|
|
|
|
<?php
|
|
|
|
|
/* For licensing terms, see /license.txt */
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* This file displays the user's profile,
|
|
|
|
|
* optionally it allows users to modify their profile as well.
|
|
|
|
|
*
|
|
|
|
|
* See inc/conf/profile.conf.php to modify settings
|
|
|
|
|
*
|
|
|
|
|
* @package chamilo.auth
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
use Chamilo\UserBundle\Entity\User;
|
|
|
|
|
use ChamiloSession as Session;
|
|
|
|
|
|
|
|
|
|
$cidReset = true;
|
|
|
|
|
require_once '../inc/global.inc.php';
|
|
|
|
|
|
|
|
|
|
if (api_get_setting('allow_social_tool') == 'true') {
|
|
|
|
|
$this_section = SECTION_SOCIAL;
|
|
|
|
|
} else {
|
|
|
|
|
$this_section = SECTION_MYPROFILE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//$htmlHeadXtra[] = api_get_password_checker_js('#username', '#password1');
|
|
|
|
|
|
|
|
|
|
$_SESSION['this_section'] = $this_section;
|
|
|
|
|
|
|
|
|
|
if (!(isset($_user['user_id']) && $_user['user_id']) || api_is_anonymous($_user['user_id'], true)) {
|
|
|
|
|
api_not_allowed(true);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$userGeolocalization = api_get_setting('enable_profile_user_address_geolocalization') == 'true';
|
|
|
|
|
|
|
|
|
|
$htmlHeadXtra[] = api_get_password_checker_js('#username', '#password1');
|
|
|
|
|
$htmlHeadXtra[] = '<link href="'. api_get_path(WEB_PATH) .'web/assets/cropper/dist/cropper.min.css" rel="stylesheet">';
|
|
|
|
|
$htmlHeadXtra[] = '<script src="'. api_get_path(WEB_PATH) .'web/assets/cropper/dist/cropper.min.js"></script>';
|
|
|
|
|
$htmlHeadXtra[] = '<script type="text/javascript" src="//maps.googleapis.com/maps/api/js?sensor=true" ></script>';
|
|
|
|
|
$htmlHeadXtra[] = '<script>
|
|
|
|
|
$(document).ready(function() {
|
|
|
|
|
$("id_generate_api_key").on("click", function (e) {
|
|
|
|
|
e.preventDefault();
|
|
|
|
|
|
|
|
|
|
$.ajax({
|
|
|
|
|
contentType: "application/x-www-form-urlencoded",
|
|
|
|
|
type: "POST",
|
|
|
|
|
url: "'.api_get_path(WEB_AJAX_PATH).'user_manager.ajax.php?a=generate_api_key",
|
|
|
|
|
data: "num_key_id="+"",
|
|
|
|
|
success: function(datos) {
|
|
|
|
|
$("#div_api_key").html(datos);
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
function confirmation(name) {
|
|
|
|
|
if (confirm("'.get_lang('AreYouSureToDeleteJS', '').' " + name + " ?")) {
|
|
|
|
|
document.forms["profile"].submit();
|
|
|
|
|
} else {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
function show_image(image,width,height) {
|
|
|
|
|
width = parseInt(width) + 20;
|
|
|
|
|
height = parseInt(height) + 20;
|
|
|
|
|
window_x = window.open(image,\'windowX\',\'width=\'+ width + \', height=\'+ height + \'\');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function hide_icon_edit(element_html) {
|
|
|
|
|
ident="#edit_image";
|
|
|
|
|
$(ident).hide();
|
|
|
|
|
}
|
|
|
|
|
function show_icon_edit(element_html) {
|
|
|
|
|
ident="#edit_image";
|
|
|
|
|
$(ident).show();
|
|
|
|
|
}
|
|
|
|
|
</script>';
|
|
|
|
|
|
|
|
|
|
$jquery_ready_content = '';
|
|
|
|
|
if (api_get_setting('allow_message_tool') == 'true') {
|
|
|
|
|
$jquery_ready_content = <<<EOF
|
|
|
|
|
$(".message-content .message-delete").click(function(){
|
|
|
|
|
$(this).parents(".message-content").animate({ opacity: "hide" }, "slow");
|
|
|
|
|
$(".message-view").animate({ opacity: "show" }, "slow");
|
|
|
|
|
});
|
|
|
|
|
EOF;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$tool_name = is_profile_editable() ? get_lang('ModifProfile') : get_lang('ViewProfile');
|
|
|
|
|
$table_user = Database :: get_main_table(TABLE_MAIN_USER);
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Get initial values for all fields.
|
|
|
|
|
*/
|
|
|
|
|
$user_data = api_get_user_info(api_get_user_id());
|
|
|
|
|
$array_list_key = UserManager::get_api_keys(api_get_user_id());
|
|
|
|
|
$id_temp_key = UserManager::get_api_key_id(api_get_user_id(), 'dokeos');
|
|
|
|
|
$value_array = $array_list_key[$id_temp_key];
|
|
|
|
|
$user_data['api_key_generate'] = $value_array;
|
|
|
|
|
|
|
|
|
|
if ($userGeolocalization) {
|
|
|
|
|
$htmlHeadXtra[] = '<script>
|
|
|
|
|
$(document).ready(function() {
|
|
|
|
|
|
|
|
|
|
var address = "' . $user_data['address'] . '";
|
|
|
|
|
initializeGeo(address, false);
|
|
|
|
|
|
|
|
|
|
$("#geolocalization").on("click", function() {
|
|
|
|
|
var address = $("#address").val();
|
|
|
|
|
initializeGeo(address, false);
|
|
|
|
|
return false;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
$("#myLocation").on("click", function() {
|
|
|
|
|
myLocation();
|
|
|
|
|
return false;
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
$("#address").keypress(function (event) {
|
|
|
|
|
if (event.which == 13) {
|
|
|
|
|
$("#geolocalization").click();
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
function myLocation() {
|
|
|
|
|
if (navigator.geolocation) {
|
|
|
|
|
var geoPosition = function(position) {
|
|
|
|
|
var lat = position.coords.latitude;
|
|
|
|
|
var lng = position.coords.longitude;
|
|
|
|
|
var latLng = new google.maps.LatLng(lat, lng);
|
|
|
|
|
initializeGeo(false, latLng)
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
var geoError = function(error) {
|
|
|
|
|
alert("Geocode ' . get_lang('Error') . ': " + error);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
var geoOptions = {
|
|
|
|
|
enableHighAccuracy: true
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
navigator.geolocation.getCurrentPosition(geoPosition, geoError, geoOptions);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function initializeGeo(address, latLng) {
|
|
|
|
|
var geocoder = new google.maps.Geocoder();
|
|
|
|
|
var latlng = new google.maps.LatLng(-34.397, 150.644);
|
|
|
|
|
var myOptions = {
|
|
|
|
|
zoom: 15,
|
|
|
|
|
center: latlng,
|
|
|
|
|
mapTypeControl: true,
|
|
|
|
|
mapTypeControlOptions: {
|
|
|
|
|
style: google.maps.MapTypeControlStyle.DROPDOWN_MENU
|
|
|
|
|
},
|
|
|
|
|
navigationControl: true,
|
|
|
|
|
mapTypeId: google.maps.MapTypeId.ROADMAP
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
map = new google.maps.Map(document.getElementById("map"), myOptions);
|
|
|
|
|
|
|
|
|
|
var parameter = address ? { "address": address } : latLng ? { "latLng": latLng } : false;
|
|
|
|
|
|
|
|
|
|
if (geocoder && parameter) {
|
|
|
|
|
geocoder.geocode(parameter, function(results, status) {
|
|
|
|
|
if (status == google.maps.GeocoderStatus.OK) {
|
|
|
|
|
if (status != google.maps.GeocoderStatus.ZERO_RESULTS) {
|
|
|
|
|
map.setCenter(results[0].geometry.location);
|
|
|
|
|
if (!address) {
|
|
|
|
|
$("#address").val(results[0].formatted_address);
|
|
|
|
|
}
|
|
|
|
|
var infowindow = new google.maps.InfoWindow({
|
|
|
|
|
content: "<b>" + $("#address").val() + "</b>",
|
|
|
|
|
size: new google.maps.Size(150, 50)
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
var marker = new google.maps.Marker({
|
|
|
|
|
position: results[0].geometry.location,
|
|
|
|
|
map: map,
|
|
|
|
|
title: $("#address").val()
|
|
|
|
|
});
|
|
|
|
|
google.maps.event.addListener(marker, "click", function() {
|
|
|
|
|
infowindow.open(map, marker);
|
|
|
|
|
});
|
|
|
|
|
} else {
|
|
|
|
|
alert("' . get_lang("NotFound") . '");
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
} else {
|
|
|
|
|
alert("Geocode ' . get_lang('Error') . ': " + status);
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
</script>';
|
|
|
|
|
}
|
|
|
|
|
if ($user_data !== false) {
|
|
|
|
|
if (api_get_setting('login_is_email') == 'true') {
|
|
|
|
|
$user_data['username'] = $user_data['email'];
|
|
|
|
|
}
|
|
|
|
|
if (is_null($user_data['language'])) {
|
|
|
|
|
$user_data['language'] = api_get_setting('platformLanguage');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
* Initialize the form.
|
|
|
|
|
*/
|
|
|
|
|
$form = new FormValidator('profile');
|
|
|
|
|
|
|
|
|
|
if (api_is_western_name_order()) {
|
|
|
|
|
// FIRST NAME and LAST NAME
|
|
|
|
|
$form->addElement('text', 'firstname', get_lang('FirstName'), array('size' => 40));
|
|
|
|
|
$form->addElement('text', 'lastname', get_lang('LastName'), array('size' => 40));
|
|
|
|
|
} else {
|
|
|
|
|
// LAST NAME and FIRST NAME
|
|
|
|
|
$form->addElement('text', 'lastname', get_lang('LastName'), array('size' => 40));
|
|
|
|
|
$form->addElement('text', 'firstname', get_lang('FirstName'), array('size' => 40));
|
|
|
|
|
}
|
|
|
|
|
if (api_get_setting('profile', 'name') !== 'true') {
|
|
|
|
|
$form->freeze(array('lastname', 'firstname'));
|
|
|
|
|
}
|
|
|
|
|
$form->applyFilter(array('lastname', 'firstname'), 'stripslashes');
|
|
|
|
|
$form->applyFilter(array('lastname', 'firstname'), 'trim');
|
|
|
|
|
$form->applyFilter(array('lastname', 'firstname'), 'html_filter');
|
|
|
|
|
$form->addRule('lastname' , get_lang('ThisFieldIsRequired'), 'required');
|
|
|
|
|
$form->addRule('firstname', get_lang('ThisFieldIsRequired'), 'required');
|
|
|
|
|
|
|
|
|
|
// USERNAME
|
|
|
|
|
$form->addElement(
|
|
|
|
|
'text',
|
|
|
|
|
'username',
|
|
|
|
|
get_lang('UserName'),
|
|
|
|
|
array(
|
|
|
|
|
'id' => 'username',
|
|
|
|
|
'maxlength' => USERNAME_MAX_LENGTH,
|
|
|
|
|
'size' => USERNAME_MAX_LENGTH,
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
if (api_get_setting('profile', 'login') !== 'true' || api_get_setting('login_is_email') == 'true') {
|
|
|
|
|
$form->freeze('username');
|
|
|
|
|
}
|
|
|
|
|
$form->applyFilter('username', 'stripslashes');
|
|
|
|
|
$form->applyFilter('username', 'trim');
|
|
|
|
|
$form->addRule('username', get_lang('ThisFieldIsRequired'), 'required');
|
|
|
|
|
$form->addRule('username', get_lang('UsernameWrong'), 'username');
|
|
|
|
|
$form->addRule('username', get_lang('UserTaken'), 'username_available', $user_data['username']);
|
|
|
|
|
|
|
|
|
|
// OFFICIAL CODE
|
|
|
|
|
if (CONFVAL_ASK_FOR_OFFICIAL_CODE) {
|
|
|
|
|
$form->addElement('text', 'official_code', get_lang('OfficialCode'), array('size' => 40));
|
|
|
|
|
if (api_get_setting('profile', 'officialcode') !== 'true') {
|
|
|
|
|
$form->freeze('official_code');
|
|
|
|
|
}
|
|
|
|
|
$form->applyFilter('official_code', 'stripslashes');
|
|
|
|
|
$form->applyFilter('official_code', 'trim');
|
|
|
|
|
$form->applyFilter('official_code', 'html_filter');
|
|
|
|
|
if (api_get_setting('registration', 'officialcode') == 'true' && api_get_setting('profile', 'officialcode') == 'true') {
|
|
|
|
|
$form->addRule('official_code', get_lang('ThisFieldIsRequired'), 'required');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// EMAIL
|
|
|
|
|
$form->addElement('email', 'email', get_lang('Email'), array('size' => 40));
|
|
|
|
|
if (api_get_setting('profile', 'email') !== 'true') {
|
|
|
|
|
$form->freeze('email');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (api_get_setting('registration', 'email') == 'true' && api_get_setting('profile', 'email') == 'true') {
|
|
|
|
|
$form->applyFilter('email', 'stripslashes');
|
|
|
|
|
$form->applyFilter('email', 'trim');
|
|
|
|
|
$form->addRule('email', get_lang('ThisFieldIsRequired'), 'required');
|
|
|
|
|
$form->addRule('email', get_lang('EmailWrong'), 'email');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// OPENID URL
|
|
|
|
|
if (is_profile_editable() && api_get_setting('openid_authentication') == 'true') {
|
|
|
|
|
$form->addElement('text', 'openid', get_lang('OpenIDURL'), array('size' => 40));
|
|
|
|
|
if (api_get_setting('profile', 'openid') !== 'true') {
|
|
|
|
|
$form->freeze('openid');
|
|
|
|
|
}
|
|
|
|
|
$form->applyFilter('openid', 'trim');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// PHONE
|
|
|
|
|
$form->addElement('text', 'phone', get_lang('Phone'), array('size' => 20));
|
|
|
|
|
if (api_get_setting('profile', 'phone') !== 'true') {
|
|
|
|
|
$form->freeze('phone');
|
|
|
|
|
}
|
|
|
|
|
$form->applyFilter('phone', 'stripslashes');
|
|
|
|
|
$form->applyFilter('phone', 'trim');
|
|
|
|
|
$form->applyFilter('phone', 'html_filter');
|
|
|
|
|
|
|
|
|
|
if ($userGeolocalization) {
|
|
|
|
|
// Geolocation
|
|
|
|
|
$form->addElement('text', 'address', get_lang('AddressField'), ['id' => 'address']);
|
|
|
|
|
$form->addHtml('
|
|
|
|
|
<div class="form-group">
|
|
|
|
|
<label for="geolocalization" class="col-sm-2 control-label"></label>
|
|
|
|
|
<div class="col-sm-8">
|
|
|
|
|
<button class="null btn btn-default " id="geolocalization" name="geolocalization" type="submit"><em class="fa fa-map-marker"></em> '.get_lang('Geolocalization').'</button>
|
|
|
|
|
<button class="null btn btn-default " id="myLocation" name="myLocation" type="submit"><em class="fa fa-crosshairs"></em> '.get_lang('MyLocation').'</button>
|
|
|
|
|
</div>
|
|
|
|
|
</div>
|
|
|
|
|
');
|
|
|
|
|
|
|
|
|
|
$form->addHtml('
|
|
|
|
|
<div class="form-group">
|
|
|
|
|
<label for="map" class="col-sm-2 control-label">
|
|
|
|
|
'.get_lang('Map').'
|
|
|
|
|
</label>
|
|
|
|
|
<div class="col-sm-8">
|
|
|
|
|
<div name="map" id="map" style="width:100%; height:300px;">
|
|
|
|
|
</div>
|
|
|
|
|
</div>
|
|
|
|
|
</div>
|
|
|
|
|
');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
// PICTURE
|
|
|
|
|
if (is_profile_editable() && api_get_setting('profile', 'picture') == 'true') {
|
|
|
|
|
$form->addFile(
|
|
|
|
|
'picture',
|
|
|
|
|
($user_data['picture_uri'] != '' ? get_lang('UpdateImage') : get_lang(
|
|
|
|
|
'AddImage'
|
|
|
|
|
)),
|
|
|
|
|
array('id' => 'picture', 'class' => 'picture-form', 'crop_image' => true, 'crop_ratio' => '1 / 1')
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$form->add_progress_bar();
|
|
|
|
|
if (!empty($user_data['picture_uri'])) {
|
|
|
|
|
$form->addElement('checkbox', 'remove_picture', null, get_lang('DelImage'));
|
|
|
|
|
}
|
|
|
|
|
$allowed_picture_types = api_get_supported_image_extensions(false);
|
|
|
|
|
$form->addRule(
|
|
|
|
|
'picture',
|
|
|
|
|
get_lang('OnlyImagesAllowed').' ('.implode(', ', $allowed_picture_types).')',
|
|
|
|
|
'filetype',
|
|
|
|
|
$allowed_picture_types
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// LANGUAGE
|
|
|
|
|
$form->addElement('select_language', 'language', get_lang('Language'));
|
|
|
|
|
if (api_get_setting('profile', 'language') !== 'true') {
|
|
|
|
|
$form->freeze('language');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//THEME
|
|
|
|
|
if (is_profile_editable() && api_get_setting('user_selected_theme') == 'true') {
|
|
|
|
|
$form->addElement('SelectTheme', 'theme', get_lang('Theme'));
|
|
|
|
|
if (api_get_setting('profile', 'theme') !== 'true') {
|
|
|
|
|
$form->freeze('theme');
|
|
|
|
|
}
|
|
|
|
|
$form->applyFilter('theme', 'trim');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// EXTENDED PROFILE this make the page very slow!
|
|
|
|
|
if (api_get_setting('extended_profile') === 'true') {
|
|
|
|
|
$width_extended_profile = 500;
|
|
|
|
|
// MY COMPETENCES
|
|
|
|
|
$form->addHtmlEditor(
|
|
|
|
|
'competences',
|
|
|
|
|
get_lang('MyCompetences'),
|
|
|
|
|
false,
|
|
|
|
|
false,
|
|
|
|
|
array(
|
|
|
|
|
'ToolbarSet' => 'Profile',
|
|
|
|
|
'Width' => $width_extended_profile,
|
|
|
|
|
'Height' => '130',
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
// MY DIPLOMAS
|
|
|
|
|
$form->addHtmlEditor(
|
|
|
|
|
'diplomas',
|
|
|
|
|
get_lang('MyDiplomas'),
|
|
|
|
|
false,
|
|
|
|
|
false,
|
|
|
|
|
array(
|
|
|
|
|
'ToolbarSet' => 'Profile',
|
|
|
|
|
'Width' => $width_extended_profile,
|
|
|
|
|
'Height' => '130',
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
// WHAT I AM ABLE TO TEACH
|
|
|
|
|
$form->addHtmlEditor(
|
|
|
|
|
'teach',
|
|
|
|
|
get_lang('MyTeach'),
|
|
|
|
|
false,
|
|
|
|
|
false,
|
|
|
|
|
array(
|
|
|
|
|
'ToolbarSet' => 'Profile',
|
|
|
|
|
'Width' => $width_extended_profile,
|
|
|
|
|
'Height' => '130',
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
// MY PRODUCTIONS
|
|
|
|
|
$form->addElement('file', 'production', get_lang('MyProductions'));
|
|
|
|
|
if ($production_list = UserManager::build_production_list(api_get_user_id(), '', true)) {
|
|
|
|
|
$form->addElement('static', 'productions_list', null, $production_list);
|
|
|
|
|
}
|
|
|
|
|
// MY PERSONAL OPEN AREA
|
|
|
|
|
$form->addHtmlEditor(
|
|
|
|
|
'openarea',
|
|
|
|
|
get_lang('MyPersonalOpenArea'),
|
|
|
|
|
false,
|
|
|
|
|
false,
|
|
|
|
|
array(
|
|
|
|
|
'ToolbarSet' => 'Profile',
|
|
|
|
|
'Width' => $width_extended_profile,
|
|
|
|
|
'Height' => '350',
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
// openarea is untrimmed for maximum openness
|
|
|
|
|
$form->applyFilter(array('competences', 'diplomas', 'teach', 'openarea'), 'stripslashes');
|
|
|
|
|
$form->applyFilter(array('competences', 'diplomas', 'teach'), 'trim');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// PASSWORD, if auth_source is platform
|
|
|
|
|
if (is_platform_authentication() &&
|
|
|
|
|
is_profile_editable() &&
|
|
|
|
|
api_get_setting('profile', 'password') == 'true'
|
|
|
|
|
) {
|
|
|
|
|
$form->addElement('password', 'password0', array(get_lang('Pass'), get_lang('Enter2passToChange')), array('size' => 40));
|
|
|
|
|
$form->addElement('password', 'password1', get_lang('NewPass'), array('id'=> 'password1', 'size' => 40));
|
|
|
|
|
|
|
|
|
|
$checkPass = api_get_setting('allow_strength_pass_checker');
|
|
|
|
|
if ($checkPass == 'true') {
|
|
|
|
|
$form->addElement('label', null, '<div id="password_progress"></div>');
|
|
|
|
|
}
|
|
|
|
|
$form->addElement('password', 'password2', get_lang('Confirmation'), array('size' => 40));
|
|
|
|
|
// user must enter identical password twice so we can prevent some user errors
|
|
|
|
|
$form->addRule(array('password1', 'password2'), get_lang('PassTwo'), 'compare');
|
|
|
|
|
if (CHECK_PASS_EASY_TO_FIND) {
|
|
|
|
|
$form->addRule('password1', get_lang('CurrentPasswordEmptyOrIncorrect'), 'callback', 'api_check_password');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$extraField = new ExtraField('user');
|
|
|
|
|
$return = $extraField->addElements($form, api_get_user_id());
|
|
|
|
|
|
|
|
|
|
$jquery_ready_content = $return['jquery_ready_content'];
|
|
|
|
|
|
|
|
|
|
// the $jquery_ready_content variable collects all functions that
|
|
|
|
|
// will be load in the $(document).ready javascript function
|
|
|
|
|
$htmlHeadXtra[] ='<script>
|
|
|
|
|
$(document).ready(function(){
|
|
|
|
|
'.$jquery_ready_content.'
|
|
|
|
|
});
|
|
|
|
|
</script>';
|
|
|
|
|
|
|
|
|
|
if (api_get_setting('profile', 'apikeys') == 'true') {
|
|
|
|
|
$form->addElement('html', '<div id="div_api_key">');
|
|
|
|
|
$form->addElement(
|
|
|
|
|
'text',
|
|
|
|
|
'api_key_generate',
|
|
|
|
|
get_lang('MyApiKey'),
|
|
|
|
|
array('size' => 40, 'id' => 'id_api_key_generate')
|
|
|
|
|
);
|
|
|
|
|
$form->addElement('html', '</div>');
|
|
|
|
|
$form->addButton(
|
|
|
|
|
'generate_api_key',
|
|
|
|
|
get_lang('GenerateApiKey'),
|
|
|
|
|
'cogs',
|
|
|
|
|
'default',
|
|
|
|
|
'default',
|
|
|
|
|
null,
|
|
|
|
|
['id' => 'id_generate_api_key']
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
// SUBMIT
|
|
|
|
|
if (is_profile_editable()) {
|
|
|
|
|
$form->addButtonUpdate(get_lang('SaveSettings'), 'apply_change');
|
|
|
|
|
} else {
|
|
|
|
|
$form->freeze();
|
|
|
|
|
}
|
|
|
|
|
$form->setDefaults($user_data);
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Is user auth_source is platform ?
|
|
|
|
|
*
|
|
|
|
|
* @return boolean if auth_source is platform
|
|
|
|
|
*/
|
|
|
|
|
function is_platform_authentication() {
|
|
|
|
|
$tab_user_info = api_get_user_info();
|
|
|
|
|
return $tab_user_info['auth_source'] == PLATFORM_AUTH_SOURCE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Can a user edit his/her profile?
|
|
|
|
|
*
|
|
|
|
|
* @return boolean Editability of the profile
|
|
|
|
|
*/
|
|
|
|
|
function is_profile_editable() {
|
|
|
|
|
return $GLOBALS['profileIsEditable'];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/*
|
|
|
|
|
PRODUCTIONS FUNCTIONS
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Upload a submitted user production.
|
|
|
|
|
*
|
|
|
|
|
* @param $user_id User id
|
|
|
|
|
* @return The filename of the new production or FALSE if the upload has failed
|
|
|
|
|
*/
|
|
|
|
|
function upload_user_production($user_id)
|
|
|
|
|
{
|
|
|
|
|
$production_repository = UserManager::getUserPathById($user_id, 'system');
|
|
|
|
|
|
|
|
|
|
if (!file_exists($production_repository)) {
|
|
|
|
|
@mkdir($production_repository, api_get_permissions_for_new_directories(), true);
|
|
|
|
|
}
|
|
|
|
|
$filename = api_replace_dangerous_char($_FILES['production']['name']);
|
|
|
|
|
$filename = disable_dangerous_file($filename);
|
|
|
|
|
|
|
|
|
|
if (filter_extension($filename)) {
|
|
|
|
|
if (@move_uploaded_file($_FILES['production']['tmp_name'], $production_repository.$filename)) {
|
|
|
|
|
return $filename;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
return false; // this should be returned if anything went wrong with the upload
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Check current user's current password
|
|
|
|
|
* @param char email
|
|
|
|
|
* @return bool true o false
|
|
|
|
|
* @uses Gets user ID from global variable
|
|
|
|
|
*/
|
|
|
|
|
function check_user_email($email) {
|
|
|
|
|
$user_id = api_get_user_id();
|
|
|
|
|
if ($user_id != strval(intval($user_id)) || empty($email)) {
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
$table_user = Database :: get_main_table(TABLE_MAIN_USER);
|
|
|
|
|
$email = Database::escape_string($email);
|
|
|
|
|
$sql = "SELECT * FROM $table_user
|
|
|
|
|
WHERE user_id='".$user_id."' AND email='".$email."'";
|
|
|
|
|
$result = Database::query($sql);
|
|
|
|
|
return Database::num_rows($result) != 0;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$filtered_extension = false;
|
|
|
|
|
|
|
|
|
|
if ($form->validate()) {
|
|
|
|
|
$wrong_current_password = false;
|
|
|
|
|
$user_data = $form->getSubmitValues(1);
|
|
|
|
|
|
|
|
|
|
$user = UserManager::getRepository()->find(api_get_user_id());
|
|
|
|
|
|
|
|
|
|
// set password if a new one was provided
|
|
|
|
|
$validPassword = false;
|
|
|
|
|
$passwordWasChecked = false;
|
|
|
|
|
if ($user &&
|
|
|
|
|
(!empty($user_data['password0']) &&
|
|
|
|
|
!empty($user_data['password1'])) ||
|
|
|
|
|
(!empty($user_data['password0']) &&
|
|
|
|
|
api_get_setting('profile', 'email') == 'true')
|
|
|
|
|
) {
|
|
|
|
|
$passwordWasChecked = true;
|
|
|
|
|
$validPassword = UserManager::isPasswordValid(
|
|
|
|
|
$user_data['password0'],
|
|
|
|
|
$user
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if ($validPassword) {
|
|
|
|
|
$password = $user_data['password1'];
|
|
|
|
|
} else {
|
|
|
|
|
Display::addFlash(
|
|
|
|
|
Display:: return_message(
|
|
|
|
|
get_lang('CurrentPasswordEmptyOrIncorrect'),
|
|
|
|
|
'warning',
|
|
|
|
|
false
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$allow_users_to_change_email_with_no_password = true;
|
|
|
|
|
if (is_platform_authentication() &&
|
|
|
|
|
api_get_setting('allow_users_to_change_email_with_no_password') == 'false'
|
|
|
|
|
) {
|
|
|
|
|
$allow_users_to_change_email_with_no_password = false;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// If user sending the email to be changed (input available and not frozen )
|
|
|
|
|
if (api_get_setting('profile', 'email') == 'true') {
|
|
|
|
|
if ($allow_users_to_change_email_with_no_password) {
|
|
|
|
|
if (!check_user_email($user_data['email'])) {
|
|
|
|
|
$changeemail = $user_data['email'];
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
// Normal behaviour
|
|
|
|
|
if (!check_user_email($user_data['email']) && $validPassword) {
|
|
|
|
|
$changeemail = $user_data['email'];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!check_user_email($user_data['email']) &&
|
|
|
|
|
empty($user_data['password0'])
|
|
|
|
|
){
|
|
|
|
|
Display::addFlash(
|
|
|
|
|
Display:: return_message(
|
|
|
|
|
get_lang('ToChangeYourEmailMustTypeYourPassword'),
|
|
|
|
|
'error',
|
|
|
|
|
false
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Upload picture if a new one is provided
|
|
|
|
|
if ($_FILES['picture']['size']) {
|
|
|
|
|
$new_picture = UserManager::update_user_picture(
|
|
|
|
|
api_get_user_id(),
|
|
|
|
|
$_FILES['picture']['name'],
|
|
|
|
|
$_FILES['picture']['tmp_name'],
|
|
|
|
|
$user_data['picture_crop_result']
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if ($new_picture) {
|
|
|
|
|
$user_data['picture_uri'] = $new_picture;
|
|
|
|
|
|
|
|
|
|
Display::addFlash(
|
|
|
|
|
Display:: return_message(
|
|
|
|
|
get_lang('PictureUploaded'),
|
|
|
|
|
'normal',
|
|
|
|
|
false
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
} elseif (!empty($user_data['remove_picture'])) {
|
|
|
|
|
// remove existing picture if asked
|
|
|
|
|
UserManager::delete_user_picture(api_get_user_id());
|
|
|
|
|
$user_data['picture_uri'] = '';
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Remove production.
|
|
|
|
|
if (isset($user_data['remove_production']) &&
|
|
|
|
|
is_array($user_data['remove_production'])
|
|
|
|
|
) {
|
|
|
|
|
foreach (array_keys($user_data['remove_production']) as $production) {
|
|
|
|
|
UserManager::remove_user_production(api_get_user_id(), urldecode($production));
|
|
|
|
|
}
|
|
|
|
|
if ($production_list = UserManager::build_production_list(api_get_user_id(), true, true)) {
|
|
|
|
|
$form->insertElementBefore(
|
|
|
|
|
$form->createElement('static', null, null, $production_list),
|
|
|
|
|
'productions_list'
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
$form->removeElement('productions_list');
|
|
|
|
|
Display::addFlash(
|
|
|
|
|
Display:: return_message(get_lang('FileDeleted'), 'normal', false)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// upload production if a new one is provided
|
|
|
|
|
if (isset($_FILES['production']) && $_FILES['production']['size']) {
|
|
|
|
|
$res = upload_user_production(api_get_user_id());
|
|
|
|
|
if (!$res) {
|
|
|
|
|
//it's a bit excessive to assume the extension is the reason why
|
|
|
|
|
// upload_user_production() returned false, but it's true in most cases
|
|
|
|
|
$filtered_extension = true;
|
|
|
|
|
} else {
|
|
|
|
|
Display::addFlash(
|
|
|
|
|
Display:: return_message(
|
|
|
|
|
get_lang('ProductionUploaded'),
|
|
|
|
|
'normal',
|
|
|
|
|
false
|
|
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// remove values that shouldn't go in the database
|
|
|
|
|
unset(
|
|
|
|
|
$user_data['password0'],
|
|
|
|
|
$user_data['password1'],
|
|
|
|
|
$user_data['password2'],
|
|
|
|
|
$user_data['MAX_FILE_SIZE'],
|
|
|
|
|
$user_data['remove_picture'],
|
|
|
|
|
$user_data['apply_change'],
|
|
|
|
|
$user_data['email']
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
// Following RFC2396 (http://www.faqs.org/rfcs/rfc2396.html), a URI uses ':' as a reserved character
|
|
|
|
|
// we can thus ensure the URL doesn't contain any scheme name by searching for ':' in the string
|
|
|
|
|
$my_user_openid = isset($user_data['openid']) ? $user_data['openid'] : '';
|
|
|
|
|
if (!preg_match('/^[^:]*:\/\/.*$/', $my_user_openid)) {
|
|
|
|
|
//ensure there is at least a http:// scheme in the URI provided
|
|
|
|
|
$user_data['openid'] = 'http://'.$my_user_openid;
|
|
|
|
|
}
|
|
|
|
|
$extras = array();
|
|
|
|
|
|
|
|
|
|
//Checking the user language
|
|
|
|
|
$languages = api_get_languages();
|
|
|
|
|
if (!in_array($user_data['language'], $languages['folder'])) {
|
|
|
|
|
$user_data['language'] = api_get_setting('platformLanguage');
|
|
|
|
|
}
|
|
|
|
|
$_SESSION['_user']['language'] = $user_data['language'];
|
|
|
|
|
|
|
|
|
|
//Only update values that are request by the "profile" setting
|
|
|
|
|
$profile_list = api_get_setting('profile');
|
|
|
|
|
//Adding missing variables
|
|
|
|
|
|
|
|
|
|
$available_values_to_modify = array();
|
|
|
|
|
foreach ($profile_list as $key => $status) {
|
|
|
|
|
if ($status == 'true') {
|
|
|
|
|
switch($key) {
|
|
|
|
|
case 'login':
|
|
|
|
|
$available_values_to_modify[] = 'username';
|
|
|
|
|
break;
|
|
|
|
|
case 'name':
|
|
|
|
|
$available_values_to_modify[] = 'firstname';
|
|
|
|
|
$available_values_to_modify[] = 'lastname';
|
|
|
|
|
break;
|
|
|
|
|
case 'picture':
|
|
|
|
|
$available_values_to_modify[] = 'picture_uri';
|
|
|
|
|
break;
|
|
|
|
|
default:
|
|
|
|
|
$available_values_to_modify[] = $key;
|
|
|
|
|
break;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//Fixing missing variables
|
|
|
|
|
$available_values_to_modify = array_merge(
|
|
|
|
|
$available_values_to_modify,
|
|
|
|
|
array('competences', 'diplomas', 'openarea', 'teach', 'openid', 'address')
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
// build SQL query
|
|
|
|
|
$sql = "UPDATE $table_user SET";
|
|
|
|
|
unset($user_data['api_key_generate']);
|
|
|
|
|
|
|
|
|
|
foreach ($user_data as $key => $value) {
|
|
|
|
|
if (substr($key, 0, 6) === 'extra_') { //an extra field
|
|
|
|
|
continue;
|
|
|
|
|
} elseif (strpos($key, 'remove_extra_') !== false) {
|
|
|
|
|
} else {
|
|
|
|
|
if (in_array($key, $available_values_to_modify)) {
|
|
|
|
|
$sql .= " $key = '".Database::escape_string($value)."',";
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$changePassword = false;
|
|
|
|
|
// Change email
|
|
|
|
|
if ($allow_users_to_change_email_with_no_password) {
|
|
|
|
|
if (isset($changeemail) && in_array('email', $available_values_to_modify)) {
|
|
|
|
|
$sql .= " email = '".Database::escape_string($changeemail)."' ";
|
|
|
|
|
}
|
|
|
|
|
if (isset($password) && in_array('password', $available_values_to_modify)) {
|
|
|
|
|
$changePassword = true;
|
|
|
|
|
/*$password = api_get_encrypted_password($password);
|
|
|
|
|
$sql .= " password = '".Database::escape_string($password)."'";*/
|
|
|
|
|
} else {
|
|
|
|
|
// remove trailing , from the query we have so far
|
|
|
|
|
//$sql = rtrim($sql, ',');
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
if (isset($changeemail) && !isset($password) && in_array('email', $available_values_to_modify)) {
|
|
|
|
|
$sql .= " email = '".Database::escape_string($changeemail)."'";
|
|
|
|
|
} else {
|
|
|
|
|
if (isset($password) && in_array('password', $available_values_to_modify)) {
|
|
|
|
|
if (isset($changeemail) && in_array('email', $available_values_to_modify)) {
|
|
|
|
|
$sql .= " email = '".Database::escape_string($changeemail)."' ";
|
|
|
|
|
}
|
|
|
|
|
$changePassword = true;
|
|
|
|
|
/*$password = api_get_encrypted_password($password);
|
|
|
|
|
$sql .= " password = '".Database::escape_string($password)."'";*/
|
|
|
|
|
} else {
|
|
|
|
|
// remove trailing , from the query we have so far
|
|
|
|
|
//$sql = rtrim($sql, ',');
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$sql = rtrim($sql, ',');
|
|
|
|
|
|
|
|
|
|
if ($changePassword && !empty($password)) {
|
|
|
|
|
UserManager::updatePassword(api_get_user_id(), $password);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (api_get_setting('profile', 'officialcode') === 'true' &&
|
|
|
|
|
isset($user_data['official_code'])
|
|
|
|
|
) {
|
|
|
|
|
$sql .= ", official_code = '".Database::escape_string($user_data['official_code'])."'";
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$sql .= " WHERE user_id = '".api_get_user_id()."'";
|
|
|
|
|
Database::query($sql);
|
|
|
|
|
|
|
|
|
|
if ($passwordWasChecked == false) {
|
|
|
|
|
Display::addFlash(
|
|
|
|
|
Display:: return_message(get_lang('ProfileReg'), 'normal', false)
|
|
|
|
|
);
|
|
|
|
|
} else {
|
|
|
|
|
if ($validPassword) {
|
|
|
|
|
Display::addFlash(
|
|
|
|
|
Display:: return_message(get_lang('ProfileReg'), 'normal', false)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$extraField = new ExtraFieldValue('user');
|
|
|
|
|
$extraField->saveFieldValues($user_data);
|
|
|
|
|
|
|
|
|
|
$userInfo = api_get_user_info();
|
|
|
|
|
Session::write('_user', $userInfo);
|
|
|
|
|
|
|
|
|
|
// re-init the system to take new settings into account
|
|
|
|
|
//$_SESSION['_user']['uidReset'] = true;
|
|
|
|
|
//$_SESSION['noredirection'] = true;
|
|
|
|
|
$url = api_get_self();
|
|
|
|
|
header("Location: ".$url);
|
|
|
|
|
exit;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// the header
|
|
|
|
|
|
|
|
|
|
$actions = null;
|
|
|
|
|
if (api_get_setting('allow_social_tool') !== 'true') {
|
|
|
|
|
if (api_get_setting('extended_profile') === 'true') {
|
|
|
|
|
$actions .= '<div class="actions">';
|
|
|
|
|
|
|
|
|
|
if (api_get_setting('allow_social_tool') === 'true' &&
|
|
|
|
|
api_get_setting('allow_message_tool') === 'true'
|
|
|
|
|
) {
|
|
|
|
|
$actions .= '<a href="'.api_get_path(WEB_PATH).'main/social/profile.php">'.
|
|
|
|
|
Display::return_icon('shared_profile.png', get_lang('ViewSharedProfile')).'</a>';
|
|
|
|
|
}
|
|
|
|
|
if (api_get_setting('allow_message_tool') === 'true') {
|
|
|
|
|
$actions .= '<a href="'.api_get_path(WEB_PATH).'main/messages/inbox.php">'.
|
|
|
|
|
Display::return_icon('inbox.png', get_lang('Messages')).'</a>';
|
|
|
|
|
}
|
|
|
|
|
$show = isset($_GET['show']) ? '&show='.Security::remove_XSS($_GET['show']) : '';
|
|
|
|
|
|
|
|
|
|
if (isset($_GET['type']) && $_GET['type'] === 'extended') {
|
|
|
|
|
$actions .= '<a href="profile.php?type=reduced'.$show.'">'.
|
|
|
|
|
Display::return_icon('edit.png', get_lang('EditNormalProfile'), '', 16).'</a>';
|
|
|
|
|
} else {
|
|
|
|
|
$actions .= '<a href="profile.php?type=extended'.$show.'">'.
|
|
|
|
|
Display::return_icon('edit.png', get_lang('EditExtendProfile'), '', 16).'</a>';
|
|
|
|
|
}
|
|
|
|
|
$actions .= '</div>';
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$show_delete_account_button = api_get_setting('platform_unsubscribe_allowed') === 'true' ? true : false;
|
|
|
|
|
|
|
|
|
|
$tpl = new Template(get_lang('ModifyProfile'));
|
|
|
|
|
$tpl->assign('actions', $actions);
|
|
|
|
|
|
|
|
|
|
SocialManager::setSocialUserBlock($tpl, $user_id, 'messages');
|
|
|
|
|
|
|
|
|
|
if (api_get_setting('allow_social_tool') === 'true') {
|
|
|
|
|
SocialManager::setSocialUserBlock($tpl, api_get_user_id(), 'home');
|
|
|
|
|
$menu = SocialManager::show_social_menu(
|
|
|
|
|
'home',
|
|
|
|
|
null,
|
|
|
|
|
api_get_user_id(),
|
|
|
|
|
false,
|
|
|
|
|
$show_delete_account_button
|
|
|
|
|
);
|
|
|
|
|
|
|
|
|
|
$tpl->assign('social_menu_block', $menu);
|
|
|
|
|
$tpl->assign('social_right_content', $form->returnForm());
|
|
|
|
|
$social_layout = $tpl->get_template('social/edit_profile.tpl');
|
|
|
|
|
$tpl->display($social_layout);
|
|
|
|
|
} else {
|
|
|
|
|
$bigImage = UserManager::getUserPicture(api_get_user_id(), USER_IMAGE_SIZE_BIG);
|
|
|
|
|
$normalImage = UserManager::getUserPicture(api_get_user_id(), USER_IMAGE_SIZE_ORIGINAL);
|
|
|
|
|
|
|
|
|
|
$imageToShow = '<div id="image-message-container">';
|
|
|
|
|
$imageToShow .= '<a class="expand-image" href="'.$bigImage.'" /><img src="'.$normalImage.'"></a>';
|
|
|
|
|
$imageToShow .= '</div>';
|
|
|
|
|
|
|
|
|
|
$content = $imageToShow.$form->returnForm();
|
|
|
|
|
|
|
|
|
|
$tpl->assign('content', $content);
|
|
|
|
|
$tpl->display_one_col_template();
|
|
|
|
|
}
|
