X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=actions%2Fprofilesettings.php;h=44243f310d95adcd8318b910c81f0d5b28643332;hb=f374e924f51d50a601bef4beeb138665374485b0;hp=dff91d5601c35ad0e5a42cc6142d7ebdc9811d6c;hpb=1a591681b0a5529940925718a6c79001a9aef063;p=quix0rs-gnu-social.git

diff --git a/actions/profilesettings.php b/actions/profilesettings.php
index dff91d5601..44243f310d 100644
--- a/actions/profilesettings.php
+++ b/actions/profilesettings.php
@@ -23,18 +23,25 @@ require_once(INSTALLDIR.'/lib/settingsaction.php');
 
 class ProfilesettingsAction extends SettingsAction {
 
-	function show_form($msg=NULL, $success=false) {
-		$user = common_current_user();
-		$profile = $user->getProfile();
-		common_show_header(_t('Profile settings'), NULL, NULL, array($this, 'settings_menu'));
-
+	function show_top($arr) {
+		$msg = $arr[0];
+		$success = $arr[1];
 		if ($msg) {
 			$this->message($msg, $success);
 		} else {
 			common_element('div', 'instructions',
 						   _t('You can update your personal profile info here '.
-							  'so people know more about you. '));
+							  'so people know more about you.'));
 		}
+		$this->settings_menu();
+	}
+	
+	function show_form($msg=NULL, $success=false) {
+		$user = common_current_user();
+		$profile = $user->getProfile();
+		common_show_header(_t('Profile settings'), NULL, array($msg, $success),
+						   array($this, 'show_top'));
+
 		common_element_start('form', array('method' => 'POST',
 										   'id' => 'profilesettings',
 										   'action' =>
@@ -73,7 +80,7 @@ class ProfilesettingsAction extends SettingsAction {
 
 		# Some validation
 		
-		if (!Validate::email($email, true)) {
+		if ($email && !Validate::email($email, true)) {
 			$this->show_form(_t('Not a valid email address.'));
 			return;
 		} else if (!Validate::string($nickname, array('min_length' => 1,
@@ -81,6 +88,9 @@ class ProfilesettingsAction extends SettingsAction {
 													  'format' => VALIDATE_NUM . VALIDATE_ALPHA_LOWER))) {
 			$this->show_form(_t('Nickname must have only letters and numbers and no spaces.'));
 			return;
+		} else if (!User::allowed_nickname($nickname)) {
+			$this->show_form(_t('Not a valid nickname.'));
+			return;
 		} else if (!is_null($homepage) && (strlen($homepage) > 0) &&
 				   !Validate::uri($homepage, array('allowed_schemes' => array('http', 'https')))) {
 			$this->show_form(_t('Homepage is not a valid URL.'));
@@ -103,22 +113,56 @@ class ProfilesettingsAction extends SettingsAction {
 		}
 		
 		$user = common_current_user();
-		assert(!is_null($user)); # should already be checked
 
-		# FIXME: transaction!
+		$user->query('BEGIN');
 
-		$original = clone($user);
-
-		$user->nickname = $nickname;
-		$user->email = $email;
+		if ($user->nickname != $nickname) {
+			
+			common_debug('Updating user nickname from ' . $user->nickname . ' to ' . $nickname,
+						 __FILE__);
+			
+			$original = clone($user);
+		
+			$user->nickname = $nickname;
 
-		common_debug('Updating, nickname ="'.$user->nickname.'" and email ="'.$user->email.'"');
+			$result = $user->updateKeys($original);
 		
-		if (FALSE === $user->update($original)) {
-			common_server_error(_t('Couldnt update user.'));
-			return;
+			if ($result === FALSE) {
+				common_log_db_error($user, 'UPDATE', __FILE__);
+				common_server_error(_t('Couldnt update user.'));
+				return;
+			}
 		}
 
+		if ($user->email != $email) {
+			
+			common_debug('Updating user email from ' . $user->email . ' to ' . $email,
+						 __FILE__);
+			
+			# We don't update email directly; it gets done by confirmemail
+
+			$confirm = new Confirm_address();
+			
+			$confirm->code = common_confirmation_code(128);
+			$confirm->user_id = $user->id;
+			$confirm->address = $email;
+			$confirm->address_type = 'email';
+			
+			$result = $confirm->insert();
+			
+			if (!$result) {
+				common_log_db_error($confirm, 'INSERT', __FILE__);
+				common_server_error(_t('Couldnt confirm email.'));
+				return FALSE;
+			}
+			
+			# XXX: try not to do this in the middle of a transaction
+		
+			mail_confirm_address($confirm->code,
+								 $profile->nickname,
+								 $email);
+		}
+		
 		$profile = $user->getProfile();
 
 		$orig_profile = clone($profile);
@@ -130,13 +174,21 @@ class ProfilesettingsAction extends SettingsAction {
 		$profile->location = $location;
 		$profile->profileurl = common_profile_url($nickname);
 
-		if (FALSE === $profile->update($orig_profile)) {
+		common_debug('Old profile: ' . common_log_objstring($orig_profile), __FILE__);
+		common_debug('New profile: ' . common_log_objstring($profile), __FILE__);
+		
+		$result = $profile->update($orig_profile);
+		
+		if (!$result) {
+			common_log_db_error($profile, 'UPDATE', __FILE__);
 			common_server_error(_t('Couldnt save profile.'));
 			return;
 		}
 
+		$user->query('COMMIT');
+
 		common_broadcast_profile($profile);
-		
+
 		$this->show_form(_t('Settings saved.'), TRUE);
 	}
 	
@@ -159,4 +211,4 @@ class ProfilesettingsAction extends SettingsAction {
 			return $other->id != $user->id;
 		}
 	}
-}
\ No newline at end of file
+}