/Applications/XAMPP/xamppfiles/htdocs/dtgapp/modules/switch_user/actions/switch_user.php

Go to the documentation of this file.

<?php
/*
 * Xataface Switch User Module
 * Copyright (C) 2011  Steve Hannah <steve@weblite.ca>
 * 
 * This library is free software; you can redistribute it and/or
 * modify it under the terms of the GNU Library General Public
 * License as published by the Free Software Foundation; either
 * version 2 of the License, or (at your option) any later version.
 * 
 * This library is distributed in the hope that it will be useful,
 * but WITHOUT ANY WARRANTY; without even the implied warranty of
 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
 * Library General Public License for more details.
 * 
 * You should have received a copy of the GNU Library General Public
 * License along with this library; if not, write to the
 * Free Software Foundation, Inc., 51 Franklin St, Fifth Floor,
 * Boston, MA  02110-1301, USA.
 *
 */
 
class actions_switch_user {
        function handle($params){
                if ( @$_POST['--restore'] ){
                        if ( @$_SESSION['original_user'] ){
                                $_SESSION['UserName'] = $_SESSION['original_user'];
                                unset($_SESSION['original_user']);
                                $this->response(array(
                                        'code'=>200,
                                        'msg'=>'Successfully restored user to '.$_SESSION['UserName']
                                ));
                                exit;
                        } else {
                                $this->response(array(
                                        'code'=>500,
                                        'msg'=>'Failed to restore user because there was no original user to restore to.'
                                ));
                                exit;
                        }
                } else {
                        $del = Dataface_Application::getInstance()->getDelegate();
                        if ( !(isset($del) and method_exists($del, 'canSwitchUser') and $del->canSwitchUser()) ){
                                $this->response(array(
                                        'code'=>500,
                                        'msg'=>'Failed to change to different user because this action is reserved for administrators only.'
                                ));
                        }
                        
                        if ( !@$_POST['--username'] ){
                                $this->response(array(
                                        'code'=>500,
                                        'msg'=>'Failed to change to different user because no username was included in the request.'
                                ));
                        }
                        
                        if ( @$_SESSION['original_user'] ){
                                $this->response(array(
                                        'code'=>500,
                                        'msg'=>'Please return to your original user account before changing to a different account.'
                                ));
                        }
                        
                        $_SESSION['original_user'] = $_SESSION['UserName'];
                        $_SESSION['UserName'] = $_POST['--username'];
                        $this->response(array(
                                'code'=>200,
                                'msg'=>'Successfully changed user to '.$_POST['--username']
                        ));
                }
        }
        
        function response($params){
                $params['username'] = $_SESSION['UserName'];
                header('Content-type: text/json; charset="'.Dataface_Application::getInstance()->_conf['oe'].'"');
                echo json_encode($params);
        }
}