Your IP : 172.28.240.42
<?
##############################################
# Bitrix Site Manager #
# Copyright (c) 2002-2007 Bitrix #
# http://www.bitrixsoft.com #
# mailto:sources@bitrixsoft.com #
##############################################
IncludeModuleLangFile(__FILE__);
//
class CControllerClient
{
function IsInCommonKernel()
{
return file_exists($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/main/classes/general/update_db_updater.php");
}
// Controller's authentication
function OnExternalLogin(&$arParams)
{
global $USER, $APPLICATION;
$FORMAT_DATE = false;
$FORMAT_DATETIME = false;
$prefix = COption::GetOptionString("main", "auth_controller_prefix", "controller");
if(
($prefix!='' && substr(strtolower($arParams["LOGIN"]), 0, strlen($prefix)) == $prefix)
||
($prefix=='' && strpos($arParams["LOGIN"], "\\")===false)
)
{
$site = $prefix;
if($prefix=='')
$login = $arParams["LOGIN"];
else
$login = substr($arParams["LOGIN"], strlen($prefix)+1);
$password = $arParams["PASSWORD"];
$arVars = array("login"=>$login, "password"=>$password);
$oRequest = new CControllerClientRequestTo("check_auth", $arVars);
$oResponse = $oRequest->SendWithCheck();
if($oResponse == false)
return false;
if(!$oResponse->OK())
{
$e = new CApplicationException(GetMessage("MAIN_CMEMBER_ERR1").": ".$oResponse->text);
$APPLICATION->ThrowException($e);
return false;
}
$arUser = $oResponse->arParameters['USER_INFO'];
}
elseif(
COption::GetOptionString("main", "auth_controller_sso", "N")=="Y"
&& strpos($arParams["LOGIN"], "\\") > 0
)
{
$site = substr($arParams["LOGIN"], 0, strpos($arParams["LOGIN"], "\\"));
$login = substr($arParams["LOGIN"], strpos($arParams["LOGIN"], "\\")+1);
$password = $arParams["PASSWORD"];
$arVars = array("login"=>$login, "password"=>$password, "site"=>$site);
$oRequest = new CControllerClientRequestTo("remote_auth", $arVars);
$oResponse = $oRequest->SendWithCheck();
if($oResponse == false)
return false;
if(!$oResponse->OK())
{
$e = new CApplicationException(GetMessage("MAIN_CMEMBER_ERR1").": ".$oResponse->text);
$APPLICATION->ThrowException($e);
return false;
}
$arUser = $oResponse->arParameters['USER_INFO'];
}
elseif(
COption::GetOptionString("controller", "auth_controller_enabled", "N") === "Y"
&& strpos($arParams["LOGIN"], "\\") > 0
&& CModule::IncludeModule("controller")
)
{
$site = substr($arParams["LOGIN"], 0, strpos($arParams["LOGIN"], "\\"));
$login = substr($arParams["LOGIN"], strpos($arParams["LOGIN"], "\\")+1);
$password = $arParams["PASSWORD"];
$url = strtolower(trim($site, " \t\r\n./"));
if(substr($url, 0, 7) != "http://" && substr($url, 0, 8) != "https://")
$url = array("http://".$url, "https://".$url);
$dbr_mem = CControllerMember::GetList(
Array(),
Array(
"=URL" => $url,
"=DISCONNECTED" => "N",
"=ACTIVE" => "Y"
)
);
$ar_mem = $dbr_mem->Fetch();
if(!$ar_mem)
return false;
$arGroupsMap = unserialize(COption::GetOptionString("controller", "auth_controller", serialize(array())));
$res = CControllerMember::CheckUserAuth($ar_mem["ID"], $login, $password, $arGroupsMap);
if(!is_array($res))
return false;
$arUser = $res['USER_INFO'];
if(is_array($arUser))
$arUser["CONTROLLER_ADMIN"] = "N";
if (isset($res["FORMAT_DATE"]))
$FORMAT_DATE = $res["FORMAT_DATE"];
if (isset($res["FORMAT_DATETIME"]))
$FORMAT_DATETIME = $res["FORMAT_DATETIME"];
}
else
{
return false;
}
////////////////////////////////////////////////////////
/// ñðàâíèâàòü íå ïðîñòî ëîãèí, à ïîëíîñòüþ\ëîãèí
/////////////////////////
if(is_array($arUser) && $arUser['LOGIN'] == $login)
{
//When user did not fill any inforamtion about
//we'll use first part of his e-mail like login
if(strlen($arUser["NAME"]) == 0 && strlen($arUser["SECOND_NAME"]) == 0)
{
if(preg_match("/^(.+)@/", $arUser["LOGIN"], $match))
$arUser["NAME"] = $match[1];
else
$arUser["NAME"] = $arUser["LOGIN"];
}
if($site=='')
$arUser['LOGIN'] = $arUser['LOGIN'];
else
$arUser['LOGIN'] = $site."\\".$arUser['LOGIN'];
$USER_ID = CControllerClient::UpdateUser($arUser, $FORMAT_DATE, $FORMAT_DATETIME);
if($arUser["CONTROLLER_ADMIN"]=="Y")
{
AddEventHandler("main", "OnAfterUserLogin", array("CControllerClient", "OnAfterUserLogin"));
$arParams["CONTROLLER_ADMIN"] = "Y";
}
$arParams["REMEMBER"] = "N";
return $USER_ID;
}
return false;
}
function OnAfterUserLogin(&$arParams)
{
global $USER;
if($arParams["CONTROLLER_ADMIN"] === "Y")
$USER->SetControllerAdmin();
}
function UpdateUser($arFields = Array(), $FORMAT_DATE = false, $FORMAT_DATETIME = false)
{
global $DB;
$arFields["ACTIVE"] = "Y";
$arFields["PASSWORD"] = md5(uniqid(rand(), true));
$oUser = new CUser;
unset($arFields["ID"]);
unset($arFields["TIMESTAMP_X"]);
unset($arFields["DATE_REGISTER"]);
if (
isset($arFields["PERSONAL_BIRTHDAY"])
&& $arFields["PERSONAL_BIRTHDAY"] != ''
&& $FORMAT_DATE !== false
)
{
$arFields["PERSONAL_BIRTHDAY"] = $DB->FormatDate($arFields["PERSONAL_BIRTHDAY"], $FORMAT_DATE, FORMAT_DATE);
}
$dbr_user = CUser::GetList($O, $B, Array("LOGIN_EQUAL_EXACT"=>$arFields["LOGIN"], "EXTERNAL_AUTH_ID"=>"__controller"));
if($ar_user = $dbr_user->Fetch())
{
$arFields['EXTERNAL_AUTH_ID'] = "__controller";
$USER_ID = $ar_user["ID"];
if(is_array($arFields["GROUPS_TO_ADD"]) && is_array($arFields["GROUPS_TO_DELETE"]))
{
$arFields["GROUP_ID"] = CUser::GetUserGroup($USER_ID);
foreach($arFields["GROUPS_TO_DELETE"] as $group_id)
{
$group_id = CGroup::GetIDByCode($group_id);
if($group_id > 0)
{
$p = array_search($group_id, $arFields["GROUP_ID"]);
if($p !== false)
unset($arFields["GROUP_ID"][$p]);
}
}
foreach($arFields["GROUPS_TO_ADD"] as $group_id)
{
$group_id = CGroup::GetIDByCode($group_id);
if($group_id > 0)
$arFields["GROUP_ID"][] = $group_id;
}
}
elseif(is_array($arFields["GROUP_ID"]))
{
$groups = $arFields["GROUP_ID"];
$arFields["GROUP_ID"] = array();
foreach($groups as $group_id)
{
$group_id = CGroup::GetIDByCode($group_id);
if($group_id > 0)
$arFields["GROUP_ID"][] = $group_id;
}
}
if(!$oUser->Update($USER_ID, $arFields))
return false;
}
else
{
$arFields['EXTERNAL_AUTH_ID'] = "__controller";
$arFields["LID"] = SITE_ID;
if(is_array($arFields["GROUP_ID"]))
{
$groups = $arFields["GROUP_ID"];
$arFields["GROUP_ID"] = array();
foreach($groups as $group_id)
{
$group_id = CGroup::GetIDByCode($group_id);
if($group_id > 0)
$arFields["GROUP_ID"][] = $group_id;
}
}
$USER_ID = $oUser->Add($arFields);
}
return $USER_ID;
}
function AuthorizeAdmin($arParams = Array())
{
global $USER;
$ADMIN_ID = 0;
if($arParams["ID"]>0)
$ADMIN_ID = $arParams["ID"];
else
{
unset($arParams["GROUP_ID"]);
$ADMIN_ID = CControllerClient::UpdateUser($arParams);
}
if($ADMIN_ID>0)
{
CUser::SetUserGroup($ADMIN_ID, Array(1));
$USER->Authorize($ADMIN_ID);
$USER->SetControllerAdmin();
return $ADMIN_ID;
}
return false;
}
function AuthorizeUser($arParams = Array())
{
global $USER;
$USER_ID = CControllerClient::UpdateUser($arParams);
if($USER_ID > 0)
{
$USER->Authorize($USER_ID);
return $USER_ID;
}
return false;
}
function OnExternalAuthList()
{
$arResult = Array(
Array(
"ID" => "__controller",
"NAME" => GetMessage("MAIN_CMEMBER_AUTH_TYPE")
)
);
return $arResult;
}
function PrepareUserInfo($arUser)
{
$arFields = array(
"ID",
"LOGIN",
"NAME",
"LAST_NAME",
"EMAIL",
"PERSONAL_PROFESSION",
"PERSONAL_WWW",
"PERSONAL_ICQ",
"PERSONAL_GENDER",
"PERSONAL_BIRTHDAY",
"PERSONAL_PHONE",
"PERSONAL_FAX",
"PERSONAL_MOBILE",
"PERSONAL_PAGER",
"PERSONAL_STREET",
"PERSONAL_MAILBOX",
"PERSONAL_CITY",
"PERSONAL_STATE",
"PERSONAL_ZIP",
"PERSONAL_COUNTRY",
"PERSONAL_NOTES",
"WORK_COMPANY",
"WORK_DEPARTMENT",
"WORK_POSITION",
"WORK_WWW",
"WORK_PHONE",
"WORK_FAX",
"WORK_PAGER",
"WORK_STREET",
"WORK_MAILBOX",
"WORK_CITY",
"WORK_STATE",
"WORK_ZIP",
"WORK_COUNTRY",
"WORK_PROFILE",
"WORK_NOTES",
);
$arSaveUser = array();
foreach ($arFields as $key)
$arSaveUser[$key] = $arUser[$key];
return $arSaveUser;
}
function SendMessage($name, $status = 'Y', $description = '')
{
// send to controller
$arVars =
Array(
"NAME" => $name,
"STATUS" => $status,
"DESCRIPTION"=> $description,
);
$oRequest = new CControllerClientRequestTo("log", $arVars);
if(($oResponse = $oRequest->SendWithCheck())==false)
return false;
if(!$oResponse->OK())
{
$e = new CApplicationException(GetMessage("MAIN_CMEMBER_ERR2").": ".$oResponse->text);
$GLOBALS["APPLICATION"]->ThrowException($e);
return false;
}
}
function InitTicket($controller_url)
{
// generating own member_id and temporary ticket
$member_id = substr("m".md5(uniqid(rand(), true)), 0, 32);
COption::SetOptionString("main", "controller_member_id", $member_id);
$member_secret_id = substr("m".md5(uniqid(rand(), true)), 0, 32);
COption::SetOptionString("main", "controller_member_secret_id", $member_secret_id);
$ticket_id = substr("m".md5(uniqid(rand(), true)), 0, 32);
COption::SetOptionString("main", "controller_ticket", time()."|".$ticket_id."|".$controller_url);
COption::SetOptionString("main", "controller_url", $controller_url);
return array($member_id, $member_secret_id, $ticket_id);
}
function JoinToControllerEx($controller_url, $controller_login, $controller_password, $arMemberParams = Array())
{
if(COption::GetOptionString("main", "controller_member", "N")=="Y")
return false;
if(strlen($arMemberParams["URL"])<=0)
$arMemberParams["URL"] = $_SERVER['HTTP_HOST'];
list($member_id, $member_secret_id, $ticket_id) = CControllerClient::InitTicket($controller_url);
// send to controller
$arVars =
Array(
"member_secret_id" => $member_secret_id,
"ticket_id" => $ticket_id,
"admin_login" => $controller_login,
"admin_password" => $controller_password,
"url" => $arMemberParams["URL"],
"name" => $arMemberParams["NAME"],
"contact_person" => $arMemberParams["CONTACT_PERSON"],
"email" => $arMemberParams["EMAIL"],
"shared_kernel" => ($arMemberParams["SHARED_KERNEL"]?"Y":"N"),
);
if($arMemberParams["CONTROLLER_GROUP"]>0)
$arVars['group_id'] = $arMemberParams["CONTROLLER_GROUP"];
$oRequest = new CControllerClientRequestTo("join", $arVars);
if(($oResponse = $oRequest->Send())==false)
return false;
if(!$oResponse->OK())
{
$e = new CApplicationException(GetMessage("MAIN_CMEMBER_ERR3").": ".$oResponse->text);
$GLOBALS["APPLICATION"]->ThrowException($e);
return false;
}
COption::SetOptionString("main", "controller_member", "Y");
global $USER;
$USER->Authorize($USER->GetID());
return true;
}
function JoinToController($controller_url, $controller_login, $controller_password, $site_url = false, $controller_group = false, $site_name = false, $bSharedKernel = false)
{
$arMemberParams = Array(
"URL" => $site_url,
"NAME" => $site_name,
"SHARED_KERNEL" => $bSharedKernel,
"CONTROLLER_GROUP" => $controller_group
);
return CControllerClient::JoinToControllerEx($controller_url, $controller_login, $controller_password, $arMemberParams);
}
function RemoveFromController($controller_login, $controller_password)
{
if(COption::GetOptionString("main", "controller_member", "N")!="Y")
return false;
// send to controller
$arVars =
Array(
"admin_login" => $controller_login,
"admin_password"=> $controller_password,
);
$oRequest = new CControllerClientRequestTo("remove", $arVars);
if(($oResponse = $oRequest->SendWithCheck())==false)
return false;
if(!$oResponse->OK())
{
$e = new CApplicationException(GetMessage("MAIN_CMEMBER_ERR4").": ".$oResponse->text);
$GLOBALS["APPLICATION"]->ThrowException($e);
return false;
}
COption::SetOptionString("main", "controller_member", "N");
return true;
}
function UpdateCounters()
{
if(COption::GetOptionString("main", "controller_member", "N") != "Y")
{
//remove this agent when disconnected from the controller
return "";
}
else
{
$oRequest = new CControllerClientRequestTo("update_counters");
$oResponse = $oRequest->SendWithCheck();
if($oResponse == false)
error_log("CControllerClient::UpdateCounters: unknown error");
elseif(!$oResponse->OK())
error_log("CControllerClient::UpdateCounters: ".$oResponse->text);
return "CControllerClient::UpdateCounters();";
}
}
function ExecuteEvent($eventName, $arParams = array())
{
if(COption::GetOptionString("main", "controller_member", "N") != "Y")
{
return null;
}
else
{
$oRequest = new CControllerClientRequestTo("execute_event", array(
"event_name" => $eventName,
"parameters" => $arParams,
));
$oResponse = $oRequest->SendWithCheck();
if($oResponse == false)
error_log("CControllerClient::ExecuteEvent: unknown error");
elseif(!$oResponse->OK())
error_log("CControllerClient::ExecuteEvent: ".$oResponse->text);
return $oResponse->arParameters['result'];
}
}
function Unlink()
{
$disconnect_command = COption::GetOptionString("main", "~controller_disconnect_command", "");
if(strlen($disconnect_command)>0)
eval($disconnect_command);
COption::SetOptionString("main", "controller_member", "N");
}
function GetBackup($bRefresh = false)
{
static $arCachedData;
if(!isset($arCachedData) || $bRefresh)
$arCachedData = unserialize(COption::GetOptionString("main", "~controller_backup", ""));
return $arCachedData;
}
function SetBackup($arBackup)
{
COption::SetOptionString("main", "~controller_backup", serialize($arBackup));
CControllerClient::GetBackup(true);
}
function SetOptionString($module_id, $option_id, $value)
{
$arBackup = CControllerClient::GetBackup();
if(!is_set($arBackup["options"][$module_id], $option_id))
{
$arBackup["options"][$module_id][$option_id] = COption::GetOptionString($module_id, $option_id, "");
CControllerClient::SetBackup($arBackup);
}
COption::SetOptionString($module_id, $option_id, $value);
}
function RestoreOption($module_id, $option_id)
{
$arBackup = CControllerClient::GetBackup();
if(is_set($arBackup["options"][$module_id], $option_id))
{
COption::SetOptionString($module_id, $option_id, $arBackup["options"][$module_id][$option_id]);
unset($arBackup["options"][$module_id][$option_id]);
CControllerClient::SetBackup($arBackup);
return true;
}
return false;
}
function SetModules($arModules)
{
$arInstalled = Array();
$arm = CModule::_GetCache();
foreach($arm as $module_id => $tr)
$arInstalled[] = $module_id;
$arBackup = CControllerClient::GetBackup();
if(!isset($arBackup["modules"]))
{
$arBackup["modules"] = $arInstalled;
CControllerClient::SetBackup($arBackup);
}
foreach($arModules as $module_id=>$status)
{
if(!($oModule = CModule::CreateModuleObject($module_id)))
continue;
if($status=="Y" && !in_array($module_id, $arInstalled))
{
if(!method_exists($oModule, "InstallDB") || $oModule->InstallDB()===false)
$oModule->Add();
}
elseif($status=="N" && in_array($module_id, $arInstalled))
{
$oModule->Remove();
}
}
return true;
}
function RestoreModules()
{
$arBackup = CControllerClient::GetBackup();
if(isset($arBackup["modules"]))
{
$oModule = new CModule();
$arWasInstalled = $arBackup["modules"];
$arNowInstalled = Array();
$arm = CModule::_GetCache();
foreach($arm as $module_id => $tr)
$arNowInstalled[] = $module_id;
foreach($arNowInstalled as $module_id)
{
if(!in_array($module_id, $arWasInstalled))
{
$oModule->MODULE_ID = $module_id;
$oModule->Remove();
}
else
unset($arWasInstalled[array_search($module_id, $arWasInstalled)]);
}
foreach($arWasInstalled as $module_id)
{
$oModule->MODULE_ID = $module_id;
$oModule->Add();
}
unset($arBackup["modules"]);
CControllerClient::SetBackup($arBackup);
}
}
function RestoreGroupSecurity($group_code, $arModules)
{
$arBackup = CControllerClient::GetBackup();
if(($group_id = CGroup::GetIDByCode($group_code))<=0)
return false;
$arBackup = CControllerClient::GetBackup();
$old_settings = $arBackup["security"][$group_code];
if(!isset($old_settings))
return ;
foreach($old_settings as $module_id=>$level)
{
if(!in_array($module_id, $arModules))
continue;
CGroup::SetModulePermission($group_id, $module_id, $level);
unset($arBackup["security"][$group_code][$module_id]);
}
CControllerClient::SetBackup($arBackup);
}
function SetTaskSecurity($task_id, $module_id, $arOperations, $letter = '')
{
$ID = 0;
$dbr_task = CTask::GetList(Array(), Array('NAME'=>$task_id, 'MODULE_ID'=>$module_id, "BINDING" => 'module'));
if($ar_task = $dbr_task->Fetch())
{
if($ar_task['SYS']=='Y')
return false;
$ID = $ar_task['ID'];
}
$arFields = array(
"NAME" => $task_id,
"LETTER" => $letter,
"BINDING" => 'module',
"MODULE_ID" => $module_id
);
if($ID>0)
$res = CTask::Update($arFields, $ID);
else
{
$ID = CTask::Add($arFields);
$res = ($ID>0);
if($res)
{
$arBackup = CControllerClient::GetBackup();
$arBackup['security_task'][] = $ID;
CControllerClient::SetBackup($arBackup);
}
}
if($res)
{
CTask::SetOperations($ID, $arOperations, true);
}
}
function SetGroupSecurity($group_code, $arPermissions, $arSubGroups = false)
{
if(($group_id = CGroup::GetIDByCode($group_code))<=0)
return false;
$arBackup = CControllerClient::GetBackup();
foreach($arPermissions as $module_id=>$level)
{
if(!is_set($arBackup["security"][$group_code], $module_id))
{
$arBackup["security"][$group_code][$module_id] = CGroup::GetModulePermission($group_id, $module_id);
}
CGroup::SetModulePermission($group_id, $module_id, $level);
}
if(is_array($arSubGroups))
{
$arSubordGroupID = Array();
foreach($arSubGroups as $sub_group_id)
{
$sub_group_id = CGroup::GetIDByCode($sub_group_id);
if($sub_group_id > 0)
$arSubordGroupID[] = $sub_group_id;
}
if(!is_set($arBackup["security_subord_groups"], $group_code))
{
$arBackup["security_subord_groups"][$group_code] = CGroup::GetSubordinateGroups($group_id);
}
CGroup::SetSubordinateGroups($group_id, $arSubordGroupID);
}
CControllerClient::SetBackup($arBackup);
}
function RestoreSecurity($arExcludeGroups = array())
{
$arBackup = CControllerClient::GetBackup();
if(!is_array($arBackup))
return true;
if(is_array($arBackup["security"]))
{
foreach($arBackup["security"] as $group_code=>$perms)
{
if(in_array($group_code, $arExcludeGroups))
continue;
if(($group_id = CGroup::GetIDByCode($group_code))>0)
{
foreach($perms as $module_id=>$level)
CGroup::SetModulePermission($group_id, $module_id, $level);
if(isset($arBackup["security_subord_groups"][$group_code]))
CGroup::SetSubordinateGroups($group_id, $arBackup["security_subord_groups"][$group_code]);
}
unset($arBackup["security"][$group_code]);
unset($arBackup["security_subord_groups"][$group_code]);
}
if(count($arBackup["security"])<=0)
unset($arBackup["security"]);
CControllerClient::SetBackup($arBackup);
}
return true;
}
function RestoreAll()
{
$arBackup = CControllerClient::GetBackup();
if(!is_array($arBackup))
return true;
if(is_array($arBackup["options"]))
{
foreach($arBackup["options"] as $module_id=>$options)
{
foreach($options as $option_id=>$option_value)
{
COption::SetOptionString($module_id, $option_id, $option_value);
}
}
}
CControllerClient::RestoreModules();
CControllerClient::RestoreSecurity();
if(is_array($arBackup['security_task']))
foreach($arBackup['security_task'] as $task_id)
CTask::Delete($task_id);
CControllerClient::SetBackup(array());
return true;
}
function GetInstalledOptions($module_id)
{
$arOptions = CControllerClient::GetBackup();
$arOptions = $arOptions["options"][$module_id];
if(!is_array($arOptions))
return Array();
return $arOptions;
}
function RunCommand($command, $oRequest, $oResponse)
{
global $APPLICATION, $USER, $DB;
return eval($command);
}
}
/////////////////////////////////////////////////////////////////
// Áàçîâûé êëàññ äëÿ êëàññîâ ðàçëè÷íûõ ïàêåòîâ
class __CControllerPacket
{
var $member_id;
var $session_id;
var $version;
var $strParameters = "";
var $arParameters = Array();
var $hash;
var $secret_id;
var $encoding;
////////////////////////////////////////////////////
// General methods:
function Debug($sText)
{
if(!defined($this->debug_const) || constant($this->debug_const)!==true)
return;
if(!defined($this->debug_file_const))
$dirname = $_SERVER['DOCUMENT_ROOT'].'/bitrix/controller_logs/';
else
$dirname = constant($this->debug_file_const);
CheckDirPath($dirname);
$session_id = $this->session_id;
if(strlen($session_id)<=0)
$session_id = "gen_".md5(uniqid(rand(), true));
$filename = $dirname.$session_id.".log";
ignore_user_abort(true);
if ($fp = @fopen($filename, "ab+"))
{
if (flock($fp, LOCK_EX))
{
@fwrite($fp, date("Y-m-d H:i:s")." - ".$sText."\n");
@fwrite($fp, "----------\n");
@fflush($fp);
@flock($fp, LOCK_UN);
@fclose($fp);
}
}
ignore_user_abort(false);
}
function _decode(&$arParameters, $from ,$to)
{
global $APPLICATION;
if(is_array($arParameters))
{
$res = array();
foreach($arParameters as $key => $value)
{
if(is_string($key))
$key = $APPLICATION->ConvertCharset($key, $from, $to);
$this->_decode($value, $from, $to);
$res[$key] = $value;
}
$arParameters = $res;
}
elseif(is_string($arParameters))
{
$arParameters = $APPLICATION->ConvertCharset($arParameters, $from, $to);
}
}
}
///////////////////////////////////////////////////////////////////////////////////////////
// Áàçîâûé êëàññ äëÿ êëàññîâ òèïà Request:
//
// Äëÿ èñïîëüçîâàíèÿ íà êîíòðîëëåðå:
// CControllerServerRequestTo - Êëàññ äëÿ îòïðàâêè çàïðîñà êëèåíòó
// CControllerServerRequestFrom - Êëàññ äëÿ ïîëó÷åíèÿ çàïðîñà îò êëèåíòà
//
// Äëÿ èñïîëüçîâàíèÿ íà êëèåíòå:
// CControllerClientRequestTo - Êëàññ äëÿ îòïðàâêè çàïðîñà íà ñåðâåð
// CControllerClientRequestFrom - Êëàññ äëÿ ïîëó÷åíèÿ çàïðîñà îò ñåðâåðà
///////////////////////////////////////////////////////////////////////////////////////////
class __CControllerPacketRequest extends __CControllerPacket
{
var $operation;
///////////////////////////////////
//Äëÿ ðàáîòå â êëàññàõ ïîëó÷àþùèõ ðåçóëüòàòû (CControllerClientRequestFrom, CControllerServerRequestFrom):
///////////////////////////////////
// çàïîëíÿåò îáúåêò ïåðåìåííûìè, ïðèøåäøèìè â $_REQUEST
function InitFromRequest()
{
global $APPLICATION;
//AddMessage2Log('InitFromRequest: '.print_r($_REQUEST, true));
$this->member_id = $_REQUEST['member_id'];
$this->session_id = $_REQUEST['session_id'];
$this->operation = $_REQUEST['operation'];
if(isset($_REQUEST['version']))
$this->version = $_REQUEST['version'];
if(isset($_REQUEST['encoding']))
$this->encoding = $_REQUEST['encoding'];
if(isset($_REQUEST['parameters']))
{
$this->strParameters = base64_decode($_REQUEST['parameters']);
if(CheckSerializedData($this->strParameters))
{
$arParameters = unserialize($this->strParameters);
if(isset($_REQUEST['encoding']))
{
if(array_key_exists("file", $arParameters))
{
$file = $arParameters["file"];
unset($arParameters["file"]);
$this->_decode($arParameters, $_REQUEST['encoding'], SITE_CHARSET);
$arParameters["file"] = $file;
}
else
{
$this->_decode($arParameters, $_REQUEST['encoding'], SITE_CHARSET);
}
}
$this->arParameters = $arParameters;
}
}
$this->hash = $_REQUEST['hash'];
}
// ïðîâåðÿåò öåëîñòíîñòü è áåçîïàñíîñòü ïðèøåäøåãî çàïðîñà
function Check()
{
global $APPLICATION;
$hash = $this->operation."|".$this->strParameters."|".$this->secret_id;
$md5hash = md5($hash);
if($md5hash != $this->hash)
{
$e = new CApplicationException("Hash check failed: hash(".$hash.")=".$md5hash." != ".$this->hash);
$GLOBALS["APPLICATION"]->ThrowException($e);
return false;
}
return true;
}
//îïðåäåëÿåò ïðèøåë ëè çàïðîñ èñïîëüçóÿ âûçîâ íà ÀÏÈ èëè ÷åðåç ðåäèðåêò
function Internal()
{
return (count($_POST)>0);
}
///////////////////////////////////////
// Äëÿ ðàáîòû â êëàññàõ îòïðàâëÿþùèõ çàïðîñû (CControllerClientRequestTo, CControllerServerRequestTo):
///////////////////////////////////////
// ñîçäàåò ñòðîêó äëÿ îòïðàâêè íà ïðèíèìàþùóþ ñòîðîíó, ñ ïîäïèñüþ ïàêåòà
function MakeRequestString()
{
global $APPLICATION;
$result = "operation=".$this->operation.
"&version=".$this->version.
"&session_id=".$this->session_id.
"&member_id=".urlencode($this->member_id).
"&encoding=".urlencode(SITE_CHARSET);
if(is_array($this->arParameters))
{
$result .= "¶meters=".urlencode(base64_encode(serialize($this->arParameters)));
}
$this->Sign();
$result .= "&hash=".urlencode($this->hash);
return $result;
}
// ïîäïèñûâàåò ïàêåò (íàïðÿìóþ íå èñïîëüçóåòñÿ)
function Sign()
{
$hash = md5($this->operation."|".serialize($this->arParameters)."|".$this->secret_id);
$this->hash = $hash;
}
// îòïðàâëÿåò çàïðîñ â áðàóçåðå ÷åðåç ðåäèðåêò íà çàäàííûé óðë
function RedirectRequest($url)
{
if(strpos($url, "?")>0)
$url .= '&';
else
$url .= '?';
$url .= $this->MakeRequestString();
$this->Debug("Request by redirect:\r\nPacket:".print_r($this, true)."\r\n".$url."\r\n");
LocalRedirect($url, true);
}
// îòïðàâëÿåò çàïðîñ íà ïðèíèìàþùóþ ñòîðîíó
function Send($url, $page)
{
$server_port = 80;
$server_name = strtolower(trim($url, "/ \r\n\t"));
if(substr($server_name, 0, 7)=='http://')
{
$server_name = substr($server_name, 7);
}
elseif(substr($server_name, 0, 8)=='https://')
{
$server_name = substr($server_name, 8);
$server_port = 443;
}
if(preg_match('/.+:([0-9]+)$/', $server_name, $matches))
{
$server_port = $matches[1];
$server_name = substr($server_name, 0, 0 - strlen($server_port) - 1);
}
$proxy_url = COption::GetOptionString("main", "controller_proxy_url", "");
$proxy_port = COption::GetOptionString("main", "controller_proxy_port", "");
$proxy_user = COption::GetOptionString("main", "controller_proxy_user", "");
$proxy_password = COption::GetOptionString("main", "controller_proxy_password", "");
// ñîåäèíÿåìñÿ ñ óäàëåííûì ñåðâåðîì
$bUseProxy = (strlen($proxy_url) > 0 && strlen($proxy_port) > 0);
if($bUseProxy)
{
$proxy_port = intval($proxy_port);
if ($proxy_port <= 0)
$proxy_port = 80;
$requestIP = $proxy_url;
$requestPort = $proxy_port;
}
else
{
$requestIP = $server_name;
$requestPort = $server_port;
}
$conn = @fsockopen(($requestPort==443? 'ssl://': '').$requestIP, $requestPort, $errno, $errstr, 30);
if(!$conn)
{
$this->Debug("We can't send request to the $server_name:$server_port from member#".$this->member_id."(".$this->secret_id."):\r\n".$strError);
$strError = GetMessage("MAIN_CMEMBER_ERR5").$server_name.":".$server_port." (".$errstr.")";
if(is_object($GLOBALS["APPLICATION"]))
{
$e = new CApplicationException(htmlspecialcharsex($strError));
$GLOBALS["APPLICATION"]->ThrowException($e);
}
return false;
}
$strVars = $this->MakeRequestString();
// çàïóñêàåì, ïîëó÷àåì ðåçóëüòàò
if ($bUseProxy)
{
$strRequest = "POST http://".$server_name.":".$server_port.$page." HTTP/1.0\r\n";
if (strlen($proxy_user) > 0)
$strRequest .= "Proxy-Authorization: Basic ".base64_encode($proxy_user.":".$proxy_password)."\r\n";
}
else
{
$strRequest = "POST ".$page." HTTP/1.0\r\n";
}
$strRequest .= "User-Agent: BitrixControllerMember\r\n";
$strRequest .= "Accept: */*\r\n";
$strRequest .= "Host: ".$server_name."\r\n";
$strRequest .= "Accept-Language: en\r\n";
$strRequest .= "Content-type: application/x-www-form-urlencoded\r\n";
$strRequest .= "Content-length: ".strlen($strVars)."\r\n\r\n";
$strRequest .= $strVars."\r\n";
$this->Debug(
"We send request to the $server_name:$server_port from member#".$this->member_id."(".$this->secret_id."):\r\n".
"Packet:".print_r($this, true)."\r\n".
"$strVars\r\n"
);
fputs($conn, $strRequest);
$header = '';
while (($line = fgets($conn, 4096)) && $line!="\r\n")
$header.=$line;
$result = '';
while ($line = fread($conn, 4096))
$result .= $line;
fclose($conn);
$ar_result = array();
$packet_result = new __CControllerPacketResponse();
$packet_result->secret_id = $this->secret_id;
$packet_result->ParseResult($result);
$this->Debug(
"We get response from $server_name:$server_port to member#".$packet_result->member_id."(".$this->secret_id."):\r\n".
"Packet (security check ".($packet_result->Check()?"passed":"failed")."): ".print_r($packet_result, true)."\r\n".
$result."\r\n"
);
return $packet_result;
}
}
/////////////////////////////////////////////////////////
// Áàçîâûé êëàññ äëÿ êëàññîâ òèïà Response:
//
// Äëÿ èñïîëüçîâàíèÿ íà êîíòðîëëåðå:
// CControllerServerResponseFrom - Êëàññ äëÿ ïîëó÷åíèÿ îòâåòà êëèåíòà íà ñåðâåðå
// CControllerServerResponseTo - Êëàññ äëÿ îòïðàâêè ðåçóëüòàòîâ âûïîëíåíèÿ çàïðîñà íàçàä íà êëèåíòà
//
// Äëÿ èñïîëüçîâàíèÿ íà êëèåíòå:
// CControllerClientResponseFrom - Êëàññ äëÿ ïîëó÷åíèÿ îòâåòà êîíòðîëëåðà íà êëèåíòå
// CControllerClientResponseTo - Êëàññ äëÿ îòïðàâêè ðåçóëüòàòîâ âûïîëíåíèÿ çàïðîñà íàçàä íà êîíòðîëëåð
//////////////////////////////////////////////////////////
class __CControllerPacketResponse extends __CControllerPacket
{
var $status, $text;
function _InitFromRequest($oPacket, $arExclude = array('operation', 'arParameters'))
{
if(is_object($oPacket))
{
$vars = get_object_vars($oPacket);
foreach($vars as $name=>$value)
if(!in_array($name, $arExclude))
$this->$name = $value;
}
}
//////////////////////////////////////////////
// Ìåòîäû äëÿ ðàáîòû â êëàññàõ ïðèíèìàþùèõ ðåçóëüòàò (CControllerServerResponseFrom, CControllerClientResponseFrom):
//////////////////////////////////////////////
// Ïðîâåðÿåò ïîäëèííîñòü ïðèñëàííîãî ðåçóëüòàòà
function Check()
{
$hash = $this->status."|".$this->text."|".$this->strParameters."|".$this->secret_id;
$md5hash = md5($hash);
if($md5hash != $this->hash)
{
if(is_object($GLOBALS["APPLICATION"]))
{
$e = new CApplicationException("Hash check failed: hash(".$hash.")=".$md5hash." != ".$this->hash);
$GLOBALS["APPLICATION"]->ThrowException($e);
}
return false;
}
return true;
}
// Âîçâðàùàåò óñïåøíî ëè âûïîëíèëñÿ çàïðîñ ïî ñòàòóñ åãî îòâåòà
function OK()
{
return (substr($this->status, 0, 1)=="2");
}
// Ðàçáèðàåò ñòðîêó îòâåòà ïî ïîëÿì îáúåêòà
function ParseResult($result)
{
global $APPLICATION;
$ar_result = array();
$pairs = explode('&', trim($result, " \n\r\t"));
foreach($pairs as $pair)
{
list($name, $value) = explode('=', $pair, 2);
$ar_result[$name] = $value;
}
$this->session_id = urldecode($ar_result['session_id']);
$this->member_id = urldecode($ar_result['member_id']);
$this->hash = urldecode($ar_result['hash']);
$this->status = urldecode($ar_result['status']);
$this->text = urldecode($ar_result['text']);
if(isset($ar_result['encoding']))
$this->encoding = urldecode($ar_result['encoding']);
$this->strParameters = base64_decode(urldecode($ar_result['parameters']));
if(CheckSerializedData($this->strParameters))
{
$arParameters = unserialize($this->strParameters);
if(isset($ar_result['encoding']))
{
if(array_key_exists("file", $arParameters))
{
$file = $arParameters["file"];
unset($arParameters["file"]);
$this->_decode($arParameters, $this->encoding, SITE_CHARSET);
$arParameters["file"] = $file;
}
else
{
$this->_decode($arParameters, $this->encoding, SITE_CHARSET);
}
if($this->text && is_object($APPLICATION))
$this->text = $APPLICATION->ConvertCharset($this->text, $this->encoding, SITE_CHARSET);
}
$this->arParameters = $arParameters;
}
$this->version = $ar_result['version'];
if(strlen($this->status)<=0 && strlen($this->text)<=0 && strlen($this->member_id)<=0)
{
$this->status = "479";
$this->text = GetMessage("MAIN_CMEMBER_ERR7")." ".substr($result, 0, 1000);
}
}
///////////////////////////////////////
// Áàçîâûå ìåòîäû äëÿ èñïîëüçîâàíèÿ â êëàññàõ îòïðàâëÿþùèõ ðåçóëüòàò (CControllerServerResponseTo, CControllerClientResponseTo):
///////////////////////////////////////
// âîçâðàùàåò îòôîðìàòèðîâàííóþ ñòðîêó îòâåòà â ôîðìàòå ïîíÿòíîì äëÿ ïðèåìà íà ñåðâåðå, ñ ïîäïèñüþ
function GetResponseBody($log = false)
{
$result = "status=".urlencode($this->status).
"&text=".urlencode($this->text).
"&version=".urlencode($this->version).
"&session_id=".urlencode($this->session_id).
"&member_id=".urlencode($this->member_id).
"&encoding=".urlencode(SITE_CHARSET);
$result .= "¶meters=".urlencode(base64_encode(serialize($this->arParameters)));
$this->Sign();
$result .= "&hash=".urlencode($this->hash);
if(defined($this->debug_const) && constant($this->debug_const)===true)
$result .= "&hash_orig=".urlencode($this->status."|".$this->text."|".serialize($this->arParameters)."|".$this->secret_id);
if($log)
$this->Debug("We send errored response back:\r\nPacket:\r\n".serialize($this)."\r\n".$result."\r\n");
return $result;
}
// ïîäïèñûâàåò ïàêåò ïåðåä îòïðàâêîé (íå èñïîëüçóåòñÿ íàïðÿìóþ)
function Sign()
{
$hash = $this->status."|".$this->text."|".serialize($this->arParameters)."|".$this->secret_id;
//AddMessage2Log("\r\n\r\n\r\n".md5($hash)."=\r\n".$hash."]");
$this->hash = md5($hash);
}
// îòïðàâëÿåò îòâåò îáðàòíî
function Send()
{
$this->Debug("We send response back:\r\nPacket:\r\n".print_r($this, true)."\r\n".$this->GetResponseBody()."\r\n");
while (@ob_end_flush());
echo $this->GetResponseBody();
}
}
// Êëàññ äëÿ îòïðàâêè çàïðîñà íà ñåðâåð
class CControllerClientRequestTo extends __CControllerPacketRequest
{
var $debug_const = "CONTROLLER_CLIENT_DEBUG";
var $debug_file_const = "CONTROLLER_CLIENT_LOG_DIR";
function CControllerClientRequestTo($operation, $arParameters = Array())
{
$this->member_id = COption::GetOptionString("main", "controller_member_id", "");
$this->secret_id = COption::GetOptionString("main", "controller_member_secret_id", "");
$this->operation = $operation;
$this->arParameters = $arParameters;
$this->session_id = md5(uniqid(rand(), true));
}
function SendWithCheck($page="/bitrix/admin/controller_ws.php")
{
$oResponse = $this->Send($page);
if($oResponse===false)
return false;
if(!$oResponse->Check())
{
if(is_object($GLOBALS["APPLICATION"]))
{
$e = new CApplicationException(GetMessage("MAIN_CMEMBER_ERR6"));
$GLOBALS["APPLICATION"]->ThrowException($e);
}
return false;
}
return $oResponse;
}
function Send($page="/bitrix/admin/controller_ws.php")
{
$this->Sign();
$oResponsePacket = parent::Send(COption::GetOptionString("main", "controller_url", ""), $page);
if($oResponsePacket === false)
return false;
$oResponse = new CControllerClientResponseFrom($oResponsePacket);
return $oResponse;
}
}
// Êëàññ ïîëó÷åíèÿ ðåçóëüòàòà íà êëèåíòå (îò êîíòðîëëåðà)
class CControllerClientResponseFrom extends __CControllerPacketResponse
{
var $debug_const = "CONTROLLER_CLIENT_DEBUG";
var $debug_file_const = "CONTROLLER_CLIENT_LOG_DIR";
function CControllerClientResponseFrom($oPacket)
{
$this->_InitFromRequest($oPacket, array());
}
}
class CControllerClientRequestFrom extends __CControllerPacketRequest
{
var $debug_const = "CONTROLLER_CLIENT_DEBUG";
var $debug_file_const = "CONTROLLER_CLIENT_LOG_DIR";
function CControllerClientRequestFrom()
{
$this->InitFromRequest();
$this->Debug('Request received from controller ('.($this->Check()?'checked':'check failed')."):\r\nPacket:\r\n".print_r($this, true));
}
function Check()
{
$member_id = COption::GetOptionString("main", "controller_member_id", "");
if(strlen($member_id)<=0 || $member_id != $this->member_id)
{
$e = new CApplicationException("Bad member_id: ((get)".$member_id."!=(own)".$this->member_id.")");
$GLOBALS["APPLICATION"]->ThrowException($e);
return false;
}
$member_secret_id = COption::GetOptionString("main", "controller_member_secret_id", "");
$this->secret_id = $member_secret_id;
return parent::Check();
}
}
// Êëàññ äëÿ îòñûëêè îòâåòà íà ñåðâåð
class CControllerClientResponseTo extends __CControllerPacketResponse
{
var $debug_const = "CONTROLLER_CLIENT_DEBUG";
var $debug_file_const = "CONTROLLER_CLIENT_LOG_DIR";
function CControllerClientResponseTo($oPacket = false)
{
$this->_InitFromRequest($oPacket);
}
}
class CControllerTools
{
function PackFileArchive($path)
{
include_once(dirname(__FILE__) . '/tar_gz.php');
if (file_exists($path))
{
$path = realpath($path);
$arcname = CTempFile::GetFileName(md5(uniqid(rand(), true)).'.tar.gz');
CheckDirPath($arcname);
$ob = new CArchiver($arcname);
$rem_path = dirname($path);
if ($ob->Add(array($path), false, $rem_path))
{
return $arcname;
}
}
return false;
}
function UnpackFileArchive($strfile, $path_to)
{
global $APPLICATION;
$res = true;
$arcname = CTempFile::GetFileName(md5(uniqid(rand(), true)).'.tar.gz');
CheckDirPath($arcname);
if(file_put_contents($arcname, $strfile) !== false)
{
include_once(dirname(__FILE__) . '/tar_gz.php');
$ob = new CArchiver($arcname);
CheckDirPath($_SERVER['DOCUMENT_ROOT'].$path_to);
$res = $ob->extractFiles($_SERVER['DOCUMENT_ROOT'].$path_to);
if(!$res && is_object($APPLICATION))
{
$arErrors = $ob->GetErrors();
if(count($arErrors))
{
$strError = "";
foreach($arErrors as $error)
$strError .= $error[1]."<br>";
$e = new CApplicationException($strError);
$APPLICATION->ThrowException($e);
}
}
}
return $res;
}
}
?>