now mostly working

Author: benkeen

admin/add.php

@@ -9,6 +9,7 @@
 $module = Modules::initModulePage("admin");
 $L = $module->getLangStrings();
 $LANG = Core::$L;
+$root_url = Core::getRootUrl();
 
 // get a list of forms that already have a submission account configured. These are omitted from the
 // list of available forms
@@ -22,7 +23,12 @@
 
 $page_vars = array(
     "omit_forms" => $omit_forms,
-    "js_messages" => array("phrase_please_select", "phrase_please_select_form", "word_delete")
+    "js_messages" => array(
+        "phrase_please_select", "phrase_please_select_form", "word_delete"
+    ),
+    "js_files" => array(
+        "$root_url/modules/submission_accounts/scripts/manage_submission_account.js"
+    )
 );
 
 $page_vars["head_js"] = <<< END

code/Users.class.php

@@ -111,15 +111,15 @@ public static function login($info, $L)
         $db->query("
             SELECT *
             FROM   {PREFIX}form_{$form_id}
-            WHERE  $username_col = :value
+            WHERE  $username_col = :username
         ");
-        $db->bind("value", $info["username"]);
+        $db->bind("username", $info["username"]);
         $db->execute();
         $submissions = $db->fetchAll();
 
         // since there may be multiple users with the same username (we're relying on the administrator to enforce it, we'll
         // assume they've been a little lapse in their duties...), loop through all results found and log them in under the
-        // FIRST user that matches the exact username-password combo
+        // FIRST user that matches the exact username-password combo.
         $account_found = false;
         $submission_info = array();
         foreach ($submissions as $submission) {
@@ -186,15 +186,24 @@ public static function login($info, $L)
         // now figure out what View the user's supposed to see
         $view_id = self::getSubmissionView($form_id, $submission_id);
 
+        $settings = Settings::get();
+
         Sessions::clearAll();
         Sessions::set("account", array(
             "is_logged_in" => true,
+
+            // the secret sauce to allow the User->checkAuth method to accept this user. The whole auth is in need of refactoring.
+            "account_id" => "user",
+            "account_type" => "user",
+
             "theme" => $submission_account["theme"],
             "swatch" => $submission_account["swatch"],
+            "ui_language" => "en_us", // always in English right now
+            "timezone_offset" => $settings["default_timezone_offset"],
             "form_id" => $form_id,
             "view_id" => $view_id,
             "submission_id" => $submission_info["submission_id"],
-            "settings" => Settings::get()
+            "settings" => $settings
         ));
 
         $menu_template_info = self::cacheAccountMenu($form_id);
@@ -221,7 +230,7 @@ public static function cacheAccountMenu($form_id)
     {
         $root_url = Core::getRootUrl();
 
-        $menu_info = self::getFormMenu($form_id);
+        $menu_info = Admin::getFormMenu($form_id);
 
         $menu_template_info = array();
         for ($i = 0; $i < count($menu_info); $i++) {

forget_password.php

@@ -3,9 +3,11 @@
 require_once("../../global/library.php");
 
 use FormTools\Administrator;
+use FormTools\General;
 use FormTools\Modules;
 use FormTools\Settings;
 use FormTools\Modules\SubmissionAccounts\Admin;
+use FormTools\Modules\SubmissionAccounts\Users;
 
 $module = Modules::initModulePage();
 
@@ -24,6 +26,7 @@
 // now, if there's a form ID available (e.g. passed to the page via GET or POST), see if the form has been
 // configured with submission accounts and if so, use the theme associated with the form
 $form_id = Modules::loadModuleField("submission_accounts", "form_id", "form_id", "");
+
 $submission_account = array();
 if (!empty($form_id)) {
     $submission_account = Admin::getSubmissionAccount($form_id);
@@ -46,24 +49,30 @@
 }
 
 // if trying to send password
+$success = true;
+$message = "";
 if (isset($_POST["send_password"])) {
-    list($g_success, $g_message) = sa_send_password($form_id, $_POST);
+    list($success, $message) = Users::sendPassword($form_id, $_POST, $L);
 }
 
 $admin_info = Administrator::getAdminInfo();
 $admin_email = $admin_info["email"];
 
 $replacements = array("site_admin_email" => "<a href=\"mailto:$admin_email\">$admin_email</a>");
 
-$page_vars = array();
-$page_vars["text_forgot_password"] = ft_eval_smarty_string($L["text_forgot_password"], $replacements);
-$page_vars["error"] = $error;
-$page_vars["submission_account"] = $submission_account;
-$page_vars["main_error"] = $main_error; // an error SO BAD it prevents the login form from appearing
-$page_vars["module_settings"] = $module_settings;
+$page_vars = array(
+    "g_success" => $success,
+    "g_message" => $message,
+    "text_forgot_password" => General::evalSmartyString($L["text_forgot_password"], $replacements),
+    "error" => $error,
+    "submission_account" => $submission_account,
+    "main_error" => $main_error, // an error SO BAD it prevents the login form from appearing
+    "module_settings" => $module_settings
+);
+
 $page_vars["head_js"] = <<< END
 var rules = [];
 rules.push("required,email,{$L["validation_no_email"]}");
 END;
 
-ft_display_module_page("templates/forget_password.tpl", $page_vars, $g_theme, $g_swatch);
+$module->displayPage("templates/forget_password.tpl", $page_vars, $g_theme, $g_swatch);

lang/en_us.php

@@ -52,7 +52,7 @@
 $L["notify_submission_account_updated"] = "The submission account has been updated for this form.";
 $L["notify_menu_updated"] = "The menu has been updated.";
 $L["notify_settings_updated"] = "The settings have been updated.";
-$L["notify_login_no_form_id"] = "Sorry, there has been no form ID passed to this page. In order to display the login form, a <b>form_id</b> value must to be passed to this page via POST or GET. Please see the <a href=\"http://modules.formtools.org/submission_accounts/?page=logging_in\">user documentation</a>.";
+$L["notify_login_no_form_id"] = "Sorry, there has been no form ID passed to this page. In order to display the login form, a <b>form_id</b> value must to be passed to this page via POST or GET. Please see the <a href=\"https://docs.formtools.org/modules/submission_accounts/logging_in/\">user documentation</a>.";
 $L["notify_submission_account_inactive"] = "Sorry, user accounts are currently inactive for this form.";
 $L["notify_submission_account_data_deleted"] = "The user login data has been cleared.";
 $L["notify_problem_installing"] = "There following error occurred when trying to create the database tables for this module: <b>{\$error}</b>";

login.php

@@ -2,18 +2,19 @@
 
 require_once("../../global/library.php");
 
+use FormTools\Core;
 use FormTools\Modules;
 use FormTools\Settings;
 use FormTools\Modules\SubmissionAccounts\Admin;
+use FormTools\Modules\SubmissionAccounts\Users;
 
 $module = Modules::initModulePage();
+$module_settings = $module->getSettings();
+$L = $module->getLangStrings();
 
 $main_error = false;
 $error = "";
 
-$module_settings = $module->getSettings();
-$L = $module->getLangStrings();
-
 // get the default settings
 $settings = Settings::get();
 $g_theme = $settings["default_theme"];
@@ -25,6 +26,7 @@
 $submission_account = array();
 if (!empty($form_id)) {
     $submission_account = Admin::getSubmissionAccount($form_id);
+
     if (isset($submission_account["form_id"]) && $submission_account["submission_account_is_active"] == "yes") {
         $g_theme = $submission_account["theme"];
         $g_swatch = $submission_account["swatch"];
@@ -45,17 +47,20 @@
 $username = "";
 if (isset($_POST["login"])) {
     $_POST["form_id"] = $form_id;
-    $username = ft_strip_tags($_POST["username"]);
-    $error = sa_login($_POST);
+    $username = strip_tags($_POST["username"]);
+    $error = Users::login($_POST, $L);
 }
 
 $page_vars = array(
     "error" => $error,
     "username" => $username,
     "submission_account" => $submission_account,
     "main_error" => $main_error, // an error SO BAD it prevents the login form from appearing
-    "module_settings" => $module_settings,
-    "head_js" => "$(function() { document.login.username.focus(); });"
+    "module_settings" => $module_settings
 );
 
+// Urgh. Should be refactored along with User Roles
+Core::$user->setTheme($g_theme);
+Core::$user->setSwatch($g_swatch);
+
 $module->displayPage("templates/login.tpl", $page_vars, $g_theme, $g_swatch);

logout.php

@@ -1,28 +1,29 @@
 <?php
 
-session_start();
-header("Cache-control: private");
 require("../../global/library.php");
 
-$form_id = "";
-if (isset($_SESSION["ft"]["account"]["form_id"]))
-  $form_id = $_SESSION["ft"]["account"]["form_id"];
+use FormTools\Core;
+use FormTools\Modules;
+use FormTools\Sessions;
 
-$module_settings = ft_get_module_settings("", "submission_accounts");
+$module = Modules::initModulePage();
+$root_url = Core::getRootUrl();
+
+$form_id = Sessions::getWithFallback("account.form_id", "");
+
+$module_settings = $module->getSettings();
 $logout_location = $module_settings["logout_location"];
-if ($logout_location == "custom_url" || empty($logout_location))
-{
-  $logout_url = $module_settings["logout_url"];
-}
-else
-{
-  $logout_url = "$g_root_url/modules/submission_accounts/login.php";
-  if (!empty($form_id))
-    $logout_url .= "?form_id=" . $form_id;
+if ($logout_location == "custom_url" || empty($logout_location)) {
+    $logout_url = $module_settings["logout_url"];
+} else {
+    $logout_url = "$root_url/modules/submission_accounts/login.php";
+    if (!empty($form_id)) {
+        $logout_url .= "?form_id=" . $form_id;
+    }
 }
 
 // empty sessions
-$_SESSION["ft"] = array();
+Sessions::clearAll();
 
 // redirect to login page
-header("location: $logout_url");
+header("location: $logout_url");

templates/admin/help.tpl

@@ -14,7 +14,7 @@
   </table>
 
   <p>
-    For help on how to use this module, please see the <a href="http://modules.formtools.org/submission_accounts/">module help documentation</a>.
+    For help on how to use this module, please see the <a href="https://docs.formtools.org/modules/submission_accounts/">module help documentation</a>.
   </p>
 
 {ft_include file='modules_footer.tpl'}

templates/forget_password.tpl

@@ -13,15 +13,15 @@
     {$text_forgot_password}
   </div>
 
-  <form name="forget_password" action="{$same_page}{$g_query_params}" method="post"
+  <form name="forget_password" action="{$same_page}" method="post"
     onsubmit="return rsv.validate(this, rules)">
 
     <div class="login_panel margin_bottom_large">
       <div class="login_panel_inner">
         <table cellpadding="0" cellspacing="1">
         <tr>
           <td class="login_table_text">{$LANG.word_email}</td>
-          <td><input type="textbox" size="25" name="email" value="{$email}"></td>
+          <td><input type="textbox" size="25" name="email" value=""></td>
           <td align="center"><input type="submit" name="send_password" value="{$LANG.word_email|upper}" /></td>
         </tr>
         </table>

templates/login.tpl

@@ -28,13 +28,13 @@
       </div>
     {/if}
 
-    <form name="login" action="{$same_page}{$query_params}" method="post">
+    <form name="login" action="{$same_page}" method="post">
       <div class="login_panel margin_bottom_large">
         <div class="login_panel_inner">
           <table cellpadding="0" cellspacing="1">
           <tr>
             <td>{$module_settings.username_field_label}</td>
-            <td><input type="text" name="username" value="{$username}" /></td>
+            <td><input type="text" name="username" value="{$username}" autofocus /></td>
           </tr>
           <tr>
             <td>{$module_settings.password_field_label}</td>

templates/users/index.tpl

@@ -35,7 +35,7 @@
         {/if}
 
         {foreach from=$fields item=curr_field}
-          {assign var=field_id value=$field.field_id}
+          {assign var=field_id value=$curr_field.field_id}
           <tr>
             <td width="150" class="pad_left_small" valign="top">{$curr_field.field_title} <span class="req">{if $curr_field.is_required}*{/if}</span></td>
             <td valign="top">
@@ -72,4 +72,4 @@
     {template_hook location="submission_accounts_modules_edit_submission_bottom"}
   </div>
 
-{ft_include file='footer.tpl'}
+{ft_include file='footer.tpl'}