114 lines
3.8 KiB
PHP
Executable File
114 lines
3.8 KiB
PHP
Executable File
<?php
|
|
/**
|
|
* authentication.php
|
|
*
|
|
* ProcessMaker Open Source Edition
|
|
* Copyright (C) 2004 - 2008 Colosa Inc.23
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as
|
|
* published by the Free Software Foundation, either version 3 of the
|
|
* License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*
|
|
* For more information, contact Colosa Inc, 2566 Le Jeune Rd.,
|
|
* Coral Gables, FL, 33134, USA, or email info@colosa.com.
|
|
*/
|
|
/*
|
|
* Authentication for Case Tracker
|
|
*
|
|
* @author Everth S. Berrios Morales <everth@colosa.com>
|
|
*
|
|
*/
|
|
|
|
if (! isset( $_POST['form'] )) {
|
|
G::SendTemporalMessage( 'ID_USER_HAVENT_RIGHTS_SYSTEM', "error" );
|
|
G::header( "location: login.php" );
|
|
die();
|
|
}
|
|
|
|
try {
|
|
$frm = $_POST['form'];
|
|
$case = '';
|
|
$pin = '';
|
|
|
|
if (isset( $frm['CASE'] )) {
|
|
$case = strtolower( trim( $frm['CASE'] ) );
|
|
$pin = trim( $frm['PIN'] );
|
|
}
|
|
|
|
G::LoadClass( 'case' );
|
|
$cases = new Cases();
|
|
|
|
$uid = $cases->verifyCaseTracker( $case, $pin );
|
|
switch ($uid) {
|
|
//The case doesn't exist
|
|
case - 1:
|
|
G::SendTemporalMessage( 'ID_CASE_NOT_EXISTS', "error" );
|
|
break;
|
|
//The pin is invalid
|
|
case - 2:
|
|
G::SendTemporalMessage( 'ID_PIN_INVALID', "error" );
|
|
break;
|
|
}
|
|
|
|
if ($uid < 0) {
|
|
G::header( "location: login.php" );
|
|
die();
|
|
}
|
|
|
|
if (is_array( $uid )) {
|
|
require_once ("classes/model/CaseTracker.php");
|
|
require_once ("classes/model/CaseTrackerObject.php");
|
|
$_SESSION['CASE'] = $case;
|
|
$_SESSION['PIN'] = $pin;
|
|
$_SESSION['PROCESS'] = $uid['PRO_UID'];
|
|
$_SESSION['APPLICATION'] = $uid['APP_UID'];
|
|
$_SESSION['TASK'] = - 1;
|
|
$_SESSION['INDEX'] = - 1;
|
|
|
|
$criteria = new Criteria();
|
|
$criteria->add( CaseTrackerPeer::PRO_UID, $_SESSION['PROCESS'] );
|
|
$caseTracker = new CaseTracker();
|
|
if (CaseTrackerPeer::doCount( $criteria ) === 0) {
|
|
$permissionsCaseTracker = array ('PRO_UID' => $_SESSION['PROCESS'],'CT_MAP_TYPE' => 'PROCESSMAP','CT_DERIVATION_HISTORY' => 1,'CT_MESSAGE_HISTORY' => 1
|
|
);
|
|
$caseTracker->create( $permissionsCaseTracker );
|
|
}
|
|
$caseTracker = $cases->caseTrackerPermissions( $_SESSION['PROCESS'] );
|
|
|
|
if ($caseTracker['CT_MAP_TYPE']) {
|
|
G::header( 'location: tracker_ViewMap' );
|
|
} else {
|
|
if ($caseTracker['DYNADOC']) {
|
|
G::header( "location: tracker_DynaDocs" );
|
|
} else {
|
|
if ($caseTracker['CT_DERIVATION_HISTORY']) {
|
|
G::header( "location: tracker_History" );
|
|
} else {
|
|
if ($caseTracker['CT_MESSAGE_HISTORY']) {
|
|
G::header( "location: tracker_No" );
|
|
} else {
|
|
G::header( "location: login.php" );
|
|
G::SendTemporalMessage( 'ID_ACCOUNT_DISABLED_CONTACT_ADMIN', "error" );
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
} catch (Exception $e) {
|
|
$aMessage['MESSAGE'] = $e->getMessage();
|
|
$G_PUBLISH = new Publisher();
|
|
$G_PUBLISH->AddContent( 'xmlform', 'xmlform', 'login/showMessage', '', $aMessage );
|
|
G::RenderPage( 'publish' );
|
|
die();
|
|
}
|
|
|