update api and ajax handling and response

2022-02-20 11:38:08 +01:00
parent d5e53cc7db
commit 424a00b39e
65 changed files with 881 additions and 2736 deletions
--- a/lib/Froxlor/Ajax/Ajax.php
+++ b/lib/Froxlor/Ajax/Ajax.php
@@ -0,0 +1,176 @@
+<?php
+namespace Froxlor\Ajax;
+
+use Exception;
+use Froxlor\Http\HttpClient;
+use Froxlor\Settings;
+use Froxlor\UI\Panel\UI;
+
+/**
+ * This file is part of the Froxlor project.
+ * Copyright (c) 2010 the Froxlor Team (see authors).
+ *
+ * For the full copyright and license information, please view the COPYING
+ * file that was distributed with this source code. You can also view the
+ * COPYING file online at http://files.froxlor.org/misc/COPYING.txt
+ *
+ * @copyright  (c) the authors
+ * @author     Froxlor team <team@froxlor.org> (2010-)
+ * @author     Maurice Preuß <hello@envoyr.com>
+ * @license    GPLv2 http://files.froxlor.org/misc/COPYING.txt
+ * @package    AJAX
+ *
+ */
+class Ajax
+{
+    protected string $session;
+    protected string $action;
+    protected string $theme;
+
+    /**
+     * @throws Exception
+     */
+    public function __construct()
+    {
+        $this->session = $_GET['s'] ?? $_POST['s'] ?? null;
+        $this->action = $_GET['action'] ?? $_POST['action'] ?? null;
+        $this->theme = $_GET['theme'] ?? 'Froxlor';
+    }
+
+    /**
+     * @throws Exception
+     */
+    public function handle()
+    {
+        $session = $this->getValidatedSession();
+
+        switch ($this->action) {
+            case 'newsfeed':
+                return $this->getNewsfeed();
+            case 'updatecheck':
+                return $this->getUpdateCheck($session);
+            default:
+                return $this->errorResponse('Action not found!');
+        }
+    }
+
+    public function errorResponse($message, int $response_code = 500)
+    {
+        return \Froxlor\Api\Response::jsonErrorResponse($message, $response_code);
+    }
+
+    public function jsonResponse($value, int $response_code = 200)
+    {
+        return \Froxlor\Api\Response::jsonResponse($value, $response_code);
+    }
+
+    /**
+     * @throws Exception
+     */
+    private function getValidatedSession(): array
+    {
+        $remote_addr = $_SERVER['REMOTE_ADDR'];
+        if (empty($_SERVER['HTTP_USER_AGENT'])) {
+            $http_user_agent = 'unknown';
+        } else {
+            $http_user_agent = $_SERVER['HTTP_USER_AGENT'];
+        }
+
+        $timediff = time() - \Froxlor\Settings::Get('session.sessiontimeout');
+        $sel_stmt = \Froxlor\Database\Database::prepare("
+            SELECT * FROM `" . TABLE_PANEL_SESSIONS . "`
+            WHERE `hash` = :hash AND `ipaddress` = :ipaddr AND `useragent` = :ua AND `lastactivity` > :timediff
+        ");
+
+        $session = \Froxlor\Database\Database::pexecute_first($sel_stmt, [
+            'hash' => $this->session,
+            'ipaddr' => $remote_addr,
+            'ua' => $http_user_agent,
+            'timediff' => $timediff
+        ]);
+
+        if (!$session) {
+            throw new Exception('Session is not defined!');
+        }
+
+        return $session;
+    }
+
+    /**
+     * @throws Exception
+     */
+    private function getNewsfeed()
+    {
+        UI::initTwig();
+
+        $feed = "https://inside.froxlor.org/news/";
+
+        // Set custom feed if provided
+        if (isset($_GET['role']) && $_GET['role'] == "customer") {
+            $custom_feed = Settings::Get("customer.news_feed_url");
+            if (!empty(trim($custom_feed))) {
+                $feed = $custom_feed;
+            }
+        }
+
+        // Check for simplexml_load_file
+        if (!function_exists("simplexml_load_file")) {
+            return $this->errorResponse(
+                "Newsfeed not available due to missing php-simplexml extension",
+                "Please install the php-simplexml extension in order to view our newsfeed."
+            );
+        }
+
+        // Check for curl_version
+        if (!function_exists('curl_version')) {
+            return $this->errorResponse(
+                "Newsfeed not available due to missing php-curl extension",
+                "Please install the php-curl extension in order to view our newsfeed."
+            );
+        }
+
+        $output = HttpClient::urlGet($feed);
+        $news = simplexml_load_string(trim($output));
+
+        // Handle items
+        if ($news) {
+            $items = null;
+
+            for ($i = 0; $i < 3; $i++) {
+                $item = $news->channel->item[$i];
+
+                $title = (string)$item->title;
+                $link = (string)$item->link;
+                $date = date("d.m.Y", strtotime($item->pubDate));
+                $content = preg_replace("/[\r\n]+/", " ", strip_tags($item->description));
+                $content = substr($content, 0, 150) . "...";
+
+                $items .= UI::twig()->render($this->theme . '/user/newsfeeditem.html.twig', [
+                    'link' => $link,
+                    'title' => $title,
+                    'date' => $date,
+                    'content' => $content
+                ]);
+            }
+
+            return $items;
+        } else {
+            return $this->errorResponse('No Newsfeeds available at the moment.');
+        }
+    }
+
+    private function getUpdateCheck(array $session)
+    {
+        // TODO: set variables from current session
+        try {
+            return \Froxlor\Api\Commands\Froxlor::getLocal([
+                'adminid' => 1,
+                'adminsession' => 1,
+                'change_serversettings' => 1,
+                'loginname' => 'updatecheck'
+            ])->checkUpdate();
+        } catch (Exception $e) {
+            \Froxlor\UI\Response::dynamic_error($e->getMessage());
+        }
+    }
+}