216 lines
6.3 KiB
PHP
Executable File
216 lines
6.3 KiB
PHP
Executable File
<?php
|
|
|
|
/**
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*
|
|
* https://www.d3data.de
|
|
*
|
|
* @copyright (C) D3 Data Development (Inh. Thomas Dartsch)
|
|
* @author D3 Data Development - Daniel Seifert <info@shopmodule.com>
|
|
* @link https://www.oxidmodule.com
|
|
*/
|
|
|
|
declare(strict_types=1);
|
|
|
|
namespace D3\Webauthn\Application\Model\Credential;
|
|
|
|
use Assert\Assert;
|
|
use Assert\AssertionFailedException;
|
|
use D3\TestingTools\Production\IsMockable;
|
|
use D3\Webauthn\Setup\Actions;
|
|
use DateTime;
|
|
use Doctrine\DBAL\Driver\Exception as DoctrineDriverException;
|
|
use Doctrine\DBAL\Exception as DoctrineException;
|
|
use Doctrine\DBAL\Query\QueryBuilder;
|
|
use Doctrine\DBAL\Statement;
|
|
use Exception;
|
|
use OxidEsales\Eshop\Core\Config;
|
|
use OxidEsales\Eshop\Core\Model\BaseModel;
|
|
use OxidEsales\Eshop\Core\Registry;
|
|
use OxidEsales\EshopCommunity\Internal\Container\ContainerFactory;
|
|
use OxidEsales\EshopCommunity\Internal\Framework\Database\QueryBuilderFactoryInterface;
|
|
use Psr\Container\ContainerExceptionInterface;
|
|
use Psr\Container\NotFoundExceptionInterface;
|
|
use Webauthn\PublicKeyCredentialSource;
|
|
|
|
class PublicKeyCredential extends BaseModel
|
|
{
|
|
use IsMockable;
|
|
|
|
protected $_sCoreTable = 'd3wa_usercredentials';
|
|
|
|
public function __construct()
|
|
{
|
|
$this->init($this->getCoreTableName());
|
|
|
|
parent::__construct();
|
|
}
|
|
|
|
/**
|
|
* @param string $name
|
|
*/
|
|
public function setName(string $name): void
|
|
{
|
|
$this->assign([
|
|
'name' => $name,
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* @return string|null
|
|
*/
|
|
public function getName(): ?string
|
|
{
|
|
return $this->getFieldData('name');
|
|
}
|
|
|
|
/**
|
|
* @param string $credentialId
|
|
* @throws AssertionFailedException
|
|
*/
|
|
public function setCredentialId(string $credentialId): void
|
|
{
|
|
$encodedCID = base64_encode($credentialId);
|
|
|
|
Assert::that($encodedCID)
|
|
->maxLength(
|
|
Actions::FIELDLENGTH_CREDID,
|
|
'the credentialId (%3$d) does not fit into the database field (%2$d)'
|
|
);
|
|
|
|
$this->assign([
|
|
'credentialid' => $encodedCID,
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* @return null|string
|
|
*/
|
|
public function getCredentialId(): ?string
|
|
{
|
|
return base64_decode($this->__get($this->_getFieldLongName('credentialid'))->rawValue) ?: null;
|
|
}
|
|
|
|
/**
|
|
* @param string $userId
|
|
*/
|
|
public function setUserId(string $userId): void
|
|
{
|
|
$this->assign([
|
|
'oxuserid' => $userId,
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* @return string|null
|
|
*/
|
|
public function getUserId(): ?string
|
|
{
|
|
return $this->__get($this->_getFieldLongName('oxuserid'))->rawValue;
|
|
}
|
|
|
|
/**
|
|
* @param PublicKeyCredentialSource $credential
|
|
* @throws AssertionFailedException
|
|
*/
|
|
public function setCredential(PublicKeyCredentialSource $credential): void
|
|
{
|
|
$encodedCredential = base64_encode(serialize($credential));
|
|
|
|
Assert::that($encodedCredential)
|
|
->maxLength(
|
|
Actions::FIELDLENGTH_CREDENTIAL,
|
|
'the credential source (%3$d) does not fit into the database field (%2$d)',
|
|
);
|
|
|
|
$this->assign([
|
|
'credential' => $encodedCredential,
|
|
]);
|
|
}
|
|
|
|
/**
|
|
* @return null|PublicKeyCredentialSource
|
|
*/
|
|
public function getCredential(): ?PublicKeyCredentialSource
|
|
{
|
|
return unserialize(
|
|
base64_decode(
|
|
$this->__get($this->_getFieldLongName('credential'))->rawValue
|
|
),
|
|
['allowed_classes' => [PublicKeyCredentialSource::class]]
|
|
) ?:
|
|
null;
|
|
}
|
|
|
|
/**
|
|
* @param PublicKeyCredentialSource $publicKeyCredentialSource
|
|
* @param string|null $keyName
|
|
*
|
|
* @return void
|
|
* @throws ContainerExceptionInterface
|
|
* @throws DoctrineDriverException
|
|
* @throws DoctrineException
|
|
* @throws NotFoundExceptionInterface
|
|
* @throws Exception
|
|
* @throws AssertionFailedException
|
|
*/
|
|
public function saveCredentialSource(PublicKeyCredentialSource $publicKeyCredentialSource, string $keyName = null): void
|
|
{
|
|
// item exist already
|
|
/** @var PublicKeyCredentialList $pkcl */
|
|
$pkcl = d3GetOxidDIC()->get(PublicKeyCredentialList::class);
|
|
if ($pkcl->findOneByCredentialId($publicKeyCredentialSource->getPublicKeyCredentialId())) {
|
|
return;
|
|
}
|
|
|
|
// will save on every successfully assertion, set id to prevent duplicated database entries
|
|
$id = $this->getIdByCredentialId($publicKeyCredentialSource->getPublicKeyCredentialId());
|
|
|
|
if ($this->exists($id)) {
|
|
$this->load($id);
|
|
}
|
|
|
|
$this->setShopId(Registry::getConfig()->getShopId());
|
|
$this->setUserId($publicKeyCredentialSource->getUserHandle());
|
|
$this->setCredentialId($publicKeyCredentialSource->getPublicKeyCredentialId());
|
|
$this->setCredential($publicKeyCredentialSource);
|
|
$this->setName($keyName ?: $this->getName() ?: (new DateTime())->format('Y-m-d H:i:s'));
|
|
$this->save();
|
|
}
|
|
|
|
/**
|
|
* @param string $publicKeyCredentialId
|
|
*
|
|
* @return string|null
|
|
* @throws ContainerExceptionInterface
|
|
* @throws DoctrineDriverException
|
|
* @throws DoctrineException
|
|
* @throws NotFoundExceptionInterface
|
|
*/
|
|
public function getIdByCredentialId(string $publicKeyCredentialId): ?string
|
|
{
|
|
/** @var QueryBuilder $qb */
|
|
$qb = ContainerFactory::getInstance()->getContainer()->get(QueryBuilderFactoryInterface::class)->create();
|
|
$qb->select('oxid')
|
|
->from($this->getViewName())
|
|
->where(
|
|
$qb->expr()->and(
|
|
$qb->expr()->eq(
|
|
'credentialid',
|
|
$qb->createNamedParameter(base64_encode($publicKeyCredentialId))
|
|
),
|
|
$qb->expr()->eq(
|
|
'oxshopid',
|
|
$qb->createNamedParameter(d3GetOxidDIC()->get('d3ox.webauthn.'.Config::class)->getShopId())
|
|
)
|
|
)
|
|
);
|
|
/** @var Statement $stmt */
|
|
$stmt = $qb->execute();
|
|
$oxid = $stmt->fetchOne();
|
|
|
|
return strlen((string) $oxid) ? $oxid : null;
|
|
}
|
|
}
|