plateforme-tfjm2/server_files/controllers/inscription.php

<?php

$has_error = false;
$error_message = null;

if (isset($_POST["submitted"])) {
	$user = new NewUser($_POST);

	try {
		$user->makeVerifications();
		$user->register();
	} catch (AssertionError $e) {
		$has_error = true;
		$error_message = $e->getMessage();
	}
}

class NewUser
{
	public $email = null;
	public $first_name = null;
	public $surname = null;
	public $birth_date = null;
	public $gender = null;
	public $address = "";
	public $postal_code = null;
	public $city = "";
	public $country = null;
	public $phone_number = null;
	public $role = null;
	public $school = null;
	public $class = null;
	public $responsible_name = null;
	public $responsible_phone = null;
	public $responsible_email = null;
	public $description = null;
	public $confirm_email_token = null;
	private $password = null;
	private $confirm_password = null;

	public function __construct($data)
	{
		foreach ($data as $key => $value)
			$this->$key = htmlspecialchars($value);
	}

	public function makeVerifications()
	{
		global $DB, $YEAR;

		ensure(filter_var($this->email, FILTER_VALIDATE_EMAIL), "L'adresse e-mail entrée est invalide.");
		ensure(!$DB->query("SELECT `email` FROM `users` WHERE `email` = '" . $this->email . "' AND `year` = '$YEAR';")->fetch(), "Un compte existe déjà avec cette adresse e-mail.");
		ensure(strlen($this->password) >= 8, "Le mot de passe doit comporter au moins 8 caractères.");
		ensure($this->password == $this->confirm_password, "Les deux mots de passe sont différents.");
		ensure($this->surname != "", "Le nom de famille est obligatoire.");
		ensure($this->first_name != "", "Le prénom est obligatoire.");
		ensure(date_parse_from_format("yyyy-mm-dd", $this->birth_date) !== false, "La date de naissance est invalide.");
		ensure($this->birth_date < $YEAR . "-01-01", "Vous devez être né.");
		ensure($this->gender == "M" || $this->gender == "F", "Le sexe indiqué est invalide.");
		ensure(preg_match("#^[0-9]{4}[0-9]?$#", $this->postal_code) && intval($this->postal_code) >= 01000 && intval($this->postal_code) <= 95999, "Le code postal est invalide.");
		if ($this->country == "")
			$this->country = "France";
		ensure(strlen($this->phone_number) >= 10, "Le numéro de téléphone est invalide.");
		$this->role = Role::fromName(strtoupper($this->role));

		if ($this->role == Role::PARTICIPANT) {
			$this->class = SchoolClass::fromName(strtoupper($this->class));
			if ($this->birth_date > strval($YEAR - 18) . "04-01") {
				ensure($this->responsible_name != "", "Veuillez spécifier un responsable légal.");
				ensure(strlen($this->responsible_phone) >= 10, "Veuillez rentrer le numéro de téléphone de votre responsable légal.");
				ensure(filter_var($this->responsible_email, FILTER_VALIDATE_EMAIL), "Veuillez spécifier un responsable légal.");
			}
		}

		$this->confirm_email_token = uniqid();

		throw new AssertionError("erreur");
	}

	public function register()
	{
		global $DB, $YEAR, $URL_BASE, $MAIL_ADDRESS;

		$req = $DB->prepare("INSERT INTO `users`(`email`, `pwd_hash`, `confirm_email`, `surname`, `first_name`, `birth_date`, `gender`,
               `address`, `postal_code`, `city`, `country`, `phone_number`, `school`, `class`, `role`, `description`, `year`)
                VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?);");
		$req->execute([$this->email, password_hash($this->password, PASSWORD_BCRYPT), $this->confirm_email_token, $this->surname, $this->first_name, $this->birth_date, $this->gender, $this->address,
			$this->postal_code, $this->city, $this->country, $this->phone_number, $this->school, SchoolClass::getName($this->class), Role::getName($this->role), $this->description, $YEAR]);

		// TODO Mieux gérer l'envoi des mails avec une classe à part

		$msg = "Merci pour votre inscription au TFJM² $YEAR ! Veuillez désormais confirmer votre adresse mail en cliquant ici : $URL_BASE/confirmer_mail/" . $this->confirm_email_token;
		mail($this->email, "Inscription au TFJM² $YEAR", $msg, "From: $MAIL_ADDRESS\r\n");
	}
}

require_once "server_files/views/inscription.php";
Séparation vue et contrôleur 2019-09-06 11:48:50 +00:00			`<?php`

Restructuration de la page d'inscription 2019-09-07 13:51:16 +00:00			`$has_error = false;`
			`$error_message = null;`

Séparation vue et contrôleur 2019-09-06 11:48:50 +00:00			`if (isset($_POST["submitted"])) {`
Restructuration de la page d'inscription 2019-09-07 13:51:16 +00:00			`$user = new NewUser($_POST);`

			`try {`
			`$user->makeVerifications();`
			`$user->register();`
			`} catch (AssertionError $e) {`
			`$has_error = true;`
			`$error_message = $e->getMessage();`
			`}`
Séparation vue et contrôleur 2019-09-06 11:48:50 +00:00			`}`

Restructuration de la page d'inscription 2019-09-07 13:51:16 +00:00			`class NewUser`
			`{`
			`public $email = null;`
			`public $first_name = null;`
			`public $surname = null;`
			`public $birth_date = null;`
			`public $gender = null;`
			`public $address = "";`
			`public $postal_code = null;`
			`public $city = "";`
			`public $country = null;`
			`public $phone_number = null;`
			`public $role = null;`
			`public $school = null;`
			`public $class = null;`
			`public $responsible_name = null;`
			`public $responsible_phone = null;`
			`public $responsible_email = null;`
			`public $description = null;`
			`public $confirm_email_token = null;`
			`private $password = null;`
			`private $confirm_password = null;`

			`public function __construct($data)`
			`{`
			`foreach ($data as $key => $value)`
			`$this->$key = htmlspecialchars($value);`
			`}`

			`public function makeVerifications()`
			`{`
			`global $DB, $YEAR;`

			`ensure(filter_var($this->email, FILTER_VALIDATE_EMAIL), "L'adresse e-mail entrée est invalide.");`
			ensure(!$DB->query("SELECT `email` FROM `users` WHERE `email` = '" . $this->email . "' AND `year` = '$YEAR';")->fetch(), "Un compte existe déjà avec cette adresse e-mail.");
			`ensure(strlen($this->password) >= 8, "Le mot de passe doit comporter au moins 8 caractères.");`
			`ensure($this->password == $this->confirm_password, "Les deux mots de passe sont différents.");`
			`ensure($this->surname != "", "Le nom de famille est obligatoire.");`
			`ensure($this->first_name != "", "Le prénom est obligatoire.");`
			`ensure(date_parse_from_format("yyyy-mm-dd", $this->birth_date) !== false, "La date de naissance est invalide.");`
			`ensure($this->birth_date < $YEAR . "-01-01", "Vous devez être né.");`
			`ensure($this->gender == "M" \|\| $this->gender == "F", "Le sexe indiqué est invalide.");`
			`ensure(preg_match("#^[0-9]{4}[0-9]?$#", $this->postal_code) && intval($this->postal_code) >= 01000 && intval($this->postal_code) <= 95999, "Le code postal est invalide.");`
			`if ($this->country == "")`
			`$this->country = "France";`
			`ensure(strlen($this->phone_number) >= 10, "Le numéro de téléphone est invalide.");`
			`$this->role = Role::fromName(strtoupper($this->role));`

			`if ($this->role == Role::PARTICIPANT) {`
			`$this->class = SchoolClass::fromName(strtoupper($this->class));`
			`if ($this->birth_date > strval($YEAR - 18) . "04-01") {`
			`ensure($this->responsible_name != "", "Veuillez spécifier un responsable légal.");`
			`ensure(strlen($this->responsible_phone) >= 10, "Veuillez rentrer le numéro de téléphone de votre responsable légal.");`
			`ensure(filter_var($this->responsible_email, FILTER_VALIDATE_EMAIL), "Veuillez spécifier un responsable légal.");`
			`}`
			`}`

			`$this->confirm_email_token = uniqid();`

			`throw new AssertionError("erreur");`
			`}`

			`public function register()`
			`{`
			`global $DB, $YEAR, $URL_BASE, $MAIL_ADDRESS;`

			$req = $DB->prepare("INSERT INTO `users`(`email`, `pwd_hash`, `confirm_email`, `surname`, `first_name`, `birth_date`, `gender`,
Séparation vue et contrôleur 2019-09-06 11:48:50 +00:00			`address`, `postal_code`, `city`, `country`, `phone_number`, `school`, `class`, `role`, `description`, `year`)
			`VALUES (?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?, ?);");`
Restructuration de la page d'inscription 2019-09-07 13:51:16 +00:00			`$req->execute([$this->email, password_hash($this->password, PASSWORD_BCRYPT), $this->confirm_email_token, $this->surname, $this->first_name, $this->birth_date, $this->gender, $this->address,`
			`$this->postal_code, $this->city, $this->country, $this->phone_number, $this->school, SchoolClass::getName($this->class), Role::getName($this->role), $this->description, $YEAR]);`
Séparation vue et contrôleur 2019-09-06 11:48:50 +00:00
Restructuration de la page d'inscription 2019-09-07 13:51:16 +00:00			`// TODO Mieux gérer l'envoi des mails avec une classe à part`
Séparation vue et contrôleur 2019-09-06 11:48:50 +00:00
Restructuration de la page d'inscription 2019-09-07 13:51:16 +00:00			`$msg = "Merci pour votre inscription au TFJM² $YEAR ! Veuillez désormais confirmer votre adresse mail en cliquant ici : $URL_BASE/confirmer_mail/" . $this->confirm_email_token;`
			`mail($this->email, "Inscription au TFJM² $YEAR", $msg, "From: $MAIL_ADDRESS\r\n");`
			`}`
Séparation vue et contrôleur 2019-09-06 11:48:50 +00:00			`}`

Utilisation d'un dispatcher pour gérer les redirections 2019-09-07 11:42:36 +00:00			`require_once "server_files/views/inscription.php";`