userID); $user->readFromDB($db); $op = new stdClass(); $op->auditMsg = null; $op->user_feedback = null; $op->status = tl::OK; $update_title_bar = 0; $doUpdate = false; switch($args->doAction) { case 'editUser': $doUpdate = true; foreach($args->user as $key => $value) { $user->$key = $value; } $op->status = tl::OK; $op->auditMsg = "audit_user_saved"; $op->user_feedback = lang_get('result_user_changed'); $update_title_bar = 1; break; case 'changePassword': $op = changePassword($db,$args,$user); $doUpdate = false; logAuditEvent(TLS($op->auditMsg,$user->login),"SAVE",$user->dbID,"users"); break; case 'genAPIKey': $op = generateAPIKey($args,$user); break; } if($doUpdate) { $op->status = $user->writeToDB($db); if ($op->status >= tl::OK) { logAuditEvent(TLS($op->auditMsg,$user->login),"SAVE",$user->dbID,"users"); $_SESSION['currentUser'] = $user; setUserSession($db,$user->login, $args->userID, $user->globalRoleID, $user->emailAddress, $user->locale); } } $loginHistory = new stdClass(); $loginHistory->failed = $g_tlLogger->getAuditEventsFor($args->userID,"users","LOGIN_FAILED",10); $loginHistory->ok = $g_tlLogger->getAuditEventsFor($args->userID,"users","LOGIN",10); if ($op->status != tl::OK && empty($op->user_feedback)) { $op->user_feedback = getUserErrorMessage($op->status); } $user->readFromDB($db); // set a string if not generated key yet if (null == $user->userApiKey) { $user->userApiKey = TLS('none'); } $gui = new stdClass(); $gui->optLocale = config_get('locales'); $smarty = new TLSmarty(); $smarty->assign('gui',$gui); $smarty->assign('external_password_mgmt',tlUser::isPasswordMgtExternal($user->authentication)); $smarty->assign('user',$user); $smarty->assign('api_ui_show',$user); $smarty->assign('mgt_view_events',$user->hasRight($db,"mgt_view_events")); $smarty->assign('loginHistory', $loginHistory); $smarty->assign('user_feedback', $op->user_feedback); $smarty->assign('update_title_bar',$update_title_bar); $smarty->display($templateCfg->template_dir . $templateCfg->default_template); /** * */ function init_args() { $iParams = array("firstName" => array("POST",tlInputParameter::STRING_N,0,30), "lastName" => array("REQUEST",tlInputParameter::STRING_N,0,30), "emailAddress" => array("REQUEST",tlInputParameter::STRING_N,0,100), "locale" => array("POST",tlInputParameter::STRING_N,0,10), "oldpassword" => array("POST",tlInputParameter::STRING_N,0,32), "newpassword" => array("POST",tlInputParameter::STRING_N,0,32), "doAction" => array("POST",tlInputParameter::STRING_N,0,15,null,'checkDoAction'), "userinfo_token" => array(tlInputParameter::STRING_N, 0, 255)); $pParams = I_PARAMS($iParams); $args = new stdClass(); $args->user = new stdClass(); $args->user->firstName = $pParams["firstName"]; $args->user->lastName = $pParams["lastName"]; $args->user->emailAddress = $pParams["emailAddress"]; $args->user->locale = $pParams["locale"]; $args->oldpassword = $pParams["oldpassword"]; $args->newpassword = $pParams["newpassword"]; $args->doAction = $pParams["doAction"]; $args->userinfo_token = $pParams["userinfo_token"]; $args->userID = isset($_SESSION['currentUser']) ? $_SESSION['currentUser']->dbID : 0; return $args; } /* function: changePassword args: returns: object with properties: status user_feedback: string message for on screen feedback auditMsg: to be written by logAudid */ function changePassword(&$dbHandler,&$argsObj,&$userMgr) { $op = new stdClass(); $op->status = $userMgr->comparePassword($argsObj->oldpassword); $op->user_feedback = ''; $op->auditMsg = ''; if ($op->status == tl::OK) { $userMgr->setPassword($argsObj->newpassword,$userMgr->authentication); $userMgr->writePasswordToDB($dbHandler); $op->user_feedback = lang_get('result_password_changed'); $op->auditMsg = "audit_user_pwd_saved"; } return $op; } /** * * */ function generateAPIKey(&$argsObj,&$user) { $op = new stdClass(); $op->status = tl::OK; $op->user_feedback = null; if ($user) { $APIKey = new APIKey(); if ($APIKey->addKeyForUser($argsObj->userID) < tl::OK) { logAuditEvent(TLS("audit_user_apikey_set",$user->login),"CREATE",$user->login,"users"); $op->user_feedback = lang_get('result_apikey_create_ok'); } } return $op; } /** * check function for tlInputParameter doAction * */ function checkDoAction($input) { $domain = array_flip(array('editUser','changePassword','genAPIKey')); $status_ok = isset($domain[$input]) ? true : false; return $status_ok; }