16d02a78c454f29cf2ca2960bfd77ab8ea77c163
2 /***************************************************************************
3 * Copyright (C) 2003-2011 Polytechnique.org *
4 * http://opensource.polytechnique.org/ *
6 * This program is free software; you can redistribute it and/or modify *
7 * it under the terms of the GNU General Public License as published by *
8 * the Free Software Foundation; either version 2 of the License, or *
9 * (at your option) any later version. *
11 * This program is distributed in the hope that it will be useful, *
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
14 * GNU General Public License for more details. *
16 * You should have received a copy of the GNU General Public License *
17 * along with this program; if not, write to the Free Software *
19 * 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *
20 ***************************************************************************/
22 class RegisterModule
extends PLModule
27 'register' => $this->make_hook('register', AUTH_PUBLIC
),
28 'register/end' => $this->make_hook('end', AUTH_PUBLIC
),
32 function handler_register($page, $hash = null
)
35 $subState = new PlDict(S
::v('subState', array()));
36 if (!$subState->has('step')) {
37 $subState->set('step', 0);
39 if (!$subState->has('backs')) {
40 $subState->set('backs', new PlDict());
42 if (Get
::has('back') && Get
::i('back') < $subState->i('step')) {
43 $subState->set('step', max(0, Get
::i('back')));
44 $subState->v('backs')->set($subState->v('backs')->count() +
1, $subState->dict());
45 $subState->v('backs')->kill('backs');
46 if ($subState->v('backs')->count() == 3) {
47 $alert .= "Tentative d'inscription très hésitante - ";
52 $res = XDB
::query("SELECT a.uid, a.hruid, ppn.lastname_initial AS lastname, ppn.firstname_initial AS firstname, p.xorg_id AS xorgid,
53 pd.promo, pe.promo_year AS yearpromo, pde.degree AS edu_type,
54 p.birthdate_ref AS birthdateRef, FIND_IN_SET('watch', a.flags) AS watch, m.hash, a.type
55 FROM register_marketing AS m
56 INNER JOIN accounts AS a ON (m.uid = a.uid)
57 INNER JOIN account_profiles AS ap ON (a.uid = ap.uid AND FIND_IN_SET('owner', ap.perms))
58 INNER JOIN profiles AS p ON (p.pid = ap.pid)
59 INNER JOIN profile_display AS pd ON (p.pid = pd.pid)
60 INNER JOIN profile_education AS pe ON (pe.pid = p.pid AND FIND_IN_SET('primary', pe.flags))
61 INNER JOIN profile_education_degree_enum AS pde ON (pde.id = pe.degreeid)
62 INNER JOIN profile_public_names AS ppn ON (ppn.pid = p.pid)
63 WHERE m.hash = {?} AND a.state = 'pending'",
66 if ($res->numRows() == 1) {
67 $subState->merge($res->fetchOneRow());
68 $subState->set('main_mail_domain', User
::$sub_mail_domains[$subState->v('type')]);
70 XDB
::execute('INSERT INTO register_mstats (uid, sender, success)
71 SELECT m.uid, m.sender, 0
72 FROM register_marketing AS m
74 ON DUPLICATE KEY UPDATE sender = VALUES(sender), success = VALUES(success)',
75 $subState->s('hash'));
79 switch ($subState->i('step')) {
81 $wp = new PlWikiPage('Reference.Charte');
83 if (Post
::has('step1')) {
84 $subState->set('step', 1);
85 if ($subState->has('hash')) {
86 $subState->set('step', 3);
87 $this->load('register.inc.php');
88 createAliases($subState);
94 if (Post
::has('yearpromo')) {
95 $edu_type = Post
::t('edu_type');
96 $yearpromo = Post
::i('yearpromo');
97 $promo = Profile
::$cycle_prefixes[$edu_type] . $yearpromo;
98 $res = XDB
::query("SELECT COUNT(*)
100 INNER JOIN account_profiles AS ap ON (a.uid = ap.uid AND FIND_IN_SET('owner', ap.perms))
101 INNER JOIN profiles AS p ON (p.pid = ap.pid)
102 INNER JOIN profile_education AS pe ON (pe.pid = p.pid AND FIND_IN_SET('primary', pe.flags))
103 WHERE a.state = 'pending' AND p.deathdate IS NULL AND pe.promo_year = {?}",
106 if (!$res->fetchOneCell()) {
107 $error = 'La promotion saisie est incorrecte ou tous les camarades de cette promotion sont inscrits !';
109 $subState->set('step', 2);
110 $subState->set('promo', $promo);
111 $subState->set('yearpromo', $yearpromo);
112 $subState->set('edu_type', $edu_type);
113 if ($edu_type == Profile
::DEGREE_X
) {
114 if ($yearpromo >= 1996 && $yearpromo < 2000) {
115 $subState->set('schoolid', ($yearpromo %
100) * 10 . '???');
116 $subState->set('schoolid_exemple', ($yearpromo %
100) * 10000 +
532);
117 $subState->set('schoolid_exemple_ev2', (($yearpromo +
1) %
100) * 10000 +
532);
118 } elseif($yearpromo >= 2000) {
119 $subState->set('schoolid', 100 +
($yearpromo %
100) . '???');
120 $subState->set('schoolid_exemple', (100 +
($yearpromo %
100)) * 1000 +
532);
121 $subState->set('schoolid_exemple_ev2', (100 +
(($yearpromo +
1) %
100)) * 1000 +
532);
130 $this->load('register.inc.php');
131 $subState->set('firstname', Post
::t('firstname'));
132 $subState->set('lastname', Post
::t('lastname'));
133 if (Post
::has('schoolid')) {
134 $subState->set('schoolid', Post
::i('schoolid'));
136 $error = checkNewUser($subState);
138 if ($error !== true
) {
141 $error = createAliases($subState);
142 if ($error === true
) {
144 $subState->set('step', 3);
151 $this->load('register.inc.php');
153 // Validate the email address format and domain.
154 require_once 'emails.inc.php';
156 if (!isvalid_email(Post
::v('email'))) {
157 $error[] = "Le champ 'Email' n'est pas valide.";
158 } elseif (!isvalid_email_redirection(Post
::v('email'))) {
159 $error[] = $subState->s('forlife') . ' doit renvoyer vers un email existant '
160 . 'valide, en particulier, il ne peut pas être renvoyé vers lui-même.';
163 // Validate the birthday format and range.
164 $birth = Post
::t('birthdate');
165 if (!preg_match('@^[0-3]?\d/[01]?\d/(19|20)?\d{2}$@', $birth)) {
166 $error[] = "La 'Date de naissance' n'est pas correcte.";
168 $birth = explode('/', $birth, 3);
169 for ($i = 0; $i < 3; ++
$i)
170 $birth[$i] = intval($birth[$i]);
171 if ($birth[2] < 100) {
175 $ref_year = substr($subState->v('birthdateRef'), 0, 4);
176 if (abs($ref_year - $year) > 2) {
177 $error[] = "La 'Date de naissance' n'est pas correcte.";
178 $alert = "Date de naissance incorrecte à l'inscription - ";
179 $subState->set('wrong_birthdate', $birth);
183 // Register the optional services requested by the user.
185 foreach (array('ax_letter', 'imap', 'ml_promo', 'nl') as $service) {
186 if (Post
::b($service)) {
187 $services[] = $service;
190 $subState->set('services', $services);
192 // Validate the password.
193 if (!Post
::v('pwhash', false
)) {
194 $error[] = "Le mot de passe n'est pas valide.";
197 // Check if the given email is known as dangerous.
198 $res = XDB
::query("SELECT state, description
200 WHERE email = {?} AND state != 'safe'",
202 $bannedEmail = false
;
203 if ($res->numRows()) {
204 list($state, $description) = $res->fetchOneRow();
205 $alert .= "Email surveillé proposé à l'inscription - ";
206 $subState->set('email_desc', $description);
207 if ($state == 'dangerous') {
211 if ($subState->i('watch') != 0) {
212 $alert .= "Inscription d'un utilisateur surveillé - ";
215 if (($bannedIp = check_ip('unsafe'))) {
220 $error = join('<br />', $error);
222 $subState->set('birthdate', sprintf("%04d-%02d-%02d",
223 intval($birth[2]), intval($birth[1]), intval($birth[0])));
224 $subState->set('email', Post
::t('email'));
225 $subState->set('password', Post
::t('pwhash'));
227 // Update the current alert if the birthdate is incorrect,
228 // or if the IP address of the user has been banned.
229 if ($subState->s('birthdateRef') != '0000-00-00'
230 && $subState->s('birthdateRef') != $subState->s('birthdate')) {
231 $alert .= "Date de naissance incorrecte à l'inscription - ";
234 $alert .= "Tentative d'inscription depuis une IP surveillée";
237 // Prevent banned user from actually registering; save the current state for others.
238 if ($bannedEmail ||
$bannedIp) {
240 $error = "Une erreur s'est produite lors de l'inscription."
241 . " Merci de contacter <a href='mailto:register@{$globals->mail->domain}>"
242 . " register@{$globals->mail->domain}</a>"
243 . " pour nous faire part de cette erreur.";
245 $subState->set('step', 4);
246 if ($subState->v('backs')->count() >= 3) {
247 $alert .= "Fin d'une inscription hésitante.";
249 finishRegistration($subState);
256 $_SESSION['subState'] = $subState->dict();
257 if (!empty($alert)) {
258 send_warning_mail($alert);
261 $page->changeTpl('register/step' . $subState->i('step') . '.tpl');
263 $page->trigError($error);
267 function handler_end($page, $hash = null
)
270 $_SESSION['subState'] = array('step' => 5);
272 // Reject registration requests from unsafe IP addresses (and remove the
273 // registration information from the database, to prevent IP changes).
274 if (check_ip('unsafe')) {
275 send_warning_mail('Une IP surveillée a tenté de finaliser son inscription.');
276 XDB
::execute("DELETE FROM register_pending
277 WHERE hash = {?} AND hash != 'INSCRIT'", $hash);
281 // Retrieve the pre-registration information using the url-provided
282 // authentication token.
283 $res = XDB
::query("SELECT r.uid, p.pid, r.forlife, r.bestalias, r.mailorg2,
284 r.password, r.email, r.services, r.naissance,
285 ppn.lastname_initial, ppn.firstname_initial, pe.promo_year,
286 pd.promo, p.sex, p.birthdate_ref, a.type
287 FROM register_pending AS r
288 INNER JOIN accounts AS a ON (r.uid = a.uid)
289 INNER JOIN account_profiles AS ap ON (a.uid = ap.uid AND FIND_IN_SET('owner', ap.perms))
290 INNER JOIN profiles AS p ON (p.pid = ap.pid)
291 INNER JOIN profile_public_names AS ppn ON (ppn.pid = p.pid)
292 INNER JOIN profile_display AS pd ON (p.pid = pd.pid)
293 INNER JOIN profile_education AS pe ON (pe.pid = p.pid AND FIND_IN_SET('primary', pe.flags))
294 WHERE hash = {?} AND hash != 'INSCRIT' AND a.state = 'pending'",
296 if (!$hash ||
$res->numRows() == 0) {
297 $page->kill("<p>Cette adresse n'existe pas, ou plus, sur le serveur.</p>
298 <p>Causes probables :</p>
300 <li>Vérifie que tu visites l'adresse du dernier
301 email reçu s'il y en a eu plusieurs.</li>
302 <li>Tu as peut-être mal copié l'adresse reçue par
303 email, vérifie-la à la main.</li>
304 <li>Tu as peut-être attendu trop longtemps pour
305 confirmer. Les pré-inscriptions sont annulées
306 tous les 30 jours.</li>
307 <li>Tu es en fait déjà inscrit.</li>
311 list($uid, $pid, $forlife, $bestalias, $emailXorg2, $password, $email, $services,
312 $birthdate, $lastname, $firstname, $yearpromo, $promo, $sex, $birthdate_ref, $type) = $res->fetchOneRow();
313 $isX = ($type == 'x');
314 $mail_domain = User
::$sub_mail_domains[$type] . $globals->mail
->domain
;
316 // Prepare the template for display.
317 $page->changeTpl('register/end.tpl');
318 $page->assign('forlife', $forlife);
319 $page->assign('firstname', $firstname);
321 // Check if the user did enter a valid password; if not (or if none is found),
322 // get her an information page.
323 if (Post
::has('response')) {
324 $expected_response = sha1("$forlife:$password:" . S
::v('challenge'));
325 if (Post
::v('response') != $expected_response) {
326 $page->trigError("Mot de passe invalide.");
327 S
::logger($uid)->log('auth_fail', 'bad password (register/end)');
335 // Create the user account.
337 XDB
::startTransaction();
338 XDB
::execute("UPDATE accounts
339 SET password = {?}, state = 'active',
340 registration_date = NOW(), email = NULL
341 WHERE uid = {?}", $password, $uid);
342 XDB
::execute("UPDATE profiles
343 SET birthdate = {?}, last_change = NOW()
344 WHERE pid = {?}", $birthdate, $pid);
345 XDB
::execute('INSERT INTO email_source_account (email, uid, type, flags, domain)
346 SELECT {?}, {?}, \'forlife\', \'\', id
347 FROM email_virtual_domains
349 $forlife, $uid, $mail_domain);
350 XDB
::execute('INSERT INTO email_source_account (email, uid, type, flags, domain)
351 SELECT {?}, {?}, \'alias\', \'bestalias\', id
352 FROM email_virtual_domains
354 $bestalias, $uid, $mail_domain);
356 XDB
::execute('INSERT INTO email_source_account (email, uid, type, flags, domain)
357 SELECT {?}, {?}, \'alias\', \'\', id
358 FROM email_virtual_domains
360 $emailXorg2, $uid, $mail_domain);
364 // Add the registration email address as first and only redirection.
365 require_once 'emails.inc.php';
366 $user = User
::getSilentWithUID($uid);
367 $redirect = new Redirect($user);
368 $redirect->add_email($email);
369 fix_bestalias($user);
371 // Try to start a session (so the user don't have to log in); we will use
372 // the password available in Post:: to authenticate the user.
373 Platal
::session()->start(AUTH_MDP
);
375 // Subscribe the user to the services she did request at registration time.
376 require_once 'newsletter.inc.php';
377 foreach (explode(',', $services) as $service) {
380 NewsLetter
::forGroup(NewsLetter
::GROUP_AX
)->subscribe($user);
383 NewsLetter
::forGroup(NewsLetter
::GROUP_XORG
)->subscribe($user);
386 Email
::activate_storage($user, 'imap', Bogo
::IMAP_DEFAULT
);
390 $r = XDB
::query('SELECT id FROM groups WHERE diminutif = {?}', $yearpromo);
392 $asso_id = $r->fetchOneCell();
393 XDB
::execute('INSERT IGNORE INTO group_members (uid, asso_id)
397 $mmlist = new MMList($user);
398 $mmlist->subscribe("promo" . $yearpromo);
399 } catch (Exception
$e) {
400 PlErrorReport
::report($e);
401 $page->trigError("L'inscription à la liste promo" . $yearpromo . " a échouée.");
409 // Log the registration in the user session.
410 S
::logger($uid)->log('inscription', $email);
411 XDB
::execute("UPDATE register_pending
413 WHERE uid = {?}", $uid);
415 // Congratulate our newly registered user by email.
416 $mymail = new PlMailer('register/success.mail.tpl');
417 $mymail->addTo("\"{$user->fullName()}\" <{$user->forlifeEmail()}>");
419 $mymail->setSubject('Bienvenue parmi les X sur le web !');
421 $mymail->setSubject('Bienvenue sur Polytechnique.org !');
423 $mymail->assign('forlife', $forlife);
424 $mymail->assign('firstname', $firstname);
427 // Index the user, to allow her to appear in searches.
428 Profile
::rebuildSearchTokens($pid);
430 // Notify other users which were watching for her arrival.
431 XDB
::execute('INSERT INTO contacts (uid, contact)
434 WHERE ni_id = {?}', $uid);
435 XDB
::execute('DELETE FROM watch_nonins
436 WHERE ni_id = {?}', $uid);
437 Platal
::session()->updateNbNotifs();
439 // Forcibly register the new user on default forums.
440 $registeredForums = array('xorg.general', 'xorg.pa.divers', 'xorg.pa.logements');
443 $promoForum = 'xorg.promo.' . strtolower($promo);
444 $exists = XDB
::fetchOneCell('SELECT COUNT(*)
450 // Notify the newsgroup admin of the promotion forum needs be created.
451 $promoFull = new UserFilter(new UFC_Promo('=', UserFilter
::DISPLAY
, $promo));
452 $promoRegistered = new UserFilter(new PFC_And(
453 new UFC_Promo('=', UserFilter
::DISPLAY
, $promo),
454 new UFC_Registered(true
),
455 new PFC_Not(new UFC_Dead())
457 if ($promoRegistered->getTotalCount() > 0.2 * $promoFull->getTotalCount()) {
458 $mymail = new PlMailer('admin/forums-promo.mail.tpl');
459 $mymail->assign('promo', $promo);
463 $registeredForums[] = $promoForum;
467 foreach ($registeredForums as $forum) {
468 XDB
::execute("INSERT INTO forum_subs (fid, uid)
475 // Update the global registration count stats.
476 $globals->updateNbIns();
479 // Update collateral data sources, and inform watchers by email.
482 // Email the referrer(s) of this new user.
483 $res = XDB
::iterRow("SELECT sender, GROUP_CONCAT(email SEPARATOR ', ') AS mails, MAX(last) AS lastDate
484 FROM register_marketing
487 ORDER BY lastDate DESC", $uid);
488 XDB
::execute("UPDATE register_mstats
490 WHERE uid = {?}", $uid);
493 while (list($senderid, $maketingEmails, $lastDate) = $res->next()) {
494 $sender = User
::getWithUID($senderid);
495 $market[] = " - par {$sender->fullName()} sur $maketingEmails (le plus récemment le $lastDate)";
496 $mymail = new PlMailer('register/marketer.mail.tpl');
497 $mymail->setSubject("$firstname $lastname s'est inscrit à Polytechnique.org !");
498 $mymail->setTo($sender);
499 $mymail->assign('sender', $sender);
500 $mymail->assign('firstname', $firstname);
501 $mymail->assign('lastname', $lastname);
502 $mymail->assign('promo', $promo);
503 $mymail->assign('sex', $sex);
504 $mymail->setTxtBody(wordwrap($msg, 72));
508 // Email the plat/al administrators about the registration.
509 if ($globals->register
->notif
) {
510 $mymail = new PlMailer('register/registration.mail.tpl');
511 $mymail->setSubject("Inscription de $firstname $lastname ($promo)");
512 $mymail->assign('firstname', $firstname);
513 $mymail->assign('lastname', $lastname);
514 $mymail->assign('promo', $promo);
515 $mymail->assign('sex', $sex);
516 $mymail->assign('birthdate', $birthdate);
517 $mymail->assign('birthdate_ref', $birthdate_ref);
518 $mymail->assign('forlife', $forlife);
519 $mymail->assign('email', $email);
520 $mymail->assign('logger', S
::logger());
521 if (count($market) > 0) {
522 $mymail->assign('market', implode("\n", $market));
524 $mymail->setTxtBody($msg);
528 // Remove old pending marketing requests for the new user.
529 Marketing
::clear($uid);
531 pl_redirect('profile/edit');
535 // vim:set et sw=4 sts=4 sws=4 foldmethod=marker enc=utf-8: