gnu-social/classes/Oauth_application.php

<?php
/**
 * Table Definition for oauth_application
 */
require_once INSTALLDIR.'/classes/Memcached_DataObject.php';

class Oauth_application extends Managed_DataObject
{
    ###START_AUTOCODE
    /* the code below is auto generated do not remove the above tag */

    public $__table = 'oauth_application';               // table name
    public $id;                              // int(4)  primary_key not_null
    public $owner;                           // int(4)   not_null
    public $consumer_key;                    // varchar(191)   not_null   not 255 because utf8mb4 takes more space
    public $name;                            // varchar(191)   not_null   not 255 because utf8mb4 takes more space
    public $description;                     // varchar(191)              not 255 because utf8mb4 takes more space
    public $icon;                            // varchar(191)              not_null   not 255 because utf8mb4 takes more space
    public $source_url;                      // varchar(191)              not 255 because utf8mb4 takes more space
    public $organization;                    // varchar(191)              not 255 because utf8mb4 takes more space
    public $homepage;                        // varchar(191)              not 255 because utf8mb4 takes more space
    public $callback_url;                    // varchar(191)   not_null   not 255 because utf8mb4 takes more space
    public $type;                            // tinyint(1)
    public $access_type;                     // tinyint(1)
    public $created;                         // datetime   not_null
    public $modified;                        // timestamp   not_null default_CURRENT_TIMESTAMP

    /* the code above is auto generated do not remove the tag below */
    ###END_AUTOCODE

    // Bit flags
    public static $readAccess  = 1;
    public static $writeAccess = 2;

    public static $browser = 1;
    public static $desktop = 2;

    function getConsumer()
    {
        return Consumer::getKV('consumer_key', $this->consumer_key);
    }

    static function maxDesc()
    {
        // This used to default to textlimit or allow unlimited descriptions,
        // but this isn't part of a notice and the field's limited to 191 chars
        // in the DB, so those seem silly. (utf8mb4 takes up more space, so can't use 255)
        //
        // Now just defaulting to 191 max unless a smaller application desclimit
        // is actually set. Setting to 0 will use the maximum.
        $max = 191;
        $desclimit = intval(common_config('application', 'desclimit'));
        if ($desclimit > 0 && $desclimit < $max) {
            return $desclimit;
        } else {
            return $max;
        }
    }

    static function descriptionTooLong($desc)
    {
        $desclimit = self::maxDesc();
        return ($desclimit > 0 && !empty($desc) && (mb_strlen($desc) > $desclimit));
    }

    function setAccessFlags($read, $write)
    {
        if ($read) {
            $this->access_type |= self::$readAccess;
        } else {
            $this->access_type &= ~self::$readAccess;
        }

        if ($write) {
            $this->access_type |= self::$writeAccess;
        } else {
            $this->access_type &= ~self::$writeAccess;
        }
    }

    function setOriginal($filename)
    {
        $imagefile = new ImageFile(null, Avatar::path($filename));

        // XXX: Do we want to have a bunch of different size icons? homepage, stream, mini?
        // or just one and control size via CSS? --Zach

        $orig = clone($this);
        $this->icon = Avatar::url($filename);
        common_debug(common_log_objstring($this));
        return $this->update($orig);
    }

    static function getByConsumerKey($key)
    {
        if (empty($key)) {
            return null;
        }

        $app = new Oauth_application();
        $app->consumer_key = $key;
        $app->limit(1);
        $result = $app->find(true);

        return empty($result) ? null : $app;
    }

    /**
     * Handle an image upload
     *
     * Does all the magic for handling an image upload, and crops the
     * image by default.
     *
     * @return void
     */
    function uploadLogo()
    {
        if ($_FILES['app_icon']['error'] ==
            UPLOAD_ERR_OK) {

            try {
                $imagefile = ImageFile::fromUpload('app_icon');
            } catch (Exception $e) {
                common_debug("damn that sucks");
                $this->showForm($e->getMessage());
                return;
            }

            $filename = Avatar::filename($this->id,
                                         image_type_to_extension($imagefile->type),
                                         null,
                                         'oauth-app-icon-'.common_timestamp());

            $filepath = Avatar::path($filename);

            move_uploaded_file($imagefile->filepath, $filepath);

            $this->setOriginal($filename);
        }
    }

    function delete($useWhere=false)
    {
        $this->_deleteAppUsers();

        $consumer = $this->getConsumer();
        $consumer->delete();

        return parent::delete($useWhere);
    }

    function _deleteAppUsers()
    {
        $oauser = new Oauth_application_user();
        $oauser->application_id = $this->id;
        $oauser->delete();
    }

    public static function schemaDef()
    {
        return array(
            'description' => 'OAuth application registration record',
            'fields' => array(
                'id' => array('type' => 'serial', 'not null' => true, 'description' => 'unique identifier'),
                'owner' => array('type' => 'int', 'not null' => true, 'description' => 'owner of the application'),
                'consumer_key' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'application consumer key'),
                'name' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'name of the application'),
                'description' => array('type' => 'varchar', 'length' => 191, 'description' => 'description of the application'),
                'icon' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'default' => '/theme/base/default-avatar-stream.png', 'description' => 'application icon'),
                'source_url' => array('type' => 'varchar', 'length' => 191, 'description' => 'application homepage - used for source link'),
                'organization' => array('type' => 'varchar', 'length' => 191, 'description' => 'name of the organization running the application'),
                'homepage' => array('type' => 'varchar', 'length' => 191, 'description' => 'homepage for the organization'),
                'callback_url' => array('type' => 'varchar', 'length' => 191, 'description' => 'url to redirect to after authentication'),
                'type' => array('type' => 'int', 'size' => 'tiny', 'default' => 0, 'description' => 'type of app, 1 = browser, 2 = desktop'),
                'access_type' => array('type' => 'int', 'size' => 'tiny', 'default' => 0, 'description' => 'default access type, bit 1 = read, bit 2 = write'),
                'created' => array('type' => 'datetime', 'not null' => true, 'description' => 'date this record was created'),
                'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),
            ),
            'primary key' => array('id'),
            'unique keys' => array(
                'oauth_application_name_key' => array('name'), // in the long run, we should perhaps not force these unique, and use another source id
            ),
            'foreign keys' => array(
                'oauth_application_owner_fkey' => array('profile', array('owner' => 'id')), // Are remote users allowed to create oauth application records?
                'oauth_application_consumer_key_fkey' => array('consumer', array('consumer_key' => 'consumer_key')),
            ),
        );
    }
}
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`<?php`
			`/**`
			`* Table Definition for oauth_application`
			`*/`
Changed the OAuth app tables to refer to profiles instead of users. Added an owner column to oauth_application. 2009-11-13 03:34:13 +00:00			`require_once INSTALLDIR.'/classes/Memcached_DataObject.php';`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00
move core schema to class files 2011-08-22 22:52:02 +01:00			`class Oauth_application extends Managed_DataObject`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`{`
			`###START_AUTOCODE`
			`/* the code below is auto generated do not remove the above tag */`

			`public $__table = 'oauth_application'; // table name`
			`public $id; // int(4) primary_key not_null`
Changed the OAuth app tables to refer to profiles instead of users. Added an owner column to oauth_application. 2009-11-13 03:34:13 +00:00			`public $owner; // int(4) not_null`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`public $consumer_key; // varchar(191) not_null not 255 because utf8mb4 takes more space`
			`public $name; // varchar(191) not_null not 255 because utf8mb4 takes more space`
			`public $description; // varchar(191) not 255 because utf8mb4 takes more space`
			`public $icon; // varchar(191) not_null not 255 because utf8mb4 takes more space`
			`public $source_url; // varchar(191) not 255 because utf8mb4 takes more space`
			`public $organization; // varchar(191) not 255 because utf8mb4 takes more space`
			`public $homepage; // varchar(191) not 255 because utf8mb4 takes more space`
			`public $callback_url; // varchar(191) not_null not 255 because utf8mb4 takes more space`
Changed the OAuth app tables to refer to profiles instead of users. Added an owner column to oauth_application. 2009-11-13 03:34:13 +00:00			`public $type; // tinyint(1)`
			`public $access_type; // tinyint(1)`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`public $created; // datetime not_null`
			`public $modified; // timestamp not_null default_CURRENT_TIMESTAMP`

			`/* the code above is auto generated do not remove the tag below */`
			`###END_AUTOCODE`
Workflow for registering new OAuth apps pretty much done. 2009-11-17 00:58:49 +00:00
			`// Bit flags`
			`public static $readAccess = 1;`
			`public static $writeAccess = 2;`

			`public static $browser = 1;`
			`public static $desktop = 2;`

			`function getConsumer()`
			`{`
The overloaded DB_DataObject function staticGet is now called getKV I used this hacky sed-command (run it from your GNU Social root, or change the first grep's path to where it actually lies) to do a rough fix on all ::staticGet calls and rename them to ::getKV sed -i -s -e '/DataObject::staticGet/I!s/::staticGet/::getKV/Ig' $(grep -R ::staticGet `pwd`/* \| grep -v -e '^extlib' \| grep -v DataObject:: \|grep -v "function staticGet"\|cut -d: -f1 \|sort \|uniq) If you're applying this, remember to change the Managed_DataObject and Memcached_DataObject function definitions of staticGet to getKV! This might of course take some getting used to, or modification fo StatusNet plugins, but the result is that all the static calls (to staticGet) are now properly made without breaking PHP Strict Standards. Standards are there to be followed (and they caused some very bad confusion when used with get_called_class) Reasonably any plugin or code that tests for the definition of 'GNUSOCIAL' or similar will take this change into consideration. 2013-08-18 12:04:58 +01:00			`return Consumer::getKV('consumer_key', $this->consumer_key);`
Workflow for registering new OAuth apps pretty much done. 2009-11-17 00:58:49 +00:00			`}`

			`static function maxDesc()`
			`{`
Ticket #2811 use more consistent max limit for OAuth application registration descriptions; now using the field max of 255 rather than $config['site']['textlimit'] as fallback if $config['application']['desclimit'] is unset or out of bounds. 2010-10-11 20:52:32 +01:00			`// This used to default to textlimit or allow unlimited descriptions,`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`// but this isn't part of a notice and the field's limited to 191 chars`
			`// in the DB, so those seem silly. (utf8mb4 takes up more space, so can't use 255)`
Ticket #2811 use more consistent max limit for OAuth application registration descriptions; now using the field max of 255 rather than $config['site']['textlimit'] as fallback if $config['application']['desclimit'] is unset or out of bounds. 2010-10-11 20:52:32 +01:00			`//`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`// Now just defaulting to 191 max unless a smaller application desclimit`
Ticket #2811 use more consistent max limit for OAuth application registration descriptions; now using the field max of 255 rather than $config['site']['textlimit'] as fallback if $config['application']['desclimit'] is unset or out of bounds. 2010-10-11 20:52:32 +01:00			`// is actually set. Setting to 0 will use the maximum.`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`$max = 191;`
Ticket #2811 use more consistent max limit for OAuth application registration descriptions; now using the field max of 255 rather than $config['site']['textlimit'] as fallback if $config['application']['desclimit'] is unset or out of bounds. 2010-10-11 20:52:32 +01:00			`$desclimit = intval(common_config('application', 'desclimit'));`
			`if ($desclimit > 0 && $desclimit < $max) {`
			`return $desclimit;`
			`} else {`
			`return $max;`
Workflow for registering new OAuth apps pretty much done. 2009-11-17 00:58:49 +00:00			`}`
			`}`

			`static function descriptionTooLong($desc)`
			`{`
			`$desclimit = self::maxDesc();`
			`return ($desclimit > 0 && !empty($desc) && (mb_strlen($desc) > $desclimit));`
			`}`

			`function setAccessFlags($read, $write)`
			`{`
			`if ($read) {`
			`$this->access_type \|= self::$readAccess;`
			`} else {`
			`$this->access_type &= ~self::$readAccess;`
			`}`

			`if ($write) {`
			`$this->access_type \|= self::$writeAccess;`
			`} else {`
			`$this->access_type &= ~self::$writeAccess;`
			`}`
			`}`

Add icons/icon upload to Oauth apps 2010-01-07 09:55:57 +00:00			`function setOriginal($filename)`
			`{`
ImageFile $id argument is only for File objects Remember to eliminate the Avatar/group logo call to ImageFile->resize! 2015-03-10 23:20:48 +00:00			`$imagefile = new ImageFile(null, Avatar::path($filename));`
Add icons/icon upload to Oauth apps 2010-01-07 09:55:57 +00:00
			`// XXX: Do we want to have a bunch of different size icons? homepage, stream, mini?`
			`// or just one and control size via CSS? --Zach`

			`$orig = clone($this);`
			`$this->icon = Avatar::url($filename);`
			`common_debug(common_log_objstring($this));`
			`return $this->update($orig);`
			`}`

Exchanging authorized request tokens for access tokens working 2010-01-11 09:11:50 +00:00			`static function getByConsumerKey($key)`
			`{`
Can now edit/change application icon 2010-01-13 01:22:37 +00:00			`if (empty($key)) {`
			`return null;`
			`}`

			`$app = new Oauth_application();`
			`$app->consumer_key = $key;`
			`$app->limit(1);`
			`$result = $app->find(true);`

			`return empty($result) ? null : $app;`
			`}`

			`/**`
			`* Handle an image upload`
			`*`
			`* Does all the magic for handling an image upload, and crops the`
			`* image by default.`
			`*`
			`* @return void`
			`*/`
			`function uploadLogo()`
			`{`
			`if ($_FILES['app_icon']['error'] ==`
			`UPLOAD_ERR_OK) {`
Exchanging authorized request tokens for access tokens working 2010-01-11 09:11:50 +00:00
Can now edit/change application icon 2010-01-13 01:22:37 +00:00			`try {`
			`$imagefile = ImageFile::fromUpload('app_icon');`
			`} catch (Exception $e) {`
			`common_debug("damn that sucks");`
			`$this->showForm($e->getMessage());`
			`return;`
			`}`

			`$filename = Avatar::filename($this->id,`
			`image_type_to_extension($imagefile->type),`
			`null,`
			`'oauth-app-icon-'.common_timestamp());`

			`$filepath = Avatar::path($filename);`

			`move_uploaded_file($imagefile->filepath, $filepath);`

			`$this->setOriginal($filename);`
			`}`
Exchanging authorized request tokens for access tokens working 2010-01-11 09:11:50 +00:00			`}`

function delete in dataobjects now don't break strict syntax 2013-10-29 09:20:57 +00:00			`function delete($useWhere=false)`
Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00			`{`
			`$this->_deleteAppUsers();`

			`$consumer = $this->getConsumer();`
			`$consumer->delete();`

function delete in dataobjects now don't break strict syntax 2013-10-29 09:20:57 +00:00			`return parent::delete($useWhere);`
Allow developers to delete OAuth applications 2010-02-02 06:26:03 +00:00			`}`

			`function _deleteAppUsers()`
			`{`
			`$oauser = new Oauth_application_user();`
			`$oauser->application_id = $this->id;`
			`$oauser->delete();`
			`}`
move core schema to class files 2011-08-22 22:52:02 +01:00
			`public static function schemaDef()`
			`{`
			`return array(`
			`'description' => 'OAuth application registration record',`
			`'fields' => array(`
			`'id' => array('type' => 'serial', 'not null' => true, 'description' => 'unique identifier'),`
			`'owner' => array('type' => 'int', 'not null' => true, 'description' => 'owner of the application'),`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`'consumer_key' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'application consumer key'),`
			`'name' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'description' => 'name of the application'),`
			`'description' => array('type' => 'varchar', 'length' => 191, 'description' => 'description of the application'),`
Add default icon to OAuth apps When MySQL runs in strict mode, it doesn't seem possible to add a new OAuth app. This is because: * The 'icon' field has no defaults and also has NOT NULL constraint. * GS uploads/sets the icon[1] (if provided) after the SQL insert[2] The easiest fix seemed to be to provide a default icon value. This change sets the default to the "blue peg" default avatar from the base theme. [1] https://git.gnu.io/gnu/gnu-social/blob/7f30e614027fa27e83ecc32eb5443ee82d03f0f7/actions/newapplication.php#L176 [2] https://git.gnu.io/gnu/gnu-social/blob/7f30e614027fa27e83ecc32eb5443ee82d03f0f7/actions/newapplication.php#L186 2015-09-05 22:02:17 +01:00			`'icon' => array('type' => 'varchar', 'length' => 191, 'not null' => true, 'default' => '/theme/base/default-avatar-stream.png', 'description' => 'application icon'),`
utf8mb4 conversion on database with index adjusts 2015-02-12 17:18:55 +00:00			`'source_url' => array('type' => 'varchar', 'length' => 191, 'description' => 'application homepage - used for source link'),`
			`'organization' => array('type' => 'varchar', 'length' => 191, 'description' => 'name of the organization running the application'),`
			`'homepage' => array('type' => 'varchar', 'length' => 191, 'description' => 'homepage for the organization'),`
			`'callback_url' => array('type' => 'varchar', 'length' => 191, 'description' => 'url to redirect to after authentication'),`
move core schema to class files 2011-08-22 22:52:02 +01:00			`'type' => array('type' => 'int', 'size' => 'tiny', 'default' => 0, 'description' => 'type of app, 1 = browser, 2 = desktop'),`
			`'access_type' => array('type' => 'int', 'size' => 'tiny', 'default' => 0, 'description' => 'default access type, bit 1 = read, bit 2 = write'),`
			`'created' => array('type' => 'datetime', 'not null' => true, 'description' => 'date this record was created'),`
			`'modified' => array('type' => 'timestamp', 'not null' => true, 'description' => 'date this record was modified'),`
			`),`
			`'primary key' => array('id'),`
			`'unique keys' => array(`
			`'oauth_application_name_key' => array('name'), // in the long run, we should perhaps not force these unique, and use another source id`
			`),`
			`'foreign keys' => array(`
			`'oauth_application_owner_fkey' => array('profile', array('owner' => 'id')), // Are remote users allowed to create oauth application records?`
			`'oauth_application_consumer_key_fkey' => array('consumer', array('consumer_key' => 'consumer_key')),`
			`),`
			`);`
			`}`
Add new OAuth application tables and DataObjects. Also add a new column for consumer secret to consumer table. 2009-11-11 01:10:56 +00:00			`}`