mkrieger/patchcablemgr
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
27b569b7db
patchcablemgr/backend/process_invitation.php
Garrett de2bde3f02 0.3.11
2020-11-22 22:50:42 +00:00

103 lines
2.9 KiB
PHP
Executable File
Raw Blame History

<?php
define('QUADODO_IN_SYSTEM', true);
require_once '../includes/header.php';
if($_SERVER['REQUEST_METHOD'] == 'POST'){
require_once '../includes/Validate.class.php';
$validate = new Validate($qls);
$validate->returnData['success'] = array();
if ($validate->returnData['active'] == 'inactive') {
echo json_encode($validate->returnData);
return;
}
$data = json_decode($_POST['data'], true);
validate($data, $validate, $qls);
if (!count($validate->returnData['error'])){
if($data['action'] == 'create') {
$qls->Security->check_auth_page('administrator.php');
// Super secret code so they can register
$code = sha1(md5($qls->config['sql_prefix']) . time() . $_SERVER['REMOTE_ADDR']);
$subject = "You've been invited!";
$recipientEmail = $data['email'];
$domain = $qls->config['cookie_domain'];
if($qls->config['cookie_path'] == '') {
$appPath = '/';
} else {
$appPath = $qls->config['cookie_path'];
if(substr($appPath, -1) != '/') {
$appPath .= '/';
}
}
$btnURL = $domain.$appPath.'register.php?code='.$code;
$btnText = 'Accept Invitation';
$qls->SQL->insert('invitations',
array(
'email',
'to_id',
'from_id',
'code',
),
array(
$recipientEmail,
0,
$qls->user_info['id'],
$code,
)
);
$msg = file_get_contents('../html/email_invitation.html');
$msg = str_replace('<!--btnURL-->', $btnURL, $msg);
$msg = str_replace('<!--btnText-->', $btnText, $msg);
if($qls->config['mail_method'] == 'smtp') {
//$qls->PHPmailer->SMTPDebug = 3;
$qls->PHPmailer->addAddress($recipientEmail, '');
$qls->PHPmailer->Subject = $subject;
$qls->PHPmailer->msgHTML($msg);
if(!$qls->PHPmailer->send()) {
array_push($validate->returnData['error'], $qls->PHPmailer->ErrorInfo);
} else {
$validate->returnData['success'] = 'Invitation sent to: '.$recipientEmail;
}
$qls->PHPmailer->clearAllRecipients();
} else if($qls->config['mail_method'] == 'proxy') {
$qls->Pub->sendProxyEmail('invitation', $recipientEmail, array('btnURL' => $btnURL, 'btnText' => $btnText));
}
}
}
echo json_encode($validate->returnData);
}
function validate($data, &$validate, &$qls){
$actionsArray = array('create');
//Validate action
if($validate->validateInArray($data['action'], $actionsArray, 'action')) {
// Validate entitlement
$query = $qls->SQL->select('id', 'users');
$userNum = $qls->SQL->num_rows($query) + 1;
if(!$qls->App->checkEntitlement('user', $userNum)) {
$errMsg = 'Exceeded entitled user count.';
array_push($validate->returnData['error'], $errMsg);
}
// Validate server name
if($qls->config['cookie_domain'] == '') {
$errMsg = 'Server name is not set.';
array_push($validate->returnData['error'], $errMsg);
}
}
}
?>
Reference in New Issue View Git Blame Copy Permalink