composer/iTop
6
0
Fork 0
mirror of https://github.com/Combodo/iTop.git synced 2026-04-24 02:58:43 +02:00
Code Issues Packages Projects Releases Wiki Activity

Fix files using CrLf, convert them to Lf to have the whole repo using Lf

Browse Source 
Warn your git config (core.autocrlf = input or true)
This commit is contained in:
Pierre Goiffon
2018-09-04 17:38:22 +02:00
parent cad18bee73
commit 40a4e6d7b0
378 changed files with 152833 additions and 152833 deletions
Download Patch File Download Diff File Expand all files Collapse all files

590
webservices/rest.php
View File

@@ -1,295 +1,295 @@
<?php
// Copyright (C) 2010-2013 Combodo SARL
//
// This file is part of iTop.
//
// iTop is free software; you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// iTop is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with iTop. If not, see <http://www.gnu.org/licenses/>
/**
* Entry point for all the REST services
*
* --------------------------------------------------
* Create an object
* --------------------------------------------------
* POST itop/webservices/rest.php
* {
* operation: 'object_create',
* comment: 'Synchronization from blah...',
* class: 'UserRequest',
* results: 'id, friendlyname',
* fields:
* {
* org_id: 'SELECT Organization WHERE name = "Demo"',
* caller_id:
* {
* name: 'monet',
* first_name: 'claude',
* }
* title: 'Houston, got a problem!',
* description: 'The fridge is empty'
* contacts_list:
* [
* {
* role: 'pizza delivery',
* contact_id:
* {
* finalclass: 'Person',
* name: 'monet',
* first_name: 'claude'
* }
* }
* ]
* }
* }
*
*
* @copyright Copyright (C) 2010-2013 Combodo SARL
* @license http://opensource.org/licenses/AGPL-3.0
* @link https://www.itophub.io/wiki/page?id=2_5_0%3Aadvancedtopics%3Arest_json REST service documentation
* @example https://www.itophub.io/wiki/page?id=2_5_0%3Aadvancedtopics%3Arest_json_playground
*/
if (!defined('__DIR__')) define('__DIR__', dirname(__FILE__));
require_once(__DIR__.'/../approot.inc.php');
require_once(APPROOT.'/application/application.inc.php');
require_once(APPROOT.'/application/loginwebpage.class.inc.php');
require_once(APPROOT.'/application/ajaxwebpage.class.inc.php');
require_once(APPROOT.'/application/startup.inc.php');
require_once(APPROOT.'core/restservices.class.inc.php');
/**
* Result structure that is specific to the hardcoded verb 'list_operations'
*/
class RestResultListOperations extends RestResult
{
public $version;
public $operations;
public function AddOperation($sVerb, $sDescription, $sServiceProviderClass)
{
$this->operations[] = array(
'verb' => $sVerb,
'description' => $sDescription,
'extension' => $sServiceProviderClass
);
}
}
if (!function_exists('json_last_error_msg')) {
function json_last_error_msg() {
static $ERRORS = array(
JSON_ERROR_NONE => 'No error',
JSON_ERROR_DEPTH => 'Maximum stack depth exceeded',
JSON_ERROR_STATE_MISMATCH => 'State mismatch (invalid or malformed JSON)',
JSON_ERROR_CTRL_CHAR => 'Control character error, possibly incorrectly encoded',
JSON_ERROR_SYNTAX => 'Syntax error',
JSON_ERROR_UTF8 => 'Malformed UTF-8 characters, possibly incorrectly encoded'
);
$error = json_last_error();
return isset($ERRORS[$error]) ? $ERRORS[$error] : 'Unknown error';
}
}
////////////////////////////////////////////////////////////////////////////////
//
// Main
//
$oP = new ajax_page('rest');
$oCtx = new ContextTag('REST/JSON');
$sVersion = utils::ReadParam('version', null, false, 'raw_data');
$sOperation = utils::ReadParam('operation', null);
$sJsonString = utils::ReadParam('json_data', null, false, 'raw_data');
$sProvider = '';
try
{
utils::UseParamFile();
$iRet = LoginWebPage::DoLogin(false, false, LoginWebPage::EXIT_RETURN); // Starting with iTop 2.2.0 portal users are no longer allowed to access the REST/JSON API
if ($iRet == LoginWebPage::EXIT_CODE_OK)
{
// Extra validation of the profile
if ((MetaModel::GetConfig()->Get('secure_rest_services') == true) && !UserRights::HasProfile('REST Services User'))
{
// Web services access is limited to the users with the profile REST Web Services
$iRet = LoginWebPage::EXIT_CODE_NOTAUTHORIZED;
}
}
if ($iRet != LoginWebPage::EXIT_CODE_OK)
{
switch($iRet)
{
case LoginWebPage::EXIT_CODE_MISSINGLOGIN:
throw new Exception("Missing parameter 'auth_user'", RestResult::MISSING_AUTH_USER);
break;
case LoginWebPage::EXIT_CODE_MISSINGPASSWORD:
throw new Exception("Missing parameter 'auth_pwd'", RestResult::MISSING_AUTH_PWD);
break;
case LoginWebPage::EXIT_CODE_WRONGCREDENTIALS:
throw new Exception("Invalid login", RestResult::UNAUTHORIZED);
break;
case LoginWebPage::EXIT_CODE_PORTALUSERNOTAUTHORIZED:
throw new Exception("Portal user is not allowed", RestResult::UNAUTHORIZED);
break;
case LoginWebPage::EXIT_CODE_NOTAUTHORIZED:
throw new Exception("This user is not authorized to use the web services. (The profile REST Services User is required to access the REST web services)", RestResult::UNAUTHORIZED);
break;
default:
throw new Exception("Unknown authentication error (retCode=$iRet)", RestResult::UNAUTHORIZED);
}
}
if ($sVersion == null)
{
throw new Exception("Missing parameter 'version' (e.g. '1.0')", RestResult::MISSING_VERSION);
}
if ($sJsonString == null)
{
throw new Exception("Missing parameter 'json_data", RestResult::MISSING_JSON);
}
$aJsonData = @json_decode($sJsonString);
if ($aJsonData == null)
{
throw new Exception("Parameter json_data is not a valid JSON structure", RestResult::INVALID_JSON);
}
/** @var iRestServiceProvider[] $aProviders */
$aProviders = array();
foreach(get_declared_classes() as $sPHPClass)
{
$oRefClass = new ReflectionClass($sPHPClass);
if ($oRefClass->implementsInterface('iRestServiceProvider'))
{
$aProviders[] = new $sPHPClass;
}
}
$aOpToRestService = array(); // verb => $oRestServiceProvider
foreach ($aProviders as $oRestSP)
{
$aOperations = $oRestSP->ListOperations($sVersion);
foreach ($aOperations as $aOpData)
{
$aOpToRestService[$aOpData['verb']] = array
(
'service_provider' => $oRestSP,
'description' => $aOpData['description'],
);
}
}
if (count($aOpToRestService) == 0)
{
throw new Exception("There is no service available for version '$sVersion'", RestResult::UNSUPPORTED_VERSION);
}
$sOperation = RestUtils::GetMandatoryParam($aJsonData, 'operation');
if ($sOperation == 'list_operations')
{
$oResult = new RestResultListOperations();
$oResult->message = "Operations: ".count($aOpToRestService);
$oResult->version = $sVersion;
foreach ($aOpToRestService as $sVerb => $aOpData)
{
$oResult->AddOperation($sVerb, $aOpData['description'], get_class($aOpData['service_provider']));
}
}
else
{
if (!array_key_exists($sOperation, $aOpToRestService))
{
throw new Exception("Unknown verb '$sOperation' in version '$sVersion'", RestResult::UNKNOWN_OPERATION);
}
/** @var iRestServiceProvider $oRS */
$oRS = $aOpToRestService[$sOperation]['service_provider'];
$sProvider = get_class($oRS);
CMDBObject::SetTrackOrigin('webservice-rest');
$oResult = $oRS->ExecOperation($sVersion, $sOperation, $aJsonData);
}
}
catch(Exception $e)
{
$oResult = new RestResult();
if ($e->GetCode() == 0)
{
$oResult->code = RestResult::INTERNAL_ERROR;
}
else
{
$oResult->code = $e->GetCode();
}
$oResult->message = "Error: ".$e->GetMessage();
}
// Output the results
//
$sResponse = json_encode($oResult);
if ($sResponse === false)
{
$oJsonIssue = new RestResult();
$oJsonIssue->code = RestResult::INTERNAL_ERROR;
$oJsonIssue->message = 'json encoding failed with message: '.json_last_error_msg().'. Full response structure for debugging purposes (print_r+bin2hex): '.bin2hex(print_r($oResult, true));
$sResponse = json_encode($oJsonIssue);
}
$oP->add_header('Access-Control-Allow-Origin: *');
$sCallback = utils::ReadParam('callback', null);
if ($sCallback == null)
{
$oP->SetContentType('application/json');
$oP->add($sResponse);
}
else
{
$oP->SetContentType('application/javascript');
$oP->add($sCallback.'('.$sResponse.')');
}
$oP->Output();
// Log usage
//
if (MetaModel::GetConfig()->Get('log_rest_service'))
{
$oLog = new EventRestService();
$oLog->SetTrim('userinfo', UserRights::GetUser());
$oLog->Set('version', $sVersion);
$oLog->Set('operation', $sOperation);
$oLog->SetTrim('json_input', $sJsonString);
$oLog->Set('provider', $sProvider);
$sMessage = $oResult->message;
if (empty($oResult->message))
{
$sMessage = 'Ok';
}
$oLog->SetTrim('message', $sMessage);
$oLog->Set('code', $oResult->code);
$oLog->SetTrim('json_output', $sResponse);
$oLog->DBInsertNoReload();
}
<?php
// Copyright (C) 2010-2013 Combodo SARL
//
// This file is part of iTop.
//
// iTop is free software; you can redistribute it and/or modify
// it under the terms of the GNU Affero General Public License as published by
// the Free Software Foundation, either version 3 of the License, or
// (at your option) any later version.
//
// iTop is distributed in the hope that it will be useful,
// but WITHOUT ANY WARRANTY; without even the implied warranty of
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
// GNU Affero General Public License for more details.
//
// You should have received a copy of the GNU Affero General Public License
// along with iTop. If not, see <http://www.gnu.org/licenses/>
/**
* Entry point for all the REST services
*
* --------------------------------------------------
* Create an object
* --------------------------------------------------
* POST itop/webservices/rest.php
* {
* operation: 'object_create',
* comment: 'Synchronization from blah...',
* class: 'UserRequest',
* results: 'id, friendlyname',
* fields:
* {
* org_id: 'SELECT Organization WHERE name = "Demo"',
* caller_id:
* {
* name: 'monet',
* first_name: 'claude',
* }
* title: 'Houston, got a problem!',
* description: 'The fridge is empty'
* contacts_list:
* [
* {
* role: 'pizza delivery',
* contact_id:
* {
* finalclass: 'Person',
* name: 'monet',
* first_name: 'claude'
* }
* }
* ]
* }
* }
*
*
* @copyright Copyright (C) 2010-2013 Combodo SARL
* @license http://opensource.org/licenses/AGPL-3.0
* @link https://www.itophub.io/wiki/page?id=2_5_0%3Aadvancedtopics%3Arest_json REST service documentation
* @example https://www.itophub.io/wiki/page?id=2_5_0%3Aadvancedtopics%3Arest_json_playground
*/
if (!defined('__DIR__')) define('__DIR__', dirname(__FILE__));
require_once(__DIR__.'/../approot.inc.php');
require_once(APPROOT.'/application/application.inc.php');
require_once(APPROOT.'/application/loginwebpage.class.inc.php');
require_once(APPROOT.'/application/ajaxwebpage.class.inc.php');
require_once(APPROOT.'/application/startup.inc.php');
require_once(APPROOT.'core/restservices.class.inc.php');
/**
* Result structure that is specific to the hardcoded verb 'list_operations'
*/
class RestResultListOperations extends RestResult
{
public $version;
public $operations;
public function AddOperation($sVerb, $sDescription, $sServiceProviderClass)
{
$this->operations[] = array(
'verb' => $sVerb,
'description' => $sDescription,
'extension' => $sServiceProviderClass
);
}
}
if (!function_exists('json_last_error_msg')) {
function json_last_error_msg() {
static $ERRORS = array(
JSON_ERROR_NONE => 'No error',
JSON_ERROR_DEPTH => 'Maximum stack depth exceeded',
JSON_ERROR_STATE_MISMATCH => 'State mismatch (invalid or malformed JSON)',
JSON_ERROR_CTRL_CHAR => 'Control character error, possibly incorrectly encoded',
JSON_ERROR_SYNTAX => 'Syntax error',
JSON_ERROR_UTF8 => 'Malformed UTF-8 characters, possibly incorrectly encoded'
);
$error = json_last_error();
return isset($ERRORS[$error]) ? $ERRORS[$error] : 'Unknown error';
}
}
////////////////////////////////////////////////////////////////////////////////
//
// Main
//
$oP = new ajax_page('rest');
$oCtx = new ContextTag('REST/JSON');
$sVersion = utils::ReadParam('version', null, false, 'raw_data');
$sOperation = utils::ReadParam('operation', null);
$sJsonString = utils::ReadParam('json_data', null, false, 'raw_data');
$sProvider = '';
try
{
utils::UseParamFile();
$iRet = LoginWebPage::DoLogin(false, false, LoginWebPage::EXIT_RETURN); // Starting with iTop 2.2.0 portal users are no longer allowed to access the REST/JSON API
if ($iRet == LoginWebPage::EXIT_CODE_OK)
{
// Extra validation of the profile
if ((MetaModel::GetConfig()->Get('secure_rest_services') == true) && !UserRights::HasProfile('REST Services User'))
{
// Web services access is limited to the users with the profile REST Web Services
$iRet = LoginWebPage::EXIT_CODE_NOTAUTHORIZED;
}
}
if ($iRet != LoginWebPage::EXIT_CODE_OK)
{
switch($iRet)
{
case LoginWebPage::EXIT_CODE_MISSINGLOGIN:
throw new Exception("Missing parameter 'auth_user'", RestResult::MISSING_AUTH_USER);
break;
case LoginWebPage::EXIT_CODE_MISSINGPASSWORD:
throw new Exception("Missing parameter 'auth_pwd'", RestResult::MISSING_AUTH_PWD);
break;
case LoginWebPage::EXIT_CODE_WRONGCREDENTIALS:
throw new Exception("Invalid login", RestResult::UNAUTHORIZED);
break;
case LoginWebPage::EXIT_CODE_PORTALUSERNOTAUTHORIZED:
throw new Exception("Portal user is not allowed", RestResult::UNAUTHORIZED);
break;
case LoginWebPage::EXIT_CODE_NOTAUTHORIZED:
throw new Exception("This user is not authorized to use the web services. (The profile REST Services User is required to access the REST web services)", RestResult::UNAUTHORIZED);
break;
default:
throw new Exception("Unknown authentication error (retCode=$iRet)", RestResult::UNAUTHORIZED);
}
}
if ($sVersion == null)
{
throw new Exception("Missing parameter 'version' (e.g. '1.0')", RestResult::MISSING_VERSION);
}
if ($sJsonString == null)
{
throw new Exception("Missing parameter 'json_data", RestResult::MISSING_JSON);
}
$aJsonData = @json_decode($sJsonString);
if ($aJsonData == null)
{
throw new Exception("Parameter json_data is not a valid JSON structure", RestResult::INVALID_JSON);
}
/** @var iRestServiceProvider[] $aProviders */
$aProviders = array();
foreach(get_declared_classes() as $sPHPClass)
{
$oRefClass = new ReflectionClass($sPHPClass);
if ($oRefClass->implementsInterface('iRestServiceProvider'))
{
$aProviders[] = new $sPHPClass;
}
}
$aOpToRestService = array(); // verb => $oRestServiceProvider
foreach ($aProviders as $oRestSP)
{
$aOperations = $oRestSP->ListOperations($sVersion);
foreach ($aOperations as $aOpData)
{
$aOpToRestService[$aOpData['verb']] = array
(
'service_provider' => $oRestSP,
'description' => $aOpData['description'],
);
}
}
if (count($aOpToRestService) == 0)
{
throw new Exception("There is no service available for version '$sVersion'", RestResult::UNSUPPORTED_VERSION);
}
$sOperation = RestUtils::GetMandatoryParam($aJsonData, 'operation');
if ($sOperation == 'list_operations')
{
$oResult = new RestResultListOperations();
$oResult->message = "Operations: ".count($aOpToRestService);
$oResult->version = $sVersion;
foreach ($aOpToRestService as $sVerb => $aOpData)
{
$oResult->AddOperation($sVerb, $aOpData['description'], get_class($aOpData['service_provider']));
}
}
else
{
if (!array_key_exists($sOperation, $aOpToRestService))
{
throw new Exception("Unknown verb '$sOperation' in version '$sVersion'", RestResult::UNKNOWN_OPERATION);
}
/** @var iRestServiceProvider $oRS */
$oRS = $aOpToRestService[$sOperation]['service_provider'];
$sProvider = get_class($oRS);
CMDBObject::SetTrackOrigin('webservice-rest');
$oResult = $oRS->ExecOperation($sVersion, $sOperation, $aJsonData);
}
}
catch(Exception $e)
{
$oResult = new RestResult();
if ($e->GetCode() == 0)
{
$oResult->code = RestResult::INTERNAL_ERROR;
}
else
{
$oResult->code = $e->GetCode();
}
$oResult->message = "Error: ".$e->GetMessage();
}
// Output the results
//
$sResponse = json_encode($oResult);
if ($sResponse === false)
{
$oJsonIssue = new RestResult();
$oJsonIssue->code = RestResult::INTERNAL_ERROR;
$oJsonIssue->message = 'json encoding failed with message: '.json_last_error_msg().'. Full response structure for debugging purposes (print_r+bin2hex): '.bin2hex(print_r($oResult, true));
$sResponse = json_encode($oJsonIssue);
}
$oP->add_header('Access-Control-Allow-Origin: *');
$sCallback = utils::ReadParam('callback', null);
if ($sCallback == null)
{
$oP->SetContentType('application/json');
$oP->add($sResponse);
}
else
{
$oP->SetContentType('application/javascript');
$oP->add($sCallback.'('.$sResponse.')');
}
$oP->Output();
// Log usage
//
if (MetaModel::GetConfig()->Get('log_rest_service'))
{
$oLog = new EventRestService();
$oLog->SetTrim('userinfo', UserRights::GetUser());
$oLog->Set('version', $sVersion);
$oLog->Set('operation', $sOperation);
$oLog->SetTrim('json_input', $sJsonString);
$oLog->Set('provider', $sProvider);
$sMessage = $oResult->message;
if (empty($oResult->message))
{
$sMessage = 'Ok';
}
$oLog->SetTrim('message', $sMessage);
$oLog->Set('code', $oResult->code);
$oLog->SetTrim('json_output', $sResponse);
$oLog->DBInsertNoReload();
}