mirror of
https://github.com/alchemy-fr/Phraseanet.git
synced 2025-10-08 18:44:30 +00:00
e233e5afa6
Conflicts: lib/Alchemy/Phrasea/Command/Developer/JavascriptBuilder.php lib/Alchemy/Phrasea/Controller/Prod/Basket.php lib/Alchemy/Phrasea/Core/Provider/TaskManagerServiceProvider.php lib/classes/Exception/Feed/ItemNotFound.php lib/classes/Exception/Feed/PublisherNotFound.php lib/classes/Feed/Abstract.php lib/classes/Feed/Adapter.php lib/classes/Feed/Aggregate.php lib/classes/Feed/Collection.php lib/classes/Feed/CollectionInterface.php lib/classes/Feed/Entry/Adapter.php lib/classes/Feed/Entry/Collection.php lib/classes/Feed/Entry/Interface.php lib/classes/Feed/Entry/Item.php lib/classes/Feed/Entry/ItemInterface.php lib/classes/Feed/Interface.php lib/classes/Feed/Link.php lib/classes/Feed/LinkInterface.php lib/classes/Feed/Publisher/Adapter.php lib/classes/Feed/Publisher/Interface.php lib/classes/Feed/Token.php lib/classes/Feed/TokenAggregate.php lib/classes/Feed/XML/Abstract.php lib/classes/Feed/XML/Atom.php lib/classes/Feed/XML/Cooliris.php lib/classes/Feed/XML/Interface.php lib/classes/Feed/XML/RSS.php lib/classes/Feed/XML/RSS/ImageInterface.php lib/classes/http/request.php lib/classes/module/console/schedulerStart.php lib/classes/module/console/schedulerState.php lib/classes/module/console/schedulerStop.php lib/classes/module/console/taskState.php lib/classes/module/console/tasklist.php lib/classes/module/console/taskrun.php lib/classes/registry.php lib/classes/registryInterface.php lib/classes/set/order.php lib/classes/system/url.php lib/classes/task/Scheduler.php lib/classes/task/appboxAbstract.php lib/classes/task/databoxAbstract.php lib/classes/task/manager.php lib/classes/task/period/RecordMover.php lib/classes/task/period/apibridge.php lib/classes/task/period/archive.php lib/classes/task/period/cindexer.php lib/classes/task/period/emptyColl.php lib/classes/task/period/ftp.php lib/classes/task/period/ftpPull.php lib/classes/task/period/subdef.php lib/classes/task/period/test.php lib/classes/task/period/writemeta.php lib/conf.d/PhraseaFixture/AbstractWZ.php lib/conf.d/PhraseaFixture/Basket/LoadFiveBaskets.php lib/conf.d/PhraseaFixture/Basket/LoadOneBasket.php lib/conf.d/PhraseaFixture/Basket/LoadOneBasketEnv.php lib/conf.d/PhraseaFixture/Lazaret/LoadOneFile.php lib/conf.d/PhraseaFixture/Story/LoadOneStory.php lib/conf.d/PhraseaFixture/UsrLists/ListAbstract.php lib/conf.d/PhraseaFixture/UsrLists/UsrList.php lib/conf.d/PhraseaFixture/UsrLists/UsrListEntry.php lib/conf.d/PhraseaFixture/UsrLists/UsrListOwner.php lib/conf.d/PhraseaFixture/ValidationParticipant/LoadOneParticipant.php lib/conf.d/PhraseaFixture/ValidationParticipant/LoadParticipantWithSession.php lib/conf.d/PhraseaFixture/ValidationSession/LoadOneValidationSession.php
325 lines
7.4 KiB
PHP
325 lines
7.4 KiB
PHP
<?php
|
|
|
|
/*
|
|
* This file is part of Phraseanet
|
|
*
|
|
* (c) 2005-2014 Alchemy
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
use Alchemy\Phrasea\Application;
|
|
use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
|
|
|
|
class API_OAuth2_Token
|
|
{
|
|
/**
|
|
*
|
|
* @var appbox
|
|
*/
|
|
protected $appbox;
|
|
|
|
/**
|
|
*
|
|
* @var API_OAuth2_Account
|
|
*/
|
|
protected $account;
|
|
|
|
/**
|
|
*
|
|
* @var string
|
|
*/
|
|
protected $token;
|
|
|
|
/**
|
|
*
|
|
* @var int
|
|
*/
|
|
protected $session_id;
|
|
|
|
/**
|
|
*
|
|
* @var int
|
|
*/
|
|
protected $expires;
|
|
|
|
/**
|
|
*
|
|
* @var string
|
|
*/
|
|
protected $scope;
|
|
|
|
/**
|
|
*
|
|
* @param appbox $appbox
|
|
* @param API_OAuth2_Account $account
|
|
* @return API_OAuth2_Token
|
|
*/
|
|
public function __construct(appbox $appbox, API_OAuth2_Account $account)
|
|
{
|
|
$this->appbox = $appbox;
|
|
$this->account = $account;
|
|
|
|
$sql = 'SELECT oauth_token, session_id, UNIX_TIMESTAMP(expires) as expires, scope
|
|
FROM api_oauth_tokens
|
|
WHERE api_account_id = :account_id';
|
|
$stmt = $this->appbox->get_connection()->prepare($sql);
|
|
$stmt->execute([':account_id' => $this->account->get_id()]);
|
|
$row = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
|
|
if ( ! $row)
|
|
throw new NotFoundHttpException('Account not found');
|
|
|
|
$stmt->closeCursor();
|
|
|
|
$this->token = $row['oauth_token'];
|
|
$this->session_id = is_null($row['session_id']) ? null : (int) $row['session_id'];
|
|
$this->expires = $row['expires'];
|
|
$this->scope = $row['scope'];
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return string
|
|
*/
|
|
public function get_value()
|
|
{
|
|
return $this->token;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @param string $oauth_token
|
|
* @return API_OAuth2_Token
|
|
*/
|
|
public function set_value($oauth_token)
|
|
{
|
|
$sql = 'UPDATE api_oauth_tokens SET oauth_token = :oauth_token
|
|
WHERE oauth_token = :current_token';
|
|
|
|
$params = [
|
|
':oauth_token' => $oauth_token
|
|
, ':current_token' => $this->token
|
|
];
|
|
|
|
$stmt = $this->appbox->get_connection()->prepare($sql);
|
|
$stmt->execute($params);
|
|
$stmt->closeCursor();
|
|
|
|
$this->token = $oauth_token;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return int
|
|
*/
|
|
public function get_session_id()
|
|
{
|
|
return $this->session_id;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @param int $session_id
|
|
* @return API_OAuth2_Token
|
|
*/
|
|
public function set_session_id($session_id)
|
|
{
|
|
$sql = 'UPDATE api_oauth_tokens SET session_id = :session_id
|
|
WHERE oauth_token = :current_token';
|
|
|
|
$params = [
|
|
':session_id' => $session_id
|
|
, ':current_token' => $this->token
|
|
];
|
|
|
|
$stmt = $this->appbox->get_connection()->prepare($sql);
|
|
$stmt->execute($params);
|
|
$stmt->closeCursor();
|
|
|
|
$this->session_id = $session_id !== null ? (int) $session_id : $session_id;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return int
|
|
*/
|
|
public function get_expires()
|
|
{
|
|
return $this->expires;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @param int $expires
|
|
* @return API_OAuth2_Token
|
|
*/
|
|
public function set_expires($expires)
|
|
{
|
|
$sql = 'UPDATE api_oauth_tokens SET expires = FROM_UNIXTIME(:expires)
|
|
WHERE oauth_token = :oauth_token';
|
|
|
|
$params = [
|
|
':expires' => $expires
|
|
, ':oauth_token' => $this->get_value()
|
|
];
|
|
|
|
$stmt = $this->appbox->get_connection()->prepare($sql);
|
|
$stmt->execute($params);
|
|
$stmt->closeCursor();
|
|
|
|
$this->expires = $expires;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return string
|
|
*/
|
|
public function get_scope()
|
|
{
|
|
return $this->scope;
|
|
}
|
|
|
|
public function set_scope($scope)
|
|
{
|
|
$sql = 'UPDATE api_oauth_tokens SET scope = :scope
|
|
WHERE oauth_token = :oauth_token';
|
|
|
|
$params = [
|
|
':scope' => $scope
|
|
, ':oauth_token' => $this->get_value()
|
|
];
|
|
|
|
$stmt = $this->appbox->get_connection()->prepare($sql);
|
|
$stmt->execute($params);
|
|
$stmt->closeCursor();
|
|
|
|
$this->scope = $scope;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return API_OAuth2_Account
|
|
*/
|
|
public function get_account()
|
|
{
|
|
return $this->account;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return API_OAuth2_Token
|
|
*/
|
|
public function renew()
|
|
{
|
|
$sql = 'UPDATE api_oauth_tokens SET oauth_token = :new_token
|
|
WHERE oauth_token = :old_token';
|
|
|
|
$new_token = self::generate_token();
|
|
|
|
$params = [
|
|
':new_token' => $new_token
|
|
, ':old_token' => $this->get_value()
|
|
];
|
|
|
|
$stmt = $this->appbox->get_connection()->prepare($sql);
|
|
$stmt->execute($params);
|
|
$stmt->closeCursor();
|
|
|
|
$this->token = $new_token;
|
|
|
|
return $this;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return void
|
|
*/
|
|
public function delete()
|
|
{
|
|
$sql = 'DELETE FROM api_oauth_tokens WHERE oauth_token = :oauth_token';
|
|
|
|
$stmt = $this->appbox->get_connection()->prepare($sql);
|
|
$stmt->execute([':oauth_token' => $this->get_value()]);
|
|
$stmt->closeCursor();
|
|
|
|
return;
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @param Application $app
|
|
* @param string $oauth_token
|
|
* @return API_OAuth2_Token
|
|
*/
|
|
public static function load_by_oauth_token(Application $app, $oauth_token)
|
|
{
|
|
$sql = 'SELECT a.api_account_id
|
|
FROM api_oauth_tokens a, api_accounts b
|
|
WHERE a.oauth_token = :oauth_token
|
|
AND a.api_account_id = b.api_account_id';
|
|
|
|
$stmt = $app['phraseanet.appbox']->get_connection()->prepare($sql);
|
|
$params = [":oauth_token" => $oauth_token];
|
|
$stmt->execute($params);
|
|
$row = $stmt->fetch(PDO::FETCH_ASSOC);
|
|
$stmt->closeCursor();
|
|
|
|
if ( ! $row)
|
|
throw new NotFoundHttpException('Account not found');
|
|
|
|
$account = new API_OAuth2_Account($app, $row['api_account_id']);
|
|
|
|
return new self($app['phraseanet.appbox'], $account);
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @param appbox $appbox
|
|
* @param API_OAuth2_Account $account
|
|
* @param string $scope
|
|
* @return API_OAuth2_Token
|
|
*/
|
|
public static function create(appbox $appbox, API_OAuth2_Account $account, $scope = null)
|
|
{
|
|
$sql = 'INSERT INTO api_oauth_tokens
|
|
(oauth_token, session_id, api_account_id, expires, scope)
|
|
VALUES (:token, null, :account_id, :expire, :scope)';
|
|
|
|
$expires = new \DateTime('+1 hour');
|
|
|
|
$params = [
|
|
':token' => self::generate_token()
|
|
, ':account_id' => $account->get_id()
|
|
, ':expire' => $expires->format(DATE_ISO8601)
|
|
, ':scope' => $scope
|
|
];
|
|
|
|
$stmt = $appbox->get_connection()->prepare($sql);
|
|
$stmt->execute($params);
|
|
$stmt->closeCursor();
|
|
|
|
return new API_OAuth2_Token($appbox, $account);
|
|
}
|
|
|
|
/**
|
|
*
|
|
* @return string
|
|
*/
|
|
public static function generate_token()
|
|
{
|
|
return md5(base64_encode(pack('N6', mt_rand(), mt_rand(), mt_rand(), mt_rand(), mt_rand(), uniqid())));
|
|
}
|
|
}
|