WebSVN – LeadersLinked - Antes de SPA – Autoría – /module/LeadersLinked/src/Module.php

Rev	Autor	Línea Nro.	Línea
1	www	1	`<?php`
		2	`declare(strict_types=1);`
		3
		4	`namespace LeadersLinked;`
		5
		6	`use Laminas\Db\Adapter\AdapterInterface;`
		7	`use Laminas\ModuleManager\ModuleEvent;`
		8	`use Laminas\ModuleManager\ModuleManager;`
		9	`use Laminas\Mvc\MvcEvent;`
		10	`use Laminas\Config\Reader\Ini;`
		11	`use Laminas\Permissions\Acl\Acl;`
		12	`use Laminas\Permissions\Acl\Role\GenericRole;`
		13	`use LeadersLinked\Plugin\CurrentUserPlugin;`
		14	`use LeadersLinked\Mapper\UserMapper;`
		15	`use LeadersLinked\Authentication\AuthTokenAdapter;`
		16	`use Laminas\Authentication\AuthenticationService;`
		17	`use Laminas\Permissions\Acl\Resource\GenericResource;`
		18	`use LeadersLinked\Model\UserType;`
3639	efrain	19	`use LeadersLinked\Plugin\CurrentNetworkPlugin;`
		20	`use LeadersLinked\Model\Network;`
		21	`use LeadersLinked\Model\User;`
		22	`use LeadersLinked\Mapper\CompanyUserMapper;`
		23	`use LeadersLinked\Model\CompanyUser;`
		24	`use LeadersLinked\Mapper\CompanyMapper;`
5205	efrain	25	`use LeadersLinked\Mapper\CompanyServiceMapper;`
		26	`use LeadersLinked\Model\Service;`
6849	efrain	27
6749	efrain	28	`use LeadersLinked\Library\Functions;`
7122	efrain	29	`use LeadersLinked\Mapper\DailyPulseMapper;`
		30	`use LeadersLinked\Model\DailyPulse;`
7134	efrain	31	`use LeadersLinked\Mapper\OrganizationPositionMapper;`
		32	`use LeadersLinked\Mapper\KnowledgeAreaCategoryJobDescriptionMapper;`
		33	`use LeadersLinked\Mapper\MyCoachCategoryJobDescriptionMapper;`
7141	efrain	34	`use LeadersLinked\Mapper\KnowledgeAreaCategoryUserMapper;`
		35	`use LeadersLinked\Mapper\MyCoachCategoryUserMapper;`
1	www	36
		37	`class Module`
		38	`{`
		39	`/**`
		40	`*`
		41	`* @var boolean`
		42	`*/`
		43	`private $isJson;`
		44
		45	`/**`
		46	`*`
		47	`* @var boolean`
		48	`*/`
		49	`private $isHtml;`
		50
		51	`/**`
		52	`*`
		53	`* @var Acl`
		54	`*/`
		55	`private $acl;`
		56
		57	`/**`
		58	`*`
		59	`* @var AdapterInterface`
		60	`*/`
		61	`private $adapter;`
		62
		63	`/**`
		64	`*`
		65	`* @var CurrentUserPlugin`
		66	`*/`
3639	efrain	67	`private $currentUserPlugin;`
1	www	68
		69	`/**`
3639	efrain	70	`*`
		71	`* @var CurrentNetworkPlugin`
		72	`*/`
		73	`private $currentNetworkPlugin;`
		74
		75	`/**`
1	www	76	`*`
		77	`* @var array`
		78	`*/`
		79	`private $routesAuthorized = [];`
		80
		81	`/**`
		82	`*`
		83	`* @var boolean`
		84	`*/`
		85	`private $authByHeaders = false;`
		86
7330	efrain	87
		88	`/**`
		89	`*`
		90	`* @var array`
		91	`*/`
		92	`private $config;`
		93
		94
		95
1	www	96	`public function init(ModuleManager $moduleManager)`
		97	`{`
		98	`$events = $moduleManager->getEventManager();`
		99	`$events->attach(ModuleEvent::EVENT_MERGE_CONFIG, array($this, 'onMergeConfig'));`
		100	`}`
		101
		102	`public function onMergeConfig(ModuleEvent $event)`
		103	`{`
		104	`$configListener = $event->getConfigListener();`
7330	efrain	105	`$this->config = $configListener->getMergedConfig(false);`
1	www	106
		107	`$reader = new Ini();`
		108	`$data = $reader->fromFile('config/leaderslinked.ini');`
		109
		110	`$prefix = 'leaderslinked';`
		111	`foreach($data as $section => $pairs)`
		112	`{`
		113	`foreach($pairs as $key => $value)`
		114	`{`
7330	efrain	115	`$this->config[$prefix . '.' . $section . '.' . $key] = $value;`
1	www	116	`}`
		117	`}`
7330	efrain	118	`$configListener->setMergedConfig($this->config);`
1	www	119	`}`
		120
		121
		122	`public function getConfig() : array`
		123	`{`
		124	`return include __DIR__ . '/../config/module.config.php';`
		125	`}`
		126
		127	`public function onBootstrap(MvcEvent $event)`
		128	`{`
		129	`$serviceManager = $event->getApplication()->getServiceManager();`
		130	`$adapter = $serviceManager->get('leaders-linked-db');`
		131	`// $logger = $serviceManager->get('Zend\Log\Logger');`
		132
		133
		134	`$session = $serviceManager->get('leaders-linked-session');`
		135	`$session->start();`
		136
		137
		138	`$translator = $serviceManager->get('MvcTranslator');`
		139	`$translator->addTranslationFile(`
		140	`'phpArray',`
		141	`__DIR__ . '/i18n/validate.php',`
		142	`'default'`
		143	`);`
		144
		145	`$translator->addTranslationFile(`
		146	`'phpArray',`
		147	`__DIR__ . '/i18n/spanish.php',`
		148	`'default'`
		149	`);`
		150
		151	`\Laminas\Validator\AbstractValidator::setDefaultTranslator($translator);`
		152
		153
		154	`$headers = $event->getRequest()->getHeaders();`
		155	`if($headers->has('Accept')) {`
		156	`$accept = $headers->get('Accept');`
		157	`$prioritized = $accept->getPrioritized();`
		158
		159	`foreach($prioritized as $key => $value) {`
		160	`$raw = trim($value->getRaw());`
		161
		162	`if(!$this->isJson) {`
		163	`$this->isJson = strpos($raw, 'json');`
		164	`}`
		165
		166	`}`
		167	`} else {`
		168	`$accept = '';`
		169	`}`
		170	`if($headers->has('token')) {`
6749	efrain	171	`$device_uuid = Functions::sanitizeFilterString($headers->get('token')->getFieldValue());`
1	www	172	`} else {`
		173	`$device_uuid = '';`
		174	`}`
		175	`if($headers->has('secret')) {`
6749	efrain	176	`$password = Functions::sanitizeFilterString($headers->get('secret')->getFieldValue());`
1	www	177	`} else {`
		178	`$password = '';`
		179	`}`
		180	`if($headers->has('rand')) {`
6749	efrain	181	`$rand = Functions::sanitizeFilterString($headers->get('rand')->getFieldValue());`
1	www	182	`} else {`
		183	`$rand = 0;`
		184	`}`
		185	`if($headers->has('created')) {`
6749	efrain	186	`$timestamp = Functions::sanitizeFilterString($headers->get('created')->getFieldValue());`
1	www	187	`} else {`
		188	`$timestamp = 0;`
		189	`}`
7335	efrain	190
1	www	191
		192
3639	efrain	193	`$this->currentNetworkPlugin = new CurrentNetworkPlugin($adapter);`
		194	`if(!$this->currentNetworkPlugin->hasNetwork()) {`
3790	efrain	195	`$this->isJson = true;`
		196	`$response = $event->getResponse();`
		197	`$this->sendResponse($response, ['success' => false, 'data' => '401 Unauthorized - Private network - not found', 'fatal' => true]);`
3639	efrain	198	`}`
		199
		200	`if($this->currentNetworkPlugin->getNetwork()->status == Network::STATUS_INACTIVE) {`
3790	efrain	201	`$this->isJson = true;`
		202	`$response = $event->getResponse();`
		203	`$this->sendResponse($response, ['success' => false, 'data' => '401 Unauthorized - Private network - inactive', 'fatal' => true]);`
		204
3639	efrain	205	`}`
		206
		207
1	www	208	`$this->authByHeaders = false;`
		209	`if($device_uuid && $password && $rand && $timestamp) {`
		210	`$this->authByHeaders = true;`
		211
		212
		213	`$this->isJson = true;`
		214
		215	`$tokenAuthAdapter = new AuthTokenAdapter($adapter);`
		216	`$tokenAuthAdapter->setData($device_uuid, $password, $timestamp, $rand);`
		217
		218	`$authService = new AuthenticationService();`
		219	`$result = $authService->authenticate($tokenAuthAdapter);`
		220	`if($result->getCode() != \Laminas\Authentication\Result::SUCCESS) {`
		221	`$response = $event->getResponse();`
		222
		223	`$this->sendResponse($response, ['success' => false, 'data' => $result->getMessages()[0], 'fatal' => true]);`
		224	`}`
210	efrain	225
		226
		227
		228
		229
1	www	230	`}`
3639	efrain	231
1	www	232
3639	efrain	233
		234	`if(empty($_SERVER['REDIRECT_URL'])) {`
		235	`if(empty($_SERVER['REQUEST_URI'])) {`
		236	`$routeName = '';`
		237
		238	`} else {`
		239	`$routeName = $_SERVER['REQUEST_URI'];`
		240	`}`
		241
		242	`} else {`
		243	`$routeName = $_SERVER['REDIRECT_URL'];`
		244
		245	`}`
		246
210	efrain	247
3639	efrain	248	`$routeName = strtolower(trim($routeName));`
		249	`if(strlen($routeName) > 0 && substr($routeName, 0, 1) == '/') {`
		250	`$routeName = substr($routeName, 1);`
		251	`}`
1	www	252
3639	efrain	253	`$this->isHtml = $this->isJson ? false : true;`
		254	`$this->currentUserPlugin = new CurrentUserPlugin($adapter);`
1	www	255
210	efrain	256
3639	efrain	257	`if($this->authByHeaders && substr($routeName, 0, 8) == 'services') {`
		258	`$checkUserForNetwork = false;`
		259	`} else {`
		260	`if($this->currentUserPlugin->hasIdentity()) {`
		261
		262	`$checkUserForNetwork = true;`
		263	`} else {`
		264	`$checkUserForNetwork = false;`
		265	`}`
		266	`}`
		267
		268	`if($checkUserForNetwork) {`
		269	`if(!$routeName \|\| in_array($routeName, ['signout', 'signin', 'home'])) {`
		270	`$checkUserForNetwork = false;`
		271	`}`
		272	`}`
		273
		274	`if($checkUserForNetwork) {`
		275
		276
		277
		278	`if($this->currentUserPlugin->getUser()->network_id != $this->currentNetworkPlugin->getNetworkId()) {`
3790	efrain	279
		280	`$this->isJson = true;`
		281	`$response = $event->getResponse();`
		282	`$this->sendResponse($response, ['success' => false, 'data' => '401 Unauthorized - The user is not part of this private network', 'fatal' => true]);`
		283
3639	efrain	284	`}`
		285	`}`
		286
7335	efrain	287	`/*`
		288	`$application = $event->getApplication();`
		289	`$templateMapResolver = $application->getServiceManager()->get(`
		290	`'ViewTemplateMapResolver'`
		291	`);`
3639	efrain	292
		293
7335	efrain	294	`$listener = new LayoutListener($templateMapResolver);`
		295	`$listener->attach($application->getEventManager());*/`
		296
		297
		298
1	www	299	`$this->initAcl($event);`
		300	`$eventManager = $event->getApplication()->getEventManager();`
		301	`$eventManager->attach(MvcEvent::EVENT_DISPATCH_ERROR, [$this,'onDispatchError'], 0);`
		302	`$eventManager->attach(MvcEvent::EVENT_RENDER_ERROR, [$this,'onRenderError'], 0);`
		303
		304	`$sharedManager = $eventManager->getSharedManager();`
		305	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPreDispatch'], 100);`
		306	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPosDispatch'], -100);`
		307	`}`
		308
		309	`public function initAcl(MvcEvent $event)`
		310	`{`
		311
3639	efrain	312	`$serviceManager = $event->getApplication()->getServiceManager();`
		313	`$adapter = $serviceManager->get('leaders-linked-db');`
		314
		315
1	www	316	`require_once (dirname(__DIR__) . DIRECTORY_SEPARATOR . 'config' . DIRECTORY_SEPARATOR . 'acl.config.php');`
		317
		318
		319	`$this->acl = new Acl();`
		320	`$resources = getAclResources();`
1979	efrain	321
1	www	322	`foreach($resources as $resourceName)`
		323	`{`
		324	`$this->acl->addResource(new GenericResource($resourceName));`
		325	`}`
		326
		327	`$usertypes = getAclUsertype();`
		328	`foreach($usertypes as $usertype => $resources)`
		329	`{`
		330	`$this->acl->addRole(new GenericRole($usertype));`
		331	`foreach ($resources as $resourceName)`
		332	`{`
		333	`$this->acl->allow($usertype, $resourceName);`
		334	`}`
		335	`}`
5205	efrain	336
1	www	337
3639	efrain	338
		339	`if($this->currentUserPlugin->hasIdentity() && $this->currentUserPlugin->getUser()->is_super_user == User::IS_SUPER_USER_YES) {`
		340
		341	`$resources = getAclSuperAdmin();`
		342	`foreach($resources as $resourceName)`
		343	`{`
		344	`$this->acl->allow(UserType::ADMIN, $resourceName);`
		345	`}`
		346	`}`
		347
		348
6388	efrain	349
		350	`$allowMyCoach = false;`
5951	efrain	351	`$allowKnowledgeArea = false;`
5205	efrain	352	`$allowDailyPulse = false;`
		353
7122	efrain	354
		355
5205	efrain	356	`$companyMapper = CompanyMapper::getInstance($adapter);`
		357	`$company = $companyMapper->fetchDefaultForNetworkByNetworkId($this->currentNetworkPlugin->getNetwork()->id);`
7122	efrain	358
		359
5205	efrain	360	`if($company) {`
7122	efrain	361
		362	`$companyServiceMapper = CompanyServiceMapper::getInstance($adapter);`
		363	`$companyService = $companyServiceMapper->fetchOneActiveByCompanyIdAndServiceId($company->id, Service::DAILY_PULSE);`
		364
		365
5205	efrain	366	`$companyUserMapper = CompanyUserMapper::getInstance($adapter);`
		367	`$companyUser = $companyUserMapper->fetchOneAcceptedByCompanyIdAndUserId($company->id, $this->currentUserPlugin->getUserId());`
		368
		369
		370
		371
7122	efrain	372	`if($companyService) {`
		373
7124	efrain	374	`$dailyPulseMapper = DailyPulseMapper::getInstance($adapter);`
7122	efrain	375	`$dailyPulse = $dailyPulseMapper->fetchOneByCompanyId($company->id);`
		376
		377	`if($dailyPulse) {`
		378	`$privacy = $dailyPulse->privacy;`
		379
		380	`} else {`
		381	`$privacy = DailyPulse::PRIVACY_COMPANY;`
		382	`}`
		383
		384	`if($privacy == DailyPulse::PRIVACY_PUBLIC) {`
		385	`$allowDailyPulse = true;`
		386	`} else {`
		387	`$allowDailyPulse = !empty($companyUser);`
		388	`}`
		389
		390
5205	efrain	391	`}`
7134	efrain	392
		393	`$job_description_ids = [];`
		394
		395	`$organizationPositionMapper = OrganizationPositionMapper::getInstance($adapter);`
7135	efrain	396	`$records = $organizationPositionMapper->fetchAllByCompanyIdAndEmployeeId($company->id, $this->currentUserPlugin->getUserId());`
7134	efrain	397	`foreach($records as $record)`
		398	`{`
		399	`array_push($job_description_ids, $record->job_description_id);`
		400	`}`
7122	efrain	401
5951	efrain	402
		403	`$companyService = $companyServiceMapper->fetchOneActiveByCompanyIdAndServiceId($company->id, Service::KNOWLEDGE_AREA);`
7134	efrain	404	`if($companyService) {`
		405
		406
		407
		408	`if($job_description_ids) {`
		409
		410
		411	`$knowledgeAreaCategoryJobDescriptionMapper = KnowledgeAreaCategoryJobDescriptionMapper::getInstance($adapter);`
		412	`$records = $knowledgeAreaCategoryJobDescriptionMapper->fetchAllByCompanyIdAndJobDescriptionIds($company->id, $job_description_ids);`
		413
		414	`if(!empty($records)) {`
		415	`$allowKnowledgeArea = true;`
		416	`}`
		417
		418	`}`
		419
7141	efrain	420	`if($companyUser && !$allowKnowledgeArea) {`
		421	`$knowledgeAreaCategoryUserMapper = KnowledgeAreaCategoryUserMapper::getInstance($adapter);`
		422	`$records = $knowledgeAreaCategoryUserMapper->fetchAllByUserId($companyUser->user_id);`
		423	`if(!empty($records)) {`
		424	`$allowKnowledgeArea = true;`
		425	`}`
7134	efrain	426	`}`
5951	efrain	427	`}`
		428
6388	efrain	429	`$companyService = $companyServiceMapper->fetchOneActiveByCompanyIdAndServiceId($company->id, Service::MY_COACH);`
7134	efrain	430	`if($companyService) {`
		431
		432
		433	`if($job_description_ids) {`
		434
		435
		436	`$myCoachCategoryJobDescriptionMapper = MyCoachCategoryJobDescriptionMapper::getInstance($adapter);`
		437	`$records = $myCoachCategoryJobDescriptionMapper->fetchAllByCompanyIdAndJobDescriptionIds($company->id, $job_description_ids);`
		438
		439	`if(!empty($records)) {`
		440	`$allowKnowledgeArea = true;`
		441	`}`
		442
		443	`}`
		444
7141	efrain	445	`if($companyUser && !$allowMyCoach) {`
		446	`$myCoachCategoryUserMapper = MyCoachCategoryUserMapper::getInstance($adapter);`
		447	`$records = $myCoachCategoryUserMapper->fetchAllByUserId($companyUser->user_id);`
		448	`if(!empty($records)) {`
		449	`$allowMyCoach = true;`
		450	`}`
		451
		452
7134	efrain	453	`}`
6388	efrain	454	`}`
		455
5205	efrain	456	`} else {`
		457	`$companyUser = '';`
		458	`}`
		459
6388	efrain	460
		461	`$usertype = $this->currentUserPlugin->getUserTypeId();`
5205	efrain	462	`if($allowDailyPulse) {`
		463	`$resources = getAclDailyPulse();`
		464	`foreach($resources as $resourceName)`
		465	`{`
		466	`$this->acl->allow($usertype, $resourceName);`
		467	`}`
		468	`}`
		469
5951	efrain	470	`if($allowKnowledgeArea) {`
		471	`$resources = getAclKnowledgeArea();`
		472	`foreach($resources as $resourceName)`
		473	`{`
		474	`$this->acl->allow($usertype, $resourceName);`
		475	`}`
		476	`}`
5205	efrain	477
6388	efrain	478	`if($allowMyCoach) {`
		479	`$resources = getAclMyCoach();`
6481	efrain	480
7141	efrain	481
6481	efrain	482
6388	efrain	483	`foreach($resources as $resourceName)`
		484	`{`
		485	`$this->acl->allow($usertype, $resourceName);`
		486	`}`
		487
		488	`}`
5951	efrain	489
		490
6388	efrain	491
3639	efrain	492	`if($this->currentNetworkPlugin->getNetwork()->default == Network::DEFAULT_YES) {`
		493
		494	`$usertypes = getAclUsertypeDefaultNetwork();`
		495	`foreach($usertypes as $usertype => $resources)`
		496	`{`
5205	efrain	497
3639	efrain	498
5205	efrain	499
3639	efrain	500	`foreach ($resources as $resourceName)`
		501	`{`
		502	`$this->acl->allow($usertype, $resourceName);`
		503	`}`
		504	`}`
		505
		506
		507	`} else {`
3647	efrain	508
3645	efrain	509	`if($this->currentUserPlugin->hasIdentity()) {`
3639	efrain	510
5205	efrain	511
3645	efrain	512	`if($company) {`
3639	efrain	513
5205	efrain	514
3645	efrain	515	`if($companyUser) {`
		516	`$usertype = $this->currentUserPlugin->getUserTypeId();`
3639	efrain	517
3645	efrain	518	`if($companyUser->creator == CompanyUser::CREATOR_YES) {`
		519
		520	`$resources = getAclUsertypeOtherNetworkCreator();`
		521	`foreach($resources as $resourceName)`
		522	`{`
		523	`$this->acl->allow($usertype, $resourceName);`
		524	`}`
		525
3639	efrain	526	`}`
3645	efrain	527	`if($companyUser->creator == CompanyUser::CREATOR_NO) {`
		528	`$resources = getAclUsertypeOtherNetworkNonCreator();`
		529	`foreach($resources as $resourceName)`
		530	`{`
		531	`$this->acl->allow($usertype, $resourceName);`
		532	`}`
3639	efrain	533	`}`
		534	`}`
		535	`}`
3647	efrain	536	`}`
3639	efrain	537	`}`
		538
		539
1	www	540	`$event->getViewModel()->setVariable('acl', $this->acl);`
		541
		542	`}`
		543
		544	`public function onDispatchError(MvcEvent $event)`
		545	`{`
		546	`$this->processError($event);`
		547	`}`
		548
		549	`public function onRenderError(MvcEvent $event)`
		550	`{`
		551	`$this->processError($event);`
		552	`}`
		553
		554	`public function sendResponse(\Laminas\Http\Response $response, $data)`
		555	`{`
		556
		557
		558	`if($this->isJson) {`
		559	`$headers = $response->getHeaders();`
		560	`$headers->clearHeaders();`
		561	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		562
		563	`$response->setStatusCode(200);`
		564	`$response->setContent(json_encode($data));`
		565	`$response->send();`
		566
		567	`} else {`
		568	`throw new \Exception($data['data']);`
		569	`}`
		570	`exit;`
		571	`}`
		572
		573	`public function processError(MvcEvent $event)`
		574	`{`
		575
		576	`$request = $event->getRequest();`
		577	`if((method_exists($request, 'isXmlHttpRequest') && $request->isXmlHttpRequest()) \|\| ($this->isJson && !$this->isHtml)) {`
		578
		579	`$error = $event->getError();`
		580	`if (!$error) {`
		581	`return;`
		582	`}`
		583
		584	`$response = $event->getResponse();`
		585
		586	`if('error-exception' == $error) {`
		587	`$exception = $event->getParam('exception');`
		588	`error_log($exception->getCode() . ' ' . $exception->getMessage());`
		589	`error_log($exception->getTraceAsString());`
		590
		591
		592	`$data = [`
		593	`'success' => false,`
		594	`'data' => 'An error occurred during execution; please try again later.'`
		595	`];`
		596
		597	`} else if('error-router-no-match' == $error) {`
		598	`$data = [`
		599	`'success' => false,`
		600	`'data' => 'Resource not found.'`
		601
		602	`];`
		603	`} else if(' error-controller-not-found' == $error) {`
		604	`$data = [`
		605	`'success' => false,`
		606	`'data' => 'Controller not found.'`
		607
		608	`];`
		609	`} else {`
		610	`$data = [`
		611	`'success' => false,`
		612	`'data' => 'Unknow error.' , 'error' => $error`
		613
		614	`];`
		615	`}`
		616
		617	`$this->sendResponse($response, $data);`
		618	`}`
		619
		620	`$this->initAcl($event);`
		621	`}`
		622
		623
		624	`public function authPreDispatch(MvcEvent $event)`
		625	`{`
210	efrain	626
		627
		628
		629
1	www	630	`$serviceManager = $event->getApplication()->getServiceManager();`
		631	`$adapter = $serviceManager->get('leaders-linked-db');`
		632
210	efrain	633	`$routeName = $event->getRouteMatch()->getMatchedRouteName();`
		634
1	www	635
210	efrain	636	`$requestMethod = isset($_SERVER['REQUEST_METHOD']) ? trim(strtoupper($_SERVER['REQUEST_METHOD'])) : '';`
		637
		638	`if($requestMethod == 'POST' \|\| $requestMethod == 'PUT' \|\| $requestMethod == 'DELETE') {`
		639
1979	efrain	640
1323	efrain	641	`if($this->authByHeaders && substr($routeName, 0, 8) == 'services') {`
		642	`$exclude = true;`
		643	`} else {`
		644	`$exclude = false;`
		645
		646	`$usertypes = getAclUsertype();`
		647
		648
		649	`foreach($usertypes[UserType::GUEST] as $resourceName)`
		650	`{`
		651	`if($routeName == $resourceName) {`
		652	`$exclude = true;`
		653	`break;`
		654	`}`
210	efrain	655	`}`
		656	`}`
4131	efrain	657
4808	efrain	658	`$exclude = true;`
1979	efrain	659
210	efrain	660	`if(!$exclude) {`
		661	`$httpToken = isset($_SERVER['HTTP_X_CSRF_TOKEN']) ? $_SERVER['HTTP_X_CSRF_TOKEN'] : '';`
		662	`$sessionToken = isset($_SESSION['token']) ? $_SESSION['token'] : uniqid();`
		663
		664	`unset($_SESSION['token']);`
		665	`if ( $httpToken != $sessionToken) {`
		666	`header("HTTP/1.1 401 Unauthorized");`
		667	`exit;`
		668	`}`
		669
		670	`}`
		671	`}`
		672
		673
		674
3639	efrain	675	`if($this->currentUserPlugin->hasIdentity()) {`
		676	`$user = $this->currentUserPlugin->getUser();`
1	www	677	`$userTypeId = $user->usertype_id;`
		678
		679
		680	`} else {`
		681
		682	`$userTypeId = UserType::GUEST;`
		683	`}`
		684
210	efrain	685
1	www	686	`if($this->acl->isAllowed($userTypeId, $routeName)) {`
3639	efrain	687	`$user = $this->currentUserPlugin->getUser();`
210	efrain	688
1	www	689
		690	`if($user) {`
3086	efrain	691
		692	`$updateLastActivity = true;`
		693	`if ('chat' == substr($routeName, 0, 4)) {`
		694	`$updateLastActivity = false;`
		695	`}`
		696	`if ('inmail' == substr($routeName, 0, 6)) {`
		697	`$updateLastActivity = false;`
		698	`}`
		699	`if ('check-session' == $routeName) {`
		700	`$updateLastActivity = false;`
		701	`}`
		702
		703
		704	`if($updateLastActivity) {`
		705	`$userMapper = UserMapper::getInstance($adapter);`
		706	`$userMapper->updateLastActivity($user->id);`
		707	`}`
1	www	708	`}`
		709
7335	efrain	710
7330	efrain	711
1	www	712	`} else {`
210	efrain	713
1	www	714	`if($this->authByHeaders) {`
		715	`$response = $event->getResponse();`
		716	`$headers = $response->getHeaders();`
		717	`$headers->clearHeaders();`
		718	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		719
		720	`$response->setStatusCode(401);`
		721	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		722	`$response->send();`
		723	`exit;`
		724
210	efrain	725	`}`
1	www	726
		727
		728	`//print_r($this->routesAuthorized);`
		729	`// echo 'sin permiso'; exit;`
		730
		731
3639	efrain	732	`$this->currentUserPlugin->clearIdentity();`
1	www	733
		734
		735	`if($this->isJson) {`
		736	`$response = $event->getResponse();`
		737	`$headers = $response->getHeaders();`
		738	`$headers->clearHeaders();`
		739	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		740
		741	`$response->setStatusCode(200);`
		742	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		743	`$response->send();`
		744	`} else {`
		745	`$url = $event->getRouter()->assemble([], ['name' => 'signout']);`
		746
		747	`$response = $event->getResponse();`
		748	`$headers = $response->getHeaders();`
		749	`$headers->clearHeaders();`
		750	`$headers->addHeaderLine('Location', $url);`
		751
		752	`$response->setStatusCode(302);`
		753	`$response->send();`
		754	`}`
		755	`exit;`
		756	`}`
		757
		758
		759	`}`
		760
		761
		762	`public function authPosDispatch(MvcEvent $event)`
		763	`{`
7335	efrain	764	`if($this->isHtml) {`
		765	`if(empty($_SERVER['REDIRECT_URL'])) {`
		766	`if(empty($_SERVER['REQUEST_URI'])) {`
		767	`$routeName = '';`
		768
		769	`} else {`
		770	`$routeName = $_SERVER['REQUEST_URI'];`
		771	`}`
		772
		773	`} else {`
		774	`$routeName = $_SERVER['REDIRECT_URL'];`
		775
		776	`}`
		777
		778
		779	`$routeName = strtolower(trim($routeName));`
		780	`if(strlen($routeName) > 0 && substr($routeName, 0, 1) == '/') {`
		781	`$routeName = substr($routeName, 1);`
		782	`}`
		783
		784
		785	`$exclude = [`
7336	efrain	786	`'signin',`
7335	efrain	787	`'oauth/facebook',`
		788	`'oauth/facebook/cancel',`
		789	`'oauth/facebook/delete',`
		790	`'oauth/twitter',`
		791	`'oauth/google',`
		792	`'oauth/instagram',`
		793	`'paypal',`
		794	`'paypal/success',`
		795	`'paypal/cancel',`
		796	`'storage',`
		797	`'storage-network',`
		798	`'signout'`
		799
		800	`];`
		801
		802	`if(!in_array($routeName, $exclude)) {`
7337	efrain	803	`// $event->getViewModel()->setTemplate('layout/layout-spa');`
7335	efrain	804	`}`
		805
		806	`}`
1	www	807	`}`
7330	efrain	808
7335	efrain	809
1	www	810
		811
		812	`}`

Proyectos de Subversion LeadersLinked - Antes de SPA

(root)/module/LeadersLinked/src/Module.php – Rev 7337