Lexiconga/backend/User.php

<?php
require_once('./Db.php');
require_once('./Token.php');
require_once('./Dictionary.php');

class User {
  private $db;
  private $token;
  function __construct () {
    $this->db = new Db();
    $this->token = new Token();
    $this->dictionary = new Dictionary();
  }

  public function logIn ($email, $password) {
    $query = 'SELECT * FROM users WHERE email=?';
    $user = $this->db->query($query, array($email))->fetch();
    if ($user) {
      if ($user['old_password'] !== null) {
        if ($user['old_password'] === crypt($password, $email)) {
          if ($this->upgradePassword($password)) {
            return $this->logIn($email, $password);
          }
        }
      } else if (password_verify($password, $user['password'])) {
        $user_data = array(
          'id' => $user['id'],
          'isMember' => $this->hasMembership($user['id']),
          'dictionary' => $user['current_dictionary'],
        );
        return $this->token->encode($user_data);
      }
    }
    return false;
  }

  public function emailExists ($email) {
    $query = 'SELECT * FROM users WHERE email=?';
    $user = $this->db->query($query, array($email));
    return $user->rowCount() > 0;
  }

  public function create ($email, $password) {
    $insert_user_query = 'INSERT INTO users (email, password) VALUES (?, ?)';
    $password_hash = password_hash($password, PASSWORD_DEFAULT);

    $insert_user = $this->db->execute($insert_user_query, array($email, $password_hash));
    if ($insert_user === true) {
      $new_user_id = $this->db->lastInsertId();

      $token = $this->dictionary->create($new_user_id);

      if ($token !== false) {
        return $token;
      }
    }

    return false;
  }

  public function createNewDictionary ($token) {
    $user_data = $this->token->decode($token);
    if ($user_data !== false) {
      $id = $user_data->id;
      return $this->dictionary->create($id);
    }
    return false;
  }

  public function changeCurrentDictionary ($user, $dictionary) {
    $update_query = 'UPDATE users SET current_dictionary=? WHERE id=?';
    $update = $this->db->query($update_query, array($dictionary, $user));
    if ($update->rowCount() > 0) {
      return true;
    }
    return false;
  }

  public function listAllDictionaryNames ($token) {
    $user_data = $this->token->decode($token);
    if ($user_data !== false) {
      $id = $user_data->id;
      return $this->dictionary->getAllNames($id);
    }
    return false;
  }

  private function hasMembership ($id) {
    $current_membership = "SELECT * FROM memberships WHERE user=$id AND start_date>=CURRENT_TIMESTAMP AND CURRENT_TIMESTAMP<expire_date";
    return $this->db->query($current_membership)->rowCount() > 0;
  }

  private function upgradePassword ($password) {
    $new_password = password_hash($password, PASSWORD_DEFAULT);
    $update_query = 'UPDATE users SET old_password=NULL, password=? WHERE id=' . $user['id'];
    $stmt = $this->db->query($update_query, array($new_password));
    return $stmt->rowCount() === 1;
  }
}
Start working on backend api 2017-12-24 20:00:45 +01:00			`<?php`
Fix errors with PHP classes; fix create-account 2017-12-24 22:19:42 +01:00			`require_once('./Db.php');`
			`require_once('./Token.php');`
Move relevant methods from User class to new Dictionary class 2018-01-05 06:08:18 +01:00			`require_once('./Dictionary.php');`
Start working on backend api 2017-12-24 20:00:45 +01:00
			`class User {`
			`private $db;`
			`private $token;`
Fix errors with PHP classes; fix create-account 2017-12-24 22:19:42 +01:00			`function __construct () {`
Start working on backend api 2017-12-24 20:00:45 +01:00			`$this->db = new Db();`
			`$this->token = new Token();`
Move relevant methods from User class to new Dictionary class 2018-01-05 06:08:18 +01:00			`$this->dictionary = new Dictionary();`
Start working on backend api 2017-12-24 20:00:45 +01:00			`}`

			`public function logIn ($email, $password) {`
			`$query = 'SELECT * FROM users WHERE email=?';`
			`$user = $this->db->query($query, array($email))->fetch();`
			`if ($user) {`
Add get-all-dictionaries action using token 2017-12-24 23:14:34 +01:00			`if ($user['old_password'] !== null) {`
Start working on backend api 2017-12-24 20:00:45 +01:00			`if ($user['old_password'] === crypt($password, $email)) {`
			`if ($this->upgradePassword($password)) {`
			`return $this->logIn($email, $password);`
			`}`
			`}`
			`} else if (password_verify($password, $user['password'])) {`
			`$user_data = array(`
			`'id' => $user['id'],`
			`'isMember' => $this->hasMembership($user['id']),`
			`'dictionary' => $user['current_dictionary'],`
			`);`
			`return $this->token->encode($user_data);`
			`}`
			`}`
			`return false;`
			`}`

Fix errors with PHP classes; fix create-account 2017-12-24 22:19:42 +01:00			`public function emailExists ($email) {`
			`$query = 'SELECT * FROM users WHERE email=?';`
			`$user = $this->db->query($query, array($email));`
			`return $user->rowCount() > 0;`
			`}`

Add action for create-user 2017-12-24 21:09:05 +01:00			`public function create ($email, $password) {`
			`$insert_user_query = 'INSERT INTO users (email, password) VALUES (?, ?)';`
			`$password_hash = password_hash($password, PASSWORD_DEFAULT);`

Fix errors with PHP classes; fix create-account 2017-12-24 22:19:42 +01:00			`$insert_user = $this->db->execute($insert_user_query, array($email, $password_hash));`
Add action for create-user 2017-12-24 21:09:05 +01:00			`if ($insert_user === true) {`
			`$new_user_id = $this->db->lastInsertId();`

Move relevant methods from User class to new Dictionary class 2018-01-05 06:08:18 +01:00			`$token = $this->dictionary->create($new_user_id);`
Add action for create-user 2017-12-24 21:09:05 +01:00
			`if ($token !== false) {`
Fix errors with PHP classes; fix create-account 2017-12-24 22:19:42 +01:00			`return $token;`
Add action for create-user 2017-12-24 21:09:05 +01:00			`}`
			`}`

			`return false;`
			`}`

Move relevant methods from User class to new Dictionary class 2018-01-05 06:08:18 +01:00			`public function createNewDictionary ($token) {`
			`$user_data = $this->token->decode($token);`
			`if ($user_data !== false) {`
			`$id = $user_data->id;`
			`return $this->dictionary->create($id);`
Add action for create-user 2017-12-24 21:09:05 +01:00			`}`
			`return false;`
			`}`

			`public function changeCurrentDictionary ($user, $dictionary) {`
			`$update_query = 'UPDATE users SET current_dictionary=? WHERE id=?';`
Fix errors with PHP classes; fix create-account 2017-12-24 22:19:42 +01:00			`$update = $this->db->query($update_query, array($dictionary, $user));`
Add action for create-user 2017-12-24 21:09:05 +01:00			`if ($update->rowCount() > 0) {`
			`return true;`
			`}`
			`return false;`
			`}`

Move relevant methods from User class to new Dictionary class 2018-01-05 06:08:18 +01:00			`public function listAllDictionaryNames ($token) {`
Add get-all-dictionaries action using token 2017-12-24 23:14:34 +01:00			`$user_data = $this->token->decode($token);`
			`if ($user_data !== false) {`
			`$id = $user_data->id;`
Move relevant methods from User class to new Dictionary class 2018-01-05 06:08:18 +01:00			`return $this->dictionary->getAllNames($id);`
Add get-all-dictionaries action using token 2017-12-24 23:14:34 +01:00			`}`
			`return false;`
			`}`

Add action for create-user 2017-12-24 21:09:05 +01:00			`private function hasMembership ($id) {`
Start working on backend api 2017-12-24 20:00:45 +01:00			`$current_membership = "SELECT * FROM memberships WHERE user=$id AND start_date>=CURRENT_TIMESTAMP AND CURRENT_TIMESTAMP<expire_date";`
Add get-all-dictionaries action using token 2017-12-24 23:14:34 +01:00			`return $this->db->query($current_membership)->rowCount() > 0;`
Start working on backend api 2017-12-24 20:00:45 +01:00			`}`

Add action for create-user 2017-12-24 21:09:05 +01:00			`private function upgradePassword ($password) {`
Start working on backend api 2017-12-24 20:00:45 +01:00			`$new_password = password_hash($password, PASSWORD_DEFAULT);`
			`$update_query = 'UPDATE users SET old_password=NULL, password=? WHERE id=' . $user['id'];`
			`$stmt = $this->db->query($update_query, array($new_password));`
			`return $stmt->rowCount() === 1;`
			`}`
			`}`