WebSVN – LeadersLinked - Antes de SPA – Autoría – /module/LeadersLinked/src/Module.php

Rev	Autor	Línea Nro.	Línea
1	www	1	`<?php`
		2	`declare(strict_types=1);`
		3
		4	`namespace LeadersLinked;`
		5
		6	`use Laminas\Db\Adapter\AdapterInterface;`
		7	`use Laminas\Cache\Storage\Adapter\AbstractAdapter as CacheAdapter;`
		8	`use Laminas\ModuleManager\ModuleEvent;`
		9	`use Laminas\ModuleManager\ModuleManager;`
		10	`use Laminas\Mvc\MvcEvent;`
		11	`use Laminas\Config\Reader\Ini;`
		12	`use Laminas\Permissions\Acl\Acl;`
		13	`use Laminas\Permissions\Acl\Role\GenericRole;`
		14	`use LeadersLinked\Plugin\CurrentUserPlugin;`
		15	`use LeadersLinked\Model\Company;`
		16	`use LeadersLinked\Mapper\UserMapper;`
		17	`use LeadersLinked\Authentication\AuthTokenAdapter;`
		18	`use Laminas\Authentication\AuthenticationService;`
		19	`use Laminas\Permissions\Acl\Resource\GenericResource;`
		20	`use LeadersLinked\Model\UserType;`
3639	efrain	21	`use LeadersLinked\Plugin\CurrentNetworkPlugin;`
		22	`use LeadersLinked\Model\Network;`
		23	`use LeadersLinked\Model\User;`
		24	`use LeadersLinked\Mapper\CompanyUserMapper;`
		25	`use LeadersLinked\Model\CompanyUser;`
		26	`use LeadersLinked\Mapper\CompanyMapper;`
1	www	27
		28	`class Module`
		29	`{`
		30
		31	`/**`
		32	`*`
		33	`* @var boolean`
		34	`*/`
		35	`private $isJson;`
		36
		37	`/**`
		38	`*`
		39	`* @var boolean`
		40	`*/`
		41	`private $isHtml;`
		42
		43	`/**`
		44	`*`
		45	`* @var Acl`
		46	`*/`
		47	`private $acl;`
		48
3639	efrain	49
1	www	50
		51	`/**`
		52	`*`
		53	`* @var AdapterInterface`
		54	`*/`
		55	`private $adapter;`
		56
		57
		58	`/**`
		59	`*`
		60	`* @var CacheAdapter`
		61	`*/`
		62	`private $cache;`
		63
		64	`/**`
		65	`*`
		66	`* @var CurrentUserPlugin`
		67	`*/`
3639	efrain	68	`private $currentUserPlugin;`
1	www	69
		70
		71	`/**`
3639	efrain	72	`*`
		73	`* @var CurrentNetworkPlugin`
		74	`*/`
		75	`private $currentNetworkPlugin;`
		76
		77
		78	`/**`
1	www	79	`*`
		80	`* @var array`
		81	`*/`
		82	`private $routesAuthorized = [];`
		83
		84	`/**`
		85	`*`
		86	`* @var boolean`
		87	`*/`
		88	`private $authByHeaders = false;`
		89
		90	`public function init(ModuleManager $moduleManager)`
		91	`{`
		92	`$events = $moduleManager->getEventManager();`
		93	`$events->attach(ModuleEvent::EVENT_MERGE_CONFIG, array($this, 'onMergeConfig'));`
		94	`}`
		95
		96	`public function onMergeConfig(ModuleEvent $event)`
		97	`{`
		98	`$configListener = $event->getConfigListener();`
		99	`$config = $configListener->getMergedConfig(false);`
		100
		101	`$reader = new Ini();`
		102	`$data = $reader->fromFile('config/leaderslinked.ini');`
		103
		104	`$prefix = 'leaderslinked';`
		105	`foreach($data as $section => $pairs)`
		106	`{`
		107	`foreach($pairs as $key => $value)`
		108	`{`
		109	`$config[$prefix . '.' . $section . '.' . $key] = $value;`
		110	`}`
		111	`}`
		112	`$configListener->setMergedConfig($config);`
		113	`}`
		114
		115
		116	`public function getConfig() : array`
		117	`{`
		118	`return include __DIR__ . '/../config/module.config.php';`
		119	`}`
		120
		121	`public function onBootstrap(MvcEvent $event)`
		122	`{`
		123	`$serviceManager = $event->getApplication()->getServiceManager();`
		124	`$adapter = $serviceManager->get('leaders-linked-db');`
		125	`// $logger = $serviceManager->get('Zend\Log\Logger');`
		126
		127
		128	`$session = $serviceManager->get('leaders-linked-session');`
		129	`$session->start();`
		130
		131
		132	`$translator = $serviceManager->get('MvcTranslator');`
		133	`$translator->addTranslationFile(`
		134	`'phpArray',`
		135	`__DIR__ . '/i18n/validate.php',`
		136	`'default'`
		137	`);`
		138
		139	`$translator->addTranslationFile(`
		140	`'phpArray',`
		141	`__DIR__ . '/i18n/spanish.php',`
		142	`'default'`
		143	`);`
		144
		145	`\Laminas\Validator\AbstractValidator::setDefaultTranslator($translator);`
		146
		147
		148	`$headers = $event->getRequest()->getHeaders();`
		149	`if($headers->has('Accept')) {`
		150	`$accept = $headers->get('Accept');`
		151	`$prioritized = $accept->getPrioritized();`
		152
		153	`foreach($prioritized as $key => $value) {`
		154	`$raw = trim($value->getRaw());`
		155
		156	`if(!$this->isJson) {`
		157	`$this->isJson = strpos($raw, 'json');`
		158	`}`
		159
		160	`}`
		161	`} else {`
		162	`$accept = '';`
		163	`}`
		164	`if($headers->has('token')) {`
		165	`$device_uuid = filter_var($headers->get('token')->getFieldValue(), FILTER_SANITIZE_STRING);`
		166	`} else {`
		167	`$device_uuid = '';`
		168	`}`
		169	`if($headers->has('secret')) {`
		170	`$password = filter_var($headers->get('secret')->getFieldValue(), FILTER_SANITIZE_STRING);`
		171	`} else {`
		172	`$password = '';`
		173	`}`
		174	`if($headers->has('rand')) {`
		175	`$rand = filter_var($headers->get('rand')->getFieldValue(), FILTER_SANITIZE_NUMBER_INT);`
		176	`} else {`
		177	`$rand = 0;`
		178	`}`
		179	`if($headers->has('created')) {`
		180	`$timestamp = filter_var($headers->get('created')->getFieldValue(), FILTER_SANITIZE_STRING);`
		181	`} else {`
		182	`$timestamp = 0;`
		183	`}`
		184
		185
3639	efrain	186
		187
		188	`$this->currentNetworkPlugin = new CurrentNetworkPlugin($adapter);`
		189	`if(!$this->currentNetworkPlugin->hasNetwork()) {`
		190	`echo '2';`
		191	`exit;`
		192	`header("HTTP/1.1 401 Unauthorized - Private network - not found");`
		193	`exit;`
		194	`}`
		195
		196	`if($this->currentNetworkPlugin->getNetwork()->status == Network::STATUS_INACTIVE) {`
		197	`echo '3';`
		198	`exit;`
		199	`header("HTTP/1.1 401 Unauthorized - Private network - inactive");`
		200	`exit;`
		201	`}`
		202
		203
1	www	204	`$this->authByHeaders = false;`
		205	`if($device_uuid && $password && $rand && $timestamp) {`
		206	`$this->authByHeaders = true;`
		207
		208
		209	`$this->isJson = true;`
		210
		211	`$tokenAuthAdapter = new AuthTokenAdapter($adapter);`
		212	`$tokenAuthAdapter->setData($device_uuid, $password, $timestamp, $rand);`
		213
		214	`$authService = new AuthenticationService();`
		215	`$result = $authService->authenticate($tokenAuthAdapter);`
		216	`if($result->getCode() != \Laminas\Authentication\Result::SUCCESS) {`
		217	`$response = $event->getResponse();`
		218
		219	`$this->sendResponse($response, ['success' => false, 'data' => $result->getMessages()[0], 'fatal' => true]);`
		220	`}`
210	efrain	221
		222
		223
		224
		225
1	www	226	`}`
3639	efrain	227
1	www	228
3639	efrain	229
		230	`if(empty($_SERVER['REDIRECT_URL'])) {`
		231	`if(empty($_SERVER['REQUEST_URI'])) {`
		232	`$routeName = '';`
		233
		234	`} else {`
		235	`$routeName = $_SERVER['REQUEST_URI'];`
		236	`}`
		237
		238	`} else {`
		239	`$routeName = $_SERVER['REDIRECT_URL'];`
		240
		241	`}`
		242
210	efrain	243
3639	efrain	244	`$routeName = strtolower(trim($routeName));`
		245	`if(strlen($routeName) > 0 && substr($routeName, 0, 1) == '/') {`
		246	`$routeName = substr($routeName, 1);`
		247	`}`
1	www	248
3639	efrain	249	`$this->isHtml = $this->isJson ? false : true;`
		250	`$this->currentUserPlugin = new CurrentUserPlugin($adapter);`
1	www	251
210	efrain	252
3639	efrain	253	`if($this->authByHeaders && substr($routeName, 0, 8) == 'services') {`
		254	`$checkUserForNetwork = false;`
		255	`} else {`
		256	`if($this->currentUserPlugin->hasIdentity()) {`
		257
		258	`$checkUserForNetwork = true;`
		259	`} else {`
		260	`$checkUserForNetwork = false;`
		261	`}`
		262	`}`
		263
		264	`if($checkUserForNetwork) {`
		265	`if(!$routeName \|\| in_array($routeName, ['signout', 'signin', 'home'])) {`
		266	`$checkUserForNetwork = false;`
		267	`}`
		268	`}`
		269
		270	`if($checkUserForNetwork) {`
		271
		272
		273
		274	`if($this->currentUserPlugin->getUser()->network_id != $this->currentNetworkPlugin->getNetworkId()) {`
		275	`header("HTTP/1.1 401 Unauthorized - The user is not part of this private network");`
		276	`exit;`
		277	`}`
		278	`}`
		279
		280
		281
1	www	282	`$this->initAcl($event);`
		283	`$eventManager = $event->getApplication()->getEventManager();`
		284	`$eventManager->attach(MvcEvent::EVENT_DISPATCH_ERROR, [$this,'onDispatchError'], 0);`
		285	`$eventManager->attach(MvcEvent::EVENT_RENDER_ERROR, [$this,'onRenderError'], 0);`
		286
		287	`$sharedManager = $eventManager->getSharedManager();`
		288	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPreDispatch'], 100);`
		289	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPosDispatch'], -100);`
		290	`}`
		291
		292	`public function initAcl(MvcEvent $event)`
		293	`{`
		294
3639	efrain	295	`$serviceManager = $event->getApplication()->getServiceManager();`
		296	`$adapter = $serviceManager->get('leaders-linked-db');`
		297
		298
1	www	299	`require_once (dirname(__DIR__) . DIRECTORY_SEPARATOR . 'config' . DIRECTORY_SEPARATOR . 'acl.config.php');`
		300
		301
		302	`$this->acl = new Acl();`
		303	`$resources = getAclResources();`
1979	efrain	304
1	www	305	`foreach($resources as $resourceName)`
		306	`{`
		307	`$this->acl->addResource(new GenericResource($resourceName));`
		308	`}`
		309
		310	`$usertypes = getAclUsertype();`
		311	`foreach($usertypes as $usertype => $resources)`
		312	`{`
		313	`$this->acl->addRole(new GenericRole($usertype));`
		314	`foreach ($resources as $resourceName)`
		315	`{`
		316	`$this->acl->allow($usertype, $resourceName);`
		317	`}`
		318	`}`
		319
3639	efrain	320
		321
		322
		323	`if($this->currentUserPlugin->hasIdentity() && $this->currentUserPlugin->getUser()->is_super_user == User::IS_SUPER_USER_YES) {`
		324
		325	`$resources = getAclSuperAdmin();`
		326	`foreach($resources as $resourceName)`
		327	`{`
		328	`$this->acl->allow(UserType::ADMIN, $resourceName);`
		329	`}`
		330	`}`
		331
		332
		333	`if($this->currentNetworkPlugin->getNetwork()->default == Network::DEFAULT_YES) {`
		334
		335	`$usertypes = getAclUsertypeDefaultNetwork();`
		336	`foreach($usertypes as $usertype => $resources)`
		337	`{`
		338
		339	`foreach ($resources as $resourceName)`
		340	`{`
		341	`$this->acl->allow($usertype, $resourceName);`
		342	`}`
		343	`}`
		344
		345
		346	`} else {`
		347
3645	efrain	348	`if($this->currentUserPlugin->hasIdentity()) {`
3639	efrain	349
3645	efrain	350	`$companyMapper = CompanyMapper::getInstance($adapter);`
		351	`$company = $companyMapper->fetchDefaultForNetworkByNetworkId($this->currentNetworkPlugin->getNetwork()->id);`
		352	`if($company) {`
		353	`$companyUserMapper = CompanyUserMapper::getInstance($adapter);`
		354	`$companyUser = $companyUserMapper->fetchOneByCompanyIdAndUserId($this->company->id, $this->currentUserPlugin->getUserId());`
3639	efrain	355
3645	efrain	356	`if($companyUser) {`
		357	`$usertype = $this->currentUserPlugin->getUserTypeId();`
3639	efrain	358
3645	efrain	359	`if($companyUser->creator == CompanyUser::CREATOR_YES) {`
		360
		361	`$resources = getAclUsertypeOtherNetworkCreator();`
		362	`foreach($resources as $resourceName)`
		363	`{`
		364	`$this->acl->allow($usertype, $resourceName);`
		365	`}`
		366
3639	efrain	367	`}`
3645	efrain	368	`if($companyUser->creator == CompanyUser::CREATOR_NO) {`
		369	`$resources = getAclUsertypeOtherNetworkNonCreator();`
		370	`foreach($resources as $resourceName)`
		371	`{`
		372	`$this->acl->allow($usertype, $resourceName);`
		373	`}`
3639	efrain	374	`}`
		375	`}`
		376	`}`
		377	`}`
		378	`}`
		379
		380
1	www	381	`$event->getViewModel()->setVariable('acl', $this->acl);`
		382
		383	`}`
		384
		385	`public function onDispatchError(MvcEvent $event)`
		386	`{`
		387	`$this->processError($event);`
		388	`}`
		389
		390	`public function onRenderError(MvcEvent $event)`
		391	`{`
		392	`$this->processError($event);`
		393	`}`
		394
		395	`public function sendResponse(\Laminas\Http\Response $response, $data)`
		396	`{`
		397
		398
		399	`if($this->isJson) {`
		400	`$headers = $response->getHeaders();`
		401	`$headers->clearHeaders();`
		402	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		403
		404	`$response->setStatusCode(200);`
		405	`$response->setContent(json_encode($data));`
		406	`$response->send();`
		407
		408	`} else {`
		409	`throw new \Exception($data['data']);`
		410	`}`
		411	`exit;`
		412	`}`
		413
		414	`public function processError(MvcEvent $event)`
		415	`{`
		416
		417	`$request = $event->getRequest();`
		418	`if((method_exists($request, 'isXmlHttpRequest') && $request->isXmlHttpRequest()) \|\| ($this->isJson && !$this->isHtml)) {`
		419
		420	`$error = $event->getError();`
		421	`if (!$error) {`
		422	`return;`
		423	`}`
		424
		425	`$response = $event->getResponse();`
		426
		427	`if('error-exception' == $error) {`
		428	`$exception = $event->getParam('exception');`
		429	`error_log($exception->getCode() . ' ' . $exception->getMessage());`
		430	`error_log($exception->getTraceAsString());`
		431
		432
		433	`$data = [`
		434	`'success' => false,`
		435	`'data' => 'An error occurred during execution; please try again later.'`
		436	`];`
		437
		438	`} else if('error-router-no-match' == $error) {`
		439	`$data = [`
		440	`'success' => false,`
		441	`'data' => 'Resource not found.'`
		442
		443	`];`
		444	`} else if(' error-controller-not-found' == $error) {`
		445	`$data = [`
		446	`'success' => false,`
		447	`'data' => 'Controller not found.'`
		448
		449	`];`
		450	`} else {`
		451	`$data = [`
		452	`'success' => false,`
		453	`'data' => 'Unknow error.' , 'error' => $error`
		454
		455	`];`
		456	`}`
		457
		458	`$this->sendResponse($response, $data);`
		459	`}`
		460
		461	`$this->initAcl($event);`
		462	`}`
		463
		464
		465	`public function authPreDispatch(MvcEvent $event)`
		466	`{`
210	efrain	467
		468
		469
		470
1	www	471	`$serviceManager = $event->getApplication()->getServiceManager();`
		472	`$adapter = $serviceManager->get('leaders-linked-db');`
		473
210	efrain	474	`$routeName = $event->getRouteMatch()->getMatchedRouteName();`
		475
1	www	476
210	efrain	477	`$requestMethod = isset($_SERVER['REQUEST_METHOD']) ? trim(strtoupper($_SERVER['REQUEST_METHOD'])) : '';`
		478
		479	`if($requestMethod == 'POST' \|\| $requestMethod == 'PUT' \|\| $requestMethod == 'DELETE') {`
		480
1979	efrain	481
1323	efrain	482	`if($this->authByHeaders && substr($routeName, 0, 8) == 'services') {`
		483	`$exclude = true;`
		484	`} else {`
		485	`$exclude = false;`
		486
		487	`$usertypes = getAclUsertype();`
		488
		489
		490	`foreach($usertypes[UserType::GUEST] as $resourceName)`
		491	`{`
		492	`if($routeName == $resourceName) {`
		493	`$exclude = true;`
		494	`break;`
		495	`}`
210	efrain	496	`}`
		497	`}`
1979	efrain	498
210	efrain	499	`if(!$exclude) {`
		500	`$httpToken = isset($_SERVER['HTTP_X_CSRF_TOKEN']) ? $_SERVER['HTTP_X_CSRF_TOKEN'] : '';`
		501	`$sessionToken = isset($_SESSION['token']) ? $_SESSION['token'] : uniqid();`
		502
		503	`unset($_SESSION['token']);`
		504	`if ( $httpToken != $sessionToken) {`
		505	`header("HTTP/1.1 401 Unauthorized");`
		506	`exit;`
		507	`}`
		508
		509	`}`
		510	`}`
		511
		512
		513
3639	efrain	514	`if($this->currentUserPlugin->hasIdentity()) {`
		515	`$user = $this->currentUserPlugin->getUser();`
1	www	516	`$userTypeId = $user->usertype_id;`
		517
		518
		519	`} else {`
		520
		521	`$userTypeId = UserType::GUEST;`
		522	`}`
		523
210	efrain	524
1	www	525	`if($this->acl->isAllowed($userTypeId, $routeName)) {`
3639	efrain	526	`$user = $this->currentUserPlugin->getUser();`
210	efrain	527
1	www	528
		529	`if($user) {`
3086	efrain	530
		531	`$updateLastActivity = true;`
		532	`if ('chat' == substr($routeName, 0, 4)) {`
		533	`$updateLastActivity = false;`
		534	`}`
		535	`if ('inmail' == substr($routeName, 0, 6)) {`
		536	`$updateLastActivity = false;`
		537	`}`
		538	`if ('check-session' == $routeName) {`
		539	`$updateLastActivity = false;`
		540	`}`
		541
		542
		543	`if($updateLastActivity) {`
		544	`$userMapper = UserMapper::getInstance($adapter);`
		545	`$userMapper->updateLastActivity($user->id);`
		546	`}`
1	www	547	`}`
		548
		549	`} else {`
210	efrain	550
1	www	551	`if($this->authByHeaders) {`
		552	`$response = $event->getResponse();`
		553	`$headers = $response->getHeaders();`
		554	`$headers->clearHeaders();`
		555	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		556
		557	`$response->setStatusCode(401);`
		558	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		559	`$response->send();`
		560	`exit;`
		561
210	efrain	562	`}`
1	www	563
		564
		565	`//print_r($this->routesAuthorized);`
		566	`// echo 'sin permiso'; exit;`
		567
		568
3639	efrain	569	`$this->currentUserPlugin->clearIdentity();`
1	www	570
		571
		572	`if($this->isJson) {`
		573	`$response = $event->getResponse();`
		574	`$headers = $response->getHeaders();`
		575	`$headers->clearHeaders();`
		576	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		577
		578	`$response->setStatusCode(200);`
		579	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		580	`$response->send();`
		581	`} else {`
		582	`$url = $event->getRouter()->assemble([], ['name' => 'signout']);`
		583
		584	`$response = $event->getResponse();`
		585	`$headers = $response->getHeaders();`
		586	`$headers->clearHeaders();`
		587	`$headers->addHeaderLine('Location', $url);`
		588
		589	`$response->setStatusCode(302);`
		590	`$response->send();`
		591	`}`
		592	`exit;`
		593	`}`
		594
		595
		596	`}`
		597
		598
		599	`public function authPosDispatch(MvcEvent $event)`
		600	`{`
		601
		602	`}`
		603
		604
		605	`}`

Proyectos de Subversion LeadersLinked - Antes de SPA

(root)/module/LeadersLinked/src/Module.php – Rev 3645