Age | Commit message (Collapse) | Author | Files | Lines |
|
|
|
This action will validate the user's password, and make sure you're not
removing the last admin, then proceed to delete the current user's
account from the database and log them out, for good.
|
|
There are two functions that need called in the common model whenever a
page is rendered. Rather than requiring all of the base MVC controllers
to call them, I am placing them in a constructor for this model class.
This constructor should fire automatically (since base mvc models
inherit this class), unless base classes define their own constructors.
I don't antisipate this happening, however in that case, they would just
need to call parent::__construct().
|
|
|
|
This will prompt the user for their password if they opt to delete their
own account. This is to prevent malicious attempt by others to trick
users into having there accounts deleted by way of a XSS attack.
|
|
Now supports file upload to replace the user's head image
|
|
|
|
This helper func to all implementing MVC controllers is used to check for submission of any web-form defined
within a common MVC view file. If detected, the appropriate handler function is called.
|
|
These two MVC trees are now accessable from the app. Also, the root controller is finally in a clean state :).
|
|
|
|
Model added in previous commit.
|
|
|
|
This applies the rules for requiring or forbiding the use of SSL/HTTPS and reorganizes the rest of root's handle() function (that is, the check for displaying sysconf, auth, or a placeholder message).
|
|
This patch encapsulates all app operations in a try block, and handles any exception by passing it into the new 'Except' MVC to be displayed
|
|
This MVC should be triggered by the root controller if normal routines throw an exception and should pass the exception message to the Except controller.
|
|
This MVC will not be used to handle deauth (logout) anymore. To improve app flow, a separate one will be created for this purpose
|
|
|
|
Finished initial functionality for Auth MVC by implementing the login feature
|
|
Now, on a successful submission of the signup view form (Auth MVC), the app automatically logs in the newly-created user and redirects to Framework::ap() . "/".
Placeholder code has been added to the root controller to simply var_dump() the current logged in user if one exists, otherwise the login view (Auth MVC) is shown
|
|
There was a mistake that caused the page notice about no accounts existing to sometimes not showup in error. This merge resolves that issue as well as tidys up the code a bit.
|
|
Submissions to the Auth signup page are now fully handled by either creating a new account (User object in the system) or posting an error message to the page (Auth model)
|
|
If no accounts exist no login page will be shown. Instead, the app presents the signup page to allow
the administrator to create his account. This is the only case where a new account should be an admin by default.
|
|
|
|
|
|
completed..... whew
+ Added some TODO comments for later development
|
|
|
|
|
|
|
|
* Removed explicit call to parent constructor in model class, since that function is not explicitly defined
|
|
delegating to the correct mvc if it is missing
|
|
|
|
|
|
|
|
* Finished implementing app main function to instanciate root and delegate to it
|