9fe9eb7acf
Got it working fairly well, just trying to get all of my assumption / opinions baked in. Still need to come up with a decent way to generate session hashes to help avoid session collision . Incidentally Retwis seems to be susceptible to this.
64 lines
1.6 KiB
PHP
64 lines
1.6 KiB
PHP
<?php
|
|
|
|
class user_create extends CustomModule
|
|
{
|
|
// protected $ajax = true;
|
|
// protected $method = 'POST';
|
|
// protected $validate = array(
|
|
// 'email' => array(
|
|
// 'length:>:100' => 'Email addresses may not be more than 100 characters.',
|
|
// 'filter:email' => 'Your email address is invalid.',
|
|
// ),
|
|
// 'username' => array(
|
|
// 'length:<:4' => 'Usernames may not be less than 4 characters.',
|
|
// 'length:>:30' => 'Usernames may not be more than 50 characters.',
|
|
// 'regex:is:/[^a-z0-9]+/i' => 'Usernames may only contain letters and numbers.',
|
|
// ),
|
|
// 'password' => array(
|
|
// 'length:<:8' => 'Passwords may not be less than 8 characters.',
|
|
// ),
|
|
// );
|
|
|
|
public function __default()
|
|
{
|
|
try
|
|
{
|
|
$_POST = array(
|
|
'email' => 'foo@bar.com',
|
|
'username' => 'fubar',
|
|
'password' => 'insecure123',
|
|
);
|
|
|
|
|
|
$user = new User();
|
|
|
|
// Checks if the email or username is already in use
|
|
foreach (array('email', 'username') as $field)
|
|
{
|
|
if ($user->getUID($field, $_POST[$field]))
|
|
{
|
|
return array('error' => 'The ' . $field . ' is already in use.');
|
|
}
|
|
}
|
|
|
|
// Grabs the next UID
|
|
$uid = $user->nextUID();
|
|
|
|
// Writes the user data
|
|
$user->set('1001', array(
|
|
'username' => $_POST['username'],
|
|
'email' => $_POST['email'],
|
|
'password' => crypt($_POST['password'], '$2y$11$' . String::random(22) . '$'),
|
|
));
|
|
|
|
// Sets up the authentication cookie
|
|
//$user->setAuth()
|
|
}
|
|
catch (RedisException $e)
|
|
{
|
|
return array('error' => $e->getMessage());
|
|
}
|
|
}
|
|
}
|
|
|
|
?>
|