Dax/RaspiStream
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity
master
RaspiStream/var/www/ide/components/user/controller.php
Dax a996955027 1.1.0.0
2017-05-19 12:09:07 +02:00

149 lines
4.6 KiB
PHP
Executable File
Raw Permalink Blame History

<?php
/*
* Copyright (c) Codiad & Kent Safranski (codiad.com), distributed
* as-is and without warranty under the MIT License. See
* [root]/license.txt for more. This information must remain intact.
*/
require_once('../../common.php');
require_once('class.user.php');
if(!isset($_GET['action'])){
die(formatJSEND("error","Missing parameter"));
}
//////////////////////////////////////////////////////////////////
// Verify Session or Key
//////////////////////////////////////////////////////////////////
if($_GET['action']!='authenticate'){ checkSession(); }
$User = new User();
//////////////////////////////////////////////////////////////////
// Authenticate
//////////////////////////////////////////////////////////////////
if($_GET['action']=='authenticate'){
if(!isset($_POST['username']) || !isset($_POST['password'])){
die(formatJSEND("error","Missing username or password"));
}
$User->username = $_POST['username'];
$User->password = $_POST['password'];
// check if the asked languages exist and is registered in languages/code.php
require_once '../../languages/code.php';
if ( isset( $languages[ $_POST['language'] ] ) )
$User->lang = $_POST['language'];
else
$User->lang = 'en';
// theme
$User->theme = $_POST['theme'];
$User->Authenticate();
}
//////////////////////////////////////////////////////////////////
// Logout
//////////////////////////////////////////////////////////////////
if($_GET['action']=='logout'){
session_unset(); session_destroy(); session_start();
}
//////////////////////////////////////////////////////////////////
// Create User
//////////////////////////////////////////////////////////////////
if($_GET['action']=='create'){
if(checkAccess()) {
if(!isset($_POST['username']) || !isset($_POST['password'])){
die(formatJSEND("error","Missing username or password"));
}
$User->username = User::CleanUsername( $_POST['username'] );
$User->password = $_POST['password'];
$User->Create();
}
}
//////////////////////////////////////////////////////////////////
// Delete User
//////////////////////////////////////////////////////////////////
if($_GET['action']=='delete'){
if(checkAccess()) {
if(!isset($_GET['username'])){
die(formatJSEND("error","Missing username"));
}
$User->username = $_GET['username'];
$User->Delete();
}
}
//////////////////////////////////////////////////////////////////
// Set Project Access
//////////////////////////////////////////////////////////////////
if($_GET['action']=='project_access'){
if(checkAccess()) {
if(!isset($_GET['username'])){
die(formatJSEND("error","Missing username"));
}
$User->username = $_GET['username'];
//No project selected
if(isset($_POST['projects'])){
$User->projects = $_POST['projects'];
}else{
$User->projects = array();
}
$User->Project_Access();
}
}
//////////////////////////////////////////////////////////////////
// Change Password
//////////////////////////////////////////////////////////////////
if($_GET['action']=='password'){
if(!isset($_POST['username']) || !isset($_POST['password'])){
die(formatJSEND("error","Missing username or password"));
}
if(checkAccess() || $_POST['username'] == $_SESSION['user']) {
$User->username = $_POST['username'];
$User->password = $_POST['password'];
$User->Password();
}
}
//////////////////////////////////////////////////////////////////
// Change Project
//////////////////////////////////////////////////////////////////
if($_GET['action']=='project'){
if(!isset($_GET['project'])){
die(formatJSEND("error","Missing project"));
}
$User->username = $_SESSION['user'];
$User->project = $_GET['project'];
$User->Project();
}
//////////////////////////////////////////////////////////////////
// Verify User Account
//////////////////////////////////////////////////////////////////
if($_GET['action']=='verify'){
$User->username = $_SESSION['user'];
$User->Verify();
}
?>
Reference in New Issue View Git Blame Copy Permalink