dozabt4329 2013-08-19 23:43
浏览 42
已采纳

使用CakePHP触发模型验证

I'm creating a form so users can change their passwords. This form is in my settings controller, but I'm saving the data to my users table.

I have the following form 

settings/index.ctp

echo $this->Form->create('settings');
echo $this->Form->input('current_password');
echo $this->Form->input('password');
echo $this->Form->input('repass', array('type'=>'password', 'label'=>'Re-Enter Password'));
echo $this->Form->end(__('Submit'));

Here's my Setting model

function equalToField($array, $field) {
    print_r($array); //check to see if it was even being triggered...it's not!
    return strcmp($this->data[$this->alias][key($array)], $this->data[$this->alias][$field]) == 0;
}

public function beforeSave() {

    if (isset($this->data[$this->alias]['password'])) {
        $this->data[$this->alias]['password'] = AuthComponent::password($this->data[$this->alias]['password']);
    }
    return true;
}


 public $validate = array(
    'password' => array(
        'required' => array(
            'rule' => array('minLength', '8'),
            'message' => 'A password with a minimum length of 8 characters is required'
        )
    ),
    'repass' => array(
        'required' => array(
            'rule' => array('equalToField', 'password'),
            'message' => 'Passwords do not match'
        )
    )
);

And the code in my SettingsController to save it

$password = Security::hash($this->request->data['settings']['current_password'], NULL, true);
$this->loadmodel('User');
$options = array('conditions' => array('User.' . $this->User->primaryKey => AuthComponent::user('id')));
$user = $this->User->find('first', $options);

if($user['User']['password'] == $password){ //current password match 
    $this->User->id = AuthComponent::user('id');
    $this->User->saveField('password',Security::hash($this->request->data['settings']['password'], NULL, true));
}
else{
    $this->Session->setFlash('Current password is incorrect'); 
}

What am I doing incorrectly that the validation isn't triggering? I'd prefer to keep this in my SettingsController if possible. Also, before anyone mentions it I plan on making the current password match into one of the validation criteria...just as soon as I get it working.

Update - I decided to do some digging around

In /lib/Model/Model.php I went to the validator function and printed the validator object, here's what I found

([validate] => Array ( 
        [password] => Array ( 
             [required] => Array ( 
                  [rule] => Array ( 
                       [0] => minLength 
                       [1] => 8 ) 
                       [message] => A password with a minimum length of 8 characters is required ) ) 
        [repass] => Array ( 
             [required] => Array ( 
                   [rule] => Array ( 
                        [0] => equalToField 
                        [1] => password )
                        [message] => Passwords do not match 
   ) ) ) 
 [useTable] => settings 
 [id] => 
 [data] => Array ( 
                [Setting] => Array ( 
                          [settings] => Array ( 
                                [current_password] => current_pass 
                                [password] => testpass1 
                                [repass] => testpass2 
   ) ) )

I'm not sure if that's what I want, but it's using settings table for this and I'm saving to the users table. I changed that value to users (by manually setting the value in that function), but it didn't change anything.

When I use the following as was suggested, it pulls the validation from the UserModel not Settings

$this->User->set($this->request->data);
if($this->User->Validates() == true){
  • 写回答

1条回答 默认 最新

  • duanfu4446 2013-08-20 18:50
    关注

    Ok, let's start with a fresh, new answer. There are various problems here.

    1. Mixing up models

    You are defining the validation rules and stuff on the Setting model, but in your code snippet you are using the User model for saving the data, so if at all, it would apply the validation rules defined on the User model. So while it's possible to use a different model for validation than for saving, I wouldn't recommend that, I would instead use the User model for all these jobs.

    That means, put the validation rules and methods in your User model (that is hopefully linked to the users table).

    2. Lowercase/plural notation for model names

    You are using lowercase/plural notation for model names, where it should be singular starting with a capital letter:

    $this->Form->create('Setting');

$this->request->data['Setting']

    Please note that this is just for demonstration purposes, as mentioned above you should use the User model, ie:

    $this->Form->create('User');

$this->request->data['User']

    3. Validation is applied to explicitly passed data only

    Model::saveField() only validates the data that was explicitly passed to it, ie it would only validate the password field, and you couldn't access any other fields from your validation methods since the data is not set on the model.

    So instead you'll either have to use Model::save() with a list of allowed fields supplied (you could also utilize Model::set()):

    $this->User->id = AuthComponent::user('id');
$this->User->save($this->request->data, true, array('password', 'repass'));

    or you do trigger validation manually:

    $this->User->id = AuthComponent::user('id');
$this->User->set($this->request->data);
if($this->User->validates() === true)
{
    $this->User->saveField('password', Security::hash($this->request->data['User']['password'], NULL, true));
}

    Note that in this scenario you could also use a different model for validation, ie:

    $this->Setting->set($this->request->data);
if($this->Setting->validates() === true)
{
    $this->User->saveField('password', Security::hash($this->request->data['User']['password'], NULL, true));
}

    However, I think it's better to use the User model, if necessary change validation rules dynamically so that they fit your needs. For example by removing rules:

    $this->User->validator()->remove('field_x')
                        ->remove('field_y')
                        ->remove('field_z');

    Or by overriding the validation rules:

    $this->User->validate = array
(
    ...
);

    However, both is best to be done from within the model.

    4. Triggering validation with Model::saveField()

    Last but not least, the Model::saveField() method has 3 parameters, where the third one is a either a boolean value (defaults to false), defining whether or not to use validation, or an array that takes the options validate, callbacks and counterCache.

    So you would have to set true as the third parameter in order for validation being triggered by Model::saveField() at all:

    $this->User->saveField('password', Security::hash($this->request->data['User']['password'], NULL, true), true);

    ps. are you aware that you are currently hashing twice? First directly when passing the data to Model::saveField(), and then a second time in Model::beforeSave().

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论

报告相同问题?

  • 使用CakePHP触发模型验证 php
    2013-08-19 23:43
    回答 1 已采纳 Ok, let's start with a fresh, new answer. There are various problems here. 1. Mixing up models Y
  • 触发CakePHP多步表单验证 php
    2015-08-22 13:56
    回答 1 已采纳 If the user clicks to go directly to step3 then you are not validating the data because the reques
  • cakephp模型中的电子邮件验证 php
    2016-02-16 12:19
    回答 2 已采纳 I think you are misunderstanding what Cake's isUnique rule checks for and as a result over complic
  • CakePHP快速入门
    2017-12-20 12:32
    amberom的博客 CakePHP的框架为您的应用程序提供了一个强大的基础。它可以处理每一个环节,从用户的初始请求一路到网页的最终渲染。 而且,由于该框架采用MVC的框构,它可以让你轻松定制和扩展你的应用程序。 该框架还提供了一...
  • cakephp使用PHP Gender扩展 php
    2018-12-05 16:32
    回答 1 已采纳 Without your CakePHP code I can only guess but yes, most likely the namespace creates the problem.
  • Cakephp,手动验证多个模型 php
    2015-03-26 20:23
    回答 1 已采纳 You can usea tableless model by defining $useTable= false in the model. Like this public $useTabl
  • Cakephp 2中的自定义身份验证使用用户模型 php
    2015-06-24 16:01
    回答 1 已采纳 cakephp2? you could try: $model = ClassRegistry::init('Yourmodel'); Simple query with your mode
  • cakePHP 入门与应用
    2015-12-06 11:44
    echoHelloWord的博客 1.下载:http://cakephp.org/ 下载最新的稳定版本  2.解压:  认识目录结构:  index.php  app ---你放置应用程序的地方  lib ---框架核心部件,请不要修改这个资料夹里的所有档案  plugins ---可以放置...
  • 如何使用模型和控制器验证cakephp中的表单字段 php
    2014-10-10 08:54
    回答 1 已采纳 Your controller code should be like this The process of validation in CakePHP is like 1) as you
  • cakephp 2.9.7数据验证无效 php
    2017-06-02 11:20
    回答 2 已采纳 This will validate and save your data if ($this->request->is('post')) { $this->Acti
  • 无法加载cakephp模型 php
    2016-06-01 12:43
    回答 1 已采纳 Very strange behavior. I added require_once bootstrap.php like this: require_once ROOT. DS . APP_
  • PHP面试题大全
    2019-12-20 09:54
    Rudon滨海渔村的博客 系统限制,只显示了2902行,请下载完整版: ... 问题:请用最简单的语言告诉我PHP是什么? 回答:PHP全称:Hypertext Preprocessor,是一种用来开发动态网站的服务器脚本...回答:MVC由Model(模型), View(视图...
  • cakephp未按预期验证模型 php
    2013-03-19 23:21
    回答 2 已采纳 found the problem, needed to put $this->Support->set($this->request->data); before
  • PHP知识点集合
    2019-10-22 18:54
    Qimi_的博客 变量如何定义?如何检查变量是否定义?如何删除一个变量?怎样检测变量是否设置? $定义 isset()// 检测变量是否设置 ...一个变量的变量名可以动态的设置和使用。 $a = ‘hello’ , $$a = ‘world’, KaTeX par...
  • PHP基础面试问题汇总
    2019-03-31 18:44
    PanQiHang的博客 PHP的意思 PHP是一个基于服务端来创建动态网站的脚本语言,您可以用PHP和HTML生成网站主页 什么是面向对象?主要特征是什么? 面向对象是程序的一种设计方式,它利于提高程序的重用性,使程序结构更加清晰。主要...
  • PHP 之道
    2017-02-16 11:36
    simonGeek的博客 PHP The Right Way. Tweet ...目前网络上充斥着大量的过时资讯,让 PHP 新手误入歧途,并且...使用 PHP 沒有规范化的方式。本网站主要是向 PHP 新手介绍一些他们没有发现或者是太晚发现的主题, 或是经验丰富的专
  • php杂谈【基础篇】之_12.php知识点合集
    2017-07-03 07:45
    郭振澳的博客 php杂谈【基础篇】之_12.php知识点合集 PHP知识大全1. 变量如何定义?如何检查变量是否定义?如何删除一个变量?怎样检测变量是否设置?$定义 isset()// 检测变量是否设置 defined()// 检测常量是否设置 unset...
  • PHP之道
    2014-10-17 21:58
    Jaafar_Chen的博客 PHP之道 PHP最佳实践、编码规范和学习指南 Welcome 目前网络上充斥着大量的陈旧信息,让PHP新手误入歧途,传播着错误的实践和糟糕的代码,这必须得到纠正。PHP之道网站的目标就是搜集PHP最佳实践、编码规范...
  • PHP编码规范
    2013-07-16 09:36
    雨风hha的博客 一、文件格式 1. 对于只含有 php ...2. 缩进应该能够反映出代码的逻辑结果,尽量使用四个空格,禁止使用制表符TAB,因为这样能够保证有跨客户端编程器软件的灵活性。 例如: if (1 == $x) {  $indented_code =
  • php综合复习题大全
    2013-06-14 15:16
    卡布奇诺Princes的博客 1. 变量如何定义?如何检查变量是否定义?...一个变量的变量名可以动态的设置和使用。 $a = 'hello' , $$a = 'world', ${$a}=hello world 3. 变量赋值方式有哪几种? 1)直接赋值 2)变量间赋值 3)引用赋值 4.
  • 没有解决我的问题, 去提问

悬赏问题

  • ¥40 复杂的限制性的商函数处理
  • ¥15 程序不包含适用于入口点的静态Main方法
  • ¥15 素材场景中光线烘焙后灯光失效
  • ¥15 请教一下各位,为什么我这个没有实现模拟点击
  • ¥15 执行 virtuoso 命令后,界面没有,cadence 启动不起来
  • ¥50 comfyui下连接animatediff节点生成视频质量非常差的原因
  • ¥20 有关区间dp的问题求解
  • ¥15 多电路系统共用电源的串扰问题
  • ¥15 slam rangenet++配置
  • ¥15 有没有研究水声通信方面的帮我改俩matlab代码