PageRenderTime 43ms CodeModel.GetById 16ms RepoModel.GetById 0ms app.codeStats 0ms

/web/tracking.php

https://gitlab.com/x33n/platform-application
PHP | 163 lines | 108 code | 22 blank | 33 comment | 17 complexity | b8ddddba360d8039430111823b62c0f4 MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * This is tracking endpoint, which must be as fast as possible.
    4. 

  4.  * KISS.
    5. 

  5.  */
    6. 

  6. 

  7. $trackingFolder = '../app/logs/tracking';
    8. 

  8. $settingsFile   = $trackingFolder . DIRECTORY_SEPARATOR . 'settings.ser';
    9. 

  9. $settings       = [
    10. 

  10.     'dynamic_tracking_enabled'  => true,
    11. 

  11.     'dynamic_tracking_endpoint' => '/tracking/data/create',
    12. 

  12.     'log_rotate_interval'       => 60,
    13. 

  13.     'piwik_host'                => null,
    14. 

  14.     'piwik_token_auth'          => null
    15. 

  15. ];
    16. 

  16. 

  17. /**
    18. 

  18.  * Pass request to given URL.
    19. 

  19.  *
    20. 

  20.  * @param string $url
    21. 

  21.  */
    22. 

  22. function passDataToUrl($url)
    23. 

  23. {
    24. 

  24.     // Send visit to new URL
    25. 

  25.     $handle = curl_init();
    26. 

  26.     curl_setopt($handle, CURLOPT_URL, modifyUrl($url));
    27. 

  27.     curl_setopt($handle, CURLOPT_RETURNTRANSFER, 1);
    28. 

  28.     curl_exec($handle);
    29. 

  29.     curl_close($handle);
    30. 

  30. }
    31. 

  31. 

  32. /**
    33. 

  33.  * @param string $url
    34. 

  34.  *
    35. 

  35.  * @return string
    36. 

  36.  */
    37. 

  37. function modifyUrl($url)
    38. 

  38. {
    39. 

  39.     if (strpos($url, 'http') !== 0) {
    40. 

  40.         $schema = 'http';
    41. 

  41.         if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') {
    42. 

  42.             $schema .= 's';
    43. 

  43.         }
    44. 

  44.         $url = $schema . '://' . $_SERVER['HTTP_HOST'] . $url;
    45. 

  45.     }
    46. 

  46.     // Pass request data to new URL
    47. 

  47.     $delimiter = strpos($url, '?') === false ? '?' : '&';
    48. 

  48.     $url .= $delimiter . $_SERVER['QUERY_STRING'];
    49. 

  49. 

  50.     // Set visit date time
    51. 

  51.     $url .= '&loggedAt=' . urlencode(getLoggedAt());
    52. 

  52. 

  53.     // Set visit IP address
    54. 

  54.     $url .= '&cip=' . urlencode(getClientIp());
    55. 

  55. 

  56.     if (!empty($_SERVER['HTTP_USER_AGENT'])) {
    57. 

  57.         $url .= '&ua=' . urlencode($_SERVER['HTTP_USER_AGENT']);
    58. 

  58.     }
    59. 

  59.     if (!empty($_SERVER['HTTP_ACCEPT_LANGUAGE'])) {
    60. 

  60.         $url .= '&lang=' . urlencode($_SERVER['HTTP_ACCEPT_LANGUAGE']);
    61. 

  61.     }
    62. 

  62. 

  63.     return $url;
    64. 

  64. }
    65. 

  65. 

  66. function getClientIp()
    67. 

  67. {
    68. 

  68.     // Set correct visitor information
    69. 

  69.     if (!empty($_SERVER['HTTP_CLIENT_IP'])) {
    70. 

  70.         $ip = $_SERVER['HTTP_CLIENT_IP'];
    71. 

  71.     } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) {
    72. 

  72.         $ip = $_SERVER['HTTP_X_FORWARDED_FOR'];
    73. 

  73.     } else {
    74. 

  74.         $ip = $_SERVER['REMOTE_ADDR'];
    75. 

  75.     }
    76. 

  76. 

  77.     return $ip;
    78. 

  78. }
    79. 

  79. 

  80. function passDataToApplication($url)
    81. 

  81. {
    82. 

  82.     $_SERVER['REQUEST_URI'] = modifyUrl($url);
    83. 

  83. 

  84.     $_GET['loggedAt'] = getLoggedAt();
    85. 

  85.     $_GET['cip']      = getClientIp();
    86. 

  86.     $_GET['ua']       = $_SERVER['HTTP_USER_AGENT'];
    87. 

  87. 

  88.     require_once __DIR__ . '/../app/bootstrap.php.cache';
    89. 

  89.     require_once __DIR__ . '/../app/AppKernel.php';
    90. 

  90.     $kernel = new AppKernel('prod', false);
    91. 

  91.     $kernel->loadClassCache();
    92. 

  92.     $request = \Symfony\Component\HttpFoundation\Request::createFromGlobals();
    93. 

  93. 

  94.     $kernel->handle($request);
    95. 

  95. }
    96. 

  96. 

  97. /**
    98. 

  98.  * Get log datetime
    99. 

  99.  *
    100. 

  100.  * @return string
    101. 

  101.  */
    102. 

  102. function getLoggedAt()
    103. 

  103. {
    104. 

  104.     $now = new \DateTime('now', new \DateTimeZone('UTC'));
    105. 

  105. 

  106.     return $now->format(\DateTime::ISO8601);
    107. 

  107. }
    108. 

  108. 

  109. // Ensure tracking directory exists and read settings
    110. 

  110. if (is_dir($trackingFolder)) {
    111. 

  111.     if (is_readable($settingsFile)) {
    112. 

  112.         $settings = unserialize(file_get_contents($settingsFile));
    113. 

  113.     }
    114. 

  114. } else {
    115. 

  115.     mkdir($trackingFolder);
    116. 

  116. }
    117. 

  117. 

  118. // Track visit
    119. 

  119. if ($settings['dynamic_tracking_enabled']) {
    120. 

  120.     // Pass visit to dynamic tracking endpoint
    121. 

  121.     passDataToApplication($settings['dynamic_tracking_endpoint']);
    122. 

  122. } else {
    123. 

  123.     // Calculate interval part
    124. 

  124.     $rotateInterval = 60;
    125. 

  125.     $currentPart    = 1;
    126. 

  126.     if ($settings['log_rotate_interval'] > 0 && $settings['log_rotate_interval'] < 60) {
    127. 

  127.         $rotateInterval = (int)$settings['log_rotate_interval'];
    128. 

  128.         $passingMinute  = (int)(date('i')) + 1;
    129. 

  129.         $currentPart    = ceil($passingMinute / $rotateInterval);
    130. 

  130.     }
    131. 

  131. 

  132.     // Construct file name
    133. 

  133.     $date     = new \DateTime('now', new \DateTimeZone('UTC'));
    134. 

  134.     $fileName = $date->format('Ymd-H') . '-' . $rotateInterval . '-' . $currentPart . '.log';
    135. 

  135. 

  136.     // Add visit to log to file
    137. 

  137.     $rawData             = $_GET;
    138. 

  138.     $rawData['loggedAt'] = getLoggedAt();
    139. 

  139.     $data                = json_encode($rawData) . PHP_EOL;
    140. 

  140.     $fh                  = fopen($trackingFolder . DIRECTORY_SEPARATOR . $fileName, 'a');
    141. 

  141.     if (flock($fh, LOCK_EX)) {
    142. 

  142.         fwrite($fh, $data);
    143. 

  143.         fflush($fh);
    144. 

  144.         flock($fh, LOCK_UN);
    145. 

  145.     }
    146. 

  146.     fclose($fh);
    147. 

  147. }
    148. 

  148. 

  149. // Pass tracking request to piwik instance
    150. 

  150. if ($settings['piwik_host']) {
    151. 

  151.     $piwikTrackingUrl = $settings['piwik_host'] . '/piwik.php';
    152. 

  152.     if ($settings['piwik_token_auth']) {
    153. 

  153.         $piwikTrackingUrl .= '?token_auth=' . urlencode($settings['piwik_token_auth']);
    154. 

  154.     }
    155. 

  155. 

  156.     passDataToUrl($piwikTrackingUrl);
    157. 

  157. }
    158. 

  158. 

  159. //Disable XSS Auditor
    160. 

  160. header('X-XSS-Protection: 0');
    161. 

  161. //Send 1x1 blank gif
    162. 

  162. header('Content-Type: image/gif');
    163. 

  163. echo base64_decode('R0lGODlhAQABAJAAAP8AAAAAACH5BAUQAAAALAAAAAABAAEAAAICBAEAOw==');
    164. 

  164.