actions/register.php

   1 <?php
   2 /*
   3  * Laconica - a distributed open-source microblogging tool
   4  * Copyright (C) 2008, Controlez-Vous, Inc.
   5  *
   6  * This program is free software: you can redistribute it and/or modify
   7  * it under the terms of the GNU Affero General Public License as published by
   8  * the Free Software Foundation, either version 3 of the License, or
   9  * (at your option) any later version.
  10  *
  11  * This program is distributed in the hope that it will be useful,
  12  * but WITHOUT ANY WARRANTY; without even the implied warranty of
  13  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  14  * GNU Affero General Public License for more details.
  15  *
  16  * You should have received a copy of the GNU Affero General Public License
  17  * along with this program.  If not, see <http://www.gnu.org/licenses/>.
  18  */
  19
  20 if (!defined('LACONICA')) { exit(1); }
  21
  22 class RegisterAction extends Action {
  23
  24         function handle($args) {
  25                 parent::handle($args);
  26
  27                 if (common_logged_in()) {
  28                         common_user_error(_t('Already logged in.'));
  29                 } else if ($_SERVER['REQUEST_METHOD'] == 'POST') {
  30                         $this->try_register();
  31                 } else {
  32                         $this->show_form();
  33                 }
  34         }
  35
  36         function try_register() {
  37                 $nickname = $this->trimmed('nickname');
  38                 $email = $this->trimmed('email');
  39
  40                 # We don't trim these... whitespace is OK in a password!
  41
  42                 $password = $this->arg('password');
  43                 $confirm = $this->arg('confirm');
  44
  45                 # Input scrubbing
  46
  47                 $nickname = common_canonical_nickname($nickname);
  48                 $email = common_canonical_email($email);
  49
  50                 if (!Validate::email($email, true)) {
  51                         $this->show_form(_t('Not a valid email address.'));
  52                 } else if (!Validate::string($nickname, array('min_length' => 1,
  53                                                                                                           'max_length' => 64,
  54                                                                                                           'format' => VALIDATE_NUM . VALIDATE_ALPHA_LOWER))) {
  55                         $this->show_form(_t('Nickname must have only letters and numbers and no spaces.'));
  56                 } else if ($this->nickname_exists($nickname)) {
  57                         $this->show_form(_t('Nickname already exists.'));
  58                 } else if ($this->email_exists($email)) {
  59                         $this->show_form(_t('Email address already exists.'));
  60                 } else if ($password != $confirm) {
  61                         $this->show_form(_t('Passwords don\'t match.'));
  62                 } else if ($this->register_user($nickname, $password, $email)) {
  63                         # success!
  64                         if (!common_set_user($nickname)) {
  65                                 common_server_error(_t('Error setting user.'));
  66                                 return;
  67                         }
  68                         common_redirect(common_local_url('profilesettings'));
  69                 } else {
  70                         $this->show_form(_t('Invalid username or password.'));
  71                 }
  72         }
  73
  74         # checks if *CANONICAL* nickname exists
  75
  76         function nickname_exists($nickname) {
  77                 $user = User::staticGet('nickname', $nickname);
  78                 return ($user !== false);
  79         }
  80
  81         # checks if *CANONICAL* email exists
  82
  83         function email_exists($email) {
  84                 $email = common_canonical_email($email);
  85                 $user = User::staticGet('email', $email);
  86                 return ($user !== false);
  87         }
  88
  89         function register_user($nickname, $password, $email) {
  90                 # TODO: wrap this in a transaction!
  91                 $profile = new Profile();
  92                 $profile->nickname = $nickname;
  93                 $profile->profileurl = common_profile_url($nickname);
  94                 $profile->created = DB_DataObject_Cast::dateTime(); # current time
  95
  96                 $id = $profile->insert();
  97                 if (!$id) {
  98                         return FALSE;
  99                 }
 100                 $user = new User();
 101                 $user->id = $id;
 102                 $user->nickname = $nickname;
 103                 $user->password = common_munge_password($password, $id);
 104                 $user->email = $email;
 105                 $user->created =  DB_DataObject_Cast::dateTime(); # current time
 106
 107                 $result = $user->insert();
 108                 if (!$result) {
 109                         # Try to clean up...
 110                         $profile->delete();
 111                 }
 112                 return $result;
 113         }
 114
 115         function show_form($error=NULL) {
 116
 117                 common_show_header(_t('Register'));
 118                 common_element_start('form', array('method' => 'POST',
 119                                                                                    'id' => 'login',
 120                                                                                    'action' => common_local_url('register')));
 121                 common_input('nickname', _t('Nickname'));
 122                 common_password('password', _t('Password'));
 123                 common_password('confirm', _t('Confirm'));
 124                 common_input('email', _t('Email'));
 125                 common_submit('submit', _t('Register'));
 126                 common_element_end('form');
 127                 common_show_footer();
 128         }
 129 }