Startsida Utforska Hjälp
Registrera dig Logga in
TooEasy
/
backend-php
3
0
Fork 0
Filer Ärenden 0 Pull-förfrågningar 0 Wiki
Träd: a109527369
Grenar Taggar
backend-php
/
models
/
UserModel.php

UserModel.php 4.5 KB
Historik

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122 
  1. <?php
    2. 

  2. 

  3. namespace Models;
    4. 

  4. 

  5. class UserModel
    6. 

  6. {
    7. 

  7.     private \PDO $pdo;
    8. 

  8. 

  9.     public function __construct()
    10. 

  10.     {
    11. 

  11.         if (isset($GLOBALS['pdo']) && $GLOBALS['pdo'] instanceof \PDO) {
    12. 

  12.             $this->pdo = $GLOBALS['pdo'];
    13. 

  13.             return;
    14. 

  14.         }
    15. 

  15.     }
    16. 

  16. 

  17.     public function validateLogin(string $email, string $password): ?array
    18. 

  18.     {
    19. 

  19.         $stmt = $this->pdo->prepare('SELECT user_id, user_email, user_password, company_id FROM "user" WHERE user_email = :email AND user_flag = \'a\'');
    20. 

  20.         $stmt->execute(['email' => $email]);
    21. 

  21.         $user = $stmt->fetch(\PDO::FETCH_ASSOC);
    22. 

  22. 

  23.         if ($user && password_verify($password, $user['user_password'])) {
    24. 

  24.             unset($user['user_password']);
    25. 

  25.             return $user;
    26. 

  26.         }
    27. 

  27. 

  28.         return null;
    29. 

  29.     }
    30. 

  30. 

  31.     public function createUser(array $data, string $flag = 'a')
    32. 

  32.     {
    33. 

  33.         // Verifica se email já existe
    34. 

  34.         $stmt = $this->pdo->prepare('SELECT user_id FROM "user" WHERE user_email = :email');
    35. 

  35.         $stmt->execute(['email' => $data['email']]);
    36. 

  36.         if ($stmt->fetch()) {
    37. 

  37.             return false;
    38. 

  38.         }
    39. 

  39. 

  40.         $hash = password_hash($data['password'], PASSWORD_DEFAULT);
    41. 

  41. 

  42.         $stmt = $this->pdo->prepare(
    43. 

  43.             'INSERT INTO "user" (
    44. 

  44.                 user_name, user_email, user_password, user_phone, user_address, user_city, user_state, user_zip, user_country,
    45. 

  45.                 user_kyc, user_birthdate, user_cpf, company_id, role_id, user_flag
    46. 

  46.             ) VALUES (
    47. 

  47.                 :user_name, :user_email, :hash, :user_phone, :user_address, :user_city, :user_state, :user_zip, :user_country,
    48. 

  48.                 :user_kyc, :user_birthdate, :user_cpf, :company_id, :role_id, :flag
    49. 

  49.             ) RETURNING user_id'
    50. 

  50.         );
    51. 

  51. 

  52.         $ok = $stmt->execute([
    53. 

  53.             'user_name' => $data['username'],
    54. 

  54.             'user_email' => $data['email'],
    55. 

  55.             'hash' => $hash,
    56. 

  56.             'user_phone' => $data['phone'],
    57. 

  57.             'user_address' => $data['address'],
    58. 

  58.             'user_city' => $data['city'],
    59. 

  59.             'user_state' => $data['state'],
    60. 

  60.             'user_zip' => $data['zip'],
    61. 

  61.             'user_country' => $data['country'],
    62. 

  62.             'user_kyc' => (int)$data['kyc'],
    63. 

  63.             'user_birthdate' => (int)$data['birthdate'],
    64. 

  64.             'user_cpf' => $data['cpf'],
    65. 

  65.             'company_id' => (int)$data['company_id'],
    66. 

  66.             'role_id' => (int)$data['role_id'],
    67. 

  67.             'flag' => $flag
    68. 

  68.         ]);
    69. 

  69. 

  70.         if (!$ok) {
    71. 

  71.             return false;
    72. 

  72.         }
    73. 

  73. 

  74.         $userId = $stmt->fetchColumn();
    75. 

  75. 

  76.         return [
    77. 

  77.             'user_id' => (int)$userId,
    78. 

  78.             'user_name' => $data['username'],
    79. 

  79.             'user_email' => $data['email'],
    80. 

  80.             'company_id' => (int)$data['company_id'],
    81. 

  81.             'role_id' => (int)$data['role_id']
    82. 

  82.         ];
    83. 

  83.     }
    84. 

  84. 

  85.     public function getUsersByCompany(int $companyId): array
    86. 

  86.     {
    87. 

  87.         $stmt = $this->pdo->prepare("SELECT user_id, user_name, user_email, role_id FROM \"user\" WHERE company_id = :company_id AND user_flag = 'a'");
    88. 

  88.         $stmt->execute(['company_id' => $companyId]);
    89. 

  89.         return $stmt->fetchAll(\PDO::FETCH_ASSOC);
    90. 

  90.     }
    91. 

  91. 

  92.     public function deleteUserById(int $userId, int $companyId): bool
    93. 

  93.     {
    94. 

  94.         $stmt = $this->pdo->prepare("DELETE FROM \"user\" WHERE user_id = :user_id AND company_id = :company_id");
    95. 

  95.         return $stmt->execute(['user_id' => $userId, 'company_id' => $companyId]);
    96. 

  96.     }
    97. 

  97. 

  98.     public function updateEmail(int $userId, string $newEmail): bool
    99. 

  99.     {
    100. 

  100.         // check duplicate
    101. 

  101.         $chk = $this->pdo->prepare('SELECT 1 FROM "user" WHERE user_email = :email AND user_id <> :uid');
    102. 

  102.         $chk->execute(['email' => $newEmail, 'uid' => $userId]);
    103. 

  103.         if ($chk->fetchColumn()) {
    104. 

  104.             return false;
    105. 

  105.         }
    106. 

  106.         $stmt = $this->pdo->prepare('UPDATE "user" SET user_email = :email WHERE user_id = :uid AND user_flag = \'a\'');
    107. 

  107.         return $stmt->execute(['email' => $newEmail, 'uid' => $userId]);
    108. 

  108.     }
    109. 

  109. 

  110.     public function changePassword(int $userId, string $currentPassword, string $newPassword): bool
    111. 

  111.     {
    112. 

  112.         $stmt = $this->pdo->prepare('SELECT user_password FROM "user" WHERE user_id = :uid AND user_flag = \'a\'');
    113. 

  113.         $stmt->execute(['uid' => $userId]);
    114. 

  114.         $hash = $stmt->fetchColumn();
    115. 

  115.         if (!$hash || !password_verify($currentPassword, $hash)) {
    116. 

  116.             return false;
    117. 

  117.         }
    118. 

  118.         $newHash = password_hash($newPassword, PASSWORD_DEFAULT);
    119. 

  119.         $up = $this->pdo->prepare('UPDATE "user" SET user_password = :hash WHERE user_id = :uid');
    120. 

  120.         return $up->execute(['hash' => $newHash, 'uid' => $userId]);
    121. 

  121.     }
    122. 

  122. }
    123.