<?php
/*******************************************************************************
* Copyright (c) 2006 Eclipse Foundation and others.
* All rights reserved. This program and the accompanying materials
* are made available under the terms of the Eclipse Public License v1.0
* which accompanies this distribution, and is available at
* http://www.eclipse.org/legal/epl-v10.html
*
* Contributors:
* Denis Roy (Eclipse Foundation)- initial API and implementation
*******************************************************************************/
class Friend {
private $friend_id = 0;
private $bugzilla_id = 0;
private $first_name = "";
private $last_name = "";
private $date_joined = NULL;
private $benefit_expires = NULL;
private $is_anonymous = 0;
private $is_benefit = 0;
private $uid = NULL;
private $email = "";
## FORMAT: ::XX:: where XX is a Foundation role (CM, PL, PM, etc)
private $roles = "";
## Concatenate for multiples: ::CM::::PL::::PM::
private $dn = "";
private $table_prefix = '';
public function __construct($testmode = FALSE) {
if ($testmode === TRUE){
$this->table_prefix = 'testing_';
}
}
function getFriendID() {
return $this->friend_id;
}
function getBugzillaID() {
return $this->bugzilla_id;
}
function getFirstName() {
return $this->first_name;
}
function getLastName() {
return $this->last_name;
}
function getDateJoined() {
return $this->date_joined;
}
function getIsAnonymous() {
return $this->is_anonymous;
}
function getIsBenefit() {
return $this->is_benefit;
}
/**
* Get Friend LDAP UID.
*
* @return string
*/
function getLDAPUID() {
// This might be empty if the user
// never made a donation and he his
// missing from the friends table.
if (empty($this->uid)) {
$this->getUID();
}
return $this->uid;
}
function getEmail() {
return $this->email;
}
function getBenefitExpires() {
return $this->benefit_expires;
}
private function getRoles() {
if ( $this->roles === "" ){
$App= new App();
# Get user roles
# Committer
$sql = "SELECT /* friend.class.php authenticate */ COUNT(1) AS RecordCount FROM PeopleProjects AS PRJ
INNER JOIN People AS P ON P.PersonID = PRJ.PersonID
WHERE P.EMail = '$this->email' AND PRJ.Relation = 'CM'
AND (LEFT(PRJ.InactiveDate,10) = '0000-00-00' OR PRJ.InactiveDate IS NULL OR PRJ.InactiveDate > NOW())";
$result = $App->foundation_sql($sql);
if($result && mysql_num_rows($result) > 0) {
$myrow = mysql_fetch_assoc($result);
if($myrow['RecordCount'] > 0) {
$this->roles .= "::CM::";
}
}
}
return $this->roles;
}
function getDn() {
return $this->dn;
}
function setFriendID($_friend_id) {
$this->friend_id = $_friend_id;
}
function setBugzillaID($_bugzilla_id) {
if (ctype_digit($_bugzilla_id)) {
$this->bugzilla_id = $_bugzilla_id;
}
}
function setFirstName($_first_name) {
$this->first_name = preg_replace('/[<>]/', '', $_first_name);
}
function setLastName($_last_name) {
$this->last_name = preg_replace('/[<>]/', '', $_last_name);
}
function setDateJoined($_date_joined) {
$this->date_joined = $_date_joined;
}
function setIsAnonymous($_is_anonymous) {
$this->is_anonymous = $_is_anonymous;
}
function setIsBenefit($_is_benefit) {
$this->is_benefit = $_is_benefit;
}
function setLDAPUID($_uid) {
$this->uid = $_uid;
}
function setEmail($_email) {
$this->email = $_email;
}
function setBenefitExpires($_benefit_expires) {
$this->benefit_expires = $_benefit_expires;
}
private function setRoles($_roles) {
$this->roles = $_roles;
}
function setDn($_dn) {
$this->dn = $_dn;
}
/**
* Get LDAP UID
*
* This was deprecated until it was discovered
* that a user might not have an entry in the
* friends database.
*
* @return string
*/
function getUID() {
if ($this->dn != "") {
if (preg_match('/uid=(.*),ou=/', $this->dn, $matches)) {
$this->setLDAPUID($matches[1]);
return $matches[1];
}
}
return FALSE;
}
/**
* getIsCommitter() - return committer status
* @see authenticate()
* @return bool user is a committer
*/
function getIsCommitter() {
$rValue = false;
if(preg_match('/ou=people,/i', $this->getDn())) {
if(strlen($this->roles) == 0) {
$this->setRoles("::CM::");
}
$rValue = true;
}
return $rValue;
}
/**
* Returns a list of Friend objects that have donated more than $100
* @param $offset int The result list offset
* @param $num int The number of results to retrieve
* @param $get_anonymous boolean Whether or not to return anonymous friends
*/
function getBestFriends($offset=0, $num=99999, $get_anonymous=TRUE) {
$bestFriends = array();
$App = new App();
$count = $offset + $num;
$sql = "SELECT f.friend_id, f.is_anonymous, fc.amount
FROM " . $this->table_prefix . "friends as f
INNER JOIN " . $this->table_prefix . "friends_contributions fc
ON (fc.friend_id = f.friend_id AND date_expired > DATE_SUB(NOW(), INTERVAL 1 YEAR) AND fc.amount >= 100) ";
if (!$get_anonymous) $sql .= "AND f.is_anonymous = 0 ";
$sql .= "LIMIT $offset,$count";
$result = $App->eclipse_sql($sql);
while ($myrow = mysql_fetch_assoc($result)) {
$newFriend = new Friend();
$newFriend->selectFriend($myrow['friend_id']);
$bestFriends[] = $newFriend;
}
return $bestFriends;
}
function insertUpdateFriend() {
$retVal = 0;
$App = new App();
#$ModLog = new ModLog();
#$ModLog->setLogTable("Person");
#$ModLog->setPK1($this->getPersonID());
if ($this->date_joined == NULL)
$default_date_joined = "NOW()";
else
$default_date_joined = $App->returnQuotedString($this->date_joined);
if($this->selectFriendID("friend_id", $this->getFriendID())) {
# update
$sql = "UPDATE " . $this->table_prefix . "friends SET
bugzilla_id = " . $App->returnQuotedString($App->sqlSanitize($this->getBugzillaID())) . ",
first_name = " . $App->returnQuotedString($App->sqlSanitize($this->getFirstName())) . ",
last_name = " . $App->returnQuotedString($App->sqlSanitize($this->getLastName())) . ",
date_joined = " . $default_date_joined . ",
is_anonymous = " . $App->returnQuotedString($App->sqlSanitize($this->getIsAnonymous())) . ",
is_benefit = " . $App->returnQuotedString($App->sqlSanitize($this->getIsBenefit())) . ",
uid = " . $App->returnQuotedString($App->sqlSanitize($this->getLDAPUID())) . "
WHERE
friend_id = " . $App->sqlSanitize($this->getFriendID());
$App->eclipse_sql($sql);
$retVal = $this->friend_id;
}
else {
# insert
$sql = "INSERT INTO " . $this->table_prefix . "friends (
bugzilla_id,
first_name,
last_name,
date_joined,
is_anonymous,
is_benefit,
uid)
VALUES (
" . $App->returnQuotedString($this->getBugzillaID()) . ",
" . $App->returnQuotedString($this->getFirstName()) . ",
" . $App->returnQuotedString($this->getLastName()) . ",
" . $default_date_joined . ",
" . $App->returnQuotedString($this->getIsAnonymous()) . ",
" . $App->returnQuotedString($this->getIsBenefit()) . ",
" . $App->returnQuotedString($this->getLDAPUID()) . ")";
$App->eclipse_sql($sql);
$retVal = mysql_insert_id();
$this->setFriendID($retVal);
}
return $retVal;
}
function selectFriend($_friend_id) {
if($_friend_id != "") {
$App = new App();
$_friend_id = $App->sqlSanitize($_friend_id);
$sql = "SELECT /* USE MASTER */ f.friend_id, f.bugzilla_id, f.first_name,
f.last_name, f.date_joined, f.is_anonymous, f.is_benefit, f.uid,
fc_temp.date_expired
FROM " . $this->table_prefix . "friends as f
LEFT JOIN (SELECT friend_id, MAX(date_expired) AS date_expired FROM " . $this->table_prefix . "friends_contributions GROUP BY friend_id) fc_temp
ON fc_temp.friend_id = f.friend_id
WHERE f.friend_id = " . $App->returnQuotedString($_friend_id);
$result = $App->eclipse_sql($sql);
if ($myrow = mysql_fetch_array($result)) {
$this->setFriendID ($myrow["friend_id"]);
$this->setBugzillaID ($myrow["bugzilla_id"]);
$this->setFirstName ($myrow["first_name"]);
$this->setLastName ($myrow["last_name"]);
$this->setDateJoined ($myrow["date_joined"]);
$this->setIsAnonymous ($myrow["is_anonymous"]);
$this->setIsBenefit ($myrow["is_benefit"]);
$this->setLDAPUID ($myrow["uid"]);
$this->setBenefitExpires($myrow["date_expired"]);
$this->getRoles();
return TRUE;
}
}
return FALSE;
}
function selectFriendID($_fieldname, $_searchfor) {
$retVal = 0;
if( ($_fieldname != "") && ($_searchfor != "")) {
$App = new App();
$_fieldname = $App->sqlSanitize($_fieldname, null);
$_searchfor = $App->sqlSanitize($_searchfor, null);
$sql = "SELECT /* USE MASTER */ friend_id
FROM " . $this->table_prefix . "friends
WHERE $_fieldname = " . $App->returnQuotedString($_searchfor);
$result = $App->eclipse_sql($sql);
if ($result){
$myrow = mysql_fetch_array($result);
$retVal = $myrow['friend_id'];
}
}
return $retVal;
}
function getBugzillaIDFromEmail($_email, $use_master=false) {
$result = 0;
if($_email != "") {
$App = new App();
$_email = $App->sqlSanitize($_email);
if ($use_master) {
$sql = "SELECT /* USE MASTER */ userid FROM profiles WHERE login_name = " . $App->returnQuotedString($_email);
} else {
$sql = "SELECT userid FROM profiles WHERE login_name = " . $App->returnQuotedString($_email);
}
$result = $App->bugzilla_sql($sql);
$myrow = mysql_fetch_array($result);
$result = $myrow['userid'];
}
return $result;
}
/**
* authenticate() - Authenticate user using bugzilla credentials
*
* @author droy
* @param string Email address
* @param string password
* @return boolean - auth was successful or not
* @since 2007-11-20
* @deprecated Use site_login instead, which uses LDAP for everyone
*
* 2009-08-27: Added code for crypt/sha-256 passes
*
*/
function authenticate($email, $password) {
$rValue = false;
$validPaths = array(
"/home/data/httpd/dev.eclipse.org/html/site_login/"
);
$App = new App();
if($email != "" && $password != "" && ($App->isValidCaller($validPaths) || $App->devmode)) {
//check if magic quotes is 'off'. If it's on then the sanitizer will extra escape
//the adress which results in valid accounts being rejected.
if(!get_magic_quotes_gpc()) {
$email = $App->sqlSanitize($email, null);
}
else {
$password = stripslashes($password); # 359128 - password didn't work with \
}
$sql = "SELECT userid, login_name,
LEFT(realname, @loc:=LENGTH(realname) - LOCATE(' ', REVERSE(realname))) AS first_name,
SUBSTR(realname, @loc+2) AS last_name,
cryptpassword
FROM profiles WHERE login_name = '$email' AND disabledtext = ''";
$result = $App->bugzilla_sql($sql);
if($result && mysql_num_rows($result) > 0) {
$myrow = mysql_fetch_assoc($result);
$db_cryptpassword = $myrow['cryptpassword'];
$pw = "abc12345"; // never allow db == pw by default
# check password
if(preg_match("/{([^}]+)}$/", $db_cryptpassword, $matches)) {
$hash = $matches[0];
$salt = substr($db_cryptpassword,0,8);
if(function_exists('mhash')) {
$pw = $salt . str_replace("=", "", base64_encode(mhash(MHASH_SHA256,$password . $salt))) . $hash;
}
else {
$pw = $salt . str_replace("=", "", base64_encode(hash("sha256",$password . $salt, true))) . $hash;
}
}
else {
$pw = crypt($password, $db_cryptpassword);
}
if($db_cryptpassword == $pw) {
$rValue = true;
$this->setBugzillaID($myrow['userid']);
$this->setEmail($myrow['login_name']);
# Load up the rest of the Friend record
$friend_id = $this->selectFriendID("bugzilla_id", $this->getBugzillaID());
if($friend_id > 0) {
$this->selectFriend($friend_id);
}
# Override the friend record with (known good) Bugzilla info
$this->setFirstName($myrow['first_name']);
$this->setLastName($myrow['last_name']);
}
}
}
return $rValue;
}
/**
* Verify if our Friend is a Foundation Staff.
*
* @return boolean
*/
public function checkUserIsFoundationStaff() {
return $this->_checkUserInGroup('www-auth');
}
/**
* Verify if our Friend is a Webmaster.
*
* @return boolean
*/
public function checkUserIsWebmaster() {
return $this->_checkUserInGroup('admins');
}
/**
* Verify if a user is in a group
*
* A group name might change in the future,
* we will create a public function for each
* group we need to verify instead of using this
* function directly.
*
* For example,
* checkUserIsFoundationStaff().
*
* @param string $group
*/
private function _checkUserInGroup($group = '') {
$group = filter_var($group, FILTER_SANITIZE_STRING);
$ldap_uid = $this->getLDAPUID();
if (empty($ldap_uid)) {
return FALSE;
}
require_once("/home/data/httpd/eclipse-php-classes/system/ldapconnection.class.php");
$Ldap = new LDAPConnection();
if ($Ldap->checkUserInGroup($ldap_uid, $group)) {
return TRUE;
}
return FALSE;
}
}