Bug 17494: Make sure the same verification token won't be generated twice
[koha.git] / opac / opac-registration-verify.pl
blob1098af079fcccd9280adf2c5394343e9b119bc35
1 #!/usr/bin/perl
3 # This file is part of Koha.
5 # Koha is free software; you can redistribute it and/or modify it
6 # under the terms of the GNU General Public License as published by
7 # the Free Software Foundation; either version 3 of the License, or
8 # (at your option) any later version.
10 # Koha is distributed in the hope that it will be useful, but
11 # WITHOUT ANY WARRANTY; without even the implied warranty of
12 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 # GNU General Public License for more details.
15 # You should have received a copy of the GNU General Public License
16 # along with Koha; if not, see <http://www.gnu.org/licenses>.
18 use Modern::Perl;
20 use CGI qw ( -utf8 );
22 use C4::Auth;
23 use C4::Output;
24 use C4::Members;
25 use C4::Form::MessagingPreferences;
26 use Koha::Patron::Modifications;
28 my $cgi = new CGI;
29 my $dbh = C4::Context->dbh;
31 unless ( C4::Context->preference('PatronSelfRegistration') ) {
32 print $cgi->redirect("/cgi-bin/koha/opac-main.pl");
33 exit;
36 my $token = $cgi->param('token');
37 my $m = Koha::Patron::Modifications->find( { verification_token => $token } );
39 my ( $template, $borrowernumber, $cookie );
40 if ( $m ) {
41 ( $template, $borrowernumber, $cookie ) = get_template_and_user(
43 template_name => "opac-registration-confirmation.tt",
44 type => "opac",
45 query => $cgi,
46 authnotrequired => 1,
50 $template->param(
51 OpacPasswordChange => C4::Context->preference('OpacPasswordChange') );
53 my $borrower = $m->unblessed();
55 my $password;
56 ( $borrowernumber, $password ) = AddMember_Opac(%$borrower);
58 if ($borrowernumber) {
59 $m->delete();
60 C4::Form::MessagingPreferences::handle_form_action($cgi, { borrowernumber => $borrowernumber }, $template, 1, C4::Context->preference('PatronSelfRegistrationDefaultCategory') ) if C4::Context->preference('EnhancedMessagingPreferences');
62 $template->param( password_cleartext => $password );
63 $template->param(
64 borrower => GetMember( borrowernumber => $borrowernumber ) );
65 $template->param(
66 PatronSelfRegistrationAdditionalInstructions =>
67 C4::Context->preference(
68 'PatronSelfRegistrationAdditionalInstructions')
73 else {
74 ( $template, $borrowernumber, $cookie ) = get_template_and_user(
76 template_name => "opac-registration-invalid.tt",
77 type => "opac",
78 query => $cgi,
79 authnotrequired => 1,
84 output_html_with_http_headers $cgi, $cookie, $template->output;