boinc/html/user/edit_action.php

<?php

    require_once("util.inc");
    require_once("user.inc");
    require_once("db.inc");
    require_once("edit.inc");

    $authenticator = init_session();
    db_init();
    $user = get_user_from_auth($authenticator);
    require_login($user);

    page_head("Updating User Account");
    $my_email = $HTTP_POST_VARS["my_email"];
    $my_name = $HTTP_POST_VARS["my_name"];
    $my_country = $HTTP_POST_VARS["my_country"];
    $my_zip = $HTTP_POST_VARS["my_zip"];

    // TODO: we need to keep track of whether email addresses
    // have been verified or not (i.e. whether we ever got back
    // the authenticator, either via web or from core client)
    // The right was to do this is to add a "email_verified"
    // flag to the user structure.
    // Also, email need not be unique.

    if (strlen($my_email)) {
        $query = sprintf("select * from user where email_addr='%s'", $my_email);
        $result = mysql_query($query);
        if ($result) {
            $old = mysql_fetch_object($result);
            mysql_free_result($result);
        }

        if ($old) {
            $email_ok = EMAIL_EXISTS;
        } else {
            srand((double)microtime*1000000);
            $new_pass = rand();
            $query = sprintf("update user set email_addr='%s', web_password ='%s' where id=%d", $my_email, $new_pass, $user->id);
            $result = mysql_query($query);
            if ($result) {
                $email_ok = EMAIL_UPDATED;
                mail($my_email, "NEW PASSWORD", "Your new temporary password is ".$new_pass.".\n\n"
                    ."You must use it as your password to access your account the next time you login."
                    ." Thereafter, you can change your password by clicking on the CHANGE PASSWORD link in your" 
                    ." Project User Page and use the changed password as your new permanent password.\n"
                );
            } else {
                $email_ok = EMAIL_FAIL;
            }
        }
    }

    if (strlen($my_name) && strlen($my_country) && strlen($my_zip)) {
        $query = sprintf("update user set name='%s', country='%s',  postal_code=%d where id=%d", $my_name, $my_country, $my_zip, $user->id);
        $result = mysql_query($query);
        if($result) {
            print_update_ok($email_ok);
        } else {
            print_update_fail($email_ok);
        }
    } else if (strlen($my_name) && strlen($my_country)) {
        $query = sprintf("update user set name='%s', country='%s' where id=%d", $my_name, $my_country, $user->id); 
        $result = mysql_query($query);
        if($result) {
            print_update_ok($email_ok);
        } else {
            print_update_fail($email_ok);
        }
    } else if (strlen($my_country) && strlen($my_zip)) { 
       $query = sprintf("update user set country='%s', postal_code='%s' where id=%d", $my_country, $my_zip, $user->id);
       $result = mysql_query($query);
       if($result) {
            print_update_ok($email_ok);
       } else {
            print_update_fail($email_ok); 
       }
    } else if (strlen($my_name) && strlen($my_zip)) {
       $query = sprintf("update user set name='%s', postal_code=%d where id=%d", $my_name, $my_zip, $user->id);  
       $result = mysql_query($query);
       if($result) {
            print_update_ok($email_ok);
       } else {
            print_update_fail($email_ok);
       }
    } else if (strlen($my_name)) {
       $query = sprintf("update user set name='%s' where id=%d", $my_name, $user->id);  
       $result = mysql_query($query);
       if($result) {
            print_update_ok($email_ok);
       } else {
            print_update_fail($email_ok);
       }

    } else if (strlen($my_country)) {
       $query = sprintf("update user set country='%s' where id=%d", $my_country, $user->id);  
       $result = mysql_query($query);
       if($result) {
            print_update_ok($email_ok);
       } else {
            print_update_fail($email_ok);
       }

    } else if (strlen($my_zip)) {
       $query = sprintf("update user set postal_code='%s' where id=%d", $my_zip, $user->id);
       $result = mysql_query($query);
       if($result) {
            print_update_ok($email_ok);
       } else {
            print_update_fail($email_ok);
       }
    }
    page_tail();

?>
added edit.inc, edit_action.php, edit_user_info.php svn path=/trunk/boinc/; revision=293 2002-08-12 19:46:52 +00:00			`<?php`

added secure email update - new password sent to new email address to verify. can change password after login. svn path=/trunk/boinc/; revision=311 2002-08-13 00:08:08 +00:00			`require_once("util.inc");`
			`require_once("user.inc");`
			`require_once("db.inc");`
			`require_once("edit.inc");`

PHP session mechanism svn path=/trunk/boinc/; revision=681 2002-12-04 19:14:00 +00:00			`$authenticator = init_session();`
resolved some conflicts. svn path=/trunk/boinc/; revision=409 2002-09-05 22:19:23 +00:00			`db_init();`
PHP session mechanism svn path=/trunk/boinc/; revision=681 2002-12-04 19:14:00 +00:00			`$user = get_user_from_auth($authenticator);`
check for team and user login svn path=/trunk/boinc/; revision=747 2002-12-16 21:41:41 +00:00			`require_login($user);`
added edit.inc, edit_action.php, edit_user_info.php svn path=/trunk/boinc/; revision=293 2002-08-12 19:46:52 +00:00
added secure email update - new password sent to new email address to verify. can change password after login. svn path=/trunk/boinc/; revision=311 2002-08-13 00:08:08 +00:00			`page_head("Updating User Account");`
docs svn path=/trunk/boinc/; revision=601 2002-11-12 17:01:16 +00:00			`$my_email = $HTTP_POST_VARS["my_email"];`
			`$my_name = $HTTP_POST_VARS["my_name"];`
			`$my_country = $HTTP_POST_VARS["my_country"];`
			`$my_zip = $HTTP_POST_VARS["my_zip"];`
added secure email update - new password sent to new email address to verify. can change password after login. svn path=/trunk/boinc/; revision=311 2002-08-13 00:08:08 +00:00
edit account info svn path=/trunk/boinc/; revision=778 2002-12-19 18:08:43 +00:00			`// TODO: we need to keep track of whether email addresses`
			`// have been verified or not (i.e. whether we ever got back`
			`// the authenticator, either via web or from core client)`
			`// The right was to do this is to add a "email_verified"`
			`// flag to the user structure.`
			`// Also, email need not be unique.`
added secure email update - new password sent to new email address to verify. can change password after login. svn path=/trunk/boinc/; revision=311 2002-08-13 00:08:08 +00:00
docs svn path=/trunk/boinc/; revision=601 2002-11-12 17:01:16 +00:00			`if (strlen($my_email)) {`
			`$query = sprintf("select * from user where email_addr='%s'", $my_email);`
			`$result = mysql_query($query);`
			`if ($result) {`
			`$old = mysql_fetch_object($result);`
			`mysql_free_result($result);`
			`}`
added edit.inc, edit_action.php, edit_user_info.php svn path=/trunk/boinc/; revision=293 2002-08-12 19:46:52 +00:00
docs svn path=/trunk/boinc/; revision=601 2002-11-12 17:01:16 +00:00			`if ($old) {`
			`$email_ok = EMAIL_EXISTS;`
			`} else {`
			`srand((double)microtime*1000000);`
			`$new_pass = rand();`
			`$query = sprintf("update user set email_addr='%s', web_password ='%s' where id=%d", $my_email, $new_pass, $user->id);`
added edit.inc, edit_action.php, edit_user_info.php svn path=/trunk/boinc/; revision=293 2002-08-12 19:46:52 +00:00			`$result = mysql_query($query);`
docs svn path=/trunk/boinc/; revision=601 2002-11-12 17:01:16 +00:00			`if ($result) {`
			`$email_ok = EMAIL_UPDATED;`
			`mail($my_email, "NEW PASSWORD", "Your new temporary password is ".$new_pass.".\n\n"`
			`."You must use it as your password to access your account the next time you login."`
			`." Thereafter, you can change your password by clicking on the CHANGE PASSWORD link in your"`
			`." Project User Page and use the changed password as your new permanent password.\n"`
			`);`
added edit.inc, edit_action.php, edit_user_info.php svn path=/trunk/boinc/; revision=293 2002-08-12 19:46:52 +00:00			`} else {`
docs svn path=/trunk/boinc/; revision=601 2002-11-12 17:01:16 +00:00			`$email_ok = EMAIL_FAIL;`
			`}`
			`}`
			`}`

			`if (strlen($my_name) && strlen($my_country) && strlen($my_zip)) {`
			`$query = sprintf("update user set name='%s', country='%s', postal_code=%d where id=%d", $my_name, $my_country, $my_zip, $user->id);`
			`$result = mysql_query($query);`
			`if($result) {`
			`print_update_ok($email_ok);`
			`} else {`
			`print_update_fail($email_ok);`
			`}`
			`} else if (strlen($my_name) && strlen($my_country)) {`
			`$query = sprintf("update user set name='%s', country='%s' where id=%d", $my_name, $my_country, $user->id);`
			`$result = mysql_query($query);`
			`if($result) {`
			`print_update_ok($email_ok);`
			`} else {`
			`print_update_fail($email_ok);`
			`}`
			`} else if (strlen($my_country) && strlen($my_zip)) {`
			`$query = sprintf("update user set country='%s', postal_code='%s' where id=%d", $my_country, $my_zip, $user->id);`
			`$result = mysql_query($query);`
			`if($result) {`
			`print_update_ok($email_ok);`
			`} else {`
			`print_update_fail($email_ok);`
			`}`
			`} else if (strlen($my_name) && strlen($my_zip)) {`
			`$query = sprintf("update user set name='%s', postal_code=%d where id=%d", $my_name, $my_zip, $user->id);`
			`$result = mysql_query($query);`
			`if($result) {`
			`print_update_ok($email_ok);`
			`} else {`
			`print_update_fail($email_ok);`
			`}`
			`} else if (strlen($my_name)) {`
			`$query = sprintf("update user set name='%s' where id=%d", $my_name, $user->id);`
			`$result = mysql_query($query);`
			`if($result) {`
			`print_update_ok($email_ok);`
			`} else {`
			`print_update_fail($email_ok);`
			`}`

			`} else if (strlen($my_country)) {`
			`$query = sprintf("update user set country='%s' where id=%d", $my_country, $user->id);`
			`$result = mysql_query($query);`
			`if($result) {`
			`print_update_ok($email_ok);`
			`} else {`
			`print_update_fail($email_ok);`
			`}`
added edit.inc, edit_action.php, edit_user_info.php svn path=/trunk/boinc/; revision=293 2002-08-12 19:46:52 +00:00
docs svn path=/trunk/boinc/; revision=601 2002-11-12 17:01:16 +00:00			`} else if (strlen($my_zip)) {`
			`$query = sprintf("update user set postal_code='%s' where id=%d", $my_zip, $user->id);`
			`$result = mysql_query($query);`
			`if($result) {`
			`print_update_ok($email_ok);`
			`} else {`
			`print_update_fail($email_ok);`
			`}`
added secure email update - new password sent to new email address to verify. can change password after login. svn path=/trunk/boinc/; revision=311 2002-08-13 00:08:08 +00:00			`}`
			`page_tail();`
added edit.inc, edit_action.php, edit_user_info.php svn path=/trunk/boinc/; revision=293 2002-08-12 19:46:52 +00:00
added secure email update - new password sent to new email address to verify. can change password after login. svn path=/trunk/boinc/; revision=311 2002-08-13 00:08:08 +00:00			`?>`