1 package Koha::Patron::Password::Recovery;
3 # Copyright 2014 Solutions InLibro inc.
5 # This file is part of Koha.
7 # Koha is free software; you can redistribute it and/or modify it
8 # under the terms of the GNU General Public License as published by
9 # the Free Software Foundation; either version 3 of the License, or
10 # (at your option) any later version.
12 # Koha is distributed in the hope that it will be useful, but
13 # WITHOUT ANY WARRANTY; without even the implied warranty of
14 # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
15 # GNU General Public License for more details.
17 # You should have received a copy of the GNU General Public License
18 # along with Koha; if not, see <http://www.gnu.org/licenses>.
23 use Crypt::Eksblowfish::Bcrypt qw(en_base64);
25 use vars qw(@ISA @EXPORT);
31 &ValidateBorrowernumber
32 &SendPasswordRecoveryEmail
34 &CompletePasswordRecovery
35 &DeleteExpiredPasswordRecovery
41 Koha::Patron::Password::Recovery - Koha password recovery module
45 use Koha::Patron::Password::Recovery;
49 =head2 ValidateBorrowernumber
51 $alread = ValidateBorrowernumber( $borrower_number );
53 Check if the system already start recovery
59 sub ValidateBorrowernumber {
60 my ($borrower_number) = @_;
61 my $schema = Koha::Database->new->schema;
63 my $rs = $schema->resultset('BorrowerPasswordRecovery')->search(
65 borrowernumber => $borrower_number,
66 valid_until => \'> NOW()'
68 { columns => 'borrowernumber' }
76 =head2 GetValidLinkInfo
78 Check if the link is still valid and return some info.
82 sub GetValidLinkInfo {
84 my $dbh = C4::Context->dbh;
86 SELECT borrower_password_recovery.borrowernumber, userid
87 FROM borrower_password_recovery, borrowers
88 WHERE borrowers.borrowernumber = borrower_password_recovery.borrowernumber
89 AND NOW() < valid_until
92 my $sth = $dbh->prepare($query);
93 $sth->execute($uniqueKey);
94 return $sth->fetchrow;
97 =head2 SendPasswordRecoveryEmail
99 It creates an email using the templates and sends it to the user, using the specified email
103 sub SendPasswordRecoveryEmail {
104 my $borrower = shift; # Koha::Patron
105 my $userEmail = shift; #to_address (the one specified in the request)
108 my $schema = Koha::Database->new->schema;
113 $uuid_str = '$2a$08$'.en_base64(Koha::AuthUtils::generate_salt('weak', 16));
114 } while ( substr ( $uuid_str, -1, 1 ) eq '.' );
116 # insert into database
118 DateTime->now( time_zone => C4::Context->tz() )->add( days => 2 );
121 $schema->resultset('BorrowerPasswordRecovery')
122 ->search( { borrowernumber => $borrower->borrowernumber, } );
124 { uuid => $uuid_str, valid_until => $expirydate->datetime() } );
127 my $rs = $schema->resultset('BorrowerPasswordRecovery')->create(
129 borrowernumber => $borrower->borrowernumber,
131 valid_until => $expirydate->datetime()
137 my $opacbase = C4::Context->preference('OPACBaseURL') || '';
138 my $uuidLink = $opacbase
139 . "/cgi-bin/koha/opac-password-recovery.pl?uniqueKey=$uuid_str";
142 my $letter = C4::Letters::GetPreparedLetter(
144 letter_code => 'PASSWORD_RESET',
145 branchcode => $borrower->branchcode,
146 lang => $borrower->lang,
148 { passwordreseturl => $uuidLink, user => $borrower->userid },
152 my $library = $borrower->library;
153 my $kohaEmail = $library->branchemail || C4::Context->preference('KohaAdminEmailAddress'); # send from patron's branch or Koha Admin
155 C4::Letters::EnqueueLetter(
158 borrowernumber => $borrower->borrowernumber,
159 to_address => $userEmail,
160 from_address => $kohaEmail,
161 message_transport_type => 'email',
168 =head2 CompletePasswordRecovery
170 $bool = CompletePasswordRecovery($uuid);
172 Deletes a password recovery entry.
176 sub CompletePasswordRecovery {
177 my $uniqueKey = shift;
179 Koha::Database->new->schema->resultset('BorrowerPasswordRecovery');
180 my $entry = $model->search(
181 { -or => [ uuid => $uniqueKey, valid_until => \'< NOW()' ] } );
182 return $entry->delete();
185 =head2 DeleteExpiredPasswordRecovery
187 $bool = DeleteExpiredPasswordRecovery($borrowernumber)
189 Deletes an expired password recovery entry.
193 sub DeleteExpiredPasswordRecovery {
194 my $borrower_number = shift;
196 Koha::Database->new->schema->resultset('BorrowerPasswordRecovery');
197 my $entry = $model->search(
198 { borrowernumber => $borrower_number } );
199 return $entry->delete();
203 END { } # module clean-up code here (global destructor)