1 | <?php |
||||
2 | /** |
||||
3 | * Extended User Profile |
||||
4 | * |
||||
5 | * You may not change or alter any portion of this comment or credits |
||||
6 | * of supporting developers from this source code or any supporting source code |
||||
7 | * which is considered copyrighted (c) material of the original comment or credit authors. |
||||
8 | * This program is distributed in the hope that it will be useful, |
||||
9 | * but WITHOUT ANY WARRANTY; without even the implied warranty of |
||||
10 | * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. |
||||
11 | * |
||||
12 | * @copyright (c) 2000-2016 XOOPS Project (www.xoops.org) |
||||
13 | * @license GNU GPL 2 (http://www.gnu.org/licenses/gpl-2.0.html) |
||||
14 | * @package profile |
||||
15 | * @since 2.3.0 |
||||
16 | * @author Taiwen Jiang <[email protected]> |
||||
17 | */ |
||||
18 | |||||
19 | use XoopsModules\Suico\IndexController; |
||||
20 | use Xmf\Request; |
||||
21 | |||||
22 | $GLOBALS['xoopsOption']['template_main'] = 'suico_email.tpl'; |
||||
23 | require __DIR__ . '/header.php'; |
||||
24 | /** |
||||
25 | * Fetching numbers of groups friends videos pictures etc... |
||||
26 | */ |
||||
27 | $controller = new IndexController($xoopsDB, $xoopsUser, $xoopsModule); |
||||
0 ignored issues
–
show
|
|||||
28 | $nbSections = $controller->getNumbersSections(); |
||||
29 | /* @var XoopsConfigHandler $configHandler */ |
||||
30 | $configHandler = xoops_getHandler('config'); |
||||
31 | $GLOBALS['xoopsConfigUser'] = $configHandler->getConfigsByCat(XOOPS_CONF_USER); |
||||
32 | if (!$GLOBALS['xoopsUser'] || 1 != $GLOBALS['xoopsConfigUser']['allow_chgmail']) { |
||||
33 | redirect_header(XOOPS_URL . '/modules/' . $GLOBALS['xoopsModule']->getVar('dirname', 'n') . '/', 2, _NOPERM); |
||||
34 | } |
||||
35 | if (!isset($_POST['submit']) || !isset($_POST['passwd'])) { |
||||
36 | //show change password form |
||||
37 | include_once $GLOBALS['xoops']->path('class/xoopsformloader.php'); |
||||
38 | $form = new XoopsThemeForm(_MD_SUICO_CHANGEMAIL, 'emailform', $_SERVER['REQUEST_URI'], 'post', true); |
||||
39 | $form->addElement(new XoopsFormPassword(_US_PASSWORD, 'passwd', 15, 50), true); |
||||
40 | $form->addElement(new XoopsFormText(_MD_SUICO_NEWMAIL, 'newmail', 15, 50), true); |
||||
41 | $form->addElement(new XoopsFormButton('', 'submit', _SUBMIT, 'submit')); |
||||
42 | $form->assign($GLOBALS['xoopsTpl']); |
||||
43 | } else { |
||||
44 | $myts = MyTextSanitizer::getInstance(); |
||||
45 | $pass = Request::getString('passwd', '', 'POST'); |
||||
46 | $email = Request::getString('newmail', '', 'POST'); |
||||
47 | $errors = []; |
||||
48 | if (!password_verify($oldpass, $GLOBALS['xoopsUser']->getVar('pass', 'n'))) { |
||||
49 | $errors[] = _MA_SUICO_WRONGPASSWORD; |
||||
0 ignored issues
–
show
|
|||||
50 | } |
||||
51 | if (!checkEmail($email)) { |
||||
52 | $errors[] = _US_INVALIDMAIL; |
||||
53 | } |
||||
54 | if ($errors) { |
||||
55 | $msg = implode('<br>', $errors); |
||||
56 | } else { |
||||
57 | //update password |
||||
58 | $GLOBALS['xoopsUser']->setVar('email', Request::getString('newmail', '', 'POST')); |
||||
59 | /* @var XoopsMemberHandler $memberHandler */ |
||||
60 | $memberHandler = xoops_getHandler('member'); |
||||
61 | if ($memberHandler->insertUser($GLOBALS['xoopsUser'])) { |
||||
62 | $msg = _MD_SUICO_EMAILCHANGED; |
||||
63 | //send email to new email address |
||||
64 | $xoopsMailer = xoops_getMailer(); |
||||
65 | $xoopsMailer->useMail(); |
||||
66 | $xoopsMailer->setTemplateDir($GLOBALS['xoopsModule']->getVar('dirname', 'n')); |
||||
67 | $xoopsMailer->setTemplate('emailchanged.tpl'); |
||||
68 | $xoopsMailer->assign('SITENAME', $GLOBALS['xoopsConfig']['sitename']); |
||||
69 | $xoopsMailer->assign('ADMINMAIL', $GLOBALS['xoopsConfig']['adminmail']); |
||||
70 | $xoopsMailer->assign('SITEURL', XOOPS_URL . '/'); |
||||
71 | $xoopsMailer->assign('NEWEMAIL', $email); |
||||
72 | $xoopsMailer->setToEmails($email); |
||||
73 | $xoopsMailer->setFromEmail($GLOBALS['xoopsConfig']['adminmail']); |
||||
74 | $xoopsMailer->setFromName($GLOBALS['xoopsConfig']['sitename']); |
||||
75 | $xoopsMailer->setSubject(sprintf(_MD_SUICO_NEWEMAIL, $GLOBALS['xoopsConfig']['sitename'])); |
||||
76 | $xoopsMailer->send(); |
||||
77 | } else { |
||||
78 | $msg = implode('<br>', $GLOBALS['xoopsUser']->getErrors()); |
||||
79 | } |
||||
80 | } |
||||
81 | redirect_header(XOOPS_URL . '/modules/' . $GLOBALS['xoopsModule']->getVar('dirname', 'n') . '/index.php?uid=' . $GLOBALS['xoopsUser']->getVar('uid'), 2, $msg); |
||||
82 | } |
||||
83 | $xoopsOption['xoops_pagetitle'] = sprintf(_MD_SUICO_CHANGEMAIL, $xoopsModule->getVar('name'), $controller->nameOwner); |
||||
0 ignored issues
–
show
It seems like
$controller->nameOwner can also be of type array and array ; however, parameter $args of sprintf() does only seem to accept string , maybe add an additional type check?
(
Ignorable by Annotation
)
If this is a false-positive, you can also ignore this issue in your code via the
Loading history...
|
|||||
84 | require __DIR__ . '/footer.php'; |
||||
85 | require dirname(__DIR__, 2) . '/footer.php'; |
||||
86 |
This check compares calls to functions or methods with their respective definitions. If the call has more arguments than are defined, it raises an issue.
If a function is defined several times with a different number of parameters, the check may pick up the wrong definition and report false positives. One codebase where this has been known to happen is Wordpress. Please note the @ignore annotation hint above.