zydronium/getnamingo-registry
1
0
Fork 0
mirror of https://github.com/getnamingo/registry.git synced 2025-05-14 08:37:00 +02:00
Code Issues Projects Releases Packages Wiki Activity
getnamingo-registry/cp/bootstrap/app.php

317 lines
No EOL
11 KiB
PHP
Raw Blame History

<?php
use App\Lib\Logger;
use DI\Container;
use Slim\Csrf\Guard;
use Slim\Factory\AppFactory;
use Slim\Handlers\Strategies\RequestResponseArgs;
use Slim\Views\Twig;
use Slim\Views\TwigMiddleware;
use Twig\TwigFunction;
use Gettext\Loader\PoLoader;
use Gettext\Translations;
use Punic\Language;
// Enable for debug
// if (session_status() == PHP_SESSION_NONE) {
// session_start();
// }
ini_set('session.cookie_secure', '1');
ini_set('session.cookie_httponly', '1');
ini_set('session.cookie_samesite', 'Strict');
ini_set('session.cookie_lifetime', '0');
ini_set('session.hash_function', 'sha256');
ini_set('session.entropy_length', '32');
require __DIR__ . '/../vendor/autoload.php';
require __DIR__ . '/helper.php';
try {
Dotenv\Dotenv::createImmutable(__DIR__. '/../')->load();
} catch (\Dotenv\Exception\InvalidPathException $e) {
//
}
//Enable error display in details when APP_ENV=local
if(envi('APP_ENV')=='local') {
Logger::systemLogs(true);
}else{
Logger::systemLogs(false);
}
$container = new Container();
// Set container to create App with on AppFactory
AppFactory::setContainer($container);
$app = AppFactory::create();
$responseFactory = $app->getResponseFactory();
$routeCollector = $app->getRouteCollector();
$routeCollector->setDefaultInvocationStrategy(new RequestResponseArgs());
$routeParser = $app->getRouteCollector()->getRouteParser();
require_once __DIR__ . '/database.php';
$container->set('router', function () use ($routeParser) {
return $routeParser;
});
$container->set('db', function () use ($db) {
return $db;
});
$container->set('pdo', function () use ($pdo) {
return $pdo;
});
$container->set('auth', function() {
//$responseFactory = new \Nyholm\Psr7\Factory\Psr17Factory();
//$response = $responseFactory->createResponse();
//$autoLogout = new \Pinga\Auth\AutoLogout();
//$autoLogout->watch(900, '/', null, 301, $response);
return new \App\Auth\Auth;
});
$container->set('flash', function() {
return new \Slim\Flash\Messages;
});
$container->set('view', function ($container) {
$view = Twig::create(__DIR__ . '/../resources/views', [
'cache' => __DIR__ . '/../cache',
]);
$view->getEnvironment()->addGlobal('auth', [
'isLogin' => $container->get('auth')->isLogin(),
'user' => $container->get('auth')->user(),
]);
// Known set of languages
$allowedLanguages = ['en_US', 'uk_UA', 'jp_JP', 'fr_FR', 'pt_PT', 'es_ES', 'ar_SA'];
if (isset($_SESSION['_lang']) && in_array($_SESSION['_lang'], $allowedLanguages)) {
// Use regex to validate the format: two letters, underscore, two letters
if (preg_match('/^[a-z]{2}_[A-Z]{2}$/', $_SESSION['_lang'])) {
$desiredLanguage = $_SESSION['_lang'];
$parts = explode('_', $_SESSION['_lang']);
if (isset($parts[1])) {
$uiLang = strtolower($parts[1]);
}
} else {
$desiredLanguage = envi('LANG');
$uiLang = envi('UI_LANG');
}
} else {
$desiredLanguage = envi('LANG');
$uiLang = envi('UI_LANG');
}
$lang_full = Language::getName($desiredLanguage, $uiLang);
if ($uiLang === 'jp') {
$lang = '日本語';
} elseif ($uiLang === 'ua') {
$lang = 'Українська';
} elseif ($uiLang === 'ar') {
$lang = 'العربية';
} else {
$lang = ucfirst(trim(strstr($lang_full, ' (', true)));
}
$languageFile = '../lang/' . $desiredLanguage . '/messages.po';
if (!file_exists($languageFile)) {
$desiredLanguage = 'en_US'; // Fallback
$languageFile = '../lang/en_US/messages.po';
}
$loader = new PoLoader();
$translations = $loader->loadFile($languageFile);
$view->getEnvironment()->addGlobal('uiLang', $uiLang);
$view->getEnvironment()->addGlobal('lang', $lang);
$view->getEnvironment()->addGlobal('_lang', substr($desiredLanguage, 0, 2));
$view->getEnvironment()->addGlobal('flash', $container->get('flash'));
$staticDir = '/var/www/cp/public/static';
if (file_exists($staticDir . '/logo.svg')) {
$logoPath = '/static/logo.svg';
} elseif (file_exists($staticDir . '/logo.png')) {
$logoPath = '/static/logo.png';
} else {
$logoPath = '/static/logo.default.svg';
}
$view->getEnvironment()->addGlobal('logoPath', $logoPath);
if (isset($_SESSION['_screen_mode'])) {
$view->getEnvironment()->addGlobal('screen_mode', $_SESSION['_screen_mode']);
} else {
$view->getEnvironment()->addGlobal('screen_mode', 'light');
}
if (envi('MINIMUM_DATA') === 'true') {
$view->getEnvironment()->addGlobal('minimum_data', 'true');
} else {
$view->getEnvironment()->addGlobal('minimum_data', 'false');
}
if (isset($_SESSION['auth_roles'])) {
$view->getEnvironment()->addGlobal('roles', $_SESSION['auth_roles']);
}
$view->getEnvironment()->addFunction(new TwigFunction('has_any_role', function (int $userRoles, array $requiredRoles): bool {
foreach ($requiredRoles as $role) {
if (($userRoles & $role) !== 0) {
return true;
}
}
return false;
}));
// Fetch registrar currency and registry default currency
$db = $container->get('db');
$user_data = "SELECT
ru.registrar_id,
r.currency AS registrar_currency,
(SELECT value FROM settings WHERE name = 'currency') AS registry_currency
FROM registrar_users ru
LEFT JOIN registrar r ON ru.registrar_id = r.id
WHERE ru.user_id = ?
LIMIT 1"; // Ensure we get only one row for optimization
if (isset($_SESSION['auth_user_id'])) {
$result = $db->select($user_data, [$_SESSION['auth_user_id']]);
$_SESSION['auth_registrar_id'] = null; // Default to null
$_SESSION['_currency'] = null; // Ensure it's explicitly handled
$_SESSION['registry_currency'] = null;
if (!empty($result)) {
$_SESSION['auth_registrar_id'] = $result[0]['registrar_id'];
$_SESSION['registry_currency'] = $result[0]['registry_currency']; // Registry currency (if available)
}
// Ensure registry currency is always set
if (empty($_SESSION['registry_currency'])) {
// Only fetch settings currency separately if needed
$default_currency = $db->select("SELECT value FROM settings WHERE name = 'currency'");
$_SESSION['registry_currency'] = $default_currency[0]['value'] ?? 'USD';
}
// Apply currency logic
if (!empty($_SESSION['auth_roles']) && $_SESSION['auth_roles'] != 0) {
// Use registrar's currency if set, else fallback to registry currency
$_SESSION['_currency'] = $result[0]['registrar_currency'] ?? $_SESSION['registry_currency'];
} else {
// If auth_roles == 0 (admin), force registry currency
$_SESSION['_currency'] = $_SESSION['registry_currency'];
}
}
// Ensure currency is set (last fallback to 'USD')
$currency = $_SESSION['_currency'] ?? 'USD';
// Make it accessible in templates
$view->getEnvironment()->addGlobal('currency', $currency);
// Check if the user is impersonated from the admin, otherwise default to false
$isAdminImpersonation = isset($_SESSION['impersonator']) ? $_SESSION['impersonator'] : false;
$view->getEnvironment()->addGlobal('isAdminImpersonation', $isAdminImpersonation);
$translateFunction = new TwigFunction('__', function ($text) use ($translations) {
// Find the translation
$translation = $translations->find(null, $text);
if ($translation) {
return $translation->getTranslation();
}
// Return the original text if translation not found
return $text;
});
$view->getEnvironment()->addFunction($translateFunction);
//route
$route = new TwigFunction('route', function ($name) {
return route($name);
});
$view->getEnvironment()->addFunction($route);
// Define the route_is function
$routeIs = new \Twig\TwigFunction('route_is', function ($routeName) {
return strpos($_SERVER['REQUEST_URI'], $routeName) !== false;
});
$view->getEnvironment()->addFunction($routeIs);
//assets
$assets = new TwigFunction('assets', function ($location) {
return assets($location);
});
$view->getEnvironment()->addFunction($assets);
//Pagination
$pagination = new TwigFunction("links", function ($object) {
});
$view->getEnvironment()->addFunction($pagination);
return $view;
});
$app->add(TwigMiddleware::createFromContainer($app));
$container->set('validator', function ($container) {
return new App\Lib\Validator;
});
$container->set('csrf', function($container) use ($responseFactory) {
return new Slim\Csrf\Guard($responseFactory);
});
$app->add(new \App\Middleware\ValidationErrorsMiddleware($container));
$app->add(new \App\Middleware\OldInputMiddleware($container));
$app->add(new \App\Middleware\CsrfViewMiddleware($container));
$csrfMiddleware = function ($request, $handler) use ($container) {
$uri = $request->getUri();
$path = $uri->getPath();
// Get the CSRF Guard instance from the container
$csrf = $container->get('csrf');
// Skip CSRF for the specific path
if ($path && $path === '/webauthn/register/verify') {
return $handler->handle($request);
}
if ($path && $path === '/webauthn/login/challenge') {
return $handler->handle($request);
}
if ($path && $path === '/webauthn/login/verify') {
return $handler->handle($request);
}
if ($path && $path === '/domain/deletehost') {
return $handler->handle($request);
}
if ($path && $path === '/domain/deletesecdns') {
return $handler->handle($request);
}
if ($path && $path === '/application/deletehost') {
return $handler->handle($request);
}
if ($path && $path === '/webhook/adyen') {
return $handler->handle($request);
}
if ($path && $path === '/create-adyen-payment') {
return $handler->handle($request);
}
if ($path && $path === '/create-crypto-payment') {
return $handler->handle($request);
}
if ($path && $path === '/clear-cache') {
return $handler->handle($request);
}
if ($path && $path === '/token-well') {
$csrf->generateToken();
return $handler->handle($request);
}
// If not skipped, apply the CSRF Guard
return $csrf->process($request, $handler);
};
$app->add($csrfMiddleware);
$app->setBasePath(routePath());
require __DIR__ . '/../routes/web.php';
Reference in a new issue View git blame Copy permalink