2 // +----------------------------------------------------------------------+
3 // | Anuko Time Tracker
4 // +----------------------------------------------------------------------+
5 // | Copyright (c) Anuko International Ltd. (https://www.anuko.com)
6 // +----------------------------------------------------------------------+
7 // | LIBERAL FREEWARE LICENSE: This source code document may be used
8 // | by anyone for any purpose, and freely redistributed alone or in
9 // | combination with other software, provided that the license is obeyed.
11 // | There are only two ways to violate the license:
13 // | 1. To redistribute this code in source form, with the copyright
14 // | notice or license removed or altered. (Distributing in compiled
15 // | forms without embedded copyright notices is permitted).
17 // | 2. To redistribute modified versions of this code in *any* form
18 // | that bears insufficient indications that the modifications are
19 // | not the work of the original author(s).
21 // | This license applies to this document only, not any other software
22 // | that it may be combined with.
24 // +----------------------------------------------------------------------+
26 // | https://www.anuko.com/time_tracker/credits.htm
27 // +----------------------------------------------------------------------+
29 // ttFileHelper class is used for attachment handling.
31 var $errors = null; // Errors go here. Set in constructor by reference.
32 var $storage_uri = null; // Location of file storage facility.
33 var $register_uri = null; // URI to register with file storage facility.
34 var $putfile_uri = null; // URI to put file in file storage.
35 var $deletefile_uri = null; // URI to delete file from file storage.
36 var $deletefiles_uri = null; // URI to delete multiple files from file storage.
37 var $getfile_uri = null; // URI to get file from file storage.
38 var $site_id = null; // Site id for file storage.
39 var $site_key = null; // Site key for file storage.
40 var $file_data = null; // Downloaded file data.
43 function __construct(&$errors) {
44 $this->errors = &$errors;
46 if (defined('FILE_STORAGE_URI')) {
47 $this->storage_uri = FILE_STORAGE_URI;
48 $this->register_uri = $this->storage_uri.'register';
49 $this->putfile_uri = $this->storage_uri.'putfile';
50 $this->deletefile_uri = $this->storage_uri.'deletefile';
51 $this->deletefiles_uri = $this->storage_uri.'deletefiles';
52 $this->getfile_uri = $this->storage_uri.'getfile';
53 $this->checkSiteRegistration();
57 // checkSiteRegistration - obtains site id and key from local database.
58 // If not found, it tries to register with file storage facility.
59 function checkSiteRegistration() {
62 $mdb2 = getConnection();
65 $sql = "select param_value as id from tt_site_config where param_name = 'locker_id'";
66 $res = $mdb2->query($sql);
67 $val = $res->fetchRow();
69 // No site id found, need to register.
70 $fields = array('name' => urlencode('time tracker'),
71 'origin' => urlencode('time tracker source'));
73 // Urlify the data for the POST.
74 foreach($fields as $key=>$value) { $fields_string .= $key.'='.$value.'&'; }
75 $fields_string = rtrim($fields_string, '&');
80 // Set the url, number of POST vars, POST data.
81 curl_setopt($ch, CURLOPT_URL, $this->register_uri);
82 curl_setopt($ch, CURLOPT_POST, true);
83 curl_setopt($ch, CURLOPT_POSTFIELDS, $fields_string);
84 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
86 // Execute a post request.
87 $result = curl_exec($ch);
92 $result_array = json_decode($result, true);
94 $this->errors->add($i18n->get('error.file_storage'));
96 else if ($result_array['error']) {
97 // Add an error from file storage facility if we have it.
98 $this->errors->add($result_array['error']);
100 else if ($result_array['id'] && $result_array['key']) {
101 $this->site_id = $result_array['id'];
102 $this->site_key = $result_array['key'];
104 // Registration successful. Store id and key locally for future use.
105 $sql = "insert into tt_site_config values('locker_id', $this->site_id, now(), null)";
107 $sql = "insert into tt_site_config values('locker_key', ".$mdb2->quote($this->site_key).", now(), null)";
110 $this->errors->add($i18n->get('error.file_storage'));
114 $this->site_id = $val['id'];
117 $sql = "select param_value as site_key from tt_site_config where param_name = 'locker_key'";
118 $res = $mdb2->query($sql);
119 $val = $res->fetchRow();
120 $this->site_key = $val['site_key'];
124 // putFile - puts uploaded file in remote storage.
125 function putFile($fields) {
128 $mdb2 = getConnection();
130 $group_id = $user->getGroup();
131 $org_id = $user->org_id;
133 $curl_fields = array('site_id' => urlencode($this->site_id),
134 'site_key' => urlencode($this->site_key),
135 'org_id' => urlencode($org_id),
136 'org_key' => urlencode($this->getOrgKey()),
137 'group_id' => urlencode($group_id),
138 'group_key' => urlencode($this->getGroupKey()),
139 'entity_type' => urlencode($fields['entity_type']),
140 'entity_id' => urlencode($fields['entity_id']),
141 'file_name' => urlencode($fields['file_name']),
142 'description' => urlencode($fields['description']),
143 'content' => urlencode(base64_encode(file_get_contents($_FILES['newfile']['tmp_name'])))
146 // url-ify the data for the POST.
147 foreach($curl_fields as $key=>$value) { $fields_string .= $key.'='.$value.'&'; }
148 $fields_string = rtrim($fields_string, '&');
153 // Set the url, number of POST vars, POST data.
154 curl_setopt($ch, CURLOPT_URL, $this->putfile_uri);
155 curl_setopt($ch, CURLOPT_POST, true);
156 curl_setopt($ch, CURLOPT_POSTFIELDS, $fields_string);
157 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
159 // Execute a post request.
160 $result = curl_exec($ch);
165 // Delete uploaded file.
166 unlink($_FILES['newfile']['tmp_name']);
169 $this->errors->add($i18n->get('error.file_storage'));
173 $result_array = json_decode($result, true);
174 $file_id = (int) $result_array['file_id'];
175 $file_key = $result_array['file_key'];
176 $error = $result_array['error'];
178 if ($error || !$file_id || !$file_key) {
180 // Add an error from file storage facility if we have it.
181 $this->errors->add($error);
186 // File put was successful. Store file attributes locally.
187 $file_key = $mdb2->quote($file_key);
188 $entity_type = $mdb2->quote($fields['entity_type']);
189 $entity_id = (int) $fields['entity_id'];
190 $file_name = $mdb2->quote($fields['file_name']);
191 $description = $mdb2->quote($fields['description']);
193 $created_ip = $mdb2->quote($_SERVER['REMOTE_ADDR']);
194 $created_by = $user->id;
196 $columns = '(group_id, org_id, remote_id, file_key, entity_type, entity_id, file_name, description, created, created_ip, created_by)';
197 $values = "values($group_id, $org_id, $file_id, $file_key, $entity_type, $entity_id, $file_name, $description, $created, $created_ip, $created_by)";
198 $sql = "insert into tt_files $columns $values";
199 $affected = $mdb2->exec($sql);
200 return (!is_a($affected, 'PEAR_Error'));
203 // deleteFile - deletes a file from remote storage and its details from local database.
204 function deleteFile($fields) {
207 $mdb2 = getConnection();
209 $group_id = $user->getGroup();
210 $org_id = $user->org_id;
212 $curl_fields = array('site_id' => urlencode($this->site_id),
213 'site_key' => urlencode($this->site_key),
214 'org_id' => urlencode($org_id),
215 'org_key' => urlencode($this->getOrgKey()),
216 'group_id' => urlencode($group_id),
217 'group_key' => urlencode($this->getGroupKey()),
218 'entity_type' => urlencode($fields['entity_type']),
219 'entity_id' => urlencode($fields['entity_id']),
220 'file_id' => urlencode($fields['remote_id']),
221 'file_key' => urlencode($fields['file_key']),
222 'file_name' => urlencode($fields['file_name']));
224 // url-ify the data for the POST.
225 foreach($curl_fields as $key=>$value) { $fields_string .= $key.'='.$value.'&'; }
226 $fields_string = rtrim($fields_string, '&');
231 // Set the url, number of POST vars, POST data.
232 curl_setopt($ch, CURLOPT_URL, $this->deletefile_uri);
233 curl_setopt($ch, CURLOPT_POST, true);
234 curl_setopt($ch, CURLOPT_POSTFIELDS, $fields_string);
235 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
237 // Execute a post request.
238 $result = curl_exec($ch);
244 $this->errors->add($i18n->get('error.file_storage'));
248 $result_array = json_decode($result, true);
249 $status = (int) $result_array['status'];
250 $error = $result_array['error'];
253 // Add an error from file storage facility if we have it.
254 $this->errors->add($error);
257 // There is no explicit error message, but still something not right.
258 $this->errors->add($i18n->get('error.file_storage'));
261 // Delete file reference from database even when remote file storage call fails.
262 // This is by design to keep things simple.
263 $file_id = (int) $fields['id'];
264 $entity_id = (int) $fields['entity_id'];
265 $sql = "delete from tt_files".
266 " where id = $file_id and org_id = $org_id and group_id = $group_id and entity_id = $entity_id";
267 $affected = $mdb2->exec($sql);
268 if (is_a($affected, 'PEAR_Error')) {
269 $this->errors->add($i18n->get('error.db'));
273 // File successfully deleted from both file storage and database.
277 // deleteEntityFiles - deletes all files associated with an entity.
278 function deleteEntityFiles($entity_id, $entity_type) {
282 $mdb2 = getConnection();
284 $group_id = $user->getGroup();
285 $org_id = $user->org_id;
287 $curl_fields = array('site_id' => urlencode($this->site_id),
288 'site_key' => urlencode($this->site_key),
289 'org_id' => urlencode($org_id),
290 'org_key' => urlencode($this->getOrgKey()),
291 'group_id' => urlencode($group_id),
292 'group_key' => urlencode($this->getGroupKey()),
293 'entity_type' => urlencode($entity_type),
294 'entity_id' => urlencode($entity_id));
296 // url-ify the data for the POST.
297 foreach($curl_fields as $key=>$value) { $fields_string .= $key.'='.$value.'&'; }
298 $fields_string = rtrim($fields_string, '&');
303 // Set the url, number of POST vars, POST data.
304 curl_setopt($ch, CURLOPT_URL, $this->deletefiles_uri);
305 curl_setopt($ch, CURLOPT_POST, true);
306 curl_setopt($ch, CURLOPT_POSTFIELDS, $fields_string);
307 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
309 // Execute a post request.
310 $result = curl_exec($ch);
316 $this->errors->add($i18n->get('error.file_storage'));
320 $result_array = json_decode($result, true);
321 $status = (int) $result_array['status'];
322 $error = $result_array['error'];
325 // Add an error from file storage facility if we have it.
326 $this->errors->add($error);
329 // There is no explicit error message, but still something not right.
330 $this->errors->add($i18n->get('error.file_storage'));
333 // Many things can go wrong with a remote call to file storage facility.
334 // By design, we ignore such errors, and proceed with removal of entity
335 // records from the database.
337 // Delete all entity records from the database.
338 $file_id = $fields['id'];
339 $sql = "delete from tt_files".
340 " where entity_id = $entity_id".
341 " and entity_type = ".$mdb2->quote($entity_type).
342 " and org_id = $org_id and group_id = $group_id";
343 $affected = $mdb2->exec($sql);
344 if (is_a($affected, 'PEAR_Error')) {
345 $this->errors->add($i18n->get('error.db'));
352 // getOrgKey obtains organization key from the database.
353 private function getOrgKey() {
355 $mdb2 = getConnection();
357 $org_id = $user->org_id;
358 $sql = "select group_key from tt_groups where id = $org_id and status = 1";
359 $res = $mdb2->query($sql);
360 $val = $res->fetchRow();
361 return $val['group_key'];
364 // getGrtoupKey obtains group key from the database.
365 private function getGroupKey() {
367 $mdb2 = getConnection();
369 $group_id = $user->getGroup();
370 $org_id = $user->org_id;
372 $sql = "select group_key from tt_groups where id = $group_id and org_id = $org_id and status = 1";
373 $res = $mdb2->query($sql);
374 $val = $res->fetchRow();
375 return $val['group_key'];
378 // getEntityFiles obtains a list of files for an entity.
379 static function getEntityFiles($id, $type) {
381 $mdb2 = getConnection();
383 $group_id = $user->getGroup();
384 $org_id = $user->org_id;
387 $entity_type = $mdb2->quote($type);
388 $sql = "select id, remote_id, file_key, file_name as name, description from tt_files".
389 " where entity_type = $entity_type and entity_id = $id".
390 " and group_id = $group_id and org_id = $org_id and status = 1 order by id";
391 $res = $mdb2->query($sql);
392 if (!is_a($res, 'PEAR_Error')) {
393 while ($val = $res->fetchRow()) {
400 // get - obtains file details from local database.
401 static function get($id) {
403 $mdb2 = getConnection();
405 $group_id = $user->getGroup();
406 $org_id = $user->org_id;
408 $sql = "select id, remote_id, file_key, entity_type, entity_id, file_name, description, status from tt_files".
409 " where id = $id and group_id = $group_id and org_id = $org_id and (status = 0 or status = 1)";
410 $res = $mdb2->query($sql);
411 if (!is_a($res, 'PEAR_Error')) {
412 $val = $res->fetchRow();
413 if ($val && $val['id'])
419 // update - updates file details in local database.
420 static function update($fields) {
422 $mdb2 = getConnection();
424 $group_id = $user->getGroup();
425 $org_id = $user->org_id;
427 $file_id = (int) $fields['id'];
428 $description = $mdb2->quote($fields['description']);
430 $sql = "update tt_files set description = $description where id = $file_id".
431 " and group_id = $group_id and org_id = $org_id and (status = 0 or status = 1)";
432 $affected = $mdb2->exec($sql);
433 return !is_a($affected, 'PEAR_Error');
437 // getFile - downloads file from remote storage to memory.
438 function getFile($fields) {
441 $mdb2 = getConnection();
443 $group_id = $user->getGroup();
444 $org_id = $user->org_id;
446 $curl_fields = array('site_id' => urlencode($this->site_id),
447 'site_key' => urlencode($this->site_key),
448 'org_id' => urlencode($org_id),
449 'org_key' => urlencode($this->getOrgKey()),
450 'group_id' => urlencode($group_id),
451 'group_key' => urlencode($this->getGroupKey()),
452 'entity_type' => urlencode($fields['entity_type']),
453 'entity_id' => urlencode($fields['entity_id']),
454 'file_id' => urlencode($fields['remote_id']),
455 'file_key' => urlencode($fields['file_key']),
456 'file_name' => urlencode($fields['file_name']));
458 // url-ify the data for the POST.
459 foreach($curl_fields as $key=>$value) { $fields_string .= $key.'='.$value.'&'; }
460 $fields_string = rtrim($fields_string, '&');
465 // Set the url, number of POST vars, POST data.
466 curl_setopt($ch, CURLOPT_URL, $this->getfile_uri);
467 curl_setopt($ch, CURLOPT_POST, true);
468 curl_setopt($ch, CURLOPT_POSTFIELDS, $fields_string);
469 curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
471 // Execute a post request.
472 $result = curl_exec($ch);
474 $error = curl_error();
475 $result_array2 = json_decode($result, true);
481 $this->errors->add($i18n->get('error.file_storage'));
485 $result_array = json_decode($result, true);
486 $status = (int) $result_array['status'];
487 $error = $result_array['error'];
490 // Add an error from file storage facility if we have it.
491 $this->errors->add($error);
495 // There is no explicit error message, but still something not right.
496 $this->errors->add($i18n->get('error.file_storage'));
500 $this->file_data = $result_array['content'];
505 // getFileData - returns file data from memory.
506 function getFileData() {
507 return base64_decode($this->file_data);