xNightR00T File Manager

<?php

namespace Security\Controller;

use ZendServer\Mvc\Controller\WebAPIActionController;
use WebAPI\View\WebApiResponseContainer;
use Zsd\Db\TasksMapper;
use Audit\Db\Mapper;
use Audit\Db\ProgressMapper;

class WebAPIController extends WebAPIActionController
{
    /**
     * The name of the enable/disable data masking directive 
     */
    const DATA_MASKING_DIRECTIVE_NAME = 'zend.enable_privacy';

    /**
     * Get privacy settings
     *
     * @api
     * @version 1.14
     * @method GET
     * @section Configuration and Management
     * @response {
     * 	"zend.enable_privacy":1,
     * 	"files":{
     * 		'zend_privacy_regex':"file content",
     * 		'zend_privacy_functions':"file content",
     * 		'zend_privacy_keys':"file content",
     * 	}
     * }
     *
     * @return WebApiResponseContainer
     */
    public function privacyGetStatusAction()
    {
        $this->isMethodGet();

        /* @var \Security\Model\Files */
        $model = $this->getServiceLocator()->get('Security\Model\Files');

        $files = $model->getFiles();

        return new WebApiResponseContainer(array(
            self::DATA_MASKING_DIRECTIVE_NAME => $this->getCurrentDirectiveValue(),
            'files' => $files,
        ));
    }

    /**
     * Update privacy settings
     * 
     * @api
     * @method POST
     * @version 1.14
     * @section Configuration and Management
     * @param boolean enable_data_masking
     * @param string zend_privacy_regex
     * @param string zend_privacy_functions
     * @param string zend_privacy_keys
     * @response {"success": 1}
     * 
     * @return WebApiResponseContainer
     */
    public function privacySetStatusAction()
    {
        $this->isMethodPost();

        // receive the parameters w/ their default values
        $params = $this->getParameters(array(
            'enable_data_masking' => null,
            'zend_privacy_regex' => null,
            'zend_privacy_functions' => null,
            'zend_privacy_keys' => null,
        ));

        // validate mandatory parameter - dis/enable data masking
        $this->validateMandatoryParameters($params, array('enable_data_masking'));
        $this->validateAllowedValues($params['enable_data_masking'], 'enable_data_masking', array('0', '1'));

        // validate strings
        if (!is_null($params['zend_privacy_regex'])) {
            $this->validateString($params['zend_privacy_regex'], 'zend_privacy_regex');
        }
        if (!is_null($params['zend_privacy_functions'])) {
            $this->validateString($params['zend_privacy_functions'], 'zend_privacy_functions');
        }
        if (!is_null($params['zend_privacy_keys'])) {
            $this->validateString($params['zend_privacy_keys'], 'zend_privacy_keys');
        }

        // update the dis/enable data masking directive
        if (!is_null($params['enable_data_masking']) && $params['enable_data_masking'] != $this->getCurrentDirectiveValue()) {
            $directivesToUpdate = array(
                self::DATA_MASKING_DIRECTIVE_NAME => $params['enable_data_masking'],
            );
            $this->getDirectivesMapper()->setDirectives($directivesToUpdate);

            // create audit entry
            $this->auditMessage(
                Mapper::AUDIT_DIRECTIVES_MODIFIED, ProgressMapper::AUDIT_PROGRESS_ENDED_SUCCESFULLY,
                array($directivesToUpdate)
            );
        }

        // update the strings in case that the data masking is turned on
        if ($params['enable_data_masking'] == '1') {

            // update the strings and the directive
            $taskExtraData = array();

            if (!is_null($params['zend_privacy_regex'])) {
                $taskExtraData[] = array(
                    'name' => 'zend_privacy_regex',
                    'content' => $params['zend_privacy_regex']
                );
            }

            if (!is_null($params['zend_privacy_functions'])) {
                $taskExtraData[] = array(
                    'name' => 'zend_privacy_functions',
                    'content' => $params['zend_privacy_functions']
                );
            }

            if (!is_null($params['zend_privacy_keys'])) {
                $taskExtraData[] = array(
                    'name' => 'zend_privacy_keys',
                    'content' => $params['zend_privacy_keys']
                );
            }

            if (!empty($taskExtraData)) {
                $this->getTasksMapper()->insertTask(TasksMapper::DUMMY_NODE_ID, TasksMapper::COMMAND_UPDATE_FILES,
                    $taskExtraData);

                // create audit entry
                $this->auditMessage(Mapper::AUDIT_FILES_UPDATE, ProgressMapper::AUDIT_PROGRESS_ENDED_SUCCESFULLY,
                    $taskExtraData);
            }
        }

        // Reached here - success
        return new WebApiResponseContainer(array(
            'success' => '1'
        ));
    }

    /**
     * Get the current dis/enable data mascing directive
     * @return string 
     */
    protected function getCurrentDirectiveValue()
    {
        return $this->getDirectivesMapper()->getDirectiveValue(self::DATA_MASKING_DIRECTIVE_NAME);
    }
}