03288704bc
In javascript section of main file that load Designer UI for 'var credentials' now we're sending the access token and refresh token, instead access code, and client credentials. This is just because currently a lot of access tokens were being created for each process design is open, and while it is being open is sending two request, the first one to exchange an access code by an access token,.. Now, whith this change, while a process design is open we will made just one request to some resource with access token in the header,.. exchange access code by an access token is not needed any more. NOTE.- the access token passed to the front-end can be expired at first time,.. so we need that the exchange an access token by a refresh token handling is working well.
142 lines
5.3 KiB
PHP
142 lines
5.3 KiB
PHP
<?php
|
|
|
|
/**
|
|
* Designer Controller
|
|
*
|
|
* @inherits Controller
|
|
* @access public
|
|
*/
|
|
|
|
class Designer extends Controller
|
|
{
|
|
protected $clientId = 'x-pm-local-client';
|
|
|
|
public function __construct ()
|
|
{
|
|
|
|
}
|
|
|
|
/**
|
|
* Index Action
|
|
*
|
|
* @param string $httpData (opional)
|
|
*/
|
|
public function index($httpData)
|
|
{
|
|
$proUid = isset($httpData->prj_uid) ? $httpData->prj_uid : '';
|
|
$appUid = isset($httpData->app_uid) ? $httpData->app_uid : '';
|
|
$proReadOnly = isset($httpData->prj_readonly) ? $httpData->prj_readonly : 'false';
|
|
$client = $this->getClientCredentials();
|
|
$authCode = $this->getAuthorizationCode($client);
|
|
|
|
$loader = Maveriks\Util\ClassLoader::getInstance();
|
|
$loader->add(PATH_TRUNK . 'vendor/bshaffer/oauth2-server-php/src/', "OAuth2");
|
|
|
|
$request = array(
|
|
'grant_type' => 'authorization_code',
|
|
'code' => $authCode
|
|
);
|
|
$server = array(
|
|
'REQUEST_METHOD' => 'POST'
|
|
);
|
|
$headers = array(
|
|
"PHP_AUTH_USER" => $client['CLIENT_ID'],
|
|
"PHP_AUTH_PW" => $client['CLIENT_SECRET'],
|
|
"Content-Type" => "multipart/form-data;",
|
|
"Authorization" => "Basic " . base64_encode($client['CLIENT_ID'] . ":" . $client['CLIENT_SECRET'])
|
|
);
|
|
|
|
$request = new \OAuth2\Request(array(), $request, array(), array(), array(), $server, null, $headers);
|
|
$oauthServer = new \ProcessMaker\Services\OAuth2\Server();
|
|
$response = $oauthServer->getServer()->handleTokenRequest($request);
|
|
$clientToken = $response->getParameters();
|
|
|
|
$this->setVar('prj_uid', $proUid);
|
|
$this->setVar('app_uid', $appUid);
|
|
$this->setVar('prj_readonly', $proReadOnly);
|
|
$this->setVar('credentials', base64_encode(json_encode($clientToken)));
|
|
$this->setVar('isDebugMode', System::isDebugMode());
|
|
|
|
if (System::isDebugMode()) {
|
|
if (! file_exists(PATH_HTML . "lib-dev/pmUI/build.cache")) {
|
|
throw new RuntimeException("Development JS Files were are not generated!.\nPlease execute: \$>rake pmBuildDebug in pmUI project");
|
|
}
|
|
if (! file_exists(PATH_HTML . "lib-dev/mafe/build.cache")) {
|
|
throw new RuntimeException("Development JS Files were are not generated!.\nPlease execute: \$>rake pmBuildDebug in MichelangeloFE project");
|
|
}
|
|
|
|
$mafeFiles = file(PATH_HTML . "lib-dev/mafe/build.cache", FILE_IGNORE_NEW_LINES);
|
|
$mafeCssFiles = array();
|
|
$mafeJsFiles = array();
|
|
|
|
foreach ($mafeFiles as $file) {
|
|
if (substr($file, -3) == ".js") {
|
|
$mafeJsFiles[] = $file;
|
|
} else {
|
|
$mafeCssFiles[] = $file;
|
|
}
|
|
}
|
|
|
|
$this->setVar('pmuiJsCacheFile', file(PATH_HTML . "lib-dev/pmUI/build.cache", FILE_IGNORE_NEW_LINES));
|
|
$this->setVar('pmuiCssCacheFile', file(PATH_HTML . "lib-dev/pmUI/css.cache", FILE_IGNORE_NEW_LINES));
|
|
|
|
$this->setVar('designerCacheFile', file(PATH_HTML . "lib-dev/mafe/applications.cache", FILE_IGNORE_NEW_LINES));
|
|
$this->setVar('mafeJsFiles', $mafeJsFiles);
|
|
$this->setVar('mafeCssFiles', $mafeCssFiles);
|
|
} else {
|
|
$buildhashFile = PATH_HTML . "lib/buildhash";
|
|
if (! file_exists($buildhashFile)) {
|
|
throw new RuntimeException("CSS and JS Files were are not generated!.\nPlease review install process");
|
|
}
|
|
$buildhash = file_get_contents($buildhashFile);
|
|
$this->setVar('buildhash', $buildhash);
|
|
}
|
|
|
|
$translationMafe = "/translations/translationsMafe.js";
|
|
$this->setVar('translationMafe', $translationMafe);
|
|
if (!file_exists(PATH_HTML . "translations" . PATH_SEP. 'translationsMafe' . ".js")) {
|
|
$translation = new Translation();
|
|
$translation->generateFileTranslationMafe();
|
|
}
|
|
|
|
$this->setView('designer/index');
|
|
$this->render();
|
|
}
|
|
|
|
protected function getClientCredentials()
|
|
{
|
|
$oauthQuery = new ProcessMaker\Services\OAuth2\PmPdo($this->getDsn());
|
|
return $oauthQuery->getClientDetails($this->clientId);
|
|
}
|
|
|
|
protected function getAuthorizationCode($client)
|
|
{
|
|
\ProcessMaker\Services\OAuth2\Server::setDatabaseSource($this->getDsn());
|
|
\ProcessMaker\Services\OAuth2\Server::setPmClientId($client['CLIENT_ID']);
|
|
|
|
$oauthServer = new \ProcessMaker\Services\OAuth2\Server();
|
|
$userId = $_SESSION['USER_LOGGED'];
|
|
$authorize = true;
|
|
$_GET = array_merge($_GET, array(
|
|
'response_type' => 'code',
|
|
'client_id' => $client['CLIENT_ID'],
|
|
'scope' => implode(' ', $oauthServer->getScope())
|
|
));
|
|
|
|
$response = $oauthServer->postAuthorize($authorize, $userId, true);
|
|
$code = substr($response->getHttpHeader('Location'), strpos($response->getHttpHeader('Location'), 'code=')+5, 40);
|
|
|
|
return $code;
|
|
}
|
|
|
|
private function getDsn()
|
|
{
|
|
list($host, $port) = strpos(DB_HOST, ':') !== false ? explode(':', DB_HOST) : array(DB_HOST, '');
|
|
$port = empty($port) ? '' : ";port=$port";
|
|
$dsn = DB_ADAPTER.':host='.$host.';dbname='.DB_NAME.$port;
|
|
|
|
return array('dsn' => $dsn, 'username' => DB_USER, 'password' => DB_PASS);
|
|
}
|
|
}
|
|
|