PageRenderTime 54ms CodeModel.GetById 20ms RepoModel.GetById 0ms app.codeStats 0ms

/applications/dashboard/controllers/api/ConfigApiController.php

http://github.com/vanillaforums/Garden
PHP | 217 lines | 124 code | 28 blank | 65 comment | 10 complexity | e2e30d2b7e219e9cee10273a0b6c623e MD5 | raw file
Possible License(s): LGPL-2.1, GPL-2.0, AGPL-1.0, BSD-3-Clause, MIT 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * @author Todd Burry <todd@vanillaforums.com>
    4. 

  4.  * @copyright 2009-2020 Vanilla Forums Inc.
    5. 

  5.  * @license GPL-2.0-only
    6. 

  6.  */
    7. 

  7. 

  8. namespace Vanilla\Dashboard\Controllers\API;
    9. 

  9. 

  10. use Garden\Schema\Schema;
    11. 

  11. use Garden\Web\Data;
    12. 

  12. use Vanilla\Contracts\ConfigurationInterface;
    13. 

  13. use Vanilla\FileUtils;
    14. 

  14. use Vanilla\OpenAPIBuilder;
    15. 

  15. use Vanilla\Utility\ArrayUtils;
    16. 

  16. use Vanilla\Web\Controller;
    17. 

  17. 

  18. /**
    19. 

  19.  * API endpoints for the /config resource.
    20. 

  20.  */
    21. 

  21. final class ConfigApiController extends Controller {
    22. 

  22.     public const PERM_PUBLIC = 'public';
    23. 

  23.     public const PERM_MEMBER = 'member';
    24. 

  24.     public const PERM_MODERATOR = 'community.moderate';
    25. 

  25.     public const PERM_COMMUNITY_MANAGER = 'community.manage';
    26. 

  26.     public const PERM_ADMIN = 'site.manage';
    27. 

  27. 

  28.     /**
    29. 

  29.      * All of the permissions that are valid for config reading.
    30. 

  30.      */
    31. 

  31.     public const READ_PERMS = [
    32. 

  32.         self::PERM_PUBLIC,
    33. 

  33.         self::PERM_MEMBER,
    34. 

  34.         self::PERM_MODERATOR,
    35. 

  35.         self::PERM_COMMUNITY_MANAGER,
    36. 

  36.         self::PERM_ADMIN,
    37. 

  37.     ];
    38. 

  38. 

  39.     /**
    40. 

  40.      * All of the permissions that are valid for config writing.
    41. 

  41.      */
    42. 

  42.     public const WRITE_PERMS = [
    43. 

  43.         self::PERM_COMMUNITY_MANAGER,
    44. 

  44.         self::PERM_ADMIN,
    45. 

  45.     ];
    46. 

  46. 

  47.     /**
    48. 

  48.      * @var OpenAPIBuilder
    49. 

  49.      */
    50. 

  50.     private $apiBuilder;
    51. 

  51. 

  52.     /**
    53. 

  53.      * @var ConfigurationInterface
    54. 

  54.      */
    55. 

  55.     private $config;
    56. 

  56. 

  57.     /**
    58. 

  58.      * @var string
    59. 

  59.      */
    60. 

  60.     private $cachePath;
    61. 

  61. 

  62.     /**
    63. 

  63.      * ConfigApiController constructor.
    64. 

  64.      *
    65. 

  65.      * @param OpenAPIBuilder $apiBuilder
    66. 

  66.      * @param ConfigurationInterface $config
    67. 

  67.      * @param string $cachePath
    68. 

  68.      */
    69. 

  69.     public function __construct(OpenAPIBuilder $apiBuilder, ConfigurationInterface $config, string $cachePath = '') {
    70. 

  70.         $this->apiBuilder = $apiBuilder;
    71. 

  71.         $this->config = $config;
    72. 

  72.         $this->cachePath = $cachePath ?: PATH_CACHE.'/config-schema.php';
    73. 

  73.     }
    74. 

  74. 

  75.     /**
    76. 

  76.      * The GET /api/v2/config endpoint.
    77. 

  77.      *
    78. 

  78.      * @param array $query
    79. 

  79.      * @return Data
    80. 

  80.      */
    81. 

  81.     public function get(array $query = []): Data {
    82. 

  82.         $in = $this->schema([
    83. 

  83.             'select?' => [
    84. 

  84.                 'type' => 'array',
    85. 

  85.                 'items' => [
    86. 

  86.                     'type' => 'string'
    87. 

  87.                 ],
    88. 

  88.                 'style' => 'form',
    89. 

  89.             ]
    90. 

  90.         ], 'in');
    91. 

  91.         $query = $in->validate($query);
    92. 

  92. 

  93.         $select = $query['select'] ?? null;
    94. 

  94. 

  95.         $out = $this->getConfigSchema();
    96. 

  96.         $result = [];
    97. 

  97.         foreach ($out->getField('properties') as $key => $item) {
    98. 

  98.             if (is_array($select)) {
    99. 

  99.                 $matched = false;
    100. 

  100.                 foreach ($select as $pattern) {
    101. 

  101.                     if (fnmatch($pattern, $key)) {
    102. 

  102.                         $matched = true;
    103. 

  103.                         break;
    104. 

  104.                     }
    105. 

  105.                 }
    106. 

  106.                 if (!$matched) {
    107. 

  107.                     continue;
    108. 

  108.                 }
    109. 

  109.             }
    110. 

  110. 

  111.             $permission = $this->realPermissionName($item['x-read'] ?? self::PERM_ADMIN);
    112. 

  112.             if ($permission === 'public' ||
    113. 

  113.                 ($permission === self::PERM_MEMBER && $this->getSession()->isValid()) ||
    114. 

  114.                 $this->getSession()->checkPermission($permission)
    115. 

  115.             ) {
    116. 

  116.                 $configKey = $item['x-key'] ?? $key;
    117. 

  117.                 $result[$key] = $this->config->get($configKey, $item['default'] ?? null);
    118. 

  118.             }
    119. 

  119.         }
    120. 

  120.         return new Data($result);
    121. 

  121.     }
    122. 

  122. 

  123.     /**
    124. 

  124.      * The PATCH /api/v2/config endpoint
    125. 

  125.      *
    126. 

  126.      * @param array $body
    127. 

  127.      * @return Data
    128. 

  128.      */
    129. 

  129.     public function patch(array $body): Data {
    130. 

  130.         $in = $this->getConfigSchema();
    131. 

  131. 

  132.         // ApiKey => ConfigKey
    133. 

  133.         $propertyMapping = [];
    134. 

  134.         // Make sure the user has all necessary permissions.
    135. 

  135.         $permissions = [];
    136. 

  136.         foreach ($in->getField('properties') as $key => $item) {
    137. 

  137.             if (array_key_exists($key, $body)) {
    138. 

  138.                 $permissions[$this->realPermissionName($item['x-write'] ?? self::PERM_ADMIN)] = true;
    139. 

  139.             }
    140. 

  140. 

  141.             $actualConfigKey = $item['x-key'] ?? $key;
    142. 

  142.             if ($actualConfigKey !== $key) {
    143. 

  143.                 $propertyMapping[$key] = $actualConfigKey;
    144. 

  144.             }
    145. 

  145.         }
    146. 

  146.         $this->permission(array_keys($permissions));
    147. 

  147. 

  148.         $in->setFlag(Schema::VALIDATE_EXTRA_PROPERTY_EXCEPTION, true);
    149. 

  149. 

  150.         $valid = $in->validate($body, true);
    151. 

  151. 

  152.         $mapped = [];
    153. 

  153.         foreach ($valid as $key => $value) {
    154. 

  154.             $configKey = $propertyMapping[$key] ?? $key;
    155. 

  155.             $mapped[$configKey] = $value;
    156. 

  156.         }
    157. 

  157. 

  158.         $this->config->saveToConfig($mapped);
    159. 

  159. 

  160.         return new Data(null);
    161. 

  161.     }
    162. 

  162. 

  163.     /**
    164. 

  164.      * Return the config data schema.
    165. 

  165.      *
    166. 

  166.      * @return Data
    167. 

  167.      */
    168. 

  168.     public function get_schema(): Data {
    169. 

  169.         $this->permission('Garden.Settings.Manage');
    170. 

  170. 

  171.         $schema = $this->getConfigSchema();
    172. 

  172.         $r = new Data($schema->getSchemaArray());
    173. 

  173.         return $r;
    174. 

  174.     }
    175. 

  175. 

  176.     /**
    177. 

  177.      * Get the config schema.
    178. 

  178.      *
    179. 

  179.      * @return Schema
    180. 

  180.      */
    181. 

  181.     private function getConfigSchema(): Schema {
    182. 

  182.         if (file_exists($this->cachePath)) {
    183. 

  183.             $r = FileUtils::getExport($this->cachePath);
    184. 

  184.         } else {
    185. 

  185.             $r = $this->buildConfigSchemaArray();
    186. 

  186.             FileUtils::putExport($this->cachePath, $r);
    187. 

  187.         }
    188. 

  188.         return new Schema($r);
    189. 

  189.     }
    190. 

  190. 

  191.     /**
    192. 

  192.      * Build the config schema.
    193. 

  193.      *
    194. 

  194.      * @return array
    195. 

  195.      */
    196. 

  196.     private function buildConfigSchemaArray(): array {
    197. 

  197.         $openAPI = $this->apiBuilder->getFullOpenAPI();
    198. 

  198.         $config = $openAPI['components']['schemas']['Config'];
    199. 

  199.         ksort($config['properties']);
    200. 

  200. 

  201.         return $config;
    202. 

  202.     }
    203. 

  203. 

  204.     /**
    205. 

  205.      * Get the real permission name corresponding to the permission requested.
    206. 

  206.      *
    207. 

  207.      * @param string $permission
    208. 

  208.      * @return string
    209. 

  209.      */
    210. 

  210.     private function realPermissionName(string $permission) {
    211. 

  211.         if (in_array($permission, [self::PERM_PUBLIC, self::PERM_MEMBER])) {
    212. 

  212.             return $permission;
    213. 

  213.         }
    214. 

  214. 

  215.         return $this->getSession()->getPermissions()->untranslatePermission($permission);
    216. 

  216.     }
    217. 

  217. }
    218. 

  218.