X-Git-Url: http://git.shiar.nl/minimedit.git/blobdiff_plain/0502435b8ece6ef814199b354696407d188151aa..v3.4-14-g970fb1d1b9:/login/edit.php diff --git a/login/edit.php b/login/edit.php index 7ebe7b9..4a2e6f4 100644 --- a/login/edit.php +++ b/login/edit.php @@ -1,37 +1,299 @@ "profile/$username", + 'name' => $username, + ]; +} + +$cols = [ + 'name' => [ + 'label' => 'volledige naam', + 'explain' => "Alleen zichtbaar voor andere leden.", + 'filter' => ["\n", '; '], + 'size' => 30, + 'filename' => 'name.txt', + ], + 'email' => [ + 'label' => 'e-mailadres', + 'type' => 'email', + 'explain' => "Voor contact van of met deze site. Wij zullen dit nooit vrij- of doorgeven.", + 'size' => 30, + 'filename' => 'email.txt', + ], + 'avatar' => [ + 'label' => 'portretfoto', + 'type' => 'file', + 'filename' => 'avatar.jpg', + ], + 'tags' => [ + 'label' => 'groepen', + 'values' => [], + 'filename' => 'profile/.tags', + ], +]; -if ($_POST and isset($_POST['email'])) { - if ($error = setmailform($_POST)) { - print "

$error

\n\n"; +foreach ($cols as $col => &$colconf) { + if (!isset($colconf['filename'])) { + continue; # exceptional storage } - else { - print "

Het e-mailadres is ingesteld.

\n\n"; + + if (isset($colconf['values'])) { + if (!file_exists($colconf['filename'])) { + continue; + #TODO: drop key + } + $tags = []; + foreach (glob($colconf['filename'] . '/*') as $tag) { + $tagname = pathinfo($tag, PATHINFO_BASENAME); + $target = "$tag/{$user['name']}"; + $val = file_exists($target); + $tags[$tagname] = ['value' => $val]; + if (empty($User['admin'])) { + continue; # forbidden + } + if (!is_writable($tag)) { + continue; # locked tag directory + } + if ($val and !is_writable($target)) { + continue; # existing file locked + } + $tags[$tagname]['target'] = $target; + } + } + + $filetype = @$colconf['type'] == 'file' ? 'jpg' : 'txt'; + $colpath = $user['dir'] . '/' . $colconf['filename']; + if (file_exists($colpath)) { + $colconf['value'] = $filetype != 'txt' ? '' : + file_get_contents($colpath); + } + if (file_exists($user['dir']) and !is_writable($user['dir'])) { + continue; # locked parent directory + } + if (isset($colconf['value']) and !is_writable($colpath)) { + continue; # locked column file } + $colconf['target'] = $colpath; # editing allowed } -function setmailform($input = []) -{ - global $User; - $setfile = "{$User['dir']}/email.txt"; - if (!is_writable(file_exists($setfile) ? $setfile : dirname($setfile))) { - return "Het e-mailadres kan niet worden aangepast voor deze gebruiker."; +$cols = [ + 'username' => [ + 'label' => 'login', + 'value' => $user['name'], + 'target' => NULL, + 'pattern' => "[a-z0-9-]+", + 'size' => 10, + ], +] + $cols; + +if (isset($user['pass'])) { + $cols['newpass'] = [ + 'label' => 'wachtwoord', + 'input' => <<<'EOT' + + + +EOT + , + 'hide' => 'pass', + ]; +} + +$colwarn = []; +if ($_POST) { + if (!file_exists($user['dir']) and !@mkdir($user['dir'])) { + print "

Fout bij het aanmaken van gebruikersprofiel voor {$user['name']}.

\n\n"; + return; } - if (!file_put_contents($setfile, @$_POST['email'])) { - return "Het e-mailadres kon niet worden opgeslagen. Probeer het later nog eens."; + + foreach ($_POST as $col => $val) { + if (!isset($cols[$col])) { + continue; # unknown + } + if (isset($cols[$col]['values'])) { + $optwarn = []; + foreach ($val as $optcol => $optval) { + $option = &$cols[$col]['values'][$optcol]; + if (!isset($option['target'])) { + $optok = FALSE; # forbidden + } + if ($option['value'] === !empty($optval)) { + continue; # unaltered + } + elseif (empty($optval)) { + $optok = @unlink($option['target']); + } + else { + # link option target to current user dir + $optok = @symlink("../../{$user['name']}", $option['target']); + } + $option['value'] = $optval; # update form value + if (!$optok) { + $optwarn[$optcol] = TRUE; + } + } + if ($optwarn) { + $colwarn[$col] = "Wijziging niet opgeslagen voor " + . implode(', ', array_keys($optwarn)); + } + continue; + } + + if (isset($cols[$col]['filter'])) { + list ($targetstr, $inputstr) = $cols[$col]['filter']; + $val = str_replace($inputstr, $targetstr, $val); + } + if (isset($cols[$col]['value']) and $cols[$col]['value'] === $val) { + continue; # unaltered + } + $cols[$col]['value'] = $val; # update form value + if (empty($cols[$col]['target'])) { + if (empty($cols[$col]['input'])) { + $colwarn[$col] = "Kan niet worden aangepast."; + } + continue; + } + if (file_put_contents($cols[$col]['target'], $val) === FALSE) { + $colwarn[$col] = "Fout bij opslaan."; + } + } + + foreach ($_FILES as $col => $val) { + if (!isset($cols[$col]) and @$cols[$col]['type'] == 'file') { + continue; # unknown + } + switch ($val['error']) { + case UPLOAD_ERR_OK: + break; + case UPLOAD_ERR_NO_FILE: + continue 2; # current + default: + $colwarn[$col] = "Afbeelding niet goed ontvangen."; + continue 2; + } + if (empty($cols[$col]['target'])) { + $colwarn[$col] = "Kan niet worden aangepast."; + continue; + } + if (!@move_uploaded_file($val['tmp_name'], $cols[$col]['target'])) { + $colwarn[$col] = "Fout bij opslaan."; + } + foreach (@glob('thumb/*/') as $thumbres) { + # attempt to remove old derivations + @unlink($thumbres.'/'.$cols[$col]['target']); + } + $cols[$col]['value'] = ''; + } + + if (!empty($_POST['newpass'])) { + require_once('login/pass.inc.php'); + if ($error = passform($user, $_POST)) { + $colwarn['newpass'] = $error; + } + } + + if ($colwarn) { + print "

Instellingen zijn niet (volledig) opgeslagen. Probeer het later nog eens.

\n\n"; + } + else { + print "

Alle instellingen zijn opgeslagen.

\n\n"; } - return; } -$usermail = @file_get_contents("{$User['dir']}/email.txt"); ?> -
-

- Geef een e-mailadres op waarmee we u kunnen bereiken indien nodig. - Wij zullen dit adres nooit vrij- of doorgeven. -

-

- - -

+ + +