1 <?php defined('SYSPATH') or die('No direct script access.');
3 * Users model for creating and manipulating user accounts
5 * @author Artem Daniliants <artem@daniliants.com>
6 * @copyright (c) 2010 Speed Freak team
7 * @license http://opensource.org/licenses/gpl-license.php GNU Public License
10 class User_Model extends Model {
13 * Initialize class and register user if all parameters are supplied
15 * @param string $username Length 3-12
16 * @param string $password Length 6-255 (stored as sha1 hash in database)
17 * @param string $email Valid email address
18 * @return bool Returns True if operation was successfull and exception otherwise
20 public function __construct($username='', $password='', $email=''){
22 // load database library into $this->db
23 parent::__construct();
25 if ($username!='' and $password!='' and $email!=''){
26 if (strlen($username)<3)
27 throw new Exception('Username too short');
28 elseif (strlen($username)>12)
29 throw new Exception('Username too long');
30 elseif (strlen($password)<6)
31 throw new Exception('Password too short');
32 elseif (strlen($username)>255)
33 throw new Exception('Password too long');
34 elseif (valid::email($email) == False)
35 throw new Exception('Invalid email supplied');
36 elseif ($this->user_exists($username, $email))
37 throw new Exception('User already exists (login or email matched)');
39 if ($this->register($username, $password, $email)->valid())
50 * @param string $username Length 3-12
51 * @param string $password Length 6-255 (stored as sha1 hash in database)
52 * @param string $email Valid email address
53 * @return bool Returns True if operation was successfull and exception otherwise
55 private function register($username, $password, $email){
57 $password = $this->hash($password);
59 // @todo I can't seem to get query working when password binding has '' around it like others
60 if ($this->user_exists($username, $email)==false)
61 return $this->db->query("INSERT into users SET username = '?', password = ?, email = '?'",
62 $username, $password, $email);
68 * Hash password supplied by user using salt stored in config file
70 * @param string $password Password in plain text format
71 * @return string Returns string containing hash generated from password
73 private function hash($password){
74 return sha1($password.Kohana::config('api.salt'));
78 * Check if user already exists in database
80 * @param string $username Username
81 * @param string $email Email address
82 * @return bool Returns True if user exists and false otherwise
84 private function user_exists($username, $email){
85 if ($this->db->query("SELECT id FROM users WHERE username = '?' OR email = '?'",
86 $username, $email)->count()>0)
93 * Check if supplied credentials are valid
95 * @param string $username Username
96 * @param string $password Password in plain text format
97 * @return bool True if credentials match and false if supplied credentials are invalid
99 public function login($username, $password){
101 $password = $this->hash($password);
103 if ($this->db->query("SELECT id FROM users WHERE username = ? AND password = ?",
104 $username, $password)->count()>0)