File system/Api.php | Afterlogic Aurora Corporate 9 API

1:	<?php
2:	/**
3:	* This code is licensed under AGPLv3 license or Afterlogic Software License
4:	* if commercial version of the product was purchased.
5:	* For full statements of the licenses see LICENSE-AFTERLOGIC and LICENSE-AGPL3 files.
6:	*/
7:
8:	namespace Aurora\System;
9:
10:	use Aurora\Modules\Core\Models\User;
11:	use Aurora\Modules\Core\Models\Tenant;
12:	use Aurora\System\Enums\DbType;
13:	use Aurora\System\Console\Commands;
14:	use Aurora\System\Exceptions\ApiException;
15:	use Illuminate\Container\Container;
16:
17:	/**
18:	* @license https://www.gnu.org/licenses/agpl-3.0.html AGPL-3.0
19:	* @license https://afterlogic.com/products/common-licensing Afterlogic Software License
20:	* @copyright Copyright (c) 2019, Afterlogic Corp.
21:	*/
22:	if (!defined('AU_APP_ROOT_PATH')) {
23:	define('AU_APP_ROOT_PATH', rtrim(realpath(dirname(__DIR__)), '\\/') . '/');
24:	}
25:
26:	define('AU_API_PATH_TO_AURORA', '/../');
27:
28:	define('AU_API_CRLF', PHP_EOL);
29:	define('AU_API_TAB', "\t");
30:
31:	define('AU_API_SESSION_WEBMAIL_NAME', 'PHPWEBMAILSESSID');
32:
33:	define('AU_API_HELPDESK_PUBLIC_NAME', '_helpdesk_');
34:
35:	// timezone fix
36:	$sDefaultTimeZone = function_exists('date_default_timezone_get')
37:	? @date_default_timezone_get() : 'US/Pacific';
38:
39:	define('AU_API_SERVER_TIME_ZONE', ($sDefaultTimeZone && 0 < strlen($sDefaultTimeZone))
40:	? $sDefaultTimeZone : 'US/Pacific');
41:
42:	if (defined('AU_API_SERVER_TIME_ZONE') && function_exists('date_default_timezone_set')) {
43:	@date_default_timezone_set(AU_API_SERVER_TIME_ZONE);
44:	}
45:
46:	unset($sDefaultTimeZone);
47:
48:	/**
49:	* @package Api
50:	*/
51:	class Api
52:	{
53:	/**
54:	* @var \Aurora\System\Module\Manager
55:	*/
56:	public static $oModuleManager;
57:
58:	/**
59:	* @var array
60:	*/
61:	public static $aModuleDecorators;
62:
63:	/**
64:	* @var array
65:	*/
66:	public static $aSecretWords = [];
67:
68:	/**
69:	* @var bool
70:	*/
71:	public static $bIsValid;
72:
73:	/**
74:	* @deprecated
75:	* @var string
76:	*/
77:	public static $sSalt;
78:
79:	/**
80:	* @var string
81:	*/
82:	public static $sEncryptionKey;
83:
84:	/**
85:	* @var array
86:	*/
87:	public static $aI18N = null;
88:
89:	/**
90:	* @var array
91:	*/
92:	public static $aClientI18N = [];
93:
94:	/**
95:	* @var bool
96:	*/
97:	public static $bUseDbLog = false;
98:
99:	/**
100:	* @var bool
101:	*/
102:	public static $bDebug = false;
103:
104:	/**
105:	* @var array
106:	*/
107:	protected static $aUserSession = [];
108:
109:	/**
110:	* @var bool
111:	*/
112:	protected static $__SKIP_CHECK_USER_ROLE__ = false;
113:
114:	/**
115:	* @var string
116:	*/
117:	protected static $sLanguage = null;
118:
119:	/**
120:	* @var \Aurora\System\Settings
121:	*/
122:	protected static $oSettings;
123:
124:	/**
125:	* @var boolean
126:	*/
127:	protected static $bInitialized = false;
128:
129:	/**
130:	*
131:	*/
132:	protected static $oAuthenticatedUser = null;
133:
134:	/**
135:	* @var \Illuminate\Container\Container
136:	*/
137:	public static $oContainer = null;
138:
139:	/**
140:	* @var array
141:	*/
142:	protected static $usersCache = [];
143:
144:	/**
145:	* @var array
146:	*/
147:	protected static $tenantsCache = [];
148:
149:	/**
150:	* @deprecated
151:	* @return string
152:	*/
153:	public static function GetSaltPath()
154:	{
155:	return self::DataPath() . '/salt8.php';
156:	}
157:
158:	/**
159:	*
160:	* @return string
161:	*/
162:	public static function GetEncryptionKeyPath()
163:	{
164:	return self::DataPath() . '/encryption_key.php';
165:	}
166:
167:	/**
168:	*
169:	*/
170:	public static function InitEncryptionKey()
171:	{
172:	$sEncryptionKey = '';
173:	$sEncryptionKeyPath = self::GetEncryptionKeyPath();
174:
175:	if (!@file_exists($sEncryptionKeyPath)) {
176:	if (@file_exists(self::GetSaltPath())) {
177:	include self::GetSaltPath();
178:	$sEncryptionKey = self::$sSalt;
179:	} else {
180:	$sEncryptionKey = bin2hex(random_bytes(16));
181:	}
182:
183:	$sEncryptionKey = '<?php \\Aurora\\System\\Api::$sEncryptionKey = "' . $sEncryptionKey . '";';
184:	if (@file_put_contents($sEncryptionKeyPath, $sEncryptionKey) && @file_exists(self::GetSaltPath())) {
185:	@unlink(self::GetSaltPath());
186:	}
187:	}
188:
189:	if (is_readable($sEncryptionKeyPath)) {
190:	include_once $sEncryptionKeyPath;
191:	} else {
192:	throw new ApiException(Notifications::SystemNotConfigured, null, 'Check the read permission of the encryption key file');
193:	}
194:	}
195:
196:	/**
197:	*
198:	*/
199:	public static function GetUserSession()
200:	{
201:	return self::$aUserSession;
202:	}
203:
204:	/**
205:	*
206:	*/
207:	public static function SetUserSession($aUserSession)
208:	{
209:	self::$oAuthenticatedUser = null;
210:	return self::$aUserSession = $aUserSession;
211:	}
212:
213:	/**
214:	*
215:	*/
216:	public static function GrantAdminPrivileges()
217:	{
218:	self::$aUserSession['UserId'] = -1;
219:	self::$aUserSession['AuthToken'] = '';
220:	}
221:
222:	public static function UseDbLogs($bUseDbLogs = false)
223:	{
224:	self::$bUseDbLog = $bUseDbLogs;
225:	}
226:
227:	/**
228:	*
229:	* @param bool $bGrantAdminPrivileges
230:	*/
231:	public static function Init($bGrantAdminPrivileges = false)
232:	{
233:	if (!defined('AU_API_INIT')) {
234:	$apiInitTimeStart = \microtime(true);
235:
236:	include_once self::GetVendorPath() . 'autoload.php';
237:	include_once 'bootstrap.php';
238:
239:	if ($bGrantAdminPrivileges) {
240:	self::GrantAdminPrivileges();
241:	}
242:
243:	self::InitEncryptionKey();
244:	self::validateApi();
245:	self::GetModuleManager()->loadModules();
246:
247:	define('AU_API_INIT', microtime(true) - $apiInitTimeStart);
248:	}
249:	}
250:
251:	/**
252:	*
253:	* @param bool $bSkip
254:	* @return bool Previous state
255:	*/
256:	public static function skipCheckUserRole($bSkip)
257:	{
258:	$bResult = self::$__SKIP_CHECK_USER_ROLE__;
259:	self::$__SKIP_CHECK_USER_ROLE__ = $bSkip;
260:	return $bResult;
261:	}
262:
263:	/**
264:	*
265:	* @return bool
266:	*/
267:	public static function accessCheckIsSkipped()
268:	{
269:	return self::$__SKIP_CHECK_USER_ROLE__;
270:	}
271:
272:	public static function checkUserAccess($oUser)
273:	{
274:	if ($oUser) {
275:	$oAuthUser = Api::getAuthenticatedUser();
276:	switch ($oAuthUser->Role) {
277:	case \Aurora\System\Enums\UserRole::TenantAdmin:
278:	if ($oUser->IdTenant !== $oAuthUser->IdTenant) {
279:	throw new ApiException(Notifications::AccessDenied, null, 'AccessDenied');
280:	}
281:	break;
282:	case \Aurora\System\Enums\UserRole::NormalUser:
283:	if ($oUser->Id !== $oAuthUser->Id) {
284:	throw new ApiException(Notifications::AccessDenied, null, 'AccessDenied');
285:	}
286:	break;
287:	}
288:	}
289:	}
290:
291:	/**
292:	* @param string $sWord
293:	*
294:	* @return void
295:	*/
296:	public static function AddSecret($sWord)
297:	{
298:	if (0 < \strlen(\trim($sWord))) {
299:	self::$aSecretWords[] = $sWord;
300:	self::$aSecretWords = \array_unique(self::$aSecretWords);
301:	}
302:	}
303:
304:	/**
305:	* @param array $aValues
306:	*
307:	* @return string
308:	*/
309:	public static function EncodeKeyValues(array $aValues)
310:	{
311:	return Utils::UrlSafeBase64Encode(
312:	Utils::EncryptValue(@\json_encode($aValues))
313:	);
314:	}
315:
316:	/**
317:	* Decrypts a string that is encrypted serialized array data
318:	*
319:	* @param string $sEncryptedValues
320:	*
321:	* @return array
322:	*/
323:	public static function DecodeKeyValues(string $sEncryptedValues)
324:	{
325:	$sEncryptedValues = Utils::UrlSafeBase64Decode(trim($sEncryptedValues));
326:
327:	$sValue = Utils::DecryptValue($sEncryptedValues);
328:
329:	$aResult = @\json_decode($sValue, true);
330:
331:	return \is_array($aResult) ? $aResult : array();
332:	}
333:
334:	/**
335:	*
336:	* @return \Aurora\System\Module\Manager
337:	*/
338:	public static function GetModuleManager()
339:	{
340:	if (!isset(self::$oModuleManager)) {
341:	self::$oModuleManager = Module\Manager::createInstance();
342:	self::$aModuleDecorators = [];
343:	}
344:
345:	return self::$oModuleManager;
346:	}
347:
348:	/**
349:	*
350:	* @param string $sModuleName
351:	* @return \Aurora\System\Module\Decorator
352:	*/
353:	public static function GetModuleDecorator($sModuleName)
354:	{
355:	if (!isset(self::$aModuleDecorators[$sModuleName]) && self::GetModule($sModuleName) !== false) {
356:	self::$aModuleDecorators[$sModuleName] = new Module\Decorator($sModuleName);
357:	}
358:
359:	return isset(self::$aModuleDecorators[$sModuleName]) ? self::$aModuleDecorators[$sModuleName] : false;
360:	}
361:
362:	/**
363:	*
364:	* @param string $sModuleName
365:	* @return \Aurora\System\Module\AbstractModule
366:	*/
367:	public static function GetModule($sModuleName)
368:	{
369:	return self::GetModuleManager()->GetModule($sModuleName);
370:	}
371:
372:	/**
373:	*
374:	* @param string $sModuleName
375:	* @return bool
376:	*/
377:	public static function IsModuleLoaded($sModuleName)
378:	{
379:	return self::GetModuleManager()->isModuleLoaded($sModuleName);
380:	}
381:
382:	/**
383:	*
384:	* @return array
385:	*/
386:	public static function GetModules()
387:	{
388:	return self::GetModuleManager()->GetModules();
389:	}
390:
391:	/**
392:	*
393:	* @param string $sMethodName
394:	* @param array $aParameters
395:	* @return mixed
396:	*/
397:	public static function ExecuteMethod($sMethodName, $aParameters = array())
398:	{
399:	list($sModuleName, $sMethodName) = explode(Module\AbstractModule::$Delimiter, $sMethodName);
400:	$oModule = self::GetModule($sModuleName);
401:	if ($oModule instanceof Module\AbstractModule) {
402:	return $oModule->CallMethod($sModuleName, $sMethodName, $aParameters);
403:	}
404:	}
405:
406:	/**
407:	* @return \MailSo\Cache\CacheClient
408:	*/
409:	public static function Cacher()
410:	{
411:	static $oCacher = null;
412:	if (null === $oCacher) {
413:	$oCacher = \MailSo\Cache\CacheClient::NewInstance();
414:	$oCacher->SetDriver(\MailSo\Cache\Drivers\File::NewInstance(self::DataPath() . '/cache'));
415:	$oCacher->SetCacheIndex(self::Version());
416:	}
417:
418:	return $oCacher;
419:	}
420:
421:	/**
422:	* @return UserSession
423:	*/
424:	public static function UserSession()
425:	{
426:	static $oSession = null;
427:	if (null === $oSession) {
428:	$oSession = new UserSession();
429:	}
430:
431:	return $oSession;
432:	}
433:
434:	/**
435:	* @return \Aurora\System\Settings
436:	*/
437:	public static function &GetSettings($force = false)
438:	{
439:	if (null === self::$oSettings \|\| $force) {
440:	try {
441:	$sSettingsPath = \Aurora\System\Api::DataPath() . '/settings/';
442:	if (!\file_exists($sSettingsPath)) {
443:	set_error_handler(function () {});
444:	mkdir($sSettingsPath, 0777);
445:	restore_error_handler();
446:	if (!file_exists($sSettingsPath)) {
447:	self::$oSettings = false;
448:	return self::$oSettings;
449:	}
450:	}
451:
452:	self::$oSettings = new \Aurora\System\Settings($sSettingsPath . 'config.json');
453:	self::$oSettings->Load();
454:	} catch (\Aurora\System\Exceptions\BaseException $oException) {
455:	self::$oSettings = false;
456:	}
457:	}
458:	return self::$oSettings;
459:	}
460:
461:	/**
462:	* @return bool
463:	*/
464:	public static function UpdateSettings()
465:	{
466:	$bResult = true;
467:	try {
468:	Api::Init();
469:	Api::GetModuleManager()->SyncModulesConfigs();
470:	Api::GetSettings()->SyncConfigs();
471:	} catch (\Exception $e) {
472:	$bResult = false;
473:	}
474:
475:	return $bResult;
476:	}
477:
478:	/**
479:	* @return \PDO\|false
480:	*/
481:	public static function GetPDO()
482:	{
483:	static $oPdoCache = null;
484:	if (null !== $oPdoCache) {
485:	return $oPdoCache;
486:	}
487:
488:	$oPdo = false;
489:	$oSettings = &self::GetSettings();
490:	if ($oSettings) {
491:	$sDbPort = '';
492:	$sUnixSocket = '';
493:
494:	$iDbType = $oSettings->DBType;
495:	$sDbHost = $oSettings->DBHost;
496:	$sDbName = $oSettings->DBName;
497:	$sDbLogin = $oSettings->DBLogin;
498:	$sDbPassword = $oSettings->DBPassword;
499:
500:	$iPos = strpos($sDbHost, ':');
501:	if (false !== $iPos && 0 < $iPos) {
502:	$sAfter = substr($sDbHost, $iPos + 1);
503:	$sDbHost = substr($sDbHost, 0, $iPos);
504:
505:	if (is_numeric($sAfter)) {
506:	$sDbPort = $sAfter;
507:	} else {
508:	$sUnixSocket = $sAfter;
509:	}
510:	}
511:
512:	if (class_exists('PDO')) {
513:	try {
514:	$oPdo = @new \PDO((Enums\DbType::PostgreSQL === $iDbType ? 'pgsql' : 'mysql') . ':dbname=' . $sDbName .
515:	(empty($sDbHost) ? '' : ';host=' . $sDbHost) .
516:	(empty($sDbPort) ? '' : ';port=' . $sDbPort) .
517:	(empty($sUnixSocket) ? '' : ';unix_socket=' . $sUnixSocket) . ';charset=utf8', $sDbLogin, $sDbPassword);
518:
519:	if ($oPdo) {
520:	$oPdo->setAttribute(\PDO::ATTR_ERRMODE, \PDO::ERRMODE_EXCEPTION);
521:	$oPdo->setAttribute(\PDO::MYSQL_ATTR_INIT_COMMAND, "SET NAMES utf8");
522:	}
523:	} catch (\Exception $oException) {
524:	self::Log($oException->getMessage(), Enums\LogLevel::Error);
525:	self::Log($oException->getTraceAsString(), Enums\LogLevel::Error);
526:	$oPdo = false;
527:	}
528:	} else {
529:	self::Log('Class PDO dosn\'t exist', Enums\LogLevel::Error);
530:	}
531:	}
532:
533:	if (false !== $oPdo) {
534:	$oPdoCache = $oPdo;
535:	}
536:
537:	return $oPdo;
538:	}
539:
540:	/**
541:	* @return bool
542:	*/
543:	public static function IsMobileApplication()
544:	{
545:	/* @var $oIntegrator \Aurora\System\Managers\Integrator */
546:	$oIntegrator = \Aurora\System\Managers\Integrator::getInstance();
547:
548:	return (bool) $oIntegrator /&& $oApiCapability->isNotLite()/ && 1 === $oIntegrator->isMobile(); // todo
549:	}
550:
551:	/**
552:	* @param string $sNewLocation
553:	*/
554:	public static function Location($sNewLocation)
555:	{
556:	self::Log('Location: ' . $sNewLocation);
557:	@header('Location: ' . $sNewLocation);
558:	}
559:
560:	/**
561:	* @param string $sNewLocation
562:	*/
563:	public static function Location2($sNewLocation)
564:	{
565:	exit('<META HTTP-EQUIV="refresh" CONTENT="0; url=' . $sNewLocation . '">');
566:	}
567:
568:	/**
569:	* @param string $sDesc
570:	* @param string $sModuleName
571:	*/
572:	public static function LogEvent($sDesc, $sModuleName = '')
573:	{
574:	Logger::LogEvent($sDesc, $sModuleName);
575:	}
576:
577:	/**
578:	* @param mixed $mObject
579:	* @param int $iLogLevel = \Aurora\System\Enums\LogLevel::Full
580:	* @param string $sFilePrefix = ''
581:	*/
582:	public static function LogObject($mObject, $iLogLevel = Enums\LogLevel::Full, $sFilePrefix = '')
583:	{
584:	Logger::LogObject($mObject, $iLogLevel, $sFilePrefix);
585:	}
586:
587:	/**
588:	* @param Exceptions\Exception $mObject
589:	* @param int $iLogLevel = \Aurora\System\Enums\LogLevel::Error
590:	* @param string\|null $sFilePrefix = null
591:	*/
592:	public static function LogException($mObject, $iLogLevel = Enums\LogLevel::Error, $sFilePrefix = null)
593:	{
594:	$sFilePrefix = $sFilePrefix ?: Logger::$sErrorLogPrefix;
595:	Logger::LogException($mObject, $iLogLevel, $sFilePrefix);
596:	}
597:
598:	/**
599:	* @param string $sFilePrefix = ''
600:	*
601:	* @return string
602:	*/
603:	public static function GetLogFileName($sFilePrefix = '', $iTimestamp = 0)
604:	{
605:	return Logger::GetLogFileName($sFilePrefix, $iTimestamp);
606:	}
607:
608:	public static function GetLogFileDir()
609:	{
610:	return Logger::GetLogFileDir();
611:	}
612:
613:	/**
614:	* @return \MailSo\Log\Logger
615:	*/
616:	public static function SystemLogger()
617:	{
618:	return Logger::SystemLogger();
619:	}
620:
621:	/**
622:	* @param string $sDesc
623:	* @param int $iLogLevel = \Aurora\System\Enums\LogLevel::Full
624:	* @param string $sFilePrefix = ''
625:	*/
626:	public static function Log($sDesc, $iLogLevel = Enums\LogLevel::Full, $sFilePrefix = '')
627:	{
628:	Logger::Log($sDesc, $iLogLevel, $sFilePrefix);
629:	}
630:
631:	/**
632:	* @param string $sDesc
633:	* @param string $sLogFile
634:	*/
635:	public static function LogOnly($sDesc, $sLogFile)
636:	{
637:	Logger::LogOnly($sDesc, $sLogFile);
638:	}
639:
640:	public static function LogSql($query)
641:	{
642:	$sql = $query->toSql();
643:	foreach($query->getBindings() as $binding) {
644:	$value = is_numeric($binding) ? $binding : "'" . $binding . "'";
645:	$sql = preg_replace('/\?/', $value, $sql, 1);
646:	}
647:
648:	Api::Log($sql, \Aurora\System\Enums\LogLevel::Full, 'sql-');
649:	}
650:
651:	public static function ClearLog($sFileFullPath)
652:	{
653:	return Logger::ClearLog($sFileFullPath);
654:	}
655:
656:	public static function RemoveSeparateLogs()
657:	{
658:	Logger::RemoveSeparateLogs();
659:	}
660:
661:	public static function removeOldLogs()
662:	{
663:	Logger::RemoveOldLogs();
664:	}
665:
666:	public static function GetLoggerGuid()
667:	{
668:	return Logger::GetLoggerGuid();
669:	}
670:
671:	/**
672:	* @return string
673:	*/
674:	public static function RootPath()
675:	{
676:	defined('AU_API_ROOTPATH') \|\| define('AU_API_ROOTPATH', rtrim(dirname(__FILE__), '/\\') . '/');
677:	return AU_API_ROOTPATH;
678:	}
679:
680:	/**
681:	* @return string
682:	*/
683:	public static function WebMailPath()
684:	{
685:	return self::RootPath() . ltrim(AU_API_PATH_TO_AURORA, '/');
686:	}
687:
688:	/**
689:	* @return string
690:	*/
691:	public static function GetVendorPath()
692:	{
693:	return self::RootPath() . '../vendor/';
694:	}
695:
696:	/**
697:	* @return string
698:	*/
699:	public static function VersionFull()
700:	{
701:	static $sVersion = null;
702:	$sAppVersion = @file_get_contents(self::WebMailPath() . 'VERSION');
703:
704:	$sVersion = (empty($sAppVersion)) ? '0.0.0' : $sAppVersion;
705:
706:	return $sVersion;
707:	}
708:
709:	/**
710:	* @return string
711:	*/
712:	public static function Version()
713:	{
714:	static $sVersion = null;
715:	if (null === $sVersion) {
716:	preg_match('/[\d\.]+/', @file_get_contents(self::WebMailPath() . 'VERSION'), $matches);
717:
718:	if (isset($matches[0])) {
719:	$sAppVersion = preg_replace('/[^0-9]/', '', $matches[0]);
720:	}
721:
722:	$sVersion = (empty($sAppVersion)) ? '0.0.0' : $sAppVersion;
723:	}
724:	return $sVersion;
725:	}
726:
727:	/**
728:	* @return string
729:	*/
730:	public static function VersionJs()
731:	{
732:	$oSettings = &self::GetSettings();
733:	$sAppVersion = @file_get_contents(self::WebMailPath() . 'VERSION');
734:	$sAppVersion = empty($sAppVersion) ? '0.0.0' : $sAppVersion;
735:
736:	return preg_replace('/[^0-9]/', '', $sAppVersion);
737:	}
738:
739:	/**
740:	* @return string
741:	*/
742:	public static function DataPath()
743:	{
744:	$dataPath = 'data';
745:	if (!defined('AU_API_DATA_FOLDER') && @file_exists(self::WebMailPath() . 'inc_settings_path.php')) {
746:	include self::WebMailPath() . 'inc_settings_path.php';
747:	}
748:	if (!defined('AU_API_DATA_FOLDER')) {
749:	define('AU_API_DATA_FOLDER', Utils::GetFullPath($dataPath, self::WebMailPath()));
750:	}
751:	$sDataFullPath = defined('AU_API_DATA_FOLDER') ? AU_API_DATA_FOLDER : '';
752:
753:	/**
754:	if (!\file_exists($sDataFullPath))
755:	{
756:	\mkdir($sDataFullPath, 0777);
757:	}
758:	*/
759:	return $sDataFullPath;
760:	}
761:
762:	/**
763:	* @return bool
764:	*/
765:	protected static function validateApi()
766:	{
767:	$iResult = 1;
768:
769:	$oSettings = &self::GetSettings();
770:	$iResult &= $oSettings && ($oSettings instanceof AbstractSettings);
771:
772:	self::$bIsValid = (bool) $iResult;
773:
774:	return self::$bIsValid;
775:	}
776:
777:	/**
778:	* @return bool
779:	*/
780:	public static function IsValid()
781:	{
782:	return (bool)self::$bIsValid;
783:	}
784:
785:	/**
786:	* @param string $sEmail
787:	* @param string $sPassword
788:	* @param string $sLogin = ''
789:	* @return string
790:	*/
791:	public static function GenerateSsoToken($sEmail, $sPassword, $sLogin = '')
792:	{
793:	$sSsoHash = \Illuminate\Support\Str::random(32);
794:	return self::Cacher()->Set('SSO:' . $sSsoHash, self::EncodeKeyValues(array(
795:	'Email' => $sEmail,
796:	'Password' => $sPassword,
797:	'Login' => $sLogin
798:	))) ? $sSsoHash : '';
799:	}
800:
801:	/**
802:	* @param string $sLangFile
803:	* @return array
804:	*/
805:	public static function convertIniToLang($sLangFile)
806:	{
807:	$aResultLang = false;
808:
809:	$aLang = @\parse_ini_string(file_get_contents($sLangFile), true);
810:	if (is_array($aLang)) {
811:	$aResultLang = array();
812:	foreach ($aLang as $sKey => $mValue) {
813:	if (\is_array($mValue)) {
814:	foreach ($mValue as $sSecKey => $mSecValue) {
815:	$aResultLang[$sKey . '/' . $sSecKey] = $mSecValue;
816:	}
817:	} else {
818:	$aResultLang[$sKey] = $mValue;
819:	}
820:	}
821:	}
822:
823:	return $aResultLang;
824:	}
825:
826:	/**
827:	* @param mixed $mLang
828:	* @param string $sData
829:	* @param array\|null $aParams = null
830:	* @return array
831:	*/
832:	public static function processTranslateParams($mLang, $sData, $aParams = null, $iPlural = null)
833:	{
834:	$sResult = $sData;
835:	if ($mLang && isset($mLang[$sData])) {
836:	$sResult = $mLang[$sData];
837:	}
838:
839:	if (isset($iPlural)) {
840:	$aPluralParts = explode('\|', $sResult);
841:
842:	$sResult = ($aPluralParts && $aPluralParts[$iPlural]) ? $aPluralParts[$iPlural] : (
843:	$aPluralParts && $aPluralParts[0] ? $aPluralParts[0] : $sResult
844:	);
845:	}
846:
847:	if (null !== $aParams && is_array($aParams)) {
848:	foreach ($aParams as $sKey => $sValue) {
849:	$sResult = str_replace('%' . $sKey . '%', $sValue, $sResult);
850:	}
851:	}
852:
853:	return $sResult;
854:	}
855:
856:	/**
857:	*
858:	* @param string $sLanguage
859:	*/
860:	public static function SetLanguage($sLanguage)
861:	{
862:	self::$sLanguage = $sLanguage;
863:	}
864:
865:	/**
866:	*
867:	* @param bool $bForNewUser
868:	* @return string
869:	*/
870:	public static function GetLanguage($bForNewUser = false)
871:	{
872:	$sResult = null;
873:	if (isset(self::$sLanguage)) {
874:	$sResult = self::$sLanguage;
875:	} else {
876:	$iAuthUserId = self::getAuthenticatedUserId();
877:	$bSuperAdmin = $iAuthUserId === -1;
878:	$oModuleManager = self::GetModuleManager();
879:
880:	$sResult = $oModuleManager->getModuleConfigValue('Core', 'Language');
881:	if ($oModuleManager->getModuleConfigValue('Core', 'AutodetectLanguage', true)) {
882:	$sResult = self::getBrowserLanguage();
883:	}
884:
885:	if ($bSuperAdmin) {
886:	$oSettings = &self::GetSettings();
887:	$sResult = $oSettings->AdminLanguage;
888:	} elseif (!$bForNewUser) {
889:	$oUser = self::getAuthenticatedUser();
890:	if ($oUser) {
891:	$sResult = $oUser->Language;
892:	} elseif (isset($_COOKIE['aurora-lang-on-login'])) {
893:	$sResult = $_COOKIE['aurora-lang-on-login'];
894:	}
895:	}
896:	}
897:
898:	return $sResult;
899:	}
900:
901:	protected static function getBrowserLanguage()
902:	{
903:	$aLanguages = array(
904:	'ar-dz' => 'Arabic', 'ar-bh' => 'Arabic', 'ar-eg' => 'Arabic', 'ar-iq' => 'Arabic', 'ar-jo' => 'Arabic', 'ar-kw' => 'Arabic',
905:	'ar-lb' => 'Arabic', 'ar-ly' => 'Arabic', 'ar-ma' => 'Arabic', 'ar-om' => 'Arabic', 'ar-qa' => 'Arabic', 'ar-sa' => 'Arabic',
906:	'ar-sy' => 'Arabic', 'ar-tn' => 'Arabic', 'ar-ae' => 'Arabic', 'ar-ye' => 'Arabic', 'ar' => 'Arabic',
907:	'bg' => 'Bulgarian',
908:	'zh-cn' => 'Chinese-Simplified', 'zh-hk' => 'Chinese-Simplified', 'zh-mo' => 'Chinese-Simplified', 'zh-sg' => 'Chinese-Simplified',
909:	'zh-tw' => 'Chinese-Simplified', 'zh' => 'Chinese-Simplified',
910:	'cs' => 'Czech',
911:	'da' => 'Danish',
912:	'nl-be' => 'Dutch', 'nl' => 'Dutch',
913:	'en-au' => 'English', 'en-bz' => 'English ', 'en-ca' => 'English', 'en-ie' => 'English', 'en-jm' => 'English',
914:	'en-nz' => 'English', 'en-ph' => 'English', 'en-za' => 'English', 'en-tt' => 'English', 'en-gb' => 'English',
915:	'en-us' => 'English', 'en-zw' => 'English', 'en' => 'English', 'us' => 'English',
916:	'et' => 'Estonian', 'fi' => 'Finnish',
917:	'fr-be' => 'French', 'fr-ca' => 'French', 'fr-lu' => 'French', 'fr-mc' => 'French', 'fr-ch' => 'French', 'fr' => 'French',
918:	'de-at' => 'German', 'de-li' => 'German', 'de-lu' => 'German', 'de-ch' => 'German', 'de' => 'German',
919:	'el' => 'Greek', 'he' => 'Hebrew', 'hu' => 'Hungarian', 'it-ch' => 'Italian', 'it' => 'Italian',
920:	'ja' => 'Japanese', 'ko' => 'Korean', 'lv' => 'Latvian', 'lt' => 'Lithuanian',
921:	'nb-no' => 'Norwegian', 'nn-no' => 'Norwegian', 'no' => 'Norwegian', 'pl' => 'Polish',
922:	'pt-br' => 'Portuguese-Brazil', 'pt' => 'Portuguese-Portuguese', 'pt-pt' => 'Portuguese-Portuguese',
923:	'ro-md' => 'Romanian', 'ro' => 'Romanian',
924:	'ru-md' => 'Russian', 'ru' => 'Russian', 'sr' => 'Serbian',
925:	'es-ar' => 'Spanish', 'es-bo' => 'Spanish', 'es-cl' => 'Spanish', 'es-co' => 'Spanish', 'es-cr' => 'Spanish',
926:	'es-do' => 'Spanish', 'es-ec' => 'Spanish', 'es-sv' => 'Spanish', 'es-gt' => 'Spanish', 'es-hn' => 'Spanish)',
927:	'es-mx' => 'Spanish', 'es-ni' => 'Spanish', 'es-pa' => 'Spanish', 'es-py' => 'Spanish', 'es-pe' => 'Spanish',
928:	'es-pr' => 'Spanish', 'es-us' => 'Spanish ', 'es-uy' => 'Spanish', 'es-ve' => 'Spanish', 'es' => 'Spanish',
929:	'sv-fi' => 'Swedish', 'sv' => 'Swedish', 'th' => 'Thai', 'tr' => 'Turkish', 'uk' => 'Ukrainian', 'vi' => 'Vietnamese', 'sl' => 'Slovenian'
930:	);
931:
932:	$sLanguage = !empty($_SERVER['HTTP_ACCEPT_LANGUAGE']) ? strtolower($_SERVER['HTTP_ACCEPT_LANGUAGE']) : 'en';
933:	$aTempLanguages = preg_split('/[,;]+/', $sLanguage);
934:	$sLanguage = !empty($aTempLanguages[0]) ? $aTempLanguages[0] : 'en';
935:
936:	$sLanguageShort = substr($sLanguage, 0, 2);
937:
938:	return \array_key_exists($sLanguage, $aLanguages) ? $aLanguages[$sLanguage] :
939:	(\array_key_exists($sLanguageShort, $aLanguages) ? $aLanguages[$sLanguageShort] : '');
940:	}
941:
942:	/**
943:	* @param string $sData
944:	* @param array $aParams = null
945:	* @param mixed $iPluralCount = null
946:	*
947:	* @return string
948:	*/
949:	public static function ClientI18N($sData, $aParams = null, $iPluralCount = null)
950:	{
951:	$sLanguage = self::GetLanguage();
952:
953:	$aLang = null;
954:	if (isset(self::$aClientI18N[$sLanguage])) {
955:	$aLang = self::$aClientI18N[$sLanguage];
956:	} else {
957:	self::$aClientI18N[$sLanguage] = false;
958:
959:	$sLangFile = self::WebMailPath() . 'i18n/' . $sLanguage . '.ini';
960:	if (!@file_exists($sLangFile)) {
961:	$sLangFile = self::WebMailPath() . 'i18n/English.ini';
962:	$sLangFile = @file_exists($sLangFile) ? $sLangFile : '';
963:	}
964:
965:	if (0 < strlen($sLangFile)) {
966:	$aLang = self::convertIniToLang($sLangFile);
967:	if (is_array($aLang)) {
968:	self::$aClientI18N[$sLanguage] = $aLang;
969:	}
970:	}
971:	}
972:
973:	return isset($iPluralCount) ? self::processTranslateParams($aLang, $sData, $aParams, self::getPlural($sLanguage, $iPluralCount)) : self::processTranslateParams($aLang, $sData, $aParams);
974:	}
975:
976:	public static function getPlural($sLang = '', $iNumber = 0)
977:	{
978:	$iResult = 0;
979:	$iNumber = (int) $iNumber;
980:
981:	switch ($sLang) {
982:	case 'Arabic':
983:	$iResult = ($iNumber === 0 ? 0 : ($iNumber === 1 ? 1 : ($iNumber === 2 ? 2 : ($iNumber % 100 >= 3 && $iNumber % 100 <= 10 ? 3 : ($iNumber % 100 >= 11 ? 4 : 5)))));
984:	break;
985:	case 'Bulgarian':
986:	$iResult = ($iNumber === 1 ? 0 : 1);
987:	break;
988:	case 'Chinese-Simplified':
989:	$iResult = 0;
990:	break;
991:	case 'Chinese-Traditional':
992:	$iResult = ($iNumber === 1 ? 0 : 1);
993:	break;
994:	case 'Czech':
995:	$iResult = ($iNumber === 1) ? 0 : (($iNumber >= 2 && $iNumber <= 4) ? 1 : 2);
996:	break;
997:	case 'Danish':
998:	$iResult = ($iNumber === 1 ? 0 : 1);
999:	break;
1000:	case 'Dutch':
1001:	$iResult = ($iNumber === 1 ? 0 : 1);
1002:	break;
1003:	case 'English':
1004:	$iResult = ($iNumber === 1 ? 0 : 1);
1005:	break;
1006:	case 'Estonian':
1007:	$iResult = ($iNumber === 1 ? 0 : 1);
1008:	break;
1009:	case 'Finnish':
1010:	$iResult = ($iNumber === 1 ? 0 : 1);
1011:	break;
1012:	case 'French':
1013:	$iResult = ($iNumber === 1 ? 0 : 1);
1014:	break;
1015:	case 'German':
1016:	$iResult = ($iNumber === 1 ? 0 : 1);
1017:	break;
1018:	case 'Greek':
1019:	$iResult = ($iNumber === 1 ? 0 : 1);
1020:	break;
1021:	case 'Hebrew':
1022:	$iResult = ($iNumber === 1 ? 0 : 1);
1023:	break;
1024:	case 'Hungarian':
1025:	$iResult = ($iNumber === 1 ? 0 : 1);
1026:	break;
1027:	case 'Italian':
1028:	$iResult = ($iNumber === 1 ? 0 : 1);
1029:	break;
1030:	case 'Japanese':
1031:	$iResult = 0;
1032:	break;
1033:	case 'Korean':
1034:	$iResult = 0;
1035:	break;
1036:	case 'Latvian':
1037:	$iResult = ($iNumber % 10 === 1 && $iNumber % 100 !== 11 ? 0 : ($iNumber !== 0 ? 1 : 2));
1038:	break;
1039:	case 'Lithuanian':
1040:	$iResult = ($iNumber % 10 === 1 && $iNumber % 100 !== 11 ? 0 : ($iNumber % 10 >= 2 && ($iNumber % 100 < 10 \|\| $iNumber % 100 >= 20) ? 1 : 2));
1041:	break;
1042:	case 'Norwegian':
1043:	$iResult = ($iNumber === 1 ? 0 : 1);
1044:	break;
1045:	case 'Persian':
1046:	$iResult = 0;
1047:	break;
1048:	case 'Polish':
1049:	$iResult = ($iNumber === 1 ? 0 : ($iNumber % 10 >= 2 && $iNumber % 10 <= 4 && ($iNumber % 100 < 10 \|\| $iNumber % 100 >= 20) ? 1 : 2));
1050:	break;
1051:	case 'Portuguese-Portuguese':
1052:	$iResult = ($iNumber === 1 ? 0 : 1);
1053:	break;
1054:	case 'Portuguese-Brazil':
1055:	$iResult = ($iNumber === 1 ? 0 : 1);
1056:	break;
1057:	case 'Romanian':
1058:	$iResult = ($iNumber === 1 ? 0 : (($iNumber === 0 \|\| ($iNumber % 100 > 0 && $iNumber % 100 < 20)) ? 1 : 2));
1059:	break;
1060:	case 'Russian':
1061:	$iResult = ($iNumber % 10 === 1 && $iNumber % 100 !== 11 ? 0 : ($iNumber % 10 >= 2 && $iNumber % 10 <= 4 && ($iNumber % 100 < 10 \|\| $iNumber % 100 >= 20) ? 1 : 2));
1062:	break;
1063:	case 'Serbian':
1064:	$iResult = ($iNumber % 10 === 1 && $iNumber % 100 !== 11 ? 0 : ($iNumber % 10 >= 2 && $iNumber % 10 <= 4 && ($iNumber % 100 < 10 \|\| $iNumber % 100 >= 20) ? 1 : 2));
1065:	break;
1066:	case 'Slovenian':
1067:	$iResult = (($iNumber % 10 === 1 && $iNumber % 100 !== 11) ? 0 : (($iNumber % 10 === 2 && $iNumber % 100 !== 12) ? 1 : 2));
1068:	break;
1069:	case 'Spanish':
1070:	$iResult = ($iNumber === 1 ? 0 : 1);
1071:	break;
1072:	case 'Swedish':
1073:	$iResult = ($iNumber === 1 ? 0 : 1);
1074:	break;
1075:	case 'Thai':
1076:	$iResult = 0;
1077:	break;
1078:	case 'Turkish':
1079:	$iResult = ($iNumber === 1 ? 0 : 1);
1080:	break;
1081:	case 'Ukrainian':
1082:	$iResult = ($iNumber % 10 === 1 && $iNumber % 100 !== 11 ? 0 : ($iNumber % 10 >= 2 && $iNumber % 10 <= 4 && ($iNumber % 100 < 10 \|\| $iNumber % 100 >= 20) ? 1 : 2));
1083:	break;
1084:	case 'Vietnamese':
1085:	$iResult = 0;
1086:	break;
1087:	default:
1088:	$iResult = 0;
1089:	break;
1090:	}
1091:
1092:	return $iResult;
1093:	}
1094:
1095:	/**
1096:	* @param string $sData
1097:	* @param array $aParams = null
1098:	*
1099:	* @return string
1100:	*/
1101:	public static function I18N($sData, $aParams = null, $sForceCustomInitialisationLang = '')
1102:	{
1103:	if (null === self::$aI18N) {
1104:	self::$aI18N = false;
1105:
1106:	$sLangFile = '';
1107:	if (0 < strlen($sForceCustomInitialisationLang)) {
1108:	$sLangFile = self::RootPath() . 'common/i18n/' . $sForceCustomInitialisationLang . '.ini';
1109:	}
1110:
1111:	if (0 === strlen($sLangFile) \|\| !@file_exists($sLangFile)) {
1112:	$sLangFile = self::RootPath() . 'common/i18n/English.ini';
1113:	}
1114:
1115:	if (0 < strlen($sLangFile) && @file_exists($sLangFile)) {
1116:	$aResultLang = self::convertIniToLang($sLangFile);
1117:	if (is_array($aResultLang)) {
1118:	self::$aI18N = $aResultLang;
1119:	}
1120:	}
1121:	}
1122:
1123:	return self::processTranslateParams(self::$aI18N, $sData, $aParams);
1124:	}
1125:
1126:	/**
1127:	* Checks if authenticated user has at least specified role.
1128:	* @param int $iRole
1129:	* @throws \Aurora\System\Exceptions\ApiException
1130:	*/
1131:	public static function checkUserRoleIsAtLeast($iRole)
1132:	{
1133:	if (!self::$__SKIP_CHECK_USER_ROLE__) {
1134:	$oUser = self::getAuthenticatedUser();
1135:	$bUserRoleIsAtLeast = $oUser === null && $iRole === Enums\UserRole::Anonymous \|\|
1136:	$oUser !== null && $oUser->Role === Enums\UserRole::Customer &&
1137:	($iRole === Enums\UserRole::Customer \|\| $iRole === Enums\UserRole::Anonymous) \|\|
1138:	$oUser !== null && $oUser->Role === Enums\UserRole::NormalUser &&
1139:	($iRole === Enums\UserRole::NormalUser \|\| $iRole === Enums\UserRole::Customer \|\| $iRole === Enums\UserRole::Anonymous) \|\|
1140:	$oUser !== null && $oUser->Role === Enums\UserRole::TenantAdmin &&
1141:	($iRole === Enums\UserRole::TenantAdmin \|\| $iRole === Enums\UserRole::NormalUser \|\| $iRole === Enums\UserRole::Customer \|\| $iRole === Enums\UserRole::Anonymous) \|\|
1142:	$oUser !== null && $oUser->Role === Enums\UserRole::SuperAdmin &&
1143:	($iRole === Enums\UserRole::SuperAdmin \|\| $iRole === Enums\UserRole::TenantAdmin \|\| $iRole === Enums\UserRole::NormalUser \|\| $iRole === Enums\UserRole::Customer \|\| $iRole === Enums\UserRole::Anonymous);
1144:	if (!$bUserRoleIsAtLeast) {
1145:	throw new Exceptions\ApiException(Notifications::AccessDenied, null, 'AccessDenied');
1146:	}
1147:	}
1148:	}
1149:
1150:	public static function getAuthTokenFromHeaders()
1151:	{
1152:	$sResult = false;
1153:	$sAuthHeader = \MailSo\Base\Http::SingletonInstance()->GetHeader('Authorization');
1154:	if (!empty($sAuthHeader)) {
1155:	$authHeaderData = explode(' ', $sAuthHeader);
1156:
1157:	if (isset($authHeaderData[0]) && strtolower($authHeaderData[0]) === 'bearer' && isset($authHeaderData[1]) && !empty($authHeaderData[1])) {
1158:	$sResult = $authHeaderData[1];
1159:	}
1160:	}
1161:
1162:	return $sResult;
1163:	}
1164:
1165:	public static function requireAdminAuth()
1166:	{
1167:	$mResult = false;
1168:	$response = new \Sabre\HTTP\Response();
1169:	$basicAuth = new \Sabre\HTTP\Auth\Basic("Locked down area", \Sabre\HTTP\Sapi::getRequest(), $response);
1170:	if (!$userPass = $basicAuth->getCredentials()) {
1171:	$basicAuth->requireLogin();
1172:	\Sabre\HTTP\Sapi::sendResponse($response);
1173:	} elseif (!\Aurora\Modules\AdminAuth\Module::getInstance()->Login($userPass[0], $userPass[1])) {
1174:	$basicAuth->requireLogin();
1175:	\Sabre\HTTP\Sapi::sendResponse($response);
1176:	} else {
1177:	$mResult = true;
1178:	}
1179:
1180:	if (!$mResult) {
1181:	$response->setBody('Unauthorized');
1182:	\Sabre\HTTP\Sapi::sendResponse($response);
1183:	exit;
1184:	}
1185:	}
1186:
1187:	public static function getDeviceIdFromHeaders()
1188:	{
1189:	$sResult = false;
1190:	$sDeviceIdHeader = \MailSo\Base\Http::SingletonInstance()->GetHeader('X-DeviceId');
1191:	if (!empty($sDeviceIdHeader)) {
1192:	$sResult = $sDeviceIdHeader;
1193:	}
1194:
1195:	return $sResult;
1196:	}
1197:
1198:	/**
1199:	*
1200:	* @return string
1201:	*/
1202:	public static function getAuthToken()
1203:	{
1204:	$sAuthToken = $_COOKIE[Application::AUTH_TOKEN_KEY] ?? false;
1205:	if (!$sAuthToken) {
1206:	$sAuthToken = self::getAuthTokenFromHeaders();
1207:	}
1208:
1209:	return $sAuthToken;
1210:	}
1211:
1212:	/**
1213:	*
1214:	* @return \Aurora\Modules\Core\Models\User
1215:	*/
1216:	public static function authorise($sAuthToken = '')
1217:	{
1218:	$oUser = null;
1219:	$mUserId = false;
1220:	try {
1221:	if (isset(self::$aUserSession['UserId'])) {
1222:	$mUserId = self::$aUserSession['UserId'];
1223:	} else {
1224:	$sAuthToken = empty($sAuthToken) ? self::getAuthToken() : $sAuthToken;
1225:
1226:	$mUserId = self::getAuthenticatedUserId($sAuthToken);
1227:	}
1228:	$oUser = self::getUserById($mUserId);
1229:	} catch (\Exception $oException) {
1230:	}
1231:	return $oUser;
1232:	}
1233:
1234:	public static function getAuthenticatedUserInfo($sAuthToken = '')
1235:	{
1236:	$mResult = false;
1237:	if (empty($sAuthToken)) {
1238:	if (is_array(self::$aUserSession) && isset(self::$aUserSession['AuthToken'])) {
1239:	$sAuthToken = self::$aUserSession['AuthToken'];
1240:	}
1241:	}
1242:	/* @var $oIntegrator \Aurora\System\Managers\Integrator */
1243:	$oIntegrator = \Aurora\System\Managers\Integrator::getInstance();
1244:	if ($oIntegrator) {
1245:	$mResult = $oIntegrator->getAuthenticatedUserInfo($sAuthToken);
1246:	}
1247:
1248:	return $mResult;
1249:	}
1250:
1251:	public static function validateAuthToken($authToken = null)
1252:	{
1253:	if ($authToken === null) {
1254:	$authToken = self::getAuthToken();
1255:	}
1256:	if ($authToken && !self::UserSession()->Get($authToken)) {
1257:	throw new ApiException(Notifications::InvalidToken);
1258:	}
1259:	}
1260:
1261:	public static function getCookiePath()
1262:	{
1263:	static $sPath = false;
1264:
1265:	if (false === $sPath) {
1266:	$sScriptName = isset($_SERVER['SCRIPT_NAME']) ? $_SERVER['SCRIPT_NAME'] : '';
1267:	$aPath = explode('/', $sScriptName);
1268:	$sLastPathItem = count($aPath) > 0 ? $aPath[count($aPath) - 1] : '';
1269:	if (count($aPath) > 0 && ($sLastPathItem !== '' \|\| strtolower(substr($sLastPathItem, -1)) === '.php')) {
1270:	array_pop($aPath);
1271:	}
1272:	$sPath = implode('/', $aPath) . '/';
1273:	}
1274:
1275:	return $sPath;
1276:	}
1277:
1278:	public static function getCookieSecure()
1279:	{
1280:	return self::isHttps();
1281:	}
1282:
1283:	public static function isHttps()
1284:	{
1285:	return (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') \|\|
1286:	(isset($_SERVER['SERVER_PORT']) && $_SERVER['SERVER_PORT'] == '443');
1287:	}
1288:
1289:	public static function getAuthenticatedUserId($sAuthToken = '')
1290:	{
1291:	$mResult = false;
1292:	if (!empty($sAuthToken)) {
1293:	$aInfo = \Aurora\System\Managers\Integrator::getInstance()->getAuthenticatedUserInfo($sAuthToken);
1294:	if (!empty(self::$aUserSession['UserId']) && (int) $aInfo['userId'] === (int) self::$aUserSession['UserId']) {
1295:	$mResult = (int) self::$aUserSession['UserId'];
1296:	} else {
1297:	$mResult = $aInfo['userId'];
1298:	self::$aUserSession['UserId'] = (int) $mResult;
1299:	self::$aUserSession['AuthToken'] = $sAuthToken;
1300:	}
1301:	} else {
1302:	if (is_array(self::$aUserSession) && isset(self::$aUserSession['UserId'])) {
1303:	$mResult = self::$aUserSession['UserId'];
1304:	} else {
1305:	$mResult = 0;
1306:	}
1307:	}
1308:
1309:	return $mResult;
1310:	}
1311:
1312:	public static function getAuthenticatedUserPublicId($sAuthToken = '')
1313:	{
1314:	$iUserId = self::getAuthenticatedUserId($sAuthToken);
1315:	return self::getUserPublicIdById($iUserId);
1316:	}
1317:
1318:	/**
1319:	* @return void
1320:	*/
1321:	public static function unsetAuthenticatedUser()
1322:	{
1323:	unset(self::$oAuthenticatedUser);
1324:	}
1325:
1326:	/**
1327:	* @param string $sAuthToken
1328:	* @param bool $bForce
1329:	*
1330:	* @return \Aurora\Modules\Core\Models\User
1331:	*/
1332:	public static function getAuthenticatedUser($sAuthToken = '', $bForce = false)
1333:	{
1334:	$iUserId = 0;
1335:	if (null === self::$oAuthenticatedUser \|\| $bForce) {
1336:	if (!empty($sAuthToken)) {
1337:	$iUserId = self::getAuthenticatedUserId($sAuthToken); // called for saving in session
1338:	} elseif (!empty(self::$aUserSession['UserId'])) {
1339:	$iUserId = self::$aUserSession['UserId'];
1340:	}
1341:
1342:	self::$oAuthenticatedUser = self::getUserById($iUserId);
1343:	}
1344:	return self::$oAuthenticatedUser;
1345:	}
1346:
1347:	public static function getAuthenticatedUserAuthToken()
1348:	{
1349:	$mResult = false;
1350:
1351:	if (is_array(self::$aUserSession) && isset(self::$aUserSession['AuthToken'])) {
1352:	$mResult = self::$aUserSession['AuthToken'];
1353:	}
1354:
1355:	return $mResult;
1356:	}
1357:
1358:	/**
1359:	* @param int $iUserId
1360:	* @return string
1361:	*/
1362:	public static function getUserUUIDById($iUserId)
1363:	{
1364:	$sUUID = '';
1365:
1366:	if (\is_numeric($iUserId)) {
1367:	$oUser = self::getUserById($iUserId);
1368:
1369:	if ($oUser instanceof User) {
1370:	$sUUID = $oUser->UUID;
1371:	}
1372:	} else {
1373:	$sUUID = $iUserId;
1374:	}
1375:
1376:	return $sUUID;
1377:	}
1378:
1379:	/**
1380:	* @param int $iUserId
1381:	* @return string
1382:	*/
1383:	public static function getUserPublicIdById($iUserId)
1384:	{
1385:	$sPublicId = '';
1386:
1387:	if (\is_numeric($iUserId)) {
1388:	$oUser = self::getUserById($iUserId);
1389:	if ($oUser) {
1390:	return $oUser->PublicId;
1391:	}
1392:	// @TODO: check if it's needed
1393:	} else {
1394:	$sPublicId = $iUserId;
1395:	}
1396:
1397:	return $sPublicId;
1398:	}
1399:
1400:	/**
1401:	* @param string $sPublicId
1402:	* @return int\|false
1403:	*/
1404:	public static function getUserIdByPublicId($sPublicId)
1405:	{
1406:	$iUserId = false;
1407:
1408:	if (Api::GetSettings()->GetValue('AdminLogin') === $sPublicId) { // superadmin user
1409:	return -1;
1410:	}
1411:
1412:	$user = self::getUserByPublicId($sPublicId);
1413:	if ($user instanceof User) {
1414:	$iUserId = $user->Id;
1415:	}
1416:
1417:	return $iUserId;
1418:	}
1419:
1420:	public static function getUserByPublicId($sPublicId, $bForce = false)
1421:	{
1422:	$result = null;
1423:	if (!$bForce) {
1424:	foreach (self::$usersCache as $user) {
1425:	if ($user->PublicId === $sPublicId) {
1426:	$result = $user;
1427:	break;
1428:	}
1429:	}
1430:	}
1431:	if (!$result) {
1432:	$result = User::where('PublicId', $sPublicId)->first();
1433:	if ($result) {
1434:	self::$usersCache[$result->Id] = $result;
1435:	}
1436:	}
1437:
1438:	return $result;
1439:	}
1440:
1441:	public static function getUserById($iUserId, $bForce = false)
1442:	{
1443:	try {
1444:	if (!isset(self::$usersCache[$iUserId]) \|\| $bForce) {
1445:	$oUser = Managers\Integrator::getUserByIdHelper($iUserId);
1446:	if ($oUser) {
1447:	self::$usersCache[$iUserId] = $oUser;
1448:	}
1449:	}
1450:	} catch (\Exception $oEx) {
1451:	self::LogException($oEx);
1452:	}
1453:
1454:	return self::$usersCache[$iUserId] ?? null;
1455:	}
1456:
1457:	public static function removeUserFromCache($iUserId)
1458:	{
1459:	if (!isset(self::$usersCache[$iUserId])) {
1460:	unset(self::$usersCache[$iUserId]);
1461:	}
1462:	}
1463:
1464:	public static function getTenantById($iTenantId, $bForce = false)
1465:	{
1466:	try {
1467:	if (!isset(self::$tenantsCache[$iTenantId]) \|\| $bForce) {
1468:	$oTenant = Tenant::find($iTenantId);
1469:	if ($oTenant) {
1470:	self::$tenantsCache[$iTenantId] = $oTenant;
1471:	}
1472:	}
1473:	} catch (\Exception $oEx) {
1474:	self::LogException($oEx);
1475:	}
1476:
1477:	return self::$tenantsCache[$iTenantId] ?? null;
1478:	}
1479:
1480:	public static function getTenantByWebDomain()
1481:	{
1482:	static $bTenantInitialized = false;
1483:	static $oTenant = null;
1484:
1485:	if (!$bTenantInitialized) {
1486:	if (!empty($_SERVER['SERVER_NAME'])) {
1487:
1488:	foreach (self::$tenantsCache as $tenantCache) {
1489:	if ($tenantCache->WebDomain === $_SERVER['SERVER_NAME']) {
1490:	$oTenant = $tenantCache;
1491:	break;
1492:	}
1493:	}
1494:
1495:	if (!$oTenant) {
1496:	$oTenant = Tenant::firstWhere('WebDomain', $_SERVER['SERVER_NAME']);
1497:	if ($oTenant) {
1498:	self::$tenantsCache[$oTenant->Id] = $oTenant;
1499:	}
1500:	}
1501:	}
1502:	$bTenantInitialized = true;
1503:	}
1504:
1505:	return $oTenant;
1506:	}
1507:
1508:	public static function removeTenantFromCache($iTenantId)
1509:	{
1510:	if (!isset(self::$tenantsCache[$iTenantId])) {
1511:	unset(self::$tenantsCache[$iTenantId]);
1512:	}
1513:	}
1514:
1515:	public static function setTenantName($sTenantName)
1516:	{
1517:	self::$aUserSession['TenantName'] = $sTenantName;
1518:	}
1519:
1520:	public static function setUserId($iUserId)
1521:	{
1522:	self::$aUserSession['UserId'] = (int) $iUserId;
1523:	}
1524:
1525:	public static function setAuthToken($sAuthToken)
1526:	{
1527:	self::$aUserSession['AuthToken'] = $sAuthToken;
1528:	}
1529:
1530:	public static function getCurrentTenant()
1531:	{
1532:	static $bTenantInitialized = false;
1533:	static $oTenant = null;
1534:
1535:	if (!$bTenantInitialized) {
1536:	$oUser = self::getAuthenticatedUser();
1537:
1538:	if ($oUser && !$oUser->isAdmin()) {
1539:	$oTenant = self::getTenantById($oUser->IdTenant);
1540:	}
1541:
1542:	if (!$oUser && !$oTenant) {
1543:	$oTenant = self::getTenantByWebDomain();
1544:	}
1545:
1546:	// $bTenantInitialized = true;
1547:	}
1548:
1549:	return $oTenant;
1550:	}
1551:
1552:	/**
1553:	*
1554:	* @return string
1555:	*/
1556:	public static function getTenantName()
1557:	{
1558:	static $mResult = null;
1559:
1560:	if (!isset($mResult)) {
1561:	if (is_array(self::$aUserSession) && !empty(self::$aUserSession['TenantName'])) {
1562:	$mResult = self::$aUserSession['TenantName'];
1563:	} else {
1564:	try {
1565:	$oTenant = self::getCurrentTenant();
1566:	if ($oTenant) {
1567:	$mResult = $oTenant->Name;
1568:	}
1569:	} catch (\Exception $oEx) {
1570:	$mResult = false;
1571:	}
1572:	}
1573:	// $bTenantInitialized = true;
1574:	}
1575:
1576:	return $mResult;
1577:	}
1578:
1579:	public static function GetDbConfig($DbType, $DbHost, $DbName, $DbPrefix, $DbLogin, $DbPassword)
1580:	{
1581:	$aDbHost = \explode(':', $DbHost);
1582:	if (isset($aDbHost[0])) {
1583:	$DbHost = $aDbHost[0];
1584:	}
1585:	$aDbConfig = [
1586:	'driver' => DbType::PostgreSQL === $DbType ? 'pgsql' : 'mysql',
1587:	'host' => $DbHost,
1588:	'database' => $DbName,
1589:	'username' => $DbLogin,
1590:	'password' => $DbPassword,
1591:	'charset' => 'utf8mb4',
1592:	'collation' => 'utf8mb4_unicode_ci',
1593:	'prefix' => $DbPrefix,
1594:	];
1595:	if (isset($aDbHost[1])) {
1596:	$aDbConfig['port'] = $aDbHost[1];
1597:	}
1598:
1599:	return $aDbConfig;
1600:	}
1601:
1602:	public static function CreateContainer($force = false)
1603:	{
1604:	if (!isset(self::$oContainer) \|\| $force) {
1605:	// Instantiate the app container
1606:	$appContainer = Container::getInstance();
1607:
1608:	// Tell facade about the application instance
1609:	\Illuminate\Support\Facades\Facade::setFacadeApplication($appContainer);
1610:
1611:	$appContainer['app'] = $appContainer;
1612:
1613:	$appContainer['config'] = new \Illuminate\Config\Repository();
1614:
1615:	$oSettings = &Api::GetSettings();
1616:	if ($oSettings) {
1617:	$capsule = new \Illuminate\Database\Capsule\Manager();
1618:	$appContainer['capsule'] = $capsule;
1619:	$capsule->addConnection(
1620:	self::GetDbConfig(
1621:	$oSettings->DBType,
1622:	$oSettings->DBHost,
1623:	$oSettings->DBName,
1624:	$oSettings->DBPrefix,
1625:	$oSettings->DBLogin,
1626:	$oSettings->DBPassword
1627:	)
1628:	);
1629:
1630:	//Make this Capsule instance available globally.
1631:	$capsule->setAsGlobal();
1632:
1633:	// Setup the Eloquent ORM.
1634:	$capsule->bootEloquent();
1635:
1636:	$appContainer['connection'] = function ($ac) use ($capsule) {
1637:	return $capsule->getConnection('default');
1638:	};
1639:
1640:	$appContainer['migration-table'] = 'migrations';
1641:
1642:	$appContainer['filesystem'] = function ($ac) {
1643:	return new \Illuminate\Filesystem\Filesystem();
1644:	};
1645:
1646:	$appContainer['resolver'] = function ($ac) {
1647:	$r = new \Illuminate\Database\ConnectionResolver(['default' => $ac['connection']]);
1648:	$r->setDefaultConnection('default');
1649:	return $r;
1650:	};
1651:
1652:	$appContainer['migration-repo'] = function ($ac) {
1653:	return new \Illuminate\Database\Migrations\DatabaseMigrationRepository($ac['resolver'], $ac['migration-table']);
1654:	};
1655:
1656:	$appContainer['migrator'] = function ($ac) {
1657:	return new \Illuminate\Database\Migrations\Migrator($ac['migration-repo'], $ac['resolver'], $ac['filesystem']);
1658:	};
1659:
1660:	$appContainer['migration-creator'] = function ($ac) {
1661:	return new \Illuminate\Database\Migrations\MigrationCreator($ac['filesystem'], \Aurora\Api::RootPath() . 'Console' . DIRECTORY_SEPARATOR . 'stubs');
1662:	};
1663:
1664:	$appContainer['composer'] = function ($ac) {
1665:	return new \Illuminate\Support\Composer($ac['filesystem']);
1666:	};
1667:
1668:	$appContainer['console'] = function ($ac) {
1669:	$consoleaApp = new \Symfony\Component\Console\Application();
1670:
1671:	$events = new \Illuminate\Events\Dispatcher($ac);
1672:
1673:	$consoleaApp = new \Illuminate\Console\Application($ac, $events, 'Version 1.0');
1674:	$consoleaApp->setName('Aurora console app');
1675:
1676:	$consoleaApp->add(new Commands\Migrations\InstallCommand($ac['migration-repo']));
1677:	$consoleaApp->add(new Commands\Migrations\MigrateCommand($ac['migrator']));
1678:	$consoleaApp->add(new Commands\Migrations\RollbackCommand($ac['migrator']));
1679:	$consoleaApp->add(new Commands\Migrations\MigrateMakeCommand($ac['migration-creator'], $ac['composer']));
1680:
1681:	$consoleaApp->add(new Commands\Seeds\SeedCommand($ac['resolver']));
1682:	$consoleaApp->add(new Commands\Seeds\SeederMakeCommand($ac['filesystem'], $ac['composer']));
1683:
1684:	$consoleaApp->add(new Commands\OrphansCommand());
1685:
1686:	$consoleaApp->add(new Commands\ModelsCommand($ac));
1687:
1688:	return $consoleaApp;
1689:	};
1690:
1691:	self::$oContainer = $appContainer;
1692:	}
1693:	}
1694:	}
1695:
1696:	/**
1697:	* @return Container
1698:	*/
1699:	public static function GetContainer($force = false)
1700:	{
1701:	self::CreateContainer($force);
1702:
1703:	return self::$oContainer;
1704:	}
1705:
1706:	public static function CheckAccess(&$UserId)
1707:	{
1708:	if (self::accessCheckIsSkipped()) {
1709:	return;
1710:	}
1711:	$bAccessDenied = true;
1712:
1713:	$oAuthenticatedUser = self::getAuthenticatedUser();
1714:
1715:	if ($UserId === null) {
1716:	$iUserId = $oAuthenticatedUser->Id;
1717:	} else {
1718:	$iUserId = (int) $UserId;
1719:
1720:	$iUserRole = $oAuthenticatedUser instanceof \Aurora\Modules\Core\Models\User ? $oAuthenticatedUser->Role : \Aurora\System\Enums\UserRole::Anonymous;
1721:	switch ($iUserRole) {
1722:	case (\Aurora\System\Enums\UserRole::SuperAdmin):
1723:	// everything is allowed for SuperAdmin
1724:	$UserId = $iUserId;
1725:	$bAccessDenied = false;
1726:	break;
1727:	case (\Aurora\System\Enums\UserRole::TenantAdmin):
1728:	// everything is allowed for TenantAdmin
1729:	$oUser = \Aurora\Modules\Core\Module::getInstance()->GetUser($iUserId);
1730:	if ($oUser instanceof \Aurora\Modules\Core\Models\User) {
1731:	if ($oAuthenticatedUser->IdTenant === $oUser->IdTenant) {
1732:	$UserId = $iUserId;
1733:	$bAccessDenied = false;
1734:	}
1735:	}
1736:	break;
1737:	case (\Aurora\System\Enums\UserRole::NormalUser):
1738:	// User identifier shoud be checked
1739:	if ($iUserId === $oAuthenticatedUser->Id) {
1740:	$UserId = $iUserId;
1741:	$bAccessDenied = false;
1742:	}
1743:	break;
1744:	case (\Aurora\System\Enums\UserRole::Customer):
1745:	case (\Aurora\System\Enums\UserRole::Anonymous):
1746:	// everything is forbidden for Customer and Anonymous users
1747:	break;
1748:	}
1749:	if ($bAccessDenied) {
1750:	throw new ApiException(\Aurora\System\Notifications::AccessDenied, null, 'AccessDenied');
1751:	}
1752:	}
1753:	}
1754:
1755:	public static function setCookie($name, $value, $expires = 0, $httpOnly = true, $sameSite = 'Strict')
1756:	{
1757:	@\setcookie(
1758:	$name,
1759:	$value,
1760:	[
1761:	'expires' => $expires,
1762:	'path' => self::getCookiePath(),
1763:	'domain' => '',
1764:	'httponly' => $httpOnly,
1765:	'secure' => self::getCookieSecure(),
1766:	'samesite' => $sameSite // None \|\| Lax \|\| Strict
1767:	]
1768:	);
1769:	}
1770:
1771:	public static function setAuthTokenCookie($authToken)
1772:	{
1773:	$iAuthTokenCookieExpireTime = (int) self::GetModuleManager()->getModuleConfigValue('Core', 'AuthTokenCookieExpireTime');
1774:	$sSameSite = self::GetModuleManager()->getModuleConfigValue('Core', 'CookieSameSite', 'Strict');
1775:
1776:	self::setCookie(
1777:	\Aurora\System\Application::AUTH_TOKEN_KEY,
1778:	$authToken,
1779:	($iAuthTokenCookieExpireTime === 0) ? 0 : \strtotime("+$iAuthTokenCookieExpireTime days"),
1780:	true,
1781:	$sSameSite
1782:	);
1783:	}
1784:
1785:	public static function unsetAuthTokenCookie()
1786:	{
1787:	self::setCookie(
1788:	\Aurora\System\Application::AUTH_TOKEN_KEY,
1789:	'',
1790:	-1,
1791:	true,
1792:	self::GetModuleManager()->getModuleConfigValue('Core', 'CookieSameSite', 'Strict')
1793:	);
1794:	}
1795:	}
1796:

Namespaces

Classes

Functions