Task#165153 fix: Create new view in TJLogin to post token to Ionic. (#…

…124)
techjoomla · Oct 26, 2020 · d23b721 · d23b721
1 parent 61eb17f
commit d23b721
Show file tree

Hide file tree

Showing 5 changed files with 244 additions and 2 deletions.
diff --git a/code/site/controllers/applogin.php b/code/site/controllers/applogin.php
@@ -0,0 +1,37 @@
+<?php
+/**
+ * @package    API
+ * @copyright  Copyright (C) 2009-2020 Techjoomla, Tekdi Technologies Pvt. Ltd. All rights reserved.
+ * @license    GNU GPLv2 <http://www.gnu.org/licenses/old-licenses/gpl-2.0.html>
+ * @link       http://techjoomla.com
+ * Work derived from the original RESTful API by Techjoomla (https://github.com/techjoomla/Joomla-REST-API)
+ * and the com_api extension by Brian Edgerton (http://www.edgewebworks.com)
+ */
+
+defined('_JEXEC') or die('Restricted access');
+
+/**
+ * Class for a Applogin Controller
+ *
+ * @since  2.5.2
+ */
+class ApiControllerApplogin extends ApiController
+{
+	/**
+	 * Typical view method for MVC based architecture
+	 *
+	 * This function is provide as a default implementation, in most cases
+	 * you will need to override it in your own controllers.
+	 *
+	 * @param   boolean  $cachable   If true, the view output will be cached
+	 * @param   array    $urlparams  An array of safe URL parameters and their variable types, for valid values see {@link \JFilterInput::clean()}.
+	 *
+	 * @return  \JControllerLegacy  A \JControllerLegacy object to support chaining.
+	 *
+	 * @since   3.0
+	 */
+	public function display($cachable = false, $urlparams = array())
+	{
+		parent::display();
+	}
+}
diff --git a/code/site/router.php b/code/site/router.php
@@ -4,7 +4,7 @@
  * @copyright  Copyright (C) 2009-2017 Techjoomla, Tekdi Technologies Pvt. Ltd. All rights reserved.
  * @license    GNU GPLv2 <http://www.gnu.org/licenses/old-licenses/gpl-2.0.html>
  * @link       http://techjoomla.com
- * Work derived from the original RESTful API by Techjoomla (https://github.com/techjoomla/Joomla-REST-API) 
+ * Work derived from the original RESTful API by Techjoomla (https://github.com/techjoomla/Joomla-REST-API)
  * and the com_api extension by Brian Edgerton (http://www.edgewebworks.com)
  */
 
@@ -17,7 +17,7 @@
  */
 class APIRouter extends JComponentRouterBase
 {
-	private  $views = array('documentation', 'keys');
+	private  $views = array('documentation','applogin', 'keys');
 
 	/**
 	 * Build the route for the com_api component

diff --git a/code/site/views/applogin/tmpl/default.php b/code/site/views/applogin/tmpl/default.php
@@ -0,0 +1,37 @@
+<?php
+/**
+ * @package    API
+ * @copyright  Copyright (C) 2009-2020 Techjoomla, Tekdi Technologies Pvt. Ltd. All rights reserved.
+ * @license    GNU GPLv2 <http://www.gnu.org/licenses/old-licenses/gpl-2.0.html>
+ * @link       http://techjoomla.com
+ * Work derived from the original RESTful API by Techjoomla (https://github.com/techjoomla/Joomla-REST-API)
+ * and the com_api extension by Brian Edgerton (http://www.edgewebworks.com)
+ */
+
+defined('_JEXEC') or die('Restricted access');
+
+$base_url = JUri::base();
+$formToken = JSession::getFormToken();
+$url = base64_encode($base_url.'tjlogin-registration');
+
+// @use Joomla\CMS\Uri\Uri;
+?>
+
+<script type="text/javascript">
+
+	window.addEventListener('load', function () {
+		parent.postMessage(
+			'<?php echo json_encode($this->keyObj); ?>',
+			'*'
+		);
+	});
+	window.addEventListener("message",function(e) {
+		let msgData = JSON.parse(e.data);
+		if(msgData.message=="user_registered_in_app")
+		{
+			window.location = "<?php echo $base_url;?>?option=com_users&task=user.logout&<?php echo $formToken;?>=1&return=<?php echo $url;?>";
+			//window.location ="<?php //echo $base_url;?>/tjlogin-registration";
+		}
+	}, false);
+
+</script>
diff --git a/code/site/views/applogin/tmpl/default.xml b/code/site/views/applogin/tmpl/default.xml
@@ -0,0 +1,6 @@
+<?xml version="1.0" encoding="utf-8"?>
+<metadata>
+	<layout title="App Login">
+		<message>App Login</message>
+	</layout>
+</metadata>
diff --git a/code/site/views/applogin/view.html.php b/code/site/views/applogin/view.html.php
@@ -0,0 +1,162 @@
+<?php
+/**
+ * @package    API
+ * @copyright  Copyright (C) 2009-2020 Techjoomla, Tekdi Technologies Pvt. Ltd. All rights reserved.
+ * @license    GNU GPLv2 <http://www.gnu.org/licenses/old-licenses/gpl-2.0.html>
+ * @link       http://techjoomla.com
+ * Work derived from the original RESTful API by Techjoomla (https://github.com/techjoomla/Joomla-REST-API)
+ * and the com_api extension by Brian Edgerton (http://www.edgewebworks.com)
+ */
+
+defined('_JEXEC') or die('Restricted access');
+
+require_once JPATH_SITE . '/components/com_api/vendors/php-jwt/src/JWT.php';
+
+use Firebase\JWT\JWT;
+use Joomla\CMS\Factory;
+
+/**
+ * HTML Article View class for the Content component
+ *
+ * @since  1.5
+ */
+class ApiViewApplogin extends JViewLegacy
+{
+	public $keyObj = null;
+
+	/**
+	 * Execute and display a template script.
+	 *
+	 * @param   string  $tpl  The name of the template file to parse; automatically searches through the template paths.
+	 *
+	 * @return  mixed  A string if successful, otherwise an Error object.
+	 *
+	 * @see     \JViewLegacy::loadTemplate()
+	 * @since   3.0
+	 */
+	public function display($tpl = null)
+	{
+		$app  = Factory::getApplication();
+		$user = Factory::getUser();
+
+		if (!$user->id)
+		{
+			$msg = JText::_('COM_API_LOGIN_MSG');
+			$uri = $_SERVER['REQUEST_URI'];
+			$url = base64_encode($uri);
+			$app->redirect(JRoute::_('index.php?option=com_users&view=login&return=' . $url, false), $msg);
+		}
+
+		$this->keyObj = $this->getKey();
+
+		parent::display($tpl);
+	}
+
+	/**
+	 * Get key for logged in user
+	 *
+	 * @return  object
+	 *
+	 * @since   2.5.2
+	 */
+	protected function getKey()
+	{
+		$obj   = new stdclass;
+		$user = JFactory::getUser();
+		$id   = $user->id;
+
+		require_once JPATH_ADMINISTRATOR . '/components/com_api/models/key.php';
+		require_once JPATH_ADMINISTRATOR . '/components/com_api/models/keys.php';
+
+		$kmodel = new ApiModelKey;
+		$model  = new ApiModelKeys;
+		$key    = null;
+
+		// Get login user hash
+		// $kmodel->setState('user_id', $user->id);
+
+		// $kmodel->setState('user_id', $id);
+		// $log_hash = $kmodel->getList();
+		$model->setState('user_id', $id);
+		$log_hash = $model->getItems();
+
+		$log_hash = (!empty($log_hash)) ? $log_hash[count($log_hash) - count($log_hash)] : $log_hash;
+
+		if (!empty($log_hash))
+		{
+			$key = $log_hash->hash;
+		}
+		elseif ($key == null || empty($key))
+		{
+			// Create new key for user
+			$data = array (
+				'userid' => $user->id,
+				'domain' => '' ,
+				'state'  => 1,
+				'id'     => '',
+				'task'   => 'save',
+				'c'      => 'key',
+				'ret'    => 'index.php?option=com_api&view=keys',
+				'option' => 'com_api',
+				JSession::getFormToken() => 1
+			);
+
+			$result = $kmodel->save($data);
+
+			// $key  = $result->hash;
+
+			if (!$result)
+			{
+				return false;
+			}
+
+			// Load api key table
+			JTable::addIncludePath(JPATH_ROOT . '/administrator/components/com_api/tables');
+			$table = JTable::getInstance('Key', 'ApiTable');
+			$table->load(array('userid' => $user->id));
+			$key = $table->hash;
+		}
+
+		if (!empty($key))
+		{
+			$obj->auth = $key;
+			$obj->code = '200';
+
+			// $obj->id = $user->id;
+
+			$obj->id = $id;
+
+			// Generate claim for jwt
+			$data = [
+				"id" => trim($id),
+				/*"iat" => '',
+				"exp" => '',
+				"aud" => '',
+				"sub" => ''"*/
+			];
+
+			// Using HS256 algo to generate JWT
+			$jwt = JWT::encode($data, trim($key), 'HS256');
+
+			if (isset($jwt) && $jwt != '')
+			{
+				$obj->jwt = $jwt;
+			}
+			else
+			{
+				$obj->jwt = false;
+			}
+		}
+		else
+		{
+			// Load language file for plugin
+			$lang = Factory::getLanguage();
+			$lang->load('plg_api_users', JPATH_ADMINISTRATOR,'',true);
+
+			$obj->code = 403;
+			$obj->message = JText::_('PLG_API_USERS_BAD_REQUEST_MESSAGE');
+		}
+
+		return $obj;
+	}
+}