4b84c790ded0527f3003416ad485e6777151f4f9
2 /***************************************************************************
3 * Copyright (C) 2003-2008 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
22 class User
extends PlUser
24 private $_profile_fetched = false
;
25 private $_profile = null
;
27 // Implementation of the login to uid method.
28 protected function getLogin($login)
32 if ($login instanceof User
) {
36 if ($login instanceof Profile
) {
37 $this->_profile
= $login;
38 $this->_profile_fetched
= true
;
39 $res = XDB
::query('SELECT ap.uid
40 FROM account_profiles AS ap
41 WHERE ap.pid = {?} AND FIND_IN_SET(\'owner\', perms)',
43 if ($res->numRows()) {
44 return $res->fetchOneCell();
46 throw new UserNotFoundException();
49 // If $data is an integer, fetches directly the result.
50 if (is_numeric($login)) {
51 $res = XDB
::query('SELECT a.uid
53 WHERE a.uid = {?}', $login);
54 if ($res->numRows()) {
55 return $res->fetchOneCell();
58 throw new UserNotFoundException();
61 // Checks whether $login is a valid hruid or not.
62 $res = XDB
::query('SELECT a.uid
64 WHERE a.hruid = {?}', $login);
65 if ($res->numRows()) {
66 return $res->fetchOneCell();
69 // From now, $login can only by an email alias, or an email redirection.
70 // If it doesn't look like a valid address, appends the plat/al's main domain.
71 $login = trim(strtolower($login));
72 if (strstr($login, '@') === false
) {
73 $login = $login . '@' . $globals->mail
->domain
;
76 // Checks if $login is a valid alias on the main domains.
77 list($mbox, $fqdn) = explode('@', $login);
78 if ($fqdn == $globals->mail
->domain ||
$fqdn == $globals->mail
->domain2
) {
79 $res = XDB
::query('SELECT a.uid
81 INNER JOIN aliases AS al ON (al.id = a.uid AND al.type IN (\'alias\', \'a_vie\'))
82 WHERE al.alias = {?}', $mbox);
83 if ($res->numRows()) {
84 return $res->fetchOneCell();
87 /** TODO: implements this by inspecting the profile.
88 if (preg_match('/^(.*)\.([0-9]{4})$/u', $mbox, $matches)) {
89 $res = XDB::query('SELECT a.uid
91 INNER JOIN aliases AS al ON (al.id = a.uid AND al.type IN ('alias', 'a_vie'))
92 WHERE al.alias = {?} AND a.promo = {?}', $matches[1], $matches[2]);
93 if ($res->numRows() == 1) {
94 return $res->fetchOneCell();
98 throw new UserNotFoundException();
101 // Looks for $login as an email alias from the dedicated alias domain.
102 if ($fqdn == $globals->mail
->alias_dom ||
$fqdn == $globals->mail
->alias_dom2
) {
103 $res = XDB
::query("SELECT redirect
104 FROM virtual_redirect
105 INNER JOIN virtual USING(vid)
106 WHERE alias = {?}", $mbox . '@' . $globals->mail
->alias_dom
);
107 if ($redir = $res->fetchOneCell()) {
108 // We now have a valid alias, which has to be translated to an hruid.
109 list($alias, $alias_fqdn) = explode('@', $redir);
110 $res = XDB
::query("SELECT a.uid
112 LEFT JOIN aliases AS al ON (al.id = a.uid AND al.type IN ('alias', 'a_vie'))
113 WHERE al.alias = {?}", $alias);
114 if ($res->numRows()) {
115 return $res->fetchOneCell();
119 throw new UserNotFoundException();
122 // Looks for an account with the given email.
123 $res = XDB
::query('SELECT a.uid
125 WHERE a.email = {?}', $login);
126 if ($res->numRows() == 1) {
127 return $res->fetchOneCell();
130 // Otherwise, we do suppose $login is an email redirection.
131 $res = XDB
::query("SELECT a.uid
133 LEFT JOIN emails AS e ON (e.uid = a.uid)
134 WHERE e.email = {?}", $login);
135 if ($res->numRows() == 1) {
136 return $res->fetchOneCell();
139 throw new UserNotFoundException($res->fetchColumn(1));
142 protected static function loadMainFieldsFromUIDs(array $uids, $sorted = null
, $count = null
, $offset = null
)
148 if (!is_null($sorted)) {
152 foreach (explode(',', $sorted) as $part) {
153 $desc = ($part[0] == '-');
155 $part = substr($part, 1);
161 $part = 'IF (pd.promo IS NULL, \'ext\', pd.promo)';
164 $part = 'a.full_name';
167 $part = 'a.display_name';
169 case 'directory_name':
170 $part = 'pd.directory_name';
177 if (!is_null($part)) {
184 if (count($order) > 0) {
186 $joins .= "LEFT JOIN account_profiles AS ap ON (ap.uid = a.uid AND FIND_IN_SET('owner', ap.perms))\n";
189 $joins .= "LEFT JOIN profile_display AS pd ON (pd.pid = ap.pid)\n";
191 $orderby = 'ORDER BY ' . implode(', ', $order);
194 if ($globals->asso('id')) {
195 $joins .= XDB
::format("LEFT JOIN groupex.membres AS gpm ON (gpm.uid = a.uid AND gpm.asso_id = {?})\n", $globals->asso('id'));
196 $fields[] = 'gpm.perms AS group_perms';
197 $fields[] = 'gpm.comm AS group_comm';
199 if (count($fields) > 0) {
200 $fields = ', ' . implode(', ', $fields);
205 if (!is_null($count)) {
206 if (!is_null($offset)) {
207 $limit = ' LIMIT ' . $offset . ', ' . $count;
209 $limit = ' LIMIT ' . $count;
212 $uids = array_map(array('XDB', 'escape'), $uids);
213 return XDB
::iterator('SELECT a.uid, a.hruid, a.registration_date,
214 CONCAT(af.alias, \'@' . $globals->mail
->domain
. '\') AS forlife,
215 CONCAT(ab.alias, \'@' . $globals->mail
->domain
. '\') AS bestalias,
216 a.full_name, a.display_name, a.sex = \'female\' AS gender,
217 IF(a.state = \'active\', at.perms, \'\') AS perms,
218 a.email_format, a.is_admin, a.state, a.type, a.skin,
219 FIND_IN_SET(\'watch\', a.flags) AS watch, a.comment,
220 a.weak_password IS NOT NULL AS weak_access,
221 a.token IS NOT NULL AS token_access ' . $fields . '
223 INNER JOIN account_types AS at ON (at.type = a.type)
224 LEFT JOIN aliases AS af ON (af.id = a.uid AND af.type = \'a_vie\')
225 LEFT JOIN aliases AS ab ON (ab.id = a.uid AND FIND_IN_SET(\'bestalias\', ab.flags))
227 WHERE a.uid IN (' . implode(', ', $uids) . ')
228 ' . $orderby . $limit);
231 // Implementation of the data loader.
232 protected function loadMainFields()
234 if ($this->hruid
!== null
&& $this->forlife
!== null
235 && $this->bestalias
!== null
&& $this->display_name
!== null
236 && $this->full_name
!== null
&& $this->perms
!== null
237 && $this->gender
!== null
&& $this->email_format
!== null
) {
240 $this->fillFromArray(self
::loadMainFieldsFromUIDs(array($this->user_id
))->next());
243 // Specialization of the fillFromArray method, to implement hacks to enable
244 // lazy loading of user's main properties from the session.
245 // TODO(vzanotti): remove the conversion hacks once the old codebase will
246 // stop being used actively.
247 protected function fillFromArray(array $values)
249 // It might happen that the 'user_id' field is called uid in some places
250 // (eg. in sessions), so we hard link uid to user_id to prevent useless
252 if (!isset($values['user_id']) && isset($values['uid'])) {
253 $values['user_id'] = $values['uid'];
256 // Also, if display_name and full_name are not known, but the user's
257 // surname and last name are, we can construct the former two.
258 if (isset($values['prenom']) && isset($values['nom'])) {
259 if (!isset($values['display_name'])) {
260 $values['display_name'] = ($values['prenom'] ?
$values['prenom'] : $values['nom']);
262 if (!isset($values['full_name'])) {
263 $values['full_name'] = $values['prenom'] . ' ' . $values['nom'];
267 // We also need to convert the gender (usually named "femme"), and the
268 // email format parameter (valued "texte" instead of "text").
269 if (isset($values['femme'])) {
270 $values['gender'] = (bool
) $values['femme'];
272 if (isset($values['mail_fmt'])) {
273 $values['email_format'] = $values['mail_fmt'];
276 parent
::fillFromArray($values);
279 // Specialization of the buildPerms method
280 // This function build 'generic' permissions for the user. It does not take
281 // into account page specific permissions (e.g X.net group permissions)
282 protected function buildPerms()
284 if (!is_null($this->perm_flags
)) {
287 if ($this->perms
=== null
) {
288 $this->loadMainFields();
290 $this->perm_flags
= self
::makePerms($this->perms
, $this->is_admin
);
293 // We do not want to store the password in the object.
294 // So, fetch it 'on demand'
295 public function password()
297 return XDB
::fetchOneCell('SELECT a.password
299 WHERE a.uid = {?}', $this->id());
302 /** Overload PlUser::promo(): there no promo defined for a user in the current
303 * schema. The promo is a field from the profile.
305 public function promo()
307 if (!$this->hasProfile()) {
310 return $this->profile()->promo();
313 public function firstName()
315 if (!$this->hasProfile()) {
316 return $this->displayName();
318 return $this->profile()->firstName();
321 public function lastName()
323 if (!$this->hasProfile()) {
326 return $this->profile()->lastName();
329 /** Return the main profile attached with this account if any.
331 public function profile()
333 if (!$this->_profile_fetched
) {
334 $this->_profile_fetched
= true
;
335 $this->_profile
= Profile
::get($this);
337 return $this->_profile
;
340 /** Return true if the user has an associated profile.
342 public function hasProfile()
344 return !is_null($this->profile());
347 /** Check if the user can edit to given profile.
349 public function canEdit(Profile
$profile)
351 // XXX: Check permissions (e.g. secretary permission)
352 // and flags from the profile
353 return XDB
::fetchOneCell('SELECT pid
354 FROM account_profiles
355 WHERE uid = {?} AND pid = {?}',
356 $this->id(), $profile->id());
359 /** Get the email alias of the user.
361 public function emailAlias()
364 $data = $this->emailAliases($globals->mail
->alias_dom
);
365 if (count($data) > 0) {
366 return array_pop($data);
371 /** Get all the aliases the user belongs to.
373 public function emailAliases($domain = null
, $type = 'user', $sub_state = false
)
375 $join = XDB
::format('(vr.redirect = {?} OR vr.redirect = {?}) ',
376 $this->forlifeEmail(), $this->m4xForlifeEmail());
378 if (!is_null($domain)) {
379 $where = XDB
::format('WHERE v.alias LIKE CONCAT("%@", {?})', $domain);
381 if (!is_null($type)) {
383 $where = XDB
::format('WHERE v.type = {?}', $type);
385 $where .= XDB
::format(' AND v.type = {?}', $type);
389 return XDB
::fetchAllAssoc('alias', 'SELECT v.alias, vr.redirect IS NOT NULL AS sub
391 LEFT JOIN virtual_redirect AS vr ON (v.vid = vr.vid AND ' . $join . ')
394 return XDB
::fetchColumn('SELECT v.alias
396 INNER JOIN virtual_redirect AS vr ON (v.vid = vr.vid AND ' . $join . ')
401 /** Get the alternative forlife email
402 * TODO: remove this uber-ugly hack. The issue is that you need to remove
403 * all @m4x.org addresses in virtual_redirect first.
404 * XXX: This is juste to make code more readable, to be remove as soon as possible
406 public function m4xForlifeEmail()
409 trigger_error('USING M4X FORLIFE', E_USER_NOTICE
);
410 return $this->login() . '@' . $globals->mail
->domain2
;
413 // Return permission flags for a given permission level.
414 public static function makePerms($perms, $is_admin)
416 $flags = new PlFlagSet($perms);
417 $flags->addFlag(PERMS_USER
);
419 $flags->addFlag(PERMS_ADMIN
);
424 // Implementation of the default user callback.
425 public static function _default_user_callback($login, $results)
427 $result_count = count($results);
428 if ($result_count == 0 ||
!S
::has_perms()) {
429 Platal
::page()->trigError("Il n'y a pas d'utilisateur avec l'identifiant : $login");
431 Platal
::page()->trigError("Il y a $result_count utilisateurs avec cet identifiant : " . join(', ', $results));
435 // Implementation of the static email locality checker.
436 public static function isForeignEmailAddress($email)
439 if (strpos($email, '@') === false
) {
443 list($user, $dom) = explode('@', $email);
444 return $dom != $globals->mail
->domain
&&
445 $dom != $globals->mail
->domain2
&&
446 $dom != $globals->mail
->alias_dom
&&
447 $dom != $globals->mail
->alias_dom2
;
450 // Fetch a set of users from a list of UIDs
451 public static function getBuildUsersWithUIDs(array $uids, $sortby = null
, $count = null
, $offset = null
)
453 $fields = self
::loadMainFieldsFromUIDs($uids, $sortby, $count, $offset);
455 while (($list = $fields->next())) {
456 $users[] = User
::getSilentWithValues(null
, $list);
462 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: