hazza/Phraseanet
1
0
Fork 0
mirror of https://github.com/alchemy-fr/Phraseanet.git synced 2025-10-08 10:34:34 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
2069d40544fed19e02ebfe5cb975c47be7b519ed
Phraseanet/lib/classes/random.php
Romain Neutron 2069d40544 Use composer as application autoloader
2013-01-18 17:47:25 +01:00

260 lines
7.3 KiB
PHP
Raw Blame History

<?php
/*
* This file is part of Phraseanet
*
* (c) 2005-2012 Alchemy
*
* For the full copyright and license information, please view the LICENSE
* file that was distributed with this source code.
*/
use Alchemy\Phrasea\Application;
class random
{
/**
*
*/
const NUMBERS = "0123456789";
/**
*
*/
const LETTERS = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
/**
*
*/
const LETTERS_AND_NUMBERS = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
const TYPE_FEED_ENTRY = 'FEED_ENTRY';
const TYPE_PASSWORD = 'password';
const TYPE_DOWNLOAD = 'download';
const TYPE_MAIL_DOWNLOAD = 'mail-download';
const TYPE_EMAIL = 'email';
const TYPE_VIEW = 'view';
const TYPE_VALIDATE = 'validate';
const TYPE_RSS = 'rss';
/**
*
* @return Void
*/
public static function cleanTokens(Application $app)
{
try {
$conn = connection::getPDOConnection($app);
$date = new DateTime();
$date = $app['date-formatter']->format_mysql($date);
$sql = 'SELECT * FROM tokens WHERE expire_on < :date
AND datas IS NOT NULL AND (type="download" OR type="email")';
$stmt = $conn->prepare($sql);
$stmt->execute(array(':date' => $date));
$rs = $stmt->fetchAll(PDO::FETCH_ASSOC);
$stmt->closeCursor();
foreach ($rs as $row) {
switch ($row['type']) {
case 'download':
case 'email':
$file = __DIR__ . '/../../tmp/download/' . $row['value'] . '.zip';
if (is_file($file))
unlink($file);
break;
}
}
$sql = 'DELETE FROM tokens WHERE expire_on < :date and (type="download" OR type="email")';
$stmt = $conn->prepare($sql);
$stmt->execute(array(':date' => $date));
$stmt->closeCursor();
return true;
} catch (Exception $e) {
}
return false;
}
/**
*
* @param int $length
* @param constant $possible
* @return string
*/
public static function generatePassword($length = 8, $possible = SELF::LETTERS_AND_NUMBERS)
{
if ( ! is_int($length))
throw new Exception_InvalidArgument ();
$password = "";
if ( ! in_array($possible, array(self::LETTERS_AND_NUMBERS, self::LETTERS, self::NUMBERS)))
$possible = self::LETTERS_AND_NUMBERS;
$i = 0;
$possible_length = strlen($possible);
while ($i < $length) {
$char = substr($possible, mt_rand(0, $possible_length - 1), 1);
$password .= $char;
$i ++;
}
return $password;
}
/**
*
* @param string $type
* @param int $usr
* @param string $end_date
* @param mixed content $datas
* @return boolean
*/
public static function getUrlToken(Application $app, $type, $usr, DateTime $end_date = null, $datas = '')
{
self::cleanTokens($app);
$conn = connection::getPDOConnection($app);
$token = $test = false;
switch ($type) {
case self::TYPE_DOWNLOAD:
case self::TYPE_PASSWORD:
case self::TYPE_MAIL_DOWNLOAD:
case self::TYPE_EMAIL:
case self::TYPE_VALIDATE:
case self::TYPE_VIEW:
case self::TYPE_RSS:
case self::TYPE_FEED_ENTRY:
break;
default:
throw new Exception_InvalidArgument();
break;
}
$n = 1;
$sql = 'SELECT id FROM tokens WHERE value = :test ';
$stmt = $conn->prepare($sql);
while ($n < 100) {
$test = self::generatePassword(16);
$stmt->execute(array(':test' => $test));
if ($stmt->rowCount() === 0) {
$token = $test;
break;
}
$n ++;
}
$stmt->closeCursor();
if ($token) {
$sql = 'INSERT INTO tokens (id, value, type, usr_id, created_on, expire_on, datas)
VALUES (null, :token, :type, :usr, NOW(), :end_date, :datas)';
$stmt = $conn->prepare($sql);
$params = array(
':token' => $token
, ':type' => $type
, ':usr' => ($usr ? $usr : '-1')
, ':end_date' => ($end_date instanceof DateTime ? $end_date->format(DATE_ISO8601) : null)
, ':datas' => ((trim($datas) != '') ? $datas : null)
);
$stmt->execute($params);
$stmt->closeCursor();
}
return $token;
}
public static function removeToken(Application $app, $token)
{
self::cleanTokens($app);
try {
$conn = connection::getPDOConnection($app);
$sql = 'DELETE FROM tokens WHERE value = :token';
$stmt = $conn->prepare($sql);
$stmt->execute(array(':token' => $token));
$stmt->closeCursor();
return true;
} catch (Exception $e) {
}
return false;
}
public static function updateToken(Application $app, $token, $datas)
{
try {
$conn = connection::getPDOConnection($app);
$sql = 'UPDATE tokens SET datas = :datas
WHERE value = :token';
$stmt = $conn->prepare($sql);
$stmt->execute(array(':datas' => $datas, ':token' => $token));
$stmt->closeCursor();
return true;
} catch (Exception $e) {
}
return false;
}
public static function helloToken(Application $app, $token)
{
self::cleanTokens($app);
$conn = connection::getPDOConnection($app);
$sql = 'SELECT * FROM tokens
WHERE value = :token
AND (expire_on > NOW() OR expire_on IS NULL)';
$stmt = $conn->prepare($sql);
$stmt->execute(array(':token' => $token));
$row = $stmt->fetch(PDO::FETCH_ASSOC);
$stmt->closeCursor();
if ( ! $row)
throw new Exception_NotFound('Token not found');
return $row;
}
/**
* Get the validation token for one user and one validation basket
*
* @param integer $userId
* @param integer $basketId
* @return string The desired token
* @throws \Exception_NotFound
*/
public static function getValidationToken(Application $app, $userId, $basketId)
{
$conn = \connection::getPDOConnection($app);
$sql = '
SELECT value FROM tokens
WHERE type = :type
AND usr_id = :usr_id
AND datas = :basket_id
AND (expire_on > NOW() OR expire_on IS NULL)';
$stmt = $conn->prepare($sql);
$stmt->execute(array(
':type' => self::TYPE_VALIDATE,
':usr_id' => (int) $userId,
':basket_id' => (int) $basketId,
));
$row = $stmt->fetch(PDO::FETCH_ASSOC);
$stmt->closeCursor();
if ( ! $row) {
throw new \Exception_NotFound('Token not found');
}
return $row['value'];
}
}
Reference in New Issue View Git Blame Copy Permalink