我将cakephp 2.0 ACL plugin与Voidet SignMeUp plugin合并,以获得完整的用户管理(ACL,注册,忘记密码)。我已经从SignMeUp部分工作的ACL管理和注册。我遇到的问题是使用SignMeUp忘记密码的方法。
这是忘记密码视图:
<h2>Reset Your Password</h2>
<p>Please enter your email address below:</p>
<?php
echo $this->Form->create();
echo $this->Form->input('email');
echo $this->Form->end('Reset Password');
这是SignMeUp忘记密码组件:
public function forgottenPassword() {
extract($this->settings);
$model = $this->controller->modelClass;
if (!empty($this->controller->request->data[$model])) {
$data = $this->controller->request->data[$model];
}
//User has code to reset their password
if (!empty($this->controller->request->params[$password_reset_field])) {
$this->__generateNewPassword($model);
} elseif (!empty($password_reset_field) && !empty($data['email'])) {
$this->__requestNewPassword($data, $model);
}
}
private function __generateNewPassword($model = '') {
extract($this->settings);
$user = $this->controller->{$model}->find('first', array(
'conditions' => array($password_reset_field => $this->controller->request->params[$password_reset_field]),
'recursive' => -1
));
if (!empty($user)) {
$password = substr(Security::hash(String::uuid(), null, true), 0, 8);
$user[$model][$password_field] = Security::hash($password, null, true);
$user[$model][$password_reset_field] = null;
$this->controller->set(compact('password'));
if ($this->controller->{$model}->save($user) && $this->__sendNewPassword($user[$model])) {
if (!$this->controller->request->is('ajax')) {
$this->Session->setFlash('Thank you '.$user[$model][$username_field].', your new password has been emailed to you.');
$this->controller->redirect($this->Auth->loginAction);
} else {
return true;
}
}
}
}
private function __requestNewPassword($data = array(), $model = '') {
extract($this->settings);
$this->controller->loadModel($model);
$user = $this->controller->{$model}->find('first', array('conditions' => array('email' => $data['email']), 'recursive' => -1));
if (!empty($user)) {
$user[$model][$password_reset_field] = md5(String::uuid());
if ($this->controller->{$model}->save($user) && $this->__sendForgottenPassword($user[$model])) {
if (!$this->controller->request->is('ajax')) {
$this->Session->setFlash('Thank you. A password recovery email has now been sent to '.$data['email']);
$this->controller->redirect($this->Auth->loginAction);
} else {
return true;
}
}
} else {
$this->controller->{$model}->invalidate('email', 'No user found with email: '.$data['email']);
}
}
以下是用户型号代码:
App::uses('AclManagementAppModel', 'AclManagement.Model');
class User extends AclManagementAppModel {
public $name = 'User';
public $useTable = "users";
public $actsAs = array('Acl' => array('type' => 'requester'), 'SignMeUp.SignMeUp');
public $validate = array(
'name' => array(
'required' => false,
'allowEmpty' => false,
'rule' => 'notEmpty',
'message' => 'You must enter your real name.'
),
'email' => array(
'email' => array(
'required' => false,
'allowEmpty' => false,
'rule' => 'email',
'message' => 'Invalid email.',
'last' => true
),
'unique' => array(
'required' => false,
'allowEmpty' => false,
'rule' => 'isUnique',
'message' => 'Email already in use.'
)
),
'password' => array(
'required' => false,
'allowEmpty' => false,
'rule' => 'comparePwd',
'message' => 'Password mismatch or less than 6 characters.'
)
);`
public function comparePwd($check) {
$check['password'] = trim($check['password']);
if (!isset($this->data['User']['id']) && strlen($check['password']) < 6) {
return false;
}
if (isset($this->data['User']['id']) && empty($check['password'])) {
return true;
}
$r = ($check['password'] == $this->data['User']['password2'] && strlen($check['password']) >= 6);
if (!$r) {
$this->invalidate('password2', __d('user', 'Password missmatch.'));
}
return $r;
}`
以下是我在提交表单时收到的错误消息:
注意(8):未定义的索引:password2 [APP \ Plugin \ AclManagement \ Model \ User.php,第119行]
与此消息相关的代码是:
$r = ($check['password'] == $this->data['User']['password2'] && strlen($check['password']) >= 6);
上下文声明:
$check = array(
'password' => '*****'
)
所以,我想要了解的是如何处理来自用户模型的这个错误。有意义吗?
答案 0 :(得分:0)
从此错误中
注意(8):未定义的索引:password2 [APP \ Plugin \ AclManagement \ Model \ User.php,第119行]
这个错误上下文:
$check = array(
'password' => '*****'
);
传递给save的数据缺少字段password2
。
看起来相关的功能是:__generateNewPassword
。只需确保password
和password2
都具有相同的值,它应该有效:
private function __generateNewPassword($model = '') {
...
if (!empty($user)) {
$password = substr(Security::hash(String::uuid(), null, true), 0, 8);
$hashedPw = Security::hash($password, null, true);
$user[$model]['password'] = $hashedPw;
$user[$model]['password2'] = $hashedPw;
...
如果这不是导致错误的保存调用 - 请检查错误堆栈跟踪以查看在您的情况下调用保存的位置。
请注意,验证功能的实现很差。必须对密码进行哈希处理才能正确存储 - “必须超过6个字符”的验证逻辑将该规则应用于哈希密码,该密码始终为40个字符长。通过电子邮件发送密码也不是处理密码重置逻辑的最佳方式 - 要求用户自己设置新密码要好得多,而不是通过电子邮件以纯文本形式发送密码。