HEX
Server: LiteSpeed
System: Linux s12873.lon1.stableserver.net 5.14.0-611.11.1.el9_7.x86_64 #1 SMP PREEMPT_DYNAMIC Wed Dec 3 09:47:37 EST 2025 x86_64
User: jairicem (1242)
PHP: 8.2.31
Disabled: NONE
Upload Files
File: /home/jairicem/kunakornthairestaurant.com/app/libraries/Ion_auth.php
<?php

defined('BASEPATH') or exit('No direct script access allowed');

class Ion_auth
{
    public $_cache_user_in_group;
    public $_extra_set   = [];
    public $_extra_where = [];

    protected $status;

    public function __construct()
    {
        $this->load->config('ion_auth', true);

        $this->load->admin_model('auth_model');

        $this->_cache_user_in_group = &$this->auth_model->_cache_user_in_group;

        //auto-login the user if they are remembered
        if (!$this->logged_in() && get_cookie('identity') && get_cookie('remember_code')) {
            if ($this->auth_model->login_remembered_user()) {
                redirect($this->session->userdata('requested_page') ? $this->session->userdata('requested_page') : (isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : 'admin/welcome'));
            }
        }

        $this->auth_model->trigger_events('library_constructor');
    }

    public function forgotten_password($identity)
    {    //changed $email to $identity
        if ($this->auth_model->forgotten_password($identity)) {   //changed
            // Get user information
            $user = $this->where($this->config->item('identity', 'ion_auth'), $identity)->where('active', 1)->users()->row();  //changed to get_user_by_identity from email

            if ($user) {
                $data = [
                    'identity'                => $user->{$this->config->item('identity', 'ion_auth')},
                    'forgotten_password_code' => $user->forgotten_password_code,
                ];

                if (!$this->config->item('use_ci_email', 'ion_auth')) {
                    $this->set_message('forgot_password_successful');
                    return $data;
                } else {
                    $this->load->library('parser');
                    $parse_data = [
                        'user_name'           => $user->first_name . ' ' . $user->last_name,
                        'email'               => $user->email,
                        'reset_password_link' => anchor('reset_password/' . $user->forgotten_password_code, lang('reset_password')),
                        'site_link'           => base_url(),
                        'site_name'           => $this->Settings->site_name,
                        'logo'                => '<img src="' . base_url() . 'assets/uploads/logos/' . $this->Settings->logo . '" alt="' . $this->Settings->site_name . '"/>',
                    ];
                    $msg     = file_get_contents('./themes/' . $this->Settings->theme . '/admin/views/email_templates/forgot_password.html');
                    $message = $this->parser->parse_string($msg, $parse_data);
                    $message = $message . '<br>' . lang('reset_password_link_alt') . '<br>' . site_url('reset_password/' . $user->forgotten_password_code);
                    $subject = lang('email_forgotten_password_subject') . ' - ' . $this->Settings->site_name;

                    try {
                        if ($this->sma->send_email($user->email, $subject, $message)) {
                            $this->set_message('forgot_password_successful');
                            return true;
                        } else {
                            $this->set_error('sending_email_failed');
                            return false;
                        }
                    } catch (Exception $e) {
                        $this->set_error($e->getMessage());
                        return false;
                    }
                }
            } else {
                $this->set_error('forgot_password_unsuccessful');
                return false;
            }
        } else {
            $this->set_error('forgot_password_unsuccessful');
            return false;
        }
    }

    public function forgotten_password_check($code)
    {
        $profile = $this->where('forgotten_password_code', $code)->users()->row(); //pass the code to profile

        if (!is_object($profile)) {
            $this->set_error('password_change_unsuccessful');
            return false;
        } else {
            if ($this->config->item('forgot_password_expiration', 'ion_auth') > 0) {
                //Make sure it isn't expired
                $expiration = $this->config->item('forgot_password_expiration', 'ion_auth');
                if (time() - $profile->forgotten_password_time > $expiration) {
                    //it has expired
                    $this->clear_forgotten_password_code($code);
                    $this->set_error('password_change_unsuccessful');
                    return false;
                }
            }
            return $profile;
        }
    }

    public function forgotten_password_complete($code)
    {
        $this->auth_model->trigger_events('pre_password_change');

        $identity = $this->config->item('identity', 'ion_auth');
        $profile  = $this->where('forgotten_password_code', $code)->users()->row(); //pass the code to profile

        if (!$profile) {
            $this->auth_model->trigger_events(['post_password_change', 'password_change_unsuccessful']);
            $this->set_error('password_change_unsuccessful');
            return false;
        }

        $new_password = $this->auth_model->forgotten_password_complete($code, $profile->salt);

        if ($new_password) {
            $data = [
                'identity'     => $profile->{$identity},
                'new_password' => $new_password,
            ];
            if (!$this->config->item('use_ci_email', 'ion_auth')) {
                $this->set_message('password_change_successful');
                $this->auth_model->trigger_events(['post_password_change', 'password_change_successful']);
                return $data;
            } else {
                $this->load->library('parser');
                $parse_data = [
                    'client_name' => $profile->first_name . ' ' . $profile->last_name,
                    'email'       => $profile->email,
                    'password'    => $password,
                    'site_link'   => base_url(),
                    'site_name'   => $this->Settings->site_name,
                    'logo'        => '<img src="' . base_url() . 'assets/uploads/logos/' . $this->Settings->logo . '" alt="' . $this->Settings->site_name . '"/>',
                ];
                $msg     = file_get_contents('./themes/' . $this->Settings->theme . '/admin/views/email_templates/new_password.html');
                $message = $this->parser->parse_string($msg, $parse_data);
                $subject = lang('email_new_password_subject') . ' - ' . $this->Settings->site_name;

                try {
                    if ($this->sma->send_email($profile->email, $subject, $message)) {
                        $this->set_message('password_change_successful');
                        $this->auth_model->trigger_events(['post_password_change', 'password_change_successful']);
                        return true;
                    } else {
                        $this->set_error('password_change_unsuccessful');
                        $this->auth_model->trigger_events(['post_password_change', 'password_change_unsuccessful']);
                        return false;
                    }
                } catch (Exception $e) {
                    $this->set_error($e->getMessage());
                    return false;
                }
            }
        }

        $this->auth_model->trigger_events(['post_password_change', 'password_change_unsuccessful']);
        return false;
    }

    public function get_user_id()
    {
        $user_id = $this->session->userdata('user_id');
        if (!empty($user_id)) {
            return $user_id;
        }
        return null;
    }

    public function getUserGroup($user_id = false)
    {
        $user_id || $user_id = $this->session->userdata('user_id');

        $group_id = $this->getUserGroupID($user_id);
        return $this->ion_auth->group($group_id)->row();
    }

    public function getUserGroupID($user_id = false)
    {
        $user_id || $user_id = $this->session->userdata('user_id');

        $user = $this->ion_auth->user($user_id)->row();
        return $user->group_id;
    }

    public function in_group($check_group, $id = false)
    {
        $this->auth_model->trigger_events('in_group');

        $id || $id = $this->session->userdata('user_id');

        $group = $this->getUserGroup($id);

        if ($group->name === $check_group) {
            return true;
        }

        return false;
    }

    public function logged_in()
    {
        $this->auth_model->trigger_events('logged_in');

        return (bool)$this->session->userdata('identity');
    }

    public function logout()
    {
        $this->auth_model->trigger_events('logout');

        if ($this->Settings->mmode) {
            if (!$this->ion_auth->in_group('owner')) {
                $this->set_message('site_is_offline_plz_try_later');
            }
        } else {
            $this->set_message('logout_successful');
        }

        $identity = $this->config->item('identity', 'ion_auth');
        $this->session->unset_userdata([$identity => '', 'id' => '', 'user_id' => '']);

        //delete the remember me cookies if they exist
        if (get_cookie('identity')) {
            delete_cookie('identity');
        }
        if (get_cookie('remember_code')) {
            delete_cookie('remember_code');
        }

        //Destroy the session
        $this->session->sess_destroy();

        return true;
    }

    public function register($username, $password, $email, $additional_data = [], $active = false, $notify = false)
    { //need to test email activation
        $this->auth_model->trigger_events('pre_account_creation');

        $email_activation = $this->config->item('email_activation', 'ion_auth');

        if (!$email_activation || $active == '1') {
            $id = $this->auth_model->register($username, $password, $email, $additional_data, $active);
            if ($id !== false) {
                if ($notify) {
                    $this->load->library('parser');
                    $parse_data = [
                        'client_name' => $additional_data['first_name'] . ' ' . $additional_data['last_name'],
                        'site_link'   => site_url(),
                        'site_name'   => $this->Settings->site_name,
                        'email'       => $email,
                        'password'    => $password,
                        'logo'        => '<img src="' . base_url() . 'assets/uploads/logos/' . $this->Settings->logo . '" alt="' . $this->Settings->site_name . '"/>',
                    ];

                    $msg     = file_get_contents('./themes/' . $this->Settings->theme . '/admin/views/email_templates/credentials.html');
                    $message = $this->parser->parse_string($msg, $parse_data);
                    $subject = $this->lang->line('new_user_created') . ' - ' . $this->Settings->site_name;
                    try {
                        $this->sma->send_email($email, $subject, $message);
                    } catch (Exception $e) {
                        $this->set_error($e->getMessage());
                    }
                }

                $this->set_message('account_creation_successful');
                $this->auth_model->trigger_events(['post_account_creation', 'post_account_creation_successful']);
                return $id;
            } else {
                $this->set_error('account_creation_unsuccessful');
                $this->auth_model->trigger_events(['post_account_creation', 'post_account_creation_unsuccessful']);
                return false;
            }
        } else {
            $id = $this->auth_model->register($username, $password, $email, $additional_data, $active);

            if (!$id) {
                $this->set_error('account_creation_unsuccessful');
                return false;
            }

            $deactivate = $this->auth_model->deactivate($id);

            if (!$deactivate) {
                $this->set_error('deactivate_unsuccessful');
                $this->auth_model->trigger_events(['post_account_creation', 'post_account_creation_unsuccessful']);
                return false;
            }

            $activation_code = $this->auth_model->activation_code;
            $identity        = $this->config->item('identity', 'ion_auth');
            $user            = $this->auth_model->user($id)->row();

            $data = [
                'identity'   => $user->{$identity},
                'id'         => $user->id,
                'email'      => $email,
                'activation' => $activation_code,
            ];
            if (!$this->config->item('use_ci_email', 'ion_auth')) {
                $this->auth_model->trigger_events(['post_account_creation', 'post_account_creation_successful', 'activation_email_successful']);
                $this->set_message('activation_email_successful');
                return $data;
            } else {
                $this->load->library('parser');
                $parse_data = [
                    'user_name'       => $additional_data['first_name'] . ' ' . $additional_data['last_name'],
                    'site_link'       => site_url(),
                    'site_name'       => $this->Settings->site_name,
                    'email'           => $email,
                    'activation_link' => anchor('activate/' . $data['id'] . '/' . $data['activation'], lang('email_activate_link')),
                    'logo'            => '<img src="' . base_url() . 'assets/uploads/logos/' . $this->Settings->logo . '" alt="' . $this->Settings->site_name . '"/>',
                ];

                $msg     = file_get_contents('./themes/' . $this->Settings->theme . '/admin/views/email_templates/activate_email.html');
                $message = $this->parser->parse_string($msg, $parse_data);
                $subject = $this->lang->line('email_activation_subject') . ' - ' . $this->Settings->site_name;

                try {
                    if ($this->sma->send_email($email, $subject, $message)) {
                        $this->auth_model->trigger_events(['post_account_creation', 'post_account_creation_successful', 'activation_email_successful']);
                        $this->set_message('activation_email_successful');
                        return $id;
                    }
                } catch (Exception $e) {
                    $this->set_error($e->getMessage());
                    return false;
                }
            }

            $this->auth_model->trigger_events(['post_account_creation', 'post_account_creation_unsuccessful', 'activation_email_unsuccessful']);
            $this->set_error('activation_email_unsuccessful');
            return false;
        }
    }

    public function __call($method, $arguments)
    {
        if (!method_exists($this->auth_model, $method)) {
            throw new Exception('Undefined method Ion_auth::' . $method . '() called');
        }

        return call_user_func_array([$this->auth_model, $method], $arguments);
    }

    public function __get($var)
    {
        return get_instance()->$var;
    }
}