashdata('message')));
- // pass the user to the view
- $this->data['user'] = $user;
- $this->data['groups'] = $groups;
- $this->data['currentGroups'] = $currentGroups;
- $this->data['first_name'] = array(
- 'name' => 'first_name',
- 'id' => 'first_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('first_name', $user->first_name),
- );
- $this->data['last_name'] = array(
- 'name' => 'last_name',
- 'id' => 'last_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('last_name', $user->last_name),
- );
- $this->data['company'] = array(
- 'name' => 'company',
- 'id' => 'company',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('company', $user->company),
- );
- $this->data['phone'] = array(
- 'name' => 'phone',
- 'id' => 'phone',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('phone', $user->phone),
- );
- $this->data['password'] = array(
- 'name' => 'password',
- 'id' => 'password',
- 'type' => 'password'
- );
- $this->data['password_confirm'] = array(
- 'name' => 'password_confirm',
- 'id' => 'password_confirm',
- 'type' => 'password'
- );
- $this->_render_page('auth/edit_user', $this->data);
- }
- // create a new group
- public function create_group()
- {
- $this->data['title'] = $this->lang->line('create_group_title');
- if (!$this->ion_auth->logged_in() || !$this->ion_auth->is_admin())
- {
- redirect('auth', 'refresh');
- }
- // validate form input
- $this->form_validation->set_rules('group_name', $this->lang->line('create_group_validation_name_label'), 'required|alpha_dash');
- if ($this->form_validation->run() == TRUE)
- {
- $new_group_id = $this->ion_auth->create_group($this->input->post('group_name'), $this->input->post('description'));
- if($new_group_id)
- {
- // check to see if we are creating the group
- // redirect them back to the admin page
- $this->session->set_flashdata('message', $this->ion_auth->messages());
- redirect("auth", 'refresh');
- }
- }
- else
- {
- // display the create group form
- // set the flash data error message if there is one
- $this->data['message'] = (validation_errors() ? validation_errors() : ($this->ion_auth->errors() ? $this->ion_auth->errors() : $this->session->flashdata('message')));
- $this->data['group_name'] = array(
- 'name' => 'group_name',
- 'id' => 'group_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('group_name'),
- );
- $this->data['description'] = array(
- 'name' => 'description',
- 'id' => 'description',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('description'),
- );
- $this->_render_page('auth/create_group', $this->data);
- }
- }
- // edit a group
- public function edit_group($id)
- {
- // bail if no group id given
- if(!$id || empty($id))
- {
- redirect('auth', 'refresh');
- }
- $this->data['title'] = $this->lang->line('edit_group_title');
- if (!$this->ion_auth->logged_in() || !$this->ion_auth->is_admin())
- {
- redirect('auth', 'refresh');
- }
- $group = $this->ion_auth->group($id)->row();
- // validate form input
- $this->form_validation->set_rules('group_name', $this->lang->line('edit_group_validation_name_label'), 'required|alpha_dash');
- if (isset($_POST) && !empty($_POST))
- {
- if ($this->form_validation->run() === TRUE)
- {
- $group_update = $this->ion_auth->update_group($id, $_POST['group_name'], $_POST['group_description']);
- if($group_update)
- {
- $this->session->set_flashdata('message', $this->lang->line('edit_group_saved'));
- }
- else
- {
- $this->session->set_flashdata('message', $this->ion_auth->errors());
- }
- redirect("auth", 'refresh');
- }
- }
- // set the flash data error message if there is one
- $this->data['message'] = (validation_errors() ? validation_errors() : ($this->ion_auth->errors() ? $this->ion_auth->errors() : $this->session->flashdata('message')));
- // pass the user to the view
- $this->data['group'] = $group;
- $readonly = $this->config->item('admin_group', 'ion_auth') === $group->name ? 'readonly' : '';
- $this->data['group_name'] = array(
- 'name' => 'group_name',
- 'id' => 'group_name',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('group_name', $group->name),
- $readonly => $readonly,
- );
- $this->data['group_description'] = array(
- 'name' => 'group_description',
- 'id' => 'group_description',
- 'type' => 'text',
- 'value' => $this->form_validation->set_value('group_description', $group->description),
- );
- $this->_render_page('auth/edit_group', $this->data);
- }
- public function _get_csrf_nonce()
- {
- $this->load->helper('string');
- $key = random_string('alnum', 8);
- $value = random_string('alnum', 20);
- $this->session->set_flashdata('csrfkey', $key);
- $this->session->set_flashdata('csrfvalue', $value);
- return array($key => $value);
- }
- public function _valid_csrf_nonce()
- {
- if ($this->input->post($this->session->flashdata('csrfkey')) !== FALSE &&
- $this->input->post($this->session->flashdata('csrfkey')) == $this->session->flashdata('csrfvalue'))
- {
- return TRUE;
- }
- else
- {
- return FALSE;
- }
- }
- public function _render_page($view, $data=null, $returnhtml=false)//I think this makes more sense
- {
- $this->viewdata = (empty($data)) ? $this->data: $data;
- $view_html = $this->load->view($view, $this->viewdata, $returnhtml);
- if ($returnhtml) return $view_html;//This will return html on 3rd argument being true
- }
- }
Add Comment
Please, Sign In to add comment