mirror of
https://github.com/Lastorder-DC/rhymix.git
synced 2026-01-04 17:21:39 +09:00
84e5542d77
- 트리거 등 반환값이 필요하지 않은 곳에서 new BaseObject()를 반환하는 것 삭제 - 모듈 설치, 업데이트 후 무의미한 new BaseObject()를 반환하는 것 삭제 - 사용자에게 에러 메시지를 돌려주는 용도로 new BaseObject(-1, '에러메시지')를 사용하는 경우는 대부분 $this->setError()로 변경함. 언어 변환과 sprintf() 처리까지 한 번에 이루어지므로 이쪽이 더 편리함.
506 lines
18 KiB
PHP
506 lines
18 KiB
PHP
<?php
|
|
/* Copyright (C) NAVER <http://www.navercorp.com> */
|
|
/**
|
|
* @class member
|
|
* @author NAVER (developers@xpressengine.com)
|
|
* high class of the member module
|
|
*/
|
|
class member extends ModuleObject {
|
|
/**
|
|
* Use sha1 encryption
|
|
*
|
|
* @var boolean
|
|
*/
|
|
var $useSha1 = false;
|
|
|
|
/**
|
|
* constructor
|
|
*
|
|
* @return void
|
|
*/
|
|
function __construct()
|
|
{
|
|
if(!Context::isInstalled()) return;
|
|
|
|
$oModuleModel = getModel('module');
|
|
$member_config = $oModuleModel->getModuleConfig('member');
|
|
|
|
// Set to use SSL upon actions related member join/information/password and so on. 2013.02.15
|
|
if(!Context::isExistsSSLAction('dispMemberModifyPassword') && Context::getSslStatus() == 'optional')
|
|
{
|
|
$ssl_actions = array('dispMemberModifyPassword', 'dispMemberSignUpForm', 'dispMemberModifyInfo', 'dispMemberModifyEmailAddress', 'dispMemberResendAuthMail', 'dispMemberLoginForm', 'dispMemberFindAccount', 'dispMemberLeave', 'procMemberLogin', 'procMemberModifyPassword', 'procMemberInsert', 'procMemberModifyInfo', 'procMemberFindAccount', 'procMemberModifyEmailAddress', 'procMemberResendAuthMail', 'procMemberLeave'/*, 'getMemberMenu'*/, 'procMemberFindAccountByQuestion');
|
|
Context::addSSLActions($ssl_actions);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Implement if additional tasks are necessary when installing
|
|
*
|
|
* @return Object
|
|
*/
|
|
function moduleInstall()
|
|
{
|
|
// Register action forward (to use in administrator mode)
|
|
$oModuleController = getController('module');
|
|
|
|
$oDB = &DB::getInstance();
|
|
$oDB->addIndex("member_group","idx_site_title", array("site_srl","title"),true);
|
|
|
|
$oModuleModel = getModel('module');
|
|
$config = $oModuleModel->getModuleConfig('member');
|
|
|
|
if(empty($config))
|
|
{
|
|
$isNotInstall = true;
|
|
$config = new stdClass;
|
|
}
|
|
|
|
// Set the basic information
|
|
$config->enable_join = 'Y';
|
|
$config->enable_openid = 'N';
|
|
if(!$config->enable_auth_mail) $config->enable_auth_mail = 'N';
|
|
if(!$config->image_name) $config->image_name = 'Y';
|
|
if(!$config->image_mark) $config->image_mark = 'Y';
|
|
if(!$config->profile_image) $config->profile_image = 'Y';
|
|
if(!$config->image_name_max_width) $config->image_name_max_width = '90';
|
|
if(!$config->image_name_max_height) $config->image_name_max_height = '20';
|
|
if(!$config->image_mark_max_width) $config->image_mark_max_width = '20';
|
|
if(!$config->image_mark_max_height) $config->image_mark_max_height = '20';
|
|
if(!$config->profile_image_max_width) $config->profile_image_max_width = '90';
|
|
if(!$config->profile_image_max_height) $config->profile_image_max_height = '90';
|
|
if($config->group_image_mark!='Y') $config->group_image_mark = 'N';
|
|
if(!$config->password_strength) $config->password_strength = 'normal';
|
|
|
|
if(!$config->password_hashing_algorithm)
|
|
{
|
|
$config->password_hashing_algorithm = Rhymix\Framework\Password::getBestSupportedAlgorithm();
|
|
}
|
|
if(!$config->password_hashing_work_factor)
|
|
{
|
|
$config->password_hashing_work_factor = 10;
|
|
}
|
|
if(!$config->password_hashing_auto_upgrade)
|
|
{
|
|
$config->password_hashing_auto_upgrade = 'Y';
|
|
}
|
|
|
|
global $lang;
|
|
$oMemberModel = getModel('member');
|
|
// Create a member controller object
|
|
$oMemberController = getController('member');
|
|
$oMemberAdminController = getAdminController('member');
|
|
|
|
if(!$config->signupForm || !is_array($config->signupForm))
|
|
{
|
|
$identifier = 'user_id';
|
|
$config->signupForm = $oMemberAdminController->createSignupForm($identifier);
|
|
$config->identifier = $identifier;
|
|
|
|
// Create Ruleset File
|
|
FileHandler::makeDir('./files/ruleset');
|
|
$oMemberAdminController->_createSignupRuleset($config->signupForm);
|
|
$oMemberAdminController->_createLoginRuleset($config->identifier);
|
|
}
|
|
$oModuleController->insertModuleConfig('member',$config);
|
|
|
|
$groups = $oMemberModel->getGroups();
|
|
if(!count($groups))
|
|
{
|
|
// Set an administrator, regular member(group1), and associate member(group2)
|
|
$group_args = new stdClass;
|
|
$group_args->title = lang('admin_group');
|
|
$group_args->is_default = 'N';
|
|
$group_args->is_admin = 'Y';
|
|
$output = $oMemberAdminController->insertGroup($group_args);
|
|
|
|
$group_args = new stdClass;
|
|
$group_args->title = lang('default_group_1');
|
|
$group_args->is_default = 'Y';
|
|
$group_args->is_admin = 'N';
|
|
$output = $oMemberAdminController->insertGroup($group_args);
|
|
|
|
$group_args = new stdClass;
|
|
$group_args->title = lang('default_group_2');
|
|
$group_args->is_default = 'N';
|
|
$group_args->is_admin = 'N';
|
|
$oMemberAdminController->insertGroup($group_args);
|
|
}
|
|
|
|
// Configure administrator information
|
|
$admin_args = new stdClass;
|
|
$admin_args->is_admin = 'Y';
|
|
$output = executeQuery('member.getMemberList', $admin_args);
|
|
if(!$output->data)
|
|
{
|
|
$admin_info = Context::gets('password','nick_name','email_address', 'user_id');
|
|
if($admin_info->email_address)
|
|
{
|
|
$admin_info->user_name = 'admin';
|
|
// Insert admin information
|
|
$oMemberAdminController->insertAdmin($admin_info);
|
|
// Log-in Processing
|
|
$output = $oMemberController->doLogin($admin_info->email_address);
|
|
}
|
|
}
|
|
// Register denied ID(default + module name)
|
|
$oModuleModel = getModel('module');
|
|
$module_list = $oModuleModel->getModuleList();
|
|
foreach($module_list as $key => $val)
|
|
{
|
|
$oMemberAdminController->insertDeniedID($val->module,'');
|
|
}
|
|
$oMemberAdminController->insertDeniedID('www','');
|
|
$oMemberAdminController->insertDeniedID('root','');
|
|
$oMemberAdminController->insertDeniedID('administrator','');
|
|
$oMemberAdminController->insertDeniedID('telnet','');
|
|
$oMemberAdminController->insertDeniedID('ftp','');
|
|
$oMemberAdminController->insertDeniedID('http','');
|
|
// Create cache directory to use in the member module
|
|
FileHandler::makeDir('./files/member_extra_info/image_name');
|
|
FileHandler::makeDir('./files/member_extra_info/image_mark');
|
|
FileHandler::makeDir('./files/member_extra_info/profile_image');
|
|
FileHandler::makeDir('./files/member_extra_info/signature');
|
|
|
|
// 2013. 11. 22 add menu when popup document menu called
|
|
$oModuleController->insertTrigger('document.getDocumentMenu', 'member', 'controller', 'triggerGetDocumentMenu', 'after');
|
|
$oModuleController->insertTrigger('comment.getCommentMenu', 'member', 'controller', 'triggerGetCommentMenu', 'after');
|
|
}
|
|
|
|
/**
|
|
* a method to check if successfully installed
|
|
*
|
|
* @return boolean
|
|
*/
|
|
function checkUpdate()
|
|
{
|
|
$oDB = &DB::getInstance();
|
|
$oModuleModel = getModel('module');
|
|
|
|
// check member directory (11/08/2007 added)
|
|
if(!is_dir("./files/member_extra_info")) return true;
|
|
// check member directory (22/10/2007 added)
|
|
if(!is_dir("./files/member_extra_info/profile_image")) return true;
|
|
// Add a column(is_register) to "member_auth_mail" table (22/04/2008)
|
|
$act = $oDB->isColumnExists("member_auth_mail", "is_register");
|
|
if(!$act) return true;
|
|
// Add a column(site_srl) to "member_group_member" table (11/15/2008)
|
|
if(!$oDB->isColumnExists("member_group_member", "site_srl")) return true;
|
|
if(!$oDB->isColumnExists("member_group", "site_srl")) return true;
|
|
if($oDB->isIndexExists("member_group","uni_member_group_title")) return true;
|
|
|
|
// Add a column for list_order (05/18/2011)
|
|
if(!$oDB->isColumnExists("member_group", "list_order")) return true;
|
|
|
|
// image_mark 추가 (2009. 02. 14)
|
|
if(!$oDB->isColumnExists("member_group", "image_mark")) return true;
|
|
// Add c column for password expiration date
|
|
if(!$oDB->isColumnExists("member", "change_password_date")) return true;
|
|
|
|
// Add columns of question and answer to verify a password
|
|
if(!$oDB->isColumnExists("member", "find_account_question")) return true;
|
|
if(!$oDB->isColumnExists("member", "find_account_answer")) return true;
|
|
|
|
if(!$oDB->isColumnExists("member", "list_order")) return true;
|
|
if(!$oDB->isIndexExists("member","idx_list_order")) return true;
|
|
|
|
// Check autologin table
|
|
if(!$oDB->isColumnExists("member_autologin", "security_key")) return true;
|
|
|
|
// Check scrap folder table
|
|
if(!$oDB->isColumnExists("member_scrap", "folder_srl")) return true;
|
|
|
|
$oModuleModel = getModel('module');
|
|
$config = $oModuleModel->getModuleConfig('member');
|
|
// check signup form ordering info
|
|
if(!$config->signupForm || !is_array($config->signupForm)) return true;
|
|
foreach($config->signupForm as $signupItem)
|
|
{
|
|
if($signupItem->name === 'find_account_question')
|
|
{
|
|
return true;
|
|
}
|
|
if($signupItem->name === 'email_address' && $signupItem->isPublic !== 'N')
|
|
{
|
|
return true;
|
|
}
|
|
}
|
|
if(!$config->agreements)
|
|
{
|
|
return true;
|
|
}
|
|
|
|
if($config->skin)
|
|
{
|
|
$config_parse = explode('.', $config->skin);
|
|
if(count($config_parse) > 1)
|
|
{
|
|
$template_path = sprintf('./themes/%s/modules/member/', $config_parse[0]);
|
|
if(is_dir($template_path)) return true;
|
|
}
|
|
}
|
|
|
|
// supprot multilanguage agreement.
|
|
if(is_readable('./files/member_extra_info/agreement.txt')) return true;
|
|
|
|
if(!is_readable('./files/ruleset/insertMember.xml')) return true;
|
|
if(!is_readable('./files/ruleset/login.xml')) return true;
|
|
|
|
// 2013. 11. 22 add menu when popup document menu called
|
|
if(!$oModuleModel->getTrigger('document.getDocumentMenu', 'member', 'controller', 'triggerGetDocumentMenu', 'after')) return true;
|
|
if(!$oModuleModel->getTrigger('comment.getCommentMenu', 'member', 'controller', 'triggerGetCommentMenu', 'after')) return true;
|
|
|
|
return false;
|
|
}
|
|
|
|
/**
|
|
* Execute update
|
|
*
|
|
* @return Object
|
|
*/
|
|
function moduleUpdate()
|
|
{
|
|
$oDB = &DB::getInstance();
|
|
$oModuleController = getController('module');
|
|
// Check member directory
|
|
FileHandler::makeDir('./files/member_extra_info/image_name');
|
|
FileHandler::makeDir('./files/member_extra_info/image_mark');
|
|
FileHandler::makeDir('./files/member_extra_info/signature');
|
|
FileHandler::makeDir('./files/member_extra_info/profile_image');
|
|
// Add a column
|
|
if(!$oDB->isColumnExists("member_auth_mail", "is_register"))
|
|
{
|
|
$oDB->addColumn("member_auth_mail", "is_register", "char", 1, "N", true);
|
|
}
|
|
// Add a column(site_srl) to "member_group_member" table (11/15/2008)
|
|
if(!$oDB->isColumnExists("member_group_member", "site_srl"))
|
|
{
|
|
$oDB->addColumn("member_group_member", "site_srl", "number", 11, 0, true);
|
|
$oDB->addIndex("member_group_member", "idx_site_srl", "site_srl", false);
|
|
}
|
|
if(!$oDB->isColumnExists("member_group", "site_srl"))
|
|
{
|
|
$oDB->addColumn("member_group", "site_srl", "number", 11, 0, true);
|
|
$oDB->addIndex("member_group","idx_site_title", array("site_srl","title"),true);
|
|
}
|
|
if($oDB->isIndexExists("member_group","uni_member_group_title"))
|
|
{
|
|
$oDB->dropIndex("member_group","uni_member_group_title",true);
|
|
}
|
|
|
|
// Add a column(list_order) to "member_group" table (05/18/2011)
|
|
if(!$oDB->isColumnExists("member_group", "list_order"))
|
|
{
|
|
$oDB->addColumn("member_group", "list_order", "number", 11, '', true);
|
|
$oDB->addIndex("member_group","idx_list_order", "list_order",false);
|
|
$output = executeQuery('member.updateAllMemberGroupListOrder');
|
|
}
|
|
// Add a column for image_mark (02/14/2009)
|
|
if(!$oDB->isColumnExists("member_group", "image_mark"))
|
|
{
|
|
$oDB->addColumn("member_group", "image_mark", "text");
|
|
}
|
|
// Add a column for password expiration date
|
|
if(!$oDB->isColumnExists("member", "change_password_date"))
|
|
{
|
|
$oDB->addColumn("member", "change_password_date", "date");
|
|
executeQuery('member.updateAllChangePasswordDate');
|
|
}
|
|
|
|
// Add columns of question and answer to verify a password
|
|
if(!$oDB->isColumnExists("member", "find_account_question"))
|
|
{
|
|
$oDB->addColumn("member", "find_account_question", "number", 11);
|
|
}
|
|
if(!$oDB->isColumnExists("member", "find_account_answer"))
|
|
{
|
|
$oDB->addColumn("member", "find_account_answer", "varchar", 250);
|
|
}
|
|
|
|
if(!$oDB->isColumnExists("member", "list_order"))
|
|
{
|
|
$oDB->addColumn("member", "list_order", "number", 11);
|
|
@set_time_limit(0);
|
|
$args = new stdClass();
|
|
$args->list_order = 'member_srl';
|
|
executeQuery('member.updateMemberListOrderAll',$args);
|
|
executeQuery('member.updateMemberListOrderAll');
|
|
}
|
|
if(!$oDB->isIndexExists("member","idx_list_order"))
|
|
{
|
|
$oDB->addIndex("member","idx_list_order", array("list_order"));
|
|
}
|
|
|
|
// Check autologin table
|
|
if(!$oDB->isColumnExists("member_autologin", "security_key"))
|
|
{
|
|
$oDB->dropTable('member_autologin');
|
|
$oDB->createTableByXmlFile($this->module_path . '/schemas/member_autologin.xml');
|
|
}
|
|
|
|
// Check scrap folder table
|
|
if(!$oDB->isColumnExists("member_scrap", "folder_srl"))
|
|
{
|
|
$oDB->addColumn("member_scrap", "folder_srl", "number", 11);
|
|
$oDB->addIndex("member_scrap","idx_folder_srl", array("folder_srl"));
|
|
}
|
|
|
|
$oModuleModel = getModel('module');
|
|
$config = $oModuleModel->getModuleConfig('member');
|
|
$oModuleController = getController('module');
|
|
|
|
$oMemberAdminController = getAdminController('member');
|
|
// check signup form ordering info
|
|
if(!$config->signupForm || !is_array($config->signupForm))
|
|
{
|
|
$config->identifier = 'user_id';
|
|
$config->signupForm = $oMemberAdminController->createSignupForm($config->identifier);
|
|
$output = $oModuleController->updateModuleConfig('member', $config);
|
|
}
|
|
foreach($config->signupForm as $signupItem)
|
|
{
|
|
if($signupItem->name === 'find_account_question')
|
|
{
|
|
$config->identifier = $config->identifier ?: 'user_id';
|
|
$config->signupForm = $oMemberAdminController->createSignupForm($config->identifier);
|
|
$output = $oModuleController->updateModuleConfig('member', $config);
|
|
}
|
|
if($signupItem->name === 'email_address' && $signupItem->isPublic !== 'N')
|
|
{
|
|
$signupItem->isPublic = 'N';
|
|
$output = $oModuleController->updateModuleConfig('member', $config);
|
|
}
|
|
}
|
|
if(!$config->agreements)
|
|
{
|
|
$config = memberModel::getMemberConfig();
|
|
$config->identifier = $config->identifier ?: 'user_id';
|
|
$config->signupForm = $oMemberAdminController->createSignupForm($config->identifier);
|
|
$output = $oModuleController->updateModuleConfig('member', $config);
|
|
}
|
|
|
|
if($config->skin)
|
|
{
|
|
$config_parse = explode('.', $config->skin);
|
|
if (count($config_parse) > 1)
|
|
{
|
|
$template_path = sprintf('./themes/%s/modules/member/', $config_parse[0]);
|
|
if(is_dir($template_path))
|
|
{
|
|
$config->skin = implode('|@|', $config_parse);
|
|
$oModuleController = getController('module');
|
|
$oModuleController->updateModuleConfig('member', $config);
|
|
}
|
|
}
|
|
}
|
|
|
|
if(is_readable('./files/member_extra_info/agreement.txt'))
|
|
{
|
|
$source_file = _XE_PATH_.'files/member_extra_info/agreement.txt';
|
|
$target_file = _XE_PATH_.'files/member_extra_info/agreement_' . Context::get('lang_type') . '.txt';
|
|
|
|
FileHandler::rename($source_file, $target_file);
|
|
}
|
|
|
|
FileHandler::makeDir('./files/ruleset');
|
|
if(!is_readable('./files/ruleset/insertMember.xml'))
|
|
$oMemberAdminController->_createSignupRuleset($config->signupForm);
|
|
if(!is_readable('./files/ruleset/login.xml'))
|
|
$oMemberAdminController->_createLoginRuleset($config->identifier);
|
|
|
|
// 2013. 11. 22 add menu when popup document menu called
|
|
if(!$oModuleModel->getTrigger('document.getDocumentMenu', 'member', 'controller', 'triggerGetDocumentMenu', 'after'))
|
|
$oModuleController->insertTrigger('document.getDocumentMenu', 'member', 'controller', 'triggerGetDocumentMenu', 'after');
|
|
if(!$oModuleModel->getTrigger('comment.getCommentMenu', 'member', 'controller', 'triggerGetCommentMenu', 'after'))
|
|
$oModuleController->insertTrigger('comment.getCommentMenu', 'member', 'controller', 'triggerGetCommentMenu', 'after');
|
|
}
|
|
|
|
/**
|
|
* Re-generate the cache file
|
|
*
|
|
* @return void
|
|
*/
|
|
function recompileCache()
|
|
{
|
|
}
|
|
|
|
/**
|
|
* @brief Record login error and return the error, about IPaddress.
|
|
*/
|
|
function recordLoginError($error = 0, $message = 'success')
|
|
{
|
|
if($error == 0) return new BaseObject($error, $message);
|
|
|
|
// Create a member model object
|
|
$oMemberModel = getModel('member');
|
|
$config = $oMemberModel->getMemberConfig();
|
|
|
|
// Check if there is recoding table.
|
|
$oDB = &DB::getInstance();
|
|
if(!$oDB->isTableExists('member_login_count') || $config->enable_login_fail_report == 'N') return new BaseObject($error, $message);
|
|
|
|
$args = new stdClass();
|
|
$args->ipaddress = $_SERVER['REMOTE_ADDR'];
|
|
|
|
$output = executeQuery('member.getLoginCountByIp', $args);
|
|
if($output->data && $output->data->count)
|
|
{
|
|
$last_update = strtotime($output->data->last_update);
|
|
$term = intval($_SERVER['REQUEST_TIME']-$last_update);
|
|
//update, if IP address access in a short time, update count. If not, make count 1.
|
|
if($term < $config->max_error_count_time)
|
|
{
|
|
$args->count = $output->data->count + 1;
|
|
}
|
|
else
|
|
{
|
|
$args->count = 1;
|
|
}
|
|
unset($oMemberModel);
|
|
unset($config);
|
|
$output = executeQuery('member.updateLoginCountByIp', $args);
|
|
}
|
|
else
|
|
{
|
|
//insert
|
|
$args->count = 1;
|
|
$output = executeQuery('member.insertLoginCountByIp', $args);
|
|
}
|
|
return new BaseObject($error, $message);
|
|
}
|
|
|
|
/**
|
|
* @brief Record login error and return the error, about MemberSrl.
|
|
*/
|
|
function recordMemberLoginError($error = 0, $message = 'success', $args = NULL)
|
|
{
|
|
if($error == 0 || !$args->member_srl) return new BaseObject($error, $message);
|
|
|
|
// Create a member model object
|
|
$oMemberModel = getModel('member');
|
|
$config = $oMemberModel->getMemberConfig();
|
|
|
|
// Check if there is recoding table.
|
|
$oDB = &DB::getInstance();
|
|
if(!$oDB->isTableExists('member_count_history') || $config->enable_login_fail_report == 'N') return new BaseObject($error, $message);
|
|
|
|
$output = executeQuery('member.getLoginCountHistoryByMemberSrl', $args);
|
|
if($output->data && $output->data->content)
|
|
{
|
|
//update
|
|
$content = unserialize($output->data->content);
|
|
$content[] = array($_SERVER['REMOTE_ADDR'],lang($message),$_SERVER['REQUEST_TIME']);
|
|
$args->content = serialize($content);
|
|
$output = executeQuery('member.updateLoginCountHistoryByMemberSrl', $args);
|
|
}
|
|
else
|
|
{
|
|
//insert
|
|
$content[0] = array($_SERVER['REMOTE_ADDR'],lang($message),$_SERVER['REQUEST_TIME']);
|
|
$args->content = serialize($content);
|
|
$output = executeQuery('member.insertLoginCountHistoryByMemberSrl', $args);
|
|
}
|
|
return $this->recordLoginError($error, $message);
|
|
}
|
|
}
|
|
/* End of file member.class.php */
|
|
/* Location: ./modules/member/member.class.php */
|