WebSVN – LeadersLinked - Services – Autoría – /module/LeadersLinked/src/Controller/AuthController.php

Rev	Autor	Línea Nro.	Línea
1	efrain	1	`<?php`
		2
		3	`declare(strict_types=1);`
		4
		5	`namespace LeadersLinked\Controller;`
		6
		7	`use Nullix\CryptoJsAes\CryptoJsAes;`
		8	`use GeoIp2\Database\Reader as GeoIp2Reader;`
		9
		10	`use Laminas\Authentication\AuthenticationService;`
		11	`use Laminas\Authentication\Result as AuthResult;`
		12	`use Laminas\Mvc\Controller\AbstractActionController;`
		13	`use Laminas\View\Model\JsonModel;`
		14
		15	`use LeadersLinked\Form\Auth\SigninForm;`
		16	`use LeadersLinked\Form\Auth\ResetPasswordForm;`
		17	`use LeadersLinked\Form\Auth\ForgotPasswordForm;`
		18	`use LeadersLinked\Form\Auth\SignupForm;`
		19
		20	`use LeadersLinked\Mapper\ConnectionMapper;`
		21	`use LeadersLinked\Mapper\EmailTemplateMapper;`
		22	`use LeadersLinked\Mapper\NetworkMapper;`
		23	`use LeadersLinked\Mapper\UserMapper;`
		24
		25	`use LeadersLinked\Model\User;`
		26	`use LeadersLinked\Model\UserType;`
		27	`use LeadersLinked\Library\QueueEmail;`
		28	`use LeadersLinked\Library\Functions;`
		29	`use LeadersLinked\Model\EmailTemplate;`
		30	`use LeadersLinked\Mapper\UserPasswordMapper;`
		31	`use LeadersLinked\Model\UserBrowser;`
		32	`use LeadersLinked\Mapper\UserBrowserMapper;`
		33	`use LeadersLinked\Mapper\UserIpMapper;`
		34	`use LeadersLinked\Model\UserIp;`
		35	`use LeadersLinked\Form\Auth\MoodleForm;`
		36	`use LeadersLinked\Library\Rsa;`
		37	`use LeadersLinked\Library\Image;`
		38
		39	`use LeadersLinked\Authentication\AuthAdapter;`
		40	`use LeadersLinked\Authentication\AuthEmailAdapter;`
		41
		42	`use LeadersLinked\Model\UserPassword;`
		43
		44	`use LeadersLinked\Model\Connection;`
		45	`use LeadersLinked\Authentication\AuthImpersonateAdapter;`
		46	`use LeadersLinked\Model\Network;`
23	efrain	47	`use LeadersLinked\Model\JwtToken;`
		48	`use LeadersLinked\Mapper\JwtTokenMapper;`
		49	`use Firebase\JWT\JWT;`
24	efrain	50	`use Firebase\JWT\Key;`
1	efrain	51
		52
		53
		54	`class AuthController extends AbstractActionController`
		55	`{`
		56	`/**`
		57	`*`
		58	`* @var \Laminas\Db\Adapter\AdapterInterface`
		59	`*/`
		60	`private $adapter;`
		61
		62	`/**`
		63	`*`
		64	`* @var \LeadersLinked\Cache\CacheInterface`
		65	`*/`
		66	`private $cache;`
		67
		68
		69	`/**`
		70	`*`
		71	`* @var \Laminas\Log\LoggerInterface`
		72	`*/`
		73	`private $logger;`
		74
		75	`/**`
		76	`*`
		77	`* @var array`
		78	`*/`
		79	`private $config;`
		80
		81
		82	`/**`
		83	`*`
		84	`* @var \Laminas\Mvc\I18n\Translator`
		85	`*/`
		86	`private $translator;`
		87
		88
		89	`/**`
		90	`*`
		91	`* @param \Laminas\Db\Adapter\AdapterInterface $adapter`
		92	`* @param \LeadersLinked\Cache\CacheInterface $cache`
		93	`* @param \Laminas\Log\LoggerInterface LoggerInterface $logger`
		94	`* @param array $config`
		95	`* @param \Laminas\Mvc\I18n\Translator $translator`
		96	`*/`
		97	`public function __construct($adapter, $cache, $logger, $config, $translator)`
		98	`{`
		99	`$this->adapter = $adapter;`
		100	`$this->cache = $cache;`
		101	`$this->logger = $logger;`
		102	`$this->config = $config;`
		103	`$this->translator = $translator;`
		104	`}`
		105
		106	`public function signinAction()`
		107	`{`
		108	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		109	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		110
		111	`$request = $this->getRequest();`
		112
		113	`if ($request->isPost()) {`
		114	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		115	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
24	efrain	116
		117	`$jwtToken = null;`
		118	`$headers = getallheaders();`
		119	`if(isset($headers['authorization'])) {`
		120
		121	`$token = trim($headers['authorization']);`
		122	`if (substr($token, 0, 6 ) == 'Bearer') {`
		123
		124	`$token = trim(substr($token, 7));`
		125
		126	`if(!empty($this->config['leaderslinked.jwt.key'])) {`
		127	`$key = $this->config['leaderslinked.jwt.key'];`
		128
		129
		130	`try {`
		131	`$payload = JWT::decode($token, new Key($key, 'HS256'));`
		132
		133
		134	`if(empty($payload->iss) \|\| $payload->iss != $_SERVER['HTTP_HOST']) {`
		135	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong server', 'fatal' => true]);`
		136	`}`
		137
		138	`$uuid = empty($payload->uuid) ? '' : $payload->uuid;`
		139	`$jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);`
		140	`$jwtToken = $jwtTokenMapper->fetchOneByUuid($uuid);`
		141	`if(!$jwtToken) {`
		142	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Expired', 'fatal' => true]);`
		143	`}`
1	efrain	144
24	efrain	145	`} catch(\Exception $e) {`
		146	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong key', 'fatal' => true]);`
		147	`}`
		148	`} else {`
		149	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - SecreteKey required', 'fatal' => true]);`
		150	`}`
		151	`} else {`
		152	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Bearer required', 'fatal' => true]);`
		153	`}`
		154	`} else {`
		155	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Required', 'fatal' => true]);`
		156	`}`
1	efrain	157
24	efrain	158
1	efrain	159	`$form = new SigninForm($this->config);`
		160	`$dataPost = $request->getPost()->toArray();`
		161
		162	`if (empty($_SESSION['aes'])) {`
		163	`return new JsonModel([`
		164	`'success' => false,`
		165	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		166	`]);`
		167	`}`
28	efrain	168
		169	`print_r($dataPost);`
1	efrain	170
		171	`if (!empty($dataPost['email'])) {`
		172	`$dataPost['email'] = CryptoJsAes::decrypt($dataPost['email'], $_SESSION['aes']);`
		173	`}`
		174
		175
		176	`if (!empty($dataPost['password'])) {`
		177	`$dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);`
18	efrain	178	`}`
27	efrain	179
28	efrain	180
		181
		182	`print_r($dataPost); exit;`
1	efrain	183
		184	`$form->setData($dataPost);`
		185
		186	`if ($form->isValid()) {`
24	efrain	187
1	efrain	188	`$dataPost = (array) $form->getData();`
		189
		190	`$email = $dataPost['email'];`
		191	`$password = $dataPost['password'];`
		192	`$remember = $dataPost['remember'];`
		193
		194	`$authAdapter = new AuthAdapter($this->adapter, $this->logger);`
		195	`$authAdapter->setData($email, $password, $currentNetwork->id);`
		196	`$authService = new AuthenticationService();`
		197
		198	`$result = $authService->authenticate($authAdapter);`
		199
		200	`if ($result->getCode() == AuthResult::SUCCESS) {`
		201
		202
		203	`$userMapper = UserMapper::getInstance($this->adapter);`
		204	`$user = $userMapper->fetchOneByEmail($email);`
		205
		206	`$navigator = get_browser(null, true);`
		207	`$device_type = isset($navigator['device_type']) ? $navigator['device_type'] : '';`
		208	`$platform = isset($navigator['platform']) ? $navigator['platform'] : '';`
		209	`$browser = isset($navigator['browser']) ? $navigator['browser'] : '';`
		210
		211
		212	`$istablet = isset($navigator['istablet']) ? intval($navigator['istablet']) : 0;`
		213	`$ismobiledevice = isset($navigator['ismobiledevice']) ? intval($navigator['ismobiledevice']) : 0;`
		214	`$version = isset($navigator['version']) ? $navigator['version'] : '';`
		215
		216
		217	`$userBrowserMapper = UserBrowserMapper::getInstance($this->adapter);`
		218	`$userBrowser = $userBrowserMapper->fetch($user->id, $device_type, $platform, $browser);`
		219	`if ($userBrowser) {`
		220	`$userBrowserMapper->update($userBrowser);`
		221	`} else {`
		222	`$userBrowser = new UserBrowser();`
		223	`$userBrowser->user_id = $user->id;`
		224	`$userBrowser->browser = $browser;`
		225	`$userBrowser->platform = $platform;`
		226	`$userBrowser->device_type = $device_type;`
		227	`$userBrowser->is_tablet = $istablet;`
		228	`$userBrowser->is_mobile_device = $ismobiledevice;`
		229	`$userBrowser->version = $version;`
		230
		231	`$userBrowserMapper->insert($userBrowser);`
		232	`}`
		233	`//`
		234
		235	`$ip = Functions::getUserIP();`
		236	`$ip = $ip == '127.0.0.1' ? '148.240.211.148' : $ip;`
		237
		238	`$userIpMapper = UserIpMapper::getInstance($this->adapter);`
		239	`$userIp = $userIpMapper->fetch($user->id, $ip);`
		240	`if (empty($userIp)) {`
		241
		242	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		243	`$filename = $this->config['leaderslinked.geoip2.production_database'];`
		244	`} else {`
		245	`$filename = $this->config['leaderslinked.geoip2.sandbox_database'];`
		246	`}`
		247
		248	`$reader = new GeoIp2Reader($filename); //GeoIP2-City.mmdb');`
		249	`$record = $reader->city($ip);`
		250	`if ($record) {`
		251	`$userIp = new UserIp();`
		252	`$userIp->user_id = $user->id;`
		253	`$userIp->city = !empty($record->city->name) ? Functions::utf8_decode($record->city->name) : '';`
		254	`$userIp->state_code = !empty($record->mostSpecificSubdivision->isoCode) ? Functions::utf8_decode($record->mostSpecificSubdivision->isoCode) : '';`
		255	`$userIp->state_name = !empty($record->mostSpecificSubdivision->name) ? Functions::utf8_decode($record->mostSpecificSubdivision->name) : '';`
		256	`$userIp->country_code = !empty($record->country->isoCode) ? Functions::utf8_decode($record->country->isoCode) : '';`
		257	`$userIp->country_name = !empty($record->country->name) ? Functions::utf8_decode($record->country->name) : '';`
		258	`$userIp->ip = $ip;`
		259	`$userIp->latitude = !empty($record->location->latitude) ? $record->location->latitude : 0;`
		260	`$userIp->longitude = !empty($record->location->longitude) ? $record->location->longitude : 0;`
		261	`$userIp->postal_code = !empty($record->postal->code) ? $record->postal->code : '';`
		262
		263	`$userIpMapper->insert($userIp);`
		264	`}`
		265	`} else {`
		266	`$userIpMapper->update($userIp);`
		267	`}`
		268
24	efrain	269	`/*`
1	efrain	270	`if ($remember) {`
		271	`$expired = time() + 365 * 24 * 60 * 60;`
		272
		273	`$cookieEmail = new SetCookie('email', $email, $expired);`
		274	`} else {`
		275	`$expired = time() - 7200;`
		276	`$cookieEmail = new SetCookie('email', '', $expired);`
		277	`}`
		278
		279
		280	`$response = $this->getResponse();`
		281	`$response->getHeaders()->addHeader($cookieEmail);`
24	efrain	282	`*/`
		283
		284
1	efrain	285
		286
		287
		288	`$this->logger->info('Ingreso a LeadersLiked', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		289
		290	`$user_share_invitation = $this->cache->getItem('user_share_invitation');`
		291
		292	`if ($user_share_invitation) {`
		293	`$userRedirect = $userMapper->fetchOneByUuid($user_share_invitation);`
		294	`if ($userRedirect && $userRedirect->status == User::STATUS_ACTIVE && $user->id != $userRedirect->id) {`
		295	`$connectionMapper = ConnectionMapper::getInstance($this->adapter);`
		296	`$connection = $connectionMapper->fetchOneByUserId1AndUserId2($user->id, $userRedirect->id);`
		297
		298	`if ($connection) {`
		299
		300	`if ($connection->status != Connection::STATUS_ACCEPTED) {`
		301	`$connectionMapper->approve($connection);`
		302	`}`
		303	`} else {`
		304	`$connection = new Connection();`
		305	`$connection->request_from = $user->id;`
		306	`$connection->request_to = $userRedirect->id;`
		307	`$connection->status = Connection::STATUS_ACCEPTED;`
		308
		309	`$connectionMapper->insert($connection);`
		310	`}`
		311	`}`
		312	`}`
		313
		314
		315
		316	`$data = [`
		317	`'success' => true,`
		318	`'data' => $this->url()->fromRoute('dashboard'),`
		319	`];`
		320
		321	`$this->cache->removeItem('user_share_invitation');`
		322	`} else {`
		323
		324	`$message = $result->getMessages()[0];`
		325	`if (!in_array($message, [`
		326	`'ERROR_USER_NOT_FOUND', 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED', 'ERROR_USER_IS_BLOCKED',`
		327	`'ERROR_USER_IS_INACTIVE', 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED', 'ERROR_ENTERED_PASS_INCORRECT_2',`
		328	`'ERROR_ENTERED_PASS_INCORRECT_1', 'ERROR_USER_REQUEST_ACCESS_IS_PENDING', 'ERROR_USER_REQUEST_ACCESS_IS_REJECTED'`
		329
		330
		331	`])) {`
		332	`}`
		333
		334	`switch ($message) {`
		335	`case 'ERROR_USER_NOT_FOUND':`
		336	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no existe', ['ip' => Functions::getUserIP()]);`
		337	`break;`
		338
		339	`case 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED':`
		340	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no verificado', ['ip' => Functions::getUserIP()]);`
		341	`break;`
		342
		343	`case 'ERROR_USER_IS_BLOCKED':`
		344	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		345	`break;`
		346
		347	`case 'ERROR_USER_IS_INACTIVE':`
		348	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario inactivo', ['ip' => Functions::getUserIP()]);`
		349	`break;`
		350
		351
		352	`case 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED':`
		353	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 3er Intento Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		354	`break;`
		355
		356
		357	`case 'ERROR_ENTERED_PASS_INCORRECT_2':`
		358	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 1er Intento', ['ip' => Functions::getUserIP()]);`
		359	`break;`
		360
		361
		362	`case 'ERROR_ENTERED_PASS_INCORRECT_1':`
		363	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 2do Intento', ['ip' => Functions::getUserIP()]);`
		364	`break;`
		365
		366
		367	`case 'ERROR_USER_REQUEST_ACCESS_IS_PENDING':`
		368	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Falta verificar que pertence a la Red Privada', ['ip' => Functions::getUserIP()]);`
		369	`break;`
		370
		371	`case 'ERROR_USER_REQUEST_ACCESS_IS_REJECTED':`
		372	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Rechazado por no pertence a la Red Privada', ['ip' => Functions::getUserIP()]);`
		373	`break;`
		374
		375
		376	`default:`
		377	`$message = 'ERROR_UNKNOWN';`
		378	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Error desconocido', ['ip' => Functions::getUserIP()]);`
		379	`break;`
		380	`}`
		381
		382
		383
		384
		385	`$data = [`
		386	`'success' => false,`
		387	`'data' => $message`
		388	`];`
		389	`}`
		390
		391	`return new JsonModel($data);`
		392	`} else {`
		393	`$messages = [];`
		394
		395
		396
		397	`$form_messages = (array) $form->getMessages();`
		398	`foreach ($form_messages as $fieldname => $field_messages) {`
		399
		400	`$messages[$fieldname] = array_values($field_messages);`
		401	`}`
		402
		403	`return new JsonModel([`
		404	`'success' => false,`
		405	`'data' => $messages`
		406	`]);`
		407	`}`
		408	`} else if ($request->isGet()) {`
		409
23	efrain	410	`$aes = Functions::generatePassword(16);`
1	efrain	411
23	efrain	412	`$jwtToken = new JwtToken();`
		413	`$jwtToken->aes = $aes;`
		414
		415	`$jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);`
		416	`if($jwtTokenMapper->insert($jwtToken)) {`
		417	`$jwtToken = $jwtTokenMapper->fetchOne($jwtToken->id);`
1	efrain	418	`}`
23	efrain	419
		420	`$token = '';`
		421
		422	`if(!empty($this->config['leaderslinked.jwt.key'])) {`
		423	`$issuedAt = new \DateTimeImmutable();`
		424	`$expire = $issuedAt->modify('+24 hours')->getTimestamp();`
		425	`$serverName = $_SERVER['HTTP_HOST'];`
		426	`$payload = [`
		427	`'iat' => $issuedAt->getTimestamp(),`
		428	`'iss' => $serverName,`
		429	`'nbf' => $issuedAt->getTimestamp(),`
		430	`'exp' => $expire,`
		431	`'uuid' => $jwtToken->uuid,`
		432	`];`
		433
		434
		435	`$key = $this->config['leaderslinked.jwt.key'];`
		436	`$token = JWT::encode($payload, $key, 'HS256');`
		437	`}`
		438
		439
		440
1	efrain	441
23	efrain	442
1	efrain	443	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		444	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		445	`} else {`
		446	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		447	`}`
		448
		449
		450	`$access_usign_social_networks = $this->config['leaderslinked.runmode.access_usign_social_networks'];`
		451
		452	`$sandbox = $this->config['leaderslinked.runmode.sandbox'];`
		453	`if ($sandbox) {`
		454	`$google_map_key = $this->config['leaderslinked.google_map.sandbox_api_key'];`
		455	`} else {`
		456	`$google_map_key = $this->config['leaderslinked.google_map.production_api_key'];`
		457	`}`
		458
		459
		460	`$data = [`
23	efrain	461	`'google_map_key' => $google_map_key,`
		462	`'email' => '',`
		463	`'remember' => false,`
		464	`'site_key' => $site_key,`
		465	`'theme_id' => $currentNetwork->theme_id,`
		466	`'aes' => $aes,`
		467	`'jwt' => $token,`
		468	`'defaultNetwork' => $currentNetwork->default,`
		469	`'access_usign_social_networks' => $access_usign_social_networks && $currentNetwork->default == Network::DEFAULT_YES ? 'y' : 'n',`
		470	`'logo_url' => $this->url()->fromRoute('storage-network', ['type' => 'logo']),`
		471	`'navbar_url' => $this->url()->fromRoute('storage-network', ['type' => 'navbar']),`
		472	`'favico_url' => $this->url()->fromRoute('storage-network', ['type' => 'favico']),`
		473	`'intro' => $currentNetwork->intro,`
		474	`'is_logged_in' => false`
1	efrain	475
		476	`];`
		477
		478	`} else {`
		479	`$data = [`
		480	`'success' => false,`
		481	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		482	`];`
		483
		484	`return new JsonModel($data);`
		485	`}`
		486
		487	`return new JsonModel($data);`
		488	`}`
		489
		490	`public function facebookAction()`
		491	`{`
		492
		493	`$request = $this->getRequest();`
		494	`if ($request->isGet()) {`
		495	`/*`
		496	`// try {`
		497	`$app_id = $this->config['leaderslinked.facebook.app_id'];`
		498	`$app_password = $this->config['leaderslinked.facebook.app_password'];`
		499	`$app_graph_version = $this->config['leaderslinked.facebook.app_graph_version'];`
		500	`//$app_url_auth = $this->config['leaderslinked.facebook.app_url_auth'];`
		501	`//$redirect_url = $this->config['leaderslinked.facebook.app_redirect_url'];`
		502
		503	`[facebook]`
		504	`app_id=343770226993130`
		505	`app_password=028ee729090fd591e50a17a786666c12`
		506	`app_graph_version=v17`
		507	`app_redirect_url=https://leaderslinked.com/oauth/facebook`
		508
		509	`https://www.facebook.com/v17.0/dialog/oauth?client_id=343770226993130&redirect_uri= https://dev.leaderslinked.com/oauth/facebook&state=AE12345678`
		510
		511
		512	`$s = 'https://www.facebook.com/v17.0/dialog/oauth' .`
		513	`'?client_id='`
		514	`'&redirect_uri={"https://www.domain.com/login"}`
		515	`'&state={"{st=state123abc,ds=123456789}"}`
		516
		517	`$fb = new \Facebook\Facebook([`
		518	`'app_id' => $app_id,`
		519	`'app_secret' => $app_password,`
		520	`'default_graph_version' => $app_graph_version,`
		521	`]);`
		522
		523	`$app_url_auth = $this->url()->fromRoute('oauth/facebook', [], ['force_canonical' => true]);`
		524	`$helper = $fb->getRedirectLoginHelper();`
		525	`$permissions = ['email', 'public_profile']; // Optional permissions`
		526	`$facebookUrl = $helper->getLoginUrl($app_url_auth, $permissions);`
		527
		528
		529
		530	`return new JsonModel([`
		531	`'success' => false,`
		532	`'data' => $facebookUrl`
		533	`]);`
		534	`} catch (\Throwable $e) {`
		535	`return new JsonModel([`
		536	`'success' => false,`
		537	`'data' => 'ERROR_WE_COULD_NOT_CONNECT_TO_FACEBOOK'`
		538	`]);`
		539	`}*/`
		540	`} else {`
		541	`return new JsonModel([`
		542	`'success' => false,`
		543	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		544	`]);`
		545	`}`
		546	`}`
		547
		548	`public function twitterAction()`
		549	`{`
		550	`$request = $this->getRequest();`
		551	`if ($request->isGet()) {`
		552
		553	`try {`
		554	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		555
		556	`$twitter_api_key = $this->config['leaderslinked.twitter.sandbox_api_key'];`
		557	`$twitter_api_secret = $this->config['leaderslinked.twitter.sandbox_api_secret'];`
		558	`} else {`
		559	`$twitter_api_key = $this->config['leaderslinked.twitter.production_api_key'];`
		560	`$twitter_api_secret = $this->config['leaderslinked.twitter.production_api_secret'];`
		561	`}`
		562
		563	`/*`
		564	`echo '$twitter_api_key = ' . $twitter_api_key . PHP_EOL;`
		565	`echo '$twitter_api_secret = ' . $twitter_api_secret . PHP_EOL;`
		566	`exit;`
		567	`*/`
		568
		569	`//Twitter`
		570	`//$redirect_url = $this->url()->fromRoute('oauth/twitter', [], ['force_canonical' => true]);`
		571	`$redirect_url = $this->config['leaderslinked.twitter.app_redirect_url'];`
		572	`$twitter = new \Abraham\TwitterOAuth\TwitterOAuth($twitter_api_key, $twitter_api_secret);`
		573	`$request_token = $twitter->oauth('oauth/request_token', ['oauth_callback' => $redirect_url]);`
		574	`$twitterUrl = $twitter->url('oauth/authorize', ['oauth_token' => $request_token['oauth_token']]);`
		575
		576	`$twitterSession = new \Laminas\Session\Container('twitter');`
		577	`$twitterSession->oauth_token = $request_token['oauth_token'];`
		578	`$twitterSession->oauth_token_secret = $request_token['oauth_token_secret'];`
		579
		580	`return new JsonModel([`
		581	`'success' => true,`
		582	`'data' => $twitterUrl`
		583	`]);`
		584	`} catch (\Throwable $e) {`
		585	`return new JsonModel([`
		586	`'success' => false,`
		587	`'data' => 'ERROR_WE_COULD_NOT_CONNECT_TO_TWITTER'`
		588	`]);`
		589	`}`
		590	`} else {`
		591	`return new JsonModel([`
		592	`'success' => false,`
		593	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		594	`]);`
		595	`}`
		596	`}`
		597
		598	`public function googleAction()`
		599	`{`
		600	`$request = $this->getRequest();`
		601	`if ($request->isGet()) {`
		602
		603	`try {`
		604
		605
		606	`//Google`
		607	`$google = new \Google_Client();`
		608	`$google->setAuthConfig('data/google/auth-leaderslinked/apps.google.com_secreto_cliente.json');`
		609	`$google->setAccessType("offline"); // offline access`
		610
		611	`$google->setIncludeGrantedScopes(true); // incremental auth`
		612
		613	`$google->addScope('profile');`
		614	`$google->addScope('email');`
		615
		616	`// $redirect_url = $this->url()->fromRoute('oauth/google', [], ['force_canonical' => true]);`
		617	`$redirect_url = $this->config['leaderslinked.google_auth.app_redirect_url'];`
		618
		619	`$google->setRedirectUri($redirect_url);`
		620	`$googleUrl = $google->createAuthUrl();`
		621
		622	`return new JsonModel([`
		623	`'success' => true,`
		624	`'data' => $googleUrl`
		625	`]);`
		626	`} catch (\Throwable $e) {`
		627	`return new JsonModel([`
		628	`'success' => false,`
		629	`'data' => 'ERROR_WE_COULD_NOT_CONNECT_TO_GOOGLE'`
		630	`]);`
		631	`}`
		632	`} else {`
		633	`return new JsonModel([`
		634	`'success' => false,`
		635	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		636	`]);`
		637	`}`
		638	`}`
		639
		640	`public function signoutAction()`
		641	`{`
		642	`$currentUserPlugin = $this->plugin('currentUserPlugin');`
		643	`$currentUser = $currentUserPlugin->getRawUser();`
		644	`if ($currentUserPlugin->hasImpersonate()) {`
		645
		646
		647	`$userMapper = UserMapper::getInstance($this->adapter);`
		648	`$userMapper->leaveImpersonate($currentUser->id);`
		649
		650	`$networkMapper = NetworkMapper::getInstance($this->adapter);`
		651	`$network = $networkMapper->fetchOne($currentUser->network_id);`
		652
		653
		654	`if (!$currentUser->one_time_password) {`
		655	`$one_time_password = Functions::generatePassword(25);`
		656
		657	`$currentUser->one_time_password = $one_time_password;`
		658
		659	`$userMapper = UserMapper::getInstance($this->adapter);`
		660	`$userMapper->updateOneTimePassword($currentUser, $one_time_password);`
		661	`}`
		662
		663
		664	`$sandbox = $this->config['leaderslinked.runmode.sandbox'];`
		665	`if ($sandbox) {`
		666	`$salt = $this->config['leaderslinked.backend.sandbox_salt'];`
		667	`} else {`
		668	`$salt = $this->config['leaderslinked.backend.production_salt'];`
		669	`}`
		670
		671	`$rand = 1000 + mt_rand(1, 999);`
		672	`$timestamp = time();`
		673	`$password = md5($currentUser->one_time_password . '-' . $rand . '-' . $timestamp . '-' . $salt);`
		674
		675	`$params = [`
		676	`'user_uuid' => $currentUser->uuid,`
		677	`'password' => $password,`
		678	`'rand' => $rand,`
		679	`'time' => $timestamp,`
		680	`];`
		681
		682	`$currentUserPlugin->clearIdentity();`
		683
		684	`return new JsonModel([`
		685	`'success' => true,`
		686	`'data' => [`
		687	`'message' => 'LABEL_SIGNOUT_SUCCESSFULLY',`
		688	`'url' => 'https://' . $network->main_hostname . '/signin/impersonate' . '?' . http_build_query($params)`
		689	`],`
		690
		691	`]);`
		692
		693
		694	`// $url = 'https://' . $network->main_hostname . '/signin/impersonate' . '?' . http_build_query($params);`
		695	`// return $this->redirect()->toUrl($url);`
		696	`} else {`
		697
		698
		699	`if ($currentUserPlugin->hasIdentity()) {`
		700
		701	`$this->logger->info('Desconexión de LeadersLinked', ['user_id' => $currentUserPlugin->getUserId(), 'ip' => Functions::getUserIP()]);`
		702	`}`
		703
		704	`$currentUserPlugin->clearIdentity();`
		705
		706	`// return $this->redirect()->toRoute('home');`
		707
		708	`return new JsonModel([`
		709	`'success' => true,`
		710	`'data' => [`
		711	`'message' => 'LABEL_SIGNOUT_SUCCESSFULLY',`
		712	`'url' => '',`
		713	`],`
		714
		715	`]);`
		716	`}`
		717	`}`
		718
		719
		720	`public function resetPasswordAction()`
		721	`{`
		722	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		723	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		724
		725
		726	`$flashMessenger = $this->plugin('FlashMessenger');`
		727	`$code = Functions::sanitizeFilterString($this->params()->fromRoute('code', ''));`
		728
		729	`$userMapper = UserMapper::getInstance($this->adapter);`
		730	`$user = $userMapper->fetchOneByPasswordResetKeyAndNetworkId($code, $currentNetwork->id);`
		731	`if (!$user) {`
		732	`$this->logger->err('Restablecer contraseña - Error código no existe', ['ip' => Functions::getUserIP()]);`
		733
		734	`return new JsonModel([`
		735	`'success' => true,`
		736	`'data' => 'ERROR_PASSWORD_RECOVER_CODE_IS_INVALID'`
		737	`]);`
		738
		739	`}`
		740
		741
		742
		743	`$password_generated_on = strtotime($user->password_generated_on);`
		744	`$expiry_time = $password_generated_on + $this->config['leaderslinked.security.reset_password_expired'];`
		745	`if (time() > $expiry_time) {`
		746	`$this->logger->err('Restablecer contraseña - Error código expirado', ['ip' => Functions::getUserIP()]);`
		747
		748	`return new JsonModel([`
		749	`'success' => true,`
		750	`'data' => 'ERROR_PASSWORD_RECOVER_CODE_HAS_EXPIRED'`
		751	`]);`
		752	`}`
		753
		754	`$request = $this->getRequest();`
		755	`if ($request->isPost()) {`
		756	`$dataPost = $request->getPost()->toArray();`
		757	`if (empty($_SESSION['aes'])) {`
		758	`return new JsonModel([`
		759	`'success' => false,`
		760	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		761	`]);`
		762
		763
		764	`}`
		765
		766	`if (!empty($dataPost['password'])) {`
		767	`$dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);`
		768	`}`
		769	`if (!empty($dataPost['confirmation'])) {`
		770	`$dataPost['confirmation'] = CryptoJsAes::decrypt($dataPost['confirmation'], $_SESSION['aes']);`
		771	`}`
		772
		773
		774
		775	`$form = new ResetPasswordForm($this->config);`
		776	`$form->setData($dataPost);`
		777
		778	`if ($form->isValid()) {`
		779	`$data = (array) $form->getData();`
		780	`$password = $data['password'];`
		781
		782
		783	`$userPasswordMapper = UserPasswordMapper::getInstance($this->adapter);`
		784	`$userPasswords = $userPasswordMapper->fetchAllByUserId($user->id);`
		785
		786	`$oldPassword = false;`
		787	`foreach ($userPasswords as $userPassword) {`
		788	`if (password_verify($password, $userPassword->password) \|\| (md5($password) == $userPassword->password)) {`
		789	`$oldPassword = true;`
		790	`break;`
		791	`}`
		792	`}`
		793
		794	`if ($oldPassword) {`
		795	`$this->logger->err('Restablecer contraseña - Error contraseña ya utilizada anteriormente', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		796
		797	`return new JsonModel([`
		798	`'success' => false,`
		799	`'data' => 'ERROR_PASSWORD_HAS_ALREADY_BEEN_USED'`
		800
		801	`]);`
		802	`} else {`
		803	`$password_hash = password_hash($password, PASSWORD_DEFAULT);`
		804
		805
		806	`$result = $userMapper->updatePassword($user, $password_hash);`
		807	`if ($result) {`
		808
		809	`$userPassword = new UserPassword();`
		810	`$userPassword->user_id = $user->id;`
		811	`$userPassword->password = $password_hash;`
		812	`$userPasswordMapper->insert($userPassword);`
		813
		814
		815	`$this->logger->info('Restablecer contraseña realizado', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		816
		817
		818	`$flashMessenger->addSuccessMessage('LABEL_YOUR_PASSWORD_HAS_BEEN_UPDATED');`
		819
		820	`return new JsonModel([`
		821	`'success' => true,`
		822	`'data' => [`
		823	`'message' => 'LABEL_YOUR_PASSWORD_HAS_BEEN_UPDATED',`
		824	`'redirect' => $this->url()->fromRoute('home'),`
		825	`],`
		826
		827	`]);`
		828	`} else {`
		829	`$this->logger->err('Restablecer contraseña - Error desconocido', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		830
		831	`return new JsonModel([`
		832	`'success' => false,`
		833	`'data' => 'ERROR_THERE_WAS_AN_ERROR'`
		834
		835	`]);`
		836	`}`
		837	`}`
		838	`} else {`
		839	`$form_messages = $form->getMessages('captcha');`
		840	`if (!empty($form_messages)) {`
		841	`return new JsonModel([`
		842	`'success' => false,`
		843	`'data' => 'ERROR_RECAPTCHA_EMPTY'`
		844	`]);`
		845	`}`
		846
		847	`$messages = [];`
		848
		849	`$form_messages = (array) $form->getMessages();`
		850	`foreach ($form_messages as $fieldname => $field_messages) {`
		851	`$messages[$fieldname] = array_values($field_messages);`
		852	`}`
		853
		854	`return new JsonModel([`
		855	`'success' => false,`
		856	`'data' => $messages`
		857	`]);`
		858	`}`
		859	`} else if ($request->isGet()) {`
		860
		861	`if (empty($_SESSION['aes'])) {`
		862	`$_SESSION['aes'] = Functions::generatePassword(16);`
		863	`}`
		864
		865	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		866	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		867	`} else {`
		868	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		869	`}`
		870
		871
		872	`return new JsonModel([`
		873	`'code' => $code,`
		874	`'site_key' => $site_key,`
		875	`'aes' => $_SESSION['aes'],`
		876	`'defaultNetwork' => $currentNetwork->default,`
		877	`]);`
		878
		879	`}`
		880
		881
		882
		883	`return new JsonModel([`
		884	`'success' => false,`
		885	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		886	`]);`
		887	`}`
		888
		889	`public function forgotPasswordAction()`
		890	`{`
		891	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		892	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		893
		894
		895
		896	`$request = $this->getRequest();`
		897	`if ($request->isPost()) {`
		898	`$dataPost = $request->getPost()->toArray();`
		899	`if (empty($_SESSION['aes'])) {`
		900	`return new JsonModel([`
		901	`'success' => false,`
		902	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		903	`]);`
		904	`}`
		905
		906	`if (!empty($dataPost['email'])) {`
		907	`$dataPost['email'] = CryptoJsAes::decrypt($dataPost['email'], $_SESSION['aes']);`
		908	`}`
		909
		910	`$form = new ForgotPasswordForm($this->config);`
		911	`$form->setData($dataPost);`
		912
		913	`if ($form->isValid()) {`
		914	`$dataPost = (array) $form->getData();`
		915	`$email = $dataPost['email'];`
		916
		917	`$userMapper = UserMapper::getInstance($this->adapter);`
		918	`$user = $userMapper->fetchOneByEmailAndNetworkId($email, $currentNetwork->id);`
		919	`if (!$user) {`
		920	`$this->logger->err('Olvidó contraseña ' . $email . '- Email no existe ', ['ip' => Functions::getUserIP()]);`
		921
		922	`return new JsonModel([`
		923	`'success' => false,`
		924	`'data' => 'ERROR_EMAIL_IS_NOT_REGISTERED'`
		925	`]);`
		926	`} else {`
		927	`if ($user->status == User::STATUS_INACTIVE) {`
		928	`return new JsonModel([`
		929	`'success' => false,`
		930	`'data' => 'ERROR_USER_IS_INACTIVE'`
		931	`]);`
		932	`} else if ($user->email_verified == User::EMAIL_VERIFIED_NO) {`
		933	`$this->logger->err('Olvidó contraseña - Email no verificado ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		934
		935	`return new JsonModel([`
		936	`'success' => false,`
		937	`'data' => 'ERROR_EMAIL_HAS_NOT_BEEN_VERIFIED'`
		938	`]);`
		939	`} else {`
		940	`$password_reset_key = md5($user->email . time());`
		941	`$userMapper->updatePasswordResetKey((int) $user->id, $password_reset_key);`
		942
		943	`$emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);`
		944	`$emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_RESET_PASSWORD, $currentNetwork->id);`
		945	`if ($emailTemplate) {`
		946	`$arrayCont = [`
		947	`'firstname' => $user->first_name,`
		948	`'lastname' => $user->last_name,`
		949	`'other_user_firstname' => '',`
		950	`'other_user_lastname' => '',`
		951	`'company_name' => '',`
		952	`'group_name' => '',`
		953	`'content' => '',`
		954	`'code' => '',`
		955	`'link' => $this->url()->fromRoute('reset-password', ['code' => $password_reset_key], ['force_canonical' => true])`
		956	`];`
		957
		958	`$email = new QueueEmail($this->adapter);`
		959	`$email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name));`
		960	`}`
		961	`$flashMessenger = $this->plugin('FlashMessenger');`
		962	`$flashMessenger->addSuccessMessage('LABEL_RECOVERY_LINK_WAS_SENT_TO_YOUR_EMAIL');`
		963
		964	`$this->logger->info('Olvidó contraseña - Se envio link de recuperación ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		965
		966	`return new JsonModel([`
		967	`'success' => true,`
		968	`]);`
		969	`}`
		970	`}`
		971	`} else {`
		972
		973
		974	`$form_messages = $form->getMessages('captcha');`
		975
		976
		977
		978	`if (!empty($form_messages)) {`
		979	`return new JsonModel([`
		980	`'success' => false,`
		981	`'data' => 'ERROR_RECAPTCHA_EMPTY'`
		982	`]);`
		983	`}`
		984
		985	`$messages = [];`
		986	`$form_messages = (array) $form->getMessages();`
		987	`foreach ($form_messages as $fieldname => $field_messages) {`
		988	`$messages[$fieldname] = array_values($field_messages);`
		989	`}`
		990
		991	`return new JsonModel([`
		992	`'success' => false,`
		993	`'data' => $messages`
		994	`]);`
		995	`}`
		996	`} else if ($request->isGet()) {`
		997
		998	`if (empty($_SESSION['aes'])) {`
		999	`$_SESSION['aes'] = Functions::generatePassword(16);`
		1000	`}`
		1001
		1002	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		1003	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		1004	`} else {`
		1005	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		1006	`}`
		1007
		1008	`return new JsonModel([`
		1009	`'site_key' => $site_key,`
		1010	`'aes' => $_SESSION['aes'],`
		1011	`'defaultNetwork' => $currentNetwork->default,`
		1012	`]);`
		1013	`}`
		1014
		1015	`return new JsonModel([`
		1016	`'success' => false,`
		1017	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1018	`]);`
		1019	`}`
		1020
		1021	`public function signupAction()`
		1022	`{`
		1023	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		1024	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		1025
		1026
		1027	`$request = $this->getRequest();`
		1028	`if ($request->isPost()) {`
		1029	`$dataPost = $request->getPost()->toArray();`
		1030
		1031	`if (empty($_SESSION['aes'])) {`
		1032	`return new JsonModel([`
		1033	`'success' => false,`
		1034	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		1035	`]);`
		1036	`}`
		1037
		1038	`if (!empty($dataPost['email'])) {`
		1039	`$dataPost['email'] = CryptoJsAes::decrypt($dataPost['email'], $_SESSION['aes']);`
		1040	`}`
		1041
		1042	`if (!empty($dataPost['password'])) {`
		1043	`$dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);`
		1044	`}`
		1045
		1046	`if (!empty($dataPost['confirmation'])) {`
		1047	`$dataPost['confirmation'] = CryptoJsAes::decrypt($dataPost['confirmation'], $_SESSION['aes']);`
		1048	`}`
		1049
		1050	`if (empty($dataPost['is_adult'])) {`
		1051	`$dataPost['is_adult'] = User::IS_ADULT_NO;`
		1052	`} else {`
		1053	`$dataPost['is_adult'] = $dataPost['is_adult'] == User::IS_ADULT_YES ? User::IS_ADULT_YES : User::IS_ADULT_NO;`
		1054	`}`
		1055
		1056
		1057
		1058	`$form = new SignupForm($this->config);`
		1059	`$form->setData($dataPost);`
		1060
		1061	`if ($form->isValid()) {`
		1062	`$dataPost = (array) $form->getData();`
		1063
		1064	`$email = $dataPost['email'];`
		1065
		1066	`$userMapper = UserMapper::getInstance($this->adapter);`
		1067	`$user = $userMapper->fetchOneByEmailAndNetworkId($email, $currentNetwork->id);`
		1068	`if ($user) {`
		1069	`$this->logger->err('Registro ' . $email . '- Email ya existe ', ['ip' => Functions::getUserIP()]);`
		1070
		1071
		1072
		1073	`return new JsonModel([`
		1074	`'success' => false,`
		1075	`'data' => 'ERROR_EMAIL_IS_REGISTERED'`
		1076	`]);`
		1077	`} else {`
		1078
		1079	`$user_share_invitation = $this->cache->getItem('user_share_invitation');`
		1080
		1081
		1082	`if ($user_share_invitation) {`
		1083	`$userRedirect = $userMapper->fetchOneByUuid($user_share_invitation);`
		1084	`if ($userRedirect && $userRedirect->status == User::STATUS_ACTIVE) {`
		1085	`$password_hash = password_hash($dataPost['password'], PASSWORD_DEFAULT);`
		1086
		1087	`$user = new User();`
		1088	`$user->network_id = $currentNetwork->id;`
		1089	`$user->email = $dataPost['email'];`
		1090	`$user->first_name = $dataPost['first_name'];`
		1091	`$user->last_name = $dataPost['last_name'];`
		1092	`$user->usertype_id = UserType::USER;`
		1093	`$user->password = $password_hash;`
		1094	`$user->password_updated_on = date('Y-m-d H:i:s');`
		1095	`$user->status = User::STATUS_ACTIVE;`
		1096	`$user->blocked = User::BLOCKED_NO;`
		1097	`$user->email_verified = User::EMAIL_VERIFIED_YES;`
		1098	`$user->login_attempt = 0;`
		1099	`$user->is_adult = $dataPost['is_adult'];`
		1100	`$user->request_access = User::REQUEST_ACCESS_APPROVED;`
		1101
		1102
		1103
		1104
		1105
		1106	`if ($userMapper->insert($user)) {`
		1107
		1108	`$userPassword = new UserPassword();`
		1109	`$userPassword->user_id = $user->id;`
		1110	`$userPassword->password = $password_hash;`
		1111
		1112	`$userPasswordMapper = UserPasswordMapper::getInstance($this->adapter);`
		1113	`$userPasswordMapper->insert($userPassword);`
		1114
		1115
		1116	`$connectionMapper = ConnectionMapper::getInstance($this->adapter);`
		1117	`$connection = $connectionMapper->fetchOneByUserId1AndUserId2($user->id, $userRedirect->id);`
		1118
		1119	`if ($connection) {`
		1120
		1121	`if ($connection->status != Connection::STATUS_ACCEPTED) {`
		1122	`$connectionMapper->approve($connection);`
		1123	`}`
		1124	`} else {`
		1125	`$connection = new Connection();`
		1126	`$connection->request_from = $user->id;`
		1127	`$connection->request_to = $userRedirect->id;`
		1128	`$connection->status = Connection::STATUS_ACCEPTED;`
		1129
		1130	`$connectionMapper->insert($connection);`
		1131	`}`
		1132
		1133
		1134	`$this->cache->removeItem('user_share_invitation');`
		1135
		1136
		1137
		1138	`$data = [`
		1139	`'success' => true,`
		1140	`'data' => $this->url()->fromRoute('home'),`
		1141	`];`
		1142
		1143
		1144	`$this->logger->info('Registro con Exito ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1145
		1146	`return new JsonModel($data);`
		1147	`}`
		1148	`}`
		1149	`}`
		1150
		1151
		1152
		1153
		1154	`$timestamp = time();`
		1155	`$activation_key = sha1($dataPost['email'] . uniqid() . $timestamp);`
		1156
		1157	`$password_hash = password_hash($dataPost['password'], PASSWORD_DEFAULT);`
		1158
		1159	`$user = new User();`
		1160	`$user->network_id = $currentNetwork->id;`
		1161	`$user->email = $dataPost['email'];`
		1162	`$user->first_name = $dataPost['first_name'];`
		1163	`$user->last_name = $dataPost['last_name'];`
		1164	`$user->usertype_id = UserType::USER;`
		1165	`$user->password = $password_hash;`
		1166	`$user->password_updated_on = date('Y-m-d H:i:s');`
		1167	`$user->activation_key = $activation_key;`
		1168	`$user->status = User::STATUS_INACTIVE;`
		1169	`$user->blocked = User::BLOCKED_NO;`
		1170	`$user->email_verified = User::EMAIL_VERIFIED_NO;`
		1171	`$user->login_attempt = 0;`
		1172
		1173	`if ($currentNetwork->default == Network::DEFAULT_YES) {`
		1174	`$user->request_access = User::REQUEST_ACCESS_APPROVED;`
		1175	`} else {`
		1176	`$user->request_access = User::REQUEST_ACCESS_PENDING;`
		1177	`}`
		1178
		1179
		1180
		1181	`if ($userMapper->insert($user)) {`
		1182
		1183	`$userPassword = new UserPassword();`
		1184	`$userPassword->user_id = $user->id;`
		1185	`$userPassword->password = $password_hash;`
		1186
		1187	`$userPasswordMapper = UserPasswordMapper::getInstance($this->adapter);`
		1188	`$userPasswordMapper->insert($userPassword);`
		1189
		1190	`$emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);`
		1191	`$emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_USER_REGISTER, $currentNetwork->id);`
		1192	`if ($emailTemplate) {`
		1193	`$arrayCont = [`
		1194	`'firstname' => $user->first_name,`
		1195	`'lastname' => $user->last_name,`
		1196	`'other_user_firstname' => '',`
		1197	`'other_user_lastname' => '',`
		1198	`'company_name' => '',`
		1199	`'group_name' => '',`
		1200	`'content' => '',`
		1201	`'code' => '',`
		1202	`'link' => $this->url()->fromRoute('activate-account', ['code' => $user->activation_key], ['force_canonical' => true])`
		1203	`];`
		1204
		1205	`$email = new QueueEmail($this->adapter);`
		1206	`$email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name));`
		1207	`}`
		1208	`$flashMessenger = $this->plugin('FlashMessenger');`
		1209	`$flashMessenger->addSuccessMessage('LABEL_REGISTRATION_DONE');`
		1210
		1211	`$this->logger->info('Registro con Exito ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1212
		1213	`return new JsonModel([`
		1214	`'success' => true,`
		1215	`]);`
		1216	`} else {`
		1217	`$this->logger->err('Registro ' . $email . '- Ha ocurrido un error ', ['ip' => Functions::getUserIP()]);`
		1218
		1219	`return new JsonModel([`
		1220	`'success' => false,`
		1221	`'data' => 'ERROR_THERE_WAS_AN_ERROR'`
		1222	`]);`
		1223	`}`
		1224	`}`
		1225	`} else {`
		1226
		1227	`$form_messages = $form->getMessages('captcha');`
		1228	`if (!empty($form_messages)) {`
		1229	`return new JsonModel([`
		1230	`'success' => false,`
		1231	`'data' => 'ERROR_RECAPTCHA_EMPTY'`
		1232	`]);`
		1233	`}`
		1234
		1235	`$messages = [];`
		1236
		1237	`$form_messages = (array) $form->getMessages();`
		1238	`foreach ($form_messages as $fieldname => $field_messages) {`
		1239	`$messages[$fieldname] = array_values($field_messages);`
		1240	`}`
		1241
		1242	`return new JsonModel([`
		1243	`'success' => false,`
		1244	`'data' => $messages`
		1245	`]);`
		1246	`}`
		1247	`} else if ($request->isGet()) {`
		1248
		1249	`if (empty($_SESSION['aes'])) {`
		1250	`$_SESSION['aes'] = Functions::generatePassword(16);`
		1251	`}`
		1252
		1253	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		1254	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		1255	`} else {`
		1256	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		1257	`}`
		1258
		1259	`$email = isset($_COOKIE['email']) ? $_COOKIE['email'] : '';`
		1260
		1261	`return new JsonModel([`
		1262	`'site_key' => $site_key,`
		1263	`'aes' => $_SESSION['aes'],`
		1264	`'defaultNetwork' => $currentNetwork->default,`
		1265	`]);`
		1266	`}`
		1267
		1268	`return new JsonModel([`
		1269	`'success' => false,`
		1270	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1271	`]);`
		1272	`}`
		1273
		1274	`public function activateAccountAction()`
		1275	`{`
		1276
		1277	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		1278	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		1279
		1280
		1281
		1282	`$request = $this->getRequest();`
		1283	`if ($request->isGet()) {`
		1284	`$code = Functions::sanitizeFilterString($this->params()->fromRoute('code'));`
		1285	`$userMapper = UserMapper::getInstance($this->adapter);`
		1286	`$user = $userMapper->fetchOneByActivationKeyAndNetworkId($code, $currentNetwork->id);`
		1287
		1288	`$flashMessenger = $this->plugin('FlashMessenger');`
		1289
		1290	`if ($user) {`
		1291	`if (User::EMAIL_VERIFIED_YES == $user->email_verified) {`
		1292
		1293	`$this->logger->err('Verificación email - El código ya habia sido verificao ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1294
		1295	`$flashMessenger->addErrorMessage('ERROR_EMAIL_HAS_BEEN_PREVIOUSLY_VERIFIED');`
		1296	`} else {`
		1297
		1298	`if ($userMapper->activateAccount((int) $user->id)) {`
		1299
		1300	`$this->logger->info('Verificación email realizada ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1301
		1302
		1303
		1304	`$user_share_invitation = $this->cache->getItem('user_share_invitation');`
		1305
		1306	`if ($user_share_invitation) {`
		1307	`$userRedirect = $userMapper->fetchOneByUuid($user_share_invitation);`
		1308	`if ($userRedirect && $userRedirect->status == User::STATUS_ACTIVE && $user->id != $userRedirect->id) {`
		1309	`$connectionMapper = ConnectionMapper::getInstance($this->adapter);`
		1310	`$connection = $connectionMapper->fetchOneByUserId1AndUserId2($user->id, $userRedirect->id);`
		1311
		1312	`if ($connection) {`
		1313
		1314	`if ($connection->status != Connection::STATUS_ACCEPTED) {`
		1315	`$connectionMapper->approve($connection);`
		1316	`}`
		1317	`} else {`
		1318	`$connection = new Connection();`
		1319	`$connection->request_from = $user->id;`
		1320	`$connection->request_to = $userRedirect->id;`
		1321	`$connection->status = Connection::STATUS_ACCEPTED;`
		1322
		1323	`$connectionMapper->insert($connection);`
		1324	`}`
		1325	`}`
		1326	`}`
		1327
		1328
		1329
		1330	`$this->cache->removeItem('user_share_invitation');`
		1331
		1332
		1333	`if ($currentNetwork->default == Network::DEFAULT_YES) {`
		1334	`$flashMessenger->addSuccessMessage('LABEL_YOUR_EMAIL_HAS_BEEN_VERIFIED');`
		1335	`} else {`
		1336
		1337	`$emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);`
		1338	`$emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_REQUEST_ACCESS_PENDING, $currentNetwork->id);`
		1339
		1340	`if ($emailTemplate) {`
		1341	`$arrayCont = [`
		1342	`'firstname' => $user->first_name,`
		1343	`'lastname' => $user->last_name,`
		1344	`'other_user_firstname' => '',`
		1345	`'other_user_lastname' => '',`
		1346	`'company_name' => '',`
		1347	`'group_name' => '',`
		1348	`'content' => '',`
		1349	`'code' => '',`
		1350	`'link' => '',`
		1351	`];`
		1352
		1353	`$email = new QueueEmail($this->adapter);`
		1354	`$email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name));`
		1355	`}`
		1356
		1357
		1358	`$flashMessenger->addSuccessMessage('LABEL_YOUR_EMAIL_HAS_BEEN_VERIFIED_WE_ARE_VERIFYING_YOUR_INFORMATION');`
		1359	`}`
		1360	`} else {`
		1361	`$this->logger->err('Verificación email - Ha ocurrido un error ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1362
		1363	`$flashMessenger->addErrorMessage('ERROR_THERE_WAS_AN_ERROR');`
		1364	`}`
		1365	`}`
		1366	`} else {`
		1367	`$this->logger->err('Verificación email - El código no existe ', ['ip' => Functions::getUserIP()]);`
		1368
		1369	`$flashMessenger->addErrorMessage('ERROR_ACTIVATION_CODE_IS_NOT_VALID');`
		1370	`}`
		1371
		1372	`return $this->redirect()->toRoute('home');`
		1373	`} else {`
		1374	`$response = [`
		1375	`'success' => false,`
		1376	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1377	`];`
		1378	`}`
		1379
		1380	`return new JsonModel($response);`
		1381	`}`
		1382
		1383
		1384
		1385	`public function onroomAction()`
		1386	`{`
		1387	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		1388	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		1389
		1390
		1391
		1392	`$request = $this->getRequest();`
		1393
		1394	`if ($request->isPost()) {`
		1395
		1396	`$dataPost = $request->getPost()->toArray();`
		1397
		1398
		1399	`$form = new MoodleForm();`
		1400	`$form->setData($dataPost);`
		1401	`if ($form->isValid()) {`
		1402
		1403	`$dataPost = (array) $form->getData();`
		1404	`$username = $dataPost['username'];`
		1405	`$password = $dataPost['password'];`
		1406	`$timestamp = $dataPost['timestamp'];`
		1407	`$rand = $dataPost['rand'];`
		1408	`$data = $dataPost['data'];`
		1409
		1410	`$config_username = $this->config['leaderslinked.moodle.username'];`
		1411	`$config_password = $this->config['leaderslinked.moodle.password'];`
		1412	`$config_rsa_n = $this->config['leaderslinked.moodle.rsa_n'];`
		1413	`$config_rsa_d = $this->config['leaderslinked.moodle.rsa_d'];`
		1414	`$config_rsa_e = $this->config['leaderslinked.moodle.rsa_e'];`
		1415
		1416
		1417
		1418
		1419	`if (empty($username) \|\| empty($password) \|\| empty($timestamp) \|\| empty($rand) \|\| !is_integer($rand)) {`
		1420	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY1']);`
		1421	`exit;`
		1422	`}`
		1423
		1424	`if ($username != $config_username) {`
		1425	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY2']);`
		1426	`exit;`
		1427	`}`
		1428
		1429	`$dt = \DateTime::createFromFormat('Y-m-d\TH:i:s', $timestamp);`
		1430	`if (!$dt) {`
		1431	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY3']);`
		1432	`exit;`
		1433	`}`
		1434
		1435	`$t0 = $dt->getTimestamp();`
		1436	`$t1 = strtotime('-5 minutes');`
		1437	`$t2 = strtotime('+5 minutes');`
		1438
		1439	`if ($t0 < $t1 \|\| $t0 > $t2) {`
		1440	`//echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY4']) ;`
		1441	`//exit;`
		1442	`}`
		1443
		1444	`if (!password_verify($username . '-' . $config_password . '-' . $rand . '-' . $timestamp, $password)) {`
		1445	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY5']);`
		1446	`exit;`
		1447	`}`
		1448
		1449	`if (empty($data)) {`
		1450	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS1']);`
		1451	`exit;`
		1452	`}`
		1453
		1454	`$data = base64_decode($data);`
		1455	`if (empty($data)) {`
		1456	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS2']);`
		1457	`exit;`
		1458	`}`
		1459
		1460
		1461	`try {`
		1462	`$rsa = Rsa::getInstance();`
		1463	`$data = $rsa->decrypt($data, $config_rsa_d, $config_rsa_n);`
		1464	`} catch (\Throwable $e) {`
		1465	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS3']);`
		1466	`exit;`
		1467	`}`
		1468
		1469	`$data = (array) json_decode($data);`
		1470	`if (empty($data)) {`
		1471	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS4']);`
		1472	`exit;`
		1473	`}`
		1474
		1475	`$email = isset($data['email']) ? Functions::sanitizeFilterString($data['email']) : '';`
		1476	`$first_name = isset($data['first_name']) ? Functions::sanitizeFilterString($data['first_name']) : '';`
		1477	`$last_name = isset($data['last_name']) ? Functions::sanitizeFilterString($data['last_name']) : '';`
		1478
		1479	`if (!filter_var($email, FILTER_VALIDATE_EMAIL) \|\| empty($first_name) \|\| empty($last_name)) {`
		1480	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS5']);`
		1481	`exit;`
		1482	`}`
		1483
		1484	`$userMapper = UserMapper::getInstance($this->adapter);`
		1485	`$user = $userMapper->fetchOneByEmail($email);`
		1486	`if (!$user) {`
		1487
		1488
		1489	`$user = new User();`
		1490	`$user->network_id = $currentNetwork->id;`
		1491	`$user->blocked = User::BLOCKED_NO;`
		1492	`$user->email = $email;`
		1493	`$user->email_verified = User::EMAIL_VERIFIED_YES;`
		1494	`$user->first_name = $first_name;`
		1495	`$user->last_name = $last_name;`
		1496	`$user->login_attempt = 0;`
		1497	`$user->password = '-NO-PASSWORD-';`
		1498	`$user->usertype_id = UserType::USER;`
		1499	`$user->status = User::STATUS_ACTIVE;`
		1500	`$user->show_in_search = User::SHOW_IN_SEARCH_YES;`
		1501
		1502	`if ($userMapper->insert($user)) {`
		1503	`echo json_encode(['success' => false, 'data' => $userMapper->getError()]);`
		1504	`exit;`
		1505	`}`
		1506
		1507
		1508
		1509
		1510	`$filename = trim(isset($data['avatar_filename']) ? filter_var($data['avatar_filename'], FILTER_SANITIZE_EMAIL) : '');`
		1511	`$content = isset($data['avatar_content']) ? Functions::sanitizeFilterString($data['avatar_content']) : '';`
		1512
		1513	`if ($filename && $content) {`
		1514	`$source = sys_get_temp_dir() . DIRECTORY_SEPARATOR . $filename;`
		1515	`try {`
		1516	`file_put_contents($source, base64_decode($content));`
		1517	`if (file_exists($source)) {`
		1518	`$target_path = $this->config['leaderslinked.fullpath.user'] . $user->uuid;`
		1519	`list($target_width, $target_height) = explode('x', $this->config['leaderslinked.image_sizes.user_size']);`
		1520
		1521	`$target_filename = 'user-' . uniqid() . '.png';`
		1522	`$crop_to_dimensions = true;`
		1523
		1524	`if (!Image::uploadImage($source, $target_path, $target_filename, $target_width, $target_height, $crop_to_dimensions)) {`
		1525	`return new JsonModel([`
		1526	`'success' => false,`
		1527	`'data' => 'ERROR_THERE_WAS_AN_ERROR'`
		1528	`]);`
		1529	`}`
		1530
		1531	`$user->image = $target_filename;`
		1532	`$userMapper->updateImage($user);`
		1533	`}`
		1534	`} catch (\Throwable $e) {`
		1535	`} finally {`
		1536	`if (file_exists($source)) {`
		1537	`unlink($source);`
		1538	`}`
		1539	`}`
		1540	`}`
		1541	`}`
		1542
		1543	`$auth = new AuthEmailAdapter($this->adapter);`
		1544	`$auth->setData($email);`
		1545
		1546	`$result = $auth->authenticate();`
		1547	`if ($result->getCode() == AuthResult::SUCCESS) {`
		1548	`return $this->redirect()->toRoute('dashboard');`
		1549	`} else {`
		1550	`$message = $result->getMessages()[0];`
		1551	`if (!in_array($message, [`
		1552	`'ERROR_USER_NOT_FOUND', 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED', 'ERROR_USER_IS_BLOCKED',`
		1553	`'ERROR_USER_IS_INACTIVE', 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED', 'ERROR_ENTERED_PASS_INCORRECT_2',`
		1554	`'ERROR_ENTERED_PASS_INCORRECT_1'`
		1555	`])) {`
		1556	`}`
		1557
		1558	`switch ($message) {`
		1559	`case 'ERROR_USER_NOT_FOUND':`
		1560	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no existe', ['ip' => Functions::getUserIP()]);`
		1561	`break;`
		1562
		1563	`case 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED':`
		1564	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no verificado', ['ip' => Functions::getUserIP()]);`
		1565	`break;`
		1566
		1567	`case 'ERROR_USER_IS_BLOCKED':`
		1568	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		1569	`break;`
		1570
		1571	`case 'ERROR_USER_IS_INACTIVE':`
		1572	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario inactivo', ['ip' => Functions::getUserIP()]);`
		1573	`break;`
		1574
		1575
		1576	`case 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED':`
		1577	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 3er Intento Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		1578	`break;`
		1579
		1580
		1581	`case 'ERROR_ENTERED_PASS_INCORRECT_2':`
		1582	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 1er Intento', ['ip' => Functions::getUserIP()]);`
		1583	`break;`
		1584
		1585
		1586	`case 'ERROR_ENTERED_PASS_INCORRECT_1':`
		1587	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 2do Intento', ['ip' => Functions::getUserIP()]);`
		1588	`break;`
		1589
		1590
		1591	`default:`
		1592	`$message = 'ERROR_UNKNOWN';`
		1593	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Error desconocido', ['ip' => Functions::getUserIP()]);`
		1594	`break;`
		1595	`}`
		1596
		1597
		1598
		1599
		1600	`return new JsonModel([`
		1601	`'success' => false,`
		1602	`'data' => $message`
		1603	`]);`
		1604	`}`
		1605	`} else {`
		1606	`$messages = [];`
		1607
		1608
		1609
		1610	`$form_messages = (array) $form->getMessages();`
		1611	`foreach ($form_messages as $fieldname => $field_messages) {`
		1612
		1613	`$messages[$fieldname] = array_values($field_messages);`
		1614	`}`
		1615
		1616	`return new JsonModel([`
		1617	`'success' => false,`
		1618	`'data' => $messages`
		1619	`]);`
		1620	`}`
		1621	`} else {`
		1622	`$data = [`
		1623	`'success' => false,`
		1624	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1625	`];`
		1626
		1627	`return new JsonModel($data);`
		1628	`}`
		1629
		1630	`return new JsonModel($data);`
		1631	`}`
		1632
		1633	`public function csrfAction()`
		1634	`{`
		1635	`$request = $this->getRequest();`
		1636	`if ($request->isGet()) {`
		1637
		1638	`$token = md5(uniqid('CSFR-' . mt_rand(), true));`
		1639	`$_SESSION['token'] = $token;`
		1640
		1641
		1642	`return new JsonModel([`
		1643	`'success' => true,`
		1644	`'data' => $token`
		1645	`]);`
		1646	`} else {`
		1647	`return new JsonModel([`
		1648	`'success' => false,`
		1649	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1650	`]);`
		1651	`}`
		1652	`}`
		1653
		1654	`public function impersonateAction()`
		1655	`{`
		1656	`$request = $this->getRequest();`
		1657	`if ($request->isGet()) {`
		1658	`$user_uuid = Functions::sanitizeFilterString($this->params()->fromQuery('user_uuid'));`
		1659	`$rand = filter_var($this->params()->fromQuery('rand'), FILTER_SANITIZE_NUMBER_INT);`
		1660	`$timestamp = filter_var($this->params()->fromQuery('time'), FILTER_SANITIZE_NUMBER_INT);`
		1661	`$password = Functions::sanitizeFilterString($this->params()->fromQuery('password'));`
		1662
		1663
		1664	`if (!$user_uuid \|\| !$rand \|\| !$timestamp \|\| !$password) {`
		1665	`throw new \Exception('ERROR_PARAMETERS_ARE_INVALID');`
		1666	`}`
		1667
		1668
		1669	`$currentUserPlugin = $this->plugin('currentUserPlugin');`
		1670	`$currentUserPlugin->clearIdentity();`
		1671
		1672
		1673	`$authAdapter = new AuthImpersonateAdapter($this->adapter, $this->config);`
		1674	`$authAdapter->setDataAdmin($user_uuid, $password, $timestamp, $rand);`
		1675
		1676	`$authService = new AuthenticationService();`
		1677	`$result = $authService->authenticate($authAdapter);`
		1678
		1679
		1680	`if ($result->getCode() == AuthResult::SUCCESS) {`
		1681	`return $this->redirect()->toRoute('dashboard');`
		1682	`} else {`
		1683	`throw new \Exception($result->getMessages()[0]);`
		1684	`}`
		1685	`}`
		1686
		1687	`return new JsonModel([`
		1688	`'success' => false,`
		1689	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1690	`]);`
		1691	`}`
		1692	`}`

Proyectos de Subversion LeadersLinked - Services

(root)/module/LeadersLinked/src/Controller/AuthController.php – Rev 28