cvm/frontend/classes/class.user.php

<?php
/*
 * CVM is more free software. It is licensed under the WTFPL, which
 * allows you to do pretty much anything with it, without having to
 * ask permission. Commercial use is allowed, and no attribution is
 * required. We do politely request that you share your modifications
 * to benefit other developers, but you are under no enforced
 * obligation to do so :)
 * 
 * Please read the accompanying LICENSE document for the full WTFPL
 * licensing text.
 */
 
if(!isset($_CVM)) { die("Unauthorized."); }

class User extends CPHPDatabaseRecordClass
{
	public $table_name = "users";
	public $fill_query = "SELECT * FROM users WHERE `Id` = :Id";
	public $verify_query = "SELECT * FROM users WHERE `Id` = :Id";
	
	public $prototype = array(
		'string' => array(
			'Username'	=> "Username",
			'EmailAddress'	=> "EmailAddress",
			'Hash'		=> "Hash",
			'Salt'		=> "Salt"
		),
		'numeric' => array(
			'AccessLevel'	=> "AccessLevel"
		)
	);
	
	public $prototype_export = array(
		'Username',
		'EmailAddress',
		'AccessLevel'
	);
	
	public function __get($name)
	{
		switch($name)
		{
			case "sContainerCount":
				return $this->GetContainerCount();
				break;
			default:
				return parent::__get($name);
				break;
		}
	}
	
	public function GetContainerCount()
	{
		if($result = mysql_query_cached("SELECT * FROM containers WHERE `UserId` = '{$this->sId}'"))
		{
			return count($result->data);
		}
		else
		{
			return 0;
		}
	}
	
	public function GenerateSalt()
	{
		$this->uSalt = random_string(10);
	}
	
	public function GenerateHash()
	{
		if(!empty($this->uSalt))
		{
			if(!empty($this->uPassword))
			{
				$this->uHash = $this->CreateHash($this->uPassword);
			}
			else
			{
				throw new MissingDataException("User object is missing a password.");
			}
		}
		else
		{
			throw new MissingDataException("User object is missing a salt.");
		}
	}
	
	public function CreateHash($input)
	{
		global $settings;
		$hash = crypt($input, "$5\$rounds=50000\${$this->uSalt}{$settings['salt']}$");
		$parts = explode("$", $hash);
		return $parts[4];
	}
	
	public function VerifyPassword($password)
	{
		if($this->CreateHash($password) == $this->sHash)
		{
			return true;
		}
		else
		{
			return false;
		}
	}
	
	public function RequireAccessLevel($level)
	{
		if($this->sAccessLevel < $level)
		{
			throw new InsufficientAccessLevelException("You do not have the required access level to perform this action.");
		}
		else
		{
			return true;
		}
	}
}
Added user class 13 years ago			`<?php`
			`/*`
			`* CVM is more free software. It is licensed under the WTFPL, which`
			`* allows you to do pretty much anything with it, without having to`
			`* ask permission. Commercial use is allowed, and no attribution is`
			`* required. We do politely request that you share your modifications`
			`* to benefit other developers, but you are under no enforced`
			`* obligation to do so :)`
			`*`
			`* Please read the accompanying LICENSE document for the full WTFPL`
			`* licensing text.`
			`*/`

			`if(!isset($_CVM)) { die("Unauthorized."); }`

			`class User extends CPHPDatabaseRecordClass`
			`{`
			`public $table_name = "users";`
Use most recent version of CPHP 12 years ago			public $fill_query = "SELECT * FROM users WHERE `Id` = :Id";
			public $verify_query = "SELECT * FROM users WHERE `Id` = :Id";
Added user class 13 years ago
			`public $prototype = array(`
			`'string' => array(`
			`'Username' => "Username",`
			`'EmailAddress' => "EmailAddress",`
			`'Hash' => "Hash",`
			`'Salt' => "Salt"`
			`),`
			`'numeric' => array(`
			`'AccessLevel' => "AccessLevel"`
			`)`
			`);`

Added user overview 13 years ago			`public $prototype_export = array(`
			`'Username',`
			`'EmailAddress',`
			`'AccessLevel'`
			`);`

Add user lookup page 13 years ago			`public function __get($name)`
			`{`
			`switch($name)`
			`{`
			`case "sContainerCount":`
			`return $this->GetContainerCount();`
			`break;`
			`default:`
Use most recent version of CPHP 12 years ago			`return parent::__get($name);`
Add user lookup page 13 years ago			`break;`
			`}`
			`}`

			`public function GetContainerCount()`
			`{`
			if($result = mysql_query_cached("SELECT * FROM containers WHERE `UserId` = '{$this->sId}'"))
			`{`
			`return count($result->data);`
			`}`
			`else`
			`{`
			`return 0;`
			`}`
			`}`

Added user class 13 years ago			`public function GenerateSalt()`
			`{`
			`$this->uSalt = random_string(10);`
			`}`

			`public function GenerateHash()`
			`{`
			`if(!empty($this->uSalt))`
			`{`
			`if(!empty($this->uPassword))`
			`{`
			`$this->uHash = $this->CreateHash($this->uPassword);`
			`}`
			`else`
			`{`
			`throw new MissingDataException("User object is missing a password.");`
			`}`
			`}`
			`else`
			`{`
			`throw new MissingDataException("User object is missing a salt.");`
			`}`
			`}`

			`public function CreateHash($input)`
			`{`
			`global $settings;`
			`$hash = crypt($input, "$5\$rounds=50000\${$this->uSalt}{$settings['salt']}$");`
			`$parts = explode("$", $hash);`
			`return $parts[4];`
			`}`

			`public function VerifyPassword($password)`
			`{`
			`if($this->CreateHash($password) == $this->sHash)`
			`{`
			`return true;`
			`}`
			`else`
			`{`
			`return false;`
			`}`
			`}`
Added User::RequireAccessLevel function 13 years ago
			`public function RequireAccessLevel($level)`
			`{`
			`if($this->sAccessLevel < $level)`
			`{`
			`throw new InsufficientAccessLevelException("You do not have the required access level to perform this action.");`
			`}`
			`else`
			`{`
			`return true;`
			`}`
			`}`
Added user class 13 years ago			`}`