WebSVN – LeadersLinked - Services – Autoría – /module/LeadersLinked/src/Module.php

Rev	Autor	Línea Nro.	Línea
1	efrain	1	`<?php`
		2	`declare(strict_types=1);`
		3
		4	`namespace LeadersLinked;`
		5
		6	`use Laminas\Db\Adapter\AdapterInterface;`
		7	`use Laminas\ModuleManager\ModuleEvent;`
		8	`use Laminas\ModuleManager\ModuleManager;`
		9	`use Laminas\Mvc\MvcEvent;`
		10	`use Laminas\Config\Reader\Ini;`
		11	`use Laminas\Permissions\Acl\Acl;`
		12	`use Laminas\Permissions\Acl\Role\GenericRole;`
		13	`use LeadersLinked\Plugin\CurrentUserPlugin;`
		14	`use LeadersLinked\Mapper\UserMapper;`
		15	`use LeadersLinked\Authentication\AuthTokenAdapter;`
		16	`use Laminas\Authentication\AuthenticationService;`
		17	`use Laminas\Permissions\Acl\Resource\GenericResource;`
		18	`use LeadersLinked\Model\UserType;`
		19	`use LeadersLinked\Plugin\CurrentNetworkPlugin;`
		20	`use LeadersLinked\Model\Network;`
		21	`use LeadersLinked\Model\User;`
		22	`use LeadersLinked\Mapper\CompanyUserMapper;`
		23	`use LeadersLinked\Model\CompanyUser;`
		24	`use LeadersLinked\Mapper\CompanyMapper;`
		25	`use LeadersLinked\Mapper\CompanyServiceMapper;`
		26	`use LeadersLinked\Model\Service;`
		27
		28	`use LeadersLinked\Library\Functions;`
		29	`use LeadersLinked\Mapper\DailyPulseMapper;`
		30	`use LeadersLinked\Model\DailyPulse;`
		31	`use LeadersLinked\Mapper\OrganizationPositionMapper;`
		32	`use LeadersLinked\Mapper\KnowledgeAreaCategoryJobDescriptionMapper;`
		33	`use LeadersLinked\Mapper\MyCoachCategoryJobDescriptionMapper;`
		34	`use LeadersLinked\Mapper\KnowledgeAreaCategoryUserMapper;`
		35	`use LeadersLinked\Mapper\MyCoachCategoryUserMapper;`
23	efrain	36	`use Firebase\JWT\JWT;`
		37	`use Firebase\JWT\Key;`
		38	`use LeadersLinked\Mapper\JwtTokenMapper;`
		39	`use LeadersLinked\Authentication\AuthUserIdAdapter;`
1	efrain	40
		41	`class Module`
		42	`{`
		43	`/**`
		44	`*`
		45	`* @var Acl`
		46	`*/`
		47	`private $acl;`
		48
		49	`/**`
		50	`*`
		51	`* @var AdapterInterface`
		52	`*/`
		53	`private $adapter;`
		54
		55	`/**`
		56	`*`
		57	`* @var CurrentUserPlugin`
		58	`*/`
		59	`private $currentUserPlugin;`
		60
		61	`/**`
		62	`*`
		63	`* @var CurrentNetworkPlugin`
		64	`*/`
		65	`private $currentNetworkPlugin;`
		66
		67	`/**`
		68	`*`
		69	`* @var array`
		70	`*/`
		71	`private $routesAuthorized = [];`
		72
		73	`/**`
		74	`*`
		75	`* @var boolean`
		76	`*/`
23	efrain	77	`private $authByOTP = false;`
1	efrain	78
23	efrain	79	`/**`
		80	`*`
		81	`* @var boolean`
		82	`*/`
		83	`private $authByJWT = false;`
1	efrain	84
23	efrain	85
1	efrain	86	`/**`
		87	`*`
		88	`* @var array`
		89	`*/`
		90	`private $config;`
		91
		92
		93
		94	`public function init(ModuleManager $moduleManager)`
		95	`{`
		96	`$events = $moduleManager->getEventManager();`
		97	`$events->attach(ModuleEvent::EVENT_MERGE_CONFIG, array($this, 'onMergeConfig'));`
		98	`}`
		99
		100	`public function onMergeConfig(ModuleEvent $event)`
		101	`{`
		102	`$configListener = $event->getConfigListener();`
		103	`$this->config = $configListener->getMergedConfig(false);`
		104
		105	`$reader = new Ini();`
		106	`$data = $reader->fromFile('config/leaderslinked.ini');`
		107
		108	`$prefix = 'leaderslinked';`
		109	`foreach($data as $section => $pairs)`
		110	`{`
		111	`foreach($pairs as $key => $value)`
		112	`{`
		113	`$this->config[$prefix . '.' . $section . '.' . $key] = $value;`
		114	`}`
		115	`}`
		116	`$configListener->setMergedConfig($this->config);`
		117	`}`
		118
		119
		120	`public function getConfig() : array`
		121	`{`
		122	`return include __DIR__ . '/../config/module.config.php';`
		123	`}`
		124
		125	`public function onBootstrap(MvcEvent $event)`
		126	`{`
86	efrain	127
68	efrain	128	`$serviceManager = $event->getApplication()->getServiceManager();`
55	efrain	129
		130
68	efrain	131	`$eventManager = $event->getApplication()->getEventManager();`
		132	`$eventManager->attach(MvcEvent::EVENT_DISPATCH_ERROR, [$this,'onDispatchError'], 0);`
		133	`$eventManager->attach(MvcEvent::EVENT_RENDER_ERROR, [$this,'onRenderError'], 0);`
		134
		135
72	efrain	136	`//$corsRequestListener = $serviceManager->get('corsRequestListener');`
		137	`//$corsRequestListener->attach($eventManager);`
68	efrain	138
		139
1	efrain	140	`$adapter = $serviceManager->get('leaders-linked-db');`
		141	`// $logger = $serviceManager->get('Zend\Log\Logger');`
		142
		143
		144	`$session = $serviceManager->get('leaders-linked-session');`
		145	`$session->start();`
		146
		147
		148	`$translator = $serviceManager->get('MvcTranslator');`
		149	`$translator->addTranslationFile(`
		150	`'phpArray',`
		151	`__DIR__ . '/i18n/validate.php',`
		152	`'default'`
		153	`);`
		154
		155	`$translator->addTranslationFile(`
		156	`'phpArray',`
		157	`__DIR__ . '/i18n/spanish.php',`
		158	`'default'`
		159	`);`
		160
86	efrain	161
		162	`$redirect_url = empty($_SERVER['REDIRECT_URL']) ? $_SERVER['REQUEST_URI'] : $_SERVER['REDIRECT_URL'];`
		163
		164	`error_log('redirect_url = ' . $redirect_url);`
		165	`if(str_contains($redirect_url, 'send')) {`
		166	`$response = $event->getResponse();`
		167
		168	`Functions::sendResponseJson($response, 'aqui1');`
		169
		170
		171	`}`
		172
		173
		174
1	efrain	175	`\Laminas\Validator\AbstractValidator::setDefaultTranslator($translator);`
		176
		177
		178	`$headers = $event->getRequest()->getHeaders();`
		179	`if($headers->has('token')) {`
		180	`$device_uuid = Functions::sanitizeFilterString($headers->get('token')->getFieldValue());`
		181	`} else {`
		182	`$device_uuid = '';`
		183	`}`
		184	`if($headers->has('secret')) {`
		185	`$password = Functions::sanitizeFilterString($headers->get('secret')->getFieldValue());`
		186	`} else {`
		187	`$password = '';`
		188	`}`
		189	`if($headers->has('rand')) {`
		190	`$rand = Functions::sanitizeFilterString($headers->get('rand')->getFieldValue());`
		191	`} else {`
		192	`$rand = 0;`
		193	`}`
		194	`if($headers->has('created')) {`
		195	`$timestamp = Functions::sanitizeFilterString($headers->get('created')->getFieldValue());`
		196	`} else {`
		197	`$timestamp = 0;`
		198	`}`
		199
		200
4	efrain	201
1	efrain	202	`$this->currentNetworkPlugin = new CurrentNetworkPlugin($adapter);`
		203	`if(!$this->currentNetworkPlugin->hasNetwork()) {`
43	efrain	204
1	efrain	205	`$response = $event->getResponse();`
45	efrain	206	`$code = 200;`
		207	`$content = json_encode(['success' => false, 'data' => '200 Unauthorized - Private network - not found', 'fatal' => true]);`
43	efrain	208	`$this->sendResponse($response, $code, $content);`
		209
1	efrain	210	`}`
		211
		212	`if($this->currentNetworkPlugin->getNetwork()->status == Network::STATUS_INACTIVE) {`
43	efrain	213
1	efrain	214	`$response = $event->getResponse();`
45	efrain	215	`$code = 200;`
		216	`$content = json_encode(['success' => false, 'data' => '200 Unauthorized - Private network - inactive', 'fatal' => true]);`
43	efrain	217	`$this->sendResponse($response, $code, $content);`
		218
1	efrain	219	`}`
		220
		221
23	efrain	222	`$this->authByOTP = false;`
1	efrain	223	`if($device_uuid && $password && $rand && $timestamp) {`
23	efrain	224	`$this->authByOTP = true;`
1	efrain	225
		226
		227	`$tokenAuthAdapter = new AuthTokenAdapter($adapter);`
		228	`$tokenAuthAdapter->setData($device_uuid, $password, $timestamp, $rand);`
		229
		230	`$authService = new AuthenticationService();`
		231	`$result = $authService->authenticate($tokenAuthAdapter);`
		232	`if($result->getCode() != \Laminas\Authentication\Result::SUCCESS) {`
43	efrain	233
1	efrain	234	`$response = $event->getResponse();`
43	efrain	235	`$code = 200;`
		236	`$content = json_encode(['success' => false, 'data' => $result->getMessages()[0], 'fatal' => true]);`
		237	`$this->sendResponse($response, $code, $content);`
		238
1	efrain	239	`}`
		240
		241	`}`
23	efrain	242
		243	`$this->authByJWT = false;`
		244	`$headers = getallheaders();`
34	efrain	245
		246	`if(!empty($headers['authorization']) \|\| !empty($headers['Authorization'])) {`
23	efrain	247
34	efrain	248	`$token = trim(empty($headers['authorization']) ? $headers['Authorization'] : $headers['authorization']);`
		249
		250
23	efrain	251	`if (substr($token, 0, 6 ) == 'Bearer') {`
43	efrain	252
23	efrain	253
		254	`$token = trim(substr($token, 7));`
		255
		256	`if(!empty($this->config['leaderslinked.jwt.key'])) {`
		257	`$key = $this->config['leaderslinked.jwt.key'];`
		258
		259
		260	`try {`
		261	`$payload = JWT::decode($token, new Key($key, 'HS256'));`
		262
		263
		264	`if(empty($payload->iss) \|\| $payload->iss != $_SERVER['HTTP_HOST']) {`
43	efrain	265
23	efrain	266	`$response = $event->getResponse();`
45	efrain	267	`$code = 200;`
43	efrain	268	`$content = json_encode(['success' => false, 'data' => 'Unauthorized - JWT - Wrong server', 'fatal' => true]);`
		269	`$this->sendResponse($response, $code, $content);`
23	efrain	270
43	efrain	271
		272
23	efrain	273	`}`
		274
		275	`$uuid = empty($payload->uuid) ? '' : $payload->uuid;`
		276	`if($uuid) {`
		277	`$jwtTokenMapper = JwtTokenMapper::getInstance($adapter);`
		278	`$jwtToken = $jwtTokenMapper->fetchOneByUuid($uuid);`
		279	`if($jwtToken) {`
		280
		281	`$_SESSION['aes'] = $jwtToken->aes;`
		282
		283	`if($jwtToken->user_id) {`
		284	`$authByUserId = new AuthUserIdAdapter($adapter);`
		285	`$authByUserId->setData($jwtToken->user_id);`
		286
		287	`$authService = new AuthenticationService();`
		288	`$result = $authService->authenticate($authByUserId);`
		289	`if($result->getCode() != \Laminas\Authentication\Result::SUCCESS) {`
43	efrain	290
23	efrain	291	`$response = $event->getResponse();`
45	efrain	292	`$code = 200;`
43	efrain	293	`$content = json_encode(['success' => false, 'data' => $result->getMessages()[0], 'fatal' => true]);`
		294	`$this->sendResponse($response, $code, $content);`
23	efrain	295
		296	`}`
24	efrain	297
		298	`$this->authByJWT = true;`
23	efrain	299	`}`
		300
		301
		302	`} else {`
		303	`$response = $event->getResponse();`
45	efrain	304	`$code = 200;`
43	efrain	305	`$content = json_encode(['success' => false, 'data' => 'Unauthorized - JWT - Expired', 'fatal' => true]);`
		306	`$this->sendResponse($response, $code, $content);`
		307
23	efrain	308	`}`
		309
		310	`}`
		311	`} catch(\Exception $e) {`
43	efrain	312
23	efrain	313	`$response = $event->getResponse();`
45	efrain	314	`$code = 200;`
43	efrain	315	`$content = json_encode(['success' => false, 'data' => 'Unauthorized - JWT - Wrong key', 'fatal' => true]);`
		316	`$this->sendResponse($response, $code, $content);`
		317
23	efrain	318	`}`
		319	`}`
		320	`}`
		321	`}`
1	efrain	322
		323
		324
		325	`if(empty($_SERVER['REDIRECT_URL'])) {`
		326	`if(empty($_SERVER['REQUEST_URI'])) {`
		327	`$routeName = '';`
		328
		329	`} else {`
		330	`$routeName = $_SERVER['REQUEST_URI'];`
		331	`}`
		332
		333	`} else {`
		334	`$routeName = $_SERVER['REDIRECT_URL'];`
		335
		336	`}`
		337
		338
		339	`$routeName = strtolower(trim($routeName));`
		340	`if(strlen($routeName) > 0 && substr($routeName, 0, 1) == '/') {`
		341	`$routeName = substr($routeName, 1);`
		342	`}`
		343
		344	`$this->currentUserPlugin = new CurrentUserPlugin($adapter);`
		345
		346
23	efrain	347	`if($this->authByOTP && substr($routeName, 0, 8) == 'services') {`
1	efrain	348	`$checkUserForNetwork = false;`
		349	`} else {`
		350	`if($this->currentUserPlugin->hasIdentity()) {`
		351
		352	`$checkUserForNetwork = true;`
		353	`} else {`
		354	`$checkUserForNetwork = false;`
		355	`}`
		356	`}`
		357
		358	`if($checkUserForNetwork) {`
		359	`if(!$routeName \|\| in_array($routeName, ['signout', 'signin', 'home'])) {`
		360	`$checkUserForNetwork = false;`
		361	`}`
		362	`}`
		363
		364	`if($checkUserForNetwork) {`
		365
		366
		367
		368	`if($this->currentUserPlugin->getUser()->network_id != $this->currentNetworkPlugin->getNetworkId()) {`
		369	`$response = $event->getResponse();`
45	efrain	370	`$this->sendResponse($response, ['success' => false, 'data' => '200 Unauthorized - The user is not part of this private network', 'fatal' => true]);`
1	efrain	371	`exit;`
		372	`}`
		373	`}`
		374
		375
		376
		377	`$this->initAcl($event);`
68	efrain	378
1	efrain	379
		380	`$sharedManager = $eventManager->getSharedManager();`
		381	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPreDispatch'], 100);`
		382	`$sharedManager->attach(__NAMESPACE__, MvcEvent::EVENT_DISPATCH, [$this, 'authPosDispatch'], -100);`
		383	`}`
		384
		385	`public function initAcl(MvcEvent $event)`
		386	`{`
		387
		388	`$serviceManager = $event->getApplication()->getServiceManager();`
		389	`$adapter = $serviceManager->get('leaders-linked-db');`
		390
		391
		392	`require_once (dirname(__DIR__) . DIRECTORY_SEPARATOR . 'config' . DIRECTORY_SEPARATOR . 'acl.config.php');`
		393
		394
		395	`$this->acl = new Acl();`
		396	`$resources = getAclResources();`
		397
		398	`foreach($resources as $resourceName)`
		399	`{`
		400	`$this->acl->addResource(new GenericResource($resourceName));`
		401	`}`
		402
		403	`$usertypes = getAclUsertype();`
		404	`foreach($usertypes as $usertype => $resources)`
		405	`{`
		406	`$this->acl->addRole(new GenericRole($usertype));`
		407	`foreach ($resources as $resourceName)`
		408	`{`
		409	`$this->acl->allow($usertype, $resourceName);`
		410	`}`
		411	`}`
		412
		413
		414
		415	`if($this->currentUserPlugin->hasIdentity() && $this->currentUserPlugin->getUser()->is_super_user == User::IS_SUPER_USER_YES) {`
		416
		417	`$resources = getAclSuperAdmin();`
		418	`foreach($resources as $resourceName)`
		419	`{`
		420	`$this->acl->allow(UserType::ADMIN, $resourceName);`
		421	`}`
		422	`}`
		423
		424
		425
		426	`$allowMyCoach = false;`
		427	`$allowKnowledgeArea = false;`
		428	`$allowDailyPulse = false;`
		429
		430
		431
		432	`$companyMapper = CompanyMapper::getInstance($adapter);`
		433	`$company = $companyMapper->fetchDefaultForNetworkByNetworkId($this->currentNetworkPlugin->getNetwork()->id);`
		434
		435
		436	`if($company) {`
		437
		438	`$companyServiceMapper = CompanyServiceMapper::getInstance($adapter);`
		439	`$companyService = $companyServiceMapper->fetchOneActiveByCompanyIdAndServiceId($company->id, Service::DAILY_PULSE);`
		440
		441
		442	`$companyUserMapper = CompanyUserMapper::getInstance($adapter);`
		443	`$companyUser = $companyUserMapper->fetchOneAcceptedByCompanyIdAndUserId($company->id, $this->currentUserPlugin->getUserId());`
		444
		445
		446
		447
		448	`if($companyService) {`
		449
		450	`$dailyPulseMapper = DailyPulseMapper::getInstance($adapter);`
		451	`$dailyPulse = $dailyPulseMapper->fetchOneByCompanyId($company->id);`
		452
		453	`if($dailyPulse) {`
		454	`$privacy = $dailyPulse->privacy;`
		455
		456	`} else {`
		457	`$privacy = DailyPulse::PRIVACY_COMPANY;`
		458	`}`
		459
		460	`if($privacy == DailyPulse::PRIVACY_PUBLIC) {`
		461	`$allowDailyPulse = true;`
		462	`} else {`
		463	`$allowDailyPulse = !empty($companyUser);`
		464	`}`
		465
		466
		467	`}`
		468
		469	`$job_description_ids = [];`
		470
		471	`$organizationPositionMapper = OrganizationPositionMapper::getInstance($adapter);`
		472	`$records = $organizationPositionMapper->fetchAllByCompanyIdAndEmployeeId($company->id, $this->currentUserPlugin->getUserId());`
		473	`foreach($records as $record)`
		474	`{`
		475	`array_push($job_description_ids, $record->job_description_id);`
		476	`}`
		477
		478
		479	`$companyService = $companyServiceMapper->fetchOneActiveByCompanyIdAndServiceId($company->id, Service::KNOWLEDGE_AREA);`
		480	`if($companyService) {`
		481	`if($job_description_ids) {`
		482
		483
		484	`$knowledgeAreaCategoryJobDescriptionMapper = KnowledgeAreaCategoryJobDescriptionMapper::getInstance($adapter);`
		485	`$records = $knowledgeAreaCategoryJobDescriptionMapper->fetchAllByCompanyIdAndJobDescriptionIds($company->id, $job_description_ids);`
		486
		487	`if(!empty($records)) {`
		488	`$allowKnowledgeArea = true;`
		489	`}`
		490
		491	`}`
		492
		493	`if($companyUser && !$allowKnowledgeArea) {`
		494	`$knowledgeAreaCategoryUserMapper = KnowledgeAreaCategoryUserMapper::getInstance($adapter);`
		495	`$records = $knowledgeAreaCategoryUserMapper->fetchAllByUserId($companyUser->user_id);`
		496	`if(!empty($records)) {`
		497	`$allowKnowledgeArea = true;`
		498	`}`
		499	`}`
		500	`}`
		501
		502	`$companyService = $companyServiceMapper->fetchOneActiveByCompanyIdAndServiceId($company->id, Service::MY_COACH);`
		503	`if($companyService) {`
		504
		505
		506	`if($job_description_ids) {`
		507
		508
		509	`$myCoachCategoryJobDescriptionMapper = MyCoachCategoryJobDescriptionMapper::getInstance($adapter);`
		510	`$records = $myCoachCategoryJobDescriptionMapper->fetchAllByCompanyIdAndJobDescriptionIds($company->id, $job_description_ids);`
		511
		512	`if(!empty($records)) {`
		513	`$allowKnowledgeArea = true;`
		514	`}`
		515
		516	`}`
		517
		518	`if($companyUser && !$allowMyCoach) {`
		519	`$myCoachCategoryUserMapper = MyCoachCategoryUserMapper::getInstance($adapter);`
		520	`$records = $myCoachCategoryUserMapper->fetchAllByUserId($companyUser->user_id);`
		521	`if(!empty($records)) {`
		522	`$allowMyCoach = true;`
		523	`}`
		524
		525
		526	`}`
		527	`}`
		528
		529	`} else {`
		530	`$companyUser = '';`
		531	`}`
		532
		533
		534	`$usertype = $this->currentUserPlugin->getUserTypeId();`
		535	`if($allowDailyPulse) {`
		536	`$resources = getAclDailyPulse();`
		537	`foreach($resources as $resourceName)`
		538	`{`
		539	`$this->acl->allow($usertype, $resourceName);`
		540	`}`
		541	`}`
		542
		543	`if($allowKnowledgeArea) {`
		544	`$resources = getAclKnowledgeArea();`
		545	`foreach($resources as $resourceName)`
		546	`{`
		547	`$this->acl->allow($usertype, $resourceName);`
		548	`}`
		549	`}`
		550
		551	`if($allowMyCoach) {`
		552	`$resources = getAclMyCoach();`
		553
		554
		555
		556	`foreach($resources as $resourceName)`
		557	`{`
		558	`$this->acl->allow($usertype, $resourceName);`
		559	`}`
		560
		561	`}`
		562
		563
		564
		565	`if($this->currentNetworkPlugin->getNetwork()->default == Network::DEFAULT_YES) {`
		566
		567	`$usertypes = getAclUsertypeDefaultNetwork();`
		568	`foreach($usertypes as $usertype => $resources)`
		569	`{`
		570
		571
		572
		573	`foreach ($resources as $resourceName)`
		574	`{`
		575	`$this->acl->allow($usertype, $resourceName);`
		576	`}`
		577	`}`
		578
		579
		580	`} else {`
		581
		582	`if($this->currentUserPlugin->hasIdentity()) {`
		583
		584
		585	`if($company) {`
		586
		587
		588	`if($companyUser) {`
		589	`$usertype = $this->currentUserPlugin->getUserTypeId();`
		590
		591	`if($companyUser->creator == CompanyUser::CREATOR_YES) {`
		592
		593	`$resources = getAclUsertypeOtherNetworkCreator();`
		594	`foreach($resources as $resourceName)`
		595	`{`
		596	`$this->acl->allow($usertype, $resourceName);`
		597	`}`
		598
		599	`}`
		600	`if($companyUser->creator == CompanyUser::CREATOR_NO) {`
		601	`$resources = getAclUsertypeOtherNetworkNonCreator();`
		602	`foreach($resources as $resourceName)`
		603	`{`
		604	`$this->acl->allow($usertype, $resourceName);`
		605	`}`
		606	`}`
		607	`}`
		608	`}`
		609	`}`
		610	`}`
		611
		612
		613	`$event->getViewModel()->setVariable('acl', $this->acl);`
		614
		615	`}`
		616
		617	`public function onDispatchError(MvcEvent $event)`
		618	`{`
		619	`$this->processError($event);`
		620	`}`
		621
		622	`public function onRenderError(MvcEvent $event)`
		623	`{`
		624	`$this->processError($event);`
		625	`}`
		626
43	efrain	627	`/**`
		628	`*`
		629	`* @param \Laminas\Http\Response $response`
		630	`* @param int $code`
		631	`* @param string $content`
		632	`*/`
		633	`public function sendResponse($response, $code, $content)`
1	efrain	634	`{`
44	efrain	635	`error_log($content);`
43	efrain	636
44	efrain	637
1	efrain	638	`$headers = $response->getHeaders();`
		639	`$headers->clearHeaders();`
		640	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		641
43	efrain	642	`Functions::addCrossSiteToResponse($response);`
		643
		644	`$response->setStatusCode($code);`
		645	`$response->setContent($content); //json_encode($data));`
1	efrain	646	`$response->send();`
		647	`exit;`
		648	`}`
		649
		650	`public function processError(MvcEvent $event)`
		651	`{`
		652	`$error = $event->getError();`
		653	`if (!$error) {`
		654	`return;`
		655	`}`
		656
		657	`$response = $event->getResponse();`
		658	`if('error-exception' == $error) {`
		659	`$exception = $event->getParam('exception');`
		660	`error_log($exception->getCode() . ' ' . $exception->getMessage());`
		661	`error_log($exception->getTraceAsString());`
43	efrain	662
1	efrain	663	`$response = $event->getResponse();`
45	efrain	664	`$code = 200;`
43	efrain	665	`$content = json_encode(['success' => false, 'data' => $exception->getCode() . ' ' . $exception->getMessage(), 'fatal' => true]);`
		666	`$this->sendResponse($response, $code, $content);`
1	efrain	667
		668	`} else if('error-router-no-match' == $error) {`
43	efrain	669
1	efrain	670	`$response = $event->getResponse();`
43	efrain	671	`$code = 404;`
		672	`$content = json_encode(['success' => false, 'data' => 'error-router-no-match', 'fatal' => true]);`
		673	`$this->sendResponse($response, $code, $content);`
1	efrain	674
		675
		676
		677	`} else if(' error-controller-not-found' == $error) {`
43	efrain	678
1	efrain	679	`$response = $event->getResponse();`
43	efrain	680	`$code = 404;`
		681	`$content = json_encode(['success' => false, 'data' => 'error-controller-not-found', 'fatal' => true]);`
		682	`$this->sendResponse($response, $code, $content);`
1	efrain	683
43	efrain	684
1	efrain	685	`} else {`
		686	`$response = $event->getResponse();`
45	efrain	687	`$code = 200;`
43	efrain	688	`$content = json_encode(['success' => false, 'data' => $error, 'fatal' => true]);`
		689	`$this->sendResponse($response, $code, $content);`
1	efrain	690
43	efrain	691
1	efrain	692	`}`
		693
		694	`exit;`
		695
		696	`}`
		697
		698
		699	`public function authPreDispatch(MvcEvent $event)`
		700	`{`
		701
		702
		703
		704
		705	`$serviceManager = $event->getApplication()->getServiceManager();`
		706	`$adapter = $serviceManager->get('leaders-linked-db');`
		707
		708	`$routeName = $event->getRouteMatch()->getMatchedRouteName();`
		709
		710
		711	`$requestMethod = isset($_SERVER['REQUEST_METHOD']) ? trim(strtoupper($_SERVER['REQUEST_METHOD'])) : '';`
		712
		713	`if($requestMethod == 'POST' \|\| $requestMethod == 'PUT' \|\| $requestMethod == 'DELETE') {`
		714
		715
23	efrain	716	`if($this->authByOTP && substr($routeName, 0, 8) == 'services') {`
1	efrain	717	`$exclude = true;`
		718	`} else {`
		719	`$exclude = false;`
		720
		721	`$usertypes = getAclUsertype();`
		722
		723
		724	`foreach($usertypes[UserType::GUEST] as $resourceName)`
		725	`{`
		726	`if($routeName == $resourceName) {`
		727	`$exclude = true;`
		728	`break;`
		729	`}`
		730	`}`
		731	`}`
		732
17	efrain	733	`//$exclude = true;`
1	efrain	734
		735	`if(!$exclude) {`
		736	`$httpToken = isset($_SERVER['HTTP_X_CSRF_TOKEN']) ? $_SERVER['HTTP_X_CSRF_TOKEN'] : '';`
		737	`$sessionToken = isset($_SESSION['token']) ? $_SESSION['token'] : uniqid();`
		738
		739	`unset($_SESSION['token']);`
		740	`if ( $httpToken != $sessionToken) {`
		741	`$response = $event->getResponse();`
		742	`$headers = $response->getHeaders();`
		743	`$headers->clearHeaders();`
		744	`$headers->addHeaderLine('Content-type', 'application/json; charset=UTF-8');`
		745
45	efrain	746	`$response->setStatusCode(200);`
1	efrain	747	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		748	`$response->send();`
		749	`exit;`
		750	`}`
		751
		752	`}`
		753	`}`
		754
		755
		756
		757	`if($this->currentUserPlugin->hasIdentity()) {`
		758	`$user = $this->currentUserPlugin->getUser();`
		759	`$userTypeId = $user->usertype_id;`
		760
		761
		762	`} else {`
		763
		764	`$userTypeId = UserType::GUEST;`
		765	`}`
		766
		767
		768	`if($this->acl->isAllowed($userTypeId, $routeName)) {`
		769	`$user = $this->currentUserPlugin->getUser();`
		770
		771
		772	`if($user) {`
		773
		774	`$updateLastActivity = true;`
		775	`if ('chat' == substr($routeName, 0, 4)) {`
		776	`$updateLastActivity = false;`
		777	`}`
		778	`if ('inmail' == substr($routeName, 0, 6)) {`
		779	`$updateLastActivity = false;`
		780	`}`
		781	`if ('check-session' == $routeName) {`
		782	`$updateLastActivity = false;`
		783	`}`
		784
		785
		786	`if($updateLastActivity) {`
		787	`$userMapper = UserMapper::getInstance($adapter);`
		788	`$userMapper->updateLastActivity($user->id);`
		789	`}`
		790	`}`
		791
		792
		793
		794	`} else {`
		795	`$response = $event->getResponse();`
54	efrain	796
45	efrain	797	`$response->setStatusCode(200);`
1	efrain	798	`$response->setContent(json_encode(['success' => false, 'data' => 'Unauthorized.', 'fatal' => true]));`
		799	`$response->send();`
		800	`exit;`
		801
		802
		803
		804	`}`
		805
		806
		807	`}`
		808
		809
		810	`public function authPosDispatch(MvcEvent $event)`
		811	`{`
54	efrain	812	`$response = $event->getResponse();`
		813	`Functions::addCrossSiteToResponse($response);`
1	efrain	814	`}`
		815
		816
		817
		818
		819	`}`

Proyectos de Subversion LeadersLinked - Services

(root)/module/LeadersLinked/src/Module.php – Rev 86