id/common/account_utils.php

87 lines
2.1 KiB
PHP
Raw Normal View History

2024-06-28 21:41:35 +00:00
<?php
function generate_bcid($duplicate_check=false): string
{
$CHARS = str_split("ABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890");
$bcid = $CHARS[array_rand($CHARS)].$CHARS[array_rand($CHARS)].$CHARS[array_rand($CHARS)].$CHARS[array_rand($CHARS)].$CHARS[array_rand($CHARS)].$CHARS[array_rand($CHARS)].$CHARS[array_rand($CHARS)];
if ($duplicate_check) {
$same_accounts = db_execute('SELECT id FROM accounts WHERE id = ? LIMIT 1', [$bcid]);
if ($same_accounts) {
$bcid = generate_bcid(true);
}
}
return $bcid;
}
function validate_bcid($bcid): bool
{
$stripped_bcid = str_replace([" ", "-"], "", $bcid);
$stripped_bcid = strtoupper($stripped_bcid);
if (!preg_match('/^[^A-Z^0-9]^/', $stripped_bcid) && strlen($stripped_bcid) == 7) {
return true;
}
return false; // fail condition
}
function format_bcid ($bcid): string
{ // Formats to XXX-XXXX
$stripped_bcid = str_replace([' ','-'], '', $bcid);
$stripped_bcid = strtoupper($stripped_bcid);
if (!validate_bcid($stripped_bcid)) {
throw new Exception('Invalid BCID.');
}
return substr($stripped_bcid, 0, 3).'-'.substr($stripped_bcid, -4, 4);
}
function get_user_by_id($bcid) {
2024-07-01 21:15:51 +00:00
return db_execute('SELECT * FROM accounts WHERE id = ? LIMIT 1', [$bcid]);
}
function get_user_display_name($userId, $escape = true) {
global $user;
if (!$_SESSION['auth']) {
return '';
}
$target = array();
if ($userId == $user['id']) {
$target = $user;
} else {
$target = get_user_by_id($userId);
}
if (is_null($user['display_name'])) {
try {
return format_bcid($user['id']);
} catch (Exception $e) {
return 'Invalid BCID';
}
}
$display_name = $user['display_name'];
if ($escape) {
$display_name = htmlspecialchars($display_name);
}
return $display_name;
2024-06-28 21:41:35 +00:00
}
2024-07-03 13:20:33 +00:00
function requires_auth($redirect = '/auth/login') {
global $path_raw;
if ($_SESSION['auth']) {
return true;
}
http_response_code(307);
header('Location: '.$redirect.'?callback='.urlencode($path_raw));
exit();
}