Source of CControllerUserUpdate.php - Zabbix

Raw file
Source viewDiff to previous
4.74 KB
        if ($this->getInput('password1', '') !== '' || ($this->hasInput('password1') && !$this->allow_empty_password)) {
 
<?php
/*
** Copyright (C) 2001-2025 Zabbix SIA
**
** This program is free software: you can redistribute it and/or modify it under the terms of
** the GNU Affero General Public License as published by the Free Software Foundation, version 3.
**
** This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY;
** without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
** See the GNU Affero General Public License for more details.
**
** You should have received a copy of the GNU Affero General Public License along with this program.
** If not, see <https://www.gnu.org/licenses/>.
**/
​
​
/**
 * Class containing operations for updating a user.
 */
class CControllerUserUpdate extends CControllerUserUpdateGeneral {
​
    protected function checkInput() {
        $locales = array_keys(getLocales());
        $locales[] = LANG_DEFAULT;
        $themes = array_keys(APP::getThemes());
        $themes[] = THEME_DEFAULT;
​
        $fields = [
            'userid' =>             'fatal|required|db users.userid',
            'username' =>           'required|db users.username|not_empty',
            'name' =>               'db users.name',
            'surname' =>            'db users.surname',
            'user_groups' =>        'array_id',
            'current_password' =>   'string',
            'password1' =>          'string',
            'password2' =>          'string',
            'medias' =>             'array',
            'lang' =>               'db users.lang|in '.implode(',', $locales),
            'timezone' =>           'db users.timezone|in '.implode(',', $this->timezones),
            'theme' =>              'db users.theme|in '.implode(',', $themes),
            'autologin' =>          'db users.autologin|in 0,1',
            'autologout' =>         'db users.autologout|not_empty',
            'refresh' =>            'db users.refresh|not_empty',
            'rows_per_page' =>      'db users.rows_per_page',
            'url' =>                'db users.url',
            'roleid' =>             'id',
            'form_refresh' =>       'int32'
        ];
​
        $ret = $this->validateInput($fields);
        $error = $this->GetValidationError();
​
        if (CWebUser::$data['userid'] == $this->getInput('userid')
                && CWebUser::$data['roleid'] == USER_TYPE_SUPER_ADMIN) {
            if ($ret && !$this->validateCurrentPassword()) {
                $error = self::VALIDATION_ERROR;
                $ret = false;
            }
        }
​
        if ($ret && (!$this->validatePassword() || !$this->validateUserRole())) {
            $error = self::VALIDATION_ERROR;
            $ret = false;