diff options
| author | Daniel Friesel <derf@finalrewind.org> | 2019-03-06 18:35:59 +0100 |
|---|---|---|
| committer | Daniel Friesel <derf@finalrewind.org> | 2019-03-06 18:35:59 +0100 |
| commit | 4ae0217662c0ba1e35b81c720ccb82e3863dd9dd (patch) | |
| tree | c8013b5b0a36a92f63d868b45824ae7a307d2ed4 | |
| parent | f2efaef2b9e20ee1e89df49e31dd3d8dfaa1384d (diff) | |
work-in-progress registration process
| -rwxr-xr-x | index.pl | 36 |
1 files changed, 32 insertions, 4 deletions
@@ -81,12 +81,28 @@ app->attr( return $self->app->dbh->prepare( qq{ - insert into users (name) values (?) + insert into users ( + name, status, public_level, email, token, password, + registered_at, last_login + ) values (?, 0, 0, ?, ?, ?, ?, ?); } ); } ); app->attr( + add_mail_query => sub { + my ($self) = @_; + + return $sefl->app->dbh->prepare( + qq{ + insert into pending_mails ( + email, num_tries, last_try + ) values (?, ?, ?); + } + ); + } +); +app->attr( checkin_query => sub { my ($self) = @_; @@ -243,6 +259,10 @@ sub check_password { return 0; } +sub make_token { + return join( q{}, map { chr( int( rand(26) ) + 97 ) } ( 1 .. 70 ) ); +} + sub epoch_to_dt { my ($epoch) = @_; @@ -517,7 +537,7 @@ helper 'get_user_name' => sub { }; helper 'get_user_id' => sub { - my ( $self, $user_name ) = @_; + my ( $self, $user_name, $mail, $token, $password ) = @_; $user_name //= $self->get_user_name; @@ -589,7 +609,9 @@ helper 'get_user_id' => sub { return $rows->[0][0]; } else { - $self->app->add_user_query->execute($user_name); + my $now = DateTime->now( time_zone => 'Europe/Berlin' )->epoch; + $self->app->add_user_query->execute( $user_name, $mail, $token, + $password, $now, $now ); $self->app->get_userid_query->execute($user_name); $rows = $self->app->get_userid_query->fetchall_arrayref; return $rows->[0][0]; @@ -1052,12 +1074,18 @@ post '/x/register' => sub { return; } + my $token = make_token(); + my $pw_hash = hash_password($password); + my $user_id = $self->get_user_id( $user, $email, $token, $pw_hash ); + my $body = "Hallo, ${user}!\n\n"; $body .= "Mit deiner E-Mail-Adresse (${email}) wurde ein Account auf\n"; $body .= "travelynx.finalrewind.org angelegt.\n\n"; $body .= "Falls die Registrierung von dir ausging, kannst du den Account unter\n"; - $body .= "https://travelynx.finalrewind.org/x/TODO freischalten.\n\n"; + $body + .= "https://travelynx.finalrewind.org/x/confirm/${user_id}/${token}\n"; + $body .= "freischalten.\n\n"; $body .= "Falls nicht, ignoriere diese Mail bitte. Nach 48 Stunden wird deine\n"; $body |