friendica/mod/regmod.php

<?php

use Friendica\App;

require_once('include/enotify.php');
require_once('include/user.php');

function user_allow($hash) {

	$a = get_app();

	$register = q("SELECT * FROM `register` WHERE `hash` = '%s' LIMIT 1",
		dbesc($hash)
	);


	if (! dbm::is_result($register)) {
		return false;
	}

	$user = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
		intval($register[0]['uid'])
	);

	if (! dbm::is_result($user)) {
		killme();
	}

	$r = q("DELETE FROM `register` WHERE `hash` = '%s'",
		dbesc($register[0]['hash'])
	);


	$r = q("UPDATE `user` SET `blocked` = 0, `verified` = 1 WHERE `uid` = %d",
		intval($register[0]['uid'])
	);

	$r = q("SELECT * FROM `profile` WHERE `uid` = %d AND `is-default` = 1",
		intval($user[0]['uid'])
	);
	if (dbm::is_result($r) && $r[0]['net-publish']) {
		$url = App::get_baseurl() . '/profile/' . $user[0]['nickname'];
		if ($url && strlen(get_config('system','directory'))) {
			proc_run(PRIORITY_LOW, "include/directory.php", $url);
		}
	}

	push_lang($register[0]['language']);

	send_register_open_eml(
		$user[0]['email'],
		$a->config['sitename'],
		App::get_baseurl(),
		$user[0]['username'],
		$register[0]['password']);

	pop_lang();

	if($res) {
		info( t('Account approved.') . EOL );
		return true;
	}

}


// This does not have to go through user_remove() and save the nickname
// permanently against re-registration, as the person was not yet
// allowed to have friends on this system

function user_deny($hash) {

	$register = q("SELECT * FROM `register` WHERE `hash` = '%s' LIMIT 1",
		dbesc($hash)
	);

	if (!dbm::is_result($register)) {
		return false;
	}

	$user = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
		intval($register[0]['uid'])
	);

	dba::delete('user', array('uid' => $register[0]['uid']));
	dba::delete('register', array('hash' => $register[0]['hash']));

	notice(sprintf(t('Registration revoked for %s'), $user[0]['username']) . EOL);
	return true;

}

function regmod_content(App $a) {

	global $lang;

	$_SESSION['return_url'] = $a->cmd;

	if (! local_user()) {
		info( t('Please login.') . EOL);
		$o .= '<br /><br />' . login(($a->config['register_policy'] == REGISTER_CLOSED) ? 0 : 1);
		return $o;
	}

	if ((!is_site_admin()) || (x($_SESSION,'submanage') && intval($_SESSION['submanage']))) {
		notice( t('Permission denied.') . EOL);
		return '';
	}

	if ($a->argc != 3) {
		killme();
	}

	$cmd  = $a->argv[1];
	$hash = $a->argv[2];


	if ($cmd === 'deny') {
		user_deny($hash);
		goaway(App::get_baseurl()."/admin/users/");
		killme();
	}

	if ($cmd === 'allow') {
		user_allow($hash);
		goaway(App::get_baseurl()."/admin/users/");
		killme();
	}
}
verified registrations working 2010-07-29 02:15:10 -04:00			`<?php`

Move App to src - Add `use Friendica\App;` wherever needed 2017-04-30 00:07:00 -04:00			`use Friendica\App;`

More template gore! 2014-09-07 06:29:13 -04:00			`require_once('include/enotify.php');`
fix email for - registration request - registration approval - account created by admin add a reditect after registration approval or deny 2014-09-09 16:07:47 -04:00			`require_once('include/user.php');`
email header encoding everywhere 2013-01-04 18:47:29 -05:00
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`function user_allow($hash) {`
get app structure needed in regmod 2011-06-29 03:40:43 -04:00
			`$a = get_app();`

Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			$register = q("SELECT * FROM `register` WHERE `hash` = '%s' LIMIT 1",
			`dbesc($hash)`
			`);`

verified registrations working 2010-07-29 02:15:10 -04:00
Continued a bit: - converted some bad checks to use dbm::is_result() - added space between "if" and brace - added curly braces Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 04:16:48 -05:00			`if (! dbm::is_result($register)) {`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`return false;`
Continued a bit: - converted some bad checks to use dbm::is_result() - added space between "if" and brace - added curly braces Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 04:16:48 -05:00			`}`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00
			$user = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
			`intval($register[0]['uid'])`
			`);`
SQL improvements. New parameter for a maximum amount of comments per thread 2013-12-08 08:49:24 -05:00
Continued a bit: - converted some bad checks to use dbm::is_result() - added space between "if" and brace - added curly braces Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 04:16:48 -05:00			`if (! dbm::is_result($user)) {`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`killme();`
Continued a bit: - converted some bad checks to use dbm::is_result() - added space between "if" and brace - added curly braces Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 04:16:48 -05:00			`}`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00
SQL improvements. New parameter for a maximum amount of comments per thread 2013-12-08 08:49:24 -05:00			$r = q("DELETE FROM `register` WHERE `hash` = '%s'",
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`dbesc($register[0]['hash'])`
			`);`


SQL improvements. New parameter for a maximum amount of comments per thread 2013-12-08 08:49:24 -05:00			$r = q("UPDATE `user` SET `blocked` = 0, `verified` = 1 WHERE `uid` = %d",
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`intval($register[0]['uid'])`
			`);`
SQL improvements. New parameter for a maximum amount of comments per thread 2013-12-08 08:49:24 -05:00
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			$r = q("SELECT * FROM `profile` WHERE `uid` = %d AND `is-default` = 1",
			`intval($user[0]['uid'])`
			`);`
Cleanup for #3010 - added spaces, thanks to @annando . Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-14 03:41:33 -05:00			`if (dbm::is_result($r) && $r[0]['net-publish']) {`
much more usage of App::get_baseurl() instead of $a->get_baseurl() (coding convention applied) Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-19 08:26:13 -05:00			`$url = App::get_baseurl() . '/profile/' . $user[0]['nickname'];`
added spaces + curly braces Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:36:03 -05:00			`if ($url && strlen(get_config('system','directory'))) {`
"proc_run" is now called with priority. 2016-08-01 01:48:43 -04:00			`proc_run(PRIORITY_LOW, "include/directory.php", $url);`
added spaces + curly braces Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:36:03 -05:00			`}`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`}`

			`push_lang($register[0]['language']);`

More template gore! 2014-09-07 06:29:13 -04:00			`send_register_open_eml(`
			`$user[0]['email'],`
			`$a->config['sitename'],`
much more usage of App::get_baseurl() instead of $a->get_baseurl() (coding convention applied) Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-19 08:26:13 -05:00			`App::get_baseurl(),`
More template gore! 2014-09-07 06:29:13 -04:00			`$user[0]['username'],`
			`$register[0]['password']);`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00
			`pop_lang();`

Revert "Coding convention applied - part 1" 2017-03-21 12:02:59 -04:00			`if($res) {`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`info( t('Account approved.') . EOL );`
			`return true;`
SQL improvements. New parameter for a maximum amount of comments per thread 2013-12-08 08:49:24 -05:00			`}`
Revert "Updated modules to allow for partial overrides without errors" This reverts commit db949bb802448184bfe5164d8d3dd86ddf51b187. 2016-02-07 09:11:34 -05:00
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`}`

prevent re-registrations using a deleted username - not an issue with Friendica but could create a serious privacy issue with federated platforms 2012-03-22 04:46:52 -04:00
			`// This does not have to go through user_remove() and save the nickname`
			`// permanently against re-registration, as the person was not yet`
			`// allowed to have friends on this system`
Revert "Updated modules to allow for partial overrides without errors" This reverts commit db949bb802448184bfe5164d8d3dd86ddf51b187. 2016-02-07 09:11:34 -05:00
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`function user_deny($hash) {`

			$register = q("SELECT * FROM `register` WHERE `hash` = '%s' LIMIT 1",
			`dbesc($hash)`
			`);`

Just some more dba::delete 2017-05-13 00:04:17 -04:00			`if (!dbm::is_result($register)) {`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`return false;`
Just some more dba::delete 2017-05-13 00:04:17 -04:00			`}`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00
			$user = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
			`intval($register[0]['uid'])`
			`);`
SQL improvements. New parameter for a maximum amount of comments per thread 2013-12-08 08:49:24 -05:00
Just some more dba::delete 2017-05-13 00:04:17 -04:00			`dba::delete('user', array('uid' => $register[0]['uid']));`
			`dba::delete('register', array('hash' => $register[0]['hash']));`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00
Just some more dba::delete 2017-05-13 00:04:17 -04:00			`notice(sprintf(t('Registration revoked for %s'), $user[0]['username']) . EOL);`
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`return true;`
Revert "Updated modules to allow for partial overrides without errors" This reverts commit db949bb802448184bfe5164d8d3dd86ddf51b187. 2016-02-07 09:11:34 -05:00
Admin users page. some fix to template processor. 2011-06-16 08:56:43 -04:00			`}`
verified registrations working 2010-07-29 02:15:10 -04:00
Normalize App parameter declaration (mod folder, 3 out of 3) 2017-01-09 07:14:55 -05:00			`function regmod_content(App $a) {`
verified registrations working 2010-07-29 02:15:10 -04:00
bug #85 2011-05-23 23:30:37 -04:00			`global $lang;`

ensure regmod redirects to itself after login 2010-10-09 09:00:07 -04:00			`$_SESSION['return_url'] = $a->cmd;`

added much more curly braces + space between "if" and brace Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:56:34 -05:00			`if (! local_user()) {`
add info() function. Works like notice() but show messages in a div with class info-message. update code to use info() instead of notice() when appropriate (non-error message) add info-message class style in themes 2011-05-23 05:39:57 -04:00			`info( t('Please login.') . EOL);`
reciprocal verification on notify, poll 2010-08-05 05:57:03 -04:00			`$o .= '<br /><br />' . login(($a->config['register_policy'] == REGISTER_CLOSED) ? 0 : 1);`
verified registrations working 2010-07-29 02:15:10 -04:00			`return $o;`
			`}`

added much more curly braces + space between "if" and brace Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:56:34 -05:00			`if ((!is_site_admin()) \|\| (x($_SESSION,'submanage') && intval($_SESSION['submanage']))) {`
prevent admin hijacks 2011-01-05 01:17:58 -05:00			`notice( t('Permission denied.') . EOL);`
			`return '';`
			`}`

added much more curly braces + space between "if" and brace Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:56:34 -05:00			`if ($a->argc != 3) {`
verified registrations working 2010-07-29 02:15:10 -04:00			`killme();`
added much more curly braces + space between "if" and brace Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:56:34 -05:00			`}`
verified registrations working 2010-07-29 02:15:10 -04:00
lint 2010-11-07 20:29:30 -05:00			`$cmd = $a->argv[1];`
verified registrations working 2010-07-29 02:15:10 -04:00			`$hash = $a->argv[2];`


photo album finish, general cleanup begins 2010-08-08 20:08:39 -04:00
added much more curly braces + space between "if" and brace Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:56:34 -05:00			`if ($cmd === 'deny') {`
fix email for - registration request - registration approval - account created by admin add a reditect after registration approval or deny 2014-09-09 16:07:47 -04:00			`user_deny($hash);`
much more usage of App::get_baseurl() instead of $a->get_baseurl() (coding convention applied) Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-19 08:26:13 -05:00			`goaway(App::get_baseurl()."/admin/users/");`
fix email for - registration request - registration approval - account created by admin add a reditect after registration approval or deny 2014-09-09 16:07:47 -04:00			`killme();`
verified registrations working 2010-07-29 02:15:10 -04:00			`}`

added much more curly braces + space between "if" and brace Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-20 05:56:34 -05:00			`if ($cmd === 'allow') {`
fix email for - registration request - registration approval - account created by admin add a reditect after registration approval or deny 2014-09-09 16:07:47 -04:00			`user_allow($hash);`
much more usage of App::get_baseurl() instead of $a->get_baseurl() (coding convention applied) Signed-off-by: Roland Häder <roland@mxchange.org> 2016-12-19 08:26:13 -05:00			`goaway(App::get_baseurl()."/admin/users/");`
fix email for - registration request - registration approval - account created by admin add a reditect after registration approval or deny 2014-09-09 16:07:47 -04:00			`killme();`
verified registrations working 2010-07-29 02:15:10 -04:00			`}`
add info() function. Works like notice() but show messages in a div with class info-message. update code to use info() instead of notice() when appropriate (non-error message) add info-message class style in themes 2011-05-23 05:39:57 -04:00			`}`