ptut-vhost/build/api/module/casController.php

<?php
/**
 * Created by PhpStorm.
 * User: lucas
 * Date: 27/02/18
 * Time: 16:19
 */

namespace api\module;


use database\core\Repo;
use database\repo\professor;
use database\repo\meta;
use error\core\Error;
use error\core\Err;

class casController{


	/* (1) Authentication callback
	*
	* GET arguments
	*
	* @ticket<String>					CAS callback @ticket
	*
	* @return headers|body<array>		The download content
	*
	---------------------------------------------------------*/
	public static function get($args){

		// login:    https://sso.univ-pau.fr/cas/login?service=http://ptut.com:8080/api/v/1.0/cas


		// Communicate over popups
		// ----------------------------
		// window.pop          = { closed: false };
		//
		// window.cas_callback = function(cas_login){
		//
		// 		setTimeout( function(){
		//
		// 			if( window.pop.closed )
		// 				console.log('CAS login (null means error): '+cas_login);
		//
		// 		}, 1);
		//
		// };

		// Launch PopUp
		// window.pop = window.open('https://sso.univ-pau.fr/cas/login?service=http://ptut.com:8080/api/v/1.0/cas', '_blank', 'location=no,height=1024,width=1024,scrollbars=yes,status=no');

		/* (0) Initialize
		---------------------------------------------------------*/
		/* (1) Global DOWNLOAD data */
		$headers    = ['Content-Type' => 'text/html; charset=UTF-8' ];
		$body_start = "Veuillez patienter...<br>Vous allez être redirigés<script type='text/javascript'>( typeof window.opener.cas_callback === 'function' ) && window.opener.cas_callback(";
		$body_end   = ");window.close();</script>";

		/* (2) Reset SESSION */
		$_SESSION['CAS'] = [];


		/* (1) Check if already connected
		---------------------------------------------------------*/
		/* (1) If already -> return @cas_login */
		if( in_array('cas_user', $_SESSION['AUTH']) ){

			return [
				'headers' => $headers,
				'body'    => $body_start."'".$_SESSION['CAS']['login']."'".$body_end
			];

		}

		/* (2) Fail if no ticket */
		if( !isset($_GET['ticket']) || !is_string($_GET['ticket']) || strlen($_GET['ticket']) < 1 )
			return [ 'headers' => $headers, 'body' => $body_start.'-1'.$body_end ];


		/* (2) Check ticket (validate)
		---------------------------------------------------------*/
		/* (1) Build useful variables */
		$service      = ($_SERVER['SERVER_NAME'] == 'ptut.com' ) ? 'http' : 'https';
		$service     .= '://'.$_SERVER['HTTP_HOST'].'/api/v/1.0/cas';
		$ticket       = urlencode($_GET['ticket']);
		$validate_url = "https://sso.univ-pau.fr/cas/serviceValidate?ticket=$ticket&service=$service";

		/* (2) Configure & Prepare CURL */
		$ch = \curl_init();

		\curl_setopt($ch, CURLOPT_URL, $validate_url);
		\curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

		/* (3) Execute CURL & Close it */
		$output    = \curl_exec($ch);
		\curl_close($ch);

		/* (4) Fail if not validated */
		if( strpos($output, 'user') === false )
			return [ 'headers' => $headers, 'body' => $body_start.'-2'.$body_end ];

		/* (5) Extract cas_login */
		$cas_login = trim(strip_tags($output));

		/* (6) Check empty */
		if( strlen($cas_login) < 1 )
			return [ 'headers' => $headers, 'body' => $body_start.'-2'.$body_end ];


		/* (3) Meta database: check if @cas_login referenced
		---------------------------------------------------------*/
		/** @var professor $prof_repo */
		$prof_repo = Repo::getRepo('professor');
		/** @var meta $meta_repo */
		$meta_repo = Repo::getRepo('meta');

		/* (1) Get the list of linked departments for this @cas_login */
		$departments = $meta_repo->get_prof_departments($cas_login);

		/* (2) Failure: if no department for @cas_login */
		if( count($departments) === 0 )
			return [ 'headers' => $headers, 'body' => $body_start.'-3'.$body_end ];

		/* (3) Set departments data */
		$_SESSION['AvailableDepartments'] = $departments;

		/* (4) Choose first department by default */
		$_SESSION['CurrentDatabase']     = $departments[0]['dbName'];
		$_SESSION['CurrentDepartmentId'] = $departments[0]['idDep'];

		/* (5) Use this department's database */
		Repo::switchDatabase($_SESSION['CurrentDatabase']);


		/* (4) Fetch @cas_login professor data
		---------------------------------------------------------*/
		/* (1) Try to fetch professor */
		$by_login = $prof_repo->getByLogin($cas_login);

		/* (2) If not found -> reset SESSION */
		if( !is_array($by_login) || !isset($by_login['idProfesseur']) || !isset($by_login['admin']) )
			return [ 'headers' => $headers, 'body' => $body_start.'-4'.$body_end ];


		/* (5) Store data in session
		---------------------------------------------------------*/
		/* (1) Security */
		\session_regenerate_id();

		/* (2) Store CAS user data in SESSION */
		$_SESSION['CAS'] = [
			'login'  => $cas_login,
			'ticket' => $ticket,
			'id'     => (int) $by_login['idProfesseur'],
			'admin'  => (bool) $by_login['admin']
		];

		/* (3) Success CAS login */
		return [
			'headers' => $headers,
			'body'    => $body_start."'".$_SESSION['CAS']['login']."'".$body_end
		];

	}


	/* (2) Logout from CAS server
	*
	* @return logged_out<bool>			Whether you have been logged out
	*
	---------------------------------------------------------*/
	public function put(){

		/* (1) Call logout script
		---------------------------------------------------------*/
		/* (1) Build useful variables */
		$service      = ($_SERVER['SERVER_NAME'] == 'ptut.com' ) ? 'http' : 'https';
		$service     .= '://'.$_SERVER['HTTP_HOST'].'/api/v/1.0/cas';
		$logout_url = "https://sso.univ-pau.fr/cas/logout?service=$service";

		/* (2) Configure & Prepare CURL */
		$ch = \curl_init();

		\curl_setopt($ch, CURLOPT_URL, $logout_url);
		\curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);

		/* (3) Execute CURL & Close it */
		$output = \curl_exec($ch);
		\curl_close($ch);

		/* (4) Error if no output */
		if( strlen($output) < 1 )
			return ['logged_out' => false, 'redirect_url' => $logout_url];

		/* (4) Destroy session */
		\session_destroy();

		/* (5) Return if logged out */
		return ['logged_out' => true, 'redirect_url' => $logout_url];

	}


	/* (3) Logout (not from CAS server)
	*
	* @return logged_out<bool>			Whether you have been logged out
	*
	---------------------------------------------------------*/
	public function delete(){

		\session_destroy();

		/* (3) Return if logged out */
		return ['logged_out' => true];


	}

}
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00			`<?php`
			`/**`
			`* Created by PhpStorm.`
			`* User: lucas`
			`* Date: 27/02/18`
			`* Time: 16:19`
			`*/`

			`namespace api\module;`


			`use database\core\Repo;`
			`use database\repo\professor;`
[repo.meta] created meta database repo (create_prof, delete_prof, prof_exists, link_exists, link, unlink, get_prof_departments) [repo.professor] used [repo.meta] to synchronize meta database (fully tested, even if meta not already synchronized) [module.casController] now uses [repo.meta] [module.department] now uses [repo.meta] 2018-03-20 17:44:43 +00:00			`use database\repo\meta;`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00			`use error\core\Error;`
			`use error\core\Err;`

			`class casController{`


			`/* (1) Authentication callback`
			`*`
[config.modules] added 'cas' permissions [module.cas] added PUT to really logout (from CAS server) but do not work (except from document.location) 2018-03-20 22:35:16 +00:00			`* GET arguments`
			`*`
			`* @ticket<String> CAS callback @ticket`
			`*`
			`* @return headers\|body<array> The download content`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00			`*`
			`---------------------------------------------------------*/`
			`public static function get($args){`

			`// login: https://sso.univ-pau.fr/cas/login?service=http://ptut.com:8080/api/v/1.0/cas`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00

			`// Communicate over popups`
			`// ----------------------------`
			`// window.pop = { closed: false };`
			`//`
			`// window.cas_callback = function(cas_login){`
			`//`
			`// setTimeout( function(){`
			`//`
			`// if( window.pop.closed )`
			`// console.log('CAS login (null means error): '+cas_login);`
			`//`
			`// }, 1);`
			`//`
			`// };`

			`// Launch PopUp`
			`// window.pop = window.open('https://sso.univ-pau.fr/cas/login?service=http://ptut.com:8080/api/v/1.0/cas', '_blank', 'location=no,height=1024,width=1024,scrollbars=yes,status=no');`

[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00			`/* (0) Initialize`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00			`---------------------------------------------------------*/`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00			`/* (1) Global DOWNLOAD data */`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`$headers = ['Content-Type' => 'text/html; charset=UTF-8' ];`
[module.cas] fix1 [webpack.page.login] fix [webpack.data.login] fix 2018-03-19 17:27:33 +00:00			`$body_start = "Veuillez patienter...<br>Vous allez être redirigés<script type='text/javascript'>( typeof window.opener.cas_callback === 'function' ) && window.opener.cas_callback(";`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`$body_end = ");window.close();</script>";`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00			`/* (2) Reset SESSION */`
			`$_SESSION['CAS'] = [];`


[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00
[module.cas] Now returns login if already validated by [api.core.auth-system-default] [api.core.auth-system-default] implemented permission management with : 'cas_user', 'cas_admin' (cas_user is always here, cas_admin is added only if admin) 2018-03-03 13:57:43 +00:00			`/* (1) Check if already connected`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00			`---------------------------------------------------------*/`
[module.cas] Now returns login if already validated by [api.core.auth-system-default] [api.core.auth-system-default] implemented permission management with : 'cas_user', 'cas_admin' (cas_user is always here, cas_admin is added only if admin) 2018-03-03 13:57:43 +00:00			`/* (1) If already -> return @cas_login */`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00			`if( in_array('cas_user', $_SESSION['AUTH']) ){`

			`return [`
			`'headers' => $headers,`
			`'body' => $body_start."'".$_SESSION['CAS']['login']."'".$body_end`
			`];`

			`}`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00
			`/* (2) Fail if no ticket */`
			`if( !isset($_GET['ticket']) \|\| !is_string($_GET['ticket']) \|\| strlen($_GET['ticket']) < 1 )`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`return [ 'headers' => $headers, 'body' => $body_start.'-1'.$body_end ];`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00


			`/* (2) Check ticket (validate)`
			`---------------------------------------------------------*/`
			`/* (1) Build useful variables */`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`$service = ($_SERVER['SERVER_NAME'] == 'ptut.com' ) ? 'http' : 'https';`
			`$service .= '://'.$_SERVER['HTTP_HOST'].'/api/v/1.0/cas';`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00			`$ticket = urlencode($_GET['ticket']);`
			`$validate_url = "https://sso.univ-pau.fr/cas/serviceValidate?ticket=$ticket&service=$service";`

			`/* (2) Configure & Prepare CURL */`
[config.modules] added 'cas' permissions [module.cas] added PUT to really logout (from CAS server) but do not work (except from document.location) 2018-03-20 22:35:16 +00:00			`$ch = \curl_init();`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00
[config.modules] added 'cas' permissions [module.cas] added PUT to really logout (from CAS server) but do not work (except from document.location) 2018-03-20 22:35:16 +00:00			`\curl_setopt($ch, CURLOPT_URL, $validate_url);`
			`\curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00
			`/* (3) Execute CURL & Close it */`
[config.modules] added 'cas' permissions [module.cas] added PUT to really logout (from CAS server) but do not work (except from document.location) 2018-03-20 22:35:16 +00:00			`$output = \curl_exec($ch);`
			`\curl_close($ch);`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00
			`/* (4) Fail if not validated */`
			`if( strpos($output, 'user') === false )`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`return [ 'headers' => $headers, 'body' => $body_start.'-2'.$body_end ];`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00
			`/* (5) Extract cas_login */`
			`$cas_login = trim(strip_tags($output));`

			`/* (6) Check empty */`
			`if( strlen($cas_login) < 1 )`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`return [ 'headers' => $headers, 'body' => $body_start.'-2'.$body_end ];`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00

[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00
			`/* (3) Meta database: check if @cas_login referenced`
[module.cas] Now returns login if already validated by [api.core.auth-system-default] [api.core.auth-system-default] implemented permission management with : 'cas_user', 'cas_admin' (cas_user is always here, cas_admin is added only if admin) 2018-03-03 13:57:43 +00:00			`---------------------------------------------------------*/`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00			`/** @var professor $prof_repo */`
			`$prof_repo = Repo::getRepo('professor');`
[repo.meta] created meta database repo (create_prof, delete_prof, prof_exists, link_exists, link, unlink, get_prof_departments) [repo.professor] used [repo.meta] to synchronize meta database (fully tested, even if meta not already synchronized) [module.casController] now uses [repo.meta] [module.department] now uses [repo.meta] 2018-03-20 17:44:43 +00:00			`/** @var meta $meta_repo */`
			`$meta_repo = Repo::getRepo('meta');`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00
			`/* (1) Get the list of linked departments for this @cas_login */`
[repo.meta] created meta database repo (create_prof, delete_prof, prof_exists, link_exists, link, unlink, get_prof_departments) [repo.professor] used [repo.meta] to synchronize meta database (fully tested, even if meta not already synchronized) [module.casController] now uses [repo.meta] [module.department] now uses [repo.meta] 2018-03-20 17:44:43 +00:00			`$departments = $meta_repo->get_prof_departments($cas_login);`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00
			`/* (2) Failure: if no department for @cas_login */`
			`if( count($departments) === 0 )`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`return [ 'headers' => $headers, 'body' => $body_start.'-3'.$body_end ];`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00
			`/* (3) Set departments data */`
[renamed] 'AvailableDepartment' -> 'AvailableDepartments' [renamed] 'CurrentDepartementId' -> 'CurrentDepartmentId' 2018-03-20 09:49:53 +00:00			`$_SESSION['AvailableDepartments'] = $departments;`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00
			`/* (4) Choose first department by default */`
			`$_SESSION['CurrentDatabase'] = $departments[0]['dbName'];`
			`$_SESSION['CurrentDepartmentId'] = $departments[0]['idDep'];`

			`/* (5) Use this department's database */`
			`Repo::switchDatabase($_SESSION['CurrentDatabase']);`



			`/* (4) Fetch @cas_login professor data`
			`---------------------------------------------------------*/`
			`/* (1) Try to fetch professor */`
			`$by_login = $prof_repo->getByLogin($cas_login);`

			`/* (2) If not found -> reset SESSION */`
			`if( !is_array($by_login) \|\| !isset($by_login['idProfesseur']) \|\| !isset($by_login['admin']) )`
[module.cas] dispatch custom error codes [webpack.login] display error codes 2018-03-20 09:19:32 +00:00			`return [ 'headers' => $headers, 'body' => $body_start.'-4'.$body_end ];`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00


			`/* (5) Store data in session`
			`---------------------------------------------------------*/`
			`/* (1) Security */`
			`\session_regenerate_id();`

			`/* (2) Store CAS user data in SESSION */`
[module.cas] Now returns login if already validated by [api.core.auth-system-default] [api.core.auth-system-default] implemented permission management with : 'cas_user', 'cas_admin' (cas_user is always here, cas_admin is added only if admin) 2018-03-03 13:57:43 +00:00			`$_SESSION['CAS'] = [`
			`'login' => $cas_login,`
[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00			`'ticket' => $ticket,`
			`'id' => (int) $by_login['idProfesseur'],`
			`'admin' => (bool) $by_login['admin']`
[module.cas] Now returns login if already validated by [api.core.auth-system-default] [api.core.auth-system-default] implemented permission management with : 'cas_user', 'cas_admin' (cas_user is always here, cas_admin is added only if admin) 2018-03-03 13:57:43 +00:00			`];`

[api.core.authsystemdefault] removed CAS management [module.cas] implemented good CAS management with database + error management (edge cases) 2018-03-19 18:06:00 +00:00			`/* (3) Success CAS login */`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00			`return [`
			`'headers' => $headers,`
			`'body' => $body_start."'".$_SESSION['CAS']['login']."'".$body_end`
			`];`

			`}`



[config.modules] added 'cas' permissions [module.cas] added PUT to really logout (from CAS server) but do not work (except from document.location) 2018-03-20 22:35:16 +00:00			`/* (2) Logout from CAS server`
			`*`
			`* @return logged_out<bool> Whether you have been logged out`
			`*`
			`---------------------------------------------------------*/`
			`public function put(){`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00
[config.modules] added 'cas' permissions [module.cas] added PUT to really logout (from CAS server) but do not work (except from document.location) 2018-03-20 22:35:16 +00:00			`/* (1) Call logout script`
			`---------------------------------------------------------*/`
			`/* (1) Build useful variables */`
			`$service = ($_SERVER['SERVER_NAME'] == 'ptut.com' ) ? 'http' : 'https';`
			`$service .= '://'.$_SERVER['HTTP_HOST'].'/api/v/1.0/cas';`
			`$logout_url = "https://sso.univ-pau.fr/cas/logout?service=$service";`

			`/* (2) Configure & Prepare CURL */`
			`$ch = \curl_init();`

			`\curl_setopt($ch, CURLOPT_URL, $logout_url);`
			`\curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00
[config.modules] added 'cas' permissions [module.cas] added PUT to really logout (from CAS server) but do not work (except from document.location) 2018-03-20 22:35:16 +00:00			`/* (3) Execute CURL & Close it */`
			`$output = \curl_exec($ch);`
			`\curl_close($ch);`

			`/* (4) Error if no output */`
			`if( strlen($output) < 1 )`
			`return ['logged_out' => false, 'redirect_url' => $logout_url];`

			`/* (4) Destroy session */`
			`\session_destroy();`

			`/* (5) Return if logged out */`
			`return ['logged_out' => true, 'redirect_url' => $logout_url];`

			`}`



			`/* (3) Logout (not from CAS server)`
			`*`
			`* @return logged_out<bool> Whether you have been logged out`
			`*`
			`---------------------------------------------------------*/`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00			`public function delete(){`

[bowdel] + [AuthSystemDefault] + [module.cas] DELETE (now logout works + login + session departE?E?E?E?E?ment data) 2018-03-15 12:13:35 +00:00			`\session_destroy();`
[module.cas] DELETE for logout \| GET for callback now works with tested system for pop-up 2018-03-03 14:50:11 +00:00
			`/* (3) Return if logged out */`
[bowdel] + [AuthSystemDefault] + [module.cas] DELETE (now logout works + login + session departE?E?E?E?E?ment data) 2018-03-15 12:13:35 +00:00			`return ['logged_out' => true];`
[module.cas] Created callback (todo: store in SESSION) + [module.*] renamed all with lowercase API path 2018-03-02 08:27:58 +00:00

			`}`

			`}`