getnamingo-registry/cp/bootstrap/app.php

<?php

use App\Lib\Logger;
use DI\Container;
use Slim\Csrf\Guard;
use Slim\Factory\AppFactory;
use Slim\Handlers\Strategies\RequestResponseArgs;
use Slim\Views\Twig;
use Slim\Views\TwigMiddleware;
use Twig\TwigFunction;
use Gettext\Loader\PoLoader;
use Gettext\Translations;
use Punic\Language;

// Enable for debug
// if (session_status() == PHP_SESSION_NONE) {
//     session_start();
// }

ini_set('session.cookie_secure', '1');
ini_set('session.cookie_httponly', '1');
ini_set('session.cookie_samesite', 'Strict');
ini_set('session.cookie_lifetime', '0');
ini_set('session.hash_function', 'sha256');
ini_set('session.entropy_length', '32');

require __DIR__ . '/../vendor/autoload.php';
require __DIR__ . '/helper.php';

try {
    Dotenv\Dotenv::createImmutable(__DIR__. '/../')->load();
} catch (\Dotenv\Exception\InvalidPathException $e) {
    //
}
//Enable error display in details when APP_ENV=local
if(envi('APP_ENV')=='local') {
    Logger::systemLogs(true);
}else{
    Logger::systemLogs(false);
}

$container = new Container();
// Set container to create App with on AppFactory
AppFactory::setContainer($container);

$app = AppFactory::create();

$responseFactory = $app->getResponseFactory();

$routeCollector = $app->getRouteCollector();
$routeCollector->setDefaultInvocationStrategy(new RequestResponseArgs());
$routeParser = $app->getRouteCollector()->getRouteParser();

require_once __DIR__ . '/database.php';

$container->set('router', function () use ($routeParser) {
    return $routeParser;
});

$container->set('db', function () use ($db) {
    return $db;
});

$container->set('pdo', function () use ($pdo) {
    return $pdo;
});

$container->set('auth', function() {
    //$responseFactory = new \Nyholm\Psr7\Factory\Psr17Factory();
    //$response = $responseFactory->createResponse();
    //$autoLogout = new \Pinga\Auth\AutoLogout();
    //$autoLogout->watch(900, '/', null, 301, $response);
    
    return new \App\Auth\Auth;
});

$container->set('flash', function() {
    return new \Slim\Flash\Messages;
});

$container->set('view', function ($container) {
    $view = Twig::create(__DIR__ . '/../resources/views', [
        'cache' => __DIR__ . '/../cache',
    ]);
    $view->getEnvironment()->addGlobal('auth', [
        'isLogin' => $container->get('auth')->isLogin(),
        'user' => $container->get('auth')->user(),
    ]);

    // Known set of languages
    $allowedLanguages = ['en_US', 'uk_UA', 'jp_JP', 'fr_FR', 'pt_PT', 'es_ES']; // Add more as needed

    if (isset($_SESSION['_lang']) && in_array($_SESSION['_lang'], $allowedLanguages)) {
        // Use regex to validate the format: two letters, underscore, two letters
        if (preg_match('/^[a-z]{2}_[A-Z]{2}$/', $_SESSION['_lang'])) {
            $desiredLanguage = $_SESSION['_lang'];
            $parts = explode('_', $_SESSION['_lang']);
            if (isset($parts[1])) {
                $uiLang = strtolower($parts[1]);
            }
        } else {
            $desiredLanguage = envi('LANG');
            $uiLang = envi('UI_LANG');
        }
    } else {
        $desiredLanguage = envi('LANG');
        $uiLang = envi('UI_LANG');
    }
    $lang_full = Language::getName($desiredLanguage, $uiLang);
    if ($uiLang === 'jp') {
        $lang = '日本語';
    } elseif ($uiLang === 'ua') {
        $lang = 'Українська';
    } else {
        $lang = ucfirst(trim(strstr($lang_full, ' (', true)));
    }

    $languageFile = '../lang/' . $desiredLanguage . '/messages.po';
    if (!file_exists($languageFile)) {
        $desiredLanguage = 'en_US'; // Fallback
        $languageFile = '../lang/en_US/messages.po';
    }

    $loader = new PoLoader();
    $translations = $loader->loadFile($languageFile);

    $view->getEnvironment()->addGlobal('uiLang', $uiLang);
    $view->getEnvironment()->addGlobal('lang', $lang);
    $view->getEnvironment()->addGlobal('flash', $container->get('flash'));

    $staticDir = '/var/www/cp/public/static';
    if (file_exists($staticDir . '/logo.svg')) {
        $logoPath = '/static/logo.svg';
    } elseif (file_exists($staticDir . '/logo.png')) {
        $logoPath = '/static/logo.png';
    } else {
        $logoPath = '/static/logo.default.svg';
    }
    $view->getEnvironment()->addGlobal('logoPath', $logoPath);

    if (isset($_SESSION['_screen_mode'])) {
        $view->getEnvironment()->addGlobal('screen_mode', $_SESSION['_screen_mode']);
    } else {
        $view->getEnvironment()->addGlobal('screen_mode', 'light');
    }
    if (envi('MINIMUM_DATA') === 'true') {
        $view->getEnvironment()->addGlobal('minimum_data', 'true');
    } else {
        $view->getEnvironment()->addGlobal('minimum_data', 'false');
    }
    if (isset($_SESSION['auth_roles'])) {
        $view->getEnvironment()->addGlobal('roles', $_SESSION['auth_roles']);
    }

    $db = $container->get('db');
    $user_data = 'SELECT ru.registrar_id
              FROM registrar_users ru
              JOIN registrar r ON ru.registrar_id = r.id
              WHERE ru.user_id = ?';
    $currency_data = "SELECT value FROM settings WHERE name = 'currency'";

    if (isset($_SESSION['auth_user_id'])) {
        $result = $db->select($user_data, [$_SESSION['auth_user_id']]);
        $db_currency = $db->select($currency_data);

        $_SESSION['_currency'] = $db_currency[0]['value'];
        $_SESSION['auth_registrar_id'] = null;  // Default registrar_id

        if ($result !== null && count($result) > 0) {
            if (isset($result[0]['registrar_id'])) {
                $_SESSION['auth_registrar_id'] = $result[0]['registrar_id'];
            }
        }
    }

    $currency = isset($_SESSION['_currency']) ? $_SESSION['_currency'] : 'USD';
    $view->getEnvironment()->addGlobal('currency', $currency);

    // Check if the user is impersonated from the admin, otherwise default to false
    $isAdminImpersonation = isset($_SESSION['impersonator']) ? $_SESSION['impersonator'] : false;
    $view->getEnvironment()->addGlobal('isAdminImpersonation', $isAdminImpersonation);

    $translateFunction = new TwigFunction('__', function ($text) use ($translations) {
        // Find the translation
        $translation = $translations->find(null, $text);
        if ($translation) {
            return $translation->getTranslation();
        }
        // Return the original text if translation not found
        return $text;
    });
    $view->getEnvironment()->addFunction($translateFunction);

    //route
    $route = new TwigFunction('route', function ($name) {
        return route($name);
    });
    $view->getEnvironment()->addFunction($route);
    
    // Define the route_is function
    $routeIs = new \Twig\TwigFunction('route_is', function ($routeName) {
        return strpos($_SERVER['REQUEST_URI'], $routeName) !== false;
    });
    $view->getEnvironment()->addFunction($routeIs);

    //assets
    $assets = new TwigFunction('assets', function ($location) {
        return assets($location);
    });
    $view->getEnvironment()->addFunction($assets);

    //Pagination
    $pagination = new TwigFunction("links", function ($object) {

    });
    $view->getEnvironment()->addFunction($pagination);

    return $view;
});
$app->add(TwigMiddleware::createFromContainer($app));

$container->set('validator', function ($container) {
    return new App\Lib\Validator;
});

$container->set('csrf', function($container) use ($responseFactory) {
    return new Slim\Csrf\Guard($responseFactory);
});

$app->add(new \App\Middleware\ValidationErrorsMiddleware($container));
$app->add(new \App\Middleware\OldInputMiddleware($container));
$app->add(new \App\Middleware\CsrfViewMiddleware($container));

$csrfMiddleware = function ($request, $handler) use ($container) {
    $uri = $request->getUri();
    $path = $uri->getPath();

    // Get the CSRF Guard instance from the container
    $csrf = $container->get('csrf');

    // Skip CSRF for the specific path
    if ($path && $path === '/webauthn/register/verify') {
        return $handler->handle($request);
    }
    if ($path && $path === '/webauthn/login/challenge') {
        return $handler->handle($request);
    }
    if ($path && $path === '/webauthn/login/verify') {
        return $handler->handle($request);
    }
    if ($path && $path === '/domain/deletehost') {
        return $handler->handle($request);
    }
    if ($path && $path === '/domain/deletesecdns') {
        return $handler->handle($request);
    }
    if ($path && $path === '/application/deletehost') {
        return $handler->handle($request);
    }
    if ($path && $path === '/webhook/adyen') {
        return $handler->handle($request);
    }
    if ($path && $path === '/create-adyen-payment') {
        return $handler->handle($request);
    }
    if ($path && $path === '/create-crypto-payment') {
        return $handler->handle($request);
    }
    if ($path && $path === '/clear-cache') {
        return $handler->handle($request);
    }

    // If not skipped, apply the CSRF Guard
    return $csrf->process($request, $handler);
};

$app->add($csrfMiddleware);
$app->setBasePath(routePath());

require __DIR__ . '/../routes/web.php';