2023-04-08 00:42:55 +02:00
|
|
|
<?php
|
|
|
|
|
|
2023-04-16 20:54:29 +02:00
|
|
|
use SokoWeb\Response\HttpResponse;
|
2023-04-16 21:14:56 +02:00
|
|
|
use SokoWeb\Routing\RouteCollection;
|
|
|
|
|
use SokoWeb\Session\DatabaseSessionHandler;
|
|
|
|
|
use SokoWeb\Request\Request;
|
2023-05-02 12:10:29 +02:00
|
|
|
use SokoWeb\Request\Session;
|
2023-04-16 21:14:56 +02:00
|
|
|
use RVR\Controller\HomeController;
|
|
|
|
|
use RVR\Controller\LoginController;
|
|
|
|
|
use RVR\Controller\OAuthAuthController;
|
|
|
|
|
use RVR\Controller\OAuthController;
|
|
|
|
|
use RVR\Controller\UserController;
|
|
|
|
|
use RVR\Controller\UserSearchController;
|
|
|
|
|
use RVR\Controller\CommunityController;
|
2023-05-01 19:24:24 +02:00
|
|
|
use RVR\Controller\TransactionController;
|
2023-05-28 03:43:26 +02:00
|
|
|
use RVR\Controller\EventController;
|
2023-04-16 21:14:56 +02:00
|
|
|
use RVR\Repository\UserRepository;
|
2023-04-16 20:54:29 +02:00
|
|
|
|
2023-04-08 00:42:55 +02:00
|
|
|
require 'app.php';
|
|
|
|
|
|
|
|
|
|
if (!empty($_ENV['DEV'])) {
|
|
|
|
|
error_reporting(E_ALL);
|
|
|
|
|
|
|
|
|
|
ini_set('display_errors', '1');
|
|
|
|
|
} else {
|
|
|
|
|
ini_set('display_errors', '0');
|
|
|
|
|
}
|
|
|
|
|
|
2023-04-16 21:14:56 +02:00
|
|
|
Container::$routeCollection = new RouteCollection();
|
2023-04-08 00:42:55 +02:00
|
|
|
|
2023-04-16 21:14:56 +02:00
|
|
|
Container::$routeCollection->get('home', '', [HomeController::class, 'getHome']);
|
|
|
|
|
Container::$routeCollection->group('login', function (RouteCollection $routeCollection) {
|
|
|
|
|
$routeCollection->get('login', '', [LoginController::class, 'getLoginForm']);
|
|
|
|
|
$routeCollection->post('login-action', '', [LoginController::class, 'login']);
|
2023-05-02 00:02:38 +02:00
|
|
|
$routeCollection->get('login.google', 'google', [LoginController::class, 'getGoogleLoginRedirect']);
|
|
|
|
|
$routeCollection->get('login.google-action', 'google/code', [LoginController::class, 'loginWithGoogle']);
|
2023-04-08 00:42:55 +02:00
|
|
|
});
|
2023-04-16 21:14:56 +02:00
|
|
|
Container::$routeCollection->group('oauth', function (RouteCollection $routeCollection) {
|
2023-05-02 00:02:38 +02:00
|
|
|
$routeCollection->get('oauth.auth', 'auth', [OAuthAuthController::class, 'auth']);
|
|
|
|
|
$routeCollection->post('oauth.token', 'token', [OAuthController::class, 'getToken']);
|
|
|
|
|
$routeCollection->get('oauth.userinfo', 'userinfo', [OAuthController::class, 'getUserInfo']);
|
|
|
|
|
$routeCollection->get('oauth.config', '.well-known/openid-configuration', [OAuthController::class, 'getConfig']);
|
|
|
|
|
$routeCollection->get('oauth.certs', 'certs', [OAuthController::class, 'getCerts']);
|
2023-04-08 19:06:45 +02:00
|
|
|
});
|
2023-04-16 21:14:56 +02:00
|
|
|
Container::$routeCollection->group('password', function (RouteCollection $routeCollection) {
|
2023-05-02 00:02:38 +02:00
|
|
|
$routeCollection->get('password.requestReset', 'requestReset', [LoginController::class, 'getRequestPasswordResetForm']);
|
|
|
|
|
$routeCollection->post('password.requestReset-action', 'requestReset', [LoginController::class, 'requestPasswordReset']);
|
|
|
|
|
$routeCollection->get('password.requestReset.success', 'requestReset/success', [LoginController::class, 'getRequestPasswordResetSuccess']);
|
|
|
|
|
$routeCollection->get('password.reset', 'reset/{token}', [LoginController::class, 'getResetPasswordForm']);
|
|
|
|
|
$routeCollection->post('password.reset-action', 'reset/{token}', [LoginController::class, 'resetPassword']);
|
2023-04-08 00:42:55 +02:00
|
|
|
});
|
2023-04-16 21:14:56 +02:00
|
|
|
Container::$routeCollection->get('logout', 'logout', [LoginController::class, 'logout']);
|
|
|
|
|
Container::$routeCollection->group('account', function (RouteCollection $routeCollection) {
|
|
|
|
|
$routeCollection->get('account', '', [UserController::class, 'getAccount']);
|
|
|
|
|
$routeCollection->post('account-action', '', [UserController::class, 'saveAccount']);
|
2023-05-06 19:46:09 +02:00
|
|
|
$routeCollection->get('account.googleConnect', 'googleConnect', [UserController::class, 'getGoogleConnectRedirect']);
|
|
|
|
|
$routeCollection->get('account.googleConnect-confirm', 'googleConnect/code', [UserController::class, 'getGoogleConnectConfirm']);
|
|
|
|
|
$routeCollection->post('account.googleConnect-action', 'googleConnect', [UserController::class, 'connectGoogle']);
|
|
|
|
|
$routeCollection->get('account.googleDisconnect', 'googleDisconnect', [UserController::class, 'getGoogleDisconnectConfirm']);
|
|
|
|
|
$routeCollection->post('account.googleDisconnect-action', 'googleDisconnect', [UserController::class, 'disconnectGoogle']);
|
2023-04-16 21:14:56 +02:00
|
|
|
$routeCollection->get('account.googleAuthenticate', 'googleAuthenticate', [UserController::class, 'getGoogleAuthenticateRedirect']);
|
|
|
|
|
$routeCollection->get('account.googleAuthenticate-action', 'googleAuthenticate/code', [UserController::class, 'authenticateWithGoogle']);
|
2023-04-08 00:42:55 +02:00
|
|
|
});
|
2023-04-16 21:14:56 +02:00
|
|
|
Container::$routeCollection->get('searchUser', 'searchUser', [UserSearchController::class, 'searchUser']);
|
|
|
|
|
Container::$routeCollection->group('communities', function (RouteCollection $routeCollection) {
|
2023-05-02 00:02:38 +02:00
|
|
|
$routeCollection->get('community.new', 'new', [CommunityController::class, 'getCommunityNew']);
|
|
|
|
|
$routeCollection->post('community.new-action', 'new', [CommunityController::class, 'saveCommunity']);
|
2023-05-07 01:50:57 +02:00
|
|
|
$routeCollection->group('{communitySlug}', function (RouteCollection $routeCollection) {
|
2023-04-16 21:14:56 +02:00
|
|
|
$routeCollection->get('community', '', [CommunityController::class, 'getCommunityHome']);
|
2023-05-01 23:37:30 +02:00
|
|
|
$routeCollection->get('community.settings', 'settings', [CommunityController::class, 'getCommunitySettings']);
|
2023-05-02 00:02:38 +02:00
|
|
|
$routeCollection->get('community.edit', 'edit', [CommunityController::class, 'getCommunityEdit']);
|
|
|
|
|
$routeCollection->post('community.edit-action', 'edit', [CommunityController::class, 'saveCommunity']);
|
|
|
|
|
$routeCollection->get('community.members', 'members', [CommunityController::class, 'getMembersEdit']);
|
|
|
|
|
$routeCollection->post('community.members.new-action', 'members/new', [CommunityController::class, 'saveMember']);
|
|
|
|
|
$routeCollection->post('community.members.edit-action', 'members/edit', [CommunityController::class, 'saveMember']);
|
|
|
|
|
$routeCollection->post('community.members.delete-action', 'members/delete', [CommunityController::class, 'deleteMember']);
|
|
|
|
|
$routeCollection->get('community.currencies', 'currencies', [CommunityController::class, 'getCurrenciesEdit']);
|
|
|
|
|
$routeCollection->post('community.currencies.new-action', 'currencies/new', [CommunityController::class, 'saveCurrency']);
|
|
|
|
|
$routeCollection->post('community.currencies.edit-action', 'currencies/edit', [CommunityController::class, 'saveCurrency']);
|
|
|
|
|
$routeCollection->post('community.currencies.delete-action', 'currencies/delete', [CommunityController::class, 'deleteCurrency']);
|
2023-04-25 19:26:21 +02:00
|
|
|
$routeCollection->group('currencyExchangeRates', function (RouteCollection $routeCollection) {
|
2023-05-02 00:02:38 +02:00
|
|
|
$routeCollection->get('community.currencyExchangeRates', '{code}', [CommunityController::class, 'getCurrencyExchangeRates']);
|
|
|
|
|
$routeCollection->post('community.currencyExchangeRates.new-action', '{code}/new', [CommunityController::class, 'saveCurrencyExchangeRate']);
|
|
|
|
|
$routeCollection->post('community.currencyExchangeRates.edit-action', '{code}/edit', [CommunityController::class, 'saveCurrencyExchangeRate']);
|
|
|
|
|
$routeCollection->post('community.currencyExchangeRates.delete-action', '{code}/delete', [CommunityController::class, 'deleteCurrencyExchangeRate']);
|
2023-04-25 19:26:21 +02:00
|
|
|
});
|
2023-05-01 19:24:24 +02:00
|
|
|
$routeCollection->group('transactions', function (RouteCollection $routeCollection) {
|
|
|
|
|
$routeCollection->get('community.transactions', '', [TransactionController::class, 'getTransactions']);
|
|
|
|
|
$routeCollection->get('community.transactions.new', 'new', [TransactionController::class, 'getTransactionEdit']);
|
|
|
|
|
$routeCollection->post('community.transactions.new-action', 'new', [TransactionController::class, 'saveTransaction']);
|
|
|
|
|
$routeCollection->get('community.transactions.edit', '{transactionId}', [TransactionController::class, 'getTransactionEdit']);
|
|
|
|
|
$routeCollection->post('community.transactions.edit-action', '{transactionId}', [TransactionController::class, 'saveTransaction']);
|
2023-05-02 00:02:38 +02:00
|
|
|
$routeCollection->post('community.transactions.delete-action', '{transactionId}/delete', [TransactionController::class, 'deleteTransaction']);
|
2023-05-01 19:24:24 +02:00
|
|
|
});
|
2023-05-28 03:43:26 +02:00
|
|
|
$routeCollection->group('events', function (RouteCollection $routeCollection) {
|
|
|
|
|
$routeCollection->get('community.events', '', [EventController::class, 'getEvents']);
|
|
|
|
|
$routeCollection->get('community.events.new', 'new', [EventController::class, 'getEventEdit']);
|
|
|
|
|
$routeCollection->post('community.events.new-action', 'new', [EventController::class, 'saveEvent']);
|
|
|
|
|
$routeCollection->get('community.events.search', 'search', [EventController::class, 'searchEvent']);
|
|
|
|
|
$routeCollection->group('{eventSlug}', function (RouteCollection $routeCollection) {
|
|
|
|
|
$routeCollection->get('community.event', '', [EventController::class, 'getEvent']);
|
|
|
|
|
$routeCollection->get('community.event.edit', 'edit', [EventController::class, 'getEventEdit']);
|
|
|
|
|
$routeCollection->post('community.event.edit-action', 'edit', [EventController::class, 'saveEvent']);
|
|
|
|
|
$routeCollection->post('community.event.delete-action', 'delete', [EventController::class, 'deleteEvent']);
|
|
|
|
|
});
|
|
|
|
|
});
|
2023-04-16 03:31:40 +02:00
|
|
|
});
|
|
|
|
|
});
|
2023-04-08 00:42:55 +02:00
|
|
|
|
2023-05-02 12:10:29 +02:00
|
|
|
Container::$sessionHandler = new DatabaseSessionHandler(
|
|
|
|
|
Container::$dbConnection,
|
|
|
|
|
'sessions',
|
|
|
|
|
new DateTime('-7 days')
|
|
|
|
|
);
|
2023-04-08 00:42:55 +02:00
|
|
|
|
|
|
|
|
session_set_save_handler(Container::$sessionHandler, true);
|
|
|
|
|
session_start([
|
|
|
|
|
'gc_probability' => 0, // old sessions are deleted by MaintainDatabaseCommand
|
2023-05-02 12:55:19 +02:00
|
|
|
'cookie_lifetime' => 0,
|
2023-04-08 00:42:55 +02:00
|
|
|
'cookie_path' => '/',
|
|
|
|
|
'cookie_httponly' => true,
|
|
|
|
|
'cookie_samesite' => 'Lax'
|
|
|
|
|
]);
|
|
|
|
|
|
2023-04-16 21:14:56 +02:00
|
|
|
Container::$request = new Request(
|
2023-04-08 00:42:55 +02:00
|
|
|
$_SERVER['REQUEST_SCHEME'] . '://' . $_SERVER['HTTP_HOST'],
|
|
|
|
|
$_GET,
|
|
|
|
|
$_POST,
|
2023-04-16 16:03:38 +02:00
|
|
|
getallheaders(),
|
2023-05-02 12:10:29 +02:00
|
|
|
new Session($_SESSION),
|
2023-04-16 21:14:56 +02:00
|
|
|
new UserRepository()
|
2023-04-08 00:42:55 +02:00
|
|
|
);
|
|
|
|
|
|
|
|
|
|
if (!Container::$request->session()->has('anti_csrf_token')) {
|
|
|
|
|
Container::$request->session()->set('anti_csrf_token', bin2hex(random_bytes(16)));
|
|
|
|
|
}
|
2023-04-08 20:02:02 +02:00
|
|
|
|
2023-04-16 20:54:29 +02:00
|
|
|
$appConfig = [
|
|
|
|
|
'antiCsrfTokenName' => 'anti_csrf_token',
|
|
|
|
|
'antiCsrfTokenErrorResponse' => ['error' => 'no_valid_anti_csrf_token'],
|
2023-04-16 22:07:57 +02:00
|
|
|
'antiCsrfTokenExceptions' => ['/oauth/token'],
|
2023-04-16 20:54:29 +02:00
|
|
|
'loginRouteId' => 'login',
|
2023-04-18 23:21:06 +02:00
|
|
|
'error404View' => 'error/404',
|
|
|
|
|
'error500View' => 'error/500'
|
2023-04-16 20:54:29 +02:00
|
|
|
];
|
|
|
|
|
|
|
|
|
|
$httpReponse = new HttpResponse(
|
|
|
|
|
Container::$request,
|
2023-04-18 23:25:38 +02:00
|
|
|
Container::$dbConnection,
|
2023-04-16 20:54:29 +02:00
|
|
|
Container::$routeCollection,
|
|
|
|
|
$appConfig,
|
|
|
|
|
$_SERVER['REQUEST_METHOD'],
|
|
|
|
|
$_SERVER['REQUEST_URI']
|
|
|
|
|
);
|
|
|
|
|
$httpReponse->render();
|
