WebSVN – LeadersLinked - Antes de SPA – Autoría – /module/LeadersLinked/src/Module.php

Rev	Autor	Línea Nro.	Línea
1	www	1	`<?php`
		2	`declare(strict_types=1);`
		3
		4	`namespace LeadersLinked;`
		5
		6	`use Laminas\Db\Adapter\AdapterInterface;`
		7	`use Laminas\Cache\Storage\Adapter\AbstractAdapter as CacheAdapter;`
		8	`use Laminas\ModuleManager\ModuleEvent;`
		9	`use Laminas\ModuleManager\ModuleManager;`
		10	`use Laminas\Mvc\MvcEvent;`
		11	`use Laminas\Config\Reader\Ini;`
		12	`use Laminas\Permissions\Acl\Acl;`
		13	`use Laminas\Permissions\Acl\Role\GenericRole;`
		14	`use LeadersLinked\Plugin\CurrentUserPlugin;`
		15	`use LeadersLinked\Model\Company;`
		16	`use LeadersLinked\Mapper\UserMapper;`
		17	`use LeadersLinked\Authentication\AuthTokenAdapter;`
		18	`use Laminas\Authentication\AuthenticationService;`
		19	`use Laminas\Permissions\Acl\Resource\GenericResource;`
		20	`use LeadersLinked\Model\UserType;`
		21
		22	`class Module`
		23	`{`
		24
		25	`/**`
		26	`*`
		27	`* @var boolean`
		28	`*/`
		29	`private $isJson;`
		30
		31	`/**`
		32	`*`
		33	`* @var boolean`
		34	`*/`
		35	`private $isHtml;`
		36
		37	`/**`
		38	`*`
		39	`* @var Acl`
		40	`*/`
		41	`private $acl;`
		42
		43	`/**`
		44	`*`
		45	`* @var Company`
		46	`*/`
		47	`private $company;`
		48
		49	`/**`
		50	`*`
		51	`* @var AdapterInterface`
		52	`*/`
		53	`private $adapter;`
		54
		55
		56	`/**`
		57	`*`
		58	`* @var CacheAdapter`
		59	`*/`
		60	`private $cache;`
		61
		62	`/**`
		63	`*`
		64	`* @var CurrentUserPlugin`
		65	`*/`
		66	`private $currentUser;`
		67
		68
		69	`/**`
		70	`*`
		71	`* @var array`
		72	`*/`
		73	`private $routesAuthorized = [];`
		74
		75	`/**`
		76	`*`
		77	`* @var boolean`
		78	`*/`
		79	`private $authByHeaders = false;`
		80
		81	`public function init(ModuleManager $moduleManager)`
		82	`{`
		83	`$events = $moduleManager->getEventManager();`
		84	`$events->attach(ModuleEvent::EVENT_MERGE_CONFIG, array($this, 'onMergeConfig'));`
		85	`}`
		86
		87	`public function onMergeConfig(ModuleEvent $event)`
		88	`{`
		89	`$configListener = $event->getConfigListener();`
		90	`$config = $configListener->getMergedConfig(false);`
		91
		92	`$reader = new Ini();`
		93	`$data = $reader->fromFile('config/leaderslinked.ini');`
		94
		95	`$prefix = 'leaderslinked';`
		96	`foreach($data as $section => $pairs)`
		97	`{`
		98	`foreach($pairs as $key => $value)`
		99	`{`
		100	`$config[$prefix . '.' . $section . '.' . $key] = $value;`
		101	`}`
		102	`}`
		103	`$configListener->setMergedConfig($config);`
		104	`}`
		105
		106
		107	`public function getConfig() : array`
		108	`{`
		109	`return include __DIR__ . '/../config/module.config.php';`
		110	`}`
		111
		112	`public function onBootstrap(MvcEvent $event)`
		113	`{`
		114	`$serviceManager = $event->getApplication()->getServiceManager();`
		115	`$adapter = $serviceManager->get('leaders-linked-db');`
		116	`// $logger = $serviceManager->get('Zend\Log\Logger');`
		117
		118
		119	`$session = $serviceManager->get('leaders-linked-session');`
		120	`$session->start();`
		121
		122
		123	`$translator = $serviceManager->get('MvcTranslator');`
		124	`$translator->addTranslationFile(`
		125	`'phpArray',`
		126	`__DIR__ . '/i18n/validate.php',`
		127	`'default'`
		128	`);`
		129
		130	`$translator->addTranslationFile(`
		131	`'phpArray',`
		132	`__DIR__ . '/i18n/spanish.php',`
		133	`'default'`
		134	`);`
		135
		136	`\Laminas\Validator\AbstractValidator::setDefaultTranslator($translator);`
		137
		138
		139	`$headers = $event->getRequest()->getHeaders();`
		140	`if($headers->has('Accept')) {`
		141	`$accept = $headers->get('Accept');`
		142	`$prioritized = $accept->getPrioritized();`
		143
		144	`foreach($prioritized as $key => $value) {`
		145	`$raw = trim($value->getRaw());`
		146
		147	`if(!$this->isJson) {`
		148	`$this->isJson = strpos($raw, 'json');`
		149	`}`
		150
		151	`}`
		152	`} else {`
		153	`$accept = '';`
		154	`}`
		155	`if($headers->has('token')) {`
		156	`$device_uuid = filter_var($headers->get('token')->getFieldValue(), FILTER_SANITIZE_STRING);`
		157	`} else {`
		158	`$device_uuid = '';`
		159	`}`
		160	`if($headers->has('secret')) {`
		161	`$password = filter_var($headers->get('secret')->getFieldValue(), FILTER_SANITIZE_STRING);`
		162	`} else {`
		163	`$password = '';`
		164	`}`
		165	`if($headers->has('rand')) {`
		166	`$rand = filter_var($headers->get('rand')->getFieldValue(), FILTER_SANITIZE_NUMBER_INT);`
		167	`} else {`
		168	`$rand = 0;`
		169	`}`
		170	`if($headers->has('created')) {`
		171	`$timestamp = filter_var($headers->get('created')->getFieldValue(), FILTER_SANITIZE_STRING);`
		172	`} else {`
		173	`$timestamp = 0;`
		174	`}`
		175
		176
		177	`$this->authByHeaders = false;`
		178	`if($device_uuid && $password && $rand && $timestamp) {`
		179	`$this->authByHeaders = true;`
		180
		181
		182	`$this->isJson = true;`
		183
		184	`$tokenAuthAdapter = new AuthTokenAdapter($adapter);`
		185	`$tokenAuthAdapter->setData($device_uuid, $password, $timestamp, $rand);`
		186
		187	`$authService = new AuthenticationService();`
		188	`$result = $authService->authenticate($tokenAuthAdapter);`
		189	`if($result->getCode() != \Laminas\Authentication\Result::SUCCESS) {`
		190	`$response = $event->getResponse();`
		191
		192	`$this->sendResponse($response, ['success' => false, 'data' => $result->getMessages()[0], 'fatal' => true]);`
		193	`}`
210	efrain	194
		195
		196
		197
		198
1	www	199	`}`
		200
210	efrain	201
1	www	202
		203
210	efrain	204
1	www	205	`$this->isHtml = $this->isJson ? false : true;`
		206	`$this->currentUser = new CurrentUserPlugin($adapter);`
		207	`$this->initAcl($event);`
		208	`$eventManager = $event->getApplication()->getEventManager();`
		209	`$eventManager->attach(MvcEvent::EVENT_DISPATCH_ERROR, [$this,'onDispatchError'], 0);`
		210	`$eventManager->attach(MvcEvent::EVENT_RENDER_ERROR, [$this,'onRenderError'], 0);`
		211
		212	`$sharedManager = $eventManager->getSharedManager();`
		213	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPreDispatch'], 100);`
		214	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPosDispatch'], -100);`
		215	`}`
		216
		217	`public function initAcl(MvcEvent $event)`
		218	`{`
		219
		220	`require_once (dirname(__DIR__) . DIRECTORY_SEPARATOR . 'config' . DIRECTORY_SEPARATOR . 'acl.config.php');`
		221
		222
		223	`$this->acl = new Acl();`
		224	`$resources = getAclResources();`
		225	`foreach($resources as $resourceName)`
		226	`{`
		227	`$this->acl->addResource(new GenericResource($resourceName));`
		228	`}`
		229
		230	`$usertypes = getAclUsertype();`
		231	`foreach($usertypes as $usertype => $resources)`
		232	`{`
		233	`$this->acl->addRole(new GenericRole($usertype));`
		234	`foreach ($resources as $resourceName)`
		235	`{`
		236	`$this->acl->allow($usertype, $resourceName);`
		237	`}`
		238	`}`
		239
		240	`$event->getViewModel()->setVariable('acl', $this->acl);`
		241
		242	`}`
		243
		244	`public function onDispatchError(MvcEvent $event)`
		245	`{`
		246	`$this->processError($event);`
		247	`}`
		248
		249	`public function onRenderError(MvcEvent $event)`
		250	`{`
		251	`$this->processError($event);`
		252	`}`
		253
		254	`public function sendResponse(\Laminas\Http\Response $response, $data)`
		255	`{`
		256
		257
		258	`if($this->isJson) {`
		259	`$headers = $response->getHeaders();`
		260	`$headers->clearHeaders();`
		261	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		262
		263	`$response->setStatusCode(200);`
		264	`$response->setContent(json_encode($data));`
		265	`$response->send();`
		266
		267
		268	`error_log(print_r($data, true));`
		269
		270	`} else {`
		271	`throw new \Exception($data['data']);`
		272	`}`
		273	`exit;`
		274	`}`
		275
		276	`public function processError(MvcEvent $event)`
		277	`{`
		278
		279	`$request = $event->getRequest();`
		280	`if((method_exists($request, 'isXmlHttpRequest') && $request->isXmlHttpRequest()) \|\| ($this->isJson && !$this->isHtml)) {`
		281
		282	`$error = $event->getError();`
		283	`if (!$error) {`
		284	`return;`
		285	`}`
		286
		287	`$response = $event->getResponse();`
		288
		289	`if('error-exception' == $error) {`
		290	`$exception = $event->getParam('exception');`
		291	`error_log($exception->getCode() . ' ' . $exception->getMessage());`
		292	`error_log($exception->getTraceAsString());`
		293
		294
		295	`$data = [`
		296	`'success' => false,`
		297	`'data' => 'An error occurred during execution; please try again later.'`
		298	`];`
		299
		300	`} else if('error-router-no-match' == $error) {`
		301	`$data = [`
		302	`'success' => false,`
		303	`'data' => 'Resource not found.'`
		304
		305	`];`
		306	`} else if(' error-controller-not-found' == $error) {`
		307	`$data = [`
		308	`'success' => false,`
		309	`'data' => 'Controller not found.'`
		310
		311	`];`
		312	`} else {`
		313	`$data = [`
		314	`'success' => false,`
		315	`'data' => 'Unknow error.' , 'error' => $error`
		316
		317	`];`
		318	`}`
		319
		320	`$this->sendResponse($response, $data);`
		321	`}`
		322
		323	`$this->initAcl($event);`
		324	`}`
		325
		326
		327	`public function authPreDispatch(MvcEvent $event)`
		328	`{`
210	efrain	329
		330
		331
		332
1	www	333	`$serviceManager = $event->getApplication()->getServiceManager();`
		334	`$adapter = $serviceManager->get('leaders-linked-db');`
		335
210	efrain	336	`$routeName = $event->getRouteMatch()->getMatchedRouteName();`
		337
1	www	338
210	efrain	339	`$requestMethod = isset($_SERVER['REQUEST_METHOD']) ? trim(strtoupper($_SERVER['REQUEST_METHOD'])) : '';`
		340
		341	`if($requestMethod == 'POST' \|\| $requestMethod == 'PUT' \|\| $requestMethod == 'DELETE') {`
		342
		343
1323	efrain	344	`if($this->authByHeaders && substr($routeName, 0, 8) == 'services') {`
		345	`$exclude = true;`
		346	`} else {`
		347	`$exclude = false;`
		348
		349	`$usertypes = getAclUsertype();`
		350
		351
		352	`foreach($usertypes[UserType::GUEST] as $resourceName)`
		353	`{`
		354	`if($routeName == $resourceName) {`
		355	`$exclude = true;`
		356	`break;`
		357	`}`
210	efrain	358	`}`
		359	`}`
		360
		361	`if(!$exclude) {`
		362	`$httpToken = isset($_SERVER['HTTP_X_CSRF_TOKEN']) ? $_SERVER['HTTP_X_CSRF_TOKEN'] : '';`
		363	`$sessionToken = isset($_SESSION['token']) ? $_SESSION['token'] : uniqid();`
		364
		365	`unset($_SESSION['token']);`
		366	`if ( $httpToken != $sessionToken) {`
		367	`header("HTTP/1.1 401 Unauthorized");`
		368	`exit;`
		369	`}`
		370
		371	`}`
		372	`}`
		373
		374
		375
1	www	376	`if($this->currentUser->hasIdentity()) {`
		377	`$user = $this->currentUser->getUser();`
		378	`$userTypeId = $user->usertype_id;`
		379
		380
		381	`} else {`
		382
		383	`$userTypeId = UserType::GUEST;`
		384	`}`
		385
210	efrain	386
1	www	387	`if($this->acl->isAllowed($userTypeId, $routeName)) {`
		388	`$user = $this->currentUser->getUser();`
210	efrain	389
1	www	390
		391	`if($user) {`
		392	`$userMapper = UserMapper::getInstance($adapter);`
		393	`$userMapper->updateLastActivity($user->id);`
		394	`}`
		395
		396	`} else {`
210	efrain	397
1	www	398	`if($this->authByHeaders) {`
		399	`$response = $event->getResponse();`
		400	`$headers = $response->getHeaders();`
		401	`$headers->clearHeaders();`
		402	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		403
		404	`$response->setStatusCode(401);`
		405	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		406	`$response->send();`
		407	`exit;`
		408
210	efrain	409	`}`
1	www	410
		411
		412	`//print_r($this->routesAuthorized);`
		413	`// echo 'sin permiso'; exit;`
		414
		415
		416	`$this->currentUser->clearIdentity();`
		417
		418
		419	`if($this->isJson) {`
		420	`$response = $event->getResponse();`
		421	`$headers = $response->getHeaders();`
		422	`$headers->clearHeaders();`
		423	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		424
		425	`$response->setStatusCode(200);`
		426	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		427	`$response->send();`
		428	`} else {`
		429	`$url = $event->getRouter()->assemble([], ['name' => 'signout']);`
		430
		431	`$response = $event->getResponse();`
		432	`$headers = $response->getHeaders();`
		433	`$headers->clearHeaders();`
		434	`$headers->addHeaderLine('Location', $url);`
		435
		436	`$response->setStatusCode(302);`
		437	`$response->send();`
		438	`}`
		439	`exit;`
		440	`}`
		441
		442
		443	`}`
		444
		445
		446	`public function authPosDispatch(MvcEvent $event)`
		447	`{`
		448
		449	`}`
		450
		451
		452	`}`

Proyectos de Subversion LeadersLinked - Antes de SPA

(root)/module/LeadersLinked/src/Module.php – Rev 1323