anna.boudoul
/
ProjetPHP
1
0
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity

Validation start

Browse Source
validation
Anna BOUDOUL 2 years ago
parent 912b14e5b3
commit 62924b327d
5 changed files with 53 additions and 11 deletions
Show Stats Download Patch File Download Diff File

33
config/Validation.php
Unescape View File

@ -0,0 +1,33 @@
<?php
class Validation {
static function val_form_texte(string &$texte, array &$TMessage) {
if (!isset($texte)||$texte=="") {
$TMessage[] ="champs vide";
$texte="";
}
if ($texte != filter_var($texte, FILTER_SANITIZE_STRING))
{
$TMessage[] ="testative d'injection de code (attaque sécurité)";
$texte="";
}
}
static function val_form_mdp(string &$mdp, array &$TMessage) {
if (!isset($mdp)||$mdp=="") {
$TMessage[] ="pas de mdp";
$mdp="";
}
if ($mdp != filter_var($mdp, FILTER_SANITIZE_SPECIAL_CHARS))
{
$TMessage[] ="Le mot de passe ne doit pas contenir de caractères spéciaux";
$mdp="";
}
}
}
?>

5
controller/FrontCtrl.php
Unescape View File

@ -13,10 +13,7 @@ class FrontCtrl
$this->action_User = array('deconnexion','loadListePriv','newListPrivate');
try{
$this->isUser = $this->usrMdl->isConnected(); // cette fonction retourne quoi?
if(isset($_REQUEST['action']))
$action = $_REQUEST['action'];
else
$action = null;
$action = $_REQUEST['action'] ?? null;
if(($i = array_search($action,$this->action_User)) !== false){ # si action dans la liste d'actions user
if(!$this->isUser){ # si pas conncter

3
index.php
Unescape View File

@ -1,10 +1,9 @@
<?php
require_once("config/config.php");
require_once("controller/FrontCtrl.php");
require('config/Validation.php');
require("view/erreur.php");
$fc = new FrontCtrl($con);
$TMessage = array();
?>

1
model/TaskModel.php
Unescape View File

@ -43,6 +43,7 @@ class TaskModel
/* LIST FUNCTIONS */
public function addList($nom,$owner="",$dc=0,$id=0)
{
Validation::val_form_texte($owner, $TMessage);
$l = new ListTask($nom,$owner,$dc);
$this->gtw->insertL($l);
// retourne quoi? con->lastInsertId() ??

20
model/UserModel.php
Unescape View File

@ -1,6 +1,7 @@
<?php
require('business/User.php');
require('dal/UserGateway.php');
class UserModel{
private $con;
private $gat;
@ -11,12 +12,14 @@
}
function connexion($login, $mdp){
Validation::val_form_texte($login, $TMessage);
Validation::val_form_mdp($mdp, $TMessage);
$result = $this->gat->findUser($login, $mdp);
if(!isset($result)) echo 'not set works';
// if (isset($result))
// {
// $_SESSION['login'] = $result;
// }
else
{
$_SESSION['login'] = $result;
}
}
function deconnexion(){
@ -26,6 +29,7 @@
}
function isConnected(){ //teste rôle dans la session, retourne instance dobjet ou booleen
Validation::val_form_texte($_SESSION['login'], $TMessage);
if(isset($_SESSION['login'])){
return true;
} else {
@ -34,20 +38,26 @@
}
function ajouter($login, $mdp){
Validation::val_form_texte($login, $TMessage);
Validation::val_form_mdp($mdp, $TMessage);
$user = $this->findByLogin($login);
if (empty($user))
$this->gat->create($login, $mdp);
}
function supprimer($login){
Validation::val_form_texte($login, $TMessage);
$this->gat->delete($login);
}
function modifMdp($login, $mdp){
Validation::val_form_texte($login, $TMessage);
Validation::val_form_mdp($mdp, $TMessage);
$this->gat->updateMdp($login, $mdp);
}
function findByLogin($login){
Validation::val_form_texte($login, $TMessage);
$user = null;
if ($login !== " " && $login != null )
{
@ -60,6 +70,8 @@
}
function modifLogin($oldLogin, $newLogin){
Validation::val_form_texte($oldLogin, $TMessage);
Validation::val_form_texte($newLogin, $TMessage);
$user = $this->findByLogin($oldLogin);
if (empty($user))
$this->gat->updateLogin($oldLogin, $newLogin);

Write Preview
Loading…
Cancel
Save