actions/register.php

   1 <?php
   2 /*
   3  * Laconica - a distributed open-source microblogging tool
   4  * Copyright (C) 2008, Controlez-Vous, Inc.
   5  *
   6  * This program is free software: you can redistribute it and/or modify
   7  * it under the terms of the GNU Affero General Public License as published by
   8  * the Free Software Foundation, either version 3 of the License, or
   9  * (at your option) any later version.
  10  *
  11  * This program is distributed in the hope that it will be useful,
  12  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14  * GNU Affero General Public License for more details.
  15  *
  16  * You should have received a copy of the GNU Affero General Public License
  17  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18  */
  19
  20 if (!defined('LACONICA')) { exit(1); }
  21
  22 class RegisterAction extends Action {
  23
  24         function handle($args) {
  25                 parent::handle($args);
  26
  27                 if (common_logged_in()) {
  28                         common_user_error(_t('Already logged in.'));
  29                 } else if ($_SERVER['REQUEST_METHOD'] == 'POST') {
  30                         $this->try_register();
  31                 } else {
  32                         $this->show_form();
  33                 }
  34         }
  35
  36         function try_register() {
  37                 $nickname = $this->arg('nickname');
  38                 $password = $this->arg('password');
  39                 $confirm = $this->arg('confirm');
  40                 $email = $this->arg('email');
  41
  42                 # Input scrubbing
  43
  44                 $nickname = common_canonical_nickname($nickname);
  45                 $email = common_canonical_email($email);
  46
  47                 if ($this->nickname_exists($nickname)) {
  48                         $this->show_form(_t('Username already exists.'));
  49                 } else if ($this->email_exists($email)) {
  50                         $this->show_form(_t('Email address already exists.'));
  51                 } else if ($password != $confirm) {
  52                         $this->show_form(_t('Passwords don\'t match.'));
  53                 } else if ($this->register_user($nickname, $password, $email)) {
  54                         # success!
  55                         if (!common_set_user($nickname)) {
  56                                 common_server_error(_t('Error setting user.'));
  57                                 return;
  58                         }
  59                         common_redirect(common_local_url('profilesettings'));
  60                 } else {
  61                         $this->show_form(_t('Invalid username or password.'));
  62                 }
  63         }
  64
  65         # checks if *CANONICAL* nickname exists
  66
  67         function nickname_exists($nickname) {
  68                 $user = User::staticGet('nickname', $nickname);
  69                 return ($user !== false);
  70         }
  71
  72         # checks if *CANONICAL* email exists
  73
  74         function email_exists($email) {
  75                 $email = common_canonical_email($email);
  76                 $user = User::staticGet('email', $email);
  77                 return ($user !== false);
  78         }
  79
  80         function register_user($nickname, $password, $email) {
  81                 # TODO: wrap this in a transaction!
  82                 $profile = new Profile();
  83                 $profile->nickname = $nickname;
  84                 $profile->profileurl = common_profile_url($nickname);
  85                 $profile->created = DB_DataObject_Cast::dateTime(); # current time
  86
  87                 $val = $profile->validate();
  88                 if ($val !== TRUE) {
  89                         # XXX: some feedback here, please!
  90                         return FALSE;
  91                 }
  92                 $id = $profile->insert();
  93                 if (!$id) {
  94                         return FALSE;
  95                 }
  96                 $user = new User();
  97                 $user->id = $id;
  98                 $user->nickname = $nickname;
  99                 $user->password = common_munge_password($password, $id);
 100                 $user->email = $email;
 101                 $user->created =  DB_DataObject_Cast::dateTime(); # current time
 102
 103                 $val = $user->validate();
 104                 if ($val !== TRUE) {
 105                         # XXX: some feedback here, please!
 106                         # Try to clean up...
 107                         $profile->delete();
 108                         return FALSE;
 109                 }
 110
 111                 $result = $user->insert();
 112                 if (!$result) {
 113                         # Try to clean up...
 114                         $profile->delete();
 115                 }
 116                 return $result;
 117         }
 118
 119         function show_form($error=NULL) {
 120
 121                 common_show_header(_t('Register'));
 122                 common_element_start('form', array('method' => 'POST',
 123                                                                                    'id' => 'login',
 124                                                                                    'action' => common_local_url('register')));
 125                 common_input('nickname', _t('Nickname'));
 126                 common_password('password', _t('Password'));
 127                 common_password('confirm', _t('Confirm'));
 128                 common_input('email', _t('Email'));
 129                 common_submit('submit', _t('Register'));
 130                 common_element_end('form');
 131                 common_show_footer();
 132         }
 133 }