Add ChangePassword event

diff --git a/EVENTS.txt b/EVENTS.txt
index c52f0e3128b1bb2f3f8dd744151d510503b14aba..201ce7dfe5642cf7ee77b17c360e2ceeccb5b29e 100644 (file)
--- a/EVENTS.txt
+++ b/EVENTS.txt
@@ -483,3 +483,9 @@ CheckPassword: Check a username/password
 AutoRegister: Register a new user with the given nickname. Should insert a new User and Profile into the database.
 - $nickname: The nickname to register
 
+ChangePassword: Handle a password change request
+- $nickname: user's nickname
+- $oldpassword: the user's old password
+- $newpassword: the desired new password
+- &$errormsg: set this to an error message if the password could not be changed. If the password was changed, leave this as false
+

diff --git a/actions/passwordsettings.php b/actions/passwordsettings.php
index cd4beac3f2120a9c83a81f4ddc8a4e98c8573777..87eb45a7d054f33bedd9a828683a93d36ee1608d 100644 (file)
--- a/actions/passwordsettings.php
+++ b/actions/passwordsettings.php
@@ -164,23 +164,32 @@ class PasswordsettingsAction extends AccountSettingsAction
                 $this->showForm(_('Incorrect old password'));
                 return;
             }
+        }else{
+            $oldpassword = null;
         }
 
-        $original = clone($user);
+        $errormsg = false;
+        if(! Event::handle('ChangePassword', array($user->nickname, $oldpassword, $newpassword, &$errormsg))){
+            //no handler changed the password, so change the password internally
+            $original = clone($user);
 
-        $user->password = common_munge_password($newpassword, $user->id);
+            $user->password = common_munge_password($newpassword, $user->id);
 
-        $val = $user->validate();
-        if ($val !== true) {
-            $this->showForm(_('Error saving user; invalid.'));
-            return;
-        }
+            $val = $user->validate();
+            if ($val !== true) {
+                $this->showForm(_('Error saving user; invalid.'));
+                return;
+            }
 
-        if (!$user->update($original)) {
-            $this->serverError(_('Can\'t save new password.'));
-            return;
+            if (!$user->update($original)) {
+                $this->serverError(_('Can\'t save new password.'));
+                return;
+            }
         }
 
-        $this->showForm(_('Password saved.'), true);
+        if($errormsg === false)
+            $this->showForm(_('Password saved.'), true);
+        else
+            $this->showForm($errormsg);
     }
 }

diff --git a/plugins/Ldap/LdapPlugin.php b/plugins/Ldap/LdapPlugin.php
index cabd3c82826ebef2e8d3ecdddb59df54a3e45fdf..755562f54b44921ae04794dd8fba788587e9ed8e 100644 (file)
--- a/plugins/Ldap/LdapPlugin.php
+++ b/plugins/Ldap/LdapPlugin.php
@@ -86,10 +86,20 @@ class LdapPlugin extends Plugin
                     }
                 }
             }
-            //error_log(print_r($registration_data,1));
+            //set the database saved password to a random string.
+            $registration_data['password']=common_good_rand(16);
             $user = User::register($registration_data);
             //prevent other handlers from running, as we have registered the user
             return false;
         }
     }
+
+    function onChangePassword($nickname,$oldpassword,$newpassword,&$errormsg)
+    {
+        //TODO implement this
+        $errormsg = _('Sorry, changing LDAP passwords is not supported at this time');
+
+        //return false, indicating that the event has been handled
+        return false;
+    }
 }