PM-3709 No permitir loguearse con SSO si existen 2 cuentas de usuario con el mismo mail
fix in SSO
This commit is contained in:
Ronald Quenta
@@ -123,9 +123,11 @@ class Users extends BaseUsers
|
||||
$c = $this->loadByEmail( $sUsrEmail );
|
||||
$rs = UsersPeer::doSelectRS( $c, Propel::getDbConnection('workflow_ro') );
|
||||
$rs->setFetchmode( ResultSet::FETCHMODE_ASSOC );
|
||||
$rs->next();
|
||||
$row = $rs->getRow();
|
||||
return $row;
|
||||
$rows = Array ();
|
||||
while ($rs->next()) {
|
||||
$rows[] = $rs->getRow();
|
||||
}
|
||||
return $rows;
|
||||
}
|
||||
|
||||
public function loadDetails ($UsrUid)
|
||||
|
||||
@@ -19,7 +19,8 @@ class Authentication extends Api
|
||||
*
|
||||
*
|
||||
*/
|
||||
public function doAuthenticationAccountGmail ($request_data) {
|
||||
public function doAuthenticationAccountGmail ($request_data)
|
||||
{
|
||||
try{
|
||||
$oGoogle = new \ProcessMaker\Services\Google\Authentication();
|
||||
$response = $oGoogle->postTokenAccountGmail($request_data);
|
||||
|
||||
@@ -45,22 +45,28 @@ class Authentication
|
||||
$oUsers = new \Users();
|
||||
$userExist = $oUsers->loadByUserEmailInArray($request_data['mail']);
|
||||
|
||||
if($userExist['USR_STATUS'] == "ACTIVE"){
|
||||
//User Active! lets create the token and register it in the DB for this user
|
||||
$oauthServer = new \ProcessMaker\Services\OAuth2\Server;
|
||||
$server = $oauthServer->getServer();
|
||||
$config = array(
|
||||
'allow_implicit' => $server->getConfig('allow_implicit'),
|
||||
'access_lifetime' => $server->getConfig('access_lifetime')
|
||||
);
|
||||
$storage = $server->getStorages();
|
||||
$accessToken = new \OAuth2\ResponseType\AccessToken($storage['access_token'],$storage['refresh_token'],$config);
|
||||
$responseToken = $accessToken->createAccessToken($request_data['clientid'], $userExist['USR_UID'],$request_data['scope']);
|
||||
}else {
|
||||
throw (new \Exception(\G::LoadTranslation( 'ID_ACTIVE_USERS' )));
|
||||
if(!$userExist){
|
||||
throw (new \Exception(\G::LoadTranslation( 'ID_USER_NOT_FOUND')));
|
||||
}
|
||||
if(count($userExist) > 1){
|
||||
throw (new \Exception(\G::LoadTranslation( 'ID_EMAIL_MORE_USER')));
|
||||
}
|
||||
if($userExist['0']['USR_STATUS'] != "ACTIVE"){
|
||||
throw (new \Exception(\G::LoadTranslation('ID_USER_NOT_ACTIVE')));
|
||||
}
|
||||
$userExist = $userExist['0'];
|
||||
$oauthServer = new \ProcessMaker\Services\OAuth2\Server;
|
||||
$server = $oauthServer->getServer();
|
||||
$config = array(
|
||||
'allow_implicit' => $server->getConfig('allow_implicit'),
|
||||
'access_lifetime' => $server->getConfig('access_lifetime')
|
||||
);
|
||||
$storage = $server->getStorages();
|
||||
$accessToken = new \OAuth2\ResponseType\AccessToken($storage['access_token'],$storage['refresh_token'],$config);
|
||||
$responseToken = $accessToken->createAccessToken($request_data['clientid'], $userExist['USR_UID'],$request_data['scope']);
|
||||
|
||||
} else {
|
||||
throw (new \Exception(\G::LoadTranslation( 'ID_EMAIL_ENTER_VALID' )));
|
||||
throw (new \Exception(\G::LoadTranslation( 'ID_EMAIL_NOT_CORRESPONDS_TOKEN' )));
|
||||
}
|
||||
}else {
|
||||
throw (new \Exception(\G::LoadTranslation( 'ID_PMGMAIL_VALID' )));
|
||||
|
||||
Reference in New Issue
Block a user