implementing multiple modes for operation #10
@@ -13,10 +13,9 @@
|
||||
* See the License for the specific language governing permissions and
|
||||
* limitations under the License.
|
||||
*/
|
||||
|
||||
// enforce admin via https
|
||||
if (!isset($_SERVER['HTTPS'])) {
|
||||
header('Location: https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'], true, 301);
|
||||
header('Location: https://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'], true, 301);
|
||||
exit();
|
||||
}
|
||||
|
||||
@@ -68,10 +67,10 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
|
||||
}
|
||||
if ($storeFirstLastName) {
|
||||
// only require first_name and last_name when we will evaluate them
|
||||
if (!isset($_POST["first_name"]) || ! preg_match("/[A-Z][a-z]+/", $_POST["first_name"])) {
|
||||
if (!isset($_POST["first_name"]) || !preg_match("/[A-Z][a-z]+/", $_POST["first_name"])) {
|
||||
throw new Exception("FIRSTNAME_INVALID_FORMAT");
|
||||
}
|
||||
if (!isset($_POST["last_name"]) || ! preg_match("/[A-Z][a-z]+/", $_POST["last_name"])) {
|
||||
if (!isset($_POST["last_name"]) || !preg_match("/[A-Z][a-z]+/", $_POST["last_name"])) {
|
||||
throw new Exception("SIRNAME_INVALID_FORMAT");
|
||||
}
|
||||
$first_name = filter_var($_POST["first_name"], FILTER_SANITIZE_STRING);
|
||||
@@ -92,21 +91,17 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
|
||||
|
||||
if (!isset($res["verify_token"])) {
|
||||
error_log("sth. went wrong. registration did not throw but admin_token not set");
|
||||
throw Exception ("Unknown Error");
|
||||
throw Exception("Unknown Error");
|
||||
}
|
||||
$verify_token = $res["verify_token"];
|
||||
|
||||
$verify_url = $config["webroot"] . "/verify.php?t=" . $verify_token;
|
||||
require_once "../mail_templates.php";
|
||||
$success = send_mail_pending_verification(
|
||||
$config["homeserver"],
|
||||
$storeFirstLastName ? $first_name . " " . $last_name : $username,
|
||||
$email,
|
||||
$verify_url);
|
||||
$config["homeserver"], $storeFirstLastName ? $first_name . " " . $last_name : $username, $email, $verify_url);
|
||||
|
||||
$mx_db->setRegistrationStateVerify(
|
||||
($success ? RegisterState::PendingEmailVerify : RegisterState::PendingEmailSend),
|
||||
$verify_token);
|
||||
($success ? RegisterState::PendingEmailVerify : RegisterState::PendingEmailSend), $verify_token);
|
||||
|
||||
print("<title>Erfolgreich</title>");
|
||||
print("</head><body>");
|
||||
@@ -126,26 +121,26 @@ if ($_SERVER["REQUEST_METHOD"] == "POST") {
|
||||
}
|
||||
} else {
|
||||
$_SESSION["token"] = bin2hex(random_bytes(16));
|
||||
?>
|
||||
?>
|
||||
<title>Registriere dich für <?php echo $config["homeserver"]; ?></title>
|
||||
<link href="//netdna.bootstrapcdn.com/bootstrap/3.1.0/css/bootstrap.min.css" rel="stylesheet">
|
||||
<style>
|
||||
body{
|
||||
body{
|
||||
background-color: #525252;
|
||||
}
|
||||
.centered-form{
|
||||
}
|
||||
.centered-form{
|
||||
margin-top: 60px;
|
||||
}
|
||||
}
|
||||
|
||||
.centered-form .panel{
|
||||
.centered-form .panel{
|
||||
background: rgba(255, 255, 255, 0.8);
|
||||
box-shadow: rgba(0, 0, 0, 0.3) 20px 20px 20px;
|
||||
}
|
||||
}
|
||||
</style>
|
||||
<script type="text/javascript" src="//code.jquery.com/jquery-1.11.1.min.js"></script>
|
||||
<script type="text/javascript" src="//netdna.bootstrapcdn.com/bootstrap/3.1.0/js/bootstrap.min.js"></script>
|
||||
</head>
|
||||
<body>
|
||||
</head>
|
||||
<body>
|
||||
<div class="container">
|
||||
<div class="row centered-form">
|
||||
<div class="col-xs-12 col-sm-8 col-md-4 col-sm-offset-2 col-md-offset-4">
|
||||
@@ -155,7 +150,7 @@ body{
|
||||
</div>
|
||||
<div class="panel-body">
|
||||
<form name="regForm" role="form" action="index.php" method="post">
|
||||
<?php if ($storeFirstLastName) { ?>
|
||||
<?php if ($storeFirstLastName) { ?>
|
||||
<div class="row">
|
||||
<div class="col-xs-6 col-sm-6 col-md-6">
|
||||
<div class="form-group">
|
||||
@@ -170,7 +165,7 @@ body{
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
<?php } ?>
|
||||
<?php } ?>
|
||||
|
||||
<div class="form-group">
|
||||
<input type="email" name="email" id="email" class="form-control input-sm" placeholder="E-Mail-Adresse" required>
|
||||
@@ -184,7 +179,7 @@ body{
|
||||
<input type="text" name="username" id="username" class="form-control input-sm"
|
||||
placeholder="Nutzername (für den Login)" pattern="[a-z1-9]{3,20}" required>
|
||||
</div>
|
||||
<?php if ($storePassword) { ?>
|
||||
<?php if ($storePassword) { ?>
|
||||
<div class="row">
|
||||
<div class="col-xs-6 col-sm-6 col-md-6">
|
||||
<div class="form-group">
|
||||
@@ -197,13 +192,13 @@ body{
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
<?php } ?>
|
||||
<?php } ?>
|
||||
<input type="hidden" name="token" id="token" value="<?php echo $_SESSION["token"]; ?>">
|
||||
<input type="submit" value="Registrieren" class="btn btn-info btn-block">
|
||||
|
||||
</form>
|
||||
<p>Hinweis: <br />
|
||||
<?php echo $config["homeserver"]; ?> ist ein geschlossenes Chat-Netzwerk in dem jeder Nutzer bestätigt werden muss.<br />
|
||||
<?php echo $config["homeserver"]; ?> ist ein geschlossenes Chat-Netzwerk in dem jeder Nutzer bestätigt werden muss.<br />
|
||||
Du bekommst eine E-Mail wenn jemand deine Mitgliedschaft bestätigt hat. An diese wird auch dein initiales Passwort gesendet.
|
||||
Hinterlasse also bitte einen Hinweis zu dir (der nur den entsprechenden Personen gezeigt wird).<br />
|
||||
Liebe Grüße vom Team von <?php echo $config["homeserver"]; ?>
|
||||
@@ -215,7 +210,7 @@ body{
|
||||
</div>
|
||||
<script type="text/javascript">
|
||||
var user_name = document.getElementById("username");
|
||||
user_name.oninvalid = function(event) {
|
||||
user_name.oninvalid = function (event) {
|
||||
event.target.setCustomValidity("Nutzername darf zwischen 3 und 20 kleine Buchstaben und Zahlen enthalten");
|
||||
}
|
||||
user_name.onkeyup = function (event) {
|
||||
@@ -223,24 +218,24 @@ body{
|
||||
}
|
||||
<?php if ($storeFirstLastName) { ?>
|
||||
var first_name = document.getElementById("first_name");
|
||||
first_name.oninvalid = function(event) {
|
||||
first_name.oninvalid = function (event) {
|
||||
event.target.setCustomValidity("Vorname muss das Format <Großbuchstabe><Kleinbuchstaben> haben");
|
||||
}
|
||||
first_name.onkeyup = function(event) {
|
||||
first_name.onkeyup = function (event) {
|
||||
event.target.setCustomValidity("");
|
||||
}
|
||||
var last_name = document.getElementById("last_name");
|
||||
last_name.oninvalid = function(event) {
|
||||
last_name.oninvalid = function (event) {
|
||||
event.target.setCustomValidity("Nachname muss das Format <Großbuchstabe><Kleinbuchstaben> haben");
|
||||
}
|
||||
last_name.onkeyup = function(event) {
|
||||
last_name.onkeyup = function (event) {
|
||||
event.target.setCustomValidity("");
|
||||
}
|
||||
<?php } if ($storePassword) { ?>
|
||||
var password = document.getElementById("password")
|
||||
, confirm_password = document.getElementById("password_confirm");
|
||||
function validatePassword(){
|
||||
if(password.value != confirm_password.value) {
|
||||
function validatePassword() {
|
||||
if (password.value != confirm_password.value) {
|
||||
confirm_password.setCustomValidity("Passwörter stimmen nicht überein");
|
||||
} else {
|
||||
confirm_password.setCustomValidity('');
|
||||
@@ -249,6 +244,6 @@ body{
|
||||
password.onchange = validatePassword;
|
||||
confirm_password.onkeyup = validatePassword;
|
||||
<?php } ?>
|
||||
</script>
|
||||
</script>
|
||||
<?php } ?>
|
||||
</body></html>
|
||||
</body></html>
|
||||
|
||||
@@ -23,7 +23,7 @@ require_once "../mail_templates.php";
|
||||
|
||||
// enforce admin via https
|
||||
if (!isset($_SERVER['HTTPS'])) {
|
||||
header('Location: https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'], true, 301);
|
||||
header('Location: https://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'], true, 301);
|
||||
exit();
|
||||
}
|
||||
|
||||
@@ -62,7 +62,7 @@ try {
|
||||
$mxMsg->set_formatted_body((strlen($first_name . $last_name) > 0 ? $first_name . " " . $last_name : $username)
|
||||
. " möchte sich registrieren und hat folgende Notiz hinterlassen:<br />"
|
||||
. $note . "<br />"
|
||||
. "Zum Bearbeiten <a href=\"". $adminUrl . "\">hier</a> klicken");
|
||||
. "Zum Bearbeiten <a href=\"" . $adminUrl . "\">hier</a> klicken");
|
||||
$mxMsg->set_type("m.text");
|
||||
$response = $mxConn->send($config["register_room"], $mxMsg);
|
||||
|
||||
@@ -70,8 +70,7 @@ try {
|
||||
$message = $language["SEND_MATRIX_FAIL"];
|
||||
}
|
||||
$mx_db->setRegistrationStateVerify(
|
||||
($response ? RegisterState::PendingAdminVerify : RegisterState::PendingAdminSend),
|
||||
$token);
|
||||
($response ? RegisterState::PendingAdminVerify : RegisterState::PendingAdminSend), $token);
|
||||
|
||||
send_mail_pending_approval($config["homeserver"], $first_name . " " . $last_name, $email);
|
||||
|
||||
|
||||
@@ -23,7 +23,7 @@ require_once "../mail_templates.php";
|
||||
|
||||
// enforce admin via https
|
||||
if (!isset($_SERVER['HTTPS'])) {
|
||||
header('Location: https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI'], true, 301);
|
||||
header('Location: https://' . $_SERVER['HTTP_HOST'] . $_SERVER['REQUEST_URI'], true, 301);
|
||||
exit();
|
||||
}
|
||||
|
||||
@@ -96,10 +96,7 @@ try {
|
||||
} elseif ($action == RegisterState::RegistrationDeclined) {
|
||||
$mx_db->setRegistrationStateAdmin(RegisterState::RegistrationDeclined, $token);
|
||||
send_mail_registration_decline(
|
||||
$config["homeserver"],
|
||||
strlen($first_name . $last_name) > 0 ? $first_name . " " . $last_name : $username,
|
||||
$email,
|
||||
$decline_reason
|
||||
$config["homeserver"], strlen($first_name . $last_name) > 0 ? $first_name . " " . $last_name : $username, $email, $decline_reason
|
||||
);
|
||||
print("<title>" . $language["ADMIN_VERIFY_SITE_TITLE"] . "</title>");
|
||||
print("</head><body>");
|
||||
@@ -119,7 +116,7 @@ try {
|
||||
}
|
||||
|
||||
.centered-form .panel{
|
||||
background: rgba(255, 255, 255, 0.8);
|
||||
background: rgba(255, 255, 255, 0.8);
|
||||
box-shadow: rgba(0, 0, 0, 0.3) 20px 20px 20px;
|
||||
}
|
||||
</style>
|
||||
@@ -132,12 +129,13 @@ background: rgba(255, 255, 255, 0.8);
|
||||
<div class="col-xs-12 col-sm-8 col-md-4 col-sm-offset-2 col-md-offset-4">
|
||||
<div class="panel panel-default">
|
||||
<div class="panel-heading">
|
||||
<h3 class="panel-title"><?php echo $language["ADMIN_VERIFY_SITE_TITLE"] ; ?></h3>
|
||||
<h3 class="panel-title"><?php echo $language["ADMIN_VERIFY_SITE_TITLE"]; ?></h3>
|
||||
</div>
|
||||
<div class="panel-body">
|
||||
<form name="appForm" role="form" action="verify_admin.php" method="GET">
|
||||
<?php if (isset($config["operationMode"]) && $config["operationMode"] === "local") {
|
||||
// this values will not be used when using the register operation type ?>
|
||||
<?php if (isset($config["operationMode"]) && $config["operationMode"] === "local") {
|
||||
// this values will not be used when using the register operation type
|
||||
?>
|
||||
<div class="row">
|
||||
<div class="col-xs-6 col-sm-6 col-md-6">
|
||||
<div class="form-group">
|
||||
@@ -152,7 +150,7 @@ background: rgba(255, 255, 255, 0.8);
|
||||
</div>
|
||||
</div>
|
||||
</div>
|
||||
<?php } ?>
|
||||
<?php } ?>
|
||||
<div class="form-group">
|
||||
<input type="text" id="note" class="form-control input-sm" value="<?php echo $note; ?>" disabled=true>
|
||||
</div>
|
||||
@@ -175,7 +173,7 @@ background: rgba(255, 255, 255, 0.8);
|
||||
|
||||
<?php
|
||||
} // else - no action provided
|
||||
} catch (Exception $e) {
|
||||
} catch (Exception $e) {
|
||||
print("<title>" . $language["REGISTRATION_FAILED"] . "</title>");
|
||||
print("</head><body>");
|
||||
print("<h1>" . $language["REGISTRATION_FAILED"] . "</h1>");
|
||||
@@ -185,7 +183,7 @@ background: rgba(255, 255, 255, 0.8);
|
||||
print("<p>" . $e->getMessage() . "</p>");
|
||||
}
|
||||
print("<a href=\"" . $config["webroot"] . "/index.php" . "\">Zur Registrierungsseite</a>");
|
||||
}
|
||||
?>
|
||||
</body>
|
||||
</html>
|
||||
}
|
||||
?>
|
||||
< /body>
|
||||
</html>
|
||||
|
||||
Reference in New Issue
Block a user