Skip to content
GitLab
Select Git revision
  • 92-improve-config-file-to-be-better-align-with-standard-and-remov-some-ambiguities
  • dev default
  • 73-orchestrator-create-a-librabry-in-core-orchestrator
  • revert-55863b23
  • 70-create-unitests-for-orchestrator
  • 81-redesign-reminders-class
  • 80-redesign-notifications-class
  • 79-redesign-mail
  • 78-redesign-audit-class
  • 82-redesign-lifecycle-class
  • main
  • 63-orchestrator-mail-controller-format-of-mail-text-and-signature-are-not-utf8-usage-of-accents-is
  • 61-orchestrator-lifecycle-array-supann-is-analyzed-with-static-numbering
  • 1.1
  • 0.9
  • 1.0
Find file BlameHistoryPermalink
LifeCycle.php 10.92 KiB
1 
<?php
2
3
4 
class LifeCycle implements EndpointInterface
5 
{
6 
  private TaskGateway $gateway;
7
8 
  function __construct (TaskGateway $gateway)
9 
  {
10 
    $this->gateway = $gateway;
11 
  }
12
13 
  /**
14 
   * @return array
15 
   * Part of the interface of orchestrator plugin to treat GET method
16 
   */
17 
  public function processEndPointGet (): array
18 
  {
19 
    return [];
20 
  }
21
22 
  /**
23 
   * @param array|null $data
24 
   * @return array
25 
   * Note : Part of the interface of orchestrator plugin to treat POST method
26 
   */
27 
  public function processEndPointPost (array $data = NULL): array
28 
  {
29 
    return [];
30 
  }
31
32 
  /**
33 
   * @param array|null $data
34 
   * @return array
35 
   * Note : Part of the interface of orchestrator plugin to treat DELETE method
36 
   */
37 
  public function processEndPointDelete (array $data = NULL): array
38 
  {
39 
    return [];
40 
  }
41
42 
  /**
43 
   * @param array|null $data
44 
   * @return array
45 
   * @throws Exception
46 
   * Note : Part of the interface of orchestrator plugin to treat PATCH method
47 
   */
48 
  public function processEndPointPatch (array $data = NULL): array
49 
  {
50 
    return $this->processLifeCycleTasks($this->gateway->getObjectTypeTask('lifeCycle'));
51 
  }
52
53 
  /**
54 
   * @param array $list_tasks
55 
   * @return array[]|string[]
56 
   * @throws Exception
57 
   * Note : Verify the status and schedule as well as searching for the correct life cycle behavior from main task.
58 
   */
59 
  public function processLifeCycleTasks (array $list_tasks): array
60 
  {
61 
    // Array representing the status of the subtask.
62 
    $result = [];
63 
    // Initiate the object webservice.
64 
    $webservice = new FusionDirectory\Rest\WebServiceCall($_ENV['FUSION_DIRECTORY_API_URL'] . '/login', 'POST');
65 
    // Required to prepare future webservice call. E.g. Retrieval of mandatory token.
66 
    $webservice->setCurlSettings();
67
68 
    foreach ($list_tasks as $task) {
69 
      // If the tasks must be treated - status and scheduled - process the sub-tasks
70 
      if ($this->gateway->statusAndScheduleCheck($task)) {
7172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140
// Simply retrieve the lifeCycle behavior from the main related tasks, sending the dns and desired attributes $lifeCycleBehavior = $this->getLifeCycleBehaviorFromMainTask($task['fdtasksgranularmaster'][0]); // Simply retrieve the current supannStatus of the user DN related to the task at hand. $currentUserLifeCycle = $this->getUserSupannHistory($task['fdtasksgranulardn'][0]); // Compare both the required schedule and the current user status - returning TRUE if modification is required. if ($this->isLifeCycleRequiringModification($lifeCycleBehavior, $currentUserLifeCycle)) { // This will call a method to modify the ressourcesSupannEtatDate of the DN linked to the subTask $lifeCycleResult = $this->updateLifeCycle($lifeCycleBehavior, $task['fdtasksgranulardn'][0], $currentUserLifeCycle); if ($lifeCycleResult === TRUE) { $result[$task['dn']]['results'] = json_encode("Account states have been successfully modified for " . $task['fdtasksgranulardn'][0]); // Status of the task must be updated to success $updateResult = $this->gateway->updateTaskStatus($task['dn'], $task['cn'][0], '2'); // Here the user is refresh in order to activate methods based on supann Status changes. $result[$task['dn']]['refreshUser'] = $webservice->refreshUserInfo($task['fdtasksgranulardn'][0]); // In case the modification failed } else { $result[$task['dn']]['results'] = json_encode("Error updating " . $task['fdtasksgranulardn'][0] . "-" . $lifeCycleResult); // Update of the task status error message $updateResult = $this->gateway->updateTaskStatus($task['dn'], $task['cn'][0], $lifeCycleResult); } // Verification if the sub-task status has been updated correctly if ($updateResult === TRUE) { $result[$task['dn']]['statusUpdate'] = 'Success'; } else { $result[$task['dn']]['statusUpdate'] = $updateResult; } // Remove the subtask has it is not required to update it nor to process it. } else { $result[$task['dn']]['results'] = 'Sub-task removed for : ' . $task['fdtasksgranulardn'][0] . ' with result : ' . $this->gateway->removeSubTask($task['dn']); $result[$task['dn']]['statusUpdate'] = 'No updates required, sub-task will be removed.'; } } } // If array is empty, no tasks of type life cycle needs to be treated. if (empty($result)) { $result = 'No tasks of type "Life Cycle" requires processing.'; } return [$result]; } /** * @param array $lifeCycleBehavior * @param array $currentUserLifeCycle * @return bool * Note receive the life cycle behavior desired and compare it the received current user life cycle, returning TRUE * if there is indeed a difference and therefore must update the user information. * In case the comparison is impossible due to the use not having a status listed, it will report false. */ protected function isLifeCycleRequiringModification (array $lifeCycleBehavior, array $currentUserLifeCycle): bool { $result = FALSE; // Regular expression in order to extract the supann format within an array $pattern = '/\{(\w+)\}(\w):([^:]*)(?::([^:]*))?(?::([^:]*))?(?::([^:]*))?/'; // In case the tasks is launched without supann being activated on the user account, return error if (empty($currentUserLifeCycle[0]['supannressourceetatdate'][0])) { return FALSE; } // Extracting values of desired pre-state behavior $preStateSupann['Resource'] = $lifeCycleBehavior[0]['fdtaskslifecyclepreresource'][0];
141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210
$preStateSupann['State'] = $lifeCycleBehavior[0]['fdtaskslifecycleprestate'][0]; $preStateSupann['SubState'] = $lifeCycleBehavior[0]['fdtaskslifecyclepresubstate'][0] ?? ''; //SubState is optional // Iteration of all potential existing supann states of the user in order to find a match foreach ($currentUserLifeCycle[0]['supannressourceetatdate'] as $resource) { // Perform the regular expression match preg_match($pattern, $resource, $matches); // Extracting values of current user $userSupann['Resource'] = $matches[1] ?? ''; $userSupann['State'] = $matches[2] ?? ''; $userSupann['SubState'] = $matches[3] ?? ''; // Array index 4 is skipped, we only use end date to apply our life cycle logic. Start date has no use here. $userSupann['EndDate'] = $matches[5] ?? ''; // Verifying if the user end date for selected resource is overdue if (!empty($userSupann['EndDate']) && strtotime($userSupann['EndDate']) <= time()) { // Comparing value in a nesting conditions if ($userSupann['Resource'] == $preStateSupann['Resource']) { if ($userSupann['State'] == $preStateSupann['State']) { // as SubState is optional, if both resource and state match at this point, modification is allowed. if (empty($preStateSupann['SubState'])) { $result = TRUE; } else if ($preStateSupann['SubState'] == $userSupann['SubState']) { $result = TRUE; } } } } } return $result; } /** * @param array $lifeCycleBehavior * @param string $userDN * @param array $currentUserLifeCycle * @return bool|string * Note receive the required behavior and the previous list of supann state to update in LDAP. */ protected function updateLifeCycle (array $lifeCycleBehavior, string $userDN, array $currentUserLifeCycle) { // Only keep the supann state from the received array and removing the count key $userStateHistory = $currentUserLifeCycle[0]['supannressourceetatdate']; $this->gateway->unsetCountKeys($userStateHistory); // Hosting the final entry of supann attributes to be pushed to LDAP $ldapEntry = []; // Extracting values of desired post-state behavior $newEntry['Resource'] = $lifeCycleBehavior[0]['fdtaskslifecyclepostresource'][0]; $newEntry['State'] = $lifeCycleBehavior[0]['fdtaskslifecyclepoststate'][0]; $newEntry['SubState'] = $lifeCycleBehavior[0]['fdtaskslifecyclepostsubstate'][0] ?? ''; //SubState is optional $newEntry['EndDate'] = $lifeCycleBehavior[0]['fdtaskslifecyclepostenddate'][0] ?? 0; //EndDate is optional // Require the date of today to update the start of the new resources (If change of status). $currentDate = new DateTime(); // Date of today + numbers of days to add for end date. $newEndDate = new DateTime(); $newEndDate->modify("+" . $newEntry['EndDate'] . " days"); // Prepare the ldap entry to be modified $newEntry = "{" . $newEntry['Resource'] . "}" . $newEntry['State'] . ":" . $newEntry['SubState'] . ":" . $currentDate->format('Ymd') . ":" . $newEndDate->format('Ymd'); // Used to compare if the resource exists in history $newResource = $this->returnSupannResourceBetweenBrackets($newEntry); // Iterate through the supann state and update the array of new entry while keeping history untouched foreach ($userStateHistory as $userState => $value) {
211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268
// Extract resource in curly braces (brackets) from the current supannRessourceEtatDate $currentResource = $this->returnSupannResourceBetweenBrackets($value); // If resources matches, replace the resource with the new one. if ($currentResource === $newResource) { $userStateHistory[$userState] = $newEntry; break; } } // Creation of the ldap entry $ldapEntry['supannRessourceEtatDate'] = $userStateHistory; try { $result = ldap_modify($this->gateway->ds, $userDN, $ldapEntry); } catch (Exception $e) { $result = json_encode(["Ldap Error" => "$e"]); } return $result; } /** * @param string $supannRessourceEtatDate * @return string|null * Note : Simple method to return the content between {} of a supannRessourceEtatDate. */ private function returnSupannResourceBetweenBrackets(string $supannRessourceEtatDate) : ?string { preg_match('/\{(.*?)\}/', $supannRessourceEtatDate, $matches); return $matches[1] ?? null; } /** * @param string $taskDN * @return array * Note : Simply return attributes from main task, here supann desired behavior */ private function getLifeCycleBehaviorFromMainTask (string $taskDN) : array { return ($this->gateway->getLdapTasks('(objectClass=*)', ['fdTasksLifeCyclePreResource', 'fdTasksLifeCyclePreState', 'fdTasksLifeCyclePreSubState', 'fdTasksLifeCyclePostResource', 'fdTasksLifeCyclePostState', 'fdTasksLifeCyclePostSubState', 'fdTasksLifeCyclePostEndDate'], '', $taskDN)); } /** * @param $userDN * @return array * Note : simply return the current values of supannRessourceEtatDate of the specified user. */ private function getUserSupannHistory ($userDN) : array { return $this->gateway->getLdapTasks('(objectClass=supannPerson)', ['supannRessourceEtatDate'], '', $userDN); } }