1e5a6b4d4SGreg Roach<?php 2*3976b470SGreg Roach 3e5a6b4d4SGreg Roach/** 4e5a6b4d4SGreg Roach * webtrees: online genealogy 5e5a6b4d4SGreg Roach * Copyright (C) 2019 webtrees development team 6e5a6b4d4SGreg Roach * This program is free software: you can redistribute it and/or modify 7e5a6b4d4SGreg Roach * it under the terms of the GNU General Public License as published by 8e5a6b4d4SGreg Roach * the Free Software Foundation, either version 3 of the License, or 9e5a6b4d4SGreg Roach * (at your option) any later version. 10e5a6b4d4SGreg Roach * This program is distributed in the hope that it will be useful, 11e5a6b4d4SGreg Roach * but WITHOUT ANY WARRANTY; without even the implied warranty of 12e5a6b4d4SGreg Roach * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the 13e5a6b4d4SGreg Roach * GNU General Public License for more details. 14e5a6b4d4SGreg Roach * You should have received a copy of the GNU General Public License 15e5a6b4d4SGreg Roach * along with this program. If not, see <http://www.gnu.org/licenses/>. 16e5a6b4d4SGreg Roach */ 17e5a6b4d4SGreg Roachdeclare(strict_types=1); 18e5a6b4d4SGreg Roach 19e5a6b4d4SGreg Roachnamespace Fisharebest\Webtrees\Services; 20e5a6b4d4SGreg Roach 21e5a6b4d4SGreg Roachuse Fisharebest\Webtrees\Auth; 22a00bcc63SGreg Roachuse Fisharebest\Webtrees\Carbon; 2386730b84SGreg Roachuse Fisharebest\Webtrees\Contracts\UserInterface; 24e5a6b4d4SGreg Roachuse Fisharebest\Webtrees\Individual; 2586730b84SGreg Roachuse Fisharebest\Webtrees\Tree; 26e5a6b4d4SGreg Roachuse Fisharebest\Webtrees\User; 27e5a6b4d4SGreg Roachuse Illuminate\Database\Capsule\Manager as DB; 28e5a6b4d4SGreg Roachuse Illuminate\Database\Query\JoinClause; 29e5a6b4d4SGreg Roachuse Illuminate\Support\Collection; 306ccdf4f0SGreg Roachuse Psr\Http\Message\ServerRequestInterface; 31*3976b470SGreg Roach 326ccdf4f0SGreg Roachuse function app; 33e5a6b4d4SGreg Roach 34e5a6b4d4SGreg Roach/** 35e5a6b4d4SGreg Roach * Functions for managing users. 36e5a6b4d4SGreg Roach */ 37e5a6b4d4SGreg Roachclass UserService 38e5a6b4d4SGreg Roach{ 39e5a6b4d4SGreg Roach /** 40e5a6b4d4SGreg Roach * Find the user with a specified user_id. 41e5a6b4d4SGreg Roach * 42e5a6b4d4SGreg Roach * @param int|null $user_id 43e5a6b4d4SGreg Roach * 44e5a6b4d4SGreg Roach * @return User|null 45e5a6b4d4SGreg Roach */ 4625d7fe95SGreg Roach public function find($user_id): ?User 47e5a6b4d4SGreg Roach { 480b5fd0a6SGreg Roach return app('cache.array')->rememberForever(__CLASS__ . $user_id, static function () use ($user_id): ?User { 49e5a6b4d4SGreg Roach return DB::table('user') 50e5a6b4d4SGreg Roach ->where('user_id', '=', $user_id) 51e5a6b4d4SGreg Roach ->get() 52e5a6b4d4SGreg Roach ->map(User::rowMapper()) 53e5a6b4d4SGreg Roach ->first(); 54e5a6b4d4SGreg Roach }); 55e5a6b4d4SGreg Roach } 56e5a6b4d4SGreg Roach 57e5a6b4d4SGreg Roach /** 58e5a6b4d4SGreg Roach * Find the user with a specified email address. 59e5a6b4d4SGreg Roach * 60e5a6b4d4SGreg Roach * @param string $email 61e5a6b4d4SGreg Roach * 62e5a6b4d4SGreg Roach * @return User|null 63e5a6b4d4SGreg Roach */ 64e364afe4SGreg Roach public function findByEmail($email): ?User 65e5a6b4d4SGreg Roach { 66e5a6b4d4SGreg Roach return DB::table('user') 67e5a6b4d4SGreg Roach ->where('email', '=', $email) 68e5a6b4d4SGreg Roach ->get() 69e5a6b4d4SGreg Roach ->map(User::rowMapper()) 70e5a6b4d4SGreg Roach ->first(); 71e5a6b4d4SGreg Roach } 72e5a6b4d4SGreg Roach 73e5a6b4d4SGreg Roach /** 74e5a6b4d4SGreg Roach * Find the user with a specified user_name or email address. 75e5a6b4d4SGreg Roach * 76e5a6b4d4SGreg Roach * @param string $identifier 77e5a6b4d4SGreg Roach * 78e5a6b4d4SGreg Roach * @return User|null 79e5a6b4d4SGreg Roach */ 80e364afe4SGreg Roach public function findByIdentifier($identifier): ?User 81e5a6b4d4SGreg Roach { 82e5a6b4d4SGreg Roach return DB::table('user') 83e5a6b4d4SGreg Roach ->where('user_name', '=', $identifier) 84e5a6b4d4SGreg Roach ->orWhere('email', '=', $identifier) 85e5a6b4d4SGreg Roach ->get() 86e5a6b4d4SGreg Roach ->map(User::rowMapper()) 87e5a6b4d4SGreg Roach ->first(); 88e5a6b4d4SGreg Roach } 89e5a6b4d4SGreg Roach 90e5a6b4d4SGreg Roach /** 91e5a6b4d4SGreg Roach * Find the user(s) with a specified genealogy record. 92e5a6b4d4SGreg Roach * 93e5a6b4d4SGreg Roach * @param Individual $individual 94e5a6b4d4SGreg Roach * 9554c7f8dfSGreg Roach * @return Collection 96e5a6b4d4SGreg Roach */ 97e5a6b4d4SGreg Roach public function findByIndividual(Individual $individual): Collection 98e5a6b4d4SGreg Roach { 99e5a6b4d4SGreg Roach return DB::table('user') 100e5a6b4d4SGreg Roach ->join('user_gedcom_setting', 'user_gedcom_setting.user_id', '=', 'user.user_id') 101e5a6b4d4SGreg Roach ->where('gedcom_id', '=', $individual->tree()->id()) 102e5a6b4d4SGreg Roach ->where('setting_value', '=', $individual->xref()) 103e5a6b4d4SGreg Roach ->where('setting_name', '=', 'gedcomid') 104e5a6b4d4SGreg Roach ->select(['user.*']) 105e5a6b4d4SGreg Roach ->get() 106e5a6b4d4SGreg Roach ->map(User::rowMapper()); 107e5a6b4d4SGreg Roach } 108e5a6b4d4SGreg Roach 109e5a6b4d4SGreg Roach /** 110a00bcc63SGreg Roach * Find the user with a specified password reset token. 111a00bcc63SGreg Roach * 112a00bcc63SGreg Roach * @param string $token 113a00bcc63SGreg Roach * 114a00bcc63SGreg Roach * @return User|null 115a00bcc63SGreg Roach */ 116a00bcc63SGreg Roach public function findByToken(string $token): ?User 117a00bcc63SGreg Roach { 118a00bcc63SGreg Roach return DB::table('user') 119a00bcc63SGreg Roach ->join('user_setting AS us1', 'us1.user_id', '=', 'user.user_id') 120a00bcc63SGreg Roach ->where('us1.setting_name', '=', 'password-token') 121a00bcc63SGreg Roach ->where('us1.setting_value', '=', $token) 122a00bcc63SGreg Roach ->join('user_setting AS us2', 'us2.user_id', '=', 'user.user_id') 123a00bcc63SGreg Roach ->where('us2.setting_name', '=', 'password-token-expire') 124a00bcc63SGreg Roach ->where('us2.setting_value', '>', Carbon::now()->timestamp) 125a00bcc63SGreg Roach ->select(['user.*']) 126a00bcc63SGreg Roach ->get() 127a00bcc63SGreg Roach ->map(User::rowMapper()) 128a00bcc63SGreg Roach ->first(); 129a00bcc63SGreg Roach } 130a00bcc63SGreg Roach 131a00bcc63SGreg Roach /** 132e5a6b4d4SGreg Roach * Find the user with a specified user_name. 133e5a6b4d4SGreg Roach * 134e5a6b4d4SGreg Roach * @param string $user_name 135e5a6b4d4SGreg Roach * 136e5a6b4d4SGreg Roach * @return User|null 137e5a6b4d4SGreg Roach */ 138e364afe4SGreg Roach public function findByUserName($user_name): ?User 139e5a6b4d4SGreg Roach { 140e5a6b4d4SGreg Roach return DB::table('user') 141e5a6b4d4SGreg Roach ->where('user_name', '=', $user_name) 142e5a6b4d4SGreg Roach ->get() 143e5a6b4d4SGreg Roach ->map(User::rowMapper()) 144e5a6b4d4SGreg Roach ->first(); 145e5a6b4d4SGreg Roach } 146e5a6b4d4SGreg Roach 147e5a6b4d4SGreg Roach /** 148e5a6b4d4SGreg Roach * Get a list of all users. 149e5a6b4d4SGreg Roach * 15054c7f8dfSGreg Roach * @return Collection 151e5a6b4d4SGreg Roach */ 152e5a6b4d4SGreg Roach public function all(): Collection 153e5a6b4d4SGreg Roach { 154e5a6b4d4SGreg Roach return DB::table('user') 155e5a6b4d4SGreg Roach ->where('user_id', '>', 0) 156e5a6b4d4SGreg Roach ->orderBy('real_name') 157e5a6b4d4SGreg Roach ->get() 158e5a6b4d4SGreg Roach ->map(User::rowMapper()); 159e5a6b4d4SGreg Roach } 160e5a6b4d4SGreg Roach 161e5a6b4d4SGreg Roach /** 162e5a6b4d4SGreg Roach * Get a list of all administrators. 163e5a6b4d4SGreg Roach * 16454c7f8dfSGreg Roach * @return Collection 165e5a6b4d4SGreg Roach */ 166e5a6b4d4SGreg Roach public function administrators(): Collection 167e5a6b4d4SGreg Roach { 168e5a6b4d4SGreg Roach return DB::table('user') 1690b5fd0a6SGreg Roach ->join('user_setting', static function (JoinClause $join): void { 170e5a6b4d4SGreg Roach $join 171e5a6b4d4SGreg Roach ->on('user_setting.user_id', '=', 'user.user_id') 172e5a6b4d4SGreg Roach ->where('user_setting.setting_name', '=', 'canadmin') 173e5a6b4d4SGreg Roach ->where('user_setting.setting_value', '=', '1'); 174e5a6b4d4SGreg Roach }) 175e5a6b4d4SGreg Roach ->where('user.user_id', '>', 0) 176e5a6b4d4SGreg Roach ->orderBy('real_name') 177e5a6b4d4SGreg Roach ->select(['user.*']) 178e5a6b4d4SGreg Roach ->get() 179e5a6b4d4SGreg Roach ->map(User::rowMapper()); 180e5a6b4d4SGreg Roach } 181e5a6b4d4SGreg Roach 182e5a6b4d4SGreg Roach /** 183e5a6b4d4SGreg Roach * Get a list of all managers. 184e5a6b4d4SGreg Roach * 18554c7f8dfSGreg Roach * @return Collection 186e5a6b4d4SGreg Roach */ 187e5a6b4d4SGreg Roach public function managers(): Collection 188e5a6b4d4SGreg Roach { 189e5a6b4d4SGreg Roach return DB::table('user') 1900b5fd0a6SGreg Roach ->join('user_gedcom_setting', static function (JoinClause $join): void { 191e5a6b4d4SGreg Roach $join 192e5a6b4d4SGreg Roach ->on('user_gedcom_setting.user_id', '=', 'user.user_id') 193e5a6b4d4SGreg Roach ->where('user_gedcom_setting.setting_name', '=', 'canedit') 194e5a6b4d4SGreg Roach ->where('user_gedcom_setting.setting_value', '=', 'admin'); 195e5a6b4d4SGreg Roach }) 196e5a6b4d4SGreg Roach ->where('user.user_id', '>', 0) 197e5a6b4d4SGreg Roach ->orderBy('real_name') 198e5a6b4d4SGreg Roach ->select(['user.*']) 199e5a6b4d4SGreg Roach ->get() 200e5a6b4d4SGreg Roach ->map(User::rowMapper()); 201e5a6b4d4SGreg Roach } 202e5a6b4d4SGreg Roach 203e5a6b4d4SGreg Roach /** 204e5a6b4d4SGreg Roach * Get a list of all moderators. 205e5a6b4d4SGreg Roach * 20654c7f8dfSGreg Roach * @return Collection 207e5a6b4d4SGreg Roach */ 208e5a6b4d4SGreg Roach public function moderators(): Collection 209e5a6b4d4SGreg Roach { 210e5a6b4d4SGreg Roach return DB::table('user') 2110b5fd0a6SGreg Roach ->join('user_gedcom_setting', static function (JoinClause $join): void { 212e5a6b4d4SGreg Roach $join 213e5a6b4d4SGreg Roach ->on('user_gedcom_setting.user_id', '=', 'user.user_id') 214e5a6b4d4SGreg Roach ->where('user_gedcom_setting.setting_name', '=', 'canedit') 215e5a6b4d4SGreg Roach ->where('user_gedcom_setting.setting_value', '=', 'accept'); 216e5a6b4d4SGreg Roach }) 217e5a6b4d4SGreg Roach ->where('user.user_id', '>', 0) 218e5a6b4d4SGreg Roach ->orderBy('real_name') 219e5a6b4d4SGreg Roach ->select(['user.*']) 220e5a6b4d4SGreg Roach ->get() 221e5a6b4d4SGreg Roach ->map(User::rowMapper()); 222e5a6b4d4SGreg Roach } 223e5a6b4d4SGreg Roach 224e5a6b4d4SGreg Roach /** 225e5a6b4d4SGreg Roach * Get a list of all verified users. 226e5a6b4d4SGreg Roach * 22754c7f8dfSGreg Roach * @return Collection 228e5a6b4d4SGreg Roach */ 229e5a6b4d4SGreg Roach public function unapproved(): Collection 230e5a6b4d4SGreg Roach { 231e5a6b4d4SGreg Roach return DB::table('user') 2320b5fd0a6SGreg Roach ->join('user_setting', static function (JoinClause $join): void { 233e5a6b4d4SGreg Roach $join 234e5a6b4d4SGreg Roach ->on('user_setting.user_id', '=', 'user.user_id') 235e5a6b4d4SGreg Roach ->where('user_setting.setting_name', '=', 'verified_by_admin') 236e5a6b4d4SGreg Roach ->where('user_setting.setting_value', '=', '0'); 237e5a6b4d4SGreg Roach }) 238e5a6b4d4SGreg Roach ->where('user.user_id', '>', 0) 239e5a6b4d4SGreg Roach ->orderBy('real_name') 240e5a6b4d4SGreg Roach ->select(['user.*']) 241e5a6b4d4SGreg Roach ->get() 242e5a6b4d4SGreg Roach ->map(User::rowMapper()); 243e5a6b4d4SGreg Roach } 244e5a6b4d4SGreg Roach 245e5a6b4d4SGreg Roach /** 246e5a6b4d4SGreg Roach * Get a list of all verified users. 247e5a6b4d4SGreg Roach * 24854c7f8dfSGreg Roach * @return Collection 249e5a6b4d4SGreg Roach */ 250e5a6b4d4SGreg Roach public function unverified(): Collection 251e5a6b4d4SGreg Roach { 252e5a6b4d4SGreg Roach return DB::table('user') 2530b5fd0a6SGreg Roach ->join('user_setting', static function (JoinClause $join): void { 254e5a6b4d4SGreg Roach $join 255e5a6b4d4SGreg Roach ->on('user_setting.user_id', '=', 'user.user_id') 256e5a6b4d4SGreg Roach ->where('user_setting.setting_name', '=', 'verified') 257e5a6b4d4SGreg Roach ->where('user_setting.setting_value', '=', '0'); 258e5a6b4d4SGreg Roach }) 259e5a6b4d4SGreg Roach ->where('user.user_id', '>', 0) 260e5a6b4d4SGreg Roach ->orderBy('real_name') 261e5a6b4d4SGreg Roach ->select(['user.*']) 262e5a6b4d4SGreg Roach ->get() 263e5a6b4d4SGreg Roach ->map(User::rowMapper()); 264e5a6b4d4SGreg Roach } 265e5a6b4d4SGreg Roach 266e5a6b4d4SGreg Roach /** 267e5a6b4d4SGreg Roach * Get a list of all users who are currently logged in. 268e5a6b4d4SGreg Roach * 26954c7f8dfSGreg Roach * @return Collection 270e5a6b4d4SGreg Roach */ 271e5a6b4d4SGreg Roach public function allLoggedIn(): Collection 272e5a6b4d4SGreg Roach { 273e5a6b4d4SGreg Roach return DB::table('user') 274e5a6b4d4SGreg Roach ->join('session', 'session.user_id', '=', 'user.user_id') 275e5a6b4d4SGreg Roach ->where('user.user_id', '>', 0) 276e5a6b4d4SGreg Roach ->orderBy('real_name') 277e5a6b4d4SGreg Roach ->select(['user.*']) 278e5a6b4d4SGreg Roach ->distinct() 279e5a6b4d4SGreg Roach ->get() 280e5a6b4d4SGreg Roach ->map(User::rowMapper()); 281e5a6b4d4SGreg Roach } 282e5a6b4d4SGreg Roach 283e5a6b4d4SGreg Roach /** 284e5a6b4d4SGreg Roach * Create a new user. 285e5a6b4d4SGreg Roach * The calling code needs to check for duplicates identifiers before calling 286e5a6b4d4SGreg Roach * this function. 287e5a6b4d4SGreg Roach * 288e5a6b4d4SGreg Roach * @param string $user_name 289e5a6b4d4SGreg Roach * @param string $real_name 290e5a6b4d4SGreg Roach * @param string $email 291e5a6b4d4SGreg Roach * @param string $password 292e5a6b4d4SGreg Roach * 293e5a6b4d4SGreg Roach * @return User 294e5a6b4d4SGreg Roach */ 2956be338f5SGreg Roach public function create(string $user_name, string $real_name, string $email, string $password): User 296e5a6b4d4SGreg Roach { 297e5a6b4d4SGreg Roach DB::table('user')->insert([ 298e5a6b4d4SGreg Roach 'user_name' => $user_name, 299e5a6b4d4SGreg Roach 'real_name' => $real_name, 300e5a6b4d4SGreg Roach 'email' => $email, 301e5a6b4d4SGreg Roach 'password' => password_hash($password, PASSWORD_DEFAULT), 302e5a6b4d4SGreg Roach ]); 303e5a6b4d4SGreg Roach 304e5a6b4d4SGreg Roach $user_id = (int) DB::connection()->getPdo()->lastInsertId(); 305e5a6b4d4SGreg Roach 306e5a6b4d4SGreg Roach return new User($user_id, $user_name, $real_name, $email); 307e5a6b4d4SGreg Roach } 308e5a6b4d4SGreg Roach 309e5a6b4d4SGreg Roach /** 310e5a6b4d4SGreg Roach * Delete a user 311e5a6b4d4SGreg Roach * 312e5a6b4d4SGreg Roach * @param User $user 313e5a6b4d4SGreg Roach * 314e5a6b4d4SGreg Roach * @return void 315e5a6b4d4SGreg Roach */ 316e364afe4SGreg Roach public function delete(User $user): void 317e5a6b4d4SGreg Roach { 318e5a6b4d4SGreg Roach // Don't delete the logs, just set the user to null. 319e5a6b4d4SGreg Roach DB::table('log') 320e5a6b4d4SGreg Roach ->where('user_id', '=', $user->id()) 321e5a6b4d4SGreg Roach ->update(['user_id' => null]); 322e5a6b4d4SGreg Roach 323e5a6b4d4SGreg Roach // Take over the user’s pending changes. (What else could we do with them?) 324e5a6b4d4SGreg Roach DB::table('change') 325e5a6b4d4SGreg Roach ->where('user_id', '=', $user->id()) 326e5a6b4d4SGreg Roach ->where('status', '=', 'rejected') 327e5a6b4d4SGreg Roach ->delete(); 328e5a6b4d4SGreg Roach 329e5a6b4d4SGreg Roach DB::table('change') 330e5a6b4d4SGreg Roach ->where('user_id', '=', $user->id()) 331e5a6b4d4SGreg Roach ->update(['user_id' => Auth::id()]); 332e5a6b4d4SGreg Roach 333e5a6b4d4SGreg Roach // Delete settings and preferences 334e5a6b4d4SGreg Roach DB::table('block_setting') 335e5a6b4d4SGreg Roach ->join('block', 'block_setting.block_id', '=', 'block.block_id') 336e5a6b4d4SGreg Roach ->where('user_id', '=', $user->id()) 337e5a6b4d4SGreg Roach ->delete(); 338e5a6b4d4SGreg Roach 339e5a6b4d4SGreg Roach DB::table('block')->where('user_id', '=', $user->id())->delete(); 340e5a6b4d4SGreg Roach DB::table('user_gedcom_setting')->where('user_id', '=', $user->id())->delete(); 341e5a6b4d4SGreg Roach DB::table('user_setting')->where('user_id', '=', $user->id())->delete(); 342e5a6b4d4SGreg Roach DB::table('message')->where('user_id', '=', $user->id())->delete(); 343e5a6b4d4SGreg Roach DB::table('user')->where('user_id', '=', $user->id())->delete(); 344e5a6b4d4SGreg Roach } 34586730b84SGreg Roach 34686730b84SGreg Roach /** 3474db4b4a9SGreg Roach * @param User $contact_user 34886730b84SGreg Roach * 34986730b84SGreg Roach * @return string 35086730b84SGreg Roach */ 351dcbe9044SGreg Roach public function contactLink(User $contact_user): string 352dcbe9044SGreg Roach { 353cab242e7SGreg Roach $tree = app(Tree::class); 354cab242e7SGreg Roach $user = app(UserInterface::class); 3556ccdf4f0SGreg Roach $request = app(ServerRequestInterface::class); 35686730b84SGreg Roach 35786730b84SGreg Roach if ($contact_user->getPreference('contactmethod') === 'mailto') { 35886730b84SGreg Roach $url = 'mailto:' . $contact_user->email(); 35986730b84SGreg Roach } elseif ($user instanceof User) { 36086730b84SGreg Roach // Logged-in users send direct messages 3615d284d5dSGreg Roach $url = route('message', ['to' => $contact_user->userName()]); 36286730b84SGreg Roach } else { 36386730b84SGreg Roach // Visitors use the contact form. 36486730b84SGreg Roach $url = route('contact', [ 36586730b84SGreg Roach 'ged' => $tree ? $tree->name() : '', 36686730b84SGreg Roach 'to' => $contact_user->userName(), 367add3fa41SGreg Roach 'url' => $request->getAttribute('request_uri'), 36886730b84SGreg Roach ]); 36986730b84SGreg Roach } 37086730b84SGreg Roach 37186730b84SGreg Roach return '<a href="' . e($url) . '" dir="auto">' . e($contact_user->realName()) . '</a>'; 37286730b84SGreg Roach } 373e5a6b4d4SGreg Roach} 374