user/emailupdate.php

   1 <?php
   2 // This file is part of Moodle - http://moodle.org/
   3 //
   4 // Moodle is free software: you can redistribute it and/or modify
   5 // it under the terms of the GNU General Public License as published by
   6 // the Free Software Foundation, either version 3 of the License, or
   7 // (at your option) any later version.
   8 //
   9 // Moodle is distributed in the hope that it will be useful,
  10 // but WITHOUT ANY WARRANTY; without even the implied warranty of
  11 // MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
  12 // GNU General Public License for more details.
  13 //
  14 // You should have received a copy of the GNU General Public License
  15 // along with Moodle.  If not, see <http://www.gnu.org/licenses/>.
  16
  17 /**
  18  * Change a users email address
  19  *
  20  * @copyright 1999 Martin Dougiamas  http://dougiamas.com
  21  * @license http://www.gnu.org/copyleft/gpl.html GNU GPL v3 or later
  22  * @package core_user
  23  */
  24
  25 require_once('../config.php');
  26 require_once($CFG->libdir.'/adminlib.php');
  27 require_once($CFG->dirroot.'/user/editlib.php');
  28 require_once($CFG->dirroot.'/user/lib.php');
  29
  30 $key = required_param('key', PARAM_ALPHANUM);
  31 $id  = required_param('id', PARAM_INT);
  32
  33 $PAGE->set_url('/user/emailupdate.php', array('id' => $id, 'key' => $key));
  34 $PAGE->set_context(context_system::instance());
  35
  36 if (!$user = $DB->get_record('user', array('id' => $id))) {
  37     throw new \moodle_exception('invaliduserid');
  38 }
  39
  40 $preferences = get_user_preferences(null, null, $user->id);
  41 $a = new stdClass();
  42 $a->fullname = fullname($user, true);
  43 $stremailupdate = get_string('emailupdate', 'auth', $a);
  44
  45 $PAGE->set_title($stremailupdate);
  46 $PAGE->set_heading(format_string($SITE->fullname) . ": $stremailupdate");
  47
  48 if (empty($preferences['newemailattemptsleft'])) {
  49     redirect("$CFG->wwwroot/user/view.php?id=$user->id");
  50
  51 } else if ($preferences['newemailattemptsleft'] < 1) {
  52     cancel_email_update($user->id);
  53
  54     echo $OUTPUT->header();
  55     echo $OUTPUT->box(get_string('auth_outofnewemailupdateattempts', 'auth'), 'center');
  56     echo $OUTPUT->footer();
  57 } else if ($key == $preferences['newemailkey']) {
  58     $olduser = clone($user);
  59     cancel_email_update($user->id);
  60     $user->email = $preferences['newemail'];
  61
  62     // Detect duplicate before saving.
  63     if (empty($CFG->allowaccountssameemail)) {
  64         // Make a case-insensitive query for the given email address.
  65         $select = $DB->sql_equal('email', ':email', false) . ' AND mnethostid = :mnethostid AND id <> :userid';
  66         $params = array(
  67             'email' => $user->email,
  68             'mnethostid' => $CFG->mnet_localhost_id,
  69             'userid' => $user->id
  70         );
  71         // If there are other user(s) that already have the same email, cancel and redirect.
  72         if ($DB->record_exists_select('user', $select, $params)) {
  73             redirect(new moodle_url('/user/view.php', ['id' => $user->id]), get_string('emailnowexists', 'auth'));
  74         }
  75     }
  76
  77     // Update user email.
  78     $authplugin = get_auth_plugin($user->auth);
  79     $authplugin->user_update($olduser, $user);
  80     user_update_user($user, false);
  81     $a->email = $user->email;
  82     redirect(
  83         new moodle_url('/user/view.php', ['id' => $user->id]),
  84         get_string('emailupdatesuccess', 'auth', $a),
  85         null,
  86         \core\output\notification::NOTIFY_SUCCESS
  87     );
  88
  89 } else {
  90     $preferences['newemailattemptsleft']--;
  91     set_user_preference('newemailattemptsleft', $preferences['newemailattemptsleft'], $user->id);
  92     echo $OUTPUT->header();
  93     echo $OUTPUT->box(get_string('auth_invalidnewemailkey', 'auth'), 'center');
  94     echo $OUTPUT->footer();
  95 }