WebSVN – LeadersLinked - Services – Diff – /module/LeadersLinked/src/Controller/AuthController.php

     public function resetPasswordAction()
+    {
         $currentNetworkPlugin = $this->plugin('currentNetworkPlugin');
         $currentNetwork  = $currentNetworkPlugin->getNetwork();
         $code =  Functions::sanitizeFilterString($this->params()->fromRoute('code', ''));
+        $userMapper = UserMapper::getInstance($this->adapter);
-        $userMapper = UserMapper::getInstance($this->adapter);
+        $user = $userMapper->fetchOneByPasswordResetKeyAndNetworkId($code, $currentNetwork->id);
         $user = $userMapper->fetchOneByPasswordResetKeyAndNetworkId($code, $currentNetwork->id);
         if (!$user) {
             $this->logger->err('Restablecer contraseña - Error código no existe', ['ip' => Functions::getUserIP()]);
             return new JsonModel([
                 'success'   => false,
-                'data'      => 'ERROR_PASSWORD_RECOVER_CODE_IS_INVALID'
-            ]);
                 'data'      => 'ERROR_PASSWORD_RECOVER_CODE_IS_INVALID'
             ]);
+        }
         $password_generated_on = strtotime($user->password_generated_on);
         $expiry_time = $password_generated_on + $this->config['leaderslinked.security.reset_password_expired'];
         if (time() > $expiry_time) {
-            $this->logger->err('Restablecer contraseña - Error código expirado', ['ip' => Functions::getUserIP()]);
+        if (time() > $expiry_time) {
             $this->logger->err('Restablecer contraseña - Error código expirado', ['ip' => Functions::getUserIP()]);
             return new JsonModel([
+                'success'   => false,
-                'success'   => false,
+                'data'      => 'ERROR_PASSWORD_RECOVER_CODE_HAS_EXPIRED'
-                'data'      => 'ERROR_PASSWORD_RECOVER_CODE_HAS_EXPIRED'
+            ]);
+        }
             ]);
         $request = $this->getRequest();
-        $request = $this->getRequest();
+        if ($request->isPost()) {
-        if ($request->isPost()) {
+            $dataPost = $request->getPost()->toArray();
-            $dataPost = $request->getPost()->toArray();
-            if (empty($_SESSION['aes'])) {
                 return new JsonModel([
-                    'success'   => false,
+            if (empty($_SESSION['aes'])) {
-                    'data'      => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'
+                return new JsonModel([
-                ]);
+                    'success'   => false,
+                    'data'      => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'
                 ]);
+            }
-            if (!empty($dataPost['password'])) {
-                $dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);
+            if (!empty($dataPost['password'])) {
                 $dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);
             if (!empty($dataPost['confirmation'])) {
                 $dataPost['confirmation'] = CryptoJsAes::decrypt($dataPost['confirmation'], $_SESSION['aes']);
             if (!empty($dataPost['confirmation'])) {
                 $dataPost['confirmation'] = CryptoJsAes::decrypt($dataPost['confirmation'], $_SESSION['aes']);
+            }
             $form = new ResetPasswordForm($this->config);
-            $form->setData($dataPost);
+            $form = new ResetPasswordForm($this->config);
     public function forgotPasswordAction()
+    {
         $currentNetworkPlugin = $this->plugin('currentNetworkPlugin');
         $currentNetwork  = $currentNetworkPlugin->getNetwork();
+        $request = $this->getRequest();
+        if ($request->isGet()) {
+            if (empty($_SESSION['aes'])) {
+                $_SESSION['aes'] = Functions::generatePassword(16);
+            }
+            $site_key = $this->config['leaderslinked.runmode.sandbox']
+            ? $this->config['leaderslinked.google_captcha.sandbox_site_key']
+            : $this->config['leaderslinked.google_captcha.production_site_key'];
+            return new JsonModel([
+                'site_key'  => $site_key,
+                'aes'       => $_SESSION['aes'],
+                'defaultNetwork' => $currentNetwork->default,
             ]);
+        }
-        $request = $this->getRequest();
+        if ($request->isPost()) {
-        if ($request->isPost()) {
+            $dataPost = $request->getPost()->toArray();
             $dataPost = $request->getPost()->toArray();
             if (empty($_SESSION['aes'])) {
                 return new JsonModel([
+            }
             $form = new ForgotPasswordForm($this->config);
             $form->setData($dataPost);
-            if ($form->isValid()) {
-                $dataPost = (array) $form->getData();
-                $email      = $dataPost['email'];
-                $userMapper = UserMapper::getInstance($this->adapter);
-                $user = $userMapper->fetchOneByEmailAndNetworkId($email, $currentNetwork->id);
-                if (!$user) {
-                    $this->logger->err('Olvidó contraseña ' . $email . '- Email no existe ', ['ip' => Functions::getUserIP()]);
-                    return new JsonModel([
-                        'success' => false,
-                        'data' =>  'ERROR_EMAIL_IS_NOT_REGISTERED'
-                    ]);
-                } else {
-                    if ($user->status == User::STATUS_INACTIVE) {
-                        return new JsonModel([
-                            'success' => false,
-                            'data' =>  'ERROR_USER_IS_INACTIVE'
-                        ]);
-                    } else if ($user->email_verified == User::EMAIL_VERIFIED_NO) {
-                        $this->logger->err('Olvidó contraseña - Email no verificado ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);
-                        return new JsonModel([
-                            'success' => false,
-                            'data' => 'ERROR_EMAIL_HAS_NOT_BEEN_VERIFIED'
-                        ]);
-                    } else {
-                        $password_reset_key = md5($user->email . time());
-                        $userMapper->updatePasswordResetKey((int) $user->id, $password_reset_key);
-                        $emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);
-                        $emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_RESET_PASSWORD, $currentNetwork->id);
-                        if ($emailTemplate) {
-                            $arrayCont = [
-                                'firstname'             => $user->first_name,
-                                'lastname'              => $user->last_name,
-                                'other_user_firstname'  => '',
-                                'other_user_lastname'   => '',
-                                'company_name'          => '',
-                                'group_name'            => '',
-                                'content'               => '',
-                                'code'                  => '',
-                                'link'                  => $this->url()->fromRoute('reset-password', ['code' => $password_reset_key], ['force_canonical' => true])
-                            ];
-                            $email = new QueueEmail($this->adapter);
-                            $email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name));
-                        }
-                        $this->logger->info('Olvidó contraseña - Se envio link de recuperación ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);
-                        return new JsonModel([
-                            'success' => true,
-                            'data' => 'LABEL_RECOVERY_LINK_WAS_SENT_TO_YOUR_EMAIL'
-                        ]);
-                    }
-                }
-            } else {
-                $form_messages =  $form->getMessages('captcha');
             if (!$form->isValid()){
                 $form_messages =  $form->getMessages('captcha');
                 if (!empty($form_messages)) {
                     return new JsonModel([
                 return new JsonModel([
                     'success'   => false,
                     'data'      => $messages
                 ]);
+            }
-        } else  if ($request->isGet()) {
+            $dataPost = (array) $form->getData();
+            $email      = $dataPost['email'];
+            $userMapper = UserMapper::getInstance($this->adapter);
+            $user = $userMapper->fetchOneByEmailAndNetworkId($email, $currentNetwork->id);
+            if (!$user) {
+                $this->logger->err('Olvidó contraseña ' . $email . '- Email no existe ', ['ip' => Functions::getUserIP()]);
+                return new JsonModel([
-            if (empty($_SESSION['aes'])) {
+                    'success' => false,
+                    'data' =>  'ERROR_EMAIL_IS_NOT_REGISTERED'
-                $_SESSION['aes'] = Functions::generatePassword(16);
+                ]);
+            }
+            if ($user->status == User::STATUS_INACTIVE) {
+                return new JsonModel([
+                    'success' => false,
+                    'data' =>  'ERROR_USER_IS_INACTIVE'
+                ]);
             }
+            if ($user->email_verified == User::EMAIL_VERIFIED_NO) {
+                $this->logger->err('Olvidó contraseña - Email no verificado ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);
+                return new JsonModel([
+                    'success' => false,
+                    'data' => 'ERROR_EMAIL_HAS_NOT_BEEN_VERIFIED'
+                ]);
+            }
+            $password_reset_key = md5($user->email . time());
+            $userMapper->updatePasswordResetKey((int) $user->id, $password_reset_key);
+            $emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);
+            $emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_RESET_PASSWORD, $currentNetwork->id);
+            if (!$emailTemplate) {
+                $this->logger->err('Olvidó contraseña - Email template no existe ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);
+                return new JsonModel([
-            if ($this->config['leaderslinked.runmode.sandbox']) {
+                    'success' => false,
+                    'data' => 'ERROR_EMAIL_TEMPLATE_NOT_FOUND'
+                ]);
+            }
+            $arrayCont = [
+                'firstname'             => $user->first_name,
+                'lastname'              => $user->last_name,
+                'other_user_firstname'  => '',
+                'other_user_lastname'   => '',
+                'company_name'          => '',
+                'group_name'            => '',
-                $site_key      = $this->config['leaderslinked.google_captcha.sandbox_site_key'];
+                'content'               => '',
+                'code'                  => '',
+                'link'                  => $this->url()->fromRoute('reset-password', ['code' => $password_reset_key], ['force_canonical' => true])
+            ];
+            $email = new QueueEmail($this->adapter);
+            if (!$email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name))) {
+                $this->logger->err('Olvidó contraseña - Error al enviar email ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);
+                return new JsonModel([
+                    'success' => false,
-            } else {
+                    'data' => 'ERROR_EMAIL_NOT_SENT'
+                ]);
+            }
                 $site_key      = $this->config['leaderslinked.google_captcha.production_site_key'];
-            }
+            $this->logger->info('Olvidó contraseña - Se envio link de recuperación ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);
-            return new JsonModel([
-                'site_key'  => $site_key,
+            return new JsonModel([
-                'aes'       => $_SESSION['aes'],
+                'success' => true,
-                'defaultNetwork' => $currentNetwork->default,
+                'data' => 'LABEL_RECOVERY_LINK_WAS_SENT_TO_YOUR_EMAIL'
             ]);

Proyectos de Subversion LeadersLinked - Services

(root)/module/LeadersLinked/src/Controller/AuthController.php – Rev 385 → 605