get('home', '', [HomeController::class, 'getHome']); Container::$routeCollection->get('startSession', 'startSession.json', [HomeController::class, 'startSession']); Container::$routeCollection->group('login', function (RouteCollection $routeCollection) { $routeCollection->get('login', '', [LoginController::class, 'getLoginForm']); $routeCollection->post('login-action', '', [LoginController::class, 'login']); $routeCollection->get('login-google', 'google', [LoginController::class, 'getGoogleLoginRedirect']); $routeCollection->get('login-google-action', 'google/code', [LoginController::class, 'loginWithGoogle']); }); Container::$routeCollection->group('oauth', function (RouteCollection $routeCollection) { $routeCollection->get('oauth-auth', 'auth', [OAuthAuthController::class, 'auth']); $routeCollection->post('oauth-token', 'token', [OAuthController::class, 'getToken']); $routeCollection->get('oauth-userinfo', 'userinfo', [OAuthController::class, 'getUserInfo']); $routeCollection->get('oauth-config', '.well-known/openid-configuration', [OAuthController::class, 'getConfig']); $routeCollection->get('oauth-certs', 'certs', [OAuthController::class, 'getCerts']); }); Container::$routeCollection->group('password', function (RouteCollection $routeCollection) { $routeCollection->get('password-requestReset', 'requestReset', [LoginController::class, 'getRequestPasswordResetForm']); $routeCollection->post('password-requestReset-action', 'requestReset', [LoginController::class, 'requestPasswordReset']); $routeCollection->get('password-requestReset.success', 'requestReset/success', [LoginController::class, 'getRequestPasswordResetSuccess']); $routeCollection->get('password-reset', 'reset/{token}', [LoginController::class, 'getResetPasswordForm']); $routeCollection->post('password-reset.action', 'reset/{token}', [LoginController::class, 'resetPassword']); }); Container::$routeCollection->get('logout', 'logout', [LoginController::class, 'logout']); Container::$routeCollection->group('account', function (RouteCollection $routeCollection) { $routeCollection->get('account', '', [UserController::class, 'getAccount']); $routeCollection->post('account-action', '', [UserController::class, 'saveAccount']); $routeCollection->get('account.googleAuthenticate', 'googleAuthenticate', [UserController::class, 'getGoogleAuthenticateRedirect']); $routeCollection->get('account.googleAuthenticate-action', 'googleAuthenticate/code', [UserController::class, 'authenticateWithGoogle']); }); Container::$routeCollection->get('searchUser', 'searchUser', [UserSearchController::class, 'searchUser']); Container::$routeCollection->group('communities', function (RouteCollection $routeCollection) { $routeCollection->get('community-new', 'new', [CommunityController::class, 'getCommunityNew']); $routeCollection->post('community-new-action', 'new', [CommunityController::class, 'saveCommunity']); $routeCollection->group('{communityId}', function (RouteCollection $routeCollection) { $routeCollection->get('community', '', [CommunityController::class, 'getCommunityHome']); $routeCollection->get('community-edit', 'edit', [CommunityController::class, 'getCommunityEdit']); $routeCollection->post('community-edit-action', 'edit', [CommunityController::class, 'saveCommunity']); $routeCollection->get('community-members', 'members', [CommunityController::class, 'getMembersEdit']); $routeCollection->post('community-members-new', 'newMember', [CommunityController::class, 'newMember']); $routeCollection->post('community-members-edit', 'editMember', [CommunityController::class, 'editMember']); $routeCollection->post('community-members-delete', 'deleteMember', [CommunityController::class, 'deleteMember']); }); }); Container::$sessionHandler = new DatabaseSessionHandler(Container::$dbConnection); session_set_save_handler(Container::$sessionHandler, true); session_start([ 'gc_probability' => 0, // old sessions are deleted by MaintainDatabaseCommand 'cookie_lifetime' => 604800, 'cookie_path' => '/', 'cookie_httponly' => true, 'cookie_samesite' => 'Lax' ]); if (isset($_COOKIE[session_name()])) { // extend session cookie lifetime is cookie already exists setcookie(session_name(), session_id(), [ 'expires' => time() + 604800, 'path' => '/', 'httponly' => true, 'samesite' => 'Lax' ]); } Container::$request = new Request( $_SERVER['REQUEST_SCHEME'] . '://' . $_SERVER['HTTP_HOST'], $_GET, $_POST, getallheaders(), $_SESSION, new UserRepository() ); if (!Container::$request->session()->has('anti_csrf_token')) { Container::$request->session()->set('anti_csrf_token', bin2hex(random_bytes(16))); } $appConfig = [ 'antiCsrfTokenName' => 'anti_csrf_token', 'antiCsrfTokenErrorResponse' => ['error' => 'no_valid_anti_csrf_token'], 'antiCsrfTokenExceptions' => ['/oauth/token'], 'loginRouteId' => 'login', 'error404View' => 'error/404', 'error500View' => 'error/500' ]; $httpReponse = new HttpResponse( Container::$request, Container::$dbConnection, Container::$routeCollection, $appConfig, $_SERVER['REQUEST_METHOD'], $_SERVER['REQUEST_URI'] ); $httpReponse->render();