added checks from create_user in update_user

- user_exsist_by_email, valid_email - min-max pass length - user_exsist_by_name, valid_chars
emreakay · May 31, 2015 · 59bbfdd · 59bbfdd
1 parent 11bd0dc
commit 59bbfdd
Showing 1 changed file with 24 additions and 0 deletions.
diff --git a/application/libraries/Aauth.php b/application/libraries/Aauth.php
@@ -680,17 +680,41 @@ public function update_user($user_id, $email = FALSE, $pass = FALSE, $name = FAL
 		$data = array();
 
 		if ($email != FALSE) {
+			if ($this->user_exsist_by_email($email)) {
+				$this->error($this->CI->lang->line('aauth_error_email_exists'));
+				$valid = FALSE;
+			}
+			if (!valid_email($email)){
+				$this->error($this->CI->lang->line('aauth_error_email_invalid'));
+				$valid = FALSE;
+			}
 			$data['email'] = $email;
 		}
 
 		if ($pass != FALSE) {
+			if ( strlen($pass) < 5 OR strlen($pass) > $this->config_vars['max'] ){
+				$this->error($this->CI->lang->line('aauth_error_password_invalid'));
+				$valid = FALSE;
+			}
 			$data['pass'] = $this->hash_password($pass, $user_id);
 		}
 
 		if ($name != FALSE) {
+			if ($this->user_exsist_by_name($name)) {
+				$this->error($this->CI->lang->line('aauth_error_username_exists'));
+				$valid = FALSE;
+			}
+			if ($name !='' && !ctype_alnum(str_replace($this->config_vars['valid_chars'], '', $name))){
+				$this->error($this->CI->lang->line('aauth_error_username_invalid'));
+				$valid = FALSE;
+			}
 			$data['name'] = $name;
 		}
 
+		if (!$valid) {
+			return FALSE; 
+		}
+
 		$this->aauth_db->where('id', $user_id);
 		return $this->aauth_db->update($this->config_vars['users'], $data);
 	}