9de2f3262b
- It don't have the functionality. - A function was add in class bootstrap hasPassword. - a function was add in class enterprise.
324 lines
11 KiB
PHP
Executable File
324 lines
11 KiB
PHP
Executable File
<?php
|
|
|
|
/**
|
|
* RbacUsers.php
|
|
* @package rbac-classes-model
|
|
*
|
|
* ProcessMaker Open Source Edition
|
|
* Copyright (C) 2004 - 2011 Colosa Inc.
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as
|
|
* published by the Free Software Foundation, either version 3 of the
|
|
* License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*
|
|
* For more information, contact Colosa Inc, 2566 Le Jeune Rd.,
|
|
* Coral Gables, FL, 33134, USA, or email info@colosa.com.
|
|
*
|
|
*/
|
|
/**
|
|
* @access public
|
|
*/
|
|
require_once 'classes/model/om/BaseRbacUsers.php';
|
|
|
|
/**
|
|
* Skeleton subclass for representing a row from the 'USERS' table.
|
|
*
|
|
*
|
|
*
|
|
* You should add additional methods to this class to meet the
|
|
* application requirements. This class will only be generated as
|
|
* long as it does not already exist in the output directory.
|
|
*
|
|
* @package rbac-classes-model
|
|
*/
|
|
class RbacUsers extends BaseRbacUsers
|
|
{
|
|
|
|
/**
|
|
* Autentificacion de un usuario a traves de la clase RBAC_user
|
|
*
|
|
* verifica que un usuario tiene derechos de iniciar una aplicacion
|
|
*
|
|
* @author Fernando Ontiveros Lira <fernando@colosa.com>
|
|
* access public
|
|
* Function verifyLogin
|
|
*
|
|
* @param string $strUser UserId (login) de usuario
|
|
* @param string $strPass Password
|
|
* @return
|
|
* -1: no existe usuario
|
|
* -2: password errado
|
|
* -3: usuario inactivo
|
|
* -4: usuario vencido
|
|
* -6: role inactivo
|
|
* n : uid de usuario
|
|
*/
|
|
public function verifyLogin($sUsername, $sPassword)
|
|
{
|
|
//invalid user
|
|
if ($sUsername == '') {
|
|
return -1;
|
|
}
|
|
//invalid password
|
|
if ($sPassword == '') {
|
|
return -2;
|
|
}
|
|
$con = Propel::getConnection(RbacUsersPeer::DATABASE_NAME);
|
|
try {
|
|
$c = new Criteria('rbac');
|
|
$c->add(RbacUsersPeer::USR_USERNAME, $sUsername);
|
|
$rs = RbacUsersPeer::doSelect($c);
|
|
if (is_array($rs) && isset($rs[0]) && is_object($rs[0]) && get_class($rs[0]) == 'RbacUsers') {
|
|
$aFields = $rs[0]->toArray(BasePeer::TYPE_FIELDNAME);
|
|
//verify password with md5, and md5 format
|
|
if (mb_strtoupper($sUsername, 'utf-8') === mb_strtoupper($aFields['USR_USERNAME'], 'utf-8')) {
|
|
if( Bootstrap::verifyHashPassword($sPassword, $aFields['USR_PASSWORD']) ) {
|
|
if ($aFields['USR_DUE_DATE'] < date('Y-m-d')) {
|
|
return -4;
|
|
}
|
|
if ($aFields['USR_STATUS'] != 1) {
|
|
return -3;
|
|
}
|
|
$role = $this->getUserRole($aFields['USR_UID']);
|
|
if ($role['ROL_STATUS'] == 0) {
|
|
return -6;
|
|
}
|
|
return $aFields['USR_UID'];
|
|
} else {
|
|
return -2;
|
|
}
|
|
} else {
|
|
return -1;
|
|
}
|
|
} else {
|
|
return -1;
|
|
}
|
|
} catch (Exception $oError) {
|
|
throw($oError);
|
|
}
|
|
return -1;
|
|
}
|
|
|
|
public function verifyUser($sUsername)
|
|
{
|
|
//invalid user
|
|
if ($sUsername == '') {
|
|
return 0;
|
|
}
|
|
$con = Propel::getConnection(RbacUsersPeer::DATABASE_NAME);
|
|
try {
|
|
$c = new Criteria('rbac');
|
|
$c->add(RbacUsersPeer::USR_USERNAME, $sUsername);
|
|
$rs = RbacUsersPeer::doSelect($c);
|
|
if (is_array($rs) && isset($rs[0]) && is_object($rs[0]) && get_class($rs[0]) == 'RbacUsers') {
|
|
//return the row for futher check of which Autentificacion method belongs this user
|
|
$this->fields = $rs[0]->toArray(BasePeer::TYPE_FIELDNAME);
|
|
;
|
|
return 1;
|
|
} else {
|
|
return 0;
|
|
}
|
|
} catch (Exception $oError) {
|
|
throw($oError);
|
|
}
|
|
}
|
|
|
|
public function getByUsername($sUsername)
|
|
{
|
|
//invalid user
|
|
if ($sUsername == '') {
|
|
return 0;
|
|
}
|
|
$con = Propel::getConnection(RbacUsersPeer::DATABASE_NAME);
|
|
try {
|
|
$c = new Criteria('rbac');
|
|
$c->add(RbacUsersPeer::USR_USERNAME, $sUsername);
|
|
$rs = RbacUsersPeer::doSelect($c);
|
|
|
|
if (is_array($rs) && isset($rs[0]) && is_object($rs[0]) && get_class($rs[0]) == 'RbacUsers') {
|
|
$aFields = $rs[0]->toArray(BasePeer::TYPE_FIELDNAME);
|
|
return $aFields;
|
|
} else {
|
|
return false;
|
|
}
|
|
} catch (Exception $oError) {
|
|
throw($oError);
|
|
}
|
|
}
|
|
|
|
public function verifyUserId($sUserId)
|
|
{
|
|
//invalid user
|
|
if ($sUserId == '') {
|
|
return 0;
|
|
}
|
|
$con = Propel::getConnection(RbacUsersPeer::DATABASE_NAME);
|
|
try {
|
|
$c = new Criteria('rbac');
|
|
$c->add(RbacUsersPeer::USR_UID, $sUserId);
|
|
$rs = RbacUsersPeer::doSelect($c);
|
|
if (is_array($rs) && isset($rs[0]) && is_object($rs[0]) && get_class($rs[0]) == 'RbacUsers') {
|
|
return 1;
|
|
} else {
|
|
return 0;
|
|
}
|
|
} catch (Exception $oError) {
|
|
throw($oError);
|
|
}
|
|
}
|
|
|
|
public function load($sUsrUid)
|
|
{
|
|
$con = Propel::getConnection(RbacUsersPeer::DATABASE_NAME);
|
|
try {
|
|
$c = new Criteria('rbac');
|
|
$c->add(RbacUsersPeer::USR_UID, $sUsrUid);
|
|
$rs = RbacUsersPeer::doSelect($c);
|
|
if (is_array($rs) && isset($rs[0]) && is_object($rs[0]) && get_class($rs[0]) == 'RbacUsers') {
|
|
$aFields = $rs[0]->toArray(BasePeer::TYPE_FIELDNAME);
|
|
return $aFields;
|
|
}
|
|
return false;
|
|
} catch (Exception $oError) {
|
|
throw($oError);
|
|
}
|
|
return $res;
|
|
}
|
|
|
|
public function create($aData)
|
|
{
|
|
if (class_exists('PMPluginRegistry')) {
|
|
$pluginRegistry = & PMPluginRegistry::getSingleton();
|
|
if ($pluginRegistry->existsTrigger(PM_BEFORE_CREATE_USER)) {
|
|
try {
|
|
$pluginRegistry->executeTriggers(PM_BEFORE_CREATE_USER, null);
|
|
} catch(Exception $error) {
|
|
throw new Exception($error->getMessage());
|
|
}
|
|
}
|
|
}
|
|
$oConnection = Propel::getConnection(RbacUsersPeer::DATABASE_NAME);
|
|
try {
|
|
$oRBACUsers = new RbacUsers();
|
|
do {
|
|
$aData['USR_UID'] = G::generateUniqueID();
|
|
} while ($oRBACUsers->load($aData['USR_UID']));
|
|
$oRBACUsers->fromArray($aData, BasePeer::TYPE_FIELDNAME);
|
|
//if ($oRBACUsers->validate()) {
|
|
//$oConnection->begin();
|
|
$iResult = $oRBACUsers->save();
|
|
//$oConnection->commit();
|
|
return $aData['USR_UID'];
|
|
/* }
|
|
else {
|
|
$sMessage = '';
|
|
$aValidationFailures = $oRBACUsers->getValidationFailures();
|
|
foreach($aValidationFailures as $oValidationFailure) {
|
|
$sMessage .= $oValidationFailure->getMessage() . '<br />';
|
|
}
|
|
throw(new Exception('The registry cannot be created!<br />' . $sMessage));
|
|
} */
|
|
} catch (Exception $oError) {
|
|
$oConnection->rollback();
|
|
throw($oError);
|
|
}
|
|
}
|
|
|
|
public function update($aData)
|
|
{
|
|
$oConnection = Propel::getConnection(RbacUsersPeer::DATABASE_NAME);
|
|
try {
|
|
$this->fromArray($aData, BasePeer::TYPE_FIELDNAME);
|
|
$this->setNew(false);
|
|
$iResult = $this->save();
|
|
} catch (Exception $oError) {
|
|
$oConnection->rollback();
|
|
throw($oError);
|
|
}
|
|
}
|
|
|
|
public function remove($sUserUID = '')
|
|
{
|
|
$this->setUsrUid($sUserUID);
|
|
$this->delete();
|
|
}
|
|
|
|
//Added by Qennix at Feb 14th, 2011
|
|
//Gets an associative array with total users by authentication sources
|
|
public function getAllUsersByAuthSource()
|
|
{
|
|
$oCriteria = new Criteria('rbac');
|
|
$oCriteria->addSelectColumn(RbacUsersPeer::UID_AUTH_SOURCE);
|
|
$oCriteria->addSelectColumn('COUNT(*) AS CNT');
|
|
$oCriteria->add(RbacUsersPeer::USR_STATUS, 'CLOSED', Criteria::NOT_EQUAL);
|
|
$oCriteria->addGroupByColumn(RbacUsersPeer::UID_AUTH_SOURCE);
|
|
$oDataset = RbacUsersPeer::doSelectRS($oCriteria);
|
|
$oDataset->setFetchmode(ResultSet::FETCHMODE_ASSOC);
|
|
|
|
$aAuth = Array();
|
|
while ($oDataset->next()) {
|
|
$row = $oDataset->getRow();
|
|
$aAuth[$row['UID_AUTH_SOURCE']] = $row['CNT'];
|
|
}
|
|
return $aAuth;
|
|
}
|
|
|
|
//Returns all users with auth_source
|
|
public function getListUsersByAuthSource($auth_source)
|
|
{
|
|
$oCriteria = new Criteria('rbac');
|
|
$oCriteria->addSelectColumn(RbacUsersPeer::USR_UID);
|
|
|
|
if ($auth_source == '00000000000000000000000000000000') {
|
|
$oCriteria->add(
|
|
$oCriteria->getNewCriterion(RbacUsersPeer::UID_AUTH_SOURCE, $auth_source, Criteria::EQUAL)->addOr(
|
|
$oCriteria->getNewCriterion(RbacUsersPeer::UID_AUTH_SOURCE, '', Criteria::EQUAL)
|
|
));
|
|
} else {
|
|
$oCriteria->add(RbacUsersPeer::UID_AUTH_SOURCE, $auth_source, Criteria::EQUAL);
|
|
}
|
|
$oCriteria->add(RbacUsersPeer::USR_STATUS, 0, Criteria::NOT_EQUAL);
|
|
$oDataset = RbacUsersPeer::doSelectRS($oCriteria);
|
|
$oDataset->setFetchmode(ResultSet::FETCHMODE_ASSOC);
|
|
$aUsers = array();
|
|
while ($oDataset->next()) {
|
|
$row = $oDataset->getRow();
|
|
$aUsers[] = $row['USR_UID'];
|
|
}
|
|
return $aUsers;
|
|
}
|
|
|
|
public function getUserRole($UsrUid)
|
|
{
|
|
$con = Propel::getConnection(UsersRolesPeer::DATABASE_NAME);
|
|
try {
|
|
$c = new Criteria( 'rbac' );
|
|
$c->clearSelectColumns();
|
|
$c->addSelectColumn ( RolesPeer::ROL_UID );
|
|
$c->addSelectColumn ( RolesPeer::ROL_CODE );
|
|
$c->addSelectColumn ( RolesPeer::ROL_STATUS );
|
|
$c->addJoin ( UsersRolesPeer::ROL_UID, RolesPeer::ROL_UID );
|
|
$c->add ( UsersRolesPeer::USR_UID, $UsrUid );
|
|
$rs = UsersRolesPeer::doSelectRs( $c );
|
|
$rs->setFetchmode (ResultSet::FETCHMODE_ASSOC);
|
|
$rs->next();
|
|
$row = $rs->getRow();
|
|
return $row;
|
|
}
|
|
catch (Exception $oError) {
|
|
throw($oError);
|
|
}
|
|
}
|
|
}
|
|
|
|
// Users
|