* @link https://www.oxidmodule.com */ declare(strict_types=1); namespace D3\Webauthn\Application\Controller\Admin; use D3\TestingTools\Production\IsMockable; use D3\Webauthn\Application\Model\Exceptions\WebauthnGetException; use D3\Webauthn\Application\Model\Webauthn; use D3\Webauthn\Application\Model\WebauthnAfterLogin; use D3\Webauthn\Application\Model\WebauthnConf; use D3\Webauthn\Application\Model\Exceptions\WebauthnException; use D3\Webauthn\Application\Model\WebauthnLogin; use Doctrine\DBAL\Driver\Exception as DoctrineDriverException; use Doctrine\DBAL\Exception as DoctrineException; use OxidEsales\Eshop\Application\Controller\Admin\AdminController; use OxidEsales\Eshop\Application\Controller\FrontendController; use OxidEsales\Eshop\Core\Request; use OxidEsales\Eshop\Core\Routing\ControllerClassNameResolver; use OxidEsales\Eshop\Core\Session; use OxidEsales\Eshop\Core\Utils; use OxidEsales\Eshop\Core\UtilsView; use Psr\Container\ContainerExceptionInterface; use Psr\Container\NotFoundExceptionInterface; class d3webauthnadminlogin extends AdminController { use IsMockable; protected $_sThisTemplate = 'd3webauthnadminlogin.tpl'; /** * @return bool */ protected function _authorize(): bool { return true; } /** * @return string * @throws ContainerExceptionInterface * @throws DoctrineDriverException * @throws DoctrineException * @throws NotFoundExceptionInterface */ public function render(): string { if ($this->d3GetMockableRegistryObject(Session::class) ->hasVariable(WebauthnConf::WEBAUTHN_ADMIN_SESSION_AUTH) ) { $this->d3GetMockableRegistryObject(Utils::class)->redirect('index.php?cl=admin_start'); } elseif (!$this->d3GetMockableRegistryObject(Session::class) ->hasVariable(WebauthnConf::WEBAUTHN_ADMIN_SESSION_CURRENTUSER) ) { $this->d3GetMockableRegistryObject(Utils::class)->redirect('index.php?cl=login'); } $this->generateCredentialRequest(); $this->addTplParam('navFormParams', $this->d3GetMockableRegistryObject(Session::class) ->getVariable(WebauthnConf::WEBAUTHN_SESSION_NAVFORMPARAMS)); $this->addTplParam('currentProfile', $this->d3GetMockableRegistryObject(Session::class) ->getVariable(WebauthnConf::WEBAUTHN_ADMIN_PROFILE)); $this->d3GetMockableRegistryObject(Session::class) ->deleteVariable(WebauthnConf::WEBAUTHN_ADMIN_PROFILE); $this->addTplParam('currentChLanguage', $this->d3GetMockableRegistryObject(Session::class) ->getVariable(WebauthnConf::WEBAUTHN_ADMIN_CHLANGUAGE)); $afterLogin = $this->d3GetMockableOxNewObject(WebauthnAfterLogin::class); $afterLogin->changeLanguage(); return $this->d3CallMockableFunction([AdminController::class, 'render']); } /** * @return void * @throws DoctrineDriverException * @throws DoctrineException * @throws ContainerExceptionInterface * @throws NotFoundExceptionInterface */ public function generateCredentialRequest(): void { $userId = $this->d3GetMockableRegistryObject(Session::class) ->getVariable(WebauthnConf::WEBAUTHN_ADMIN_SESSION_CURRENTUSER); try { $webauthn = $this->d3GetMockableOxNewObject(Webauthn::class); $publicKeyCredentialRequestOptions = $webauthn->getRequestOptions($userId); $this->d3GetMockableRegistryObject(Session::class) ->setVariable(WebauthnConf::WEBAUTHN_ADMIN_LOGIN_OBJECT, $publicKeyCredentialRequestOptions); $this->addTplParam('webauthn_publickey_login', $publicKeyCredentialRequestOptions); $this->addTplParam('isAdmin', isAdmin()); } catch (WebauthnException $e) { $this->d3GetMockableRegistryObject(Session::class) ->setVariable(WebauthnConf::GLOBAL_SWITCH, true); $this->d3GetMockableRegistryObject(UtilsView::class)->addErrorToDisplay($e); $this->d3GetMockableLogger()->error($e->getDetailedErrorMessage(), ['UserId' => $userId]); $this->d3GetMockableLogger()->debug($e->getTraceAsString()); $this->d3GetMockableRegistryObject(Utils::class)->redirect('index.php?cl=login'); } } /** * @return string|null */ public function d3AssertAuthn(): ?string { try { $login = $this->d3GetMockableOxNewObject(WebauthnLogin::class, $this->d3GetMockableRegistryObject(Request::class)->getRequestEscapedParameter('credential'), $this->d3GetMockableRegistryObject(Request::class)->getRequestEscapedParameter('error') ); return $login->adminLogin( $this->d3GetMockableRegistryObject(Request::class)->getRequestEscapedParameter('profile') ); } catch (WebauthnGetException $e) { $this->d3GetMockableRegistryObject(UtilsView::class)->addErrorToDisplay($e); return 'login'; } } /** * @return string|null */ public function d3GetPreviousClass(): ?string { return $this->d3GetMockableRegistryObject(Session::class) ->getVariable(WebauthnConf::WEBAUTHN_ADMIN_SESSION_CURRENTCLASS); } /** * @return bool */ public function previousClassIsOrderStep(): bool { $sClassKey = $this->d3GetPreviousClass(); $resolvedClass = $this->d3GetMockableRegistryObject(ControllerClassNameResolver::class) ->getClassNameById($sClassKey); $resolvedClass = $resolvedClass ?: 'start'; /** @var FrontendController $oController */ $oController = oxNew($resolvedClass); return $oController->getIsOrderStep(); } /** * @return bool */ public function getIsOrderStep(): bool { return $this->previousClassIsOrderStep(); } }