Rev 1126 | Rev 1130 | Go to most recent revision | Details | Compare with Previous | Last modification | View Log | RSS feed
Rev | Author | Line No. | Line |
---|---|---|---|
2 | daniel-mar | 1 | <?php |
2 | |||
3 | /* |
||
4 | * OIDplus 2.0 |
||
1086 | daniel-mar | 5 | * Copyright 2019 - 2023 Daniel Marschall, ViaThinkSoft |
2 | daniel-mar | 6 | * |
7 | * Licensed under the Apache License, Version 2.0 (the "License"); |
||
8 | * you may not use this file except in compliance with the License. |
||
9 | * You may obtain a copy of the License at |
||
10 | * |
||
11 | * http://www.apache.org/licenses/LICENSE-2.0 |
||
12 | * |
||
13 | * Unless required by applicable law or agreed to in writing, software |
||
14 | * distributed under the License is distributed on an "AS IS" BASIS, |
||
15 | * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
||
16 | * See the License for the specific language governing permissions and |
||
17 | * limitations under the License. |
||
18 | */ |
||
19 | |||
1050 | daniel-mar | 20 | namespace ViaThinkSoft\OIDplus; |
511 | daniel-mar | 21 | |
1086 | daniel-mar | 22 | // phpcs:disable PSR1.Files.SideEffects |
23 | \defined('INSIDE_OIDPLUS') or die; |
||
24 | // phpcs:enable PSR1.Files.SideEffects |
||
25 | |||
730 | daniel-mar | 26 | abstract class OIDplusObject extends OIDplusBaseClass { |
261 | daniel-mar | 27 | const UUID_NAMEBASED_NS_OidPlusMisc = 'ad1654e6-7e15-11e4-9ef6-78e3b5fc7f22'; |
150 | daniel-mar | 28 | |
1116 | daniel-mar | 29 | /** |
30 | * Please overwrite this function! |
||
31 | * @param string $node_id |
||
32 | * @return OIDplusObject|null |
||
33 | */ |
||
34 | public static function parse(string $node_id)/*: ?OIDplusObject*/ { |
||
227 | daniel-mar | 35 | foreach (OIDplus::getEnabledObjectTypes() as $ot) { |
954 | daniel-mar | 36 | try { |
956 | daniel-mar | 37 | $good = false; |
1050 | daniel-mar | 38 | if (get_parent_class($ot) == OIDplusObject::class) { |
956 | daniel-mar | 39 | $reflector = new \ReflectionMethod($ot, 'parse'); |
40 | $isImplemented = ($reflector->getDeclaringClass()->getName() === $ot); |
||
41 | if ($isImplemented) { // avoid endless loop if parse is not overriden |
||
42 | $good = true; |
||
43 | } |
||
44 | } |
||
45 | // We need to do the workaround with "$good", otherwise PHPstan shows |
||
46 | // "Call to an undefined static method object::parse()" |
||
47 | if ($good && $obj = $ot::parse($node_id)) return $obj; |
||
1050 | daniel-mar | 48 | } catch (\Exception $e) {} |
2 | daniel-mar | 49 | } |
50 | return null; |
||
51 | } |
||
52 | |||
1116 | daniel-mar | 53 | /** |
54 | * @return OIDplusAltId[] |
||
55 | * @throws OIDplusException |
||
56 | */ |
||
57 | public function getAltIds(): array { |
||
193 | daniel-mar | 58 | if ($this->isRoot()) return array(); |
59 | |||
60 | $ids = array(); |
||
1078 | daniel-mar | 61 | |
62 | // Creates an OIDplus-Hash-OID |
||
193 | daniel-mar | 63 | if ($this->ns() != 'oid') { |
227 | daniel-mar | 64 | $sid = OIDplus::getSystemId(true); |
193 | daniel-mar | 65 | if (!empty($sid)) { |
817 | daniel-mar | 66 | $ns_oid = $this->getPlugin()->getManifest()->getOid(); |
835 | daniel-mar | 67 | if (str_starts_with($ns_oid, '1.3.6.1.4.1.37476.2.5.2.')) { |
817 | daniel-mar | 68 | // Official ViaThinkSoft object type plugins |
69 | // For backwards compatibility with existing IDs, |
||
70 | // set the hash_payload as '<namespace>:<id>' |
||
71 | $hash_payload = $this->nodeId(true); |
||
72 | } else { |
||
73 | // Third-party object type plugins |
||
74 | // Set the hash_payload as '<plugin oid>:<id>' |
||
75 | $hash_payload = $ns_oid.':'.$this->nodeId(false); |
||
76 | } |
||
77 | $oid = $sid . '.' . smallhash($hash_payload); |
||
1078 | daniel-mar | 78 | $ids[] = new OIDplusAltId('oid', $oid, _L('OIDplus Information Object OID')); |
193 | daniel-mar | 79 | } |
1078 | daniel-mar | 80 | } |
929 | daniel-mar | 81 | |
1078 | daniel-mar | 82 | // Make a namebased UUID, but... |
83 | // ... exclude GUID, because a GUID is already a GUID |
||
84 | // ... exclude OID, because an OID already has a record UUID_NAMEBASED_NS_OID (defined by IETF) set by class OIDplusOid |
||
85 | if (($this->ns() != 'guid') && ($this->ns() != 'oid')) { |
||
86 | $ids[] = new OIDplusAltId('guid', gen_uuid_md5_namebased(self::UUID_NAMEBASED_NS_OidPlusMisc, $this->nodeId()), _L('Name based version 3 / MD5 UUID with namespace %1','UUID_NAMEBASED_NS_OidPlusMisc')); |
||
87 | $ids[] = new OIDplusAltId('guid', gen_uuid_sha1_namebased(self::UUID_NAMEBASED_NS_OidPlusMisc, $this->nodeId()), _L('Name based version 5 / SHA1 UUID with namespace %1','UUID_NAMEBASED_NS_OidPlusMisc')); |
||
88 | } |
||
89 | |||
90 | // Make a AID based on ViaThinkSoft schema |
||
91 | // ... but not for OIDs below oid:1.3.6.1.4.1.37476.30.9, because these are the definition of these Information Object AIDs (which will be decoded in the OID object type plugin) |
||
92 | if (($this->ns() != 'aid') && !str_starts_with($this->nodeId(true), 'oid:1.3.6.1.4.1.37476.30.9.')) { |
||
93 | $sid = OIDplus::getSystemId(false); |
||
1116 | daniel-mar | 94 | if ($sid !== false) { |
1078 | daniel-mar | 95 | $ns_oid = $this->getPlugin()->getManifest()->getOid(); |
96 | if (str_starts_with($ns_oid, '1.3.6.1.4.1.37476.2.5.2.')) { |
||
97 | // Official ViaThinkSoft object type plugins |
||
98 | // For backwards compatibility with existing IDs, |
||
99 | // set the hash_payload as '<namespace>:<id>' |
||
100 | $hash_payload = $this->nodeId(true); |
||
101 | } else { |
||
102 | // Third-party object type plugins |
||
103 | // Set the hash_payload as '<plugin oid>:<id>' |
||
104 | $hash_payload = $ns_oid.':'.$this->nodeId(false); |
||
105 | } |
||
106 | |||
1116 | daniel-mar | 107 | $sid_hex = strtoupper(str_pad(dechex((int)$sid),8,'0',STR_PAD_LEFT)); |
1078 | daniel-mar | 108 | $obj_hex = strtoupper(str_pad(dechex(smallhash($hash_payload)),8,'0',STR_PAD_LEFT)); |
109 | $aid = 'D276000186B20005'.$sid_hex.$obj_hex; |
||
110 | $ids[] = new OIDplusAltId('aid', $aid, _L('OIDplus Information Object Application Identifier (ISO/IEC 7816)'), ' ('._L('No PIX allowed').')'); |
||
929 | daniel-mar | 111 | } |
193 | daniel-mar | 112 | } |
1078 | daniel-mar | 113 | |
193 | daniel-mar | 114 | return $ids; |
83 | daniel-mar | 115 | } |
116 | |||
1116 | daniel-mar | 117 | /** |
118 | * @return string |
||
119 | */ |
||
120 | public abstract static function objectTypeTitle(): string; |
||
2 | daniel-mar | 121 | |
1116 | daniel-mar | 122 | /** |
123 | * @return string |
||
124 | */ |
||
125 | public abstract static function objectTypeTitleShort(): string; |
||
2 | daniel-mar | 126 | |
1116 | daniel-mar | 127 | /** |
128 | * @return OIDplusObjectTypePlugin|null |
||
129 | */ |
||
817 | daniel-mar | 130 | public function getPlugin()/*: ?OIDplusObjectTypePlugin */ { |
131 | $plugins = OIDplus::getObjectTypePlugins(); |
||
132 | foreach ($plugins as $plugin) { |
||
1116 | daniel-mar | 133 | if (get_class($this) == $plugin::getObjectTypeClassName()) { |
817 | daniel-mar | 134 | return $plugin; |
135 | } |
||
136 | } |
||
1116 | daniel-mar | 137 | return null; |
817 | daniel-mar | 138 | } |
139 | |||
1116 | daniel-mar | 140 | /** |
141 | * @return string |
||
142 | */ |
||
143 | public abstract static function ns(): string; |
||
2 | daniel-mar | 144 | |
1116 | daniel-mar | 145 | /** |
146 | * @return string |
||
147 | */ |
||
148 | public abstract static function root(): string; |
||
2 | daniel-mar | 149 | |
1116 | daniel-mar | 150 | /** |
151 | * @return bool |
||
152 | */ |
||
153 | public abstract function isRoot(): bool; |
||
2 | daniel-mar | 154 | |
1116 | daniel-mar | 155 | /** |
156 | * @param bool $with_ns |
||
157 | * @return string |
||
158 | */ |
||
159 | public abstract function nodeId(bool $with_ns=true): string; |
||
2 | daniel-mar | 160 | |
1116 | daniel-mar | 161 | /** |
162 | * @param string $str |
||
163 | * @return string mixed |
||
164 | * @throws OIDplusException |
||
165 | */ |
||
166 | public abstract function addString(string $str): string; |
||
2 | daniel-mar | 167 | |
1116 | daniel-mar | 168 | /** |
169 | * @param OIDplusObject $parent |
||
170 | * @return string |
||
171 | */ |
||
172 | public abstract function crudShowId(OIDplusObject $parent): string; |
||
2 | daniel-mar | 173 | |
1116 | daniel-mar | 174 | /** |
175 | * @return string |
||
176 | */ |
||
177 | public function crudInsertPrefix(): string { |
||
707 | daniel-mar | 178 | return ''; |
179 | } |
||
2 | daniel-mar | 180 | |
1116 | daniel-mar | 181 | /** |
182 | * @return string |
||
183 | */ |
||
184 | public function crudInsertSuffix(): string { |
||
707 | daniel-mar | 185 | return ''; |
186 | } |
||
187 | |||
1116 | daniel-mar | 188 | /** |
189 | * @param OIDplusObject|null $parent |
||
190 | * @return string |
||
191 | */ |
||
192 | public abstract function jsTreeNodeName(OIDplusObject $parent = null): string; |
||
2 | daniel-mar | 193 | |
1116 | daniel-mar | 194 | /** |
195 | * @return string |
||
196 | */ |
||
197 | public abstract function defaultTitle(): string; |
||
2 | daniel-mar | 198 | |
1116 | daniel-mar | 199 | /** |
200 | * @return bool |
||
201 | */ |
||
202 | public abstract function isLeafNode(): bool; |
||
16 | daniel-mar | 203 | |
1116 | daniel-mar | 204 | /** |
205 | * @param string $title |
||
206 | * @param string $content |
||
207 | * @param string $icon |
||
208 | * @return void |
||
209 | */ |
||
210 | public abstract function getContentPage(string &$title, string &$content, string &$icon); |
||
2 | daniel-mar | 211 | |
1116 | daniel-mar | 212 | /** |
213 | * @param OIDplusRA|string|null $ra |
||
214 | * @return array |
||
215 | * @throws OIDplusConfigInitializationException |
||
216 | * @throws OIDplusException |
||
217 | */ |
||
218 | public static function getRaRoots($ra=null) : array{ |
||
219 | if ($ra instanceof OIDplusRA) $ra = $ra->raEmail(); |
||
115 | daniel-mar | 220 | |
27 | daniel-mar | 221 | $out = array(); |
150 | daniel-mar | 222 | |
261 | daniel-mar | 223 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
1116 | daniel-mar | 224 | if (!$ra) { |
261 | daniel-mar | 225 | $res = OIDplus::db()->query("select oChild.id as id, oChild.ra_email as child_mail, oParent.ra_email as parent_mail from ###objects as oChild ". |
226 | "left join ###objects as oParent on oChild.parent = oParent.id ". |
||
150 | daniel-mar | 227 | "order by ".OIDplus::db()->natOrder('oChild.id')); |
236 | daniel-mar | 228 | while ($row = $res->fetch_array()) { |
549 | daniel-mar | 229 | if (!OIDplus::authUtils()->isRaLoggedIn($row['parent_mail']) && OIDplus::authUtils()->isRaLoggedIn($row['child_mail'])) { |
1121 | daniel-mar | 230 | $x = self::parse($row['id']); // can be NULL if namespace was disabled |
150 | daniel-mar | 231 | if ($x) $out[] = $x; |
232 | } |
||
233 | } |
||
234 | } else { |
||
261 | daniel-mar | 235 | $res = OIDplus::db()->query("select oChild.id as id from ###objects as oChild ". |
236 | "left join ###objects as oParent on oChild.parent = oParent.id ". |
||
433 | daniel-mar | 237 | "where (".OIDplus::db()->getSlang()->isNullFunction('oParent.ra_email',"''")." <> ? and ". |
238 | OIDplus::db()->getSlang()->isNullFunction('oChild.ra_email',"''")." = ?) or ". |
||
239 | " (oParent.ra_email is null and ".OIDplus::db()->getSlang()->isNullFunction('oChild.ra_email',"''")." = ?) ". |
||
1116 | daniel-mar | 240 | "order by ".OIDplus::db()->natOrder('oChild.id'), array($ra, $ra, $ra)); |
236 | daniel-mar | 241 | while ($row = $res->fetch_array()) { |
1121 | daniel-mar | 242 | $x = self::parse($row['id']); // can be NULL if namespace was disabled |
1028 | daniel-mar | 243 | if ($x) $out[] = $x; |
27 | daniel-mar | 244 | } |
2 | daniel-mar | 245 | } |
246 | } else { |
||
1116 | daniel-mar | 247 | if (!$ra) { |
415 | daniel-mar | 248 | $ra_mails_to_check = OIDplus::authUtils()->loggedInRaList(); |
150 | daniel-mar | 249 | if (count($ra_mails_to_check) == 0) return $out; |
250 | } else { |
||
1116 | daniel-mar | 251 | $ra_mails_to_check = array($ra); |
2 | daniel-mar | 252 | } |
150 | daniel-mar | 253 | |
254 | self::buildObjectInformationCache(); |
||
255 | |||
256 | foreach ($ra_mails_to_check as $check_ra_mail) { |
||
193 | daniel-mar | 257 | $out_part = array(); |
150 | daniel-mar | 258 | |
975 | daniel-mar | 259 | foreach (self::$object_info_cache as $id => $cacheitem) { |
1028 | daniel-mar | 260 | if ($cacheitem[self::CACHE_RA_EMAIL] == $check_ra_mail) { |
261 | $parent = $cacheitem[self::CACHE_PARENT]; |
||
262 | if (!isset(self::$object_info_cache[$parent]) || (self::$object_info_cache[$parent][self::CACHE_RA_EMAIL] != $check_ra_mail)) { |
||
263 | $out_part[] = $id; |
||
150 | daniel-mar | 264 | } |
265 | } |
||
266 | } |
||
267 | |||
268 | natsort($out_part); |
||
269 | |||
270 | foreach ($out_part as $id) { |
||
271 | $obj = self::parse($id); |
||
272 | if ($obj) $out[] = $obj; |
||
273 | } |
||
274 | } |
||
2 | daniel-mar | 275 | } |
150 | daniel-mar | 276 | |
2 | daniel-mar | 277 | return $out; |
278 | } |
||
279 | |||
1116 | daniel-mar | 280 | /** |
281 | * @return array |
||
282 | * @throws OIDplusException |
||
283 | */ |
||
284 | public static function getAllNonConfidential(): array { |
||
150 | daniel-mar | 285 | $out = array(); |
286 | |||
261 | daniel-mar | 287 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
443 | daniel-mar | 288 | $res = OIDplus::db()->query("select id from ###objects where confidential = ? order by ".OIDplus::db()->natOrder('id'), array(false)); |
150 | daniel-mar | 289 | |
236 | daniel-mar | 290 | while ($row = $res->fetch_array()) { |
150 | daniel-mar | 291 | $obj = self::parse($row['id']); // will be NULL if the object type is not registered |
169 | daniel-mar | 292 | if ($obj && (!$obj->isConfidential())) { |
150 | daniel-mar | 293 | $out[] = $row['id']; |
294 | } |
||
2 | daniel-mar | 295 | } |
296 | } else { |
||
150 | daniel-mar | 297 | self::buildObjectInformationCache(); |
2 | daniel-mar | 298 | |
975 | daniel-mar | 299 | foreach (self::$object_info_cache as $id => $cacheitem) { |
300 | $confidential = $cacheitem[self::CACHE_CONFIDENTIAL]; |
||
150 | daniel-mar | 301 | if (!$confidential) { |
302 | $obj = self::parse($id); // will be NULL if the object type is not registered |
||
169 | daniel-mar | 303 | if ($obj && (!$obj->isConfidential())) { |
150 | daniel-mar | 304 | $out[] = $id; |
305 | } |
||
306 | } |
||
2 | daniel-mar | 307 | } |
308 | } |
||
309 | |||
310 | return $out; |
||
311 | } |
||
312 | |||
1116 | daniel-mar | 313 | /** |
314 | * @return bool |
||
315 | * @throws OIDplusException |
||
316 | */ |
||
317 | public function isConfidential(): bool { |
||
261 | daniel-mar | 318 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
426 | daniel-mar | 319 | //static $confidential_cache = array(); |
150 | daniel-mar | 320 | $curid = $this->nodeId(); |
426 | daniel-mar | 321 | //$orig_curid = $curid; |
322 | //if (isset($confidential_cache[$curid])) return $confidential_cache[$curid]; |
||
150 | daniel-mar | 323 | // Recursively search for the confidential flag in the parents |
790 | daniel-mar | 324 | while (($res = OIDplus::db()->query("select parent, confidential from ###objects where id = ?", array($curid)))->any()) { |
236 | daniel-mar | 325 | $row = $res->fetch_array(); |
150 | daniel-mar | 326 | if ($row['confidential']) { |
426 | daniel-mar | 327 | //$confidential_cache[$curid] = true; |
328 | //$confidential_cache[$orig_curid] = true; |
||
150 | daniel-mar | 329 | return true; |
330 | } else { |
||
426 | daniel-mar | 331 | //$confidential_cache[$curid] = false; |
150 | daniel-mar | 332 | } |
333 | $curid = $row['parent']; |
||
426 | daniel-mar | 334 | //if (isset($confidential_cache[$curid])) { |
335 | //$confidential_cache[$orig_curid] = $confidential_cache[$curid]; |
||
336 | //return $confidential_cache[$curid]; |
||
337 | //} |
||
150 | daniel-mar | 338 | } |
339 | |||
426 | daniel-mar | 340 | //$confidential_cache[$orig_curid] = false; |
150 | daniel-mar | 341 | return false; |
342 | } else { |
||
343 | self::buildObjectInformationCache(); |
||
344 | |||
345 | $curid = $this->nodeId(); |
||
346 | // Recursively search for the confidential flag in the parents |
||
169 | daniel-mar | 347 | while (isset(self::$object_info_cache[$curid])) { |
150 | daniel-mar | 348 | if (self::$object_info_cache[$curid][self::CACHE_CONFIDENTIAL]) return true; |
349 | $curid = self::$object_info_cache[$curid][self::CACHE_PARENT]; |
||
350 | } |
||
351 | return false; |
||
2 | daniel-mar | 352 | } |
353 | } |
||
354 | |||
1116 | daniel-mar | 355 | /** |
356 | * @param OIDplusObject $obj |
||
357 | * @return bool |
||
358 | * @throws OIDplusException |
||
359 | */ |
||
360 | public function isChildOf(OIDplusObject $obj): bool { |
||
261 | daniel-mar | 361 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
150 | daniel-mar | 362 | $curid = $this->nodeId(); |
790 | daniel-mar | 363 | while (($res = OIDplus::db()->query("select parent from ###objects where id = ?", array($curid)))->any()) { |
236 | daniel-mar | 364 | $row = $res->fetch_array(); |
150 | daniel-mar | 365 | if ($curid == $obj->nodeId()) return true; |
366 | $curid = $row['parent']; |
||
367 | } |
||
368 | return false; |
||
369 | } else { |
||
370 | self::buildObjectInformationCache(); |
||
371 | |||
372 | $curid = $this->nodeId(); |
||
169 | daniel-mar | 373 | while (isset(self::$object_info_cache[$curid])) { |
150 | daniel-mar | 374 | if ($curid == $obj->nodeId()) return true; |
375 | $curid = self::$object_info_cache[$curid][self::CACHE_PARENT]; |
||
376 | } |
||
377 | return false; |
||
2 | daniel-mar | 378 | } |
150 | daniel-mar | 379 | } |
2 | daniel-mar | 380 | |
1116 | daniel-mar | 381 | /** |
382 | * @return array |
||
383 | * @throws OIDplusException |
||
384 | */ |
||
385 | public function getChildren(): array { |
||
150 | daniel-mar | 386 | $out = array(); |
261 | daniel-mar | 387 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
388 | $res = OIDplus::db()->query("select id from ###objects where parent = ?", array($this->nodeId())); |
||
236 | daniel-mar | 389 | while ($row = $res->fetch_array()) { |
150 | daniel-mar | 390 | $obj = self::parse($row['id']); |
391 | if (!$obj) continue; |
||
392 | $out[] = $obj; |
||
393 | } |
||
394 | } else { |
||
395 | self::buildObjectInformationCache(); |
||
396 | |||
975 | daniel-mar | 397 | foreach (self::$object_info_cache as $id => $cacheitem) { |
398 | $parent = $cacheitem[self::CACHE_PARENT]; |
||
150 | daniel-mar | 399 | if ($parent == $this->nodeId()) { |
400 | $obj = self::parse($id); |
||
401 | if (!$obj) continue; |
||
402 | $out[] = $obj; |
||
403 | } |
||
404 | } |
||
405 | } |
||
406 | return $out; |
||
2 | daniel-mar | 407 | } |
408 | |||
1116 | daniel-mar | 409 | /** |
410 | * @return OIDplusRA |
||
411 | * @throws OIDplusException |
||
412 | */ |
||
413 | public function getRa(): OIDplusRA { |
||
150 | daniel-mar | 414 | return new OIDplusRA($this->getRaMail()); |
115 | daniel-mar | 415 | } |
416 | |||
1116 | daniel-mar | 417 | /** |
418 | * @param OIDplusRA|string|null $ra |
||
419 | * @return bool |
||
420 | * @throws OIDplusConfigInitializationException |
||
421 | * @throws OIDplusException |
||
422 | */ |
||
423 | public function userHasReadRights($ra=null): bool { |
||
424 | if ($ra instanceof OIDplusRA) $ra = $ra->raEmail(); |
||
115 | daniel-mar | 425 | |
2 | daniel-mar | 426 | // If it is not confidential, everybody can read/see it. |
416 | daniel-mar | 427 | // Note: This also checks if superior OIDs are confidential. |
2 | daniel-mar | 428 | if (!$this->isConfidential()) return true; |
429 | |||
1116 | daniel-mar | 430 | if (!$ra) { |
416 | daniel-mar | 431 | // Admin may do everything |
549 | daniel-mar | 432 | if (OIDplus::authUtils()->isAdminLoggedIn()) return true; |
416 | daniel-mar | 433 | |
434 | // If the RA is logged in, then they can see the OID. |
||
549 | daniel-mar | 435 | if (OIDplus::authUtils()->isRaLoggedIn($this->getRaMail())) return true; |
2 | daniel-mar | 436 | } else { |
416 | daniel-mar | 437 | // If this OID belongs to the requested RA, then they may see it. |
1116 | daniel-mar | 438 | if ($this->getRaMail() == $ra) return true; |
2 | daniel-mar | 439 | } |
440 | |||
441 | // If someone has rights to an object below our confidential node, |
||
442 | // we let him see the confidential node, |
||
443 | // Otherwise he could not browse through to his own node. |
||
1116 | daniel-mar | 444 | $roots = $this->getRaRoots($ra); |
2 | daniel-mar | 445 | foreach ($roots as $root) { |
446 | if ($root->isChildOf($this)) return true; |
||
447 | } |
||
448 | |||
449 | return false; |
||
450 | } |
||
451 | |||
1116 | daniel-mar | 452 | /** |
453 | * @param array|null $row |
||
454 | * @return string|null |
||
455 | * @throws OIDplusException |
||
456 | */ |
||
457 | public function getIcon(array $row=null) { |
||
20 | daniel-mar | 458 | $namespace = $this->ns(); // must use $this, not self::, otherwise the virtual method will not be called |
2 | daniel-mar | 459 | |
460 | if (is_null($row)) { |
||
150 | daniel-mar | 461 | $ra_email = $this->getRaMail(); |
462 | } else { |
||
463 | $ra_email = $row['ra_email']; |
||
2 | daniel-mar | 464 | } |
632 | daniel-mar | 465 | |
1127 | daniel-mar | 466 | // $dirs = glob(OIDplus::localpath().'plugins/'.'*'.'/objectTypes/'.$namespace.'/'); |
467 | // if (count($dirs) == 0) return null; // default icon (folder) |
||
468 | // $dir = substr($dirs[0], strlen(OIDplus::localpath())); |
||
469 | $reflection = new \ReflectionClass($this); |
||
470 | $dir = dirname($reflection->getFilename()); |
||
471 | $dir = substr($dir, strlen(OIDplus::localpath())); |
||
632 | daniel-mar | 472 | |
1124 | daniel-mar | 473 | if ($this->isRoot()) { |
1127 | daniel-mar | 474 | $icon = $dir . '/' . $this::treeIconFilename('root'); |
2 | daniel-mar | 475 | } else { |
1124 | daniel-mar | 476 | // We use $this:: instead of self:: , because we want to call the overridden methods |
1126 | daniel-mar | 477 | if ($ra_email && OIDplus::authUtils()->isRaLoggedIn($ra_email)) { |
1124 | daniel-mar | 478 | if ($this->isLeafNode()) { |
479 | $icon = $dir . '/' . $this::treeIconFilename('own_leaf'); |
||
480 | if (!file_exists($icon)) $icon = $dir . '/' . $this::treeIconFilename('own'); |
||
481 | } else { |
||
482 | $icon = $dir . '/' . $this::treeIconFilename('own'); |
||
483 | } |
||
484 | } else { |
||
485 | if ($this->isLeafNode()) { |
||
486 | $icon = $dir . '/' . $this::treeIconFilename('general_leaf'); |
||
487 | if (!file_exists($icon)) $icon = $dir . '/' . $this::treeIconFilename('general'); |
||
488 | } else { |
||
489 | $icon = $dir . '/' . $this::treeIconFilename('general'); |
||
490 | } |
||
491 | } |
||
2 | daniel-mar | 492 | } |
632 | daniel-mar | 493 | |
494 | if (!file_exists($icon)) return null; // default icon (folder) |
||
495 | |||
2 | daniel-mar | 496 | return $icon; |
497 | } |
||
498 | |||
1116 | daniel-mar | 499 | /** |
500 | * @param string $id |
||
501 | * @return bool |
||
502 | * @throws OIDplusException |
||
503 | */ |
||
504 | public static function exists(string $id): bool { |
||
261 | daniel-mar | 505 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
506 | $res = OIDplus::db()->query("select id from ###objects where id = ?", array($id)); |
||
790 | daniel-mar | 507 | return $res->any(); |
150 | daniel-mar | 508 | } else { |
509 | self::buildObjectInformationCache(); |
||
510 | return isset(self::$object_info_cache[$id]); |
||
511 | } |
||
12 | daniel-mar | 512 | } |
513 | |||
1116 | daniel-mar | 514 | /** |
515 | * Get parent gives the next possible parent which is EXISTING in OIDplus |
||
516 | * It does not give the immediate parent |
||
517 | * @return OIDplusObject|null |
||
518 | * @throws OIDplusException |
||
519 | */ |
||
979 | daniel-mar | 520 | public function getParent()/*: ?OIDplusObject*/ { |
261 | daniel-mar | 521 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
522 | $res = OIDplus::db()->query("select parent from ###objects where id = ?", array($this->nodeId())); |
||
790 | daniel-mar | 523 | if (!$res->any()) return null; |
236 | daniel-mar | 524 | $row = $res->fetch_array(); |
150 | daniel-mar | 525 | $parent = $row['parent']; |
526 | $obj = OIDplusObject::parse($parent); |
||
527 | if ($obj) return $obj; |
||
415 | daniel-mar | 528 | // TODO: Also implement one_up() like below |
150 | daniel-mar | 529 | } else { |
530 | self::buildObjectInformationCache(); |
||
531 | if (isset(self::$object_info_cache[$this->nodeId()])) { |
||
532 | $parent = self::$object_info_cache[$this->nodeId()][self::CACHE_PARENT]; |
||
533 | $obj = OIDplusObject::parse($parent); |
||
534 | if ($obj) return $obj; |
||
535 | } |
||
20 | daniel-mar | 536 | |
150 | daniel-mar | 537 | // If this OID does not exist, the SQL query "select parent from ..." does not work. So we try to find the next possible parent using one_up() |
538 | $cur = $this->one_up(); |
||
418 | daniel-mar | 539 | if (!$cur) return null; |
150 | daniel-mar | 540 | do { |
415 | daniel-mar | 541 | // findFitting() checks if that OID exists |
150 | daniel-mar | 542 | if ($fitting = self::findFitting($cur->nodeId())) return $fitting; |
20 | daniel-mar | 543 | |
150 | daniel-mar | 544 | $prev = $cur; |
545 | $cur = $cur->one_up(); |
||
418 | daniel-mar | 546 | if (!$cur) return null; |
1116 | daniel-mar | 547 | } while ($prev !== $cur); |
150 | daniel-mar | 548 | } |
979 | daniel-mar | 549 | return null; |
2 | daniel-mar | 550 | } |
551 | |||
1116 | daniel-mar | 552 | /** |
553 | * @return false|string|null |
||
554 | * @throws OIDplusException |
||
555 | */ |
||
2 | daniel-mar | 556 | public function getRaMail() { |
261 | daniel-mar | 557 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
558 | $res = OIDplus::db()->query("select ra_email from ###objects where id = ?", array($this->nodeId())); |
||
790 | daniel-mar | 559 | if (!$res->any()) return null; |
236 | daniel-mar | 560 | $row = $res->fetch_array(); |
150 | daniel-mar | 561 | return $row['ra_email']; |
562 | } else { |
||
563 | self::buildObjectInformationCache(); |
||
564 | if (isset(self::$object_info_cache[$this->nodeId()])) { |
||
565 | return self::$object_info_cache[$this->nodeId()][self::CACHE_RA_EMAIL]; |
||
566 | } |
||
567 | return false; |
||
568 | } |
||
2 | daniel-mar | 569 | } |
570 | |||
1116 | daniel-mar | 571 | /** |
572 | * @return false|string|null |
||
573 | * @throws OIDplusException |
||
574 | */ |
||
192 | daniel-mar | 575 | public function getTitle() { |
261 | daniel-mar | 576 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
577 | $res = OIDplus::db()->query("select title from ###objects where id = ?", array($this->nodeId())); |
||
790 | daniel-mar | 578 | if (!$res->any()) return null; |
236 | daniel-mar | 579 | $row = $res->fetch_array(); |
192 | daniel-mar | 580 | return $row['title']; |
581 | } else { |
||
582 | self::buildObjectInformationCache(); |
||
583 | if (isset(self::$object_info_cache[$this->nodeId()])) { |
||
584 | return self::$object_info_cache[$this->nodeId()][self::CACHE_TITLE]; |
||
585 | } |
||
586 | return false; |
||
587 | } |
||
588 | } |
||
589 | |||
1116 | daniel-mar | 590 | /** |
591 | * @return false|string|null |
||
592 | * @throws OIDplusException |
||
593 | */ |
||
975 | daniel-mar | 594 | public function getDescription() { |
595 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
||
596 | $res = OIDplus::db()->query("select description from ###objects where id = ?", array($this->nodeId())); |
||
597 | if (!$res->any()) return null; |
||
598 | $row = $res->fetch_array(); |
||
599 | return $row['description']; |
||
600 | } else { |
||
601 | self::buildObjectInformationCache(); |
||
602 | if (isset(self::$object_info_cache[$this->nodeId()])) { |
||
603 | return self::$object_info_cache[$this->nodeId()][self::CACHE_DESCRIPTION]; |
||
604 | } |
||
605 | return false; |
||
606 | } |
||
607 | } |
||
608 | |||
1116 | daniel-mar | 609 | /** |
610 | * @return false|string|null |
||
611 | * @throws OIDplusException |
||
612 | */ |
||
975 | daniel-mar | 613 | public function getComment() { |
614 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
||
615 | $res = OIDplus::db()->query("select comment from ###objects where id = ?", array($this->nodeId())); |
||
616 | if (!$res->any()) return null; |
||
617 | $row = $res->fetch_array(); |
||
618 | return $row['comment']; |
||
619 | } else { |
||
620 | self::buildObjectInformationCache(); |
||
621 | if (isset(self::$object_info_cache[$this->nodeId()])) { |
||
622 | return self::$object_info_cache[$this->nodeId()][self::CACHE_COMMENT]; |
||
623 | } |
||
624 | return false; |
||
625 | } |
||
626 | } |
||
627 | |||
1116 | daniel-mar | 628 | /** |
629 | * @return false|string|null |
||
630 | * @throws OIDplusException |
||
631 | */ |
||
975 | daniel-mar | 632 | public function getCreatedTime() { |
633 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
||
634 | $res = OIDplus::db()->query("select created from ###objects where id = ?", array($this->nodeId())); |
||
635 | if (!$res->any()) return null; |
||
636 | $row = $res->fetch_array(); |
||
637 | return $row['created']; |
||
638 | } else { |
||
639 | self::buildObjectInformationCache(); |
||
640 | if (isset(self::$object_info_cache[$this->nodeId()])) { |
||
641 | return self::$object_info_cache[$this->nodeId()][self::CACHE_CREATED]; |
||
642 | } |
||
643 | return false; |
||
644 | } |
||
645 | } |
||
646 | |||
1116 | daniel-mar | 647 | /** |
648 | * @return false|string|null |
||
649 | * @throws OIDplusException |
||
650 | */ |
||
975 | daniel-mar | 651 | public function getUpdatedTime() { |
652 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
||
653 | $res = OIDplus::db()->query("select updated from ###objects where id = ?", array($this->nodeId())); |
||
654 | if (!$res->any()) return null; |
||
655 | $row = $res->fetch_array(); |
||
656 | return $row['updated']; |
||
657 | } else { |
||
658 | self::buildObjectInformationCache(); |
||
659 | if (isset(self::$object_info_cache[$this->nodeId()])) { |
||
660 | return self::$object_info_cache[$this->nodeId()][self::CACHE_UPDATED]; |
||
661 | } |
||
662 | return false; |
||
663 | } |
||
664 | } |
||
665 | |||
1116 | daniel-mar | 666 | /** |
667 | * @param OIDplusRA|string|null $ra |
||
668 | * @return bool |
||
669 | * @throws OIDplusException |
||
670 | */ |
||
671 | public function userHasParentalWriteRights($ra=null) { |
||
672 | if ($ra instanceof OIDplusRA) $ra = $ra->raEmail(); |
||
115 | daniel-mar | 673 | |
1116 | daniel-mar | 674 | if (!$ra) { |
549 | daniel-mar | 675 | if (OIDplus::authUtils()->isAdminLoggedIn()) return true; |
2 | daniel-mar | 676 | } |
677 | |||
678 | $objParent = $this->getParent(); |
||
419 | daniel-mar | 679 | if (!$objParent) return false; |
1116 | daniel-mar | 680 | return $objParent->userHasWriteRights($ra); |
2 | daniel-mar | 681 | } |
682 | |||
1116 | daniel-mar | 683 | /** |
684 | * @param OIDplusRA|string|null $ra |
||
685 | * @return bool |
||
686 | * @throws OIDplusException |
||
687 | */ |
||
688 | public function userHasWriteRights($ra=null): bool { |
||
689 | if ($ra instanceof OIDplusRA) $ra = $ra->raEmail(); |
||
115 | daniel-mar | 690 | |
1116 | daniel-mar | 691 | if (!$ra) { |
549 | daniel-mar | 692 | if (OIDplus::authUtils()->isAdminLoggedIn()) return true; |
693 | return OIDplus::authUtils()->isRaLoggedIn($this->getRaMail()); |
||
2 | daniel-mar | 694 | } else { |
1116 | daniel-mar | 695 | return $this->getRaMail() == $ra; |
2 | daniel-mar | 696 | } |
697 | } |
||
12 | daniel-mar | 698 | |
1116 | daniel-mar | 699 | /** |
700 | * @param string|OIDplusObject $to |
||
701 | * @return int|null |
||
702 | */ |
||
703 | public function distance($to)/*: ?int*/ { |
||
12 | daniel-mar | 704 | return null; // not implemented |
705 | } |
||
20 | daniel-mar | 706 | |
1116 | daniel-mar | 707 | /** |
708 | * @param OIDplusObject $obj |
||
709 | * @return bool |
||
710 | */ |
||
711 | public function equals(OIDplusObject $obj): bool { |
||
1121 | daniel-mar | 712 | if (!$obj) return false; |
20 | daniel-mar | 713 | if (!is_object($obj)) $obj = OIDplusObject::parse($obj); |
1121 | daniel-mar | 714 | if (!$obj) return false; |
28 | daniel-mar | 715 | if (!($obj instanceof $this)) return false; |
716 | |||
20 | daniel-mar | 717 | $distance = $this->distance($obj); |
718 | if (is_numeric($distance)) return $distance === 0; // if the distance function is implemented, use it |
||
719 | |||
720 | return $this->nodeId() == $obj->nodeId(); // otherwise compare the node id case-sensitive |
||
721 | } |
||
722 | |||
1116 | daniel-mar | 723 | /** |
724 | * @param string $id |
||
725 | * @return OIDplusObject|false |
||
726 | * @throws OIDplusException |
||
727 | */ |
||
977 | daniel-mar | 728 | public static function findFitting(string $id) { |
20 | daniel-mar | 729 | $obj = OIDplusObject::parse($id); |
969 | daniel-mar | 730 | if (!$obj) return false; // e.g. if ObjectType plugin is disabled |
20 | daniel-mar | 731 | |
261 | daniel-mar | 732 | if (!OIDplus::baseConfig()->getValue('OBJECT_CACHING', true)) { |
733 | $res = OIDplus::db()->query("select id from ###objects where id like ?", array($obj->ns().':%')); |
||
236 | daniel-mar | 734 | while ($row = $res->fetch_object()) { |
150 | daniel-mar | 735 | $test = OIDplusObject::parse($row->id); |
736 | if ($obj->equals($test)) return $test; |
||
737 | } |
||
738 | return false; |
||
739 | } else { |
||
740 | self::buildObjectInformationCache(); |
||
975 | daniel-mar | 741 | foreach (self::$object_info_cache as $id => $cacheitem) { |
150 | daniel-mar | 742 | if (strpos($id, $obj->ns().':') === 0) { |
743 | $test = OIDplusObject::parse($id); |
||
744 | if ($obj->equals($test)) return $test; |
||
745 | } |
||
746 | } |
||
747 | return false; |
||
20 | daniel-mar | 748 | } |
749 | } |
||
750 | |||
1116 | daniel-mar | 751 | /** |
752 | * @return OIDplusObject|null |
||
753 | */ |
||
754 | public function one_up()/*: ?OIDplusObject*/ { |
||
20 | daniel-mar | 755 | return null; // not implemented |
756 | } |
||
150 | daniel-mar | 757 | |
758 | // Caching stuff |
||
759 | |||
760 | protected static $object_info_cache = null; |
||
761 | |||
1116 | daniel-mar | 762 | /** |
763 | * @return void |
||
764 | */ |
||
150 | daniel-mar | 765 | public static function resetObjectInformationCache() { |
766 | self::$object_info_cache = null; |
||
767 | } |
||
768 | |||
975 | daniel-mar | 769 | const CACHE_ID = 'id'; |
770 | const CACHE_PARENT = 'parent'; |
||
771 | const CACHE_TITLE = 'title'; |
||
772 | const CACHE_DESCRIPTION = 'description'; |
||
773 | const CACHE_RA_EMAIL = 'ra_email'; |
||
774 | const CACHE_CONFIDENTIAL = 'confidential'; |
||
775 | const CACHE_CREATED = 'created'; |
||
776 | const CACHE_UPDATED = 'updated'; |
||
777 | const CACHE_COMMENT = 'comment'; |
||
150 | daniel-mar | 778 | |
1116 | daniel-mar | 779 | /** |
780 | * @return void |
||
781 | * @throws OIDplusException |
||
782 | */ |
||
150 | daniel-mar | 783 | private static function buildObjectInformationCache() { |
784 | if (is_null(self::$object_info_cache)) { |
||
785 | self::$object_info_cache = array(); |
||
975 | daniel-mar | 786 | $res = OIDplus::db()->query("select * from ###objects"); |
236 | daniel-mar | 787 | while ($row = $res->fetch_array()) { |
975 | daniel-mar | 788 | self::$object_info_cache[$row['id']] = $row; |
150 | daniel-mar | 789 | } |
790 | } |
||
791 | } |
||
513 | daniel-mar | 792 | |
1116 | daniel-mar | 793 | /** |
794 | * override this function if you want your object type to save |
||
795 | * attachments in directories with easy names. |
||
796 | * Take care that your custom directory name will not allow jailbreaks (../) ! |
||
797 | * @return string |
||
798 | * @throws OIDplusException |
||
799 | */ |
||
800 | public function getDirectoryName(): string { |
||
514 | daniel-mar | 801 | if ($this->isRoot()) return $this->ns(); |
802 | return $this->getLegacyDirectoryName(); |
||
513 | daniel-mar | 803 | } |
804 | |||
1116 | daniel-mar | 805 | /** |
806 | * @return string |
||
807 | * @throws OIDplusException |
||
808 | */ |
||
809 | public final function getLegacyDirectoryName(): string { |
||
804 | daniel-mar | 810 | if ($this::ns() == 'oid') { |
513 | daniel-mar | 811 | $oid = $this->nodeId(false); |
812 | } else { |
||
813 | $oid = null; |
||
814 | $alt_ids = $this->getAltIds(); |
||
815 | foreach ($alt_ids as $alt_id) { |
||
816 | if ($alt_id->getNamespace() == 'oid') { |
||
817 | $oid = $alt_id->getId(); |
||
818 | break; // we prefer the first OID (for GUIDs, the first OID is the OIDplus-OID, and the second OID is the UUID OID) |
||
819 | } |
||
820 | } |
||
821 | } |
||
822 | |||
823 | if (!is_null($oid) && ($oid != '')) { |
||
824 | // For OIDs, it is the OID, for other identifiers |
||
825 | // it it the OID alt ID (generated using the SystemID) |
||
826 | return str_replace('.', '_', $oid); |
||
827 | } else { |
||
828 | // Can happen if you don't have a system ID (due to missing OpenSSL plugin) |
||
829 | return md5($this->nodeId(true)); // we don't use $id, because $this->nodeId(true) is possibly more canonical than $id |
||
830 | } |
||
831 | } |
||
800 | daniel-mar | 832 | |
1116 | daniel-mar | 833 | /** |
834 | * @param string $mode |
||
835 | * @return string |
||
836 | */ |
||
837 | public static function treeIconFilename(string $mode): string { |
||
800 | daniel-mar | 838 | // for backwards-compatibility with older plugins |
839 | return 'img/treeicon_'.$mode.'.png'; |
||
840 | } |
||
841 | |||
415 | daniel-mar | 842 | } |