Bug 24786: Add validation to point of sale
[koha.git] / opac / opac-registration-verify.pl
blob71ea329251866955de0ad370fe4507eeea88fb64
1 #!/usr/bin/perl
3 # This file is part of Koha.
5 # Koha is free software; you can redistribute it and/or modify it
6 # under the terms of the GNU General Public License as published by
7 # the Free Software Foundation; either version 3 of the License, or
8 # (at your option) any later version.
10 # Koha is distributed in the hope that it will be useful, but
11 # WITHOUT ANY WARRANTY; without even the implied warranty of
12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 # GNU General Public License for more details.
15 # You should have received a copy of the GNU General Public License
16 # along with Koha; if not, see <http://www.gnu.org/licenses>.
18 use Modern::Perl;
20 use CGI qw ( -utf8 );
22 use C4::Auth;
23 use C4::Output;
24 use C4::Members;
25 use C4::Form::MessagingPreferences;
26 use Koha::AuthUtils;
27 use Koha::Patrons;
28 use Koha::Patron::Consent;
29 use Koha::Patron::Modifications;
30 use Koha::Patron::Categories;
32 my $cgi = CGI->new;
33 my $dbh = C4::Context->dbh;
35 unless ( C4::Context->preference('PatronSelfRegistration') ) {
36 print $cgi->redirect("/cgi-bin/koha/opac-main.pl");
37 exit;
40 my $token = $cgi->param('token');
41 my $m = Koha::Patron::Modifications->find( { verification_token => $token } );
43 my ( $template, $borrowernumber, $cookie );
45 if (
46 $m # The token exists and the email is unique if requested
47 and not(
48 C4::Context->preference('PatronSelfRegistrationEmailMustBeUnique')
49 and Koha::Patrons->search( { email => $m->email } )->count
53 ( $template, $borrowernumber, $cookie ) = get_template_and_user(
55 template_name => "opac-registration-confirmation.tt",
56 type => "opac",
57 query => $cgi,
58 authnotrequired => 1,
62 my $patron_attrs = $m->unblessed;
63 $patron_attrs->{password} ||= Koha::AuthUtils::generate_password(Koha::Patron::Categories->find($patron_attrs->{categorycode}));
64 my $consent_dt = delete $patron_attrs->{gdpr_proc_consent};
65 $patron_attrs->{categorycode} ||= C4::Context->preference('PatronSelfRegistrationDefaultCategory');
66 delete $patron_attrs->{timestamp};
67 delete $patron_attrs->{verification_token};
68 delete $patron_attrs->{changed_fields};
69 my $patron = Koha::Patron->new( $patron_attrs )->store;
71 Koha::Patron::Consent->new({ borrowernumber => $patron->borrowernumber, type => 'GDPR_PROCESSING', given_on => $consent_dt })->store if $consent_dt;
73 if ($patron) {
74 $m->delete();
75 C4::Form::MessagingPreferences::handle_form_action($cgi, { borrowernumber => $patron->borrowernumber }, $template, 1, C4::Context->preference('PatronSelfRegistrationDefaultCategory') ) if C4::Context->preference('EnhancedMessagingPreferences');
77 $template->param( password_cleartext => $patron->plain_text_password );
78 $template->param( borrower => $patron );
79 $template->param(
80 PatronSelfRegistrationAdditionalInstructions =>
81 C4::Context->preference(
82 'PatronSelfRegistrationAdditionalInstructions')
85 my ($theme, $news_lang, $availablethemes) = C4::Templates::themelanguage(C4::Context->config('opachtdocs'),'opac-registration-confirmation.tt','opac',$cgi);
86 $template->param( news_lang => $news_lang );
90 else {
91 ( $template, $borrowernumber, $cookie ) = get_template_and_user(
93 template_name => "opac-registration-invalid.tt",
94 type => "opac",
95 query => $cgi,
96 authnotrequired => 1,
101 output_html_with_http_headers $cgi, $cookie, $template->output;