gnu-social/plugins/RequireValidatedEmail/RequireValidatedEmailPlugin.php

284 lines
8.9 KiB
PHP
Raw Normal View History

<?php
/**
* StatusNet, the distributed open-source microblogging tool
*
2010-10-07 22:13:38 +09:00
* Plugin that requires the user to have a validated email address before they
* can post notices
*
* PHP version 5
*
* LICENCE: This program is free software: you can redistribute it and/or modify
* it under the terms of the GNU Affero General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU Affero General Public License for more details.
*
* You should have received a copy of the GNU Affero General Public License
* along with this program. If not, see <http://www.gnu.org/licenses/>.
*
* @category Plugin
* @package StatusNet
* @author Craig Andrews <candrews@integralblue.com>
* @author Brion Vibber <brion@status.net>
* @author Evan Prodromou <evan@status.net>
* @copyright 2011 StatusNet Inc. http://status.net/
* @copyright 2009 Free Software Foundation, Inc http://www.fsf.org
* @license http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
* @link http://status.net/
*/
if (!defined('STATUSNET') && !defined('LACONICA')) {
exit(1);
}
2010-10-07 22:13:38 +09:00
/**
* Plugin for requiring a validated email before posting.
*
* Enable this plugin using addPlugin('RequireValidatedEmail');
*
* @category Plugin
* @package StatusNet
* @author Craig Andrews <candrews@integralblue.com>
* @author Brion Vibber <brion@status.net>
* @author Evan Prodromou <evan@status.net>
2013-08-12 19:57:47 +09:00
* @author Mikael Nordfeldth <mmn@hethane.se>
* @copyright 2009-2013 Free Software Foundation, Inc http://www.fsf.org
2010-10-07 22:13:38 +09:00
* @copyright 2009-2010 StatusNet, Inc.
* @license http://www.fsf.org/licensing/licenses/agpl-3.0.html GNU Affero General Public License version 3.0
* @link http://status.net/
*/
class RequireValidatedEmailPlugin extends Plugin
{
const PLUGIN_VERSION = '2.0.0';
2010-10-07 22:13:38 +09:00
/**
* Users created before this time will be grandfathered in
* without the validation requirement.
*/
public $grandfatherCutoff = null;
/**
* If OpenID plugin is installed, users with a verified OpenID
* association whose provider URL matches one of these regexes
* will be considered to be sufficiently valid for our needs.
*
* For example, to trust WikiHow and Wikipedia OpenID users:
*
* addPlugin('RequireValidatedEmailPlugin', array(
* 'trustedOpenIDs' => array(
* '!^http://\w+\.wikihow\.com/!',
* '!^http://\w+\.wikipedia\.org/!',
* ),
* ));
*/
public $trustedOpenIDs = array();
/**
* Whether or not to disallow login for unvalidated users.
*/
public $disallowLogin = false;
public function onRouterInitialized(URLMapper $m)
{
$m->('main/confirmfirst/:code',
['action' => 'confirmfirstemail']);
return true;
}
/**
* Event handler for notice saves; rejects the notice
* if user's address isn't validated.
*
2010-10-07 22:13:38 +09:00
* @param Notice $notice The notice being saved
*
* @return bool hook result code
*/
public function onStartNoticeSave(Notice $notice)
{
$author = $notice->getProfile();
if (!$author->isLocal()) {
// remote notice
return true;
}
$user = $author->getUser();
if (!$this->validated($user)) {
// TRANS: Client exception thrown when trying to post notices before validating an e-mail address.
$msg = _m('You must validate your email address before posting.');
throw new ClientException($msg);
}
return true;
}
/**
* Event handler for registration attempts; rejects the registration
* if email field is missing.
*
* @param Action $action Action being executed
*
* @return bool hook result code
*/
function onStartRegisterUser(&$user, &$profile)
{
$email = $user->email;
if (empty($email)) {
// TRANS: Client exception thrown when trying to register without providing an e-mail address.
throw new ClientException(_m('You must provide an email address to register.'));
}
return true;
}
/**
* Check if a user has a validated email address or has been
* otherwise grandfathered in.
*
2010-10-07 22:13:38 +09:00
* @param User $user User to valide
*
* @return bool
*/
protected function validated(User $user)
{
// The email field is only stored after validation...
// Until then you'll find them in confirm_address.
$knownGood = !empty($user->email) ||
2010-10-07 22:13:38 +09:00
$this->grandfathered($user) ||
$this->hasTrustedOpenID($user);
// Give other plugins a chance to override, if they can validate
// that somebody's ok despite a non-validated email.
2010-10-07 22:13:38 +09:00
// @todo FIXME: This isn't how to do it! Use Start*/End* instead
2010-10-07 22:13:38 +09:00
Event::handle('RequireValidatedEmailPlugin_Override',
array($user, &$knownGood));
return $knownGood;
}
/**
* Check if a user was created before the grandfathering cutoff.
* If so, we won't need to check for validation.
*
2010-10-07 22:13:38 +09:00
* @param User $user User to check
*
* @return bool true if user is grandfathered
*/
protected function grandfathered(User $user)
{
if ($this->grandfatherCutoff) {
$created = strtotime($user->created . " GMT");
2010-10-07 22:13:38 +09:00
$cutoff = strtotime($this->grandfatherCutoff);
if ($created < $cutoff) {
return true;
}
}
return false;
}
/**
* Override for RequireValidatedEmail plugin. If we have a user who's
* not validated an e-mail, but did come from a trusted provider,
* we'll consider them ok.
2010-10-07 22:13:38 +09:00
*
* @param User $user User to check
*
* @return bool true if user has a trusted OpenID.
*/
function hasTrustedOpenID(User $user)
{
if ($this->trustedOpenIDs && class_exists('User_openid')) {
foreach ($this->trustedOpenIDs as $regex) {
$oid = new User_openid();
2010-10-07 22:13:38 +09:00
$oid->user_id = $user->id;
2010-10-07 22:13:38 +09:00
$oid->find();
while ($oid->fetch()) {
if (preg_match($regex, $oid->canonical)) {
return true;
}
}
}
}
return false;
}
2010-10-07 22:13:38 +09:00
/**
* Add version information for this plugin.
*
* @param array &$versions Array of associative arrays of version data
*
* @return boolean hook value
*/
public function onPluginVersion(array &$versions): bool
{
2010-10-07 22:13:38 +09:00
$versions[] =
array('name' => 'Require Validated Email',
'version' => self::PLUGIN_VERSION,
2010-10-07 22:13:38 +09:00
'author' => 'Craig Andrews, '.
'Evan Prodromou, '.
'Brion Vibber',
'homepage' =>
'https://git.gnu.io/gnu/gnu-social/tree/master/plugins/RequireValidatedEmail',
2010-10-07 22:13:38 +09:00
'rawdescription' =>
// TRANS: Plugin description.
2010-10-07 22:13:38 +09:00
_m('Disables posting without a validated email address.'));
return true;
}
2010-10-07 23:32:29 +09:00
/**
* Show an error message about validating user email before posting
2010-10-07 23:32:29 +09:00
*
* @param string $tag Current tab tag value
2010-10-07 23:32:29 +09:00
* @param Action $action action being shown
* @param Form $form object producing the form
2010-10-07 23:32:29 +09:00
*
* @return boolean hook value
*/
function onStartMakeEntryForm($tag, $action, &$form)
2010-10-07 23:32:29 +09:00
{
$user = common_current_user();
if (!empty($user)) {
2010-10-07 23:32:29 +09:00
if (!$this->validated($user)) {
$action->element('div', array('class'=>'error'), _m('You must validate an email address before posting!'));
2010-10-07 23:32:29 +09:00
}
}
return true;
}
/**
* Prevent unvalidated folks from creating spam groups.
*
* @param Profile $profile User profile we're checking
* @param string $right rights key
* @param boolean $result if overriding, set to true/false has right
* @return boolean hook result value
*/
function onUserRightsCheck(Profile $profile, $right, &$result)
{
if ($right == Right::CREATEGROUP ||
($this->disallowLogin && ($right == Right::WEBLOGIN || $right == Right::API))) {
$user = User::getKV('id', $profile->id);
if ($user && !$this->validated($user)) {
$result = false;
return false;
}
}
return true;
}
function onLoginAction($action, &$login)
{
if ($action == 'confirmfirstemail') {
$login = true;
return false;
}
return true;
}
}