helper_2oauth_8php_source.html

<?php


namespace Bitrix\Mail\Helper;


use Bitrix\Main;

use Bitrix\Mail;

use Bitrix\Main\Web\Uri;

use Bitrix\Mail\Helper\OAuth\UserData;


abstract class OAuth

{


    protected $oauthEntity;


    protected $service, $storedUid;


    public const WEB_TYPE = 'web';

    public const MOBILE_TYPE = 'mobile';

    protected UserData $publicUserData;


    public static function getKnownServices()

    {

        static $knownServices;


        if (is_null($knownServices))

        {

            $knownServices = [

                OAuth\Google::getServiceName(),

                OAuth\LiveId::getServiceName(),

                OAuth\Yandex::getServiceName(),

                OAuth\Mailru::getServiceName(),

                OAuth\Office365::getServiceName(),

            ];

        }


        return $knownServices;

    }


    public static function getInstance($service = null): bool|OAuth

    {

        if (get_called_class() != get_class())

        {

            $className = get_called_class();

            $service = $className::getServiceName();

        }

        else

        {

            if (!in_array($service, self::getKnownServices()))

            {

                return false;

            }


            $className = sprintf('%s\OAuth\%s', __NAMESPACE__, $service);

        }


        if (!Main\Loader::includeModule('socialservices'))

        {

            return false;

        }


        $instance = new $className;


        $instance->service = $service;

        $instance->storedUid = sprintf('%x%x', time(), rand(0, 0xffffffff));


        if (!$instance->check())

        {

            return false;

        }


        return $instance;

    }


    public static function getInstanceByMeta($meta)

    {

        if ($meta = static::parseMeta($meta))

        {

            if ($instance = self::getInstance($meta['service']))

            {

                if ('oauthb' == $meta['type'])

                {

                    $instance->storedUid = $meta['key'];

                }


                return $instance;

            }

        }

    }


    public function buildMeta()

    {

        return sprintf(

            "\x00oauthb\x00%s\x00%s",

            $this->getServiceName(),

            $this->getStoredUid()

        );

    }


    public static function parseMeta($meta)

    {

        $regex = sprintf(

            '/^\x00(oauthb)\x00(%s)\x00([a-f0-9]+)$/',

            join(

                '|',

                array_map(

                    function ($item)

                    {

                        return preg_quote($item, '/');

                    },

                    self::getKnownServices()

                )

            )

        );


        if (!preg_match($regex, $meta, $matches))

        {

            if (!preg_match('/^\x00(oauth)\x00(google|liveid)\x00(\d+)$/', $meta, $matches))

            {

                return null;

            }

        }


        return array(

            'type' => $matches[1],

            'service' => $matches[2],

            'key' => $matches[3],

        );

    }


    private static function getSocservToken($service, $key)

    {

        if (Main\Loader::includeModule('socialservices'))

        {

            switch ($service)

            {

                case 'google':

                    $oauthClient = new \CSocServGoogleOAuth($key);

                    $oauthClient->getEntityOAuth()->addScope('https://mail.google.com/');

                    break;

                case 'liveid':

                    $oauthClient = new \CSocServLiveIDOAuth($key);

                    $oauthClient->getEntityOAuth()->addScope(['wl.imap', 'wl.offline_access']);

                    break;

            }


            if (!empty($oauthClient))

            {

                return $oauthClient->getStorageToken() ?: false;

            }

        }


        return null;

    }


    public static function getTokenByMeta($meta, int $expireGapSeconds = 10)

    {

        if ($meta = static::parseMeta($meta))

        {

            if ('oauthb' == $meta['type'])

            {

                if ($oauthHelper = self::getInstance($meta['service']))

                {

                    return $oauthHelper->getStoredToken($meta['key'], $expireGapSeconds) ?: false;

                }

            }

            else if ('oauth' == $meta['type'])

            {

                return self::getSocservToken($meta['service'], $meta['key']);

            }

        }

    }


    public static function getUserDataByMeta($meta, $secure = true)

    {

        if ($meta = static::parseMeta($meta))

        {

            if ($oauthHelper = self::getInstance($meta['service']))

            {

                if ('oauthb' == $meta['type'])

                {

                    $oauthHelper->getStoredToken($meta['key']);

                }

                else if ('oauth' == $meta['type'])

                {

                    if ($token = self::getSocservToken($meta['service'], $meta['key']))

                    {

                        $oauthHelper->getOAuthEntity()->setToken($token);

                    }

                }


                return $oauthHelper->getUserData($secure);

            }

        }


        return null;

    }


    public function getOAuthEntity()

    {

        return $this->oauthEntity;

    }


    public function getStoredUid()

    {

        return $this->storedUid;

    }


    public function getRedirect(bool $final = true): string

    {

        if (isModuleInstalled('bitrix24') && defined('BX24_HOST_NAME') && !$final)

        {

            return $this->getControllerUrl() . '/redirect.php';

        }

        else

        {

            $uri = new Uri(Main\Engine\UrlManager::getInstance()->getHostUrl().'/bitrix/tools/mail_oauth.php');

            return $uri->getLocator();

        }

    }


    public function getUrl(): string

    {

        global $APPLICATION;


        if (isModuleInstalled('bitrix24') && defined('BX24_HOST_NAME'))

        {

            $state = sprintf(

                '%s?%s',

                $this->getRedirect(),

                http_build_query(array(

                    'check_key' => \CSocServAuthManager::getUniqueKey(),

                    'state' => rawurlencode(http_build_query(array(

                        'service' => $this->service,

                        'uid' => $this->storedUid,

                    ))),

                ))

            );

        }

        else

        {

            $state = http_build_query(array(

                'check_key' => \CSocServAuthManager::getUniqueKey(),

                'service' => $this->service,

                'uid' => $this->storedUid,

            ));

        }


        return $this->oauthEntity->getAuthUrl($this->getRedirect(false), $state);

    }


    protected function fetchStoredToken()

    {

        return Mail\Internals\OAuthTable::getList(array(

            'filter' => array(

                '=UID' => $this->storedUid,

            ),

            'order' => array(

                'ID' => 'DESC',

            ),

        ))->fetch();

    }


    public function getStoredToken($uid = null, int $expireGapSeconds = 10)

    {

        $token = null;


        if (!empty($uid))

        {

            $this->storedUid = $uid;

        }


        $item = $this->fetchStoredToken();


        if (!empty($item))

        {

            $this->oauthEntity->setToken($token = $item['TOKEN']);

            $this->oauthEntity->setRefreshToken($item['REFRESH_TOKEN']);

            $this->oauthEntity->setAccessTokenExpires((int)($item['TOKEN_EXPIRES'] ?? 0));

            $expireThreshold = time() + $expireGapSeconds;


            if (empty($token) || $item['TOKEN_EXPIRES'] > 0 && $item['TOKEN_EXPIRES'] < $expireThreshold)

            {

                $this->oauthEntity->setToken(null);


                if (!empty($item['REFRESH_TOKEN']))

                {

                    if ($this->oauthEntity->getNewAccessToken($item['REFRESH_TOKEN']))

                    {

                        $tokenData = $this->oauthEntity->getTokenData();


                        Mail\Internals\OAuthTable::update(

                            $item['ID'],

                            array(

                                'TOKEN' => $tokenData['access_token'],

                                'REFRESH_TOKEN' => $tokenData['refresh_token'],

                                'TOKEN_EXPIRES' => $tokenData['expires_in'],

                            )

                        );

                    }

                }


                $token = $this->oauthEntity->getToken();

            }

        }


        return $token;

    }


    public function getAccessToken($code = null)

    {

        if ($code)

        {

            $this->oauthEntity->setCode($code);

        }


        $oauthData = $_SESSION['OAUTH_DATA'];


        $result = $this->oauthEntity->getAccessToken($this->getRedirect(false));


        $_SESSION['OAUTH_DATA'] = $oauthData;


        return $result;

    }


    public function getUserData($secure = true)

    {

        try

        {

            $userData = $this->oauthEntity->getCurrentUser();

        }

        catch (Main\SystemException $e)

        {

        }


        if (!empty($userData))

        {

            return array_merge(

                $this->mapUserData($userData),

                $secure ? array() : array('__data' => $userData)

            );

        }

    }


    abstract protected function mapUserData(array $userData);


    public static function getServiceName()

    {

        throw new Main\ObjectException('abstract');

    }


    public static function convertTokenExpiresToUnixtimeIfNeed(int $intervalOrTime): int

    {

        $year = 60 * 60 * 24 * 365;

        $maxExpectedLifetime = 5 * $year;

        $isInterval = $intervalOrTime <= $maxExpectedLifetime;


        return $isInterval ? $intervalOrTime + time() : $intervalOrTime;

    }


    public function saveResponse($state): bool

    {

        $this->storedUid = $state['uid'];


        if ($item = $this->fetchStoredToken())

        {

            $this->oauthEntity->setRefreshToken($item['REFRESH_TOKEN']);

        }


        if (!empty($_REQUEST['code']) && \CSocServAuthManager::checkUniqueKey())

        {

            $this->getAccessToken($_REQUEST['code']);


            if ($userData = $this->getUserData(false))

            {

                $fields = [

                    'UID' => $this->getStoredUid(),

                    'TOKEN' => $userData['__data']['access_token'],

                    'REFRESH_TOKEN' => $userData['__data']['refresh_token'],

                    'TOKEN_EXPIRES' => $userData['__data']['expires_in'],

                ];


                if (empty($item))

                {

                    Mail\Internals\OAuthTable::add($fields);

                }

                else

                {

                    Mail\Internals\OAuthTable::update($item['ID'], $fields);

                }


                $userDataObject = new UserData(

                    (string) $userData['email'],

                    (string) $userData['first_name'],

                    (string) $userData['last_name'],

                    (string) $userData['full_name'],

                    (string) $userData['image']

                );


                if (isset($userData['__data']['emailIsIntended']))

                {

                    $userDataObject->setEmailIsIntended((bool)$userData['__data']['emailIsIntended']);

                }

                else

                {

                    $userDataObject->setEmailIsIntended(false);

                }


                if (isset($userData['__data']['userPrincipalName']))

                {

                    $userDataObject->setUserPrincipalName((string)$userData['__data']['userPrincipalName']);

                }


                $this->setPublicUserData($userDataObject);


                return true;

            }

        }


        return false;

    }


    protected function setPublicUserData(UserData $userData): void

    {

        $this->publicUserData = $userData;

    }


    public function getPublicUserData(): UserData

    {

        return $this->publicUserData;

    }


    public function handleResponse(array $state, $context = self::WEB_TYPE): void

    {

        if ($this->saveResponse($state))

        {

            if ($context === self::WEB_TYPE)

            {

                ?>


                <script>


                    targetWindow = window.opener ? window.opener : window;


                    targetWindow.BX.onCustomEvent(

                        'OnMailOAuthBCompleted',

                        [

                            '<?=\CUtil::jsEscape($this->getStoredUid()) ?>',

                            '<?=\CUtil::jsEscape($this->getUrl()) ?>',

                            <?=$this->getPublicUserData()->getJson() ?>

                        ]

                    );


                    if (targetWindow !== window)

                    {

                        window.close();

                    }


                </script>


                <?

            }

            else if ($context === self::MOBILE_TYPE)

            {

                $params = http_build_query([

                    'storedUid' => \CUtil::jsEscape($this->getStoredUid()),

                    'email' => $this->getPublicUserData()->getEmail(),

                ]);

                header('Location: bitrix24://?'.$params);

            }

        }

    }


}


$APPLICATION
global $APPLICATION
Определения include.php:80

Bitrix\Mail\Helper\OAuth\Google\getServiceName
static getServiceName()
Определения google.php:40

Bitrix\Mail\Helper\OAuth\LiveId\getServiceName
static getServiceName()
Определения liveid.php:41

Bitrix\Mail\Helper\OAuth\Mailru\getServiceName
static getServiceName()
Определения mailru.php:43

Bitrix\Mail\Helper\OAuth\Office365\getServiceName
static getServiceName()
Определения office365.php:43

Bitrix\Mail\Helper\OAuth\UserData
Определения userdata.php:7

Bitrix\Mail\Helper\OAuth\Yandex\getServiceName
static getServiceName()
Определения yandex.php:35

Bitrix\Mail\Helper\OAuth\getServiceName
static getServiceName()
Определения oauth.php:459

Bitrix\Mail\Helper\OAuth\getStoredToken
getStoredToken($uid=null, int $expireGapSeconds=10)
Определения oauth.php:352

Bitrix\Mail\Helper\OAuth\getInstanceByMeta
static getInstanceByMeta($meta)
Определения oauth.php:95

Bitrix\Mail\Helper\OAuth\getRedirect
getRedirect(bool $final=true)
Определения oauth.php:279

Bitrix\Mail\Helper\OAuth\getTokenByMeta
static getTokenByMeta($meta, int $expireGapSeconds=10)
Определения oauth.php:203

Bitrix\Mail\Helper\OAuth\mapUserData
mapUserData(array $userData)

Bitrix\Mail\Helper\OAuth\$publicUserData
UserData $publicUserData
Определения oauth.php:23

Bitrix\Mail\Helper\OAuth\handleResponse
handleResponse(array $state, $context=self::WEB_TYPE)
Определения oauth.php:558

Bitrix\Mail\Helper\OAuth\saveResponse
saveResponse($state)
Определения oauth.php:480

Bitrix\Mail\Helper\OAuth\getUserDataByMeta
static getUserDataByMeta($meta, $secure=true)
Определения oauth.php:228

Bitrix\Mail\Helper\OAuth\getStoredUid
getStoredUid()
Определения oauth.php:268

Bitrix\Mail\Helper\OAuth\getAccessToken
getAccessToken($code=null)
Определения oauth.php:404

Bitrix\Mail\Helper\OAuth\WEB_TYPE
const WEB_TYPE
Определения oauth.php:21

Bitrix\Mail\Helper\OAuth\setPublicUserData
setPublicUserData(UserData $userData)
Определения oauth.php:542

Bitrix\Mail\Helper\OAuth\getUserData
getUserData($secure=true)
Определения oauth.php:426

Bitrix\Mail\Helper\OAuth\fetchStoredToken
fetchStoredToken()
Определения oauth.php:332

Bitrix\Mail\Helper\OAuth\MOBILE_TYPE
const MOBILE_TYPE
Определения oauth.php:22

Bitrix\Mail\Helper\OAuth\getKnownServices
static getKnownServices()
Определения oauth.php:30

Bitrix\Mail\Helper\OAuth\getOAuthEntity
getOAuthEntity()
Определения oauth.php:258

Bitrix\Mail\Helper\OAuth\$service
$service
Определения oauth.php:19

Bitrix\Mail\Helper\OAuth\parseMeta
static parseMeta($meta)
Определения oauth.php:132

Bitrix\Mail\Helper\OAuth\getUrl
getUrl()
Определения oauth.php:297

Bitrix\Mail\Helper\OAuth\$storedUid
$storedUid
Определения oauth.php:19

Bitrix\Mail\Helper\OAuth\$oauthEntity
$oauthEntity
Определения oauth.php:17

Bitrix\Mail\Helper\OAuth\getInstance
static getInstance($service=null)
Определения oauth.php:54

Bitrix\Mail\Helper\OAuth\buildMeta
buildMeta()
Определения oauth.php:117

Bitrix\Mail\Helper\OAuth\convertTokenExpiresToUnixtimeIfNeed
static convertTokenExpiresToUnixtimeIfNeed(int $intervalOrTime)
Определения oauth.php:471

Bitrix\Mail\Helper\OAuth\getPublicUserData
getPublicUserData()
Определения oauth.php:547

Bitrix\Main\ORM\Data\DataManager\getList
static getList(array $parameters=array())
Определения datamanager.php:431

Bitrix\Main\ORM\Data\DataManager\add
static add(array $data)
Определения datamanager.php:877

Bitrix\Main\ORM\Data\DataManager\update
static update($primary, array $data)
Определения datamanager.php:1256

Bitrix\Main\ObjectException
Определения ObjectException.php:9

Bitrix\Main\SystemException
Определения SystemException.php:9

Bitrix\Main\Web\Uri
Определения uri.php:17

array
</td ></tr ></table ></td ></tr >< tr >< td class="bx-popup-label bx-width30"><?=GetMessage("PAGE_NEW_TAGS")?> array( $site)
Определения file_new.php:804

$_REQUEST
$_REQUEST["admin_mnu_menu_id"]
Определения get_menu.php:8

$result
$result
Определения get_property_values.php:14

$uid
$uid
Определения hot_keys_act.php:8

$context
$context
Определения csv_new_setup.php:223

$code
if(!is_null($config))($config as $configItem)(! $configItem->isVisible()) $code
Определения options.php:195

$uri
if(file_exists($_SERVER['DOCUMENT_ROOT'] . "/urlrewrite.php")) $uri
Определения urlrewrite.php:61

Bitrix\Mail\Helper\OAuth
Определения google.php:3

Bitrix\Main\Engine
Определения action.php:3

Bitrix\Main

$service
$service
Определения payment.php:18

$year
$year
Определения payment.php:9

$instance
$instance
Определения ps_b24_final.php:14

$key
if(empty($signedUserToken)) $key
Определения quickway.php:257

$params
if($inWords) echo htmlspecialcharsbx(Number2Word_Rus(roundEx($totalVatSum $params['CURRENCY']
Определения template.php:799

$matches
$matches
Определения index.php:22

$fields
$fields
Определения yandex_run.php:501