holm/egroupware
1
1
Fork 0
forked from extern/egroupware
Code Issues Pull Requests Packages Projects Releases Wiki Activity
e9c4694d09
egroupware/api/src/Etemplate/Request.php

580 lines
17 KiB
PHP
Raw Normal View History

Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
<?php
/**
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
* EGroupware - eTemplate request object storing request-data directly in the form itself
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*
* @license http://opensource.org/licenses/gpl-license.php GPL - GNU General Public License
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
* @package api
* @subpackage etemplate
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
* @link http://www.egroupware.org
* @author Ralf Becker <RalfBecker@outdoor-training.de>
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
* @copyright (c) 2007-16 by Ralf Becker <RalfBecker@outdoor-training.de>
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
* @version $Id$
*/
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
namespace EGroupware\Api\Etemplate;
move egw_json_(request|response|push) to api
2016-03-20 14:02:55 +01:00
use EGroupware\Api;
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* Class to represent the persitent information of an eTemplate request
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* Current default for etemplate_request is to store request-data in egw_cache by
* setting a not set etemplate_request::$request_class to 'etemplate_request_cache'.
*
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* This class stores the request-data direct in a hidden var in the form.
* As this would allow an evil user to manipulate it and therefore compromise the security
* of an EGroupware instance, this class should only be used, if mcrypt is available
* to encrypt that data. The factory method etemplate_request::read() ensures that,
* by using etemplate_request_session instead.
*
* The key used to encrypt the request can be set in header.inc.php by setting
*
* $GLOBALS['egw_info']['server']['etemplate_form_key'] = 'something secret';
*
* if this var is not set, the db_pass and EGW_SERVER_ROOT is used instead.
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* The request object should be instancated only via the factory method etemplate_request::read($id=null)
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
*
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
* $request = Api\Etemplate\Request::read();
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
*
* // add request data
*
* $id = $request->id();
*
* b) open or modify an existing request:
*
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
* if (!($request = Api\Etemplate\Request::read($id)))
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
* {
* // request not found
* }
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
*
* Ajax requests can use this object to open the original request by using the id, they have to transmitt back,
* and register further variables, modify the registered ones or delete them AND then update the id, if it changed:
*
fixed changes in get_rows method were not send back to client, if PHP mcrypt is available / eTemplate request stored on client
2013-10-11 13:20:21 +02:00
* eTemplate2:
*
* if (($new_id = $request->id()) != $exec_id)
* {
move egw_json_(request|response|push) to api
2016-03-20 14:02:55 +01:00
* Api\Json\Response::get()->generic('assign', array(
fixed changes in get_rows method were not send back to client, if PHP mcrypt is available / eTemplate request stored on client
2013-10-11 13:20:21 +02:00
* 'etemplate_exec_id' => $id,
* 'id' => '',
* 'key' => 'etemplate_exec_id',
* 'value' => $new_id,
* ));
* }
*
* old eTemplate:
*
* if (($new_id = $request->id()) != $exec_id)
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* {
move egw_json_(request|response|push) to api
2016-03-20 14:02:55 +01:00
* Api\Json\Response::get()->assign('etemplate_exec_id','value',$new_id);
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* }
*
fixed old "'%1' is NOT allowed ('%2')!" error: the ajax search now opens the pending eTemplate request and stores the new allowed id's from this search
2008-08-30 13:17:04 +02:00
* For an example look in link_widget::ajax_search()
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
*
* @property-read boolean $data_modified true if data was modified and therefore needs saving
* all apps: preserving for current user unavailable categories (eg. private categories of other user) when editing entries
2014-12-17 14:58:15 +01:00
* @property int $output_mode
* @property array $content
* @property array $changes
* @property array $sel_options
* @property array $readonlys
* @property array $preserv
* @property string $method
* @property array $ignore_validation
* @property array $template
* @property string $app_header
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
class Request
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
/**
* here is the request data stored
*
* @var array
*/
WIP admin history: using eTemplate tree instead of regexp to parse labels and selectbox values
2019-03-19 15:34:44 +01:00
protected $data=[
'content' => [],
'readonlys' => [],
];
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
* Flag if data has been modified and therefor need to be stored again in the session
*
* @var boolean
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
protected $data_modified=false;
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
/**
* Flag that stored data should be removed by destructor, if not modified.
*
* @var boolean
*/
protected $remove_if_not_modified=false;
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* mcrypt resource
*
* @var resource
*/
static protected $mcrypt;
/**
* See gzcompress, set it to 0 to not compress
*
* @var int
*/
static public $compression_level = 6;
/**
* Name of request class used
*
* Can be set here to force a certain class, otherwise the factory method chooses one
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*
* @var string
*/
fix old class names in docu
2016-09-24 19:07:37 +02:00
static public $request_class; // = 'EGroupware\Api\Etemplate\Request\Session';
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* Factory method to get a new request object or the one for an existing request
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
* New default is to use egw_cache to store requests and no longer request or
* session documented below:
*
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* If mcrypt AND gzcompress is available this factory method chooses etemplate_request,
* which stores the request data encrypted in a hidden var directly in the form,
* over etemplate_request_session, which stores the data in the session (and causing
* the sesison to constantly grow).
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param string $id =null
use etemplate-exec-id as CSRF token for ajax requests
2020-01-29 11:08:44 +01:00
* @param bool $handle_not_found =true true: handle not found by trying to redirect, false: just return null
* @return Request|null null if Request not found and $handle_not_found === false
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
use etemplate-exec-id as CSRF token for ajax requests
2020-01-29 11:08:44 +01:00
public static function read($id=null, $handle_not_found=true)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
if (is_null(self::$request_class))
{
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
// new default to use egw_cache to store requests
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
self::$request_class = __CLASS__.'\\Cache';
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
/* old default to use request if mcrypt and gzcompress are available and session if not
using new check_load_extension function
2009-04-20 14:43:44 +02:00
self::$request_class = check_load_extension('mcrypt') && function_exists('gzcompress') &&
fix old class names in docu
2016-09-24 19:07:37 +02:00
self::init_crypt() ? __CLASS__ : 'EGroupware\Api\Etemplate\Request\Session';
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
}
if (self::$request_class != __CLASS__)
{
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
$request = call_user_func(self::$request_class.'::read', $id);
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
}
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
else
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
{
moving eT2 server-side to api
2016-03-19 14:06:07 +01:00
$request = new Request();
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
if (!is_null($id))
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
{
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
$id = base64_decode($id);
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
// decrypt the data if available
if (self::init_crypt())
{
$id = mdecrypt_generic(self::$mcrypt,$id);
}
// uncompress the data if available
if (self::$compression_level && function_exists('gzcompress'))
{
//$len_compressed = bytes($id);
//$time = microtime(true);
$id = gzuncompress($id);
//$time = number_format(1000.0 * (microtime(true) - $time),1);
//$len_uncompressed = bytes($id);
//error_log(__METHOD__."() uncompressed from $len_compressed to $len_uncompressed bytes $time ms");
}
$request->data = unserialize($id);
if (!$request->data)
{
error_log(__METHOD__."() id not valid!");
$request = false;
}
//error_log(__METHOD__."() size of request = ".bytes($id));
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
}
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
}
use etemplate-exec-id as CSRF token for ajax requests
2020-01-29 11:08:44 +01:00
if (!$request && $handle_not_found) // eT2 request/session expired
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
{
list($app) = explode('.', $_GET['menuaction']);
Try to fix redirects from AJAX calls to static methods
2016-09-09 18:27:14 +02:00
$global = false;
if(isset($GLOBALS['egw_info']['apps'][$app]))
{
$index_url = isset($GLOBALS['egw_info']['apps'][$app]['index']) ?
'/index.php?menuaction='.$GLOBALS['egw_info']['apps'][$app]['index'] : '/'.$app.'/index.php';
}
else
{
Attempt to fix redirects to invalid /index.php
2016-11-16 17:20:03 +01:00
$index_url = Api\Framework::link('/index.php');
Try to fix redirects from AJAX calls to static methods
2016-09-09 18:27:14 +02:00
$global = true;
$app = null;
}
fix redirect loop initiated eg. by saving a mail, caused by document.location=url triggering etemplate unload handler and destroying et2 request, identical redirect url detected by jdots framework causes refresh via nextmatch --> next redirect
2014-10-08 22:02:59 +02:00
// add a unique token to redirect to avoid client-side framework tries refreshing via nextmatch
$index_url .= (strpos($index_url, '?') ? '&' : '?').'redirect='.microtime(true);
move egw_json_(request|response|push) to api
2016-03-20 14:02:55 +01:00
error_log(__METHOD__."('$id', ...) eT2 request not found / expired --> redirecting app $app to $index_url (_GET[menuaction]=$_GET[menuaction], isJSONRequest()=".array2string(Api\Json\Request::isJSONRequest()).')');
if (Api\Json\Request::isJSONRequest())
fixed not working redirect to index url of app, if etemplate session is lost (tested with mail app)
2014-01-27 17:30:34 +01:00
{
// we must not redirect ajax_destroy_session calls, as they might originate from our own redirect!
if (strpos($_GET['menuaction'], '.ajax_destroy_session.etemplate') === false)
{
move egw_json_(request|response|push) to api
2016-03-20 14:02:55 +01:00
$response = Api\Json\Response::get();
fix 404 Not Found / wrong redirect after expired/no longer existing eT2 session
2022-07-05 08:43:53 +02:00
$response->redirect(Api\Framework::link($index_url), $global, $app);
replacing common::egw_exit() with exit, there is no more extra cleanup
2016-03-20 17:30:01 +01:00
exit;
fixed not working redirect to index url of app, if etemplate session is lost (tested with mail app)
2014-01-27 17:30:34 +01:00
}
}
else
{
move egw_framework to api and refactor it
2016-04-07 22:42:06 +02:00
Api\Framework::redirect_link($index_url);
fixed not working redirect to index url of app, if etemplate session is lost (tested with mail app)
2014-01-27 17:30:34 +01:00
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
}
return $request;
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
use etemplate-exec-id as CSRF token for ajax requests
2020-01-29 11:08:44 +01:00
/**
* CSRF check using an etemplate-exec-id
*
* If eTemplate request object could not be read, the function will NOT return,
* but send an Ajax error response and exit or die with the error-message!
*
* @param string $id etemplate-exec-id
* @param string $caller calling method to log
* @param array $args =[] arguments to log
* @throws Api\Json\Exception
*/
public static function csrfCheck($id, $caller, $args=[])
{
if (!self::read($id, false)) // false: do NOT handle not found, but return null
{
error_log(__METHOD__."('$id', $caller, ".json_encode($args).") called with invalid/expired etemplate_exec_id: possible CSRF detected from IP ".$_SERVER['REMOTE_ADDR'].' to '.$_SERVER['REQUEST_METHOD'].' '.$_SERVER['REQUEST_URI']);
$msg = lang('Request could not be processed, please reload your window (press F5 or Cmd R)!');
if (Api\Json\Request::isJSONRequest())
{
Api\Json\Response::get()->message($msg, 'error');
exit;
}
die($msg);
}
}
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* Private constructor to force the instancation of this class only via it's static factory method read
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param string $id =null
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
private function __construct($id=null)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
unset($id);
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* return the id of this request
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* @return string
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
public function &id()
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
$this->cleanup();
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
$data = serialize($this->data);
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
// compress the data if available
if (self::$compression_level && function_exists('gzcompress'))
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
//$len_uncompressed = bytes($id);
//$time = microtime(true);
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
$data = gzcompress($data, self::$compression_level);
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
//$time = number_format(1000.0 * (microtime(true) - $time),1);
//$len_compressed = bytes($id);
//error_log(__METHOD__."() compressed from $len_uncompressed to $len_compressed bytes in $time ms");
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
// encrypt the data if available
if (self::init_crypt())
{
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
$data = mcrypt_generic(self::$mcrypt, $data);
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
}
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
$id = base64_encode($data);
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
//error_log(__METHOD__."() #$this->id: size of request = ".bytes($id));//.", id='$id'");
//self::debug();
return $id;
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
/**
* Clean up data before storing it: currently only removes "real" nextmatch rows
*/
protected function cleanup()
{
do NOT store actions in session or eT2 request, nor send for mobile devices skiped actions
2017-04-04 16:52:25 +02:00
if (isset($this->data['content']['nm']))
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
{
do NOT store actions in session or eT2 request, nor send for mobile devices skiped actions
2017-04-04 16:52:25 +02:00
if (is_array($this->data['content']['nm']['rows']))
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
{
do NOT store actions in session or eT2 request, nor send for mobile devices skiped actions
2017-04-04 16:52:25 +02:00
foreach(array_keys($this->data['content']['nm']['rows']) as $n)
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
{
do NOT store actions in session or eT2 request, nor send for mobile devices skiped actions
2017-04-04 16:52:25 +02:00
if (is_int($n))
{
unset($this->data['content']['nm']['rows'][$n]);
}
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
}
do NOT store actions in session or eT2 request, nor send for mobile devices skiped actions
2017-04-04 16:52:25 +02:00
//error_log(__METHOD__."() content[nm][rows]=".array2string($this->data['content']['nm']['rows']));
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
}
do NOT store actions in session or eT2 request, nor send for mobile devices skiped actions
2017-04-04 16:52:25 +02:00
// do not store actions
unset($this->data['content']['nm']['actions'], $this->data['content']['nm']['action_links']);
never storing rows in Etemplate\Request and by that keeping apps from storing it as state into the session
2017-04-04 15:04:44 +02:00
}
}
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
* Register a form-variable to be processed
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param string $_form_name form-name
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
* @param string $type etemplate type
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param array $data =array() optional extra data
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
public function set_to_process($_form_name, $type, $data=array())
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
if (!$_form_name || !$type) return;
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
some switched off debug messages
2009-11-24 11:56:41 +01:00
//echo '<p>'.__METHOD__."($form_name,$type,".array2string($data).")</p>\n";
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
$data['type'] = $type;
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
Some more quoting (and unquoting) of quotes in variable used eg. as button names: eg. "delete[$row_cont[path]]" with path containing " or ' - they need to get quoted for correct html markup - etemplate_request::set_to_process() need to use unquoted version, as this is how it get returned in $_POST
2010-05-11 16:52:45 +02:00
// unquote single and double quotes, as this is how they get returned in $_POST
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
$form_name = str_replace(array('\\\'','&quot;'), array('\'','"'), $_form_name);
Some more quoting (and unquoting) of quotes in variable used eg. as button names: eg. "delete[$row_cont[path]]" with path containing " or ' - they need to get quoted for correct html markup - etemplate_request::set_to_process() need to use unquoted version, as this is how it get returned in $_POST
2010-05-11 16:52:45 +02:00
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
$this->data['to_process'][$form_name] = $data;
$this->data_modified = true;
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
/**
* Set an attribute of a to-process record
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param string $_form_name form-name
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* @param string $attribute etemplate type
* @param array $value
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param boolean $add_to_array =false should $value be added to the attribute array
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
*/
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
public function set_to_process_attribute($_form_name, $attribute, $value, $add_to_array=false)
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
{
some switched off debug messages
2009-11-24 11:56:41 +01:00
//echo '<p>'.__METHOD__."($form_name,$attribute,$value,$add_to_array)</p>\n";
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
if (!$_form_name) return;
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
Some more quoting (and unquoting) of quotes in variable used eg. as button names: eg. "delete[$row_cont[path]]" with path containing " or ' - they need to get quoted for correct html markup - etemplate_request::set_to_process() need to use unquoted version, as this is how it get returned in $_POST
2010-05-11 16:52:45 +02:00
// unquote single and double quotes, as this is how they get returned in $_POST
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
$form_name = str_replace(array('\\\'','&quot;'), array('\'','"'), $_form_name);
Some more quoting (and unquoting) of quotes in variable used eg. as button names: eg. "delete[$row_cont[path]]" with path containing " or ' - they need to get quoted for correct html markup - etemplate_request::set_to_process() need to use unquoted version, as this is how it get returned in $_POST
2010-05-11 16:52:45 +02:00
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
if ($add_to_array)
{
$this->data['to_process'][$form_name][$attribute][] = $value;
}
else
{
$this->data['to_process'][$form_name][$attribute] = $value;
}
$this->data_modified = true;
}
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
* Unregister a form-variable to be no longer processed
*
* @param string $form_name form-name
*/
public function unset_to_process($form_name)
{
some switched off debug messages
2009-11-24 11:56:41 +01:00
//echo '<p>'.__METHOD__."($form_name) isset_to_process($form_name)=".$this->isset_to_process($form_name)."</p>\n";
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
unset($this->data['to_process'][$form_name]);
$this->data_modified = true;
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
* return the data of a form-var to process or the whole array
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param string $form_name =null
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
* @return array
*/
public function get_to_process($form_name=null)
{
some switched off debug messages
2009-11-24 11:56:41 +01:00
//echo '<p>'.__METHOD__."($form_name)</p>\n";
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
return $form_name ? $this->data['to_process'][$form_name] : $this->data['to_process'];
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
* check if something set for a given $form_name
*
* @param string $form_name
* @return boolean
*/
public function isset_to_process($form_name)
{
some switched off debug messages
2009-11-24 11:56:41 +01:00
//echo '<p>'.__METHOD__."($form_name) = ".array2string(isset($this->data['to_process'][$form_name]))."</p>\n";
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
return isset($this->data['to_process'][$form_name]);
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
use openssl_random_pseudo_bytes, if available, to generate etemplate_exec_id, as it is used for CSRF protection too
2016-11-17 11:08:54 +01:00
/**
* creates a new unique request-id
*
* @return string
use etemplate-exec-id as CSRF token for ajax requests
2020-01-29 11:08:44 +01:00
* @throws \Exception if it was not possible to gather sufficient entropy.
use openssl_random_pseudo_bytes, if available, to generate etemplate_exec_id, as it is used for CSRF protection too
2016-11-17 11:08:54 +01:00
*/
static function request_id()
{
* All apps: fix random failure in drag-n-drop or pasting images into CKEditor eg. mail compose
2017-01-27 17:37:04 +01:00
// replace url-unsafe chars with _ to not run into url-encoding issues when used in a url
$userID = preg_replace('/[^a-z0-9_\\.@-]/i', '_', $GLOBALS['egw_info']['user']['account_lid']);
use openssl_random_pseudo_bytes, if available, to generate etemplate_exec_id, as it is used for CSRF protection too
2016-11-17 11:08:54 +01:00
use etemplate-exec-id as CSRF token for ajax requests
2020-01-29 11:08:44 +01:00
// replace + with _ to not run into url-encoding issues when used in a url
$token = str_replace('+', '_', base64_encode(random_bytes(32)));
use openssl_random_pseudo_bytes, if available, to generate etemplate_exec_id, as it is used for CSRF protection too
2016-11-17 11:08:54 +01:00
return $GLOBALS['egw_info']['flags']['currentapp'].'_'.$userID.'_'.$token;
}
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
* magic function to set all request-vars, used eg. as $request->method = 'app.class.method';
*
* @param string $var
* @param mixed $val
*/
an other chunk of fixed PHP 8.0 Warnings
2021-10-07 10:14:08 +02:00
public function __set($var, $val)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
an other chunk of fixed PHP 8.0 Warnings
2021-10-07 10:14:08 +02:00
if (!isset($this->data[$var]) || $this->data[$var] !== $val)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
$this->data[$var] = $val;
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
//error_log(__METHOD__."('$var', ...) data of id=$this->id changed ...");
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
$this->data_modified = true;
}
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
* magic function to access the request-vars, used eg. as $method = $request->method;
*
* @param string $var
* @return mixed
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
public function &__get($var)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
if ($var == 'data_modified') return $this->data_modified;
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
return $this->data[$var];
}
some switched off debug messages
2009-11-24 11:56:41 +01:00
Need to define a __isset() method so empty() works with __get(). Fixes missing body javascript when looping.
2009-05-27 16:57:29 +02:00
/**
* magic function to see if a request-var has been set
*
* @param string $var
* @return boolean
*/
public function __isset($var)
{
return array_key_exists($var, $this->data);
}
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* Get the names / keys of existing variables
*
* @return array
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
public function names()
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
return array_keys($this->data);
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* Output the size-wise important parts of a request
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* @param double $min_share minimum share to be reported (in percent of the whole request)
* @param double $dump_share minimum share from which on a variable get output
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
public function debug($min_share=1.0,$dump_share=25.0)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
echo "<p><b>total size request data = ".($total=strlen(serialize($this->data)))."</b></p>\n";
echo "<p>shares bigger then $min_share% percent of it:</p>\n";
foreach($this->data as $key => $val)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
$len = strlen(is_array($val) ? serialize($val) : $val);
fixing all sorts of PHP 8 errors and PHPStorm errors
2021-03-31 17:49:43 +02:00
$len .= ' ('.sprintf('%2.1f',($percent = 100.0 * $len / $total)).'%)';
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
if ($percent < $min_share) continue;
echo "<p><b>$key</b>: strlen(\$val)=$len</p>\n";
if ($percent >= $dump_share) _debug_array($val);
if (is_array($val) && $len > 2000)
{
foreach($val as $k => $v)
{
$l = strlen(is_array($v) ? serialize($v) : $v);
fixing all sorts of PHP 8 errors and PHPStorm errors
2021-03-31 17:49:43 +02:00
$l .= ' ('.sprintf('%2.1f',($p = 100.0 * $l / $total)).'%)';
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
if ($p < $min_share) continue;
echo "<p>&nbsp;- {$key}[$k]: strlen(\$v)=$l</p>\n";
}
}
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
}
/**
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* Check if session encryption is configured, possible and initialise it
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*
update documentation and fix IDE warnings
2015-09-03 09:12:35 +02:00
* @param string $algo ='tripledes'
* @param string $mode ='ecb'
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
* @return boolean true if encryption is used, false otherwise
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
*/
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
static public function init_crypt($algo='tripledes',$mode='ecb')
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
if (is_null(self::$mcrypt))
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
if (isset($GLOBALS['egw_info']['server']['etemplate_form_key']))
{
$key = $GLOBALS['egw_info']['server']['etemplate_form_key'];
}
else
{
$key = $GLOBALS['egw_info']['server']['db_pass'].EGW_SERVER_ROOT;
}
using new check_load_extension function
2009-04-20 14:43:44 +02:00
if (!check_load_extension('mcrypt'))
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
{
error_log(__METHOD__."() required PHP extension mcrypt not loaded and can not be loaded, eTemplate requests get NOT encrypted!");
return false;
}
if (!(self::$mcrypt = mcrypt_module_open($algo, '', $mode, '')))
{
error_log(__METHOD__."() could not mcrypt_module_open(algo='$algo','',mode='$mode',''), eTemplate requests get NOT encrypted!");
return false;
}
$iv_size = mcrypt_enc_get_iv_size(self::$mcrypt);
fixing all sorts of PHP 8 errors and PHPStorm errors
2021-03-31 17:49:43 +02:00
if (!isset($GLOBALS['egw_info']['server']['mcrypt_iv']) || strlen($GLOBALS['egw_info']['server']['mcrypt_iv']) < $iv_size)
{
if (!($iv = mcrypt_create_iv ($iv_size, MCRYPT_DEV_RANDOM)))
{
return self::$mcrypt = false;
}
}
else
{
$iv = substr($GLOBALS['egw_info']['server']['mcrypt_iv'],0,$iv_size);
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
$key_size = mcrypt_enc_get_key_size(self::$mcrypt);
work around a warning, if database password contains a non-ascii char (eg. German umlaut)
2012-10-23 10:20:54 +02:00
if (bytes($key) > $key_size) $key = cut_bytes($key,0,$key_size-1);
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
if (mcrypt_generic_init(self::$mcrypt,$key, $iv) < 0)
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
{
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
error_log(__METHOD__."() could not initialise mcrypt, sessions get NOT encrypted!");
return self::$mcrypt = false;
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
}
Refractured eTemplate to use: - the etemplate_request object which stores the request data in the a) session (as before) or b) compressed and encrypted in the form transmitted to the user Benefit of b) is that the session does not grow and the form can be submitted as long as the session exists, as we need no garbadge collection. Of cause more data needs to be submitt between browser and webserver. b) is choosen automatic if mcrypt and gzcompress are available, but can be turned off via setting etemplate_request::$request_class = 'etemplate_request_session'; - static class variables instead of the before used global ones --> This new version of eTemplate is fully backward compatible with 1.6!
2009-03-16 13:58:24 +01:00
return is_resource(self::$mcrypt);
}
/**
* Destructor
*/
function __destruct()
{
if (self::$mcrypt)
{
mcrypt_generic_deinit(self::$mcrypt);
self::$mcrypt = null;
}
Class to repressent etemplate requests. It will be used in etemplate in the future and it can be used already to register further form-variables or their options via AJAX.
2007-04-16 22:46:55 +02:00
}
new default eTemplate request storate in EGroupware cache with an expiration time of 4 hours. Benefit over old default is, that we get a short etemplate_exec_id giving better performance for ajax requests. Drawback is currently poor garbadge collection only removing requests not used in 4 hours or which call egw_framework::window_close on server-side. We can improve garbadge-collection by binding to window on(before)unload sending a (synchronious) request to server to remove concerned eT2 request.
2014-01-15 17:46:16 +01:00
/**
* Mark request as to destroy, if it does not get modified before destructor is called
*
* If that function is called, request is removed from storage, further modification will work!
*/
public function remove_if_not_modified()
{
$this->remove_if_not_modified = true;
}
fix 404 Not Found / wrong redirect after expired/no longer existing eT2 session
2022-07-05 08:43:53 +02:00
}
Reference in New Issue Copy Permalink