luos/workflow/engine/controllers/designer.php

<?php

use ProcessMaker\Core\System;
use ProcessMaker\Plugins\PluginRegistry;

/**
 * Designer Controller
 *
 * @inherits Controller
 * @access public
 */

use Maveriks\Util\ClassLoader;
use OAuth2\Request;
use ProcessMaker\BusinessModel\InputDocument;
use ProcessMaker\BusinessModel\Light\Tracker;
use ProcessMaker\Services\OAuth2\Server;

class Designer extends Controller
{
    protected $clientId = 'x-pm-local-client';

    public function __construct()
    {
    }

    /**
     * Index Action
     *
     * @param string $httpData (opional)
     * 
     * @see Controller->call()
     */
    public function index($httpData)
    {
        global $RBAC;
        $proUid = isset($httpData->prj_uid) ? $httpData->prj_uid : '';
        $appUid = isset($httpData->app_uid) ? $httpData->app_uid : '';
        $proReadOnly = isset($httpData->prj_readonly) ? $httpData->prj_readonly : 'false';

        $clientToken = $this->getCredentials($httpData);
        $debug = false; //System::isDebugMode();
        $consolidated = 0;
        $enterprise = 0;
        $distribution = 0;

        $usrUid = (isset($RBAC->userObj)) ? $RBAC->userObj->getUsrUid() : '';

        $userProperties = UsersPropertiesPeer::retrieveByPk($usrUid);

        /*----------------------------------********---------------------------------*/
        $licensedFeatures = PMLicensedFeatures::getSingleton();
        if ($licensedFeatures->verifyfeature('7TTeDBQeWRoZTZKYjh4eFpYUlRDUUEyVERPU3FxellWank=')) {
            $consolidated = 1;
        }
        $enterprise = 1;

        if ($licensedFeatures->verifyfeature("Jb0N3dSZHVhZ1JNOEFZaElqdm15Y050Wmh5S0FEVEI0ckQ=")) {
            $distribution = 1;
        }
        /*----------------------------------********---------------------------------*/

        $this->setVar('prj_uid', htmlspecialchars($proUid));
        $this->setVar('app_uid', htmlspecialchars($appUid));
        $this->setVar('consolidated', $consolidated);
        $this->setVar('enterprise', $enterprise);
        $this->setVar('prj_readonly', $proReadOnly);
        $this->setVar('credentials', base64_encode(json_encode($clientToken)));
        $this->setVar('isDebugMode', $debug);
        $this->setVar("distribution", $distribution);
        $this->setVar("SYS_SYS", config("system.workspace"));
        $this->setVar("SYS_LANG", SYS_LANG);
        $this->setVar("SYS_SKIN", SYS_SKIN);
        $this->setVar('HTTP_SERVER_HOSTNAME', System::getHttpServerHostnameRequestsFrontEnd());
        isset($userProperties) ? $this->setVar('PMDYNAFORM_FIRST_TIME',
            $userProperties->getPmdynaformFirstTime()) : $this->setVar('PMDYNAFORM_FIRST_TIME', '0');
        $inpuDocument = new InputDocument();
        $this->setVar('maxFileSizeInformation', G::json_encode($inpuDocument->getMaxFileSize()));

        if ($debug) {
            if (!file_exists(PATH_HTML . "lib-dev/pmUI/build.cache")) {
                throw new RuntimeException("Development JS Files were are not generated!.\nPlease execute: \$>rake pmBuildDebug in pmUI project");
            }
            if (!file_exists(PATH_HTML . "lib-dev/mafe/build.cache")) {
                throw new RuntimeException("Development JS Files were are not generated!.\nPlease execute: \$>rake pmBuildDebug in MichelangeloFE project");
            }

            $mafeFiles = file(PATH_HTML . "lib-dev/mafe/build.cache", FILE_IGNORE_NEW_LINES);
            $mafeCssFiles = array();
            $mafeJsFiles = array();

            foreach ($mafeFiles as $file) {
                if (substr($file, -3) == ".js") {
                    $mafeJsFiles[] = $file;
                } else {
                    $mafeCssFiles[] = $file;
                }
            }

            $this->setVar('pmuiJsCacheFile', file(PATH_HTML . "lib-dev/pmUI/build.cache", FILE_IGNORE_NEW_LINES));
            $this->setVar('pmuiCssCacheFile', file(PATH_HTML . "lib-dev/pmUI/css.cache", FILE_IGNORE_NEW_LINES));

            $this->setVar('designerCacheFile',
                file(PATH_HTML . "lib-dev/mafe/applications.cache", FILE_IGNORE_NEW_LINES));
            $this->setVar('mafeJsFiles', $mafeJsFiles);
            $this->setVar('mafeCssFiles', $mafeCssFiles);
        } else {
            $buildhashFile = PATH_HTML . "lib/buildhash";
            if (!file_exists($buildhashFile)) {
                throw new RuntimeException("CSS and JS Files were are not generated!.\nPlease review install process");
            }
            $buildhash = file_get_contents($buildhashFile);
            $this->setVar('buildhash', $buildhash);
        }

        $translationMafe = "/translations/translationsMafe.js";
        $this->setVar('translationMafe', $translationMafe);
        if (!file_exists(PATH_HTML . "translations" . PATH_SEP . 'translationsMafe' . ".js")) {
            $translation = new Translation();
            $translation->generateFileTranslationMafe();
        }

        $this->setVar('sys_skin', SYS_SKIN);

        //Verify user
        $criteria = new Criteria('workflow');

        $criteria->addSelectColumn(OauthAccessTokensPeer::ACCESS_TOKEN);
        $criteria->addSelectColumn(OauthAccessTokensPeer::USER_ID);
        $criteria->add(OauthAccessTokensPeer::ACCESS_TOKEN, $clientToken['access_token'], Criteria::EQUAL);
        $rsCriteria = OauthAccessTokensPeer::doSelectRS($criteria);
        $rsCriteria->setFetchmode(ResultSet::FETCHMODE_ASSOC);

        if ($rsCriteria->next()) {
            $row = $rsCriteria->getRow();

            $user = new \ProcessMaker\BusinessModel\User();

            if ($user->checkPermission($row['USER_ID'], 'PM_FACTORY') || $proReadOnly == 'true') {
                $this->setView('designer/index');
            } else {
                G::header('Location: /errors/error403.php');
                die();
            }
        }

        //plugin set source path
        $sourceCss = array();
        $sourceJs = array();

        $pluginRegistry = PluginRegistry::loadSingleton();
        $srcPath = $pluginRegistry->getDesignerSourcePath();

        foreach ($srcPath as $value) {
            $ext = pathinfo($value->pathFile, PATHINFO_EXTENSION);
            if ($ext === "css") {
                $sourceCss[] = $value->pathFile;
            }
            if ($ext === "js") {
                $sourceJs[] = $value->pathFile;
            }
        }

        $this->setVar('sourceCss', $sourceCss);
        $this->setVar('sourceJs', $sourceJs);

        $this->render();
    }

    protected function getClientCredentials()
    {
        $oauthQuery = new ProcessMaker\Services\OAuth2\PmPdo($this->getDsn());
        return $oauthQuery->getClientDetails($this->clientId);
    }

    protected function getAuthorizationCode($client)
    {
        Server::setDatabaseSource($this->getDsn());
        Server::setPmClientId($client['CLIENT_ID']);

        $oauthServer = new Server();

        if (isset($client["tracker_designer"]) && $client["tracker_designer"] == 1) {
            $_SESSION["USER_LOGGED"] = "00000000000000000000000000000001";
        }

        $userId = $_SESSION['USER_LOGGED'];
        $authorize = true;
        $_GET = array_merge($_GET, array(
            'response_type' => 'code',
            'client_id' => $client['CLIENT_ID'],
            'scope' => implode(' ', $oauthServer->getScope())
        ));

        $response = $oauthServer->postAuthorize($authorize, $userId, true);
        $code = substr($response->getHttpHeader('Location'), strpos($response->getHttpHeader('Location'), 'code=') + 5, 40);

        if (isset($client["tracker_designer"]) && $client["tracker_designer"] == 1) {
            unset($_SESSION["USER_LOGGED"]);
        }

        return $code;
    }

    private function getDsn()
    {
        list($host, $port) = strpos(DB_HOST, ':') !== false ? explode(':', DB_HOST) : array(DB_HOST, '');
        $port = empty($port) ? '' : ";port=$port";
        $dsn = DB_ADAPTER . ':host=' . $host . ';dbname=' . DB_NAME . $port;

        return array('dsn' => $dsn, 'username' => DB_USER, 'password' => DB_PASS);
    }

    /**
     * Return credentials oauth2
     *
     * @param object $httpData
     * @return array credentials
     */
    public function getCredentials($httpData = null)
    {
        $client = $this->getClientCredentials();

        if (!empty($httpData->tracker_designer) && $httpData->tracker_designer == 1) {
            try {
                if (!isset($_SESSION['CASE']) && !isset($_SESSION['PIN'])) {
                    throw (new \Exception(
                        \G::LoadTranslation('ID_CASE_NOT_EXISTS') . "\n" . \G::LoadTranslation('ID_PIN_INVALID')
                    ));
                }
                Tracker::authentication($_SESSION['CASE'], $_SESSION['PIN']);
            } catch (\Exception $e) {
                Bootstrap::registerMonolog('CaseTracker', 400, $e->getMessage(), [], config("system.workspace"), 'processmaker.log');
                \G::header('Location: /errors/error403.php');
                die();
            }
            $client["tracker_designer"] = 1;
        }

        $authCode = $this->getAuthorizationCode($client);

        $loader = ClassLoader::getInstance();
        $loader->add(PATH_TRUNK . 'vendor/bshaffer/oauth2-server-php/src/', "OAuth2");

        $request = array(
            'grant_type' => 'authorization_code',
            'code' => $authCode
        );
        $server = array(
            'REQUEST_METHOD' => 'POST'
        );
        $headers = array(
            "PHP_AUTH_USER" => $client['CLIENT_ID'],
            "PHP_AUTH_PW" => $client['CLIENT_SECRET'],
            "Content-Type" => "multipart/form-data;",
            "Authorization" => "Basic " . base64_encode($client['CLIENT_ID'] . ":" . $client['CLIENT_SECRET'])
        );
        $request = new Request(array(), $request, array(), array(), array(), $server, null, $headers);
        $oauthServer = new Server();
        $response = $oauthServer->postToken($request, true);
        $clientToken = $response->getParameters();
        $clientToken["client_id"] = $client['CLIENT_ID'];
        $clientToken["client_secret"] = $client['CLIENT_SECRET'];

        return $clientToken;
    }
}
Updates on Oauth register method and New designer open action on process list 2013-11-06 10:10:36 -04:00			`<?php`

Add namespace Processmaker\Core 2017-08-14 16:13:46 -04:00			`use ProcessMaker\Core\System;`
change 2017-08-01 12:16:06 -04:00			`use ProcessMaker\Plugins\PluginRegistry;`

Updates on Oauth register method and New designer open action on process list 2013-11-06 10:10:36 -04:00			`/**`
			`* Designer Controller`
			`*`
			`* @inherits Controller`
			`* @access public`
			`*/`

HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`use Maveriks\Util\ClassLoader;`
PMC-313 2019-02-27 19:48:45 -04:00			`use OAuth2\Request;`
			`use ProcessMaker\BusinessModel\InputDocument;`
			`use ProcessMaker\BusinessModel\Light\Tracker;`
			`use ProcessMaker\Services\OAuth2\Server;`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00
Updates on Oauth register method and New designer open action on process list 2013-11-06 10:10:36 -04:00			`class Designer extends Controller`
			`{`
Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00			`protected $clientId = 'x-pm-local-client';`

HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`public function __construct()`
Updates on Oauth register method and New designer open action on process list 2013-11-06 10:10:36 -04:00			`{`
			`}`

			`/**`
			`* Index Action`
			`*`
			`* @param string $httpData (opional)`
PMC-313 2019-02-27 19:48:45 -04:00			`*`
			`* @see Controller->call()`
Updates on Oauth register method and New designer open action on process list 2013-11-06 10:10:36 -04:00			`*/`
			`public function index($httpData)`
			`{`
PMC-61 2018-11-27 15:59:01 -04:00			`global $RBAC;`
some changes in projects opening methods in User Interface. - An menu option "open with classic editor" was added to open new bpmn projects into classic editor 2014-03-06 17:41:39 -04:00			`$proUid = isset($httpData->prj_uid) ? $httpData->prj_uid : '';`
Implementation of processmap in read-only mode. 2014-05-21 15:58:45 -04:00			`$appUid = isset($httpData->app_uid) ? $httpData->app_uid : '';`
			`$proReadOnly = isset($httpData->prj_readonly) ? $httpData->prj_readonly : 'false';`
PM-2288 "DesignerBPMN>CaseTracker: No se puede..." SOLVED 2015-05-08 11:24:26 -04:00
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`$clientToken = $this->getCredentials($httpData);`
disabling temporarily debug mode on designer main template 2014-07-09 10:43:51 -04:00			`$debug = false; //System::isDebugMode();`
Correccion de CONSOLIDATED 2015-03-24 17:42:13 -04:00			`$consolidated = 0;`
PM-2660 Adicion del permiso Summary Form 2015-05-08 15:41:43 -04:00			`$enterprise = 0;`
PM-2835 "Adicionar los siguientes features..." SOLVED Issue: Adicionar los siguientes features la posibilidad de seleccionarse en la licencia (features): - Code Scanner - Multiple Email Servers - Mobile Fields Cause: Nuevo validacion de licencia para features Solution: Se agrego validacion de licencia para los features especificados 2015-06-01 16:14:39 -04:00			`$distribution = 0;`

Solving conflicts for PMC-1126 2019-08-29 12:09:04 -04:00			`$usrUid = (isset($RBAC->userObj)) ? $RBAC->userObj->getUsrUid() : '';`

PMC-61 2018-11-27 15:59:01 -04:00			`$userProperties = UsersPropertiesPeer::retrieveByPk($usrUid);`

Adding marks for batch routing error in community version 2015-03-25 22:30:02 -04:00			`/----------------------------------******---------------------------------/`
HOR-4527 2017-12-04 13:25:35 +00:00			`$licensedFeatures = PMLicensedFeatures::getSingleton();`
Correccion de CONSOLIDATED 2015-03-24 17:42:13 -04:00			`if ($licensedFeatures->verifyfeature('7TTeDBQeWRoZTZKYjh4eFpYUlRDUUEyVERPU3FxellWank=')) {`
			`$consolidated = 1;`
			`}`
PM-2835 "Adicionar los siguientes features..." SOLVED Issue: Adicionar los siguientes features la posibilidad de seleccionarse en la licencia (features): - Code Scanner - Multiple Email Servers - Mobile Fields Cause: Nuevo validacion de licencia para features Solution: Se agrego validacion de licencia para los features especificados 2015-06-01 16:14:39 -04:00			`$enterprise = 1;`

			`if ($licensedFeatures->verifyfeature("Jb0N3dSZHVhZ1JNOEFZaElqdm15Y050Wmh5S0FEVEI0ckQ=")) {`
			`$distribution = 1;`
			`}`
Adding marks for batch routing error in community version 2015-03-25 22:30:02 -04:00			`/----------------------------------******---------------------------------/`
Correccion de CONSOLIDATED 2015-03-24 17:42:13 -04:00
HOR-282 Adds more output filtering. 2016-03-02 18:17:46 +00:00			`$this->setVar('prj_uid', htmlspecialchars($proUid));`
			`$this->setVar('app_uid', htmlspecialchars($appUid));`
Correccion de CONSOLIDATED 2015-03-24 17:42:13 -04:00			`$this->setVar('consolidated', $consolidated);`
PM-2660 Adicion del permiso Summary Form 2015-05-08 15:41:43 -04:00			`$this->setVar('enterprise', $enterprise);`
Implementation of processmap in read-only mode. 2014-05-21 15:58:45 -04:00			`$this->setVar('prj_readonly', $proReadOnly);`
Load Designer JS data update In javascript section of main file that load Designer UI for 'var credentials' now we're sending the access token and refresh token, instead access code, and client credentials. This is just because currently a lot of access tokens were being created for each process design is open, and while it is being open is sending two request, the first one to exchange an access code by an access token,.. Now, whith this change, while a process design is open we will made just one request to some resource with access token in the header,.. exchange access code by an access token is not needed any more. NOTE.- the access token passed to the front-end can be expired at first time,.. so we need that the exchange an access token by a refresh token handling is working well. 2014-06-16 18:05:04 -04:00			`$this->setVar('credentials', base64_encode(json_encode($clientToken)));`
disabling temporarily debug mode on designer main template 2014-07-09 10:43:51 -04:00			`$this->setVar('isDebugMode', $debug);`
PM-2835 "Adicionar los siguientes features..." SOLVED Issue: Adicionar los siguientes features la posibilidad de seleccionarse en la licencia (features): - Code Scanner - Multiple Email Servers - Mobile Fields Cause: Nuevo validacion de licencia para features Solution: Se agrego validacion de licencia para los features especificados 2015-06-01 16:14:39 -04:00			`$this->setVar("distribution", $distribution);`
HOR-3851 2017-10-10 12:33:25 -04:00			`$this->setVar("SYS_SYS", config("system.workspace"));`
GI-146 ProcessMap no se despliega en la adecuación... SOLVED - Add validation variables SYS_SYS, SYS_LANG, SYS_SKIN 2015-11-13 11:46:18 -04:00			`$this->setVar("SYS_LANG", SYS_LANG);`
			`$this->setVar("SYS_SKIN", SYS_SKIN);`
Add namespace Processmaker\Core 2017-08-14 16:13:46 -04:00			`$this->setVar('HTTP_SERVER_HOSTNAME', System::getHttpServerHostnameRequestsFrontEnd());`
Solving conflicts for PMC-1126 2019-08-29 12:09:04 -04:00			`isset($userProperties) ? $this->setVar('PMDYNAFORM_FIRST_TIME',`
			`$userProperties->getPmdynaformFirstTime()) : $this->setVar('PMDYNAFORM_FIRST_TIME', '0');`
PMC-313 2019-02-27 19:48:45 -04:00			`$inpuDocument = new InputDocument();`
			`$this->setVar('maxFileSizeInformation', G::json_encode($inpuDocument->getMaxFileSize()));`
GI-146 ProcessMap no se despliega en la adecuación... SOLVED - Add validation variables SYS_SYS, SYS_LANG, SYS_SKIN 2015-11-13 11:46:18 -04:00
disabling temporarily debug mode on designer main template 2014-07-09 10:43:51 -04:00			`if ($debug) {`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`if (!file_exists(PATH_HTML . "lib-dev/pmUI/build.cache")) {`
Updating Controller Exception View Rendering 2014-02-28 09:37:29 -04:00			`throw new RuntimeException("Development JS Files were are not generated!.\nPlease execute: \$>rake pmBuildDebug in pmUI project");`
adding dynamic include for js and css files for designer.html template for debug mode 2014-02-06 18:55:34 -04:00			`}`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`if (!file_exists(PATH_HTML . "lib-dev/mafe/build.cache")) {`
Updating Controller Exception View Rendering 2014-02-28 09:37:29 -04:00			`throw new RuntimeException("Development JS Files were are not generated!.\nPlease execute: \$>rake pmBuildDebug in MichelangeloFE project");`
FIX for ProcessPermissions.php api controller 2014-02-06 18:10:55 -04:00			`}`

FIX to load properly css and js files for mafe project on designer template 2014-02-18 18:03:10 -04:00			`$mafeFiles = file(PATH_HTML . "lib-dev/mafe/build.cache", FILE_IGNORE_NEW_LINES);`
			`$mafeCssFiles = array();`
			`$mafeJsFiles = array();`

			`foreach ($mafeFiles as $file) {`
			`if (substr($file, -3) == ".js") {`
			`$mafeJsFiles[] = $file;`
			`} else {`
			`$mafeCssFiles[] = $file;`
			`}`
			`}`

adding dynamic include for js and css files for designer.html template for debug mode 2014-02-06 18:55:34 -04:00			`$this->setVar('pmuiJsCacheFile', file(PATH_HTML . "lib-dev/pmUI/build.cache", FILE_IGNORE_NEW_LINES));`
			`$this->setVar('pmuiCssCacheFile', file(PATH_HTML . "lib-dev/pmUI/css.cache", FILE_IGNORE_NEW_LINES));`

Solving conflicts for PMC-1126 2019-08-29 12:09:04 -04:00			`$this->setVar('designerCacheFile',`
			`file(PATH_HTML . "lib-dev/mafe/applications.cache", FILE_IGNORE_NEW_LINES));`
FIX to load properly css and js files for mafe project on designer template 2014-02-18 18:03:10 -04:00			`$this->setVar('mafeJsFiles', $mafeJsFiles);`
			`$this->setVar('mafeCssFiles', $mafeCssFiles);`
production mode, now is using a hash based in vendor commits 2014-03-12 13:08:01 -04:00			`} else {`
			`$buildhashFile = PATH_HTML . "lib/buildhash";`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`if (!file_exists($buildhashFile)) {`
production mode, now is using a hash based in vendor commits 2014-03-12 13:08:01 -04:00			`throw new RuntimeException("CSS and JS Files were are not generated!.\nPlease review install process");`
			`}`
			`$buildhash = file_get_contents($buildhashFile);`
			`$this->setVar('buildhash', $buildhash);`
FIX for ProcessPermissions.php api controller 2014-02-06 18:10:55 -04:00			`}`

Improvement Translation mafe 2014-04-14 12:35:47 -04:00			`$translationMafe = "/translations/translationsMafe.js";`
			`$this->setVar('translationMafe', $translationMafe);`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`if (!file_exists(PATH_HTML . "translations" . PATH_SEP . 'translationsMafe' . ".js")) {`
Improvement Translation mafe 2014-04-14 12:35:47 -04:00			`$translation = new Translation();`
			`$translation->generateFileTranslationMafe();`
			`}`
PM-4285-3017 "Es posible entrar al disenador del flujo..." SOLVED 2015-12-03 17:05:28 -04:00
PM-3474 2015-09-25 19:55:26 -04:00			`$this->setVar('sys_skin', SYS_SKIN);`
Improvement Translation mafe 2014-04-14 12:35:47 -04:00
PM-4285-3017 "Es posible entrar al disenador del flujo..." SOLVED 2015-12-03 17:05:28 -04:00			`//Verify user`
			`$criteria = new Criteria('workflow');`

			`$criteria->addSelectColumn(OauthAccessTokensPeer::ACCESS_TOKEN);`
			`$criteria->addSelectColumn(OauthAccessTokensPeer::USER_ID);`
			`$criteria->add(OauthAccessTokensPeer::ACCESS_TOKEN, $clientToken['access_token'], Criteria::EQUAL);`
			`$rsCriteria = OauthAccessTokensPeer::doSelectRS($criteria);`
			`$rsCriteria->setFetchmode(ResultSet::FETCHMODE_ASSOC);`

			`if ($rsCriteria->next()) {`
			`$row = $rsCriteria->getRow();`

			`$user = new \ProcessMaker\BusinessModel\User();`

HOR-106-A-3018 "Access Denied! al abrir process..." SOLVED 2016-01-26 14:59:12 -04:00			`if ($user->checkPermission($row['USER_ID'], 'PM_FACTORY') \|\| $proReadOnly == 'true') {`
PM-4285-3017 "Es posible entrar al disenador del flujo..." SOLVED 2015-12-03 17:05:28 -04:00			`$this->setView('designer/index');`
			`} else {`
HOR-492 2016-03-24 10:38:18 -04:00			`G::header('Location: /errors/error403.php');`
			`die();`
PM-4285-3017 "Es posible entrar al disenador del flujo..." SOLVED 2015-12-03 17:05:28 -04:00			`}`
			`}`

HOR-2282 2016-11-25 13:06:25 -05:00			`//plugin set source path`
			`$sourceCss = array();`
			`$sourceJs = array();`

change 2017-08-01 12:16:06 -04:00			`$pluginRegistry = PluginRegistry::loadSingleton();`
HOR-2282 2016-11-25 13:06:25 -05:00			`$srcPath = $pluginRegistry->getDesignerSourcePath();`

change 2017-08-01 12:16:06 -04:00			`foreach ($srcPath as $value) {`
HOR-2282 2016-11-25 13:06:25 -05:00			`$ext = pathinfo($value->pathFile, PATHINFO_EXTENSION);`
			`if ($ext === "css") {`
			`$sourceCss[] = $value->pathFile;`
			`}`
			`if ($ext === "js") {`
			`$sourceJs[] = $value->pathFile;`
			`}`
			`}`

			`$this->setVar('sourceCss', $sourceCss);`
			`$this->setVar('sourceJs', $sourceJs);`

Updates on Oauth register method and New designer open action on process list 2013-11-06 10:10:36 -04:00			`$this->render();`
			`}`
Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00
			`protected function getClientCredentials()`
			`{`
Refactoring of classes that where in workflow/engine/src , now all of them have a unique parent namespace \ProcessMaker 2014-04-02 16:51:28 -04:00			`$oauthQuery = new ProcessMaker\Services\OAuth2\PmPdo($this->getDsn());`
Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00			`return $oauthQuery->getClientDetails($this->clientId);`
			`}`

			`protected function getAuthorizationCode($client)`
			`{`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`Server::setDatabaseSource($this->getDsn());`
			`Server::setPmClientId($client['CLIENT_ID']);`
Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`$oauthServer = new Server();`
PM-2288 "DesignerBPMN>CaseTracker: No se puede..." SOLVED > Code Isuue: DesignerBPMN>CaseTracker: No se puede visualizar el estado que tiene el caso creado > Solution: Se completa a la opcion "Where is My Case?" del case tracker para el seguimiento del caso. 2015-05-06 16:28:05 -04:00
PM-2288 "DesignerBPMN>CaseTracker: No se puede..." SOLVED 2015-05-08 11:24:26 -04:00			`if (isset($client["tracker_designer"]) && $client["tracker_designer"] == 1) {`
PM-2288 "DesignerBPMN>CaseTracker: No se puede..." SOLVED > Code Isuue: DesignerBPMN>CaseTracker: No se puede visualizar el estado que tiene el caso creado > Solution: Se completa a la opcion "Where is My Case?" del case tracker para el seguimiento del caso. 2015-05-06 16:28:05 -04:00			`$_SESSION["USER_LOGGED"] = "00000000000000000000000000000001";`
			`}`

Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00			`$userId = $_SESSION['USER_LOGGED'];`
			`$authorize = true;`
			`$_GET = array_merge($_GET, array(`
			`'response_type' => 'code',`
			`'client_id' => $client['CLIENT_ID'],`
			`'scope' => implode(' ', $oauthServer->getScope())`
			`));`

			`$response = $oauthServer->postAuthorize($authorize, $userId, true);`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`$code = substr($response->getHttpHeader('Location'), strpos($response->getHttpHeader('Location'), 'code=') + 5, 40);`
Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00
PM-2288 "DesignerBPMN>CaseTracker: No se puede..." SOLVED 2015-05-08 11:24:26 -04:00			`if (isset($client["tracker_designer"]) && $client["tracker_designer"] == 1) {`
			`unset($_SESSION["USER_LOGGED"]);`
			`}`

Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00			`return $code;`
			`}`

			`private function getDsn()`
			`{`
			`list($host, $port) = strpos(DB_HOST, ':') !== false ? explode(':', DB_HOST) : array(DB_HOST, '');`
			`$port = empty($port) ? '' : ";port=$port";`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`$dsn = DB_ADAPTER . ':host=' . $host . ';dbname=' . DB_NAME . $port;`
Changes on Designer Controller to pass client credentials and authorization_code on designer ui loading 2013-12-06 13:33:50 -04:00
			`return array('dsn' => $dsn, 'username' => DB_USER, 'password' => DB_PASS);`
			`}`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00
			`/**`
			`* Return credentials oauth2`
			`*`
			`* @param object $httpData`
			`* @return array credentials`
			`*/`
			`public function getCredentials($httpData = null)`
			`{`
			`$client = $this->getClientCredentials();`

			`if (!empty($httpData->tracker_designer) && $httpData->tracker_designer == 1) {`
			`try {`
			`if (!isset($_SESSION['CASE']) && !isset($_SESSION['PIN'])) {`
			`throw (new \Exception(`
			`\G::LoadTranslation('ID_CASE_NOT_EXISTS') . "\n" . \G::LoadTranslation('ID_PIN_INVALID')`
			`));`
			`}`
			`Tracker::authentication($_SESSION['CASE'], $_SESSION['PIN']);`
			`} catch (\Exception $e) {`
HOR-3851 2017-10-10 12:33:25 -04:00			`Bootstrap::registerMonolog('CaseTracker', 400, $e->getMessage(), [], config("system.workspace"), 'processmaker.log');`
HOR-3615 ProcessMaker instance constants are required in Process List page. - Add method getCredentials. 2017-08-04 16:49:29 -04:00			`\G::header('Location: /errors/error403.php');`
			`die();`
			`}`
			`$client["tracker_designer"] = 1;`
			`}`

			`$authCode = $this->getAuthorizationCode($client);`

			`$loader = ClassLoader::getInstance();`
			`$loader->add(PATH_TRUNK . 'vendor/bshaffer/oauth2-server-php/src/', "OAuth2");`

			`$request = array(`
			`'grant_type' => 'authorization_code',`
			`'code' => $authCode`
			`);`
			`$server = array(`
			`'REQUEST_METHOD' => 'POST'`
			`);`
			`$headers = array(`
			`"PHP_AUTH_USER" => $client['CLIENT_ID'],`
			`"PHP_AUTH_PW" => $client['CLIENT_SECRET'],`
			`"Content-Type" => "multipart/form-data;",`
			`"Authorization" => "Basic " . base64_encode($client['CLIENT_ID'] . ":" . $client['CLIENT_SECRET'])`
			`);`
			`$request = new Request(array(), $request, array(), array(), array(), $server, null, $headers);`
			`$oauthServer = new Server();`
			`$response = $oauthServer->postToken($request, true);`
			`$clientToken = $response->getParameters();`
			`$clientToken["client_id"] = $client['CLIENT_ID'];`
			`$clientToken["client_secret"] = $client['CLIENT_SECRET'];`

			`return $clientToken;`
			`}`
Updates on Oauth register method and New designer open action on process list 2013-11-06 10:10:36 -04:00			`}`