Merged in feature/HOR-3056 (pull request #5676)

HOR-3056

Approved-by: Julio Cesar Laura Avendaño <contact@julio-laura.com>

workflow/engine/src/ProcessMaker/Util/System.php

@@ -1,12 +1,20 @@
 <?php
+
 namespace ProcessMaker\Util;
 
+use \ProcessMaker\Services\OAuth2\PmPdo;
+use \ProcessMaker\Services\OAuth2\Server;
+use \OAuth2\Request;
+
 class System
 {
+    const CLIENT_ID = 'x-pm-local-client';
+
     /**
      * Get Time Zone
      *
      * @return string Return Time Zone
+     * @throws \Exception
      */
     public static function getTimeZone()
     {
@@ -68,4 +76,88 @@ class System
         }
     }
 
+    /**
+     * Get Token with USER_LOGGED saved in $_SESSION
+     *
+     * @return array
+     */
+    public static function tokenUserLogged()
+    {
+        $client = self::getClientCredentials();
+
+        $authCode = self::getAuthorizationCodeUserLogged($client);
+
+        $loader = \Maveriks\Util\ClassLoader::getInstance();
+        $loader->add(PATH_TRUNK . 'vendor/bshaffer/oauth2-server-php/src/', "OAuth2");
+
+        $request = array(
+            'grant_type' => 'authorization_code',
+            'code' => $authCode
+        );
+        $server = array(
+            'REQUEST_METHOD' => 'POST'
+        );
+        $headers = array(
+            "PHP_AUTH_USER" => $client['CLIENT_ID'],
+            "PHP_AUTH_PW" => $client['CLIENT_SECRET'],
+            "Content-Type" => "multipart/form-data;",
+            "Authorization" => "Basic " . base64_encode($client['CLIENT_ID'] . ":" . $client['CLIENT_SECRET'])
+        );
+
+        $request = new Request(array(), $request, array(), array(), array(), $server, null, $headers);
+        $oauthServer = new Server();
+        $response = $oauthServer->postToken($request, true);
+        $clientToken = $response->getParameters();
+        $clientToken["client_id"] = $client['CLIENT_ID'];
+        $clientToken["client_secret"] = $client['CLIENT_SECRET'];
+        return $clientToken;
+    }
+
+    /**
+     * Get client credentials
+     * @return array
+     */
+    protected function getClientCredentials()
+    {
+        $oauthQuery = new PmPdo(self::getDsn());
+        return $oauthQuery->getClientDetails(self::CLIENT_ID);
+    }
+
+    /**
+     * Get DNS of workspace
+     * @return array
+     */
+    protected function getDsn()
+    {
+        list($host, $port) = strpos(DB_HOST, ':') !== false ? explode(':', DB_HOST) : array(DB_HOST, '');
+        $port = empty($port) ? '' : ";port=$port";
+        $dsn = DB_ADAPTER . ':host=' . $host . ';dbname=' . DB_NAME . $port;
+
+        return array('dsn' => $dsn, 'username' => DB_USER, 'password' => DB_PASS);
+    }
+
+    /**
+     * Get authorization code for user logged in session
+     * @param $client
+     * @return bool|string
+     */
+    protected function getAuthorizationCodeUserLogged($client)
+    {
+        Server::setDatabaseSource(self::getDsn());
+        Server::setPmClientId($client['CLIENT_ID']);
+
+        $oauthServer = new Server();
+
+        $userId = $_SESSION['USER_LOGGED'];
+        $authorize = true;
+        $_GET = array_merge($_GET, array(
+            'response_type' => 'code',
+            'client_id' => $client['CLIENT_ID'],
+            'scope' => implode(' ', $oauthServer->getScope())
+        ));
+
+        $response = $oauthServer->postAuthorize($authorize, $userId, true);
+        $code = substr($response->getHttpHeader('Location'), strpos($response->getHttpHeader('Location'), 'code=') + 5, 40);
+        return $code;
+    }
 }