PageRenderTime 48ms CodeModel.GetById 23ms RepoModel.GetById 0ms app.codeStats 0ms

/controllers/dashboard/api/auth/key.php

https://bitbucket.org/concrete5api/api
PHP | 102 lines | 92 code | 10 blank | 0 comment | 18 complexity | 3fc2925e9b0ef63f0947c5e93d5d9ab3 MD5 | raw file
    

  1. <?php defined('C5_EXECUTE') or die('Access Denied');
    2. 

  2. 

  3. class DashboardApiAuthKeyController extends DashboardBaseController {
    4. 

  4. 	
    5. 

  5. 	public function view($updated = false, $id = false) {
    6. 

  6. 		if($updated) {
    7. 

  7. 			switch ($updated) {
    8. 

  8. 				case 'new':
    9. 

  9. 					$obj = ApiAuthKeyModel::getByAppID($id);
    10. 

  10. 					$succ = t('New Key Generated.')."\n";
    11. 

  11. 					$succ .= t('App ID: %s', $obj->appID)."\n";
    12. 

  12. 					$succ .= t('Public Key: %s', $obj->publicKey)."\n";
    13. 

  13. 					$succ .= t('Private Key: %s', $obj->privateKey)."\n";
    14. 

  14. 					$this->set('success', $succ);
    15. 

  15. 					break;
    16. 

  16. 				case 'deleted':
    17. 

  17. 					$this->set('success', t('Key Successfully Deleted.'));
    18. 

  18. 					break;
    19. 

  19. 				case 'disabled':
    20. 

  20. 					$this->set('success', t('Key Successfully Disabled.'));
    21. 

  21. 					break;
    22. 

  22. 				case 'enabled':
    23. 

  23. 					$this->set('success', t('Key Successfully Enabled.'));
    24. 

  24. 					break;
    25. 

  25. 				case 'invalid_key':
    26. 

  26. 					$this->set('error', t('Invalid Key!'));
    27. 

  27. 					break;
    28. 

  28. 				case 'invalid_token':
    29. 

  29. 					$this->set('error', Loader::helper('validation/token')->getErrorMessage());
    30. 

  30. 					break;
    31. 

  31. 			}
    32. 

  32. 		}
    33. 

  33. 		$list = new ApiAuthKeyList();
    34. 

  34. 		$list = $list->get();
    35. 

  35. 		$this->set('list', $list);
    36. 

  36. 	}
    37. 

  37. 

  38. 	public function delete($key = false, $token = false) {
    39. 

  39. 		if(!$key || !$token) { //if this happens they someone is trying to hack it so no error message for them.
    40. 

  40. 			$this->redirect('/dashboard/api/auth/key');
    41. 

  41. 		}
    42. 

  42. 		$obj = ApiAuthKeyModel::getByAppID($key);
    43. 

  43. 		if(!is_object($obj) || !$obj->appID) {
    44. 

  44. 			$this->redirect('/dashboard/api/auth/key', 'invalid_key');
    45. 

  45. 		}
    46. 

  46. 		$valt = Loader::helper('validation/token');
    47. 

  47. 		if(!$valt->validate('delete', $token)) {
    48. 

  48. 			$this->redirect('/dashboard/api/auth/key', 'invalid_token');
    49. 

  49. 		}
    50. 

  50. 		$obj->delete();
    51. 

  51. 		$this->redirect('/dashboard/api/auth/key', 'deleted');
    52. 

  52. 

  53. 	}
    54. 

  54. 

  55. 	public function generate($token = false) {
    56. 

  56. 		$valt = Loader::helper('validation/token');
    57. 

  57. 		if(!$valt->validate('generate', $token)) {
    58. 

  58. 			$this->redirect('/dashboard/api/auth/key', 'invalid_token');
    59. 

  59. 		}
    60. 

  60. 		$obj = ApiAuthKeyModel::add();
    61. 

  61. 		$id = $obj->appID;
    62. 

  62. 		$this->redirect('/dashboard/api/auth/key', 'new', $id);
    63. 

  63. 	}
    64. 

  64. 

  65. 	public function disable($key = false, $token = false) {
    66. 

  66. 		if(!$key || !$token) { //if this happens they someone is trying to hack it so no error message for them.
    67. 

  67. 			$this->redirect('/dashboard/api/auth/key');
    68. 

  68. 		}
    69. 

  69. 		$obj = ApiAuthKeyModel::getByAppID($key);
    70. 

  70. 		if(!is_object($obj) || !$obj->appID) {
    71. 

  71. 			$this->redirect('/dashboard/api/auth/key', 'invalid_key');
    72. 

  72. 		}
    73. 

  73. 		$valt = Loader::helper('validation/token');
    74. 

  74. 		if(!$valt->validate('disable', $token)) {
    75. 

  75. 			$this->redirect('/dashboard/api/auth/key', 'invalid_token');
    76. 

  76. 		}
    77. 

  77. 		$db = Loader::db();
    78. 

  78. 		$obj->active = 0;
    79. 

  79. 		$obj->save();
    80. 

  80. 		$this->redirect('/dashboard/api/auth/key', 'disabled');
    81. 

  81. 

  82. 	}
    83. 

  83. 

  84. 	public function enable($key = false, $token = false) {
    85. 

  85. 		if(!$key || !$token) { //if this happens they someone is trying to hack it so no error message for them.
    86. 

  86. 			$this->redirect('/dashboard/api/auth/key');
    87. 

  87. 		}
    88. 

  88. 		$obj = ApiAuthKeyModel::getByAppID($key);
    89. 

  89. 		if(!is_object($obj) || !$obj->appID) {
    90. 

  90. 			$this->redirect('/dashboard/api/auth/key', 'invalid_key');
    91. 

  91. 		}
    92. 

  92. 		$valt = Loader::helper('validation/token');
    93. 

  93. 		if(!$valt->validate('enable', $token)) {
    94. 

  94. 			$this->redirect('/dashboard/api/auth/key', 'invalid_token');
    95. 

  95. 		}
    96. 

  96. 		$obj->active = 1;
    97. 

  97. 		$obj->save();
    98. 

  98. 		$this->redirect('/dashboard/api/auth/key', 'enabled');
    99. 

  99. 

  100. 	}
    101. 

  101. 

  102. }
    103.