Add some more account actions,
Add return types, Add some stuff
This commit is contained in:
119
lib/account.php
119
lib/account.php
@@ -34,8 +34,8 @@ function doLogin($email, $password): array
|
||||
{
|
||||
global $mysqli, $routerConfig;
|
||||
$found = false;
|
||||
if(!empty($email) && !empty($password)){
|
||||
$stmt = $mysqli->prepare("SELECT ID, FirstName, LastName, Nickname, PasswordHash, MinecraftNick, privilegeLevel FROM Users WHERE EMAIL = ? AND isActive = 1");
|
||||
if (!empty($email) && !empty($password)) {
|
||||
$stmt = $mysqli->prepare("SELECT ID, FirstName, LastName, Nickname, PasswordHash, MinecraftNick, PrivilegeLevel, LastLoginAt, LoginCount FROM Users WHERE Email = ? AND isActivated = 1");
|
||||
$stmt->bind_param("s", $email);
|
||||
$stmt->execute();
|
||||
|
||||
@@ -46,14 +46,23 @@ function doLogin($email, $password): array
|
||||
$pwdhash = "";
|
||||
$mcnick = "";
|
||||
$privilegelevel = 0;
|
||||
$stmt->bind_result($idcko, $fname, $lname, $nickname, $pwdhash, $mcnick, $privilegelevel);
|
||||
$lastLoginAt = null;
|
||||
$loginCount = 0;
|
||||
$stmt->bind_result($idcko, $fname, $lname, $nickname, $pwdhash, $mcnick, $privilegelevel, $lastLoginAt, $loginCount);
|
||||
|
||||
if($stmt->num_rows() > 0){
|
||||
if ($stmt->num_rows() > 0) {
|
||||
$stmt->fetch();
|
||||
if (password_verify($password, $pwdhash) && $privilegelevel >= $routerConfig["logged_in_default_permission_level"]){
|
||||
if (password_verify($password, $pwdhash) && $privilegelevel >= $routerConfig["logged_in_default_permission_level"]) {
|
||||
$found = true;
|
||||
|
||||
// Update LastLoginAt and LoginCount
|
||||
$updateLoginStmt = $mysqli->prepare("UPDATE Users SET LastLoginAt = NOW(), LoginCount = LoginCount + 1 WHERE ID = ?");
|
||||
$updateLoginStmt->bind_param("i", $idcko);
|
||||
$updateLoginStmt->execute();
|
||||
$updateLoginStmt->close();
|
||||
}
|
||||
}
|
||||
|
||||
$_SESSION["ID"] = $idcko;
|
||||
$_SESSION["first_name"] = $fname;
|
||||
$_SESSION["last_name"] = $lname;
|
||||
@@ -78,12 +87,13 @@ function doLogout(): array
|
||||
|
||||
function doRegister($firstname, $lastname, $nickname, $email, $password, $minecraftnick, $activationtoken): array
|
||||
{
|
||||
global $mysqli;
|
||||
global $mysqli, $routerConfig;
|
||||
$status = ["status" => "fail"];
|
||||
if (!empty($activationtoken)){
|
||||
if (!empty($activationtoken)) {
|
||||
$passwordHash = password_hash($password, PASSWORD_DEFAULT);
|
||||
$stmt = $mysqli->prepare("UPDATE Users SET FirstName = ?, LastName = ?, Nickname = ?, Email = ?, PasswordHash = ?, MinecraftNick = ?, isAdmin = 0, isActivated = 1 WHERE isActivated = 0 AND ActivationToken = ?");
|
||||
$stmt->bind_param("sssssss", $firstname, $lastname, $nickname, $email, $passwordHash, $minecraftnick, $activationtoken);
|
||||
$stmt = $mysqli->prepare("INSERT INTO Users (FirstName, LastName, Nickname, Email, PasswordHash, MinecraftNick, PrivilegeLevel, isActivated, ActivationToken, RegisteredAt) VALUES (?, ?, ?, ?, ?, ?, ?, 0, ?, ?, NOW())");
|
||||
$privilegelevel = $routerConfig["logged_in_default_permission_level"];
|
||||
$stmt->bind_param("ssssssisi", $firstname, $lastname, $nickname, $email, $passwordHash, $minecraftnick, $privilegelevel, $activationtoken);
|
||||
$stmt->execute();
|
||||
if ($stmt->affected_rows > 0) {
|
||||
$status["status"] = "success";
|
||||
@@ -175,43 +185,102 @@ function isEmailAvailable($email): bool
|
||||
}
|
||||
|
||||
|
||||
function addActivationCodes($adminID, $count): array
|
||||
function addActivationCodes($count): array
|
||||
{
|
||||
global $mysqli;
|
||||
global $mysqli, $routerConfig;
|
||||
$activationCodes = [];
|
||||
if (!empty($adminID) && is_numeric($count) && $count > 0) {
|
||||
$stmt = $mysqli->prepare("INSERT INTO ActivationCodes (AdminID, Code) VALUES (?, ?)");
|
||||
|
||||
if (is_numeric($count) && $count > 0 && $_SESSION["privilegelevel"] >= $routerConfig["user_admin_permission_level"]) {
|
||||
$stmt = $mysqli->prepare("UPDATE Users SET ActivationCode = ?, CreatedAt = NOW(), CreatedBy = ? WHERE ID = ?");
|
||||
|
||||
for ($i = 0; $i < $count; $i++) {
|
||||
$activationCode = generateActivationToken();
|
||||
$stmt->bind_param("is", $adminID, $activationCode);
|
||||
$stmt->bind_param("sii", $activationCode, $_SESSION["ID"], $_SESSION["ID"]);
|
||||
$stmt->execute();
|
||||
|
||||
if ($stmt->affected_rows > 0) {
|
||||
$activationCodes[] = $activationCode;
|
||||
$activationCodes[] = [
|
||||
"Code" => $activationCode,
|
||||
"CreatedAt" => date("Y-m-d H:i:s"),
|
||||
"CreatedBy" => $_SESSION["ID"]
|
||||
];
|
||||
}
|
||||
}
|
||||
|
||||
$stmt->close();
|
||||
}
|
||||
|
||||
return $activationCodes;
|
||||
}
|
||||
|
||||
function listUsers(): array
|
||||
{
|
||||
global $mysqli;
|
||||
$users = [];
|
||||
$result = $mysqli->query("SELECT ID, FirstName, LastName, Nickname, Email, MinecraftNick, privilegeLevel FROM Users");
|
||||
while ($row = $result->fetch_assoc()) {
|
||||
$users[] = $row;
|
||||
global $mysqli, $routerConfig;
|
||||
$users = ["status" => "fail"]; // Default status is "fail"
|
||||
|
||||
if ($_SESSION["privilegelevel"] >= $routerConfig["user_admin_permission_level"]) {
|
||||
$users = [];
|
||||
$result = $mysqli->query("SELECT ID, FirstName, LastName, Nickname, Email, MinecraftNick, PrivilegeLevel, CreatedAt, RegisteredAt, LastLoginAt, LoginCount, CreatedBy FROM Users");
|
||||
|
||||
// Check if the query executed successfully
|
||||
if ($result) {
|
||||
while ($row = $result->fetch_assoc()) {
|
||||
$users[] = $row;
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
return $users;
|
||||
}
|
||||
|
||||
function listActivationCodes(): array
|
||||
{
|
||||
global $mysqli;
|
||||
$activationCodes = [];
|
||||
$result = $mysqli->query("SELECT Code FROM ActivationCodes");
|
||||
while ($row = $result->fetch_assoc()) {
|
||||
$activationCodes[] = $row['Code'];
|
||||
global $mysqli, $routerConfig;
|
||||
$activationCodes = ["status" => "fail"]; // Default status is "fail"
|
||||
|
||||
if ($_SESSION["privilegelevel"] >= $routerConfig["user_admin_permission_level"]) {
|
||||
$activationCodes = [];
|
||||
$result = $mysqli->query("SELECT Code, CreatedAt, CreatedBy FROM Users");
|
||||
|
||||
// Check if the query executed successfully
|
||||
if ($result) {
|
||||
while ($row = $result->fetch_assoc()) {
|
||||
$activationCodes[] = $row;
|
||||
}
|
||||
}
|
||||
}
|
||||
|
||||
return $activationCodes;
|
||||
}
|
||||
|
||||
function deleteUser($userID): array
|
||||
{
|
||||
global $mysqli, $routerConfig;
|
||||
$status = ["status" => "fail"];
|
||||
if (!empty($userID) && $_SESSION["privilegelevel"] >= $routerConfig["user_admin_permission_level"]) {
|
||||
$stmt = $mysqli->prepare("DELETE FROM Users WHERE ID = ?");
|
||||
$stmt->bind_param("i", $userID);
|
||||
$stmt->execute();
|
||||
if ($stmt->affected_rows > 0) {
|
||||
$status["status"] = "success";
|
||||
}
|
||||
$stmt->close();
|
||||
}
|
||||
return $status;
|
||||
}
|
||||
|
||||
function deleteActivationCode($activationCode): array
|
||||
{
|
||||
global $mysqli, $routerConfig;
|
||||
$status = ["status" => "fail"];
|
||||
if (!empty($activationCode) && $_SESSION["privilegelevel"] >= $routerConfig["user_admin_permission_level"]) {
|
||||
$stmt = $mysqli->prepare("DELETE FROM Users WHERE ActivationToken = ?");
|
||||
$stmt->bind_param("s", $activationCode);
|
||||
$stmt->execute();
|
||||
if ($stmt->affected_rows > 0) {
|
||||
$status["status"] = "success";
|
||||
}
|
||||
$stmt->close();
|
||||
}
|
||||
return $status;
|
||||
}
|
||||
Reference in New Issue
Block a user