Lexiconga/backend/User.php

109 lines
3.4 KiB
PHP

<?php
require_once('./Db');
require_once('./Token');
class User {
private $db;
private $token;
function _construct () {
$this->db = new Db();
$this->token = new Token();
}
public function logIn ($email, $password) {
$query = 'SELECT * FROM users WHERE email=?';
$user = $this->db->query($query, array($email))->fetch();
if ($user) {
if ($user['old_password'] !== 'NULL') {
if ($user['old_password'] === crypt($password, $email)) {
if ($this->upgradePassword($password)) {
return $this->logIn($email, $password);
}
}
} else if (password_verify($password, $user['password'])) {
$user_data = array(
'id' => $user['id'],
'isMember' => $this->hasMembership($user['id']),
'dictionary' => $user['current_dictionary'],
);
return $this->token->encode($user_data);
}
}
return false;
}
public function create ($email, $password) {
$insert_user_query = 'INSERT INTO users (email, password) VALUES (?, ?)';
$password_hash = password_hash($password, PASSWORD_DEFAULT);
// Use a transaction to make sure all pieces are created successfully.
$this->db->dbh->beginTransaction();
$insert_user = $this->db->query($insert_user_query, array($email, $password_hash));
if ($insert_user === true) {
$new_user_id = $this->db->lastInsertId();
$token = $this->createDictionary($new_user_id);
if ($token !== false) {
if ($this->db->dbh->commit()) {
return $token;
}
}
}
$this->db->dbh->rollBack();
return false;
}
public function createDictionary ($user) {
$this->db->dbh->beginTransaction();
$insert_dictionary_query = "INSERT INTO dictionaries (user) VALUES ($user)";
$insert_dictionary = $this->db->query($insert_dictionary_query);
if ($insert_dictionary === true) {
$new_dictionary_id = $this->db->lastInsertId();
$insert_linguistics_query = "INSERT INTO dictionary_linguistics (dictionary) VALUES ($new_dictionary_id)";
$insert_linguistics = $this->db->query($insert_dictionary_query);
if ($insert_linguistics === true) {
if ($this->changeCurrentDictionary($user, $new_dictionary_id)) {
if ($this->db->dbh->commit()) {
$user_data = array(
'id' => $user,
'isMember' => $this->hasMembership($user['id']),
'dictionary' => $new_dictionary_id,
);
return $this->token->encode($user_data);
}
}
}
}
$this->db->dbh->rollBack();
return false;
}
public function changeCurrentDictionary ($user, $dictionary) {
$update_query = 'UPDATE users SET current_dictionary=? WHERE id=?';
$update = $this->db->query($update_query, array($user, $dictionary));
if ($update->rowCount() > 0) {
return true;
}
return false;
}
private function hasMembership ($id) {
$current_membership = "SELECT * FROM memberships WHERE user=$id AND start_date>=CURRENT_TIMESTAMP AND CURRENT_TIMESTAMP<expire_date";
$stmt = $this->db->query($current_membership)->rowCount() > 0;
}
private function upgradePassword ($password) {
$new_password = password_hash($password, PASSWORD_DEFAULT);
$update_query = 'UPDATE users SET old_password=NULL, password=? WHERE id=' . $user['id'];
$stmt = $this->db->query($update_query, array($new_password));
return $stmt->rowCount() === 1;
}
}