🐛 User not added to DB - force die() on error (#118)

* 🐛 User not added to DB - force die() on error

Signed-off-by: Luke Tainton <luke@tainton.uk>

* Restyled by php-cs-fixer (#119)

Co-authored-by: Restyled.io <commits@restyled.io>

Co-authored-by: restyled-io[bot] <32688539+restyled-io[bot]@users.noreply.github.com>
Co-authored-by: Restyled.io <commits@restyled.io>

app/includes/app_functions.php

@@ -6,6 +6,22 @@
       return $version;
   }
 
+  function user_exists($db, $uuid)
+  {
+      try {
+          $sql = $db->prepare("SELECT uuid FROM users WHERE uuid=:uuid");
+          $sql->bindParam(':uuid', $uuid);
+          $sql->execute();
+      } catch (PDOException $e) {
+          $alert = array("danger", "Error during check for user record: " . $e->getMessage());
+      }
+      if (empty($sql)) {
+          return false;
+      } else {
+          return true;
+      }
+  }
+
   function get_all_users($db)
   {
       try {

app/public/actions/login.php

@@ -17,16 +17,7 @@
         $alert = array("danger", "Error during OpenID Connect authentication: " . $e->getMessage());
     }
 
-    // Check if the user already exists
-    try {
-      $user_exist_sql = $db->prepare("SELECT uuid FROM users WHERE uuid=:uuid");
-      $user_exist_sql->bindParam(':uuid', $oidc_user['sub']);
-      $user_exist_sql->execute();
-    } catch (PDOException $e) {
-      $alert = array("danger", "Error during check for user record: " . $e->getMessage());
-    }
-
-    if (empty($user_exist_sql)) {
+    if (!user_exists($db, $uuid)) {
         // User doesn't already exist
         try {
             $stmt = "INSERT INTO users (uuid, uid, given_name, family_name, email) VALUES (:sub, :username, :given, :family, :email)";
@@ -38,6 +29,8 @@
             $sql->bindParam(':email', $oidc_user['email']);
             $sql->execute();
         } catch (Jumbojett\PDOException $e) {
+            echo("Error during creation of new user record: " . $e->getMessage());
+            die();
             $alert = array("danger", "Error during creation of new user record: " . $e->getMessage());
         }
     } else {
@@ -52,6 +45,8 @@
             $sql->bindParam(':email', $oidc_user['email']);
             $sql->execute();
         } catch (Jumbojett\PDOException $e) {
+            echo("Error during existing user record update: " . $e->getMessage());
+            die();
             $alert = array("danger", "Error during existing user record update: " . $e->getMessage());
         }
     }
@@ -62,4 +57,3 @@
     $_SESSION['is_signed_in'] = "true";
 
     header('Location: /');
-?>