Esenjin_Asakha/Lectures
Esenjin_Asakha/Lectures
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 9 Wiki Activity

ajout d'une page de profil

Browse Source 
permet de changer son ID ainsi que son MDP
This commit is contained in:
Esenjin 2025-02-14 20:59:17 +01:00
parent 1d00a00146
commit 78a165d103
5 changed files with 158 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
admin/index.php
View File

@ -23,6 +23,7 @@ $stories = Stories::getAll();
<nav class="admin-nav"> <nav class="admin-nav">
<div class="nav-brand">Administration</div> <div class="nav-brand">Administration</div>
<div class="nav-menu"> <div class="nav-menu">
<a href="profile.php" class="button">Profil</a>
<a href="story-edit.php" class="button">Nouveau roman</a> <a href="story-edit.php" class="button">Nouveau roman</a>
<form method="POST" action="logout.php" class="logout-form"> <form method="POST" action="logout.php" class="logout-form">
<button type="submit">Déconnexion</button> <button type="submit">Déconnexion</button>

2
admin/login.php
View File

@ -43,7 +43,7 @@ if ($_SERVER['REQUEST_METHOD'] === 'POST') {
<input type="password" id="password" name="password" required> <input type="password" id="password" name="password" required>
</div> </div>
<button type="submit">Se connecter</button> <button type="submit" class="button">Se connecter</button>
</form> </form>
</div> </div>
</body> </body>

131
admin/profile.php Normal file
View File

@ -0,0 +1,131 @@
<?php
require_once '../includes/config.php';
require_once '../includes/auth.php';
if (!Auth::check()) {
header('Location: login.php');
exit;
}
$success = '';
$error = '';
if ($_SERVER['REQUEST_METHOD'] === 'POST') {
$currentPassword = $_POST['current_password'] ?? '';
$newUsername = trim($_POST['new_username'] ?? '');
$newPassword = $_POST['new_password'] ?? '';
$confirmPassword = $_POST['confirm_password'] ?? '';
try {
// Vérifier le mot de passe actuel
if (!Auth::verifyCurrentPassword($currentPassword)) {
throw new Exception('Le mot de passe actuel est incorrect');
}
// Valider le nouvel identifiant
if ($newUsername) {
if (strlen($newUsername) < 3) {
throw new Exception('L\'identifiant doit faire au moins 3 caractères');
}
}
// Valider le nouveau mot de passe
if ($newPassword) {
if (strlen($newPassword) < 8) {
throw new Exception('Le mot de passe doit faire au moins 8 caractères');
}
if ($newPassword !== $confirmPassword) {
throw new Exception('Les mots de passe ne correspondent pas');
}
}
// Mettre à jour les informations
$config = Config::load();
$userId = $_SESSION['user_id'];
foreach ($config['users'] as &$user) {
if ($user['id'] === $userId) {
// Mettre à jour l'identifiant si fourni
if ($newUsername) {
// Stocker l'ancien ID pour la mise à jour de la session
$oldId = $user['id'];
$user['id'] = $newUsername;
// Mettre à jour l'ID dans la session
if ($oldId === $_SESSION['user_id']) {
$_SESSION['user_id'] = $newUsername;
}
}
// Mettre à jour le mot de passe si fourni
if ($newPassword) {
$user['password'] = password_hash($newPassword, PASSWORD_DEFAULT);
}
break;
}
}
// Sauvegarder les modifications
Config::save($config);
$success = 'Profil mis à jour avec succès';
} catch (Exception $e) {
$error = $e->getMessage();
}
}
?>
<!DOCTYPE html>
<html lang="fr">
<head>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1.0">
<title>Modifier le profil - Administration</title>
<link rel="stylesheet" href="../assets/css/main.css">
</head>
<body>
<nav class="admin-nav">
<div class="nav-brand">Administration</div>
<div class="nav-menu">
<a href="index.php" class="button">Retour</a>
</div>
</nav>
<main class="admin-main">
<h1>Modifier le profil</h1>
<?php if ($success): ?>
<div class="success-message"><?= htmlspecialchars($success) ?></div>
<?php endif; ?>
<?php if ($error): ?>
<div class="error-message"><?= htmlspecialchars($error) ?></div>
<?php endif; ?>
<form method="POST" class="profile-form">
<div class="form-group">
<label for="current_password">Mot de passe actuel</label>
<input type="password" id="current_password" name="current_password" required>
<small>Requis pour toute modification</small>
</div>
<div class="form-group">
<label for="new_username">Nouvel identifiant</label>
<input type="text" id="new_username" name="new_username" minlength="3">
<small>Laisser vide pour ne pas modifier</small>
</div>
<div class="form-group">
<label for="new_password">Nouveau mot de passe</label>
<input type="password" id="new_password" name="new_password" minlength="8">
<small>Laisser vide pour ne pas modifier</small>
</div>
<div class="form-group">
<label for="confirm_password">Confirmer le nouveau mot de passe</label>
<input type="password" id="confirm_password" name="confirm_password">
</div>
<button type="submit" class="button">Enregistrer les modifications</button>
</form>
</main>
</body>
</html>

12
includes/auth.php
View File

@ -23,4 +23,16 @@ class Auth {
unset($_SESSION['user_id']); unset($_SESSION['user_id']);
session_destroy(); session_destroy();
} }
public static function verifyCurrentPassword($password) {
$config = Config::load();
$userId = $_SESSION['user_id'];
foreach ($config['users'] as $user) {
if ($user['id'] === $userId) {
return password_verify($password, $user['password']);
}
}
return false;
}
} }

13
includes/config.php
View File

@ -19,4 +19,17 @@ class Config {
$config = self::load(); $config = self::load();
return $config[$key] ?? $default; return $config[$key] ?? $default;
} }
public static function save($config) {
$configFile = __DIR__ . '/../config.json';
$jsonContent = json_encode($config, JSON_PRETTY_PRINT | JSON_UNESCAPED_UNICODE);
if (file_put_contents($configFile, $jsonContent) === false) {
throw new Exception('Impossible de sauvegarder la configuration');
}
self::$config = $config;
return true;
}
} }