WebSVN – LeadersLinked - Services – Diff – /module/LeadersLinked/src/Controller/AuthController.php

             'success' => false,
             'data' => 'ERROR_METHOD_NOT_ALLOWED'
         ]);
+    }
+    public function debugAction()
+    {
+        $currentNetworkPlugin = $this->plugin('currentNetworkPlugin');
+        $currentNetwork = $currentNetworkPlugin->getNetwork();
+        $request = $this->getRequest();
+        if ($request->isPost()) {
+            $currentNetworkPlugin = $this->plugin('currentNetworkPlugin');
+            $currentNetwork = $currentNetworkPlugin->getNetwork();
+            $jwtToken = null;
+            $headers = getallheaders();
+            if(!empty($headers['authorization']) || !empty($headers['Authorization'])) {
+                $token = trim(empty($headers['authorization']) ? $headers['Authorization'] : $headers['authorization']);
+                if (substr($token, 0, 6 ) == 'Bearer') {
+                    $token = trim(substr($token, 7));
+                    if(!empty($this->config['leaderslinked.jwt.key'])) {
+                        $key = $this->config['leaderslinked.jwt.key'];
+                        try {
+                            $payload = JWT::decode($token, new Key($key, 'HS256'));
+                            if(empty($payload->iss) || $payload->iss != $_SERVER['HTTP_HOST']) {
+                                return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong server',  'fatal'  => true]);
+                            }
+                            $uuid = empty($payload->uuid) ? '' : $payload->uuid;
+                            $jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);
+                            $jwtToken = $jwtTokenMapper->fetchOneByUuid($uuid);
+                            if(!$jwtToken) {
+                                return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Expired',  'fatal'  => true]);
+                            }
+                        } catch(\Exception $e) {
+                            return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong key',  'fatal'  => true]);
+                        }
+                    } else {
+                        return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - SecreteKey required',  'fatal'  => true]);
+                    }
+                } else {
+                    return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Bearer required',  'fatal'  => true]);
+                }
+            } else {
+                return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Required',  'fatal'  => true]);
+            }
+            $form = new  SigninDebugForm($this->config);
+            $dataPost = $request->getPost()->toArray();
+            if (empty($_SESSION['aes'])) {
+                return new JsonModel([
+                    'success'   => false,
+                    'data'      => 'ERROR_WEBSERVICE_ENCRYPTION_KEYS_NOT_FOUND'
+                ]);
+            }
+            error_log(print_r($dataPost, true));
+            $aes = $_SESSION['aes'];
+            error_log('aes : ' . $aes);
+            unset( $_SESSION['aes'] );
+            if (!empty($dataPost['email'])) {
+                $dataPost['email'] = CryptoJsAes::decrypt($dataPost['email'], $aes);
+            }
+            if (!empty($dataPost['password'])) {
+                $dataPost['password'] = CryptoJsAes::decrypt($dataPost['password'], $aes);
+            }
+            error_log(print_r($dataPost, true));
+            $form->setData($dataPost);
+            if ($form->isValid()) {
+                $dataPost = (array) $form->getData();
+                $email      = $dataPost['email'];
+                $password   = $dataPost['password'];
+                $authAdapter = new AuthAdapter($this->adapter, $this->logger);
+                $authAdapter->setData($email, $password, $currentNetwork->id);
+                $authService = new AuthenticationService();
+                $result = $authService->authenticate($authAdapter);
+                if ($result->getCode() == AuthResult::SUCCESS) {
+                    $identity = $result->getIdentity();
+                    $userMapper = UserMapper::getInstance($this->adapter);
+                    $user = $userMapper->fetchOne($identity['user_id']);
+                    if($token) {
+                        $jwtToken->user_id = $user->id;
+                        $jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);
+                        $jwtTokenMapper->update($jwtToken);
+                    }
+                    $navigator = get_browser(null, true);
+                    $device_type    =  isset($navigator['device_type']) ? $navigator['device_type'] : '';
+                    $platform       =  isset($navigator['platform']) ? $navigator['platform'] : '';
+                    $browser        =  isset($navigator['browser']) ? $navigator['browser'] : '';
+                    $istablet = isset($navigator['istablet']) ?  intval($navigator['istablet']) : 0;
+                    $ismobiledevice = isset($navigator['ismobiledevice']) ? intval($navigator['ismobiledevice']) : 0;
+                    $version = isset($navigator['version']) ? $navigator['version'] : '';
+                    $userBrowserMapper = UserBrowserMapper::getInstance($this->adapter);
+                    $userBrowser = $userBrowserMapper->fetch($user->id, $device_type, $platform, $browser);
+                    if ($userBrowser) {
+                        $userBrowserMapper->update($userBrowser);
+                    } else {
+                        $userBrowser = new UserBrowser();
+                        $userBrowser->user_id           = $user->id;
+                        $userBrowser->browser           = $browser;
+                        $userBrowser->platform          = $platform;
+                        $userBrowser->device_type       = $device_type;
+                        $userBrowser->is_tablet         = $istablet;
+                        $userBrowser->is_mobile_device  = $ismobiledevice;
+                        $userBrowser->version           = $version;
+                        $userBrowserMapper->insert($userBrowser);
+                    }
+                    //
+                    $ip = Functions::getUserIP();
+                    $ip = $ip == '127.0.0.1' ? '148.240.211.148' : $ip;
+                    $userIpMapper = UserIpMapper::getInstance($this->adapter);
+                    $userIp = $userIpMapper->fetch($user->id, $ip);
+                    if (empty($userIp)) {
+                        if ($this->config['leaderslinked.runmode.sandbox']) {
+                            $filename = $this->config['leaderslinked.geoip2.production_database'];
+                        } else {
+                            $filename = $this->config['leaderslinked.geoip2.sandbox_database'];
+                        }
+                        $reader = new GeoIp2Reader($filename); //GeoIP2-City.mmdb');
+                        $record = $reader->city($ip);
+                        if ($record) {
+                            $userIp = new UserIp();
+                            $userIp->user_id = $user->id;
+                            $userIp->city = !empty($record->city->name) ? Functions::utf8_decode($record->city->name) : '';
+                            $userIp->state_code = !empty($record->mostSpecificSubdivision->isoCode) ? Functions::utf8_decode($record->mostSpecificSubdivision->isoCode) : '';
+                            $userIp->state_name = !empty($record->mostSpecificSubdivision->name) ? Functions::utf8_decode($record->mostSpecificSubdivision->name) : '';
+                            $userIp->country_code = !empty($record->country->isoCode) ? Functions::utf8_decode($record->country->isoCode) : '';
+                            $userIp->country_name = !empty($record->country->name) ? Functions::utf8_decode($record->country->name) : '';
+                            $userIp->ip = $ip;
+                            $userIp->latitude = !empty($record->location->latitude) ? $record->location->latitude : 0;
+                            $userIp->longitude = !empty($record->location->longitude) ? $record->location->longitude : 0;
+                            $userIp->postal_code = !empty($record->postal->code) ? $record->postal->code : '';
+                            $userIpMapper->insert($userIp);
+                        }
+                    } else {
+                        $userIpMapper->update($userIp);
+                    }
+                    /*
+                     if ($remember) {
+                     $expired = time() + 365 * 24 * 60 * 60;
+                     $cookieEmail = new SetCookie('email', $email, $expired);
+                     } else {
+                     $expired = time() - 7200;
+                     $cookieEmail = new SetCookie('email', '', $expired);
+                     }
+                     $response = $this->getResponse();
+                     $response->getHeaders()->addHeader($cookieEmail);
+                     */
+                    $this->logger->info('Ingreso a LeadersLiked', ['user_id' => $user->id, 'ip' => Functions::getUserIP()]);
+                    $user_share_invitation = $this->cache->getItem('user_share_invitation');
+                    $url =  $this->url()->fromRoute('dashboard');
+                    if ($user_share_invitation && is_array($user_share_invitation)) {
+                        $content_uuid = $user_share_invitation['code'];
+                        $content_type = $user_share_invitation['type'];
+                        $content_user = $user_share_invitation['user'];
+                        $userRedirect = $userMapper->fetchOneByUuid($content_user);
+                        if ($userRedirect && $userRedirect->status == User::STATUS_ACTIVE && $user->id != $userRedirect->id) {
+                            $connectionMapper = ConnectionMapper::getInstance($this->adapter);
+                            $connection = $connectionMapper->fetchOneByUserId1AndUserId2($user->id, $userRedirect->id);
+                            if ($connection) {
+                                if ($connection->status != Connection::STATUS_ACCEPTED) {
+                                    $connectionMapper->approve($connection);
+                                }
+                            } else {
+                                $connection = new Connection();
+                                $connection->request_from = $user->id;
+                                $connection->request_to = $userRedirect->id;
+                                $connection->status = Connection::STATUS_ACCEPTED;
+                                $connectionMapper->insert($connection);
+                            }
+                        }
+                        if($content_type == 'feed') {
+                            $url = $this->url()->fromRoute('dashboard', ['feed' => $content_uuid ]);
+                        }
+                        else if($content_type == 'post') {
+                            $url = $this->url()->fromRoute('post', ['id' => $content_uuid ]);
+                        }
+                        else {
+                            $url = $this->url()->fromRoute('dashboard');
+                        }
+                    }
+                    $hostname = empty($_SERVER['HTTP_HOST']) ?  '' : $_SERVER['HTTP_HOST'];
+                    $networkMapper = NetworkMapper::getInstance($this->adapter);
+                    $network = $networkMapper->fetchOneByHostnameForFrontend($hostname);
+                    if(!$network) {
+                        $network = $networkMapper->fetchOneByDefault();
+                    }
+                    $hostname = trim($network->main_hostname);
+                    $url = 'https://' . $hostname . $url;
+                    $data = [
+                        'redirect'  => $url,
+                        'uuid'      => $user->uuid,
+                    ];
+                    if($currentNetwork->xmpp_active) {
+                        $externalCredentials = ExternalCredentials::getInstancia($this->config, $this->adapter);
+                        $externalCredentials->getUserBy($user->id);
+                        $data['xmpp_domain'] = $currentNetwork->xmpp_domain;
+                        $data['xmpp_hostname'] = $currentNetwork->xmpp_hostname;
+                        $data['xmpp_port'] = $currentNetwork->xmpp_port;
+                        $data['xmpp_username'] = $externalCredentials->getUsernameXmpp();
+                        $data['xmpp_pasword'] = $externalCredentials->getPasswordXmpp();
+                        $data['inmail_username'] = $externalCredentials->getUsernameInmail();
+                        $data['inmail_pasword'] = $externalCredentials->getPasswordInmail();
+                    }
+                    $data = [
+                        'success'   => true,
+                        'data'      => $data
+                    ];
+                    $this->cache->removeItem('user_share_invitation');
+                } else {
+                    $message = $result->getMessages()[0];
+                    if (!in_array($message, [
+                        'ERROR_USER_NOT_FOUND', 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED', 'ERROR_USER_IS_BLOCKED',
+                        'ERROR_USER_IS_INACTIVE', 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED', 'ERROR_ENTERED_PASS_INCORRECT_2',
+                        'ERROR_ENTERED_PASS_INCORRECT_1', 'ERROR_USER_REQUEST_ACCESS_IS_PENDING', 'ERROR_USER_REQUEST_ACCESS_IS_REJECTED'
+                    ])) {
+                    }
+                    switch ($message) {
+                        case 'ERROR_USER_NOT_FOUND':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no existe', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case 'ERROR_USER_EMAIL_HASNT_BEEN_VARIFIED':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Email no verificado', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case 'ERROR_USER_IS_BLOCKED':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario bloqueado', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case 'ERROR_USER_IS_INACTIVE':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Usuario inactivo', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case 'ERROR_ENTERED_PASS_INCORRECT_USER_IS_BLOCKED':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 3er Intento Usuario bloqueado', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case 'ERROR_ENTERED_PASS_INCORRECT_2':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 1er Intento', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case 'ERROR_ENTERED_PASS_INCORRECT_1':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - 2do Intento', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case 'ERROR_USER_REQUEST_ACCESS_IS_PENDING':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Falta verificar que pertence a la Red Privada', ['ip' => Functions::getUserIP()]);
+                            break;
+                        case  'ERROR_USER_REQUEST_ACCESS_IS_REJECTED':
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Rechazado por no pertence a la Red Privada', ['ip' => Functions::getUserIP()]);
+                            break;
+                        default:
+                            $message = 'ERROR_UNKNOWN';
+                            $this->logger->err('Error de ingreso a LeadersLinked de ' . $email . ' - Error desconocido', ['ip' => Functions::getUserIP()]);
+                            break;
+                    }
+                    $data = [
+                        'success'   => false,
+                        'data'   => $message
+                    ];
+                }
+                return new JsonModel($data);
+            } else {
+                $messages = [];
+                $form_messages = (array) $form->getMessages();
+                foreach ($form_messages  as $fieldname => $field_messages) {
+                    $messages[$fieldname] = array_values($field_messages);
+                }
+                return new JsonModel([
+                    'success'   => false,
+                    'data'   => $messages
+                ]);
+            }
+        } else if ($request->isGet()) {
+            $aes = '';
+            $jwtToken = null;
+            $headers = getallheaders();
+            if(!empty($headers['authorization']) || !empty($headers['Authorization'])) {
+                $token = trim(empty($headers['authorization']) ? $headers['Authorization'] : $headers['authorization']);
+                if (substr($token, 0, 6 ) == 'Bearer') {
+                    $token = trim(substr($token, 7));
+                    if(!empty($this->config['leaderslinked.jwt.key'])) {
+                        $key = $this->config['leaderslinked.jwt.key'];
+                        try {
+                            $payload = JWT::decode($token, new Key($key, 'HS256'));
+                            if(empty($payload->iss) || $payload->iss != $_SERVER['HTTP_HOST']) {
+                                return new JsonModel(['success' => false, 'data' => 'Unauthorized - JWT - Wrong server',  'fatal'  => true]);
+                            }
+                            $uuid = empty($payload->uuid) ? '' : $payload->uuid;
+                            $jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);
+                            $jwtToken = $jwtTokenMapper->fetchOneByUuid($uuid);
+                        } catch(\Exception $e) {
+                            //Token invalido
+                        }
+                    }
+                }
+            }
+            if(!$jwtToken) {
+                $aes = Functions::generatePassword(16);
+                $jwtToken = new JwtToken();
+                $jwtToken->aes = $aes;
+                $jwtTokenMapper = JwtTokenMapper::getInstance($this->adapter);
+                if($jwtTokenMapper->insert($jwtToken)) {
+                    $jwtToken = $jwtTokenMapper->fetchOne($jwtToken->id);
+                }
+                $token = '';
+                if(!empty($this->config['leaderslinked.jwt.key'])) {
+                    $issuedAt   = new \DateTimeImmutable();
+                    $expire     = $issuedAt->modify('+365 days')->getTimestamp();
+                    $serverName = $_SERVER['HTTP_HOST'];
+                    $payload = [
+                        'iat'  => $issuedAt->getTimestamp(),
+                        'iss'  => $serverName,
+                        'nbf'  => $issuedAt->getTimestamp(),
+                        'exp'  => $expire,
+                        'uuid' => $jwtToken->uuid,
+                    ];
+                    $key = $this->config['leaderslinked.jwt.key'];
+                    $token = JWT::encode($payload, $key, 'HS256');
+                }
+            }
+            if ($this->config['leaderslinked.runmode.sandbox']) {
+                $site_key      = $this->config['leaderslinked.google_captcha.sandbox_site_key'];
+            } else {
+                $site_key      = $this->config['leaderslinked.google_captcha.production_site_key'];
+            }
+            $access_usign_social_networks = $this->config['leaderslinked.runmode.access_usign_social_networks'];
+            $sandbox = $this->config['leaderslinked.runmode.sandbox'];
+            if ($sandbox) {
+                $google_map_key  = $this->config['leaderslinked.google_map.sandbox_api_key'];
+            } else {
+                $google_map_key  = $this->config['leaderslinked.google_map.production_api_key'];
+            }
+            $parts = explode('.', $currentNetwork->main_hostname);
+            if($parts[1] === 'com') {
+                $replace_main = false;
+            } else {
+                $replace_main = true;
+            }
+            $storage = Storage::getInstance($this->config, $this->adapter);
+            $path = $storage->getPathNetwork();
+            if($currentNetwork->logo) {
+                $logo_url = $storage->getGenericImage($path, $currentNetwork->uuid, $currentNetwork->logo);
+            } else {
+                $logo_url = '';
+            }
+            if($currentNetwork->navbar) {
+                $navbar_url = $storage->getGenericImage($path, $currentNetwork->uuid, $currentNetwork->navbar);
+            } else {
+                $navbar_url = '';
+            }
+            if($currentNetwork->favico) {
+                $favico_url = $storage->getGenericImage($path, $currentNetwork->uuid, $currentNetwork->favico);
+            } else {
+                $favico_url = '';
+            }
+            $data = [
+                'google_map_key'                => $google_map_key,
+                'email'                         => '',
+                'remember'                      => false,
+                'site_key'                      => $site_key,
+                'theme_id'                      => $currentNetwork->theme_id,
+                'aes'                           => $aes,
+                'jwt'                           => $token,
+                'defaultNetwork'                => $currentNetwork->default,
+                'access_usign_social_networks'  => $access_usign_social_networks && $currentNetwork->default == Network::DEFAULT_YES ? 'y' : 'n',
+                'logo_url'                      => $logo_url,
+                'navbar_url'                    => $navbar_url,
+                'favico_url'                    => $favico_url,
+                'intro'                         => $currentNetwork->intro ? $currentNetwork->intro : '',
+                'is_logged_in'                  => $jwtToken->user_id ? true : false,
+            ];
+            if($currentNetwork->default == Network::DEFAULT_YES) {
+                $currentUserPlugin = $this->plugin('currentUserPlugin');
+                if ($currentUserPlugin->hasIdentity()) {
+                    $externalCredentials = ExternalCredentials::getInstancia($this->config, $this->adapter);
+                    $externalCredentials->getUserBy($currentUserPlugin->getUserId());
+                    if($currentNetwork->xmpp_active) {
+                        $data['xmpp_domain']      = $currentNetwork->xmpp_domain;
+                        $data['xmpp_hostname']    = $currentNetwork->xmpp_hostname;
+                        $data['xmpp_port']        = $currentNetwork->xmpp_port;
+                        $data['xmpp_username']    = $externalCredentials->getUsernameXmpp();
+                        $data['xmpp_password']    = $externalCredentials->getPasswordXmpp();
+                        $data['inmail_username']    = $externalCredentials->getUsernameInmail();
+                        $data['inmail_password']    = $externalCredentials->getPasswordInmail();
+                    }
+                }
+            }
+            $data = [
+                'success' => true,
+                'data' =>  $data
+            ];
+        } else {
+            $data = [
+                'success' => false,
+                'data' => 'ERROR_METHOD_NOT_ALLOWED'
+            ];
+            return new JsonModel($data);
+        }
+        return new JsonModel($data);
+    }

Proyectos de Subversion LeadersLinked - Services

(root)/module/LeadersLinked/src/Controller/AuthController.php – Rev 334 → 340