-
Alexa Oana eliza authored
This reverts merge request !78
782a59cb
<?phpclass Notifications implements EndpointInterface{ private TaskGateway $gateway; public function __construct (TaskGateway $gateway) { $this->gateway = $gateway; } /** * @return array * Part of the interface of orchestrator plugin to treat GET method */ public function processEndPointGet (): array { return []; } /** * @param array|null $data * @return array */ public function processEndPointPost (array $data = NULL): array { return []; } /** * @param array|NULL $data * @return array * @throws Exception */ public function processEndPointPatch (array $data = NULL): array { return $this->processNotifications($this->gateway->getObjectTypeTask('notifications')); } /** * @param array|NULL $data * @return array */ public function processEndPointDelete (array $data = NULL): array { return []; } /** * @param array $notificationsSubTasks * @return array * @throws Exception */ public function processNotifications (array $notificationsSubTasks): array { $result = []; // It will contain all required notifications to be sent per main task. $notifications = []; foreach ($notificationsSubTasks as $task) { // If the tasks must be treated - status and scheduled - process the sub-tasks if ($this->gateway->statusAndScheduleCheck($task)) { // Retrieve data from the main task $notificationsMainTask = $this->getNotificationsMainTask($task['fdtasksgranularmaster'][0]); $notificationsMainTaskName = $task['fdtasksgranularmaster'][0]; // Generate the mail form with all mail controller requirements $mailTemplateForm = $this->generateMainTaskMailTemplate($notificationsMainTask);7172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140
// Simply retrieve the list of audited attributes
$auditAttributes = $this->decodeAuditAttributes($task);
// Recovering monitored attributes list from the defined notification task.
$monitoredAttrs = $notificationsMainTask[0]['fdtasksnotificationsattributes'];
// Reformat supann
$monitoredSupannResource = $this->getSupannResourceState($notificationsMainTask[0]);
// Simply remove keys with 'count' reported by ldap.
$this->gateway->unsetCountKeys($monitoredAttrs);
$this->gateway->unsetCountKeys($monitoredSupannResource);
// Find matching attributes between audited and monitored attributes
$matchingAttrs = $this->findMatchingAttributes($auditAttributes, $monitoredAttrs);
// Verify Supann resource state if applicable
if ($this->shouldVerifySupannResource($monitoredSupannResource, $auditAttributes)) {
// Adds it to the mating attrs for further notification process.
$matchingAttrs[] = 'supannRessourceEtat';
}
if (!empty($matchingAttrs)) {
// Fill an array with UID of audited user and related matching attributes
$notifications[$notificationsMainTaskName]['subTask'][$task['cn'][0]]['attrs'] = $matchingAttrs;
// Require to be set for updating the status of the task later on.
$notifications[$notificationsMainTaskName]['subTask'][$task['cn'][0]]['dn'] = $task['dn'];
$notifications[$notificationsMainTaskName]['subTask'][$task['cn'][0]]['uid'] = $task['fdtasksgranulardn'][0];
$notifications[$notificationsMainTaskName]['mailForm'] = $mailTemplateForm;
// Overwrite array notifications with complementing mail form body with uid and related attributes.
$notifications = $this->completeNotificationsBody($notifications, $notificationsMainTaskName);
} else { // Simply remove the subTask has no notifications are required
$result[$task['dn']]['Removed'] = $this->gateway->removeSubTask($task['dn']);
$result[$task['dn']]['Status'] = 'No matching audited attributes with monitored attributes, safely removed!';
}
}
}
if (!empty($notifications)) {
$result[] = $this->sendNotificationsMail($notifications);
}
return $result;
}
/**
* Determine if Supann resource verification is needed.
*
* @param array $monitoredSupannResource
* @param array|null $auditAttributes
* @return bool
*/
private function shouldVerifySupannResource (array $monitoredSupannResource, ?array $auditAttributes): bool
{
if (!empty($auditAttributes)) {
return $monitoredSupannResource['resource'][0] !== 'NONE' &&
$this->verifySupannState($monitoredSupannResource, $auditAttributes);
}
return FALSE;
}
/**
* Get the Supann resource state.
*
* @param array $notificationsMainTask
* @return array
*/
private function getSupannResourceState (array $notificationsMainTask): array
141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210
{
return [
'resource' => $notificationsMainTask['fdtasksnotificationsresource'],
'state' => $notificationsMainTask['fdtasksnotificationsstate'],
'subState' => $notificationsMainTask['fdtasksnotificationssubstate'] ?? NULL
];
}
/**
* Decode audit attributes from the task.
*
* @param array $task
* @return array
*/
private function decodeAuditAttributes (array $task): array
{
$auditAttributesJson = $this->retrieveAuditedAttributes($task);
$auditAttributes = [];
// Decoding the json_format into an associative array, implode allows to put all values of array together.(forming the json correctly).
foreach ($auditAttributesJson as $auditAttribute) {
$auditAttributes[] = json_decode(implode($auditAttribute), TRUE);
}
return $auditAttributes;
}
/**
* Find matching attributes between audit and monitored attributes.
*
* @param array|null $auditAttributes
* @param array $monitoredAttrs
* @return array
*/
private function findMatchingAttributes (?array $auditAttributes, array $monitoredAttrs): array
{
$matchingAttrs = [];
if (!empty($auditAttributes)) {
foreach ($auditAttributes as $attributeName) {
foreach ($monitoredAttrs as $monitoredAttr) {
if (!empty($attributeName) && array_key_exists($monitoredAttr, $attributeName)) {
$matchingAttrs[] = $monitoredAttr;
}
}
}
}
return $matchingAttrs;
}
/**
* @param array $supannResource
* @param array $auditedAttrs
* @return bool
* Note : Create the supann format and check for a match.
*/
private function verifySupannState (array $supannResource, array $auditedAttrs): bool
{
$result = FALSE;
//Construct Supann Resource State as string
if (!empty($supannResource['subState'][0])) {
$monitoredSupannState = '{' . $supannResource['resource'][0] . '}' . $supannResource['state'][0] . ':' . $supannResource['subState'][0];
} else {
$monitoredSupannState = '{' . $supannResource['resource'][0] . '}' . $supannResource['state'][0];
}
// Get all the values only of a multidimensional array.
$auditedValues = $this->getArrayValuesRecursive($auditedAttrs);
211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280
if (in_array($monitoredSupannState, $auditedValues)) {
$result = TRUE;
} else {
$result = FALSE;
}
return $result;
}
/**
* @param $array
* @return array
* Note : simply return all values of a multi-dimensional array.
*/
public function getArrayValuesRecursive ($array)
{
$values = [];
foreach ($array as $value) {
if (is_array($value)) {
// If value is an array, merge its values recursively
$values = array_merge($values, $this->getArrayValuesRecursive($value));
} else {
// If value is not an array, add it to the result
$values[] = $value;
}
}
return $values;
}
/**
* @param string $mainTaskDn
* @return array
*/
public function getNotificationsMainTask (string $mainTaskDn): array
{
// Retrieve data from the main task
return $this->gateway->getLdapTasks('(objectClass=fdTasksNotifications)', ['fdTasksNotificationsListOfRecipientsMails',
'fdTasksNotificationsAttributes', 'fdTasksNotificationsMailTemplate', 'fdTasksNotificationsEmailSender',
'fdTasksNotificationsSubState', 'fdTasksNotificationsState', 'fdTasksNotificationsResource'],
'', $mainTaskDn);
}
/**
* @param array $mainTask
* @return array
* Note : Simply generate the email to be sent as notification.
*/
private function generateMainTaskMailTemplate (array $mainTask): array
{
// Generate email configuration for each result of subtasks having the same main task.w
$recipients = $mainTask[0]["fdtasksnotificationslistofrecipientsmails"];
$this->gateway->unsetCountKeys($recipients);
$sender = $mainTask[0]["fdtasksnotificationsemailsender"][0];
$mailTemplateName = $mainTask[0]['fdtasksnotificationsmailtemplate'][0];
$mailInfos = $this->gateway->getLdapTasks("(|(objectClass=fdMailTemplate)(objectClass=fdMailAttachments))", [], $mailTemplateName);
$mailContent = $mailInfos[0];
// Set the notification array with all required variable for all sub-tasks of same main task origin.
$mailForm['setFrom'] = $sender;
$mailForm['recipients'] = $recipients;
$mailForm['body'] = $mailContent["fdmailtemplatebody"][0];
$mailForm['signature'] = $mailContent["fdmailtemplatesignature"][0] ?? NULL;
$mailForm['subject'] = $mailContent["fdmailtemplatesubject"][0];
$mailForm['receipt'] = $mailContent["fdmailtemplatereadreceipt"][0];
return $mailForm;
}
281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350
/**
* @param array $notificationTask
* @return array
* NOTE : receive a unique tasks of type notification (one subtask at a time)
*/
protected function retrieveAuditedAttributes (array $notificationTask): array
{
$auditAttributes = [];
$auditInformation = [];
// Retrieve audit data attributes from the list of references set in the sub-task
if (!empty($notificationTask['fdtasksgranularref'])) {
// Remove count keys (count is shared by ldap).
$this->gateway->unsetCountKeys($notificationTask);
foreach ($notificationTask['fdtasksgranularref'] as $auditDN) {
$auditInformation[] = $this->gateway->getLdapTasks('(&(objectClass=fdAuditEvent))',
['fdAuditAttributes'], '', $auditDN);
}
// Again remove key: count retrieved from LDAP.
$this->gateway->unsetCountKeys($auditInformation);
// It is possible that an audit does not contain any attributes changes, condition is required.
foreach ($auditInformation as $attr) {
if (!empty($attr[0]['fdauditattributes'])) {
// Clear and compact received results from above ldap search
$auditAttributes[] = $attr[0]['fdauditattributes'];
}
}
}
return $auditAttributes;
}
/**
* @param array $notifications
* @param string $notificationsMainTaskName
* @return array
* Note : This method is present to add to the mailForm body the proper uid and attrs info.
*/
private function completeNotificationsBody (array $notifications, string $notificationsMainTaskName): array
{
// Iterate through each subTask and related attrs
$uidAttrsText = [];
foreach ($notifications[$notificationsMainTaskName]['subTask'] as $value) {
$uidName = $value['uid'];
$attrs = [];
foreach ($value['attrs'] as $attr) {
$attrs[] = $attr;
}
$uidAttrsText[] = "\n$uidName attrs=[" . implode(', ', $attrs) . "]";
}
// Make the array unique, avoiding uid and same attribute duplication.
$uidAttrsText = array_unique($uidAttrsText);
// Add uid names and related attrs to mailForm['body']
$notifications[$notificationsMainTaskName]['mailForm']['body'] .= " " . implode(" ", $uidAttrsText);
return $notifications;
}
/**
* @param array $notifications
* @return array
* Note : Collect information and send notification email.
*/
protected function sendNotificationsMail (array $notifications): array
{
351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420
$result = [];
// Re-use of the same mail processing template logic
$fdTasksConf = $this->gateway->getLdapTasks(
"(objectClass=fdTasksConf)",
["fdTasksConfLastExecTime", "fdTasksConfIntervalEmails", "fdTasksConfMaxEmails"]
);
$maxMailsConfig = $fdTasksConf[0]["fdtasksconfmaxemails"][0] ?? 50;
/*
Increment var starts a zero and added values will be the humber or recipients per main tasks, as one mail is
sent per main task.
*/
$maxMailsIncrement = 0;
foreach ($notifications as $data) {
$numberOfRecipients = count($data['mailForm']['recipients']);
$mail_controller = new \FusionDirectory\Mail\MailLib(
$data['mailForm']['setFrom'],
NULL,
$data['mailForm']['recipients'],
$data['mailForm']['body'],
$data['mailForm']['signature'],
$data['mailForm']['subject'],
$data['mailForm']['receipt'],
NULL
);
$mailSentResult = $mail_controller->sendMail();
$result[] = $this->processMailResponseAndUpdateTasks($mailSentResult, $data, $fdTasksConf);
// Verification anti-spam max mails to be sent and quit loop if matched.
$maxMailsIncrement += $numberOfRecipients;
if ($maxMailsIncrement == $maxMailsConfig) {
break;
}
}
return $result;
}
/**
* @param array $serverResults
* @param array $subTask
* @param array $mailTaskBackend
* @return array
* Note :
*/
protected function processMailResponseAndUpdateTasks (array $serverResults, array $subTask, array $mailTaskBackend): array
{
$result = [];
if ($serverResults[0] == "SUCCESS") {
foreach ($subTask['subTask'] as $subTask => $details) {
// CN of the main task
$cn = $subTask;
// DN of the main task
$dn = $details['dn'];
// Update task status for the current $dn
$result[$dn]['statusUpdate'] = $this->gateway->updateTaskStatus($dn, $cn, "2");
$result[$dn]['mailStatus'] = 'Notification was successfully sent';
$result[$dn]['updateLastMailExec'] = $this->gateway->updateLastMailExecTime($mailTaskBackend[0]["dn"]);
}
} else {
foreach ($subTask['subTask'] as $subTask => $details) {
// CN of the main task
$cn = $subTask;
// DN of the main task
421422423424425426427428429430431
$dn = $details['dn'];
$result[$dn]['statusUpdate'] = $this->gateway->updateTaskStatus($dn, $cn, $serverResults[0]);
$result[$dn]['mailStatus'] = $serverResults;
}
}
return $result;
}
}