merge heihedata branch from r4064 to r4065

This commit is contained in:
wlx 2013-11-11 10:04:03 +00:00
parent 8cdd8dee9b
commit 9d69193151
16 changed files with 1200 additions and 45 deletions

View File

@ -1,4 +1,7 @@
<?php <?php
use Helpers\View as view;
use Mail\Mail;
class AccountController extends Zend_Controller_Action class AccountController extends Zend_Controller_Action
{ {
function preDispatch() function preDispatch()
@ -114,7 +117,6 @@ class AccountController extends Zend_Controller_Action
{ {
$this->view->pageID = "account-secure"; $this->view->pageID = "account-secure";
include_once("helper/view.php");
include_once("Users.php"); include_once("Users.php");
$usr = new Users($this->db); $usr = new Users($this->db);
@ -261,16 +263,17 @@ class AccountController extends Zend_Controller_Action
if ($form->getValue('unit')) $u->unit=$form->getValue('unit'); if ($form->getValue('unit')) $u->unit=$form->getValue('unit');
if ($form->getValue('project')) $u->project=$form->getValue('project'); if ($form->getValue('project')) $u->project=$form->getValue('project');
if ($u->save()) { if ($u->save()) {
//发送欢迎邮件
$mail=new WestdcMailer($this->view->config->smtp); //注册邮件
$body=file_get_contents($this->view->config->register->email->template); $mail_template = "member-register-en";
$body=str_replace("[username]",$formData['username'],$body); $mail_data = array(
$mail->setBodyText($body); 'name'=>$formData['username'],
$mail->setFrom($this->view->config->service->email,'西部数据中心服务组'); );
$mail->addTo($formData['email']);
//中文标题有乱码在1.5版本中尚未解决 $mail = new Mail();
//ref: http://framework.zend.com/issues/browse/ZF-2532
$mail->setSubject('欢迎使用中国西部环境与生态数据中心'); $mail->loadTemplate($mail_template,$mail_data);
$mail->addTo($formData['email'],$formData['username']);
$mail->send(); $mail->send();
//自动登录系统 //自动登录系统
@ -285,7 +288,6 @@ class AccountController extends Zend_Controller_Action
function loginAction() function loginAction()
{ {
include_once("helper/view.php");
$success=false; $success=false;
@ -536,22 +538,21 @@ class AccountController extends Zend_Controller_Action
$sql="update users set activation=? where email=?"; $sql="update users set activation=? where email=?";
$uid=uniqid(); $uid=uniqid();
$db->query($sql,array($uid,$formData['email'])); $db->query($sql,array($uid,$formData['email']));
$mail=new WestdcMailer($this->view->config->smtp);
$body="尊敬的西部数据中心用户:
有人提出了针对此用户名的密码重置请求。
用户名:"; //发邮件
$body.=$username; $mail_template = "users-changepassword";
$body.=" $mail_data = array(
'name'=>$username,
'url' => view::getHostLink()."/account/fetchpwd/".$username."/".$uid
);
若想重置您的密码请打开下面的链接,否则请忽略此邮件,一切如常。 $mail = new Mail();
";
$body.="http://westdc.westgis.ac.cn/account/fetchpwd/".$username."/".$uid; $mail->loadTemplate($mail_template,$mail_data);
$mail->setBodyText($body); $mail->addTo($formData['email'],$username);
$mail->setFrom($this->view->config->service->email,'西部数据中心服务组');
$mail->addTo($formData['email']);
$mail->setSubject('密码已重置');
$mail->send(); $mail->send();
$this->view->messages[]='请检查您的新邮件中的确认激活链接。'; $this->view->messages[]='请检查您的新邮件中的确认激活链接。';
$this->view->form=false;//do not echo form $this->view->form=false;//do not echo form
} else } else
@ -567,20 +568,20 @@ class AccountController extends Zend_Controller_Action
{ {
$sql="update users set salt='',activation='',password=md5('".$tmp_pwd."') where username=? and activation=?"; $sql="update users set salt='',activation='',password=md5('".$tmp_pwd."') where username=? and activation=?";
$db->query($sql,array($login,$key)); $db->query($sql,array($login,$key));
$mail=new WestdcMailer($this->view->config->smtp);
$body="尊敬的西部数据中心用户:
您的密码已修改。
用户名:"; //发邮件
$body.=$login; $mail_template = "users-changepassword";
$body.="密码:".$tmp_pwd; $mail_data = array(
$body.=" 'name'=>$login,
http://westdc.westgis.ac.cn/account/login"; 'tmp_pwd' => $tmp_pwd
$mail->setBodyText($body); );
$mail->setFrom($this->view->config->service->email,'西部数据中心服务组');
$mail->addTo($urow->email); $mail = new Mail();
$mail->setSubject('您的新密码');
$mail->loadTemplate($mail_template,$mail_data);
$mail->addTo($urow->email,$login);
$mail->send(); $mail->send();
$this->view->messages[]='请查收您新邮件中的新密码'; $this->view->messages[]='请查收您新邮件中的新密码';
$this->view->form=false;//do not echo form $this->view->form=false;//do not echo form

View File

@ -24,7 +24,8 @@ h3.gs_rt{font-size:110%;}
<?= $this->render('breadcrumbs.phtml'); ?> <?= $this->render('breadcrumbs.phtml'); ?>
<?php $md=$this->metadata;if ($md):?> <?php $md=$this->metadata;if ($md):?>
<h3><?php echo $this->escape($md->title); <h3><?php echo $this->escape($md->title);
if ($md->title_en) echo '<br />'.$this->escape($md->title_en);?> if ($md->title_en) echo '<br />'.$this->escape($md->title_en);
echo '<a href="http://westdc.westgis.ac.cn/data/'.$md->uuid.'"><img src="/images/china.png" alt="Chinese Version"></a>';?>
</h3> </h3>
<hr /> <hr />
<div class="row"> <div class="row">

View File

@ -0,0 +1,332 @@
<?php
namespace Users;
use helpers\View as view;
use helpers\dbh as dbh;
use Users\Member;
use Mail\Mail;
class Account extends \Zend_Controller_Plugin_Abstract
{
public $memberTable = "users";
public $FieldUsername = "username";
public $FieldPasword = "password";
public $FieldLastlogin = "ts_last_login";
public $FieldEmail = "email";
public $FieldLastloginIp = "last_login_ip";
public $GravatarEmailField = "gravatar_email";
public $RoleMember = "member";
private $db;
protected $events = NULL; //事件
function __construct($db = NULL)
{
if(empty($db))
{
$this->db = \Zend_Registry::get('db');
}else{
$this->db = $db;
}
$this->config = \Zend_Registry::get('config');
}
public function events(\Zend_EventManager_EventCollection $events = NULL)
{
if ($events !== NULL) {
$this->events = $events;
} elseif ($this->events === NULL) {
$this->events = new \Zend_EventManager_EventManager(__CLASS__);
}
return $this->events;
}
//获取账号信息,数组
public function getAccountInfo($id = 0)
{
if($id == 0)
{
$id = view::User('id');
}
$sql = "SELECT * FROM {$this->memberTable} WHERE id=$id";
$rs = $this->db->query($sql);
return $rs->fetch();
}
//注册
public function register($data)
{
$params = compact('data');
$results = $this->events()->trigger('register.checkParam', $this, $params);
$cache_data = $results->bottom();
if($cache_data !== true)
{
if(!is_array($cache_data))
{
return array('error'=>$cache_data);
}else{
return $cache_data;
}
}
$results = $this->events()->trigger('register.checkUser', $this, $params);
$cache_data = $results->bottom();
if($cache_data !== true)
{
if(!is_array($cache_data))
{
return array('error'=>$cache_data);
}else{
return $cache_data;
}
}
$loginData = array(
'username'=>$data['username'],
'password'=>$data['password']
);
$data['password'] = md5($data['password']);
$data['usertype'] = "member";
unset($data['confirm_password']);
$dbh = new dbh();
$id = $dbh->insert($this->memberTable,$data,true);
if(!empty($id) && is_numeric($id))
{
$this->storeLogin($loginData);
$mb = new Member();
$mb->putcookie($data[$this->FieldUsername],$data[$this->FieldPasword]); //username, md5(password)
$params = compact('data','id');
$results = $this->events()->trigger('register.success', $this, $params);
return array("success" => 1);
}else{
if($id === false)
{
return array('error'=>'服务器开小差了,请稍后再试');
}else{
return array('error'=>'服务器处理中遇到错误,请联系管理员');
}
}
}//register
//登陆
public function login($data)
{
$results = $this->events()->trigger('login.checkParam', $this, compact('data'));
$cache_data = $results->bottom();
if($cache_data !== true)
{
if(!is_array($cache_data))
{
return array('error'=>$cache_data);
}else{
return $cache_data;
}
}
$state = $this->storeLogin($data);
$mb = new Member();
$mb->putcookie($data[$this->FieldUsername],md5($data[$this->FieldPasword]));
return $state;
}//login
//storeLogin
public function storeLogin($data)
{
$auth = \Zend_Auth::getInstance();
$authAdapter = new \Zend_Auth_Adapter_DbTable($this->db);
$authAdapter->setTableName($this->memberTable)
->setIdentityColumn($this->FieldUsername)
->setCredentialColumn($this->FieldPasword);
$authAdapter->setIdentity($data[$this->FieldUsername])->setCredential(md5($data[$this->FieldPasword]));
$result = $auth->authenticate($authAdapter);
if ($result->isValid()) {
$user = $authAdapter->getResultRowObject(null,$this->FieldPasword);
$email = $user->email;
$results = $this->events()->trigger('login.success.createAvatar', $this, compact('email'));
$user->avatar = $results->bottom();
$auth->getStorage()->write($user);
$id = $user->id;
@$results = $this->events()->trigger('login.success.updateStatus', $this, compact('id'));
return array('success'=>1);
}
return array('error'=>'处理中发现错误,请重试');
}
//注册信息参数
public function getParam(\Zend_Controller_Request_Abstract $request)
{
$data = array(
'username'=>$request->getParam('username'),
'password'=>$request->getParam('password'),
'confirm_password'=>$request->getParam('confirm_password'),
'email'=>$request->getParam('email'),
'realname'=>$request->getParam('realname')
);
return $data;
}
//获取用户账户修改参数
public function getEditParam(\Zend_Controller_Request_Abstract $request)
{
$type = $request->getParam('type');
if($type == "general")
{
$data = array(
'realname'=>$request->getParam('realname'),
'signature'=>$request->getParam('signature'),
'description'=>$request->getParam('description')
);
}
if($type == "password")
{
$data = array(
'password' => $request->getParam('password'),
'password_new'=>$request->getParam('password_new'),
'password_confirm'=>$request->getParam('password_confirm')
);
}
return $data;
}
//编辑
public function edit($data,$type)
{
$results = $this->events()->trigger('edit.checkParam', $this, compact('data','type'));
$cache_data = $results->bottom();
if($cache_data !== true)
{
return $cache_data;
}
if($type == "general")
{
$data['signature'] = htmlspecialchars($data['signature']);
$data['description'] = htmlspecialchars($data['description']);
}else if($type == "password")
{
$data['password'] = md5($data['password_new']);
unset($data['password_new']);
unset($data['password_confirm']);
}else{
return "参数错误";
}
$dbh = new dbh();
$uid = view::User('id');
if($dbh->update($this->memberTable,$data," id=$uid") === true)
{
return true;
}else{
return false;
}
}
//找回密码
public function getMyPassword($email)
{
$results = $this->events()->trigger('pwd.forgot.checkParam', $this, compact('email'));
$cache_data = $results->bottom();
if($cache_data !== true)
{
return $cache_data;
}
$sql = "SELECT * FROM {$this->memberTable} WHERE email='$email'";
$rs = $this->db->query($sql);
$row = $rs->fetch();
if(!isset($row['username']) || empty($row['username']))
{
return array('error'=>"此邮箱并未注册",'place'=>'email');
}
$salt = md5($email.'---'.$row['username']);
$sql = "UPDATE {$this->memberTable} SET salt='$salt' WHERE id={$row['id']}";
$state = $this->db->exec($sql);
if($state<1)
{
return array('error'=>"处理中出现错误,请重试",'place'=>'email');
}
$mail_template = "forgotpassword";
$mail_data = array(
'name'=>$row['realname'],
'link'=> view::getHostLink().'/account/getpassword/salt/'.$salt
);
$mail = new Mail();
$mail->loadTemplate($mail_template,$mail_data);
$mail->addTo($email,$row['realname']);
$mail->send();
return array("success"=>1);
}
//重置密码
public function resetPassword($data)
{
$results = $this->events()->trigger('pwd.reset.checkParam', $this, compact('data'));
$cache_data = $results->bottom();
if($cache_data !== true)
{
return $cache_data;
}
$sql = "SELECT * FROM {$this->memberTable} WHERE salt=?";
$sth = $this->db->prepare($sql);
$sth->execute(array($data['salt']));
$row = $sth->fetch();
if(!isset($row['username']) || empty($row['username']))
{
return array('error'=>"您提供的校验码不正确,请重新申请重置密码",'place'=>'confirm_password');
}
if($row['username'] !== $data['username'])
{
return array('error'=>"您提供的校验码不正确,请重新申请重置密码",'place'=>'confirm_password');
}
$sql = "UPDATE {$this->memberTable} SET password='".md5($data['password'])."',salt='' WHERE id={$row['id']}";
$this->db->exec($sql);
$mail_template = "getpassworded";
$mail_data = array(
'name'=>$row['realname'],
);
$mail = new Mail();
$mail->loadTemplate($mail_template,$mail_data);
$mail->addTo($row['email'],$row['realname']);
$mail->send();
return true;
}
}

View File

@ -0,0 +1,11 @@
<?php
namespace Users\Event;
interface EditEvent
{
public function checkParam(\Zend_EventManager_Event $e);
public function editSuccess(\Zend_EventManager_Event $e);
}

View File

@ -0,0 +1,12 @@
<?php
namespace Users\Event;
interface LoginEvent
{
public function checkParam(\Zend_EventManager_Event $e);
public function updateStatus(\Zend_EventManager_Event $e);
public function createAvatar(\Zend_EventManager_Event $e);
}

View File

@ -0,0 +1,13 @@
<?php
namespace Users\Event;
interface PwdEvent
{
public function forgotPwdCheckParam(\Zend_EventManager_Event $e);
public function sendGetPasswordMail(\Zend_EventManager_Event $e);
public function resetPwdCheckParam(\Zend_EventManager_Event $e);
}

View File

@ -0,0 +1,13 @@
<?php
namespace Users\Event;
interface RegisterEvent
{
public function checkParam(\Zend_EventManager_Event $e);
public function checkUser(\Zend_EventManager_Event $e);
public function registerSuccess(\Zend_EventManager_Event $e);
}

View File

@ -0,0 +1,20 @@
<?php
namespace Users;
class Gravatar{
function Get( $email, $size='' ) {
$default = "http://heihedata.org/static/img/gCons/agent.png";
if(empty($size))
{
$size = 40;
}
$url = "http://www.gravatar.com/avatar/" . md5( strtolower( trim( $email ) ) ) . "?d=" . urlencode( $default ) . "&s=" . $size;
return $url;
}
}

View File

@ -0,0 +1,64 @@
<?php
namespace Users\Listener;
use Users\Operation\RegisterOperate;
use Users\Operation\LoginOperate;
class AccountListener implements \Zend_EventManager_ListenerAggregate
{
private $event;
private $type;
function __construct($type = "")
{
$this->event = new \Zend_EventManager_EventManager();
if(empty($type))
{
$type = "both";
}
$this->type = $type;
}
public function attach(\Zend_EventManager_EventCollection $events)
{
if($this->type == "both")
{
$this->attachRegisterEvents($events);
$this->attachLoginEvents($events);
}
if($this->type == "register")
{
$this->attachRegisterEvents($events);
}
if($this->type == "login")
{
$this->attachLoginEvents($events);
}
}
public function detach(\Zend_EventManager_EventCollection $events)
{
}
private function attachRegisterEvents(\Zend_EventManager_EventCollection $events)
{
$_Events = new RegisterOperate();
$events->attach('register.checkParam', array($_Events, 'checkParam'), 100);
$events->attach('register.checkUser', array($_Events, 'checkUser'), 80);
$events->attach('register.success', array($_Events, 'registerSuccess'), 50);
}
private function attachLoginEvents(\Zend_EventManager_EventCollection $events)
{
$_Events = new LoginOperate();
$events->attach('login.checkParam', array($_Events, 'checkParam'), 100);
$events->attach('login.success.updateStatus', array($_Events, 'updateStatus'), 50);
$events->attach('login.success.createAvatar', array($_Events, 'createAvatar'), 50);
}
}

View File

@ -0,0 +1,35 @@
<?php
namespace Users\Listener;
use Users\Operation\EditOperate;
class EditListener implements \Zend_EventManager_ListenerAggregate
{
private $event;
private $type;
function __construct($type = "")
{
$this->event = new \Zend_EventManager_EventManager();
if(empty($type))
{
$type = "both";
}
$this->type = $type;
}
public function attach(\Zend_EventManager_EventCollection $events)
{
$_Events = new EditOperate();
$events->attach('edit.checkParam', array($_Events, 'checkParam'), 100);
$events->attach('edit.success', array($_Events, 'editSuccess'), 50);
}
public function detach(\Zend_EventManager_EventCollection $events)
{
}
}

View File

@ -0,0 +1,30 @@
<?php
namespace Users\Listener;
use Users\Operation\PwdOperate;
class PwdListener implements \Zend_EventManager_ListenerAggregate
{
private $event;
private $type;
function __construct($type = "")
{
$this->event = new \Zend_EventManager_EventManager();
}
public function attach(\Zend_EventManager_EventCollection $events)
{
$_Events = new PwdOperate();
$events->attach('pwd.forgot.checkParam', array($_Events, 'forgotPwdCheckParam'), 100);
$events->attach('pwd.forgot.sendmail', array($_Events, 'sendGetPasswordMail'), 50);
$events->attach('pwd.reset.checkParam', array($_Events, 'resetPwdCheckParam'), 100);
$events->attach('pwd.reset.sendmail', array($_Events, 'sendGetPasswordMail'), 50);
}
public function detach(\Zend_EventManager_EventCollection $events)
{
}
}

View File

@ -0,0 +1,138 @@
<?php
namespace Users;
class Member
{
var $ck='DCC3ER4T8L2EFX94OPDF';
var $db; //传入PDO对象
var $mid; //会员ID
public $scr; //cookie 安全码 $_COOKIE['scr']
public $user;//cookie User $_COOKIE['user']
public $srpwd;//执行checkcookie后方可调用
public $memberTable = "users";
public $FieldUsername = "username";
public $FieldPasword = "password";
public $FieldLastlogin = "ts_last_login";
public $FieldEmail = "email";
public $FieldLastloginIp = "last_login_ip";
public $GravatarEmailField = "gravatar_email";
public $RoleMember = "member";
function __construct()
{
if(empty($db))
{
$this->db = \Zend_Registry::get('db');
}else{
$this->db = $db;
}
$this->config = \Zend_Registry::get('config');
if(!empty($_COOKIE['scr']))
{
$this->scr = $_COOKIE['scr'];
}
if(!empty($_COOKIE['user']))
{
$this->user= $_COOKIE['user'];
}
}
/**
* 检测cookie
*/
public function checkcookie()
{
$uname = $this->user;
$hash = $this->scr;
if(!empty($uname) && !empty($hash))
{
if (preg_match("/[<|>|#|$|%|^|*|(|)|{|}|'|\"|;|:]/i",$uname) || preg_match("/[<|>|#|$|%|^|*|(|)|{|}|'|\"|;|:]/i",$hash))
{
$this->mid=0;
return false;
}
else{
$sql = "select {$this->FieldUsername} as userid,{$this->FieldPasword} as pwd from {$this->memberTable} where {$this->FieldUsername}='$uname'";
$rs = $this->db->query($sql);
$row = $rs->fetch();
$scr = $this->makescr($row['userid'],$row['pwd']);
if($hash == $scr)
{
$this->srpwd=$row['pwd'];
return true;
}
else {
return false;
}
}//cookie安全
}else {
return false;
}//exit
}//function checkcookie
/**
* putcookie
*
* 登陆成功后放置cookie包含安全码
*
* @param String $uname
* @param String $pwd
* @param Int $time
*/
public function putcookie($uname,$pwd,$time = 604800)
{
try {
$scrString = $this->makescr($uname,$pwd);//加密验证串:防止用户密码被盗防止伪造cookie。
if(!is_numeric($time))
{
$time = 604800;
}
setcookie('user',$uname,time()+$time,'/');
setcookie('scr',$scrString,time()+$time,'/');
return true;
} catch (Exception $e) {
return false;
}
}//function putcookie
/**
* 生成安全码
*
* @param String $u
* @param String $p
*/
public function makescr($u,$p)
{
return substr(md5($u.$p.$this->ck),3,20);
}
/**
* 清除cookie
*/
static function flushcookie()
{
setcookie('user','',time()-99999,'/');
setcookie('scr','',time()-99999,'/');
}
public function getUser()
{
$sql = "SELECT * FROM ".$this->memberTable." m ORDER BY m.id DESC";
$rs = $this->db->query($sql);
return $rs->fetchAll();
}
}

View File

@ -0,0 +1,88 @@
<?php
namespace Users\Operation;
use Mail\Mail;
use helpers\View as view;
class EditOperate implements \Users\Event\EditEvent
{
private $db; //传入PDO对象
public $tbl_member = "users";
public $FieldUsername = "username";
public $FieldPasword = "password";
public $FieldLastlogin = "ts_last_login";
public $FieldEmail = "email";
public $FieldLastloginIp = "last_login_ip";
public $FieldGravatarEmail = "gravatar_email";
private $DefaultFetchMode = \PDO::FETCH_BOTH; //默认检索模式防止出现sdtClass错误
private $config; //全局配置
function __construct($db = NULL)
{
if(empty($db))
{
$this->db = \Zend_Registry::get('db');
}else{
$this->db = $db;
}
$this->config = \Zend_Registry::get('config');
}
public function checkParam(\Zend_EventManager_Event $e){
$data = $e->getParam('data');
$type = $e->getParam('type');
if($type == 'general')
{
if(empty($data['realname']))
{
return "请输入真实姓名";
}
if(mb_strlen($data['realname'],"UTF-8")>10 )
{
return "姓名不要超过10个字";
}
}
if($type == "password")
{
if(strlen($data['password'])>18 || strlen($data['password_new'])>18)
{
return "密码过长";
}
if(strlen($data['password_new'])<=6 || strlen($data['password_confirm'])<=6)
{
return "密码过短";
}
if(md5($data['password_new']) != md5($data['password_confirm']))
{
return "两次输入的密码不同";
}
$uid = view::User('id');
$sql = "SELECT {$this->FieldPasword} FROM {$this->tbl_member} WHERE id=$uid";
$rs = $this->db->query($sql);
$row = $rs->fetch();
if(md5($data['password']) != $row[$this->FieldPasword])
{
return "原密码不正确";
}
}
return true;
}//checkParam
public function editSuccess(\Zend_EventManager_Event $e){
$data = $e->getParam('data');
return true;
}
}

View File

@ -0,0 +1,111 @@
<?php
namespace Users\Operation;
use Helpers\dbh as dbh;
use Users\Gravatar;
class LoginOperate implements \Users\Event\LoginEvent
{
private $db; //传入PDO对象
public $tbl_member = "users";
public $FieldUsername = "username";
public $FieldPasword = "password";
public $FieldLastlogin = "ts_last_login";
public $FieldEmail = "email";
public $FieldLastloginIp = "last_login_ip";
public $FieldGravatarEmail = "gravatar_email";
private $DefaultFetchMode = \PDO::FETCH_BOTH; //默认检索模式防止出现sdtClass错误
private $config; //全局配置
function __construct($db = NULL)
{
if(empty($db))
{
$this->db = \Zend_Registry::get('db');
}else{
$this->db = $db;
}
$this->config = \Zend_Registry::get('config');
}
public function checkParam(\Zend_EventManager_Event $e){
$data = $e->getParam('data');
if(!is_array($data))
{
return "参数错误";
}
if(empty($data['username']))
{
return array('error'=>"请输入用户名",'place'=>'username');
}
if(!empty($data['username']))
{
if(!preg_match("/^[a-zA-Z][a-zA-Z0-9_]{4,15}$/",$data['username']))
{
return array('error'=>"用户名应当以字母开头由字母数字和下划线组成并且长度在5到25个字符之间",'place'=>'username');
}
}
if(empty($data['password']))
{
return array('error'=>"请输入密码",'place'=>'password');
}
$sql = "SELECT id,{$this->FieldPasword} FROM {$this->tbl_member} WHERE {$this->FieldUsername}=?";
$sth = $this->db->prepare($sql);
$rs = $sth->execute(array($data[$this->FieldUsername]));
$row = $sth->fetch();
if(isset($row['id']) && !empty($row['id']))
{
if(strlen($row[$this->FieldPasword]) !== 32)
{
return array('error'=>"您的密码或因安全原因或其他问题已经被重置,请先<a href='/account/forgotpassword'>重置密码</a>再登陆",'place'=>'password');
}
if($row[$this->FieldPasword] !== md5($data['password']))
{
return array('error'=>"密码错误",'place'=>'password');
}
return true;
}else{
return array('error'=>"用户不存在",'place'=>'username');
}
}//checkParam
public function updateStatus(\Zend_EventManager_Event $e){
$id = (int)$e->getParam('id');
if(!is_numeric($id))
{
return false;
}
$update = array(
$this->FieldLastlogin => date("Y-m-d H:i:s"),
$this->FieldLastloginIp => $_SERVER["REMOTE_ADDR"]
);
$dbh = new dbh();
@$statusUpdate = $dbh->update($this->tbl_member,$update," id=$id ");
return true;
}//loginSuccess
public function createAvatar(\Zend_EventManager_Event $e){
$email = $e->getParam('email');
$avatar = new Gravatar();
return $avatar->Get($email);
}//loginSuccess
}

View File

@ -0,0 +1,94 @@
<?php
namespace Users\Operation;
use Mail\Mail;
use Helpers\View as view;
class PwdOperate implements \Users\Event\PwdEvent
{
private $db; //传入PDO对象
public $tbl_member = "users";
public $FieldUsername = "username";
public $FieldPasword = "password";
public $FieldLastlogin = "ts_last_login";
public $FieldEmail = "email";
public $FieldLastloginIp = "last_login_ip";
public $FieldGravatarEmail = "gravatar_email";
private $DefaultFetchMode = \PDO::FETCH_BOTH; //默认检索模式防止出现sdtClass错误
private $config; //全局配置
function __construct($db = NULL)
{
if(empty($db))
{
$this->db = \Zend_Registry::get('db');
}else{
$this->db = $db;
}
$this->config = \Zend_Registry::get('config');
}
public function forgotPwdCheckParam(\Zend_EventManager_Event $e){
$email = $e->getParam('email');
if(empty($email))
{
return array('error'=>"请输入电子邮箱,作为找回密码和接受通知的联系方式",'place'=>'email');
}
if (!preg_match('/^\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*$/',$email))
{
return array('error'=>"请输入正确的电子邮件",'place'=>'email');
}
return true;
}//checkParam
public function sendGetPasswordMail(\Zend_EventManager_Event $e){
$email = $e->getParam('email');
return true;
}
public function resetPwdCheckParam(\Zend_EventManager_Event $e)
{
$data = $e->getParam('data');
if(empty($data['username']))
{
return array('error'=>"请输入用户名",'place'=>'username');
}
if(empty($data['password']))
{
return array('error'=>"请输入密码",'place'=>'password');
}
if(strlen($data['password']) < 6)
{
return array('error'=>"密码长度太短为了安全最少输入6位哦",'place'=>'password');
}
if(strlen($data['password']) > 14)
{
return array('error'=>"密码太长亲您记得住吗不要超过14位哦",'place'=>'password');
}
if(empty($data['confirm_password']))
{
return array('error'=>"请再次输入密码已确认输入正确",'place'=>'confirm_password');
}
if(md5($data['password']) != md5($data['confirm_password']))
{
return array('error'=>"两次输入的密码不同,请重新输入",'place'=>'confirm_password');
}
return true;
}
}

View File

@ -0,0 +1,192 @@
<?php
namespace Users\Operation;
use Mail\Mail;
use Helpers\View as view;
class RegisterOperate implements \Users\Event\RegisterEvent
{
private $db; //传入PDO对象
public $tbl_member = "tbl_member";
public $FieldUsername = "username";
public $FieldPasword = "password";
public $FieldLastlogin = "ts_last_login";
public $FieldEmail = "email";
public $FieldLastloginIp = "last_login_ip";
public $FieldGravatarEmail = "gravatar_email";
private $DefaultFetchMode = \PDO::FETCH_BOTH; //默认检索模式防止出现sdtClass错误
private $config; //全局配置
function __construct($db = NULL)
{
if(empty($db))
{
$this->db = \Zend_Registry::get('db');
}else{
$this->db = $db;
}
$this->config = \Zend_Registry::get('config');
}
public function checkParam(\Zend_EventManager_Event $e){
$data = $e->getParam('data');
if(!is_array($data))
{
return "参数错误";
}
if(empty($data['username']))
{
return array('error'=>"请输入用户名",'place'=>'username');
}
if(!empty($data['username']))
{
if(!preg_match("/^[a-zA-Z][a-zA-Z0-9_]{4,15}$/",$data['username']))
{
return array('error'=>"用户名应当以字母开头由字母数字和下划线组成并且长度在5到16个字符之间",'place'=>'username');
}
}
if(empty($data['password']))
{
return array('error'=>"请输入密码",'place'=>'password');
}
if(strlen($data['password']) < 6)
{
return array('error'=>"密码长度太短为了安全最少输入6位",'place'=>'password');
}
if(strlen($data['password']) > 14)
{
return array('error'=>"密码太长请不要超过14位",'place'=>'password');
}
if(empty($data['confirm_password']))
{
return array('error'=>"请再次输入密码已确认输入正确",'place'=>'confirm_password');
}
if(md5($data['password']) != md5($data['confirm_password']))
{
return array('error'=>"两次输入的密码不同,请重新输入",'place'=>'confirm_password');
}
if(empty($data['email']))
{
return array('error'=>"请输入电子邮箱,作为找回密码和接受通知的联系方式",'place'=>'email');
}
if (!preg_match('/^\w+([-+.]\w+)*@\w+([-.]\w+)*\.\w+([-.]\w+)*$/',$data['email']))
{
return array('error'=>"请输入正确的电子邮件推荐使用QQ邮箱和Gmail邮箱",'place'=>'email');
}
if(empty($data['realname']))
{
return array('error'=>"请输入姓名",'place'=>'realname');
}
if(mb_strlen($data['realname'],"UTF-8")>10 )
{
return array('error'=>"真实姓名请不要超过10个字",'place'=>'realname');
}
return true;
}//checkParam
public function checkUser(\Zend_EventManager_Event $e){
$data = $e->getParam('data');
if(!is_array($data))
{
return "用户信息验证失败,请重新尝试";
}
$sql = "SELECT id,{$this->FieldUsername},{$this->FieldEmail} FROM ".$this->tbl_member." WHERE {$this->FieldUsername}='{$data['username']}' OR {$this->FieldEmail}='{$data['email']}'";
$rs = $this->db->query($sql);
$row = $rs->fetch();
if(isset($row['id']) && !empty($row['id']))
{
if($row[$this->FieldUsername] == $data['username'])
{
return array('error'=>'您的用户名已经注册过账号,您是否<a href="/account/forgotpassword">忘记了密码?</a>','place'=>'username');
}
if($row[$this->FieldEmail] == $data['email'])
{
return array('error'=>'您的邮箱已经注册过账号,请换一个邮箱','place'=>'email');
}
return array('error'=>'您的用户名或邮箱已经使用过,注册新账号请换一个用户名');
}
return true;
}//checkUser
public function registerSuccess(\Zend_EventManager_Event $e){
$data = $e->getParam('data');
if(!is_array($data))
{
return false;
}
$id = $e->getParam('id');
if(!is_numeric($id))
{
return false;
}
$mail_template = "register";
$mail_data = array(
'name'=>$data['realname'],
'content'=>$this->getMailContent()
);
$mail = new Mail();
$mail->loadTemplate($mail_template,$mail_data);
$mail->addTo($data['email'],$data['realname']);
$mail->send();
return true;
}//registerSuccess
//邮件内容
public function getMailContent()
{
$sql = "SELECT v.id,v.title,v.thumb,v.status,v.content,m.realname,m.username FROM tbl_voice v
LEFT JOIN tbl_member m ON v.userid = m.id
WHERE v.status > 0
ORDER BY v.id DESC
LIMIT 5";
$rs = $this->db->query($sql);
$latest = $rs->fetchAll();
$content = "";
foreach($latest as $k=>$v)
{
if($v['thumb'] != '[]')
{
$thumb = json_decode($v['thumb'],true);
$text = mb_strlen($v['content'],"UTF-8") > 100 ? mb_substr($v['content'],0,100,"UTF-8") : $v['content'];
$content .= '<p style="width:100%;overflow:hidden;"><img src="http://www.msgfm.com'.$this->config->upload->urlbase.$thumb[0]['thumb'][400]['url'].'" height="100" style="float:left;margin-right:10px;" />'.$v['title']. ' / ' .$v['realname'].'<br />'.$text.'<br /><a href="http://www.msgfm.com/voice/'.$v['id'].'.html">查看播放</a></p>';
}
}
return $content;
}//getMailContent();
}