libs/phplibrary
3
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Альтернативный белый список

Browse source
This commit is contained in:
Origami11 2020-11-02 18:00:14 +03:00
parent 86a180123b
commit 82c129305e
19 changed files with 82 additions and 131 deletions
Download patch file Download diff file Expand all files Collapse all files

1
src/Controller/Action.php
View file

@ -331,6 +331,7 @@ class Controller_Action
if ($this->view instanceof View_View) { if ($this->view instanceof View_View) {
$this->view->assignValues($this->ctrlValues); $this->view->assignValues($this->ctrlValues);
/*.Widgets_Widget.*/$node = null;
foreach ($this->childNodes as $name => $node) { foreach ($this->childNodes as $name => $node) {
$node->make($this); $node->make($this);
$this->view->setView($name, $node->view); $this->view->setView($name, $node->view);

12
src/Controller/Component.php
View file

@ -23,7 +23,8 @@ class ComponentRequest {
if ($key == 'active_page') { if ($key == 'active_page') {
return $this->r->get($key); return $this->r->get($key);
} }
if ($arr = $this->r->get($key)) { $arr = $this->r->get($key);
if ($arr !== NULL) {
if (is_array($arr)) { if (is_array($arr)) {
return Arr::get($arr, $this->component_id, $default); return Arr::get($arr, $this->component_id, $default);
} else { } else {
@ -127,6 +128,14 @@ class Controller_Component
} }
public function getTemplatePath($name) { public function getTemplatePath($name) {
/*.Settings.*/$registry = $this->registry;
$template = ($this->template) ? $this->template : $registry->readKey(array('system', 'template'));
foreach ($this->viewPath as $index => $viewPath) {
if(is_dir(Path::join($this->viewPath[$index], 'templates', $template))) {
return Path::join($this->viewPath[$index], 'templates', $template, $name);
}
}
return Path::join($this->viewPath[0], 'templates', 'modern', $name); return Path::join($this->viewPath[0], 'templates', 'modern', $name);
} }
@ -274,7 +283,6 @@ class Controller_Component
} else { } else {
global $componentsConfig; global $componentsConfig;
$componentsConfig[] = $editor; $componentsConfig[] = $editor;
} }
} }

14
src/Controller/Service.php
View file

@ -5,12 +5,15 @@
*/ */
class Controller_Service class Controller_Service
{ {
public $viewPath = array(); public $viewPath = [];
public $webPath = [];
public $registry; // Registry->getInstance public $registry; // Registry->getInstance
public $template; public $template;
public $templatePath; public $templatePath;
public $COMPONENTS_WEB; public $COMPONENTS_WEB;
public $db;
public function getTemplatePath($name) public function getTemplatePath($name)
{ {
return Path::join($this->viewPath[0], 'templates', 'modern', $name); return Path::join($this->viewPath[0], 'templates', 'modern', $name);
@ -58,5 +61,14 @@ class Controller_Service
} }
return $result; return $result;
} }
function getInfo() {
$filename = Path::join($this->viewPath[0], 'install.json');
if (file_exists($filename)) {
$settings = json_decode(File::getContents($filename), true);
return $settings;
}
return array();
}
} }

11
src/Database.php
View file

@ -1,6 +1,7 @@
<?php <?php
///<reference path="Database/PDOStatement.php" /> ///<reference path="Database/PDOStatement.php" />
require_once "Database/PDOStatement.php"; require_once "Database/PDOStatement.php";
/** /**
* Класс оболочка для PDO для замены Creole * Класс оболочка для PDO для замены Creole
*/ */
@ -12,9 +13,15 @@ class Database extends PDO
{ {
parent::__construct($dsn, $username, $password); parent::__construct($dsn, $username, $password);
$this->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $this->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION);
$this->setAttribute(PDO::ATTR_DEFAULT_FETCH_MODE, PDO::FETCH_ASSOC);
$this->setAttribute(PDO::ATTR_STATEMENT_CLASS, array('Database_PDOStatement', array())); $this->setAttribute(PDO::ATTR_STATEMENT_CLASS, array('Database_PDOStatement', array()));
} }
function prepare($sql, $args = []) {
$result = parent::prepare($sql, $args);
return $result;
}
public function getDSN() public function getDSN()
{ {
return $this->dsn; return $this->dsn;
@ -34,6 +41,10 @@ class Database extends PDO
if ($dsn['phptype'] == 'pgsql') { if ($dsn['phptype'] == 'pgsql') {
$connection->query('SET client_encoding="UTF-8"'); $connection->query('SET client_encoding="UTF-8"');
} }
if (isset($dsn['schema'])) {
$connection->query('SET search_path TO ' . $dsn['schema']);
}
} }
if ($dsn['phptype'] == 'sqlite') { if ($dsn['phptype'] == 'sqlite') {
/*.Database.*/$connection = new static("{$dsn['phptype']}:{$dsn['database']}"); /*.Database.*/$connection = new static("{$dsn['phptype']}:{$dsn['database']}");

12
src/Database/PDOStatement.php
View file

@ -1,7 +1,5 @@
<?php <?php
require_once __DIR__ .'/../Tools/String.php';
class Database_PDOStatement extends PDOStatement implements IteratorAggregate class Database_PDOStatement extends PDOStatement implements IteratorAggregate
{ {
protected $cursorPos = 0; protected $cursorPos = 0;
@ -76,7 +74,7 @@ class Database_PDOStatement extends PDOStatement implements IteratorAggregate
} }
function getString($name) { function getString($name) {
return $this->fields[$name]; return isset($this->fields[$name]) ? $this->fields[$name]: null;
} }
function getBoolean($name) { function getBoolean($name) {
@ -88,10 +86,16 @@ class Database_PDOStatement extends PDOStatement implements IteratorAggregate
} }
function getArray($name) { function getArray($name) {
return strToArray($this->fields[$name]); return Tools_String::strToArray($this->fields[$name]);
} }
function getRecordCount() { function getRecordCount() {
return count($this->cache); return count($this->cache);
} }
function execute($args = null) {
$result = parent::execute($args);
return $result;
}
} }

18
src/Database/Statement.php
View file

@ -17,33 +17,27 @@ class Database_Statement
$this->conn = $conn; $this->conn = $conn;
} }
function setInt($n, $value) function setInt($n, $value) {
{
$this->binds [] = array($n, $value, PDO::PARAM_INT); $this->binds [] = array($n, $value, PDO::PARAM_INT);
} }
function setString($n, $value) function setString($n, $value) {
{
$this->binds [] = array($n, $value, PDO::PARAM_STR); $this->binds [] = array($n, $value, PDO::PARAM_STR);
} }
function setBlob($n, $value) function setBlob($n, $value) {
{
$this->binds [] = array($n, $value, PDO::PARAM_LOB); $this->binds [] = array($n, $value, PDO::PARAM_LOB);
} }
function setLimit($limit) function setLimit($limit) {
{
$this->limit = $limit; $this->limit = $limit;
} }
function setOffset($offset) function setOffset($offset) {
{
$this->offset = $offset; $this->offset = $offset;
} }
function executeQuery() function executeQuery() {
{
if ($this->limit) { if ($this->limit) {
$this->query .= " LIMIT {$this->limit} OFFSET {$this->offset}"; $this->query .= " LIMIT {$this->limit} OFFSET {$this->offset}";
} }

2
src/Excel/Number.php
View file

@ -6,7 +6,7 @@ class Excel_Number
function __construct($value) function __construct($value)
{ {
$this->value = intval($value); $this->value = (int)($value);
} }
function getString() function getString()

2
src/Filter/Filter.php
View file

@ -6,7 +6,7 @@
class Filter_Filter class Filter_Filter
{ {
public $processor; public $processor;
public function __construct(/*.Filter_Filter.*/$processor) public function __construct(/*.Controller_Action.*/$processor)
{ {
$this->processor = $processor; $this->processor = $processor;
} }

18
src/Filter/Login.php
View file

@ -13,12 +13,8 @@ class Filter_Login extends Filter_Filter
const SESSION_BROWSER_SIGN_SECRET = '@w3dsju45Msk#'; const SESSION_BROWSER_SIGN_SECRET = '@w3dsju45Msk#';
const SESSION_BROWSER_SIGN_KEYNAME = 'session.app.browser.sign'; const SESSION_BROWSER_SIGN_KEYNAME = 'session.app.browser.sign';
public $mode = 'ajax'; public $mode = 'ajax';
public $user;
//AJAX-Реквесты для которых не требуется авторизация, потребовалось для сбора статистики
public $whiteRequestList = [['module' => "requiredcontent", "action" => "getcount"],
['module' => "requiredcontent", "action" => "teststructure"],
['module' => "requiredcontent", "action" => "specialdump"]
];
/** /**
* Проверка авторизации * Проверка авторизации
* @return Boolean Авторизовани пользователь или нет * @return Boolean Авторизовани пользователь или нет
@ -29,6 +25,7 @@ class Filter_Login extends Filter_Filter
session_start(); session_start();
$db = $this->getConnection(); $db = $this->getConnection();
Filter_UserAccess::setUp($db); // Соединение Filter_UserAccess::setUp($db); // Соединение
switch ($request->getAction()) { switch ($request->getAction()) {
// Авторизация по постоянному паролю // Авторизация по постоянному паролю
case 'login': case 'login':
@ -142,7 +139,7 @@ class Filter_Login extends Filter_Filter
// Параметры при неправильной авторизации // Параметры при неправильной авторизации
// Действия по умолчанию !! Возможно переход на форму регистрации // Действия по умолчанию !! Возможно переход на форму регистрации
if ($request->get('mode') == 'ajax') { if ($request->get('mode') == 'ajax') {
if (!$this->requestIsWhite($request, $this->whiteRequestList)) { if (!$this->requestIsWhite($request)) {
return json_encode(array('result' => 'fail', 'message' =>"NOT_AUTHORIZED")); return json_encode(array('result' => 'fail', 'message' =>"NOT_AUTHORIZED"));
} }
} else { } else {
@ -165,11 +162,14 @@ class Filter_Login extends Filter_Filter
* Проверка на попадание реквеста в белый список * Проверка на попадание реквеста в белый список
*/ */
public function requestIsWhite(Collection $request, $whiteRequestList){ public function requestIsWhite(Collection $request) {
$module = $request->get('module'); $module = $request->get('module');
$action = $request->get('action'); $action = $request->get('action');
foreach ($whiteRequestList as $whiteRequest) {
if ($module == $whiteRequest['module'] && $action == $whiteRequest['action']) { $file = Path::join(CMS_PATH, 'modules', $module, 'filters', 'white.php');
if (file_exists($file)) {
$whiteList = include $file;
if (in_array($action, $whiteList)) {
return true; return true;
} }
} }

2
src/Filter/UserAccess.php
View file

@ -62,7 +62,7 @@ class Filter_UserAccess
$time = time(); $time = time();
if ($time - $lasttime > self::LIFE_TIME) return null; // Вышло время сессии if ($time - $lasttime > self::LIFE_TIME) return null; // Вышло время сессии
$id = self::$id; $id = self::$id;
self::$db->executeQuery("UPDATE users SET lasttime = $time WHERE id_user = $id"); // Время последнего обращения входа // self::$db->executeQuery("UPDATE users SET lasttime = $time WHERE id_user = $id"); // Время последнего обращения входа
} }
return $result; return $result;
} }

2
src/Path.php
View file

@ -287,7 +287,7 @@ class Path
$result [] = $parts->getParts(); $result [] = $parts->getParts();
} }
// При обьединении ссылок можно обьеденить path, query, fragment // При обьединении ссылок можно обьеденить path, query, fragment
$path = implode(self::SEPARATOR, call_user_func_array('array_merge', $result)); $path = implode(self::SEPARATOR, self::optimize(call_user_func_array('array_merge', $result)));
$parts0->url['path'] = ($parts0->isAbsolute()) ? '/' . $path : $path; $parts0->url['path'] = ($parts0->isAbsolute()) ? '/' . $path : $path;
return $parts0; return $parts0;
} }

2
src/Registry.php
View file

@ -1,6 +1,6 @@
<?php <?php
///<reference path="settings.php" /> ///<reference path="Settings.php" />
/** /**
* http://www.patternsforphp.com/wiki/Registry * http://www.patternsforphp.com/wiki/Registry

4
src/Tools/String.php
View file

@ -15,7 +15,7 @@ class Tools_String {
if ($in_subarr > 0) { // already in sub-array? if ($in_subarr > 0) { // already in sub-array?
$subarr[$in_subarr][] = $tok; $subarr[$in_subarr][] = $tok;
if ('}' === substr($tok, -1, 1)) { // check to see if we just added last component if ('}' === substr($tok, -1, 1)) { // check to see if we just added last component
$res[] = strToArray(implode(',', $subarr[$in_subarr])); $res[] = static::strToArray(implode(',', $subarr[$in_subarr]));
$in_subarr--; $in_subarr--;
} }
} elseif ($tok{0} === '{') { // we're inside a new sub-array } elseif ($tok{0} === '{') { // we're inside a new sub-array
@ -25,7 +25,7 @@ class Tools_String {
$subarr[$in_subarr] = array(); $subarr[$in_subarr] = array();
$subarr[$in_subarr][] = $tok; $subarr[$in_subarr][] = $tok;
} else { } else {
$res[] = strToArray($tok); $res[] = static::strToArray($tok);
} }
} else { // not sub-array } else { // not sub-array
$val = trim($tok, '"'); // remove " (surrounding strings) $val = trim($tok, '"'); // remove " (surrounding strings)

18
src/Tools/TemplateImage.php
View file

@ -122,28 +122,26 @@ class Tools_TemplateImage
$text = strtr($text, $this->context); $text = strtr($text, $this->context);
$size = $value->fontSize; $size = $value->fontSize;
fb('font-style');
fb($value->fontStyle);
$fontfile = $this->getFontFile($value->fontFamily . $this->fontSuffix($value->fontStyle)); $fontfile = $this->getFontFile($value->fontFamily . $this->fontSuffix($value->fontStyle));
$color = intval(substr($value->color, 1), 16); $color = intval(substr($value->color, 1), 16);
if ($value->align[0]) { if ($value->align[0]) {
$align = Drawing::ALIGN_LEFT; $align = Tools_Drawing::ALIGN_LEFT;
} elseif ($value->align[2]) { } elseif ($value->align[2]) {
$align = Drawing::ALIGN_RIGHT; $align = Tools_Drawing::ALIGN_RIGHT;
} else { } else {
$align = Drawing::ALIGN_CENTER; $align = Tools_Drawing::ALIGN_CENTER;
} }
if ($value->valign[0]) { if ($value->valign[0]) {
$valign = Drawing::ALIGN_TOP; $valign = Tools_Drawing::ALIGN_TOP;
} elseif ($value->valign[1]) { } elseif ($value->valign[1]) {
$valign = Drawing::ALIGN_CENTER; $valign = Tools_Drawing::ALIGN_CENTER;
} else { } else {
$valign = Drawing::ALIGN_BOTTOM; $valign = Tools_Drawing::ALIGN_BOTTOM;
} }
Drawing::imagettftextbox($this->image, $size, 0, $value->left, $value->top, $color, $fontfile, $text, Tools_Drawing::imagettftextbox($this->image, $size, 0, $value->left, $value->top, $color, $fontfile, $text,
$value->width, $value->height, $value->width, $value->height,
$align, $valign); $align, $valign);
} }
@ -154,7 +152,7 @@ class Tools_TemplateImage
function encode($text) function encode($text)
{ {
assert(is_string($text)); assert(is_string($text));
return iconv("WINDOWS-1251", "UTF-8", $text); return $text; //iconv("WINDOWS-1251", "UTF-8", $text);
} }
function setSize($new_width, $new_height) function setSize($new_width, $new_height)

1
src/Validator/Rule/Date.php
View file

@ -15,6 +15,7 @@ class Validator_Rule_Date extends Validator_Rule_Abstract
public function isValid(Collection $container, $status = null) public function isValid(Collection $container, $status = null)
{ {
$pattern = "/^([0-9]{1,2})\/([0-9]{1,2})\/([0-9]{4})$/"; $pattern = "/^([0-9]{1,2})\/([0-9]{1,2})\/([0-9]{4})$/";
$matches = [];
return (preg_match($pattern, $container->get($this->field), $matches) return (preg_match($pattern, $container->get($this->field), $matches)
&& checkdate($matches[2], $matches[1], $matches[3])); && checkdate($matches[2], $matches[1], $matches[3]));
} }

2
src/Validator/Validator.php
View file

@ -1,6 +1,6 @@
<?php <?php
///<reference path="rule/notnull.php"/> ///<reference path="Rule/Notnull.php"/>
/** /**
* Проверка коллекции * Проверка коллекции

78
src/View/Page.php
View file

@ -1,78 +0,0 @@
<?php
class View_Page extends View_View
{
private $counter;
public $text;
function __construct($data)
{
// Вставка компонентов на странице
$pattern = '/<(\w+)(\s+[a-zA-Z\-]+=\"[^\"]*\")*\s+tal:replace="structure\s+component:([^\"]*)"[^>]*>/u';
$matches = array();
preg_match_all($pattern, $data, $matches, PREG_OFFSET_CAPTURE, 0);
$split = array();
$offset = 0;
foreach ($matches[0] as $key => $match) {
$text = $this->fixHTML(substr($data, $offset, $match[1] - $offset));
if (trim($text)) {
$split[] = array('type' => 'page-text', 'content' => $text, 'component' => '', 'module' => '');
}
$offset = $match[1] + strlen($match[0]);
$split[] = $this->replaceContent($matches[3][$key][0], $matches[3][$key][1]);
}
$text = $this->fixHTML(substr($data, $offset));
if (trim($text)) {
$split[] = array('type' => 'page-text', 'content' => $text, 'component' => '', 'module' => '');
}
$this->text = $this->merge($split);
}
function fixHTML($fragment) {
return $fragment;
}
function merge($data) {
if (count($data) == 0) {
$data[] = array('type' => 'page-text', 'content' =>"<p>Добавьте текст<p>", 'component' => '', 'module' => '');
}
$result = array();
foreach($data as $key => $part) {
$result[] = $part['content'];
}
return implode("", $result);
}
function replaceContent($match, $offset)
{
//$result = phptal_component($match, $offset);
/*.Controller_Component.*/$component = null;
if(class_exists("Controller_Site")){ //Если мы в CMS2
$component = Controller_Site::loadComponent($match);
} else {
global $db, $registry; //
$component = Controller_Component::loadComponent($match, $db, $registry);
}
$req = new HttpRequest();
unset($req['active_page']);
$info = $component->getInfo();
$result = $component->execute($req);
if (is_string($result)) {
return array('type' => 'page-component', 'content' => $result, 'component' => $match);
} else {
$this->setView('view' . $this->counter++, $result);
return array('type' => 'page-component', 'content' => $result->execute(), 'component' => $match);
}
}
function execute() {
return $this->text;
}
}