registrationHandler.inc.php

mail@pastecode.io avatar
unknown
php
a month ago
6.3 kB
2
Indexable
Never
<?php

/**
 * @file pages/user/RegistrationHandler.inc.php
 *
 * Copyright (c) 2013-2016 Simon Fraser University Library
 * Copyright (c) 2003-2016 John Willinsky
 * Distributed under the GNU GPL v2. For full terms see the file docs/COPYING.
 *
 * @class RegistrationHandler
 * @ingroup pages_user
 *
 * @brief Handle requests for user registration. 
 */

import('pages.user.UserHandler');

class RegistrationHandler extends UserHandler {
	/**
	 * Constructor
	 **/
	function RegistrationHandler() {
		parent::UserHandler();
	}

	/**
	 * Display registration form for new users.
	 * @param $args array
	 * @param $request PKPRequest
	 */
	function register($args, &$request) {
		$this->validate($request);
		$this->setupTemplate($request, true);

		$journal =& $request->getJournal();

		if ($journal != null) {
			import('classes.user.form.RegistrationForm');

			if (checkPhpVersion('5.0.0')) { // WARNING: This form needs $this in constructor
				$regForm = new RegistrationForm();
			} else {
				$regForm =& new RegistrationForm();
			}
			if ($regForm->isLocaleResubmit()) {
				$regForm->readInputData();
			} else {
				$regForm->initData();
			}
			$regForm->display();

		} else {
			$journalDao =& DAORegistry::getDAO('JournalDAO');
			$journals =& $journalDao->getJournals(true);
			$templateMgr =& TemplateManager::getManager();
			$templateMgr->assign('source', $request->getUserVar('source'));
			$templateMgr->assign_by_ref('journals', $journals);
			$templateMgr->display('user/registerSite.tpl');
		}
	}

	/**
	 * Validate user registration information and register new user.
	 * @param $args array
	 * @param $request PKPRequest
	 */
	function registerUser($args, &$request) {
		$this->validate($request);
		$this->setupTemplate($request, true);
		import('classes.user.form.RegistrationForm');

		if (checkPhpVersion('5.0.0')) { // WARNING: This form needs $this in constructor
			$regForm = new RegistrationForm();
		} else {
			$regForm =& new RegistrationForm();
		}
		$regForm->readInputData();

		if ($regForm->validate()) {
			$regForm->execute();

			$reason = null;

			$implicitAuth = strtolower(Config::getVar('security', 'implicit_auth'));
			if ($implicitAuth === true) {
				Validation::login('', '', $reason);
			} elseif ($implicitAuth === IMPLICIT_AUTH_OPTIONAL) {
				// Try both types of authentication
				if ($regForm->getData('username') && $regForm->getData('password')) {
					Validation::login($regForm->getData('username'), $regForm->getData('password'), $reason);
				} else {
					Validation::login('', '', $reason);
				}
			} else {
				Validation::login($regForm->getData('username'), $regForm->getData('password'), $reason);
			}

			if (!Validation::isLoggedIn()) {
				if (Config::getVar('email', 'require_validation')) {
					// Inform the user that they need to deal with the
					// registration email.
					$this->setupTemplate($request, true);
					$templateMgr =& TemplateManager::getManager();
					$templateMgr->assign('pageTitle', 'user.register.emailValidation');
					$templateMgr->assign('errorMsg', 'user.register.emailValidationDescription');
					$templateMgr->assign('backLink', $request->url(null, 'login'));
					$templateMgr->assign('backLinkLabel', 'user.login');
					return $templateMgr->display('common/error.tpl');
				}
			}

			if ($reason !== null) {
				$this->setupTemplate($request, true);
				$templateMgr =& TemplateManager::getManager();
				$templateMgr->assign('pageTitle', 'user.login');
				$templateMgr->assign('errorMsg', $reason==''?'user.login.accountDisabled':'user.login.accountDisabledWithReason');
				$templateMgr->assign('errorParams', array('reason' => $reason));
				$templateMgr->assign('backLink', $request->url(null, 'login'));
				$templateMgr->assign('backLinkLabel', 'user.login');
				return $templateMgr->display('common/error.tpl');
			}
			if ($source = $request->getUserVar('source')) $request->redirectUrl($source);
			else $request->redirect(null, 'login');

		} else {
			$regForm->display();
		}
	}

	/**
	 * Show error message if user registration is not allowed.
	 * @param $request PKPRequest
	 */
	function registrationDisabled($request) {
		$this->setupTemplate($request, true);
		$templateMgr =& TemplateManager::getManager();
		$templateMgr->assign('pageTitle', 'user.register');
		$templateMgr->assign('errorMsg', 'user.register.registrationDisabled');
		$templateMgr->assign('backLink', $request->url(null, 'login'));
		$templateMgr->assign('backLinkLabel', 'user.login');
		$templateMgr->display('common/error.tpl');
	}

	/**
	 * Check credentials and activate a new user
	 * @param $args array
	 * @param $request PKPRequest
	 * @author Marc Bria <marc.bria@uab.es>
	 */
	function activateUser($args, &$request) {
		$username = array_shift($args);
		$accessKeyCode = array_shift($args);

		$journal =& $request->getJournal();
		$userDao =& DAORegistry::getDAO('UserDAO');
		$user =& $userDao->getByUsername($username);
		if (!$user) $request->redirect(null, 'login');

		// Checks user & token
		import('lib.pkp.classes.security.AccessKeyManager');
		$accessKeyManager = new AccessKeyManager();
		$accessKeyHash = AccessKeyManager::generateKeyHash($accessKeyCode);
		$accessKey =& $accessKeyManager->validateKey(
			'RegisterContext',
			$user->getId(),
			$accessKeyHash
		);

		if ($accessKey != null && $user->getDateValidated() === null) {
			// Activate user
			$user->setDisabled(false);
			$user->setDisabledReason('');
			$user->setDateValidated(Core::getCurrentDate());
			$userDao->updateObject($user);

			$this->setupTemplate($request, true);
			$templateMgr =& TemplateManager::getManager();
			$templateMgr->assign('message', 'user.login.activated');
			return $templateMgr->display('common/message.tpl');
		}
		$request->redirect(null, 'login');
	}

	/**
	 * Validation check.
	 * Checks if journal allows user registration.
	 * @param $request PKPRequest
	 */	
	function validate(&$request) {
		parent::validate(false);
		$journal = $request->getJournal();
		if ($journal != null) {
			$journalSettingsDao =& DAORegistry::getDAO('JournalSettingsDAO');
			if ($journalSettingsDao->getSetting($journal->getId(), 'disableUserReg')) {
				// Users cannot register themselves for this journal
				$this->registrationDisabled($request);
				exit;
			}
		}
	}
}

?>
Leave a Comment