1 package OpenILS::WWW::PasswordReset;
3 # Copyright (C) 2010 Laurentian University
4 # Dan Scott <dscott@laurentian.ca>
6 # This program is free software; you can redistribute it and/or
7 # modify it under the terms of the GNU General Public License
8 # as published by the Free Software Foundation; either version 2
9 # of the License, or (at your option) any later version.
11 # This program is distributed in the hope that it will be useful,
12 # but WITHOUT ANY WARRANTY; without even the implied warranty of
13 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
14 # GNU General Public License for more details.
16 # You should have received a copy of the GNU General Public License
17 # along with this program; if not, write to the Free Software
18 # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
20 use strict; use warnings;
23 use Apache2::Const -compile => qw(OK REDIRECT DECLINED NOT_FOUND :log);
24 use APR::Const -compile => qw(:error SUCCESS);
25 use Apache2::RequestRec ();
26 use Apache2::RequestIO ();
27 use Apache2::RequestUtil;
31 use OpenSRF::EX qw(:try);
32 use OpenSRF::Utils qw/:datetime/;
33 use OpenSRF::Utils::Cache;
35 use OpenSRF::AppSession;
37 use OpenILS::Utils::Fieldmapper;
38 use OpenSRF::Utils::Logger qw/$logger/;
39 use OpenILS::Application::AppUtils;
40 use OpenILS::Utils::CStoreEditor qw/:funcs/;
42 my $log = 'OpenSRF::Utils::Logger';
43 my $U = 'OpenILS::Application::AppUtils';
45 my ($bootstrap, $actor, $templates);
49 OpenSRF::System->bootstrap_client( config_file => $bootstrap );
51 my $conf = OpenSRF::Utils::SettingsClient->new();
52 my $idl = $conf->config_value("IDL");
53 Fieldmapper->import(IDL => $idl);
54 $templates = $conf->config_value("dirs", "templates");
55 $actor = OpenSRF::AppSession->create('open-ils.actor');
61 return Apache2::Const::DECLINED if (-e $apache->filename);
63 $apache->content_type('text/html');
68 $ctx->{'uri'} = $apache->uri;
70 # Get our locale from the URL
71 (my $locale = $apache->path_info) =~ s{^.*?/([a-z]{2}-[A-Z]{2})/.*?$}{$1};
76 # If locale exists, use it; otherwise fall back to en-US
77 if (exists $i18n->{$locale}) {
78 $ctx->{'i18n'} = $i18n->{$locale};
80 $ctx->{'i18n'} = $i18n->{'en-US'};
83 my $tt = Template->new({
84 INCLUDE_PATH => $templates
85 }) || die "$Template::ERROR\n";
87 # Get our UUID: if no UUID, then display barcode / username / email prompt
88 (my $uuid = $apache->path_info) =~ s{^/$locale/([^/]*?)$}{$1};
89 $logger->info("Password reset: UUID = $uuid");
92 request_password_reset($apache, $cgi, $tt, $ctx);
94 reset_password($apache, $cgi, $tt, $ctx, $uuid);
99 my ($apache, $cgi, $tt, $ctx, $uuid) = @_;
101 my $password_1 = $cgi->param('pwd1');
102 my $password_2 = $cgi->param('pwd2');
104 $ctx->{'title'} = $ctx->{'i18n'}{'TITLE'};
105 $ctx->{'password_prompt'} = $ctx->{'i18n'}{'PASSWORD_PROMPT'};
106 $ctx->{'password_prompt2'} = $ctx->{'i18n'}{'PASSWORD_PROMPT2'};
108 # In case non-matching passwords slip through our funky Web interface
109 if ($password_1 and $password_2 and ($password_1 ne $password_2)) {
112 msg => $ctx->{'i18n'}{'NO_MATCH'}
114 $tt->process('password-reset/reset-form.tt2', $ctx)
116 return Apache2::Const::OK;
119 if ($password_1 and $password_2 and ($password_1 eq $password_2)) {
120 my $response = $actor->request('open-ils.actor.patron.password_reset.commit', $uuid, $password_1)->gather();
121 if (ref($response) && $response->{'textcode'}) {
123 if ($response->{'textcode'} eq 'PATRON_NOT_AN_ACTIVE_PASSWORD_RESET_REQUEST') {
126 msg => $ctx->{'i18n'}{'NOT_ACTIVE'}
130 if ($response->{'textcode'} eq 'PATRON_PASSWORD_WAS_NOT_STRONG') {
133 msg => $ctx->{'i18n'}{'NOT_STRONG'}
137 $tt->process('password-reset/reset-form.tt2', $ctx)
139 return Apache2::Const::OK;
143 msg => $ctx->{'i18n'}{'SUCCESS'}
147 # Either the password change was successful, or this is their first time through
148 $tt->process('password-reset/reset-form.tt2', $ctx)
151 return Apache2::Const::OK;
154 # Load our localized strings - lame, need to convert to Locale::Maketext
156 foreach my $string_bundle (glob("$templates/password-reset/strings.*")) {
157 open(I18NFH, '<', $string_bundle);
158 (my $locale = $string_bundle) =~ s/^.*\.([a-z]{2}-[A-Z]{2})$/$1/;
159 $logger->debug("Loaded locale [$locale] from file: [$string_bundle]");
161 my ($string_id, $string) = ($_ =~ m/^(.+?)=(.*?)$/);
162 $i18n->{$locale}{$string_id} = $string;
168 sub request_password_reset {
169 my ($apache, $cgi, $tt, $ctx) = @_;
171 my $barcode = $cgi->param('barcode');
172 my $username = $cgi->param('username');
173 my $email = $cgi->param('email');
175 if (!($barcode or $username or $email)) {
178 msg => $ctx->{'i18n'}{'IDENTIFY_YOURSELF'}
180 $tt->process('password-reset/request-form.tt2', $ctx)
182 return Apache2::Const::OK;
184 my $response = $actor->request('open-ils.actor.patron.password_reset.request', 'barcode', $barcode)->gather();
187 msg => $ctx->{'i18n'}{'REQUEST_SUCCESS'}
190 $tt->process('password-reset/request-form.tt2', $ctx)
192 return Apache2::Const::OK;
193 } elsif ($username) {
194 my $response = $actor->request('open-ils.actor.patron.password_reset.request', 'username', $username)->gather();
197 msg => $ctx->{'i18n'}{'REQUEST_SUCCESS'}
200 $tt->process('password-reset/request-form.tt2', $ctx)
202 return Apache2::Const::OK;