login functionality and check for voting and registerfield

2013-06-26 13:56:13 +02:00 · 2013-06-26 13:56:13 +02:00 · f68fb67288
commit f68fb67288
parent 20228bc6d7
2 changed files with 23 additions and 15 deletions
--- a/uVote/api/votes/votes.php
+++ b/uVote/api/votes/votes.php
@ -13,20 +13,20 @@ class votes {
        return $result;
    }
    public static function write_vote($poll_ID, $vote){
+        if(!\SYSTEM\SECURITY\Security::isLoggedIn()){
+            throw new ERROR("You need to be logged in.");}
+            
        $con = new \SYSTEM\DB\Connection(new \DBD\uVote());
-         $res = $con->prepare(   'selVote',
-                                'SELECT * FROM `uvote_data` WHERE `poll_ID` = ?;',
-                                array($poll_ID));
-//         print_r($res->next());
-//         die();
+        $res = $con->prepare(   'selVote',
+                                'SELECT * FROM `uvote_data` WHERE `poll_ID` = ? AND user_ID = ?;',
+                                array($poll_ID, \SYSTEM\SECURITY\Security::getUser()->id));
         if ($res->next()){
-             throw new ERROR('You already voted!');         }
-             $poll_ID = $_GET["poll_ID"];
-             $vote = $_GET["vote"];
+             throw new ERROR('You already voted!');}
+                     
        $res = $con->prepare(   'insertVote',
                                'INSERT INTO uvote_data
                                 VALUES (?, ?, ?);',
-                                array($poll_ID, NULL, $vote));   
+                                array($poll_ID, \SYSTEM\SECURITY\Security::getUser()->id, $vote));   
        return JsonResult::ok();
    }
 }
--- a/uVote/page/default_page/default_page.php
+++ b/uVote/page/default_page/default_page.php
@ -19,18 +19,26 @@ class default_page extends SYSTEM\PAGE\Page {
        return $result;
    }
    
-    public function exchange_registerform(){
-        $result= "";
-        $result .= SYSTEM\PAGE\replace::replaceFile(SYSTEM\SERVERPATH(new PPAGE(),'default_page/register_form.tpl'),array());
+    public function getloggedinform(){
+        return "abc";}
    
-    return $result;
-}
+    public function exchange_registerform(){
+        return SYSTEM\PAGE\replace::replaceFile(SYSTEM\SERVERPATH(new PPAGE(),'default_page/register_form.tpl'),array());}
    
    public function html(){
+        //\SYSTEM\SECURITY\Security::available($dbinfo, $username)                                  //account available
+        //\SYSTEM\SECURITY\Security::check($dbinfo, $rightid)                                       //recht prüfen
+        //\SYSTEM\SECURITY\Security::create($dbinfo, $username, $password, $email, $locale)         //account erstellen
+        //\SYSTEM\SECURITY\Security::getUser()                                                      //nutzerinfos
+        //\SYSTEM\SECURITY\Security::isLoggedIn()                                                   //ist eingeloggt?
+        //\SYSTEM\SECURITY\Security::login($dbinfo, $username, $password_sha, $password_md5)        //einloggen
+        //\SYSTEM\SECURITY\Security::load($key)                                                     //wert aus session laden..
+        //\SYSTEM\SECURITY\Security::save($key, $value)                                             //wert in session speichern(nutzerbezogen, cookie)
+        //\SYSTEM\SECURITY\Security::logout()                                                       //ausloggen
        $vars = array();               
        $vars['js'] = $this->js(); 
        $vars['votelist'] = $this->generate_votelist();
-        $vars['registerform'] = $this->exchange_registerform();
+        $vars['registerform'] = \SYSTEM\SECURITY\Security::isLoggedIn() ? $this->getloggedinform() : $this->exchange_registerform();
        $vars['PIC_PATH'] = SYSTEM\WEBPATH(new PPAGE(),'default_page/pics/');
        return SYSTEM\PAGE\replace::replaceFile(SYSTEM\SERVERPATH(new PPAGE(),'default_page/page.html'), $vars);