[ADDED] Account lock status
* Lock 1: user confirmation/unlock pending, count shares * Lock 2: Admin disabled, ignore shares This further addresses #1332 and should allow proper dropping of shares for banned accounts.
This commit is contained in:
Sebastian Grewe
parent
e4627fc51d
commit
702ed49704
@ -82,7 +82,7 @@ class Share Extends Base {
|
||||
FROM $this->table AS s
|
||||
LEFT JOIN " . $this->user->getTableName() . " AS a
|
||||
ON a.username = SUBSTRING_INDEX( s.username , '.', 1 )
|
||||
WHERE s.id > ? AND s.id <= ? AND s.our_result = 'Y' AND a.is_locked = 0
|
||||
WHERE s.id > ? AND s.id <= ? AND s.our_result = 'Y' AND a.is_locked != 2
|
||||
");
|
||||
if ($this->checkStmt($stmt) && $stmt->bind_param('ii', $previous_upstream, $current_upstream) && $stmt->execute() && $result = $stmt->get_result())
|
||||
return $result->fetch_object()->total;
|
||||
@ -107,7 +107,7 @@ class Share Extends Base {
|
||||
FROM $this->table AS s
|
||||
LEFT JOIN " . $this->user->getTableName() . " AS a
|
||||
ON a.username = SUBSTRING_INDEX( s.username , '.', 1 )
|
||||
WHERE s.id > ? AND s.id <= ? AND a.is_locked = 0
|
||||
WHERE s.id > ? AND s.id <= ? AND a.is_locked != 2
|
||||
GROUP BY username DESC
|
||||
");
|
||||
if ($this->checkStmt($stmt) && $stmt->bind_param('ii', $previous_upstream, $current_upstream) && $stmt->execute() && $result = $stmt->get_result())
|
||||
@ -154,7 +154,7 @@ class Share Extends Base {
|
||||
FROM $this->tableArchive AS s
|
||||
LEFT JOIN " . $this->user->getTableName() . " AS a
|
||||
ON a.username = SUBSTRING_INDEX( s.username , '.', 1 )
|
||||
WHERE s.share_id > ? AND s.share_id <= ? AND a.is_locked = 0
|
||||
WHERE s.share_id > ? AND s.share_id <= ? AND a.is_locked != 2
|
||||
GROUP BY account DESC");
|
||||
if ($this->checkStmt($stmt) && $stmt->bind_param("ii", $iMinId, $iMaxId) && $stmt->execute() && $result = $stmt->get_result()) {
|
||||
$aData = NULL;
|
||||
|
||||
@ -71,8 +71,8 @@ class User extends Base {
|
||||
$field = array('name' => 'no_fees', 'type' => 'i', 'value' => !$this->isNoFee($id));
|
||||
return $this->updateSingle($id, $field);
|
||||
}
|
||||
public function changeLocked($id) {
|
||||
$field = array('name' => 'is_locked', 'type' => 'i', 'value' => !$this->isLocked($id));
|
||||
public function setLocked($id, $value) {
|
||||
$field = array('name' => 'is_locked', 'type' => 'i', 'value' => $value);
|
||||
return $this->updateSingle($id, $field);
|
||||
}
|
||||
public function changeAdmin($id) {
|
||||
@ -172,7 +172,7 @@ class User extends Base {
|
||||
$this->incUserFailed($id);
|
||||
// Check if this account should be locked
|
||||
if (isset($this->config['maxfailed']['login']) && $this->getUserFailed($id) >= $this->config['maxfailed']['login']) {
|
||||
$this->changeLocked($id);
|
||||
$this->setLocked($id, 1);
|
||||
if ($token = $this->token->createToken('account_unlock', $id)) {
|
||||
$aData['token'] = $token;
|
||||
$aData['username'] = $username;
|
||||
@ -204,7 +204,7 @@ class User extends Base {
|
||||
$this->incUserPinFailed($userId);
|
||||
// Check if this account should be locked
|
||||
if (isset($this->config['maxfailed']['pin']) && $this->getUserPinFailed($userId) >= $this->config['maxfailed']['pin']) {
|
||||
$this->changeLocked($userId);
|
||||
$this->setLocked($userId, 1);
|
||||
if ($token = $this->token->createToken('account_unlock', $userId)) {
|
||||
$username = $this->getUserName($userId);
|
||||
$aData['token'] = $token;
|
||||
|
||||
@ -9,7 +9,7 @@ if (!isset($_GET['token']) || empty($_GET['token'])) {
|
||||
} else if (!$aToken = $oToken->getToken($_GET['token'], 'confirm_email')) {
|
||||
$_SESSION['POPUP'][] = array('CONTENT' => 'Unable to activate your account. Invalid token.', 'TYPE' => 'errormsg');
|
||||
} else {
|
||||
$user->changeLocked($aToken['account_id']);
|
||||
$user->setLocked($aToken['account_id'], 0);
|
||||
$oToken->deleteToken($aToken['token']);
|
||||
$_SESSION['POPUP'][] = array('CONTENT' => 'Account activated. Please login.');
|
||||
}
|
||||
|
||||
@ -10,7 +10,7 @@ if (!isset($_GET['token']) || empty($_GET['token'])) {
|
||||
$_SESSION['POPUP'][] = array('CONTENT' => 'Unable to re-activate your account. Invalid token.', 'TYPE' => 'errormsg');
|
||||
} else {
|
||||
if (!$config['csrf']['enabled'] || $config['csrf']['enabled'] && $csrftoken->valid) {
|
||||
if ($user->setUserFailed($aToken['account_id'], 0) && $user->setUserPinFailed($aToken['account_id'], 0) && $user->changeLocked($aToken['account_id'])) {
|
||||
if ($user->setUserFailed($aToken['account_id'], 0) && $user->setUserPinFailed($aToken['account_id'], 0) && $user->setLocked($aToken['account_id'], 0)) {
|
||||
$oToken->deleteToken($aToken['token']);
|
||||
$_SESSION['POPUP'][] = array('CONTENT' => 'Account re-activated. Please login.');
|
||||
} else {
|
||||
@ -22,4 +22,4 @@ if (!isset($_GET['token']) || empty($_GET['token'])) {
|
||||
}
|
||||
$smarty->assign('CONTENT', 'default.tpl');
|
||||
|
||||
?>
|
||||
?>
|
||||
|
||||
@ -22,8 +22,10 @@ switch (@$_REQUEST['do']) {
|
||||
case 'lock':
|
||||
$supress_master = 1;
|
||||
// Reset user account
|
||||
$user->changeLocked($_POST['account_id']);
|
||||
if ($user->isLocked($_POST['account_id']) == 0) {
|
||||
$user->setLocked($_POST['account_id'], 1);
|
||||
} else {
|
||||
$user->setLocked($_POST['account_id'], 0);
|
||||
$user->setUserFailed($_POST['account_id'], 0);
|
||||
$user->setUserPinFailed($_POST['account_id'], 0);
|
||||
}
|
||||
|
||||
Loading…
Reference in New Issue
Block a user