<?php namespace fox;
/**
*
* Class fox\oAuthProfile
*
* @copyright MX STAR LLC 2018-2022
* @version 4.0.0
* @author Pavel Dmitriev
* @license GPLv3
*
**/
class oAuthProfile extends baseClass implements externalCallable {
protected $id;
public $name;
public $hash;
public $url;
public $clientId;
protected $__clientKey;
public $config;
public bool $enabled=true;
public bool $deleted=false;
public static $deletedFieldName = "deleted";
public static $sqlTable="tblOAuthProfiles";
protected static $sqlColumns = [
"name"=>["type"=>"VARCHAR(255)","nullable"=>false],
"url"=>["type"=>"VARCHAR(255)", "nullable"=>true],
"clientId"=>["type"=>"TEXT","nullable"=>false],
"clientKey"=>["type"=>"TEXT","nullable"=>false],
"config"=>["type"=>"TEXT","nullable"=>true],
"enabled"=>["type"=>"INT", "default"=>1],
"deleted"=>["type"=>"INT", "default"=>0],
"hash"=>["type"=>"VARCHAR(255)"],
];
protected function validateSave()
{
if (empty($this->hash)) {
trigger_error($this->hash);
$this->hash=xcrypt::hash(json_encode($this));
}
return true;
}
public function __set($key, $val) {
switch ($key) {
case "clientKey":
$this->__clientKey=$val;
break;
default:
parent::__set($key, $val);
break;
}
}
public function getClient($redirectUrl, $scope=null) : oAuthClient {
return new oAuthClient($this->url, $this->clientId, $this->__clientKey, $redirectUrl."/".$this->hash,$scope,$this->config);
}
public static function getByHash($hash) {
$ref = new static();
$sql = $ref->getSql();
$res = $sql->quickExec1Line($ref->sqlSelectTemplate." where `i`.`hash` = '".common::clearInput($hash,"0-9a-z")."'");
if ($res) {
return new static($res);
} else {
throw new foxException("Invalid hash");
}
}
public static function API_GET_list(request $request) {
if (! $request->user->checkAccess("adminAuthMethods", "core")) {
throw new foxException("Forbidden", 403);
}
return static::search()->result;
}
public static function APIX_GET_disable(request $request) {
if (! $request->user->checkAccess("adminAuthMethods", "core")) {
throw new foxException("Forbidden", 403);
}
$m=new static(common::clearInput($request->function,"0-9"));
$m->enabled=false;
$m->save();
static::log($request->instance,__FUNCTION__, "OAuth profile ".$m->name." disabled.",$request->user,"oAuthProfile",$m->id,null,logEntry::sevInfo);
}
public static function APIX_GET_enable(request $request) {
if (! $request->user->checkAccess("adminAuthMethods", "core")) {
throw new foxException("Forbidden", 403);
}
$m=new static(common::clearInput($request->function,"0-9"));
$m->enabled=true;
$m->save();
static::log($request->instance,__FUNCTION__, "OAuth profile ".$m->name." enabled.",$request->user,"oAuthProfile",$m->id,null,logEntry::sevInfo);
}
public static function API_GET(request $request) {
if (! $request->user->checkAccess("adminAuthMethods", "core")) {
throw new foxException("Forbidden", 403);
}
$m=new static(common::clearInput($request->function,"0-9"));
return $m;
}
public static function API_DELETE(request $request) {
if (! $request->user->checkAccess("adminAuthMethods", "core")) {
throw new foxException("Forbidden", 403);
}
$m=new static(common::clearInput($request->function,"0-9"));
$m->delete();
static::log($request->instance,__FUNCTION__, "OAuth profile ".$m->name." deleted.",$request->user,"oAuthProfile",$m->id,null,logEntry::sevInfo);
}
public static function API_PUT(request $request) {
if (! $request->user->checkAccess("adminAuthMethods", "core")) {
throw new foxException("Forbidden", 403);
}
$m=new static();
$m->name=common::clearInput($request->requestBody->name,"0-9A-Za-z._@-");
$m->url=common::clearInput($request->requestBody->url,"0-9A-Za-z._:/-");
$m->clientId=common::clearInput($request->requestBody->clientId,"0-9A-Za-z._:/-");
$m->clientKey=common::clearInput($request->requestBody->clientKey,"0-9A-Za-z._@-");
$m->config=$request->requestBody->config;
$m->hash=common::clearInput($request->requestBody->hash,"0-9A-Za-z._@-");
$m->save();
static::log($request->instance,__FUNCTION__, "OAuth profile ".$m->name." created.",$request->user,"oAuthProfile",$m->id,null,logEntry::sevInfo);
return $m;
}
public static function API_PATCH(request $request) {
if (! $request->user->checkAccess("adminAuthMethods", "core")) {
throw new foxException("Forbidden", 403);
}
$m=new static(common::clearInput($request->function,"0-9"));
$m->name=common::clearInput($request->requestBody->name,"0-9A-Za-z._@-");
$m->url=common::clearInput($request->requestBody->url,"0-9A-Za-z._:/-");
if (!empty($request->requestBody->clientId)) { $m->clientId=common::clearInput($request->requestBody->clientId,"0-9A-Za-z._:/-"); }
if (!empty($request->requestBody->clientKey)) { $m->clientKey=common::clearInput($request->requestBody->clientKey,"0-9A-Za-z._@-"); }
$m->config=$request->requestBody->config;
if (property_exists($request->requestBody,"hash")) { $m->hash=common::clearInput($request->requestBody->hash,"0-9A-Za-z._@-"); }
$m->save();
static::log($request->instance,__FUNCTION__, "OAuth profile ".$m->name." updated.",$request->user,"oAuthProfile",$m->id,null,logEntry::sevInfo,["changelog"=>$m->changelog]);
}
}
?>