mirror of
https://github.com/Neetpone/ponepaste.git
synced 2025-03-12 14:40:09 +01:00
feat: user password resets
This commit is contained in:
Floorb
parent
319b312b23
commit
5538b40b77
4 changed files with 45 additions and 2 deletions
|
|
@ -53,6 +53,10 @@ class AbilityHelper {
|
||||||
return $user !== null
|
return $user !== null
|
||||||
&& $user->id === $subject->id; // Users can edit their own profiles
|
&& $user->id === $subject->id; // Users can edit their own profiles
|
||||||
},
|
},
|
||||||
|
'administrate' => function(User | null $user, User $subject) {
|
||||||
|
return $user !== null
|
||||||
|
&& $user->role >= User::ROLE_ADMIN; // Admins can edit all users
|
||||||
|
}
|
||||||
];
|
];
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
|
||||||
|
|
@ -274,3 +274,11 @@ code {
|
||||||
.content .purpletext {
|
.content .purpletext {
|
||||||
color: #9f14ae;
|
color: #9f14ae;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
.flex {
|
||||||
|
display: flex;
|
||||||
|
}
|
||||||
|
|
||||||
|
.flex--space-between {
|
||||||
|
justify-content: space-between;
|
||||||
|
}
|
||||||
|
|
@ -26,6 +26,22 @@ if (!$profile_info) {
|
||||||
goto Render;
|
goto Render;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
$can_administrate = can('administrate', $profile_info);
|
||||||
|
|
||||||
|
if ($can_administrate) {
|
||||||
|
if (isset($_POST['reset_password'])) {
|
||||||
|
if (!verifyCsrfToken()) {
|
||||||
|
flashError('Invalid CSRF token (do you have cookies enabled?)');
|
||||||
|
} else {
|
||||||
|
$new_password = pp_random_password();
|
||||||
|
$profile_info->password = pp_password_hash($new_password);
|
||||||
|
$profile_info->save();
|
||||||
|
|
||||||
|
flashSuccess('Password reset to ' . $new_password);
|
||||||
|
}
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
$p_title = $profile_username . "'s Public Pastes";
|
$p_title = $profile_username . "'s Public Pastes";
|
||||||
|
|
||||||
// There has to be a way to do the sum in SQL rather than PHP, but I can't figure out ho to do it in Eloquent.
|
// There has to be a way to do the sum in SQL rather than PHP, but I can't figure out ho to do it in Eloquent.
|
||||||
|
|
|
||||||
|
|
@ -37,8 +37,23 @@
|
||||||
<div class="bd-main-container container">
|
<div class="bd-main-container container">
|
||||||
<div class="bd-duo">
|
<div class="bd-duo">
|
||||||
<div class="bd-lead">
|
<div class="bd-lead">
|
||||||
|
<div class="flex flex--space-between">
|
||||||
|
<div>
|
||||||
<h1 class="title is-5"><?= pp_html_escape($profile_username) ?>'s Pastes</h1>
|
<h1 class="title is-5"><?= pp_html_escape($profile_username) ?>'s Pastes</h1>
|
||||||
<h1 class="subtitle is-6">joined: <?= $profile_join_date ?></h1>
|
<h1 class="subtitle is-6">Joined: <?= $profile_join_date ?></h1>
|
||||||
|
</div>
|
||||||
|
|
||||||
|
<?php if ($can_administrate): ?>
|
||||||
|
<div>
|
||||||
|
<p>Admin Actions:</p>
|
||||||
|
<form method="post">
|
||||||
|
<input type="hidden" name="csrf_token" value="<?= $csrf_token ?>">
|
||||||
|
<button class="button is-small is-success" type="submit" name="reset_password">Reset Password</button>
|
||||||
|
</form>
|
||||||
|
</div>
|
||||||
|
<?php endif; ?>
|
||||||
|
</div>
|
||||||
|
|
||||||
<!-- Badges system -->
|
<!-- Badges system -->
|
||||||
<div class="box">
|
<div class="box">
|
||||||
<h2 class="title is-5">Badges</h2>
|
<h2 class="title is-5">Badges</h2>
|
||||||
|
|
|
||||||
Loading…
Add table
Reference in a new issue