/private/syncInit.php

https://github.com/ciniki/core · PHP · 151 lines · 95 code · 12 blank · 44 comment · 36 complexity · 9dc8fa72c1c3853f99cdfae85415cddd MD5 · raw file 

    

  1. <?php
    2. 

  2. //
    3. 

  3. // Description
    4. 

  4. // -----------
    5. 

  5. // This function will initialize the sync, and pull the request from the POST content
    6. 

  6. //
    7. 

  7. // Arguments
    8. 

  8. // ---------
    9. 

  9. // ciniki_root:         The root of the ciniki install, which must contain a ciniki-api.ini file.
    10. 

  10. //
    11. 

  11. function ciniki_core_syncInit($ciniki_root) {
    12. 

  12. 

  13.     //
    14. 

  14.     // Initialize the ciniki structure, and setup the return value
    15. 

  15.     // to include the stat.
    16. 

  16.     //
    17. 

  17.     $ciniki = array();
    18. 

  18. 

  19.     //
    20. 

  20.     // Load the config
    21. 

  21.     //
    22. 

  22.     require_once($ciniki_root . '/ciniki-mods/core/private/loadCinikiConfig.php');
    23. 

  23.     if( ciniki_core_loadCinikiConfig($ciniki, $ciniki_root) == false ) {
    24. 

  24.         return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.208', 'msg'=>'Internal configuration error'));
    25. 

  25.     }
    26. 

  26. 

  27.     //
    28. 

  28.     // Initialize Database
    29. 

  29.     //
    30. 

  30.     ciniki_core_loadMethod($ciniki, 'ciniki', 'core', 'private', 'dbInit');
    31. 

  31.     $rc = ciniki_core_dbInit($ciniki);
    32. 

  32.     if( $rc['stat'] != 'ok' ) {
    33. 

  33.         return $rc;
    34. 

  34.     }
    35. 

  35. 

  36.     //
    37. 

  37.     // The synctype (type), tenant UUID (uuid) must be specifed in the URL
    38. 

  38.     //
    39. 

  39.     if( !isset($_GET) || !is_array($_GET)  ) {
    40. 

  40.         return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.209', 'msg'=>'Internal configuration error'));
    41. 

  41.     }
    42. 

  42. 

  43.     //
    44. 

  44.     // Check the request, make sure it's valid
    45. 

  45.     // We only allow the sync type of tenant right now.
    46. 

  46.     // The remote end must pass their tenant uuid, so we know which sync connection to use.
    47. 

  47.     //
    48. 

  48.     if( !isset($_GET['type']) || $_GET['type'] != 'tenant' 
    49. 

  49.         || !isset($_GET['uuid']) || $_GET['uuid'] == '' 
    50. 

  50.         || !isset($_GET['from']) || $_GET['from'] == '' ) {
    51. 

  51.         return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.210', 'msg'=>'Internal configuration error'));
    52. 

  52.     }
    53. 

  53.     $ciniki['sync'] = array('type'=>$_GET['type'], 'local_uuid'=>$_GET['uuid'], 'remote_uuid'=>$_GET['from']);
    54. 

  54. 

  55.     //
    56. 

  56.     // Get the local_private_key to decode the request
    57. 

  57.     //
    58. 

  58.     ciniki_core_loadMethod($ciniki, 'ciniki', 'core', 'private', 'dbQuote');
    59. 

  59.     $strsql = "SELECT ciniki_tenant_syncs.id AS sync_id, "
    60. 

  60.         . "ciniki_tenants.id AS tnid, ciniki_tenants.uuid, "
    61. 

  61.         . "ciniki_tenants.sitename, "
    62. 

  62.         . "ciniki_tenant_syncs.status, "
    63. 

  63.         . "ciniki_tenant_syncs.flags, "
    64. 

  64.         . "local_private_key, "
    65. 

  65.         . "ciniki_tenant_syncs.remote_name, ciniki_tenant_syncs.remote_uuid, "
    66. 

  66.         . "ciniki_tenant_syncs.remote_url, ciniki_tenant_syncs.remote_public_key "
    67. 

  67.         . "FROM ciniki_tenants, ciniki_tenant_syncs "
    68. 

  68.         . "WHERE ciniki_tenants.uuid = '" . ciniki_core_dbQuote($ciniki, $ciniki['sync']['local_uuid']) . "' "
    69. 

  69.         . "AND ciniki_tenants.id = ciniki_tenant_syncs.tnid "
    70. 

  70.         . "AND ciniki_tenant_syncs.remote_uuid = '" . ciniki_core_dbQuote($ciniki, $ciniki['sync']['remote_uuid']) . "' "
    71. 

  71.         . "";
    72. 

  72.     ciniki_core_loadMethod($ciniki, 'ciniki', 'core', 'private', 'dbHashQuery');
    73. 

  73.     $rc = ciniki_core_dbHashQuery($ciniki, $strsql, 'ciniki.tenants', 'sync');
    74. 

  74.     if( $rc['stat'] != 'ok' ) {
    75. 

  75.         return $rc;
    76. 

  76.     }
    77. 

  77.     if( !isset($rc['sync']) ) {
    78. 

  78.         return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.211', 'msg'=>'Internal configuration error'));
    79. 

  79.     }
    80. 

  80.     if( $rc['sync']['status'] != '10' ) {
    81. 

  81.         return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.212', 'msg'=>'Suspended sync'));
    82. 

  82.     }
    83. 

  83. 

  84.     $local_private_key = $rc['sync']['local_private_key'];
    85. 

  85.     $ciniki['sync']['local_private_key'] = $rc['sync']['local_private_key'];
    86. 

  86.     $ciniki['sync']['remote_name'] = $rc['sync']['remote_name'];
    87. 

  87.     $ciniki['sync']['remote_uuid'] = $rc['sync']['remote_uuid'];
    88. 

  88.     $ciniki['sync']['remote_url'] = $rc['sync']['remote_url'];
    89. 

  89.     $ciniki['sync']['remote_public_key'] = $rc['sync']['remote_public_key'];
    90. 

  90.     $ciniki['sync']['tnid'] = $rc['sync']['tnid'];
    91. 

  91.     $ciniki['sync']['sitename'] = $rc['sync']['sitename'];
    92. 

  92.     $ciniki['sync']['id'] = $rc['sync']['sync_id'];
    93. 

  93.     // uuidmaps stores the mappings from remote to local uuid
    94. 

  94.     $ciniki['sync']['uuidmaps'] = array();
    95. 

  95.     // uuids is a cache for looked up uuids in different modules
    96. 

  96.     $ciniki['sync']['uuids'] = array();
    97. 

  97.     $ciniki['syncqueue'] = array();
    98. 

  98.     if( isset($ciniki['config']['ciniki.core']['sync.log_lvl']) ) {
    99. 

  99.         $ciniki['syncloglvl'] = $ciniki['config']['ciniki.core']['sync.log_lvl'];
    100. 

  100.     } else {
    101. 

  101.         $ciniki['syncloglvl'] = 0;
    102. 

  102.     }
    103. 

  103.     $ciniki['synclogfile'] = '';
    104. 

  104. 

  105.     //
    106. 

  106.     // unserialize the POST content
    107. 

  107.     //
    108. 

  108.     if( isset($_POST) && is_array($_POST) ) {
    109. 

  109.         $encrypted_content = file_get_contents("php://input");
    110. 

  110. 

  111.         // unencrypt
    112. 

  112.         // private_decrypt and encrypt can only be used for short strings
    113. 

  113. //      if( !openssl_private_decrypt($encrypted_content, $decrypted_content, $local_private_key) ) {
    114. 

  114.         $arsp = preg_split('/:::/', $encrypted_content);
    115. 

  115.         if( count($arsp) != 2 || !isset($arsp[1]) ) {
    116. 

  116.             return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.213', 'msg'=>'Invalid request'));
    117. 

  117.         }
    118. 

  118.         if( !openssl_open(base64_decode($arsp[1]), $decrypted_content, base64_decode($arsp[0]), $local_private_key) ) {
    119. 

  119.             return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.214', 'msg'=>'Internal configuration error'));
    120. 

  120.         }
    121. 

  121.         
    122. 

  122.         // unserialize
    123. 

  123.         $request = unserialize($decrypted_content);
    124. 

  124.         if( !is_array($request) ) {
    125. 

  125.             return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.215', 'msg'=>'Internal configuration error'));
    126. 

  126.         }
    127. 

  127.         $ciniki['request'] = $request;
    128. 

  128. 

  129.         //
    130. 

  130.         // Check the ts to make sure it's within 1 minute of UTC
    131. 

  131.         // This makes sure that the request is current, and not a cut and paste, listening in the middle.  If
    132. 

  132.         // the timestamp decrypts and is accurate, it is assumed the request is valid.
    133. 

  133.         //
    134. 

  134.         date_default_timezone_set('UTC');
    135. 

  135.         if( !isset($ciniki['request']['ts']) 
    136. 

  136.             || $ciniki['request']['ts'] <= 0 
    137. 

  137.             || abs(time() - $ciniki['request']['ts']) > 60 ) {
    138. 

  138.             return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.216', 'msg'=>'System Clocks out of sync'));
    139. 

  139.         }
    140. 

  140.         if( !isset($ciniki['request']['method']) 
    141. 

  141.             || $ciniki['request']['method'] == ''
    142. 

  142.             ) {
    143. 

  143.             return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.217', 'msg'=>'No action specified'));
    144. 

  144.         }
    145. 

  145.     } else {
    146. 

  146.         return array('stat'=>'fail', 'err'=>array('code'=>'ciniki.core.218', 'msg'=>'Invalid request'));
    147. 

  147.     }
    148. 

  148. 

  149.     return array('stat'=>'ok', 'ciniki'=>$ciniki);
    150. 

  150. }
    151. 

  151. ?>
    152.