option for admins to create new users
This commit is contained in:
parent
1e76fb239e
commit
06bd4589da
6 changed files with 63 additions and 7 deletions
|
@ -18,6 +18,7 @@ abstract class Permissions
|
||||||
public const BAN_IP = "ban_ip";
|
public const BAN_IP = "ban_ip";
|
||||||
|
|
||||||
public const CREATE_USER = "create_user";
|
public const CREATE_USER = "create_user";
|
||||||
|
public const CREATE_OTHER_USER = "create_other_user";
|
||||||
public const EDIT_USER_NAME = "edit_user_name";
|
public const EDIT_USER_NAME = "edit_user_name";
|
||||||
public const EDIT_USER_PASSWORD = "edit_user_password";
|
public const EDIT_USER_PASSWORD = "edit_user_password";
|
||||||
public const EDIT_USER_INFO = "edit_user_info"; # email address, etc
|
public const EDIT_USER_INFO = "edit_user_info"; # email address, etc
|
||||||
|
|
|
@ -118,6 +118,7 @@ new UserClass("admin", "base", [
|
||||||
Permissions::BAN_IP => true,
|
Permissions::BAN_IP => true,
|
||||||
|
|
||||||
Permissions::CREATE_USER => true,
|
Permissions::CREATE_USER => true,
|
||||||
|
Permissions::CREATE_OTHER_USER => true,
|
||||||
Permissions::EDIT_USER_NAME => true,
|
Permissions::EDIT_USER_NAME => true,
|
||||||
Permissions::EDIT_USER_PASSWORD => true,
|
Permissions::EDIT_USER_PASSWORD => true,
|
||||||
Permissions::EDIT_USER_INFO => true,
|
Permissions::EDIT_USER_INFO => true,
|
||||||
|
|
|
@ -55,13 +55,16 @@ class UserCreationEvent extends Event
|
||||||
public $password;
|
public $password;
|
||||||
/** @var string */
|
/** @var string */
|
||||||
public $email;
|
public $email;
|
||||||
|
/** @var bool */
|
||||||
|
public $login;
|
||||||
|
|
||||||
public function __construct(string $name, string $pass, string $email)
|
public function __construct(string $name, string $pass, string $email, bool $login)
|
||||||
{
|
{
|
||||||
parent::__construct();
|
parent::__construct();
|
||||||
$this->username = $name;
|
$this->username = $name;
|
||||||
$this->password = $pass;
|
$this->password = $pass;
|
||||||
$this->email = $email;
|
$this->email = $email;
|
||||||
|
$this->login = $login;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
|
@ -109,6 +109,12 @@ class UserPage extends Extension
|
||||||
$this->page_recover($_POST['username']);
|
$this->page_recover($_POST['username']);
|
||||||
} elseif ($event->get_arg(0) == "create") {
|
} elseif ($event->get_arg(0) == "create") {
|
||||||
$this->page_create();
|
$this->page_create();
|
||||||
|
} elseif ($event->get_arg(0) == "create_other") {
|
||||||
|
$uce = new UserCreationEvent($_POST['name'], $_POST['pass1'], $_POST['email'], false);
|
||||||
|
send_event($uce);
|
||||||
|
$page->set_mode(PageMode::REDIRECT);
|
||||||
|
$page->set_redirect(make_link("admin"));
|
||||||
|
$page->flash("Created new user");
|
||||||
} elseif ($event->get_arg(0) == "list") {
|
} elseif ($event->get_arg(0) == "list") {
|
||||||
$t = new UserTable($database->raw_db());
|
$t = new UserTable($database->raw_db());
|
||||||
$t->token = $user->get_auth_token();
|
$t->token = $user->get_auth_token();
|
||||||
|
@ -327,10 +333,21 @@ class UserPage extends Extension
|
||||||
$event->add_link("Log Out", make_link("user_admin/logout"), 99);
|
$event->add_link("Log Out", make_link("user_admin/logout"), 99);
|
||||||
}
|
}
|
||||||
|
|
||||||
|
public function onAdminBuilding(AdminBuildingEvent $event)
|
||||||
|
{
|
||||||
|
global $user;
|
||||||
|
if ($user->can(Permissions::CREATE_OTHER_USER)) {
|
||||||
|
$this->theme->display_user_creator();
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
public function onUserCreation(UserCreationEvent $event)
|
public function onUserCreation(UserCreationEvent $event)
|
||||||
{
|
{
|
||||||
$this->check_user_creation($event);
|
$this->check_user_creation($event);
|
||||||
$this->create_user($event);
|
$user = $this->create_user($event);
|
||||||
|
if ($event->login) {
|
||||||
|
send_event(new UserLoginEvent($user));
|
||||||
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
public function onSearchTermParse(SearchTermParseEvent $event)
|
public function onSearchTermParse(SearchTermParseEvent $event)
|
||||||
|
@ -364,7 +381,6 @@ class UserPage extends Extension
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
private function show_user_info()
|
private function show_user_info()
|
||||||
{
|
{
|
||||||
global $user, $page;
|
global $user, $page;
|
||||||
|
@ -457,7 +473,7 @@ class UserPage extends Extension
|
||||||
throw new UserCreationException("Error in captcha");
|
throw new UserCreationException("Error in captcha");
|
||||||
}
|
}
|
||||||
|
|
||||||
$uce = new UserCreationEvent($_POST['name'], $_POST['pass1'], $_POST['email']);
|
$uce = new UserCreationEvent($_POST['name'], $_POST['pass1'], $_POST['email'], true);
|
||||||
send_event($uce);
|
send_event($uce);
|
||||||
$this->set_login_cookie($uce->username, $uce->password);
|
$this->set_login_cookie($uce->username, $uce->password);
|
||||||
$page->set_mode(PageMode::REDIRECT);
|
$page->set_mode(PageMode::REDIRECT);
|
||||||
|
@ -486,7 +502,7 @@ class UserPage extends Extension
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
private function create_user(UserCreationEvent $event)
|
private function create_user(UserCreationEvent $event): User
|
||||||
{
|
{
|
||||||
global $database, $user;
|
global $database, $user;
|
||||||
|
|
||||||
|
@ -503,9 +519,10 @@ class UserPage extends Extension
|
||||||
$uid = $database->get_last_insert_id('users_id_seq');
|
$uid = $database->get_last_insert_id('users_id_seq');
|
||||||
$user = User::by_name($event->username);
|
$user = User::by_name($event->username);
|
||||||
$user->set_password($event->password);
|
$user->set_password($event->password);
|
||||||
send_event(new UserLoginEvent($user));
|
|
||||||
|
|
||||||
log_info("user", "Created User #$uid ({$event->username})");
|
log_info("user", "Created User #$uid ({$event->username})");
|
||||||
|
|
||||||
|
return $user;
|
||||||
}
|
}
|
||||||
|
|
||||||
private function set_login_cookie(string $name, string $pass)
|
private function set_login_cookie(string $name, string $pass)
|
||||||
|
|
|
@ -105,6 +105,40 @@ class UserPageTheme extends Themelet
|
||||||
$page->add_block(new Block("Signup", (string)$html));
|
$page->add_block(new Block("Signup", (string)$html));
|
||||||
}
|
}
|
||||||
|
|
||||||
|
public function display_user_creator()
|
||||||
|
{
|
||||||
|
global $page;
|
||||||
|
|
||||||
|
$form = SHM_SIMPLE_FORM(
|
||||||
|
"user_admin/create_other",
|
||||||
|
TABLE(
|
||||||
|
["class"=>"form"],
|
||||||
|
TBODY(
|
||||||
|
TR(
|
||||||
|
TH("Name"),
|
||||||
|
TD(INPUT(["type"=>'text', "name"=>'name', "required"=>true]))
|
||||||
|
),
|
||||||
|
TR(
|
||||||
|
TH("Password"),
|
||||||
|
TD(INPUT(["type"=>'password', "name"=>'pass1', "required"=>true]))
|
||||||
|
),
|
||||||
|
TR(
|
||||||
|
TH(rawHTML("Repeat Password")),
|
||||||
|
TD(INPUT(["type"=>'password', "name"=>'pass2', "required"=>true]))
|
||||||
|
),
|
||||||
|
TR(
|
||||||
|
TH(rawHTML("Email (Optional)")),
|
||||||
|
TD(INPUT(["type"=>'email', "name"=>'email']))
|
||||||
|
),
|
||||||
|
),
|
||||||
|
TFOOT(
|
||||||
|
TR(TD(["colspan"=>"2"], INPUT(["type"=>"submit", "value"=>"Create Account"])))
|
||||||
|
)
|
||||||
|
)
|
||||||
|
);
|
||||||
|
$page->add_block(new Block("Create User", (string)$form, "main", 75));
|
||||||
|
}
|
||||||
|
|
||||||
public function display_signups_disabled(Page $page)
|
public function display_signups_disabled(Page $page)
|
||||||
{
|
{
|
||||||
$page->set_title("Signups Disabled");
|
$page->set_title("Signups Disabled");
|
||||||
|
|
|
@ -100,7 +100,7 @@ abstract class ShimmiePHPUnitTestCase extends TestCase
|
||||||
{
|
{
|
||||||
if (is_null(User::by_name($name))) {
|
if (is_null(User::by_name($name))) {
|
||||||
$userPage = new UserPage();
|
$userPage = new UserPage();
|
||||||
$userPage->onUserCreation(new UserCreationEvent($name, $name, ""));
|
$userPage->onUserCreation(new UserCreationEvent($name, $name, "", false));
|
||||||
assert(!is_null(User::by_name($name)), "Creation of user $name failed");
|
assert(!is_null(User::by_name($name)), "Creation of user $name failed");
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
Reference in a new issue