2001-03-10 11:07:52 +00:00
< ? php
2000-10-10 10:52:19 +00:00
class User {
2001-02-14 09:32:33 +00:00
function User ( $userid , $passwd = 0 ) {
if ( $passwd ) {
2001-06-20 20:00:40 +00:00
$result = db_query ( " SELECT u.*, r.perm FROM users u LEFT JOIN role r ON u.role = r.name WHERE LOWER(userid) = LOWER(' $userid ') && passwd = PASSWORD(' $passwd ') AND status = 2 " );
2001-02-14 09:32:33 +00:00
if ( db_num_rows ( $result ) == 1 ) {
foreach ( db_fetch_row ( $result ) as $key => $value ) { $field = mysql_field_name ( $result , $key ); $this -> $field = stripslashes ( $value ); $this -> field [] = $field ; }
2001-02-18 15:14:56 +00:00
db_query ( " UPDATE users SET last_access = ' " . time () . " ', last_host = ' $GLOBALS[REMOTE_ADDR] ' WHERE id = $this->id " );
2001-02-14 09:32:33 +00:00
}
2001-02-04 22:09:38 +00:00
}
2001-02-14 09:32:33 +00:00
else {
2001-06-20 20:00:40 +00:00
$result = db_query ( " SELECT u.*, r.perm FROM users u LEFT JOIN role r ON u.role = r.name WHERE u.userid = ' $userid ' AND u.status = 2 " );
2001-02-14 09:32:33 +00:00
if ( db_num_rows ( $result ) == 1 ) {
foreach ( db_fetch_row ( $result ) as $key => $value ) { $field = mysql_field_name ( $result , $key ); $this -> $field = stripslashes ( $value ); $this -> field [] = $field ; }
2001-02-18 15:14:56 +00:00
db_query ( " UPDATE users SET last_access = ' " . time () . " ', last_host = ' $GLOBALS[REMOTE_ADDR] ' WHERE id = $this->id " );
2001-02-14 09:32:33 +00:00
}
2000-10-10 10:52:19 +00:00
}
}
}
2001-02-18 15:14:56 +00:00
function user_init () {
2001-02-04 22:09:38 +00:00
global $db_name ;
session_name ( $db_name );
session_start ();
}
2001-02-18 15:14:56 +00:00
function user_load ( $username ) {
return new User ( $username );
}
2001-01-26 13:38:46 +00:00
2001-03-31 14:58:37 +00:00
function user_rehash () {
global $user ;
if ( $user -> id ) {
$user = new User ( $user -> userid );
session_register ( " user " );
}
}
2001-02-18 15:14:56 +00:00
function user_save ( $account , $array ) {
// dynamically compose query:
foreach ( $array as $key => $value ) {
2000-10-19 13:31:23 +00:00
if ( $key == " passwd " ) $query .= " $key = PASSWORD(' " . addslashes ( $value ) . " '), " ;
2000-12-16 21:42:52 +00:00
else $query .= " $key = ' " . addslashes ( $value ) . " ', " ;
2000-10-10 10:52:19 +00:00
}
2001-01-26 13:38:46 +00:00
2001-02-18 15:14:56 +00:00
// update or instert account:
if ( $account -> id ) db_query ( " UPDATE users SET $query last_access = ' " . time () . " ', last_host = ' $GLOBALS[REMOTE_ADDR] ' WHERE id = ' $account->id ' " );
else db_query ( " INSERT INTO users SET $query last_access = ' " . time () . " ', last_host = ' $GLOBALS[REMOTE_ADDR] ' " );
// return account:
2001-03-28 07:03:47 +00:00
return user_load (( $account -> userid ? $account -> userid : $array [ userid ]));
2000-10-10 10:52:19 +00:00
}
2001-06-29 22:08:57 +00:00
function user_access ( $perm ) {
global $user ;
if ( $user -> id == 1 ) {
2001-06-20 20:00:40 +00:00
return 1 ;
}
2001-06-29 22:08:57 +00:00
else if ( $user -> perm ) {
return strstr ( $user -> perm , $perm );
2001-06-20 20:00:40 +00:00
}
else {
return db_fetch_object ( db_query ( " SELECT * FROM role WHERE name = 'anonymous user' AND perm LIKE '% $perm %' " ));
}
2001-02-04 22:09:38 +00:00
}
2001-04-02 15:54:37 +00:00
function user_ban ( $mask , $type ) {
$result = db_query ( " SELECT * FROM access WHERE type = ' $type ' AND ' $mask ' REGEXP mask " );
return db_fetch_object ( $result );
}
2001-06-19 06:55:19 +00:00
function user_password ( $min_length = 6 ) {
2001-06-18 20:29:36 +00:00
mt_srand (( double ) microtime () * 1000000 );
$words = array ( " foo " , " bar " , " guy " , " neo " , " tux " , " moo " , " sun " , " asm " , " dot " , " god " , " axe " , " geek " , " nerd " , " fish " , " hack " , " star " , " mice " , " warp " , " moon " , " hero " , " cola " , " girl " , " fish " , " java " , " perl " , " boss " , " dark " , " sith " , " jedi " , " drop " , " mojo " );
2001-06-19 06:55:19 +00:00
while ( strlen ( $password ) < $min_length ) $password .= $words [ mt_rand ( 0 , count ( $words ))];
2001-06-18 20:29:36 +00:00
return $password ;
}
2001-06-19 06:55:19 +00:00
function user_validate_name ( $name ) {
if ( ! $name ) return t ( " you must enter a username. " );
if ( eregi ( " ^ " , $name )) return t ( " the username can not begin with a space. " );
if ( eregi ( " \$ " , $name )) return t ( " the username can not end with a space. " );
if ( eregi ( " " , $name )) return t ( " the username can not contain multiple spaces in a row. " );
if ( eregi ( " [^a-zA-Z0-9 ] " , $name )) return t ( " the username contains an illegal character. " );
2001-06-23 14:59:15 +00:00
if ( strlen ( $name ) > 32 ) return t ( " the username ' $name ' is too long: it must be less than 32 characters. " );
2001-06-19 06:55:19 +00:00
}
function user_validate_mail ( $mail ) {
if ( ! $mail ) return t ( " your must enter an e-mail address. " );
if ( ! eregi ( " ^[_+ \ .0-9a-z-]+@([0-9a-z][0-9a-z-]+ \ .)+[a-z] { 2,3} $ " , $mail )) return t ( " the e-mail address ' $email ' is not valid. " );
}
function user_validate ( $user ) {
// Verify username:
if ( $error = user_validate_name ( $user [ userid ])) return $error ;
// Verify e-mail address:
if ( $error = user_validate_mail ( $user [ real_email ])) return $error ;
2001-06-18 20:29:36 +00:00
// Check to see whether the username or e-mail address are banned:
2001-06-19 06:55:19 +00:00
if ( $ban = user_ban ( $user [ userid ], " username " )) return t ( " the username ' $user[userid] ' is banned " ) . " : <I> $ban->reason </I>. " ;
if ( $ban = user_ban ( $user [ real_email ], " e-mail address " )) return t ( " the e-mail address ' $user[real_email] ' is banned " ) . " : <I> $ban->reason </I>. " ;
2001-06-18 20:29:36 +00:00
// Verify whether username and e-mail address are unique:
2001-06-19 06:55:19 +00:00
if ( db_num_rows ( db_query ( " SELECT userid FROM users WHERE LOWER(userid) = LOWER(' $user[userid] ') " )) > 0 ) return t ( " the username ' $user[userid] ' is already taken. " );
if ( db_num_rows ( db_query ( " SELECT real_email FROM users WHERE LOWER(real_email) = LOWER(' $user[real_email] ') " )) > 0 ) return t ( " the e-mail address ' $user[real_email] ' is already in use by another account. " );
2001-06-18 20:29:36 +00:00
}
2000-12-30 11:58:14 +00:00
?>
