有没有更好的方法来使用 Auth 在 cakephp 中更改用户密码? [英] Is there a better way to change user password in cakephp using Auth?
问题描述
我正在自学cakephp.我试图创建一个具有 changepassword 功能的用户控制器.它有效,但我不确定这是否是最好的方法,我无法在谷歌上搜索有用的教程.这是我的代码:
I am learning cakephp by myself. I tried to create a user controller with a changepassword function. It works, but I am not sure if this is the best way, and I could not googled up useful tutorials on this. Here is my code:
class UsersController extends AppController {
var $name = 'Users';
function login() {
}
function logout() {
$this->redirect($this->Auth->logout());
}
function changepassword() {
$session=$this->Session->read();
$id=$session['Auth']['User']['id'];
$user=$this->User->find('first',array('conditions' => array('id' => $id)));
$this->set('user',$user);
if (!empty($this->data)) {
if ($this->Auth->password($this->data['User']['password'])==$user['User']['password']) {
if ($this->data['User']['passwordn']==$this->data['User']['password2']) {
// Passwords match, continue processing
$data=$this->data;
$this->data=$user;
$this->data['User']['password']=$this->Auth->password($data['User']['passwordn']);
$this->User->id=$id;
$this->User->save($this->data);
$this->Session->setFlash('Password changed.');
$this->redirect(array('controller'=>'Toners','action' => 'index'));
} else {
$this->Session->setFlash('New passwords differ.');
}
} else {
$this->Session->setFlash('Typed passwords did not match.');
}
}
}
}
password 是旧密码,passwordn 是新密码,password2 是重新输入的新密码.有没有其他更简单的方法来做蛋糕?
password is the old password, passwordn is the new one, password2 is the new one retyped. Is there any other, more coomon way to do it in cake?
推荐答案
我看到您在控制器中验证和操作数据.在模型中执行此操作通常是更好的做法.几天前我实现了类似的功能.我的 change_password() 方法看起来有点像这样:
I see that you validate and manipulate data in the controller. Doing this in a model is generally a better practice. I implemented similar functionality just a few days ago. My change_password() method looks somewhat like this:
# app/controllers/users_controller.php
function change_password() {
if (!empty($this->data)) {
if ($this->User->save($this->data)) {
$this->Session->setFlash('Password has been changed.');
// call $this->redirect() here
} else {
$this->Session->setFlash('Password could not be changed.');
}
} else {
$this->data = $this->User->findById($this->Auth->user('id'));
}
}
这是与该方法一起使用的视图的精简版本:
And here's a stripped down version of the view used with that method:
# app/views/users/change_password.ctp
echo $this->Form->create('User');
echo $this->Form->input('id');
echo $this->Form->input('current_password');
echo $this->Form->input('password1');
echo $this->Form->input('password2');
echo $this->Form->end('Submit');
做一些有趣的事情的代码在模型中.我将表单中的字段添加到 validate 属性并编写了 自定义验证方法.这允许我在应用程序的任何其他地方使用 password1 和 password2 字段,例如,在注册表单上.
The code that does something interesting is in the model. I added the fields from the form to the validate property and wrote custom validation methods. This allows me to use password1 and password2 fields in any other place in the application, for example, on the registration form.
# app/models/user.php
var $validate = array(
'current_password' => array(
'rule' => 'checkCurrentPassword',
'message' => '...'
),
'password1' => array(
'rule' => 'checkPasswordStrength',
'message' => '...',
),
'password2' => array(
'rule' => 'passwordsMatch',
'message' => '...',
)
);
最后,在beforeSave() 模型的回调我将password设置为password1的哈希值来准备将数据存储在数据库中.
Finally, in the beforeSave() callback of the model I set password to the hash of password1 to prepare the data to be stored it in the database.
这篇关于有没有更好的方法来使用 Auth 在 cakephp 中更改用户密码?的文章就介绍到这了,希望我们推荐的答案对大家有所帮助,也希望大家多多支持IT屋!
