cmdbAbstractObject grant_by_profile,application true autoincrement priv_oauth_client id provider false name false true active inactive status inactive false description true client_id false client_secret false refresh_token true none refresh_token_expiration true none token true none token_expiration true none redirect_url _blank true MailInboxOAuth oauth_client_id 0 0 link false false public Overload-DBObject Get('status') == 'inactive') { $sLabel = Dict::S('itop-oauth-client:Message:MissingToken'); $sTitle = ''; $aTags['oauth-message'] = ['title' => $sTitle, 'css_classes' => 'ibo-object-details--tag--oauth-message', 'decoration_classes' => 'fas fa-exclamation-triangle', 'label' => $sLabel]; } elseif ($this->Get('used_for_smtp') == 'yes' && $oConfig->Get('email_transport_smtp.username') == $this->Get('name')) { $sLabel = Dict::S('itop-oauth-client:UsedForSMTP'); $sTestLabel = Dict::S('itop-oauth-client:TestSMTP'); $sTestURL = utils::GetAbsoluteUrlAppRoot().'setup/email.test.php'; $sLabel = Dict::S('itop-oauth-client:UsedForSMTP')." $sTestLabel"; $sTitle = ''; $aTags['oauth-message'] = ['title' => $sTitle, 'css_classes' => 'ibo-object-details--tag--oauth-message', 'decoration_classes' => 'fas fa-envelope', 'label' => $sLabel]; } } foreach ($aTags as $sIconId => $aIconData) { $aHeaderBlocks['subtitle'][static::HEADER_BLOCKS_SUBTITLE_TAG_PREFIX.$sIconId] = new Combodo\iTop\Application\UI\Base\Component\Html\Html(<<{$aIconData['label']} HTML ); } return $aHeaderBlocks; } ]]> false public Overload-DBObject false public Overload-DBObject false public Get('provider').'.com'; } ]]> false public false public Get('status') == 'active') { return new \League\OAuth2\Client\Token\AccessToken([ 'access_token' => $this->Get('token'), 'expires_in' => date_format(new DateTime($this->Get('token_expiration')), 'U') - time(), 'refresh_token' => $this->Get('refresh_token'), 'token_type' => 'Bearer', ]); } return null; } ]]> false public Set('token', $oAccessToken->getToken()); $this->Set('token_expiration', date(AttributeDateTime::GetSQLFormat(), $oAccessToken->getExpires())); if (!empty($oAccessToken->getRefreshToken())) { $this->Set('refresh_token', $oAccessToken->getRefreshToken()); } $this->Set('status', 'active'); $this->DBUpdate(); } ]]>

1 2 3 5 6 7 8

1 3 1 2 1 2 OAuthClient grant_by_profile,application false autoincrement priv_oauth_client_azure id true true SMTP IMAP scope SMTP,IMAP true advanced_scope true true simple advanced used_scope simple false true yes no used_for_smtp no true

10 10 10 20 30 40 50 60 70 80 20 10 10 20 30 40

10 10 10 10 10 false public Overload-DBObject Set('provider', 'Azure'); $this->Set('redirect_url', Combodo\iTop\Core\Authentication\Client\OAuth\OAuthClientProviderFactory::GetRedirectUri()); $this->Set('scope', 'SMTP, IMAP'); parent::PrefillCreationForm($aContextParam); } ]]> false public Overload-DBObject ListChanges(); if (array_key_exists('name', $aChanges) || array_key_exists('used_for_smtp', $aChanges)) { $sNewName = $this->Get('name'); $sNewUseForSMTP = $this->Get('used_for_smtp'); if ($sNewUseForSMTP == 'yes') { $oSearch = DBObjectSearch::FromOQL_AllData("SELECT OAuthClientGoogle WHERE name = :newname AND used_for_smtp = :newuseforsmtp AND id != :id UNION SELECT OAuthClientAzure WHERE name = :newname AND used_for_smtp = :newuseforsmtp AND id != :id"); $oSet = new DBObjectSet($oSearch, array(), ['id' => $this->GetKey(), 'newname' => $sNewName, 'newuseforsmtp' => $sNewUseForSMTP]); if ($oSet->Count() > 0) { $this->m_aCheckIssues[] = Dict::Format('OAuthClient:Name/UseForSMTPMustBeUnique', $sNewName, $sNewUseForSMTP); } } } } ]]> false public Overload-DBObject Get('provider'))) { $this->Set('provider', 'Azure'); } if (empty($this->Get('redirect_url'))) { $this->Set('redirect_url', Combodo\iTop\Core\Authentication\Client\OAuth\OAuthClientProviderFactory::GetRedirectUri()); } if (empty($this->Get('advanced_scope'))) { $this->Set('used_scope', 'simple'); if (count($this->Get('scope')->GetValues()) == 0) { $this->Set('scope', 'SMTP, IMAP'); } } else { $this->Set('used_scope', 'advanced'); $this->Set('scope', ''); } $aChanges = $this->ListChanges(); if (array_key_exists('client_id', $aChanges) || array_key_exists('client_secret', $aChanges) || array_key_exists('redirect_url', $aChanges)) { $sMessage = Dict::S('itop-oauth-client:Message:RegenerateToken'); self::SetSessionMessage(get_class($this), $this->GetKey(), 'RegenerateToken', $sMessage, 'info', 1); $this->Set('status', 'inactive'); } } ]]> false public Overload-DBObject false public Overload-DBObject false public false public Get('advanced_scope'))) { return $this->Get('advanced_scope'); } $aScopes = $this->Get('scope')->GetValues(); $aRawScopes = ['offline_access']; foreach ($aScopes as $sScope) { switch ($sScope) { case 'SMTP': $aRawScopes[] = 'https://outlook.office.com/SMTP.Send'; break; case 'IMAP': $aRawScopes[] = 'https://outlook.office.com/IMAP.AccessAsUser.All'; break; } } return implode(' ', $aRawScopes); } ]]> OAuthClient grant_by_profile,application false autoincrement priv_oauth_client_google id true true SMTP IMAP scope SMTP,IMAP true advanced_scope true true simple advanced used_scope simple false true yes no used_for_smtp no true

10 10 10 20 30 40 50 60 70 80 20 10 10 20 30 40

10 10 10 10 10 false public Overload-DBObject Set('provider', 'Google'); $this->Set('redirect_url', Combodo\iTop\Core\Authentication\Client\OAuth\OAuthClientProviderFactory::GetRedirectUri()); $this->Set('scope', 'SMTP, IMAP'); parent::PrefillCreationForm($aContextParam); } ]]> false public Overload-DBObject ListChanges(); if (array_key_exists('name', $aChanges) || array_key_exists('used_for_smtp', $aChanges)) { $sNewName = $this->Get('name'); $sNewUseForSMTP = $this->Get('used_for_smtp'); if ($sNewUseForSMTP == 'yes') { $oSearch = DBObjectSearch::FromOQL_AllData("SELECT OAuthClientGoogle WHERE name = :newname AND used_for_smtp = :newuseforsmtp AND id != :id UNION SELECT OAuthClientAzure WHERE name = :newname AND used_for_smtp = :newuseforsmtp AND id != :id"); $oSet = new DBObjectSet($oSearch, array(), ['id' => $this->GetKey(), 'newname' => $sNewName, 'newuseforsmtp' => $sNewUseForSMTP]); if ($oSet->Count() > 0) { $this->m_aCheckIssues[] = Dict::Format('OAuthClient:Name/UseForSMTPMustBeUnique', $sNewName, $sNewUseForSMTP); } } } } ]]> false public Overload-DBObject Get('provider'))) { $this->Set('provider', 'Google'); } if (empty($this->Get('redirect_url'))) { $this->Set('redirect_url', Combodo\iTop\Core\Authentication\Client\OAuth\OAuthClientProviderFactory::GetRedirectUri()); } if (empty($this->Get('advanced_scope'))) { $this->Set('used_scope', 'simple'); if (count($this->Get('scope')->GetValues()) == 0) { $this->Set('scope', 'SMTP, IMAP'); } } else { $this->Set('used_scope', 'advanced'); $this->Set('scope', ''); } $aChanges = $this->ListChanges(); if (array_key_exists('client_id', $aChanges) || array_key_exists('client_secret', $aChanges) || array_key_exists('redirect_url', $aChanges)) { $sMessage = Dict::S('itop-oauth-client:Message:RegenerateToken'); self::SetSessionMessage(get_class($this), $this->GetKey(), 'RegenerateToken', $sMessage, 'info', 1); $this->Set('status', 'inactive'); } } ]]> false public Overload-DBObject false public Overload-DBObject false public false public Get('advanced_scope'))) { return $this->Get('advanced_scope'); } $aScopes = $this->Get('scope')->GetValues(); $aRawScopes = []; foreach ($aScopes as $sScope) { switch ($sScope) { case 'SMTP': $aRawScopes['https://mail.google.com/'] = 'https://mail.google.com/'; break; case 'IMAP': $aRawScopes['https://mail.google.com/'] = 'https://mail.google.com/'; break; } } return implode(' ', $aRawScopes); } ]]> 100 ConfigurationTools 1 0 OAuthClient UR_ACTION_MODIFY