WebSVN – LeadersLinked - Services – Autoría – /module/LeadersLinked/src/Controller/AuthController.php

Rev	Autor	Línea Nro.	Línea
1	efrain	1	`<?php`
		2
		3	`declare(strict_types=1);`
		4
		5	`namespace LeadersLinked\Controller;`
		6
		7	`use Nullix\CryptoJsAes\CryptoJsAes;`
		8	`use GeoIp2\Database\Reader as GeoIp2Reader;`
		9
		10	`use Laminas\Authentication\AuthenticationService;`
		11	`use Laminas\Authentication\Result as AuthResult;`
		12	`use Laminas\Mvc\Controller\AbstractActionController;`
		13	`use Laminas\View\Model\JsonModel;`
		14
		15	`use LeadersLinked\Form\Auth\SigninForm;`
		16	`use LeadersLinked\Form\Auth\ResetPasswordForm;`
		17	`use LeadersLinked\Form\Auth\ForgotPasswordForm;`
		18	`use LeadersLinked\Form\Auth\SignupForm;`
		19
		20	`use LeadersLinked\Mapper\ConnectionMapper;`
		21	`use LeadersLinked\Mapper\EmailTemplateMapper;`
		22	`use LeadersLinked\Mapper\NetworkMapper;`
		23	`use LeadersLinked\Mapper\UserMapper;`
		24
		25	`use LeadersLinked\Model\User;`
		26	`use LeadersLinked\Model\UserType;`
		27	`use LeadersLinked\Library\QueueEmail;`
		28	`use LeadersLinked\Library\Functions;`
		29	`use LeadersLinked\Model\EmailTemplate;`
		30	`use LeadersLinked\Mapper\UserPasswordMapper;`
		31	`use LeadersLinked\Model\UserBrowser;`
		32	`use LeadersLinked\Mapper\UserBrowserMapper;`
		33	`use LeadersLinked\Mapper\UserIpMapper;`
		34	`use LeadersLinked\Model\UserIp;`
		35	`use LeadersLinked\Form\Auth\MoodleForm;`
		36	`use LeadersLinked\Library\Rsa;`
		37	`use LeadersLinked\Library\Image;`
		38
		39	`use LeadersLinked\Authentication\AuthAdapter;`
		40	`use LeadersLinked\Authentication\AuthEmailAdapter;`
		41
		42	`use LeadersLinked\Model\UserPassword;`
		43
		44	`use LeadersLinked\Model\Connection;`
		45	`use LeadersLinked\Authentication\AuthImpersonateAdapter;`
		46	`use LeadersLinked\Model\Network;`
23	efrain	47	`use LeadersLinked\Model\JwtToken;`
		48	`use LeadersLinked\Mapper\JwtTokenMapper;`
		49	`use Firebase\JWT\JWT;`
24	efrain	50	`use Firebase\JWT\Key;`
1	efrain	51
		52
		53
		54	`class AuthController extends AbstractActionController`
		55	`{`
		56	`/**`
		57	`*`
		58	`* @var \Laminas\Db\Adapter\AdapterInterface`
		59	`*/`
		60	`private $adapter;`
		61
		62	`/**`
		63	`*`
		64	`* @var \LeadersLinked\Cache\CacheInterface`
		65	`*/`
		66	`private $cache;`
		67
		68
		69	`/**`
		70	`*`
		71	`* @var \Laminas\Log\LoggerInterface`
		72	`*/`
		73	`private $logger;`
		74
		75	`/**`
		76	`*`
		77	`* @var array`
		78	`*/`
		79	`private $config;`
		80
		81
		82	`/**`
		83	`*`
		84	`* @var \Laminas\Mvc\I18n\Translator`
		85	`*/`
		86	`private $translator;`
		87
		88
		89	`/**`
		90	`*`
		91	`* @param \Laminas\Db\Adapter\AdapterInterface $adapter`
		92	`* @param \LeadersLinked\Cache\CacheInterface $cache`
		93	`* @param \Laminas\Log\LoggerInterface LoggerInterface $logger`
		94	`* @param array $config`
		95	`* @param \Laminas\Mvc\I18n\Translator $translator`
		96	`*/`
		97	`public function __construct($adapter, $cache, $logger, $config, $translator)`
		98	`{`
		99	`$this->adapter = $adapter;`
		100	`$this->cache = $cache;`
		101	`$this->logger = $logger;`
		102	`$this->config = $config;`
		103	`$this->translator = $translator;`
		104	`}`
		105
		106	`public function signinAction()`
		107	`{`
		108	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		109	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		110
		111	`$request = $this->getRequest();`
		112
		113	`if ($request->isPost()) {`
		114	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		115	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
24	efrain	116
		117	`$jwtToken = null;`
		118	`$headers = getallheaders();`
		119	`if(isset($headers['authorization'])) {`
		120
		121	`$token = trim($headers['authorization']);`
		122	`if (substr($token, 0, 6 ) == 'Bearer') {`
		123
		124	`$token = trim(substr($token, 7));`
		125
		126	`if(!empty($this->config['leaderslinked.jwt.key'])) {`
		127	`$key = $this->config['leaderslinked.jwt.key'];`
		128
		129
		130	`try {`
		131	`$payload = JWT::decode($token, new Key($key, 'HS256'));`
		132
		133
		134	`if(empty($payload->iss) \|\| $payload->iss != $_SERVER['HTTP_HOST']) {`
		135	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong server', 'fatal' => true]);`
		136	`}`
		137
		138	`$uuid = empty($payload->uuid) ? '' : $payload->uuid;`
		139	`$jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);`
		140	`$jwtToken = $jwtTokenMapper->fetchOneByUuid($uuid);`
		141	`if(!$jwtToken) {`
		142	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Expired', 'fatal' => true]);`
		143	`}`
1	efrain	144
24	efrain	145	`} catch(\Exception $e) {`
		146	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong key', 'fatal' => true]);`
		147	`}`
		148	`} else {`
		149	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - SecreteKey required', 'fatal' => true]);`
		150	`}`
		151	`} else {`
		152	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Bearer required', 'fatal' => true]);`
		153	`}`
		154	`} else {`
		155	`return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Required', 'fatal' => true]);`
		156	`}`
1	efrain	157
24	efrain	158
1	efrain	159	`$form = new SigninForm($this->config);`
		160	`$dataPost = $request->getPost()->toArray();`
		161
		162	`if (empty($_SESSION['aes'])) {`
		163	`return new JsonModel([`
		164	`'success' => false,`
		165	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		166	`]);`
		167	`}`
28	efrain	168
1	efrain	169	`if (!empty($dataPost['email'])) {`
		170	`$dataPost['email'] = CryptoJsAes::decrypt($dataPost['email'], $_SESSION['aes']);`
		171	`}`
		172
		173
		174	`if (!empty($dataPost['password'])) {`
		175	`$dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);`
18	efrain	176	`}`
1	efrain	177
		178	`$form->setData($dataPost);`
		179
		180	`if ($form->isValid()) {`
24	efrain	181
1	efrain	182	`$dataPost = (array) $form->getData();`
		183
		184	`$email = $dataPost['email'];`
		185	`$password = $dataPost['password'];`
		186	`$remember = $dataPost['remember'];`
		187
		188	`$authAdapter = new AuthAdapter($this->adapter, $this->logger);`
		189	`$authAdapter->setData($email, $password, $currentNetwork->id);`
		190	`$authService = new AuthenticationService();`
		191
		192	`$result = $authService->authenticate($authAdapter);`
		193
		194	`if ($result->getCode() == AuthResult::SUCCESS) {`
		195
		196
		197	`$userMapper = UserMapper::getInstance($this->adapter);`
		198	`$user = $userMapper->fetchOneByEmail($email);`
		199
		200	`$navigator = get_browser(null, true);`
		201	`$device_type = isset($navigator['device_type']) ? $navigator['device_type'] : '';`
		202	`$platform = isset($navigator['platform']) ? $navigator['platform'] : '';`
		203	`$browser = isset($navigator['browser']) ? $navigator['browser'] : '';`
		204
		205
		206	`$istablet = isset($navigator['istablet']) ? intval($navigator['istablet']) : 0;`
		207	`$ismobiledevice = isset($navigator['ismobiledevice']) ? intval($navigator['ismobiledevice']) : 0;`
		208	`$version = isset($navigator['version']) ? $navigator['version'] : '';`
		209
		210
		211	`$userBrowserMapper = UserBrowserMapper::getInstance($this->adapter);`
		212	`$userBrowser = $userBrowserMapper->fetch($user->id, $device_type, $platform, $browser);`
		213	`if ($userBrowser) {`
		214	`$userBrowserMapper->update($userBrowser);`
		215	`} else {`
		216	`$userBrowser = new UserBrowser();`
		217	`$userBrowser->user_id = $user->id;`
		218	`$userBrowser->browser = $browser;`
		219	`$userBrowser->platform = $platform;`
		220	`$userBrowser->device_type = $device_type;`
		221	`$userBrowser->is_tablet = $istablet;`
		222	`$userBrowser->is_mobile_device = $ismobiledevice;`
		223	`$userBrowser->version = $version;`
		224
		225	`$userBrowserMapper->insert($userBrowser);`
		226	`}`
		227	`//`
		228
		229	`$ip = Functions::getUserIP();`
		230	`$ip = $ip == '127.0.0.1' ? '148.240.211.148' : $ip;`
		231
		232	`$userIpMapper = UserIpMapper::getInstance($this->adapter);`
		233	`$userIp = $userIpMapper->fetch($user->id, $ip);`
		234	`if (empty($userIp)) {`
		235
		236	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		237	`$filename = $this->config['leaderslinked.geoip2.production_database'];`
		238	`} else {`
		239	`$filename = $this->config['leaderslinked.geoip2.sandbox_database'];`
		240	`}`
		241
		242	`$reader = new GeoIp2Reader($filename); //GeoIP2-City.mmdb');`
		243	`$record = $reader->city($ip);`
		244	`if ($record) {`
		245	`$userIp = new UserIp();`
		246	`$userIp->user_id = $user->id;`
		247	`$userIp->city = !empty($record->city->name) ? Functions::utf8_decode($record->city->name) : '';`
		248	`$userIp->state_code = !empty($record->mostSpecificSubdivision->isoCode) ? Functions::utf8_decode($record->mostSpecificSubdivision->isoCode) : '';`
		249	`$userIp->state_name = !empty($record->mostSpecificSubdivision->name) ? Functions::utf8_decode($record->mostSpecificSubdivision->name) : '';`
		250	`$userIp->country_code = !empty($record->country->isoCode) ? Functions::utf8_decode($record->country->isoCode) : '';`
		251	`$userIp->country_name = !empty($record->country->name) ? Functions::utf8_decode($record->country->name) : '';`
		252	`$userIp->ip = $ip;`
		253	`$userIp->latitude = !empty($record->location->latitude) ? $record->location->latitude : 0;`
		254	`$userIp->longitude = !empty($record->location->longitude) ? $record->location->longitude : 0;`
		255	`$userIp->postal_code = !empty($record->postal->code) ? $record->postal->code : '';`
		256
		257	`$userIpMapper->insert($userIp);`
		258	`}`
		259	`} else {`
		260	`$userIpMapper->update($userIp);`
		261	`}`
		262
24	efrain	263	`/*`
1	efrain	264	`if ($remember) {`
		265	`$expired = time() + 365 * 24 * 60 * 60;`
		266
		267	`$cookieEmail = new SetCookie('email', $email, $expired);`
		268	`} else {`
		269	`$expired = time() - 7200;`
		270	`$cookieEmail = new SetCookie('email', '', $expired);`
		271	`}`
		272
		273
		274	`$response = $this->getResponse();`
		275	`$response->getHeaders()->addHeader($cookieEmail);`
24	efrain	276	`*/`
		277
		278
1	efrain	279
		280
		281
		282	`$this->logger->info('Ingreso a LeadersLiked', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		283
		284	`$user_share_invitation = $this->cache->getItem('user_share_invitation');`
		285
		286	`if ($user_share_invitation) {`
		287	`$userRedirect = $userMapper->fetchOneByUuid($user_share_invitation);`
		288	`if ($userRedirect && $userRedirect->status == User::STATUS_ACTIVE && $user->id != $userRedirect->id) {`
		289	`$connectionMapper = ConnectionMapper::getInstance($this->adapter);`
		290	`$connection = $connectionMapper->fetchOneByUserId1AndUserId2($user->id, $userRedirect->id);`
		291
		292	`if ($connection) {`
		293
		294	`if ($connection->status != Connection::STATUS_ACCEPTED) {`
		295	`$connectionMapper->approve($connection);`
		296	`}`
		297	`} else {`
		298	`$connection = new Connection();`
		299	`$connection->request_from = $user->id;`
		300	`$connection->request_to = $userRedirect->id;`
		301	`$connection->status = Connection::STATUS_ACCEPTED;`
		302
		303	`$connectionMapper->insert($connection);`
		304	`}`
		305	`}`
		306	`}`
		307
		308
		309
		310	`$data = [`
		311	`'success' => true,`
		312	`'data' => $this->url()->fromRoute('dashboard'),`
		313	`];`
		314
		315	`$this->cache->removeItem('user_share_invitation');`
		316	`} else {`
		317
		318	`$message = $result->getMessages()[0];`
		319	`if (!in_array($message, [`
		320	`'ERROR_USER_NOT_FOUND', 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED', 'ERROR_USER_IS_BLOCKED',`
		321	`'ERROR_USER_IS_INACTIVE', 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED', 'ERROR_ENTERED_PASS_INCORRECT_2',`
		322	`'ERROR_ENTERED_PASS_INCORRECT_1', 'ERROR_USER_REQUEST_ACCESS_IS_PENDING', 'ERROR_USER_REQUEST_ACCESS_IS_REJECTED'`
		323
		324
		325	`])) {`
		326	`}`
		327
		328	`switch ($message) {`
		329	`case 'ERROR_USER_NOT_FOUND':`
		330	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no existe', ['ip' => Functions::getUserIP()]);`
		331	`break;`
		332
		333	`case 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED':`
		334	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no verificado', ['ip' => Functions::getUserIP()]);`
		335	`break;`
		336
		337	`case 'ERROR_USER_IS_BLOCKED':`
		338	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		339	`break;`
		340
		341	`case 'ERROR_USER_IS_INACTIVE':`
		342	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario inactivo', ['ip' => Functions::getUserIP()]);`
		343	`break;`
		344
		345
		346	`case 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED':`
		347	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 3er Intento Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		348	`break;`
		349
		350
		351	`case 'ERROR_ENTERED_PASS_INCORRECT_2':`
		352	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 1er Intento', ['ip' => Functions::getUserIP()]);`
		353	`break;`
		354
		355
		356	`case 'ERROR_ENTERED_PASS_INCORRECT_1':`
		357	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 2do Intento', ['ip' => Functions::getUserIP()]);`
		358	`break;`
		359
		360
		361	`case 'ERROR_USER_REQUEST_ACCESS_IS_PENDING':`
		362	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Falta verificar que pertence a la Red Privada', ['ip' => Functions::getUserIP()]);`
		363	`break;`
		364
		365	`case 'ERROR_USER_REQUEST_ACCESS_IS_REJECTED':`
		366	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Rechazado por no pertence a la Red Privada', ['ip' => Functions::getUserIP()]);`
		367	`break;`
		368
		369
		370	`default:`
		371	`$message = 'ERROR_UNKNOWN';`
		372	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Error desconocido', ['ip' => Functions::getUserIP()]);`
		373	`break;`
		374	`}`
		375
		376
		377
		378
		379	`$data = [`
		380	`'success' => false,`
		381	`'data' => $message`
		382	`];`
		383	`}`
		384
		385	`return new JsonModel($data);`
		386	`} else {`
		387	`$messages = [];`
		388
		389
		390
		391	`$form_messages = (array) $form->getMessages();`
		392	`foreach ($form_messages as $fieldname => $field_messages) {`
		393
		394	`$messages[$fieldname] = array_values($field_messages);`
		395	`}`
		396
		397	`return new JsonModel([`
		398	`'success' => false,`
		399	`'data' => $messages`
		400	`]);`
		401	`}`
		402	`} else if ($request->isGet()) {`
		403
23	efrain	404	`$aes = Functions::generatePassword(16);`
1	efrain	405
23	efrain	406	`$jwtToken = new JwtToken();`
		407	`$jwtToken->aes = $aes;`
		408
		409	`$jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);`
		410	`if($jwtTokenMapper->insert($jwtToken)) {`
		411	`$jwtToken = $jwtTokenMapper->fetchOne($jwtToken->id);`
1	efrain	412	`}`
23	efrain	413
		414	`$token = '';`
		415
		416	`if(!empty($this->config['leaderslinked.jwt.key'])) {`
		417	`$issuedAt = new \DateTimeImmutable();`
		418	`$expire = $issuedAt->modify('+24 hours')->getTimestamp();`
		419	`$serverName = $_SERVER['HTTP_HOST'];`
		420	`$payload = [`
		421	`'iat' => $issuedAt->getTimestamp(),`
		422	`'iss' => $serverName,`
		423	`'nbf' => $issuedAt->getTimestamp(),`
		424	`'exp' => $expire,`
		425	`'uuid' => $jwtToken->uuid,`
		426	`];`
		427
		428
		429	`$key = $this->config['leaderslinked.jwt.key'];`
		430	`$token = JWT::encode($payload, $key, 'HS256');`
		431	`}`
		432
		433
		434
1	efrain	435
23	efrain	436
1	efrain	437	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		438	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		439	`} else {`
		440	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		441	`}`
		442
		443
		444	`$access_usign_social_networks = $this->config['leaderslinked.runmode.access_usign_social_networks'];`
		445
		446	`$sandbox = $this->config['leaderslinked.runmode.sandbox'];`
		447	`if ($sandbox) {`
		448	`$google_map_key = $this->config['leaderslinked.google_map.sandbox_api_key'];`
		449	`} else {`
		450	`$google_map_key = $this->config['leaderslinked.google_map.production_api_key'];`
		451	`}`
		452
		453
		454	`$data = [`
23	efrain	455	`'google_map_key' => $google_map_key,`
		456	`'email' => '',`
		457	`'remember' => false,`
		458	`'site_key' => $site_key,`
		459	`'theme_id' => $currentNetwork->theme_id,`
		460	`'aes' => $aes,`
		461	`'jwt' => $token,`
		462	`'defaultNetwork' => $currentNetwork->default,`
		463	`'access_usign_social_networks' => $access_usign_social_networks && $currentNetwork->default == Network::DEFAULT_YES ? 'y' : 'n',`
		464	`'logo_url' => $this->url()->fromRoute('storage-network', ['type' => 'logo']),`
		465	`'navbar_url' => $this->url()->fromRoute('storage-network', ['type' => 'navbar']),`
		466	`'favico_url' => $this->url()->fromRoute('storage-network', ['type' => 'favico']),`
		467	`'intro' => $currentNetwork->intro,`
		468	`'is_logged_in' => false`
1	efrain	469
		470	`];`
		471
		472	`} else {`
		473	`$data = [`
		474	`'success' => false,`
		475	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		476	`];`
		477
		478	`return new JsonModel($data);`
		479	`}`
		480
		481	`return new JsonModel($data);`
		482	`}`
		483
		484	`public function facebookAction()`
		485	`{`
		486
		487	`$request = $this->getRequest();`
		488	`if ($request->isGet()) {`
		489	`/*`
		490	`// try {`
		491	`$app_id = $this->config['leaderslinked.facebook.app_id'];`
		492	`$app_password = $this->config['leaderslinked.facebook.app_password'];`
		493	`$app_graph_version = $this->config['leaderslinked.facebook.app_graph_version'];`
		494	`//$app_url_auth = $this->config['leaderslinked.facebook.app_url_auth'];`
		495	`//$redirect_url = $this->config['leaderslinked.facebook.app_redirect_url'];`
		496
		497	`[facebook]`
		498	`app_id=343770226993130`
		499	`app_password=028ee729090fd591e50a17a786666c12`
		500	`app_graph_version=v17`
		501	`app_redirect_url=https://leaderslinked.com/oauth/facebook`
		502
		503	`https://www.facebook.com/v17.0/dialog/oauth?client_id=343770226993130&redirect_uri= https://dev.leaderslinked.com/oauth/facebook&state=AE12345678`
		504
		505
		506	`$s = 'https://www.facebook.com/v17.0/dialog/oauth' .`
		507	`'?client_id='`
		508	`'&redirect_uri={"https://www.domain.com/login"}`
		509	`'&state={"{st=state123abc,ds=123456789}"}`
		510
		511	`$fb = new \Facebook\Facebook([`
		512	`'app_id' => $app_id,`
		513	`'app_secret' => $app_password,`
		514	`'default_graph_version' => $app_graph_version,`
		515	`]);`
		516
		517	`$app_url_auth = $this->url()->fromRoute('oauth/facebook', [], ['force_canonical' => true]);`
		518	`$helper = $fb->getRedirectLoginHelper();`
		519	`$permissions = ['email', 'public_profile']; // Optional permissions`
		520	`$facebookUrl = $helper->getLoginUrl($app_url_auth, $permissions);`
		521
		522
		523
		524	`return new JsonModel([`
		525	`'success' => false,`
		526	`'data' => $facebookUrl`
		527	`]);`
		528	`} catch (\Throwable $e) {`
		529	`return new JsonModel([`
		530	`'success' => false,`
		531	`'data' => 'ERROR_WE_COULD_NOT_CONNECT_TO_FACEBOOK'`
		532	`]);`
		533	`}*/`
		534	`} else {`
		535	`return new JsonModel([`
		536	`'success' => false,`
		537	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		538	`]);`
		539	`}`
		540	`}`
		541
		542	`public function twitterAction()`
		543	`{`
		544	`$request = $this->getRequest();`
		545	`if ($request->isGet()) {`
		546
		547	`try {`
		548	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		549
		550	`$twitter_api_key = $this->config['leaderslinked.twitter.sandbox_api_key'];`
		551	`$twitter_api_secret = $this->config['leaderslinked.twitter.sandbox_api_secret'];`
		552	`} else {`
		553	`$twitter_api_key = $this->config['leaderslinked.twitter.production_api_key'];`
		554	`$twitter_api_secret = $this->config['leaderslinked.twitter.production_api_secret'];`
		555	`}`
		556
		557	`/*`
		558	`echo '$twitter_api_key = ' . $twitter_api_key . PHP_EOL;`
		559	`echo '$twitter_api_secret = ' . $twitter_api_secret . PHP_EOL;`
		560	`exit;`
		561	`*/`
		562
		563	`//Twitter`
		564	`//$redirect_url = $this->url()->fromRoute('oauth/twitter', [], ['force_canonical' => true]);`
		565	`$redirect_url = $this->config['leaderslinked.twitter.app_redirect_url'];`
		566	`$twitter = new \Abraham\TwitterOAuth\TwitterOAuth($twitter_api_key, $twitter_api_secret);`
		567	`$request_token = $twitter->oauth('oauth/request_token', ['oauth_callback' => $redirect_url]);`
		568	`$twitterUrl = $twitter->url('oauth/authorize', ['oauth_token' => $request_token['oauth_token']]);`
		569
		570	`$twitterSession = new \Laminas\Session\Container('twitter');`
		571	`$twitterSession->oauth_token = $request_token['oauth_token'];`
		572	`$twitterSession->oauth_token_secret = $request_token['oauth_token_secret'];`
		573
		574	`return new JsonModel([`
		575	`'success' => true,`
		576	`'data' => $twitterUrl`
		577	`]);`
		578	`} catch (\Throwable $e) {`
		579	`return new JsonModel([`
		580	`'success' => false,`
		581	`'data' => 'ERROR_WE_COULD_NOT_CONNECT_TO_TWITTER'`
		582	`]);`
		583	`}`
		584	`} else {`
		585	`return new JsonModel([`
		586	`'success' => false,`
		587	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		588	`]);`
		589	`}`
		590	`}`
		591
		592	`public function googleAction()`
		593	`{`
		594	`$request = $this->getRequest();`
		595	`if ($request->isGet()) {`
		596
		597	`try {`
		598
		599
		600	`//Google`
		601	`$google = new \Google_Client();`
		602	`$google->setAuthConfig('data/google/auth-leaderslinked/apps.google.com_secreto_cliente.json');`
		603	`$google->setAccessType("offline"); // offline access`
		604
		605	`$google->setIncludeGrantedScopes(true); // incremental auth`
		606
		607	`$google->addScope('profile');`
		608	`$google->addScope('email');`
		609
		610	`// $redirect_url = $this->url()->fromRoute('oauth/google', [], ['force_canonical' => true]);`
		611	`$redirect_url = $this->config['leaderslinked.google_auth.app_redirect_url'];`
		612
		613	`$google->setRedirectUri($redirect_url);`
		614	`$googleUrl = $google->createAuthUrl();`
		615
		616	`return new JsonModel([`
		617	`'success' => true,`
		618	`'data' => $googleUrl`
		619	`]);`
		620	`} catch (\Throwable $e) {`
		621	`return new JsonModel([`
		622	`'success' => false,`
		623	`'data' => 'ERROR_WE_COULD_NOT_CONNECT_TO_GOOGLE'`
		624	`]);`
		625	`}`
		626	`} else {`
		627	`return new JsonModel([`
		628	`'success' => false,`
		629	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		630	`]);`
		631	`}`
		632	`}`
		633
		634	`public function signoutAction()`
		635	`{`
		636	`$currentUserPlugin = $this->plugin('currentUserPlugin');`
		637	`$currentUser = $currentUserPlugin->getRawUser();`
		638	`if ($currentUserPlugin->hasImpersonate()) {`
		639
		640
		641	`$userMapper = UserMapper::getInstance($this->adapter);`
		642	`$userMapper->leaveImpersonate($currentUser->id);`
		643
		644	`$networkMapper = NetworkMapper::getInstance($this->adapter);`
		645	`$network = $networkMapper->fetchOne($currentUser->network_id);`
		646
		647
		648	`if (!$currentUser->one_time_password) {`
		649	`$one_time_password = Functions::generatePassword(25);`
		650
		651	`$currentUser->one_time_password = $one_time_password;`
		652
		653	`$userMapper = UserMapper::getInstance($this->adapter);`
		654	`$userMapper->updateOneTimePassword($currentUser, $one_time_password);`
		655	`}`
		656
		657
		658	`$sandbox = $this->config['leaderslinked.runmode.sandbox'];`
		659	`if ($sandbox) {`
		660	`$salt = $this->config['leaderslinked.backend.sandbox_salt'];`
		661	`} else {`
		662	`$salt = $this->config['leaderslinked.backend.production_salt'];`
		663	`}`
		664
		665	`$rand = 1000 + mt_rand(1, 999);`
		666	`$timestamp = time();`
		667	`$password = md5($currentUser->one_time_password . '-' . $rand . '-' . $timestamp . '-' . $salt);`
		668
		669	`$params = [`
		670	`'user_uuid' => $currentUser->uuid,`
		671	`'password' => $password,`
		672	`'rand' => $rand,`
		673	`'time' => $timestamp,`
		674	`];`
		675
		676	`$currentUserPlugin->clearIdentity();`
		677
		678	`return new JsonModel([`
		679	`'success' => true,`
		680	`'data' => [`
		681	`'message' => 'LABEL_SIGNOUT_SUCCESSFULLY',`
		682	`'url' => 'https://' . $network->main_hostname . '/signin/impersonate' . '?' . http_build_query($params)`
		683	`],`
		684
		685	`]);`
		686
		687
		688	`// $url = 'https://' . $network->main_hostname . '/signin/impersonate' . '?' . http_build_query($params);`
		689	`// return $this->redirect()->toUrl($url);`
		690	`} else {`
		691
		692
		693	`if ($currentUserPlugin->hasIdentity()) {`
		694
		695	`$this->logger->info('Desconexión de LeadersLinked', ['user_id' => $currentUserPlugin->getUserId(), 'ip' => Functions::getUserIP()]);`
		696	`}`
		697
		698	`$currentUserPlugin->clearIdentity();`
		699
		700	`// return $this->redirect()->toRoute('home');`
		701
		702	`return new JsonModel([`
		703	`'success' => true,`
		704	`'data' => [`
		705	`'message' => 'LABEL_SIGNOUT_SUCCESSFULLY',`
		706	`'url' => '',`
		707	`],`
		708
		709	`]);`
		710	`}`
		711	`}`
		712
		713
		714	`public function resetPasswordAction()`
		715	`{`
		716	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		717	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		718
		719
		720	`$flashMessenger = $this->plugin('FlashMessenger');`
		721	`$code = Functions::sanitizeFilterString($this->params()->fromRoute('code', ''));`
		722
		723	`$userMapper = UserMapper::getInstance($this->adapter);`
		724	`$user = $userMapper->fetchOneByPasswordResetKeyAndNetworkId($code, $currentNetwork->id);`
		725	`if (!$user) {`
		726	`$this->logger->err('Restablecer contraseña - Error código no existe', ['ip' => Functions::getUserIP()]);`
		727
		728	`return new JsonModel([`
		729	`'success' => true,`
		730	`'data' => 'ERROR_PASSWORD_RECOVER_CODE_IS_INVALID'`
		731	`]);`
		732
		733	`}`
		734
		735
		736
		737	`$password_generated_on = strtotime($user->password_generated_on);`
		738	`$expiry_time = $password_generated_on + $this->config['leaderslinked.security.reset_password_expired'];`
		739	`if (time() > $expiry_time) {`
		740	`$this->logger->err('Restablecer contraseña - Error código expirado', ['ip' => Functions::getUserIP()]);`
		741
		742	`return new JsonModel([`
		743	`'success' => true,`
		744	`'data' => 'ERROR_PASSWORD_RECOVER_CODE_HAS_EXPIRED'`
		745	`]);`
		746	`}`
		747
		748	`$request = $this->getRequest();`
		749	`if ($request->isPost()) {`
		750	`$dataPost = $request->getPost()->toArray();`
		751	`if (empty($_SESSION['aes'])) {`
		752	`return new JsonModel([`
		753	`'success' => false,`
		754	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		755	`]);`
		756
		757
		758	`}`
		759
		760	`if (!empty($dataPost['password'])) {`
		761	`$dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);`
		762	`}`
		763	`if (!empty($dataPost['confirmation'])) {`
		764	`$dataPost['confirmation'] = CryptoJsAes::decrypt($dataPost['confirmation'], $_SESSION['aes']);`
		765	`}`
		766
		767
		768
		769	`$form = new ResetPasswordForm($this->config);`
		770	`$form->setData($dataPost);`
		771
		772	`if ($form->isValid()) {`
		773	`$data = (array) $form->getData();`
		774	`$password = $data['password'];`
		775
		776
		777	`$userPasswordMapper = UserPasswordMapper::getInstance($this->adapter);`
		778	`$userPasswords = $userPasswordMapper->fetchAllByUserId($user->id);`
		779
		780	`$oldPassword = false;`
		781	`foreach ($userPasswords as $userPassword) {`
		782	`if (password_verify($password, $userPassword->password) \|\| (md5($password) == $userPassword->password)) {`
		783	`$oldPassword = true;`
		784	`break;`
		785	`}`
		786	`}`
		787
		788	`if ($oldPassword) {`
		789	`$this->logger->err('Restablecer contraseña - Error contraseña ya utilizada anteriormente', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		790
		791	`return new JsonModel([`
		792	`'success' => false,`
		793	`'data' => 'ERROR_PASSWORD_HAS_ALREADY_BEEN_USED'`
		794
		795	`]);`
		796	`} else {`
		797	`$password_hash = password_hash($password, PASSWORD_DEFAULT);`
		798
		799
		800	`$result = $userMapper->updatePassword($user, $password_hash);`
		801	`if ($result) {`
		802
		803	`$userPassword = new UserPassword();`
		804	`$userPassword->user_id = $user->id;`
		805	`$userPassword->password = $password_hash;`
		806	`$userPasswordMapper->insert($userPassword);`
		807
		808
		809	`$this->logger->info('Restablecer contraseña realizado', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		810
		811
		812	`$flashMessenger->addSuccessMessage('LABEL_YOUR_PASSWORD_HAS_BEEN_UPDATED');`
		813
		814	`return new JsonModel([`
		815	`'success' => true,`
		816	`'data' => [`
		817	`'message' => 'LABEL_YOUR_PASSWORD_HAS_BEEN_UPDATED',`
		818	`'redirect' => $this->url()->fromRoute('home'),`
		819	`],`
		820
		821	`]);`
		822	`} else {`
		823	`$this->logger->err('Restablecer contraseña - Error desconocido', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		824
		825	`return new JsonModel([`
		826	`'success' => false,`
		827	`'data' => 'ERROR_THERE_WAS_AN_ERROR'`
		828
		829	`]);`
		830	`}`
		831	`}`
		832	`} else {`
		833	`$form_messages = $form->getMessages('captcha');`
		834	`if (!empty($form_messages)) {`
		835	`return new JsonModel([`
		836	`'success' => false,`
		837	`'data' => 'ERROR_RECAPTCHA_EMPTY'`
		838	`]);`
		839	`}`
		840
		841	`$messages = [];`
		842
		843	`$form_messages = (array) $form->getMessages();`
		844	`foreach ($form_messages as $fieldname => $field_messages) {`
		845	`$messages[$fieldname] = array_values($field_messages);`
		846	`}`
		847
		848	`return new JsonModel([`
		849	`'success' => false,`
		850	`'data' => $messages`
		851	`]);`
		852	`}`
		853	`} else if ($request->isGet()) {`
		854
		855	`if (empty($_SESSION['aes'])) {`
		856	`$_SESSION['aes'] = Functions::generatePassword(16);`
		857	`}`
		858
		859	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		860	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		861	`} else {`
		862	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		863	`}`
		864
		865
		866	`return new JsonModel([`
		867	`'code' => $code,`
		868	`'site_key' => $site_key,`
		869	`'aes' => $_SESSION['aes'],`
		870	`'defaultNetwork' => $currentNetwork->default,`
		871	`]);`
		872
		873	`}`
		874
		875
		876
		877	`return new JsonModel([`
		878	`'success' => false,`
		879	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		880	`]);`
		881	`}`
		882
		883	`public function forgotPasswordAction()`
		884	`{`
		885	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		886	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		887
		888
		889
		890	`$request = $this->getRequest();`
		891	`if ($request->isPost()) {`
		892	`$dataPost = $request->getPost()->toArray();`
		893	`if (empty($_SESSION['aes'])) {`
		894	`return new JsonModel([`
		895	`'success' => false,`
		896	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		897	`]);`
		898	`}`
		899
		900	`if (!empty($dataPost['email'])) {`
		901	`$dataPost['email'] = CryptoJsAes::decrypt($dataPost['email'], $_SESSION['aes']);`
		902	`}`
		903
		904	`$form = new ForgotPasswordForm($this->config);`
		905	`$form->setData($dataPost);`
		906
		907	`if ($form->isValid()) {`
		908	`$dataPost = (array) $form->getData();`
		909	`$email = $dataPost['email'];`
		910
		911	`$userMapper = UserMapper::getInstance($this->adapter);`
		912	`$user = $userMapper->fetchOneByEmailAndNetworkId($email, $currentNetwork->id);`
		913	`if (!$user) {`
		914	`$this->logger->err('Olvidó contraseña ' . $email . '- Email no existe ', ['ip' => Functions::getUserIP()]);`
		915
		916	`return new JsonModel([`
		917	`'success' => false,`
		918	`'data' => 'ERROR_EMAIL_IS_NOT_REGISTERED'`
		919	`]);`
		920	`} else {`
		921	`if ($user->status == User::STATUS_INACTIVE) {`
		922	`return new JsonModel([`
		923	`'success' => false,`
		924	`'data' => 'ERROR_USER_IS_INACTIVE'`
		925	`]);`
		926	`} else if ($user->email_verified == User::EMAIL_VERIFIED_NO) {`
		927	`$this->logger->err('Olvidó contraseña - Email no verificado ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		928
		929	`return new JsonModel([`
		930	`'success' => false,`
		931	`'data' => 'ERROR_EMAIL_HAS_NOT_BEEN_VERIFIED'`
		932	`]);`
		933	`} else {`
		934	`$password_reset_key = md5($user->email . time());`
		935	`$userMapper->updatePasswordResetKey((int) $user->id, $password_reset_key);`
		936
		937	`$emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);`
		938	`$emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_RESET_PASSWORD, $currentNetwork->id);`
		939	`if ($emailTemplate) {`
		940	`$arrayCont = [`
		941	`'firstname' => $user->first_name,`
		942	`'lastname' => $user->last_name,`
		943	`'other_user_firstname' => '',`
		944	`'other_user_lastname' => '',`
		945	`'company_name' => '',`
		946	`'group_name' => '',`
		947	`'content' => '',`
		948	`'code' => '',`
		949	`'link' => $this->url()->fromRoute('reset-password', ['code' => $password_reset_key], ['force_canonical' => true])`
		950	`];`
		951
		952	`$email = new QueueEmail($this->adapter);`
		953	`$email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name));`
		954	`}`
		955	`$flashMessenger = $this->plugin('FlashMessenger');`
		956	`$flashMessenger->addSuccessMessage('LABEL_RECOVERY_LINK_WAS_SENT_TO_YOUR_EMAIL');`
		957
		958	`$this->logger->info('Olvidó contraseña - Se envio link de recuperación ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		959
		960	`return new JsonModel([`
		961	`'success' => true,`
		962	`]);`
		963	`}`
		964	`}`
		965	`} else {`
		966
		967
		968	`$form_messages = $form->getMessages('captcha');`
		969
		970
		971
		972	`if (!empty($form_messages)) {`
		973	`return new JsonModel([`
		974	`'success' => false,`
		975	`'data' => 'ERROR_RECAPTCHA_EMPTY'`
		976	`]);`
		977	`}`
		978
		979	`$messages = [];`
		980	`$form_messages = (array) $form->getMessages();`
		981	`foreach ($form_messages as $fieldname => $field_messages) {`
		982	`$messages[$fieldname] = array_values($field_messages);`
		983	`}`
		984
		985	`return new JsonModel([`
		986	`'success' => false,`
		987	`'data' => $messages`
		988	`]);`
		989	`}`
		990	`} else if ($request->isGet()) {`
		991
		992	`if (empty($_SESSION['aes'])) {`
		993	`$_SESSION['aes'] = Functions::generatePassword(16);`
		994	`}`
		995
		996	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		997	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		998	`} else {`
		999	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		1000	`}`
		1001
		1002	`return new JsonModel([`
		1003	`'site_key' => $site_key,`
		1004	`'aes' => $_SESSION['aes'],`
		1005	`'defaultNetwork' => $currentNetwork->default,`
		1006	`]);`
		1007	`}`
		1008
		1009	`return new JsonModel([`
		1010	`'success' => false,`
		1011	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1012	`]);`
		1013	`}`
		1014
		1015	`public function signupAction()`
		1016	`{`
		1017	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		1018	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		1019
		1020
		1021	`$request = $this->getRequest();`
		1022	`if ($request->isPost()) {`
		1023	`$dataPost = $request->getPost()->toArray();`
		1024
		1025	`if (empty($_SESSION['aes'])) {`
		1026	`return new JsonModel([`
		1027	`'success' => false,`
		1028	`'data' => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'`
		1029	`]);`
		1030	`}`
		1031
		1032	`if (!empty($dataPost['email'])) {`
		1033	`$dataPost['email'] = CryptoJsAes::decrypt($dataPost['email'], $_SESSION['aes']);`
		1034	`}`
		1035
		1036	`if (!empty($dataPost['password'])) {`
		1037	`$dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $_SESSION['aes']);`
		1038	`}`
		1039
		1040	`if (!empty($dataPost['confirmation'])) {`
		1041	`$dataPost['confirmation'] = CryptoJsAes::decrypt($dataPost['confirmation'], $_SESSION['aes']);`
		1042	`}`
		1043
		1044	`if (empty($dataPost['is_adult'])) {`
		1045	`$dataPost['is_adult'] = User::IS_ADULT_NO;`
		1046	`} else {`
		1047	`$dataPost['is_adult'] = $dataPost['is_adult'] == User::IS_ADULT_YES ? User::IS_ADULT_YES : User::IS_ADULT_NO;`
		1048	`}`
		1049
		1050
		1051
		1052	`$form = new SignupForm($this->config);`
		1053	`$form->setData($dataPost);`
		1054
		1055	`if ($form->isValid()) {`
		1056	`$dataPost = (array) $form->getData();`
		1057
		1058	`$email = $dataPost['email'];`
		1059
		1060	`$userMapper = UserMapper::getInstance($this->adapter);`
		1061	`$user = $userMapper->fetchOneByEmailAndNetworkId($email, $currentNetwork->id);`
		1062	`if ($user) {`
		1063	`$this->logger->err('Registro ' . $email . '- Email ya existe ', ['ip' => Functions::getUserIP()]);`
		1064
		1065
		1066
		1067	`return new JsonModel([`
		1068	`'success' => false,`
		1069	`'data' => 'ERROR_EMAIL_IS_REGISTERED'`
		1070	`]);`
		1071	`} else {`
		1072
		1073	`$user_share_invitation = $this->cache->getItem('user_share_invitation');`
		1074
		1075
		1076	`if ($user_share_invitation) {`
		1077	`$userRedirect = $userMapper->fetchOneByUuid($user_share_invitation);`
		1078	`if ($userRedirect && $userRedirect->status == User::STATUS_ACTIVE) {`
		1079	`$password_hash = password_hash($dataPost['password'], PASSWORD_DEFAULT);`
		1080
		1081	`$user = new User();`
		1082	`$user->network_id = $currentNetwork->id;`
		1083	`$user->email = $dataPost['email'];`
		1084	`$user->first_name = $dataPost['first_name'];`
		1085	`$user->last_name = $dataPost['last_name'];`
		1086	`$user->usertype_id = UserType::USER;`
		1087	`$user->password = $password_hash;`
		1088	`$user->password_updated_on = date('Y-m-d H:i:s');`
		1089	`$user->status = User::STATUS_ACTIVE;`
		1090	`$user->blocked = User::BLOCKED_NO;`
		1091	`$user->email_verified = User::EMAIL_VERIFIED_YES;`
		1092	`$user->login_attempt = 0;`
		1093	`$user->is_adult = $dataPost['is_adult'];`
		1094	`$user->request_access = User::REQUEST_ACCESS_APPROVED;`
		1095
		1096
		1097
		1098
		1099
		1100	`if ($userMapper->insert($user)) {`
		1101
		1102	`$userPassword = new UserPassword();`
		1103	`$userPassword->user_id = $user->id;`
		1104	`$userPassword->password = $password_hash;`
		1105
		1106	`$userPasswordMapper = UserPasswordMapper::getInstance($this->adapter);`
		1107	`$userPasswordMapper->insert($userPassword);`
		1108
		1109
		1110	`$connectionMapper = ConnectionMapper::getInstance($this->adapter);`
		1111	`$connection = $connectionMapper->fetchOneByUserId1AndUserId2($user->id, $userRedirect->id);`
		1112
		1113	`if ($connection) {`
		1114
		1115	`if ($connection->status != Connection::STATUS_ACCEPTED) {`
		1116	`$connectionMapper->approve($connection);`
		1117	`}`
		1118	`} else {`
		1119	`$connection = new Connection();`
		1120	`$connection->request_from = $user->id;`
		1121	`$connection->request_to = $userRedirect->id;`
		1122	`$connection->status = Connection::STATUS_ACCEPTED;`
		1123
		1124	`$connectionMapper->insert($connection);`
		1125	`}`
		1126
		1127
		1128	`$this->cache->removeItem('user_share_invitation');`
		1129
		1130
		1131
		1132	`$data = [`
		1133	`'success' => true,`
		1134	`'data' => $this->url()->fromRoute('home'),`
		1135	`];`
		1136
		1137
		1138	`$this->logger->info('Registro con Exito ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1139
		1140	`return new JsonModel($data);`
		1141	`}`
		1142	`}`
		1143	`}`
		1144
		1145
		1146
		1147
		1148	`$timestamp = time();`
		1149	`$activation_key = sha1($dataPost['email'] . uniqid() . $timestamp);`
		1150
		1151	`$password_hash = password_hash($dataPost['password'], PASSWORD_DEFAULT);`
		1152
		1153	`$user = new User();`
		1154	`$user->network_id = $currentNetwork->id;`
		1155	`$user->email = $dataPost['email'];`
		1156	`$user->first_name = $dataPost['first_name'];`
		1157	`$user->last_name = $dataPost['last_name'];`
		1158	`$user->usertype_id = UserType::USER;`
		1159	`$user->password = $password_hash;`
		1160	`$user->password_updated_on = date('Y-m-d H:i:s');`
		1161	`$user->activation_key = $activation_key;`
		1162	`$user->status = User::STATUS_INACTIVE;`
		1163	`$user->blocked = User::BLOCKED_NO;`
		1164	`$user->email_verified = User::EMAIL_VERIFIED_NO;`
		1165	`$user->login_attempt = 0;`
		1166
		1167	`if ($currentNetwork->default == Network::DEFAULT_YES) {`
		1168	`$user->request_access = User::REQUEST_ACCESS_APPROVED;`
		1169	`} else {`
		1170	`$user->request_access = User::REQUEST_ACCESS_PENDING;`
		1171	`}`
		1172
		1173
		1174
		1175	`if ($userMapper->insert($user)) {`
		1176
		1177	`$userPassword = new UserPassword();`
		1178	`$userPassword->user_id = $user->id;`
		1179	`$userPassword->password = $password_hash;`
		1180
		1181	`$userPasswordMapper = UserPasswordMapper::getInstance($this->adapter);`
		1182	`$userPasswordMapper->insert($userPassword);`
		1183
		1184	`$emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);`
		1185	`$emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_USER_REGISTER, $currentNetwork->id);`
		1186	`if ($emailTemplate) {`
		1187	`$arrayCont = [`
		1188	`'firstname' => $user->first_name,`
		1189	`'lastname' => $user->last_name,`
		1190	`'other_user_firstname' => '',`
		1191	`'other_user_lastname' => '',`
		1192	`'company_name' => '',`
		1193	`'group_name' => '',`
		1194	`'content' => '',`
		1195	`'code' => '',`
		1196	`'link' => $this->url()->fromRoute('activate-account', ['code' => $user->activation_key], ['force_canonical' => true])`
		1197	`];`
		1198
		1199	`$email = new QueueEmail($this->adapter);`
		1200	`$email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name));`
		1201	`}`
		1202	`$flashMessenger = $this->plugin('FlashMessenger');`
		1203	`$flashMessenger->addSuccessMessage('LABEL_REGISTRATION_DONE');`
		1204
		1205	`$this->logger->info('Registro con Exito ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1206
		1207	`return new JsonModel([`
		1208	`'success' => true,`
		1209	`]);`
		1210	`} else {`
		1211	`$this->logger->err('Registro ' . $email . '- Ha ocurrido un error ', ['ip' => Functions::getUserIP()]);`
		1212
		1213	`return new JsonModel([`
		1214	`'success' => false,`
		1215	`'data' => 'ERROR_THERE_WAS_AN_ERROR'`
		1216	`]);`
		1217	`}`
		1218	`}`
		1219	`} else {`
		1220
		1221	`$form_messages = $form->getMessages('captcha');`
		1222	`if (!empty($form_messages)) {`
		1223	`return new JsonModel([`
		1224	`'success' => false,`
		1225	`'data' => 'ERROR_RECAPTCHA_EMPTY'`
		1226	`]);`
		1227	`}`
		1228
		1229	`$messages = [];`
		1230
		1231	`$form_messages = (array) $form->getMessages();`
		1232	`foreach ($form_messages as $fieldname => $field_messages) {`
		1233	`$messages[$fieldname] = array_values($field_messages);`
		1234	`}`
		1235
		1236	`return new JsonModel([`
		1237	`'success' => false,`
		1238	`'data' => $messages`
		1239	`]);`
		1240	`}`
		1241	`} else if ($request->isGet()) {`
		1242
		1243	`if (empty($_SESSION['aes'])) {`
		1244	`$_SESSION['aes'] = Functions::generatePassword(16);`
		1245	`}`
		1246
		1247	`if ($this->config['leaderslinked.runmode.sandbox']) {`
		1248	`$site_key = $this->config['leaderslinked.google_captcha.sandbox_site_key'];`
		1249	`} else {`
		1250	`$site_key = $this->config['leaderslinked.google_captcha.production_site_key'];`
		1251	`}`
		1252
		1253	`$email = isset($_COOKIE['email']) ? $_COOKIE['email'] : '';`
		1254
		1255	`return new JsonModel([`
		1256	`'site_key' => $site_key,`
		1257	`'aes' => $_SESSION['aes'],`
		1258	`'defaultNetwork' => $currentNetwork->default,`
		1259	`]);`
		1260	`}`
		1261
		1262	`return new JsonModel([`
		1263	`'success' => false,`
		1264	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1265	`]);`
		1266	`}`
		1267
		1268	`public function activateAccountAction()`
		1269	`{`
		1270
		1271	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		1272	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		1273
		1274
		1275
		1276	`$request = $this->getRequest();`
		1277	`if ($request->isGet()) {`
		1278	`$code = Functions::sanitizeFilterString($this->params()->fromRoute('code'));`
		1279	`$userMapper = UserMapper::getInstance($this->adapter);`
		1280	`$user = $userMapper->fetchOneByActivationKeyAndNetworkId($code, $currentNetwork->id);`
		1281
		1282	`$flashMessenger = $this->plugin('FlashMessenger');`
		1283
		1284	`if ($user) {`
		1285	`if (User::EMAIL_VERIFIED_YES == $user->email_verified) {`
		1286
		1287	`$this->logger->err('Verificación email - El código ya habia sido verificao ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1288
		1289	`$flashMessenger->addErrorMessage('ERROR_EMAIL_HAS_BEEN_PREVIOUSLY_VERIFIED');`
		1290	`} else {`
		1291
		1292	`if ($userMapper->activateAccount((int) $user->id)) {`
		1293
		1294	`$this->logger->info('Verificación email realizada ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1295
		1296
		1297
		1298	`$user_share_invitation = $this->cache->getItem('user_share_invitation');`
		1299
		1300	`if ($user_share_invitation) {`
		1301	`$userRedirect = $userMapper->fetchOneByUuid($user_share_invitation);`
		1302	`if ($userRedirect && $userRedirect->status == User::STATUS_ACTIVE && $user->id != $userRedirect->id) {`
		1303	`$connectionMapper = ConnectionMapper::getInstance($this->adapter);`
		1304	`$connection = $connectionMapper->fetchOneByUserId1AndUserId2($user->id, $userRedirect->id);`
		1305
		1306	`if ($connection) {`
		1307
		1308	`if ($connection->status != Connection::STATUS_ACCEPTED) {`
		1309	`$connectionMapper->approve($connection);`
		1310	`}`
		1311	`} else {`
		1312	`$connection = new Connection();`
		1313	`$connection->request_from = $user->id;`
		1314	`$connection->request_to = $userRedirect->id;`
		1315	`$connection->status = Connection::STATUS_ACCEPTED;`
		1316
		1317	`$connectionMapper->insert($connection);`
		1318	`}`
		1319	`}`
		1320	`}`
		1321
		1322
		1323
		1324	`$this->cache->removeItem('user_share_invitation');`
		1325
		1326
		1327	`if ($currentNetwork->default == Network::DEFAULT_YES) {`
		1328	`$flashMessenger->addSuccessMessage('LABEL_YOUR_EMAIL_HAS_BEEN_VERIFIED');`
		1329	`} else {`
		1330
		1331	`$emailTemplateMapper = EmailTemplateMapper::getInstance($this->adapter);`
		1332	`$emailTemplate = $emailTemplateMapper->fetchOneByCodeAndNetworkId(EmailTemplate::CODE_REQUEST_ACCESS_PENDING, $currentNetwork->id);`
		1333
		1334	`if ($emailTemplate) {`
		1335	`$arrayCont = [`
		1336	`'firstname' => $user->first_name,`
		1337	`'lastname' => $user->last_name,`
		1338	`'other_user_firstname' => '',`
		1339	`'other_user_lastname' => '',`
		1340	`'company_name' => '',`
		1341	`'group_name' => '',`
		1342	`'content' => '',`
		1343	`'code' => '',`
		1344	`'link' => '',`
		1345	`];`
		1346
		1347	`$email = new QueueEmail($this->adapter);`
		1348	`$email->processEmailTemplate($emailTemplate, $arrayCont, $user->email, trim($user->first_name . ' ' . $user->last_name));`
		1349	`}`
		1350
		1351
		1352	`$flashMessenger->addSuccessMessage('LABEL_YOUR_EMAIL_HAS_BEEN_VERIFIED_WE_ARE_VERIFYING_YOUR_INFORMATION');`
		1353	`}`
		1354	`} else {`
		1355	`$this->logger->err('Verificación email - Ha ocurrido un error ', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);`
		1356
		1357	`$flashMessenger->addErrorMessage('ERROR_THERE_WAS_AN_ERROR');`
		1358	`}`
		1359	`}`
		1360	`} else {`
		1361	`$this->logger->err('Verificación email - El código no existe ', ['ip' => Functions::getUserIP()]);`
		1362
		1363	`$flashMessenger->addErrorMessage('ERROR_ACTIVATION_CODE_IS_NOT_VALID');`
		1364	`}`
		1365
		1366	`return $this->redirect()->toRoute('home');`
		1367	`} else {`
		1368	`$response = [`
		1369	`'success' => false,`
		1370	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1371	`];`
		1372	`}`
		1373
		1374	`return new JsonModel($response);`
		1375	`}`
		1376
		1377
		1378
		1379	`public function onroomAction()`
		1380	`{`
		1381	`$currentNetworkPlugin = $this->plugin('currentNetworkPlugin');`
		1382	`$currentNetwork = $currentNetworkPlugin->getNetwork();`
		1383
		1384
		1385
		1386	`$request = $this->getRequest();`
		1387
		1388	`if ($request->isPost()) {`
		1389
		1390	`$dataPost = $request->getPost()->toArray();`
		1391
		1392
		1393	`$form = new MoodleForm();`
		1394	`$form->setData($dataPost);`
		1395	`if ($form->isValid()) {`
		1396
		1397	`$dataPost = (array) $form->getData();`
		1398	`$username = $dataPost['username'];`
		1399	`$password = $dataPost['password'];`
		1400	`$timestamp = $dataPost['timestamp'];`
		1401	`$rand = $dataPost['rand'];`
		1402	`$data = $dataPost['data'];`
		1403
		1404	`$config_username = $this->config['leaderslinked.moodle.username'];`
		1405	`$config_password = $this->config['leaderslinked.moodle.password'];`
		1406	`$config_rsa_n = $this->config['leaderslinked.moodle.rsa_n'];`
		1407	`$config_rsa_d = $this->config['leaderslinked.moodle.rsa_d'];`
		1408	`$config_rsa_e = $this->config['leaderslinked.moodle.rsa_e'];`
		1409
		1410
		1411
		1412
		1413	`if (empty($username) \|\| empty($password) \|\| empty($timestamp) \|\| empty($rand) \|\| !is_integer($rand)) {`
		1414	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY1']);`
		1415	`exit;`
		1416	`}`
		1417
		1418	`if ($username != $config_username) {`
		1419	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY2']);`
		1420	`exit;`
		1421	`}`
		1422
		1423	`$dt = \DateTime::createFromFormat('Y-m-d\TH:i:s', $timestamp);`
		1424	`if (!$dt) {`
		1425	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY3']);`
		1426	`exit;`
		1427	`}`
		1428
		1429	`$t0 = $dt->getTimestamp();`
		1430	`$t1 = strtotime('-5 minutes');`
		1431	`$t2 = strtotime('+5 minutes');`
		1432
		1433	`if ($t0 < $t1 \|\| $t0 > $t2) {`
		1434	`//echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY4']) ;`
		1435	`//exit;`
		1436	`}`
		1437
		1438	`if (!password_verify($username . '-' . $config_password . '-' . $rand . '-' . $timestamp, $password)) {`
		1439	`echo json_encode(['success' => false, 'data' => 'ERROR_SECURITY5']);`
		1440	`exit;`
		1441	`}`
		1442
		1443	`if (empty($data)) {`
		1444	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS1']);`
		1445	`exit;`
		1446	`}`
		1447
		1448	`$data = base64_decode($data);`
		1449	`if (empty($data)) {`
		1450	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS2']);`
		1451	`exit;`
		1452	`}`
		1453
		1454
		1455	`try {`
		1456	`$rsa = Rsa::getInstance();`
		1457	`$data = $rsa->decrypt($data, $config_rsa_d, $config_rsa_n);`
		1458	`} catch (\Throwable $e) {`
		1459	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS3']);`
		1460	`exit;`
		1461	`}`
		1462
		1463	`$data = (array) json_decode($data);`
		1464	`if (empty($data)) {`
		1465	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS4']);`
		1466	`exit;`
		1467	`}`
		1468
		1469	`$email = isset($data['email']) ? Functions::sanitizeFilterString($data['email']) : '';`
		1470	`$first_name = isset($data['first_name']) ? Functions::sanitizeFilterString($data['first_name']) : '';`
		1471	`$last_name = isset($data['last_name']) ? Functions::sanitizeFilterString($data['last_name']) : '';`
		1472
		1473	`if (!filter_var($email, FILTER_VALIDATE_EMAIL) \|\| empty($first_name) \|\| empty($last_name)) {`
		1474	`echo json_encode(['success' => false, 'data' => 'ERROR_PARAMETERS5']);`
		1475	`exit;`
		1476	`}`
		1477
		1478	`$userMapper = UserMapper::getInstance($this->adapter);`
		1479	`$user = $userMapper->fetchOneByEmail($email);`
		1480	`if (!$user) {`
		1481
		1482
		1483	`$user = new User();`
		1484	`$user->network_id = $currentNetwork->id;`
		1485	`$user->blocked = User::BLOCKED_NO;`
		1486	`$user->email = $email;`
		1487	`$user->email_verified = User::EMAIL_VERIFIED_YES;`
		1488	`$user->first_name = $first_name;`
		1489	`$user->last_name = $last_name;`
		1490	`$user->login_attempt = 0;`
		1491	`$user->password = '-NO-PASSWORD-';`
		1492	`$user->usertype_id = UserType::USER;`
		1493	`$user->status = User::STATUS_ACTIVE;`
		1494	`$user->show_in_search = User::SHOW_IN_SEARCH_YES;`
		1495
		1496	`if ($userMapper->insert($user)) {`
		1497	`echo json_encode(['success' => false, 'data' => $userMapper->getError()]);`
		1498	`exit;`
		1499	`}`
		1500
		1501
		1502
		1503
		1504	`$filename = trim(isset($data['avatar_filename']) ? filter_var($data['avatar_filename'], FILTER_SANITIZE_EMAIL) : '');`
		1505	`$content = isset($data['avatar_content']) ? Functions::sanitizeFilterString($data['avatar_content']) : '';`
		1506
		1507	`if ($filename && $content) {`
		1508	`$source = sys_get_temp_dir() . DIRECTORY_SEPARATOR . $filename;`
		1509	`try {`
		1510	`file_put_contents($source, base64_decode($content));`
		1511	`if (file_exists($source)) {`
		1512	`$target_path = $this->config['leaderslinked.fullpath.user'] . $user->uuid;`
		1513	`list($target_width, $target_height) = explode('x', $this->config['leaderslinked.image_sizes.user_size']);`
		1514
		1515	`$target_filename = 'user-' . uniqid() . '.png';`
		1516	`$crop_to_dimensions = true;`
		1517
		1518	`if (!Image::uploadImage($source, $target_path, $target_filename, $target_width, $target_height, $crop_to_dimensions)) {`
		1519	`return new JsonModel([`
		1520	`'success' => false,`
		1521	`'data' => 'ERROR_THERE_WAS_AN_ERROR'`
		1522	`]);`
		1523	`}`
		1524
		1525	`$user->image = $target_filename;`
		1526	`$userMapper->updateImage($user);`
		1527	`}`
		1528	`} catch (\Throwable $e) {`
		1529	`} finally {`
		1530	`if (file_exists($source)) {`
		1531	`unlink($source);`
		1532	`}`
		1533	`}`
		1534	`}`
		1535	`}`
		1536
		1537	`$auth = new AuthEmailAdapter($this->adapter);`
		1538	`$auth->setData($email);`
		1539
		1540	`$result = $auth->authenticate();`
		1541	`if ($result->getCode() == AuthResult::SUCCESS) {`
		1542	`return $this->redirect()->toRoute('dashboard');`
		1543	`} else {`
		1544	`$message = $result->getMessages()[0];`
		1545	`if (!in_array($message, [`
		1546	`'ERROR_USER_NOT_FOUND', 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED', 'ERROR_USER_IS_BLOCKED',`
		1547	`'ERROR_USER_IS_INACTIVE', 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED', 'ERROR_ENTERED_PASS_INCORRECT_2',`
		1548	`'ERROR_ENTERED_PASS_INCORRECT_1'`
		1549	`])) {`
		1550	`}`
		1551
		1552	`switch ($message) {`
		1553	`case 'ERROR_USER_NOT_FOUND':`
		1554	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no existe', ['ip' => Functions::getUserIP()]);`
		1555	`break;`
		1556
		1557	`case 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED':`
		1558	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no verificado', ['ip' => Functions::getUserIP()]);`
		1559	`break;`
		1560
		1561	`case 'ERROR_USER_IS_BLOCKED':`
		1562	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		1563	`break;`
		1564
		1565	`case 'ERROR_USER_IS_INACTIVE':`
		1566	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario inactivo', ['ip' => Functions::getUserIP()]);`
		1567	`break;`
		1568
		1569
		1570	`case 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED':`
		1571	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 3er Intento Usuario bloqueado', ['ip' => Functions::getUserIP()]);`
		1572	`break;`
		1573
		1574
		1575	`case 'ERROR_ENTERED_PASS_INCORRECT_2':`
		1576	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 1er Intento', ['ip' => Functions::getUserIP()]);`
		1577	`break;`
		1578
		1579
		1580	`case 'ERROR_ENTERED_PASS_INCORRECT_1':`
		1581	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 2do Intento', ['ip' => Functions::getUserIP()]);`
		1582	`break;`
		1583
		1584
		1585	`default:`
		1586	`$message = 'ERROR_UNKNOWN';`
		1587	`$this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Error desconocido', ['ip' => Functions::getUserIP()]);`
		1588	`break;`
		1589	`}`
		1590
		1591
		1592
		1593
		1594	`return new JsonModel([`
		1595	`'success' => false,`
		1596	`'data' => $message`
		1597	`]);`
		1598	`}`
		1599	`} else {`
		1600	`$messages = [];`
		1601
		1602
		1603
		1604	`$form_messages = (array) $form->getMessages();`
		1605	`foreach ($form_messages as $fieldname => $field_messages) {`
		1606
		1607	`$messages[$fieldname] = array_values($field_messages);`
		1608	`}`
		1609
		1610	`return new JsonModel([`
		1611	`'success' => false,`
		1612	`'data' => $messages`
		1613	`]);`
		1614	`}`
		1615	`} else {`
		1616	`$data = [`
		1617	`'success' => false,`
		1618	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1619	`];`
		1620
		1621	`return new JsonModel($data);`
		1622	`}`
		1623
		1624	`return new JsonModel($data);`
		1625	`}`
		1626
		1627	`public function csrfAction()`
		1628	`{`
		1629	`$request = $this->getRequest();`
		1630	`if ($request->isGet()) {`
		1631
		1632	`$token = md5(uniqid('CSFR-' . mt_rand(), true));`
		1633	`$_SESSION['token'] = $token;`
		1634
		1635
		1636	`return new JsonModel([`
		1637	`'success' => true,`
		1638	`'data' => $token`
		1639	`]);`
		1640	`} else {`
		1641	`return new JsonModel([`
		1642	`'success' => false,`
		1643	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1644	`]);`
		1645	`}`
		1646	`}`
		1647
		1648	`public function impersonateAction()`
		1649	`{`
		1650	`$request = $this->getRequest();`
		1651	`if ($request->isGet()) {`
		1652	`$user_uuid = Functions::sanitizeFilterString($this->params()->fromQuery('user_uuid'));`
		1653	`$rand = filter_var($this->params()->fromQuery('rand'), FILTER_SANITIZE_NUMBER_INT);`
		1654	`$timestamp = filter_var($this->params()->fromQuery('time'), FILTER_SANITIZE_NUMBER_INT);`
		1655	`$password = Functions::sanitizeFilterString($this->params()->fromQuery('password'));`
		1656
		1657
		1658	`if (!$user_uuid \|\| !$rand \|\| !$timestamp \|\| !$password) {`
		1659	`throw new \Exception('ERROR_PARAMETERS_ARE_INVALID');`
		1660	`}`
		1661
		1662
		1663	`$currentUserPlugin = $this->plugin('currentUserPlugin');`
		1664	`$currentUserPlugin->clearIdentity();`
		1665
		1666
		1667	`$authAdapter = new AuthImpersonateAdapter($this->adapter, $this->config);`
		1668	`$authAdapter->setDataAdmin($user_uuid, $password, $timestamp, $rand);`
		1669
		1670	`$authService = new AuthenticationService();`
		1671	`$result = $authService->authenticate($authAdapter);`
		1672
		1673
		1674	`if ($result->getCode() == AuthResult::SUCCESS) {`
		1675	`return $this->redirect()->toRoute('dashboard');`
		1676	`} else {`
		1677	`throw new \Exception($result->getMessages()[0]);`
		1678	`}`
		1679	`}`
		1680
		1681	`return new JsonModel([`
		1682	`'success' => false,`
		1683	`'data' => 'ERROR_METHOD_NOT_ALLOWED'`
		1684	`]);`
		1685	`}`
		1686	`}`

Proyectos de Subversion LeadersLinked - Services

(root)/module/LeadersLinked/src/Controller/AuthController.php – Rev 29