+ + + +
\ No newline at end of file diff --git a/plugins/ahmadfatoni/apigenerator/controllers/apigeneratorcontroller/reorder.htm b/plugins/ahmadfatoni/apigenerator/controllers/apigeneratorcontroller/reorder.htm new file mode 100644 index 0000000..9813ab4 --- /dev/null +++ b/plugins/ahmadfatoni/apigenerator/controllers/apigeneratorcontroller/reorder.htm @@ -0,0 +1,8 @@ + +Hello {{ user.name }}
+ {% else %} +Nobody is logged in
+ {% endif %} + +### Signing out + +The Session component allows a user to sign out of their session. + + Sign out + +### Page restriction + +The Session component allows the restriction of a page or layout by allowing only signed in users, only guests or no restriction. This example shows how to restrict a page to users only: + + title = "Restricted page" + url = "/users-only" + + [session] + security = "user" + redirect = "home" + +The `security` property can be user, guest or all. The `redirect` property refers to a page name to redirect to when access is restricted. + +### Route restriction + +Access to routes can be restricted by applying the `AuthMiddleware`. + + Route::group(['middleware' => 'RainLab\User\Classes\AuthMiddleware'], function () { + // All routes here will require authentication + }); + +## Account component + +The account component provides a user sign in form, registration form, activation form and update form. To display the form: + + title = "Account" + url = "/account/:code?" + + [account] + redirect = "home" + paramCode = "code" + == + {% component 'account' %} + +If the user is logged out, this will display a sign in and registration form. Otherwise, it will display an update form. The `redirect` property is the page name to redirect to after the submit process is complete. The `paramCode` is the URL routing code used for activating the user, only used if the feature is enabled. + +## Reset Password component + +The reset password component allows a user to reset their password if they have forgotten it. + + title = "Forgotten your password?" + url = "/forgot-password/:code?" + + [resetPassword] + paramCode = "code" + == + {% component 'resetPassword' %} + +This will display the initial restoration request form and also the password reset form used after the verification email has been received by the user. The `paramCode` is the URL routing code used for resetting the password. + +## Using a login name + +By default the User plugin will use the email address as the login name. To switch to using a user defined login name, navigate to the backend under System > Users > User Settings and change the Login attribute under the Sign in tab to be **Username**. Then simply ask for a username upon registration by adding the username field: + + + +We can add any other additional fields here too, such as `phone`, `company`, etc. + +## Password length requirements + +By default, the User plugin requires a minimum password length of 8 characters for all users when registering or changing their password. You can change this length requirement by going to backend and navigating to System > Users > User Settings. Inside the Registration tab, a **Minimum password length** field is provided, allowing you to increase or decrease this limit to your preferred length. + +## Error handling + +### Flash messages + +This plugin makes use of October's [`Flash API`](http://octobercms.com/docs/markup/tag-flash). In order to display the error messages, you need to place the following snippet in your layout or page. + + {% flash %} ++ You should verify your account otherwise it may be deleted. Please check your email to verify. + Send the verification email again. +
+ +{% endif %} \ No newline at end of file diff --git a/plugins/rainlab/user/components/account/deactivate_link.htm b/plugins/rainlab/user/components/account/deactivate_link.htm new file mode 100644 index 0000000..f96071d --- /dev/null +++ b/plugins/rainlab/user/components/account/deactivate_link.htm @@ -0,0 +1,28 @@ + + Deactivate account + + + diff --git a/plugins/rainlab/user/components/account/default.htm b/plugins/rainlab/user/components/account/default.htm new file mode 100644 index 0000000..ddc10c2 --- /dev/null +++ b/plugins/rainlab/user/components/account/default.htm @@ -0,0 +1,24 @@ +{% if not user %} + +To change these details, please confirm your current password.
+Password reset complete, you may now sign in.
\ No newline at end of file diff --git a/plugins/rainlab/user/components/resetpassword/default.htm b/plugins/rainlab/user/components/resetpassword/default.htm new file mode 100644 index 0000000..b2eed57 --- /dev/null +++ b/plugins/rainlab/user/components/resetpassword/default.htm @@ -0,0 +1,7 @@ ++ Please check your email for the activation code. +
+ + diff --git a/plugins/rainlab/user/components/resetpassword/restore.htm b/plugins/rainlab/user/components/resetpassword/restore.htm new file mode 100644 index 0000000..e51eb02 --- /dev/null +++ b/plugins/rainlab/user/components/resetpassword/restore.htm @@ -0,0 +1,14 @@ ++ Lost your password? No problem! Enter your email address to verify your account. +
+ + diff --git a/plugins/rainlab/user/composer.json b/plugins/rainlab/user/composer.json new file mode 100644 index 0000000..0b4f218 --- /dev/null +++ b/plugins/rainlab/user/composer.json @@ -0,0 +1,25 @@ +{ + "name": "rainlab/user-plugin", + "type": "october-plugin", + "description": "User plugin for October CMS", + "homepage": "https://octobercms.com/plugin/rainlab-user", + "keywords": ["october", "octobercms", "user"], + "license": "MIT", + "authors": [ + { + "name": "Alexey Bobkov", + "email": "aleksey.bobkov@gmail.com", + "role": "Co-founder" + }, + { + "name": "Samuel Georges", + "email": "daftspunky@gmail.com", + "role": "Co-founder" + } + ], + "require": { + "php": ">=5.5.9", + "composer/installers": "~1.0" + }, + "minimum-stability": "dev" +} diff --git a/plugins/rainlab/user/config/config.php b/plugins/rainlab/user/config/config.php new file mode 100644 index 0000000..2fef283 --- /dev/null +++ b/plugins/rainlab/user/config/config.php @@ -0,0 +1,116 @@ + Settings::ACTIVATE_AUTO, + + /* + |-------------------------------------------------------------------------- + | Allow user registration + |-------------------------------------------------------------------------- + | + | If this is disabled users can only be created by administrators. + | + */ + + 'allowRegistration' => true, + + /* + |-------------------------------------------------------------------------- + | Prevent concurrent sessions + |-------------------------------------------------------------------------- + | + | When enabled users cannot sign in to multiple devices at the same time. + | + */ + + 'blockPersistence' => false, + + /* + |-------------------------------------------------------------------------- + | Login attribute + |-------------------------------------------------------------------------- + | + | Select what primary user detail should be used for signing in. + | + | LOGIN_EMAIL Authenticate users by email. + | LOGIN_USERNAME Authenticate users by username. + | + */ + + 'loginAttribute' => Settings::LOGIN_EMAIL, + + /* + |-------------------------------------------------------------------------- + | Minimum Password Length + |-------------------------------------------------------------------------- + | + | The minimum length of characters required for user passwords. + | + */ + + 'minPasswordLength' => 8, + + /* + |-------------------------------------------------------------------------- + | Remember login mode + |-------------------------------------------------------------------------- + | + | Select if the user session should be persistent. + | + | REMEMBER_ALWAYS Always persist user session. + | REMEMBER_ASK Ask if session should be persistent. + | REMEMBER_NEVER Never persist user session. + | + */ + + 'rememberLogin' => Settings::REMEMBER_ALWAYS, + + /* + |-------------------------------------------------------------------------- + | Sign in requires activation + |-------------------------------------------------------------------------- + | + | Users must have an activated account to sign in. + | + */ + + 'requireActivation' => true, + + /* + |-------------------------------------------------------------------------- + | Throttle registration + |-------------------------------------------------------------------------- + | + | Prevent multiple registrations from the same IP in short succession. + | + */ + + 'useRegisterThrottle' => true, + + /* + |-------------------------------------------------------------------------- + | Throttle attempts + |-------------------------------------------------------------------------- + | + | Repeat failed sign in attempts will temporarily suspend the user. + | + */ + + 'useThrottle' => true, +]; diff --git a/plugins/rainlab/user/controllers/UserGroups.php b/plugins/rainlab/user/controllers/UserGroups.php new file mode 100644 index 0000000..d624bf3 --- /dev/null +++ b/plugins/rainlab/user/controllers/UserGroups.php @@ -0,0 +1,50 @@ +addJs('/plugins/rainlab/user/assets/js/bulk-actions.js'); + + $this->asExtension('ListController')->index(); + } + + /** + * {@inheritDoc} + */ + public function listInjectRowClass($record, $definition = null) + { + $classes = []; + + if ($record->trashed()) { + $classes[] = 'strike'; + } + + if ($record->isBanned()) { + $classes[] = 'negative'; + } + + if (!$record->is_activated) { + $classes[] = 'disabled'; + } + + if (count($classes) > 0) { + return join(' ', $classes); + } + } + + public function listExtendQuery($query) + { + $query->withTrashed(); + } + + public function formExtendQuery($query) + { + $query->withTrashed(); + } + + /** + * Display username field if settings permit + */ + public function formExtendFields($form) + { + /* + * Show the username field if it is configured for use + */ + if ( + UserSettings::get('login_attribute') == UserSettings::LOGIN_USERNAME && + array_key_exists('username', $form->getFields()) + ) { + $form->getField('username')->hidden = false; + } + } + + public function formAfterUpdate($model) + { + $blockMail = post('User[block_mail]', false); + if ($blockMail !== false) { + $blockMail ? MailBlocker::blockAll($model) : MailBlocker::unblockAll($model); + } + } + + public function formExtendModel($model) + { + $model->block_mail = MailBlocker::isBlockAll($model); + + $model->bindEvent('model.saveInternal', function() use ($model) { + unset($model->attributes['block_mail']); + }); + } + + /** + * Manually activate a user + */ + public function preview_onActivate($recordId = null) + { + $model = $this->formFindModelObject($recordId); + + $model->attemptActivation($model->activation_code); + + Flash::success(Lang::get('rainlab.user::lang.users.activated_success')); + + if ($redirect = $this->makeRedirect('update-close', $model)) { + return $redirect; + } + } + + /** + * Manually unban a user + */ + public function preview_onUnban($recordId = null) + { + $model = $this->formFindModelObject($recordId); + + $model->unban(); + + Flash::success(Lang::get('rainlab.user::lang.users.unbanned_success')); + + if ($redirect = $this->makeRedirect('update-close', $model)) { + return $redirect; + } + } + + /** + * Display the convert to registered user popup + */ + public function preview_onLoadConvertGuestForm($recordId) + { + $this->vars['groups'] = UserGroup::where('code', '!=', UserGroup::GROUP_GUEST)->get(); + + return $this->makePartial('convert_guest_form'); + } + + /** + * Manually convert a guest user to a registered one + */ + public function preview_onConvertGuest($recordId) + { + $model = $this->formFindModelObject($recordId); + + // Convert user and send notification + $model->convertToRegistered(post('send_registration_notification', false)); + + // Remove user from guest group + if ($group = UserGroup::getGuestGroup()) { + $model->groups()->remove($group); + } + + // Add user to new group + if ( + ($groupId = post('new_group')) && + ($group = UserGroup::find($groupId)) + ) { + $model->groups()->add($group); + } + + Flash::success(Lang::get('rainlab.user::lang.users.convert_guest_success')); + + if ($redirect = $this->makeRedirect('update-close', $model)) { + return $redirect; + } + } + + /** + * Impersonate this user + */ + public function preview_onImpersonateUser($recordId) + { + if (!$this->user->hasAccess('rainlab.users.impersonate_user')) { + return Response::make(Lang::get('backend::lang.page.access_denied.label'), 403); + } + + $model = $this->formFindModelObject($recordId); + + Auth::impersonate($model); + + Flash::success(Lang::get('rainlab.user::lang.users.impersonate_success')); + } + + /** + * Unsuspend this user + */ + public function preview_onUnsuspendUser($recordId) + { + $model = $this->formFindModelObject($recordId); + + $model->unsuspend(); + + Flash::success(Lang::get('rainlab.user::lang.users.unsuspend_success')); + + return Redirect::refresh(); + } + + /** + * Force delete a user. + */ + public function update_onDelete($recordId = null) + { + $model = $this->formFindModelObject($recordId); + + $model->forceDelete(); + + Flash::success(Lang::get('backend::lang.form.delete_success')); + + if ($redirect = $this->makeRedirect('delete', $model)) { + return $redirect; + } + } + + /** + * Perform bulk action on selected users + */ + public function index_onBulkAction() + { + if ( + ($bulkAction = post('action')) && + ($checkedIds = post('checked')) && + is_array($checkedIds) && + count($checkedIds) + ) { + + foreach ($checkedIds as $userId) { + if (!$user = User::withTrashed()->find($userId)) { + continue; + } + + switch ($bulkAction) { + case 'delete': + $user->forceDelete(); + break; + + case 'activate': + $user->attemptActivation($user->activation_code); + break; + + case 'deactivate': + $user->clearPersistCode(); + $user->delete(); + break; + + case 'restore': + $user->restore(); + break; + + case 'ban': + $user->ban(); + break; + + case 'unban': + $user->unban(); + break; + } + } + + Flash::success(Lang::get('rainlab.user::lang.users.'.$bulkAction.'_selected_success')); + } + else { + Flash::error(Lang::get('rainlab.user::lang.users.'.$bulkAction.'_selected_empty')); + } + + return $this->listRefresh(); + } +} diff --git a/plugins/rainlab/user/controllers/usergroups/_list_toolbar.htm b/plugins/rainlab/user/controllers/usergroups/_list_toolbar.htm new file mode 100644 index 0000000..8ab7b77 --- /dev/null +++ b/plugins/rainlab/user/controllers/usergroups/_list_toolbar.htm @@ -0,0 +1,7 @@ +Use this checkbox to generate new random password for the user and send a registration notification email.
++ created_at->toFormattedDateString() ?> +
++ : + is_guest): ?> + + is_activated): ?> + + + + +
+last_seen->diffForHumans() ?>
++ isOnline() ? e(trans('rainlab.user::lang.user.is_online')) : e(trans('rainlab.user::lang.user.is_offline')) ?> +
++ + This schema document describes the XML namespace, in a form + suitable for import by other schema documents. +
++ See + http://www.w3.org/XML/1998/namespace.html and + + http://www.w3.org/TR/REC-xml for information + about this namespace. +
+ ++ Note that local names in this namespace are intended to be + defined only by the World Wide Web Consortium or its subgroups. + The names currently defined in this namespace are listed below. + They should not be used with conflicting semantics by any Working + Group, specification, or document instance. +
++ See further below in this document for more information about how to refer to this schema document from your own + XSD schema documents and about the + namespace-versioning policy governing this schema document. +
++ + denotes an attribute whose value + is a language code for the natural language of the content of + any element; its value is inherited. This name is reserved + by virtue of its definition in the XML specification.
+ ++ Attempting to install the relevant ISO 2- and 3-letter + codes as the enumerated possible values is probably never + going to be a realistic possibility. +
++ + See BCP 47 at + http://www.rfc-editor.org/rfc/bcp/bcp47.txt + and the IANA language subtag registry at + + http://www.iana.org/assignments/language-subtag-registry + for further information. +
++ + The union allows for the 'un-declaration' of xml:lang with + the empty string. +
++ denotes an attribute whose + value is a keyword indicating what whitespace processing + discipline is intended for the content of the element; its + value is inherited. This name is reserved by virtue of its + definition in the XML specification.
+ ++ denotes an attribute whose value + provides a URI to be used as the base for interpreting any + relative URIs in the scope of the element on which it + appears; its value is inherited. This name is reserved + by virtue of its definition in the XML Base specification.
+ ++ See http://www.w3.org/TR/xmlbase/ + for information about this attribute. +
+ ++ + denotes an attribute whose value + should be interpreted as if declared to be of type ID. + This name is reserved by virtue of its definition in the + xml:id specification.
+ ++ See http://www.w3.org/TR/xml-id/ + for information about this attribute. +
++ denotes Jon Bosak, the chair of + the original XML Working Group. This name is reserved by + the following decision of the W3C XML Plenary and + XML Coordination groups: +
++++ + In appreciation for his vision, leadership and + dedication the W3C XML Plenary on this 10th day of + February, 2000, reserves for Jon Bosak in perpetuity + the XML name "xml:Father". +
+
+ This schema defines attributes and an attribute group suitable
+ for use by schemas wishing to allow xml:base,
+ xml:lang, xml:space or
+ xml:id attributes on elements they define.
+
+ To enable this, such a schema must import this schema for + the XML namespace, e.g. as follows: +
++ <schema.. .> + .. . + <import namespace="http://www.w3.org/XML/1998/namespace" + schemaLocation="http://www.w3.org/2001/xml.xsd"/> ++
+ or +
++ + <import namespace="http://www.w3.org/XML/1998/namespace" + schemaLocation="http://www.w3.org/2009/01/xml.xsd"/> ++
+ Subsequently, qualified reference to any of the attributes or the + group defined below will have the desired effect, e.g. +
++ <type.. .> + .. . + <attributeGroup ref="xml:specialAttrs"/> ++
+ will define a type which will schema-validate an instance element + with any of those attributes. +
+ ++ In keeping with the XML Schema WG's standard versioning + policy, this schema document will persist at + + http://www.w3.org/2009/01/xml.xsd. +
++ At the date of issue it can also be found at + + http://www.w3.org/2001/xml.xsd. +
+ ++ The schema document at that URI may however change in the future, + in order to remain compatible with the latest version of XML + Schema itself, or with the XML namespace itself. In other words, + if the XML Schema or XML namespaces change, the version of this + document at + http://www.w3.org/2001/xml.xsd + + will change accordingly; the version at + + http://www.w3.org/2009/01/xml.xsd + + will not change. +
++ + Previous dated (and unchanging) versions of this schema + document are at: +
+ +