ENH: refs #237. Add default API key behavior on password change

Author: zachmullen

core/controllers/UserController.php

@@ -377,6 +377,7 @@ public function settingsAction()
             $this->userSession->Dao = $userDao;
             }
           echo JsonComponent::encode(array(true, $this->t('Changes saved')));
+          Zend_Registry::get('notifier')->callback('CALLBACK_CORE_PASSWORD_CHANGED', array('userDao'=>$userDao));
           }
         else
           {
@@ -614,7 +615,7 @@ public function settingsAction()
     $this->view->jsonSettings['passwordErrorMatch'] = $this->t('The passwords are not the same');
     $this->view->jsonSettings = JsonComponent::encode($this->view->jsonSettings);
 
-    $this->view->customTabs = Zend_Registry::get('notifier')->callback('CALLBACK_CORE_GET_CONFI_TABS', array());
+    $this->view->customTabs = Zend_Registry::get('notifier')->callback('CALLBACK_CORE_GET_CONFIG_TABS', array());
     }
 
   /** User page action*/

modules/api/Notification.php

@@ -3,19 +3,33 @@
 class Api_Notification extends MIDAS_Notification
   {
   public $_models=array('User');
-  
+
   /** init notification process*/
   public function init()
     {
-    $this->addCallBack('CALLBACK_CORE_GET_CONFI_TABS', 'getConfigTabs');
+    $this->addCallBack('CALLBACK_CORE_GET_CONFIG_TABS', 'getConfigTabs');
+    $this->addCallBack('CALLBACK_CORE_PASSWORD_CHANGED', 'setDefaultWebApiKey');
+    $this->addCallBack('CALLBACK_CORE_NEW_USER_ADDED', 'setDefaultWebApiKey');
     }//end init
-    
+
   /** get Config Tabs */
   public function getConfigTabs()
     {
     $fc = Zend_Controller_Front::getInstance();
     $moduleWebroot = $fc->getBaseUrl().'/api';
     return array('Api' => $moduleWebroot.'/config/usertab');
     }
+
+  /** Reset the user's default web API key */
+  public function setDefaultWebApiKey($params)
+    {
+    if(!isset($params['userDao']))
+      {
+      throw new Zend_Exception('Error: userDao parameter required');
+      }
+    $this->ModelLoader = new MIDAS_ModelLoader();
+    $userApiModel = $this->ModelLoader->loadModel('Userapi', 'api');
+    $userApiModel->createDefaultApiKey($params['userDao']);
+    }
   } //end class
 ?>

modules/api/models/base/UserapiModelBase.php

@@ -18,23 +18,56 @@ public function __construct()
         );
     $this->initialize(); // required
     } // end __construct()
-    
-   abstract function createKeyFromEmailPassword($appname,$email,$password);
-   abstract function getByAppAndEmail($appname,$email);
-   abstract function getByAppAndUser($appname,$userDao);
-   abstract function getToken($email,$apikey,$appname);
-   abstract function getUserapiFromToken($token);
-   abstract function getByUser($userDao);
-   
-   
+
+  abstract function createKeyFromEmailPassword($appname,$email,$password);
+  abstract function getByAppAndEmail($appname,$email);
+  abstract function getByAppAndUser($appname,$userDao);
+  abstract function getToken($email,$apikey,$appname);
+  abstract function getUserapiFromToken($token);
+  abstract function getByUser($userDao);
+
+  /**
+   * Create the user's default API key
+   * @param string $userDao the user
+   * @return success boolean
+   */
+  function createDefaultApiKey($userDao)
+    {
+    if(!$userDao instanceof UserDao)
+      {
+      throw new Zend_Exception('Error parameter: must be a userDao object');
+      }
+
+    // Remove prior default api key(s)
+    $rowset = $this->database->fetchAll($this->database->select()
+                                                       ->where('user_id = ?', $userDao->getKey())
+                                                       ->where('application_name = ?', 'Default'));
+    foreach($rowset as $row)
+      {
+      $userApiDao= $this->initDao('Userapi', $row,'api');
+      $this->delete($userApiDao);
+      }
+
+    // Save new default key
+    $key = md5($userDao->getEmail().$userDao->getPassword().'Default');
+    $this->loadDaoClass('UserapiDao','api');
+    $userApiDao=new Api_UserapiDao();
+    $userApiDao->setUserId($userDao->getKey());
+    $userApiDao->setApplicationName('Default');
+    $userApiDao->setApikey($key);
+    $userApiDao->setTokenExpirationTime(100);
+    $userApiDao->setCreationDate(date('c'));
+    $this->save($userApiDao);
+    }
+
      /** Create a new API key */
   function createKey($userDao,$applicationname,$tokenexperiationtime)
     {
     if(!$userDao instanceof UserDao||!is_string($applicationname)||!is_string($tokenexperiationtime) || empty($applicationname))
       {
       throw new Zend_Exception("Error parameter");
       }
-    
+
     // Check that the applicationname doesn't exist for this user
     $userapiDao=$this->getByAppAndUser($applicationname, $userDao);
     if(!empty($userapiDao))
@@ -61,7 +94,7 @@ function make_seed_recoverpass()
       {
       $key .= substr($keychars, rand(0, $max), 1);
       }
-      
+
     $this->loadDaoClass('UserapiDao','api');
     $userApiDao=new Api_UserapiDao();
     $userApiDao->setUserId($userDao->getKey());
@@ -73,6 +106,6 @@ function make_seed_recoverpass()
     $this->save($userApiDao);
     return $userApiDao;
     }//end createKey
-   
+
 } // end class AssetstoreModelBase
 ?>

modules/api/models/pdo/UserapiModel.php

@@ -5,15 +5,14 @@
 class Api_UserapiModel extends Api_UserapiModelBase
 {
 
-
    /** Create an API key from a login and password */
   function createKeyFromEmailPassword($appname,$email,$password)
     {
     if(!is_string($appname)||!is_string($email)||!is_string($password))
       {
       throw new Zend_Exception("Error parameter");
       }
-      
+
     $this->ModelLoader = new MIDAS_ModelLoader();
     $userModel=$this->ModelLoader->loadModel('User');
 
@@ -24,7 +23,7 @@ function createKeyFromEmailPassword($appname,$email,$password)
       {
       return false;
       }
-      
+
     // Find if we already have an apikey
     $ret = $this->getByAppAndEmail($appname,$email);
 
@@ -40,12 +39,12 @@ function createKeyFromEmailPassword($appname,$email,$password)
       }
     return false;
     } // end function createKeyFromEmailPassword
-    
+
   /**
    * Get UserapiDao by
    * @param string $appname Application Name
-   * @param string $email 
-   * @return Api_UserapiDao 
+   * @param string $email
+   * @return Api_UserapiDao
    */
   function getByAppAndEmail($appname,$email)
     {
@@ -61,16 +60,16 @@ function getByAppAndEmail($appname,$email)
       return false;
       }
     $row = $this->database->fetchRow($this->database->select()->where('application_name = ?', $appname)
-                                                              ->where('user_id = ?', $userDao->getKey())); 
+                                                              ->where('user_id = ?', $userDao->getKey()));
     $dao= $this->initDao('Userapi', $row,'api');
     return $dao;
     } // end getByApikey
-    
+
   /**
    * Get UserapiDao by
    * @param string $appname Application Name
-   * @param UserDao $userDao 
-   * @return Api_UserapiDao 
+   * @param UserDao $userDao
+   * @return Api_UserapiDao
    */
   function getByAppAndUser($appname,$userDao)
     {
@@ -79,18 +78,18 @@ function getByAppAndUser($appname,$userDao)
       throw new Zend_Exception("Error parameter");
       }
     $row = $this->database->fetchRow($this->database->select()->where('application_name = ?', $appname)
-                                                              ->where('user_id = ?', $userDao->getKey())); 
+                                                              ->where('user_id = ?', $userDao->getKey()));
     $dao= $this->initDao('Userapi', $row,'api');
     return $dao;
     } // end getByAppAndUser
 
-  
+
   /**
    * Return the tokendao
    * @param type $email
    * @param type $apikey
    * @param type $appname
-   * @return Api_TokenDao 
+   * @return Api_TokenDao
    */
   function getToken($email,$apikey,$appname)
     {
@@ -107,7 +106,7 @@ function getToken($email,$apikey,$appname)
       return false;
       }
     $now = date("c");
-    
+
     $sql=   $this->database->select()
                       ->setIntegrityCheck(false)
                       ->from(array('t' => 'api_token'))
@@ -117,7 +116,7 @@ function getToken($email,$apikey,$appname)
                       ->where('u.application_name = ?', $appname)
                       ->where('t.expiration_date > ?', $now)
                       ->where('u.apikey = ?', $apikey) ;
-    
+
 
     $row = $this->database->fetchRow($sql);
     $tokenDao= $this->initDao('Token', $row,'api');
@@ -147,7 +146,7 @@ function make_seed_recoverpass_token()
       }
 
     // Find the api id
-    
+
     $sql=   $this->database->select()
                   ->setIntegrityCheck(false)
                   ->from(array('u' => 'api_userapi'))
@@ -156,8 +155,8 @@ function make_seed_recoverpass_token()
                   ->where('u.apikey = ?', $apikey) ;
 
     $row = $this->database->fetchRow($sql);
-    $userapiDao= $this->initDao('Userapi', $row,'api');  
-    
+    $userapiDao= $this->initDao('Userapi', $row,'api');
+
     if(!$userapiDao)
       {
       return false;
@@ -170,9 +169,9 @@ function make_seed_recoverpass_token()
     $tokenDao->setExpirationDate(date("c",time()+$userapiDao->getTokenExpirationTime()*60));
 
     $tokenModel=$this->ModelLoader->loadModel('Token','api');
-        
+
     $tokenModel->save($tokenDao);
-    
+
     // We do some cleanup of all the other keys that have expired
     $tokenModel->cleanExpired();
 
@@ -188,15 +187,15 @@ function getUserapiFromToken($token)
       throw new Zend_Exception("Error parameter");
       }
     $now = date("c");
-    
+
     $sql=   $this->database->select()
                   ->setIntegrityCheck(false)
                   ->from(array('u' => 'api_userapi'))
                   ->join(array('t' => 'api_token'),
                      ' u.userapi_id = t.userapi_id',array() )
                   ->where('t.expiration_date > ?', $now)
                   ->where('t.token = ?', $token) ;
-    
+
 
     $row = $this->database->fetchRow($sql);
     return $this->initDao('Userapi', $row,'api');

modules/thumbnailcreator/configs/module.ini

@@ -11,4 +11,4 @@ category= Filter
 dependencies= scheduler
 
 ;image magick folder
-imagemagick=
+imagemagick=