X-Git-Url: http://git.roojs.org/?a=blobdiff_plain;f=DataObjects%2FCore_setting.php;h=ea19562bd0b14f372adc9938bc6510e82660ca46;hb=7342a6a6827597377ed6a6af8efcf446f9593509;hp=828353ee9f7c5bbdc5cbfe00297e4df5bc6ecf6c;hpb=8d3532a3c16c9665462d1ee774f22c65d6703377;p=Pman.Core diff --git a/DataObjects/Core_setting.php b/DataObjects/Core_setting.php index 828353ee..ea19562b 100644 --- a/DataObjects/Core_setting.php +++ b/DataObjects/Core_setting.php @@ -6,11 +6,13 @@ class Pman_Core_DataObjects_Core_setting extends DB_DataObject { public $__table = 'core_setting'; - function initKeys($dir) + function initKeys() { - //reject when keys exist + // return false when fail + + $dir = $this->getKeyDirectory(); + if( - !file_exists($dir) || file_exists("{$dir}/pub.key") || file_exists("{$dir}/pri.key") ){ @@ -19,7 +21,7 @@ class Pman_Core_DataObjects_Core_setting extends DB_DataObject $ssl = openssl_pkey_new(array( "digest_alg" => "sha512", - "private_key_bits" => 1024, //returns cipher in 128 bit + "private_key_bits" => 1024, //returns cipher in 128 char "private_key_type" => OPENSSL_KEYTYPE_RSA )); @@ -31,12 +33,12 @@ class Pman_Core_DataObjects_Core_setting extends DB_DataObject file_put_contents("{$dir}/pri.key",$pri_key); } - function getSetting($m,$n) + function lookup($m,$n) { $s = DB_DataObject::factory('core_setting'); $s->setFrom(array( - 'module' => $q['module'], - 'name' => $q['name'] + 'module' => $m, + 'name' => $n )); if($s->find(true)) { return $s; @@ -46,26 +48,93 @@ class Pman_Core_DataObjects_Core_setting extends DB_DataObject function beforeInsert($q, $roo) { - return; + exit; + } + + function getKeyDirectory() + { + $client_dir = HTML_FlexyFramework::get()->Pman['storedir']; + $key_dir = $client_dir.'/keys'; + if(!file_exists($key_dir)) { + $this->checkWritable(get_class($this),__FUNCTION__,$client_dir); + exec("mkdir -m775 {$key_dir}"); + } + return $key_dir; } + // FIXME - this needs to go in beforeInsert/beforeUpdate + // should not be sending this the values.. function initSetting($a) { - //foreach ($a) > insert if(empty($a)) { return; } - foreach ($a as $s) { - + $c = $this->lookup($a['module'], $a['name']); + if($c) { + return; } - return; + $this->initKeys(); + + $s = DB_DataObject::factory('core_setting'); + + $s->setFrom(array( + 'module' => $a['module'], + 'name' => $a['name'], + 'description' => $a['description'], + 'val' => (!isset($a['is_encrypt']) || $a['is_encrypt'] == 1) ? + $this->encrypt($a['val']) : $a['val'], + 'is_encrypt' => isset($a['is_encrypt']) ? $a['is_encrypt'] : 1 + )); + + $s->insert(); } - function encryptVal($v) { + //one key for encrypting all the settings + function encrypt($v) + { + $key_dir = "{$this->getKeyDirectory()}/pub.key"; + + if(!file_exists($key_dir)) { + print_r("Cannot find {$key_dir}"); + exit; + } + $pub_key = file_get_contents($key_dir); + if(!$pub_key) { + return; + } + openssl_public_encrypt($v, $ciphertext, $pub_key); + return $ciphertext; } + function decrypt($v) + { + $key_dir = "{$this->getKeyDirectory()}/pri.key"; + + if(!file_exists($key_dir)) { + print_r("Cannot find {$key_dir}"); + exit; + } + + $pri_key = file_get_contents($key_dir); + if(!$pri_key) { + return; + } + + openssl_private_decrypt($v, $plaintext, $pri_key); + return $plaintext; + } + function checkWritable($cls_name,$func_name,$dir) + { + if(!is_writable($dir)) { + print_r("Cannot run {$cls_name} :: {$func_name}\n"); + print_r("Directory: {$dir} is not writable by current user\n"); + exit; + } + + return true; + } }