Merge pull request #5758 from MrPetovan/bug/fix-empty-notifications

[friendica.git] / mod / regmod.php

diff --git a/mod/regmod.php b/mod/regmod.php
index f2c3cb807963a10eb9d1764548b85e388eecce46..11d8eee412eadd013fb2b0197b825803db8baa2c 100644 (file)
--- a/mod/regmod.php
+++ b/mod/regmod.php
@@ -1,85 +1,130 @@
 <?php
+/**
+ * @file mod/regmod.php
+ */
 
+use Friendica\App;
+use Friendica\Core\Config;
+use Friendica\Core\L10n;
+use Friendica\Core\System;
+use Friendica\Core\Worker;
+use Friendica\Database\DBA;
+use Friendica\Model\User;
+use Friendica\Module\Login;
 
+require_once 'include/enotify.php';
 
-function regmod_content(&$a) {
+function user_allow($hash)
+{
+       $a = get_app();
 
-       if(! local_user()) {
-               notice( t('Please login.') . EOL);
-               $o = login(($a->config['register_policy'] == REGISTER_CLOSED) ? 0 : 1);
-               return $o;
+       $register = q("SELECT * FROM `register` WHERE `hash` = '%s' LIMIT 1",
+               DBA::escape($hash)
+       );
+
+
+       if (!DBA::isResult($register)) {
+               return false;
        }
 
-       if($a->argc != 3)
+       $user = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
+               intval($register[0]['uid'])
+       );
+
+       if (!DBA::isResult($user)) {
                killme();
+       }
 
-       $cmd = $a->argv[1];
-       $hash = $a->argv[2];
+       $r = q("DELETE FROM `register` WHERE `hash` = '%s'",
+               DBA::escape($register[0]['hash'])
+       );
 
 
-       $register = q("SELECT * FROM `register` WHERE `hash` = '%s' LIMIT 1",
-               dbesc($hash)
+       $r = q("UPDATE `user` SET `blocked` = 0, `verified` = 1 WHERE `uid` = %d",
+               intval($register[0]['uid'])
        );
 
+       $r = q("SELECT * FROM `profile` WHERE `uid` = %d AND `is-default` = 1",
+               intval($user[0]['uid'])
+       );
+       if (DBA::isResult($r) && $r[0]['net-publish']) {
+               $url = System::baseUrl() . '/profile/' . $user[0]['nickname'];
+               if ($url && strlen(Config::get('system', 'directory'))) {
+                       Worker::add(PRIORITY_LOW, "Directory", $url);
+               }
+       }
 
-       if(! count($register))
-               killme();
+       L10n::pushLang($register[0]['language']);
 
-       if($cmd == 'deny') {
+       $res = User::sendRegisterOpenEmail(
+               $user[0]['email'],
+               Config::get('config', 'sitename'),
+               System::baseUrl(),
+               $user[0]['username'],
+               $register[0]['password'],
+               $user[0]);
 
-               $r = q("DELETE FROM `user` WHERE `uid` = %d LIMIT 1",
-                       intval($register[0]['uid'])
-               );
-               $r = q("DELETE FROM `contact` WHERE `uid` = %d",
-                       intval($register[0]['uid'])
-               ); 
-               $r = q("DELETE FROM `profile` WHERE `uid` = %d",
-                       intval($register[0]['uid'])
-               ); 
+       L10n::popLang();
 
-               $r = q("DELETE FROM `register` WHERE `hash` = '%s' LIMIT 1",
-                       dbesc($register[0]['hash'])
-               );
-               notice( t('Registration revoked.') . EOL);
-               return;
+       if ($res) {
+               info(L10n::t('Account approved.') . EOL);
+               return true;
+       }
+}
+
+// This does not have to go through user_remove() and save the nickname
+// permanently against re-registration, as the person was not yet
+// allowed to have friends on this system
+function user_deny($hash)
+{
+       $register = q("SELECT * FROM `register` WHERE `hash` = '%s' LIMIT 1",
+               DBA::escape($hash)
+       );
 
+       if (!DBA::isResult($register)) {
+               return false;
        }
 
-       if($cmd == 'allow') {
+       $user = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
+               intval($register[0]['uid'])
+       );
 
-               $user = q("SELECT * FROM `user` WHERE `uid` = %d LIMIT 1",
-                       intval($register[0]['uid'])
-               );
-               if(! count($user))
-                       killme();
+       DBA::delete('user', ['uid' => $register[0]['uid']]);
+       DBA::delete('register', ['hash' => $register[0]['hash']]);
 
-               $r = q("DELETE FROM `register` WHERE `hash` = '%s' LIMIT 1",
-                       dbesc($register[0]['hash'])
-               );
+       notice(L10n::t('Registration revoked for %s', $user[0]['username']) . EOL);
+       return true;
+}
 
+function regmod_content(App $a)
+{
+       if (!local_user()) {
+               info(L10n::t('Please login.') . EOL);
+               $o = '<br /><br />' . Login::form($a->query_string, intval(Config::get('config', 'register_policy')) === REGISTER_CLOSED ? 0 : 1);
+               return $o;
+       }
 
-               $r = q("UPDATE `user` SET `blocked` = 0, `verified` = 1 WHERE `uid` = %d LIMIT 1",
-                       intval($register[0]['uid'])
-               );
-               
-               $email_tpl = file_get_contents("view/register_open_eml.tpl");
-               $email_tpl = replace_macros($email_tpl, array(
-                               '$sitename' => $a->config['sitename'],
-                               '$siteurl' =>  $a->get_baseurl(),
-                               '$username' => $user[0]['username'],
-                               '$email' => $user[0]['email'],
-                               '$password' => $register[0]['password'],
-                               '$uid' => $user[0]['uid']
-               ));
+       if ((!is_site_admin()) || (x($_SESSION, 'submanage') && intval($_SESSION['submanage']))) {
+               notice(L10n::t('Permission denied.') . EOL);
+               return '';
+       }
 
-               $res = mail($user[0]['email'], t('Registration details for '). $a->config['sitename'],
-                       $email_tpl,'From: ' . t('Administrator@') . $_SERVER[SERVER_NAME] );
+       if ($a->argc != 3) {
+               killme();
+       }
 
+       $cmd = $a->argv[1];
+       $hash = $a->argv[2];
 
-               if($res) {
-                       notice( t('Account approved.') . EOL );
-                       return;
-               }
+       if ($cmd === 'deny') {
+               user_deny($hash);
+               goaway(System::baseUrl() . "/admin/users/");
+               killme();
+       }
 
+       if ($cmd === 'allow') {
+               user_allow($hash);
+               goaway(System::baseUrl() . "/admin/users/");
+               killme();
        }
-}
\ No newline at end of file
+}