/**
* Re-routes traffic appropriately.
*
* @param Zend_Controller_Request_Abstract $request
*/
public function preDispatch(Zend_Controller_Request_Abstract $request)
{
parent::preDispatch($request);
$controller = $request->getControllerName();
$action = $request->getActionName();
$module = $request->getModuleName();
// Perform authentication
switch ($module) {
case 'cms-admin':
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_admin'));
if (!$auth->hasIdentity()) {
$request->setControllerName('index');
$request->setActionName('login');
}
break;
case 'connect':
$params = Zend_Registry::get('params');
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_connect'));
// Set the session expiry timeout time
$sessionTimeOutSeconds = $params->connect->loginexpiry->sessionTimeOutSeconds;
$session = new Zend_Session_Namespace('hl_connect');
$session->setExpirationSeconds($sessionTimeOutSeconds);
if (!$auth->hasIdentity() && $action != 'lost-login' && $action != 'reset-password') {
$request->setControllerName('index');
$request->setActionName('login');
} else {
if ($auth->hasIdentity()) {
// Ignore logout - for when redirecting back to login, and own account expiration/deactivated actions.
if (!in_array($action, array('logout', 'account-deactivated', 'account-expired'))) {
// Perform account validation checks and display an error message in
// the event of...
// - the account is deactivated
// - the account expiry time from the last login has passed
$user_status = $auth->getStorage()->read()->status;
$user_lastlogindate = $auth->getStorage()->read()->lastlogindate;
$userlevel = $auth->getStorage()->read()->level;
$agentschemenumber = $auth->getStorage()->read()->agentschemeno;
$fsastatusabbr = $auth->getStorage()->read()->fsastatusabbr;
$agentAccountStatus = $auth->getStorage()->read()->agentAccountStatus;
if ($agentAccountStatus == Model_Core_Agent_Status::ON_HOLD) {
$request->setControllerName('index');
$request->setActionName('agent-fsa-nostatus');
} else {
if ($user_status == 'deactivated') {
// Deactivated, forward to new action to deal with deactivated users
$request->setControllerName('index');
$request->setActionName('account-deactivated');
// Important! Clears the successful authentication token
// given now that we know that the users session has expired
// and should not be permitted access.
$storage = $auth->getStorage();
$storage->clear();
break;
} else {
if ($fsastatusabbr == null || $fsastatusabbr == '') {
// Check FSA status. If the user is of level 3, display a message about their status
// Otherwise display a generic error
if ($userlevel == Model_Core_Agent_UserRole::MASTER) {
$request->setControllerName('index');
$request->setActionName('agent-fsa-nostatus');
} else {
$request->setControllerName('index');
$request->setActionName('account-deactivated');
}
// Important! Clears the successful authentication token
// given now that we know that the users session has expired
// and should not be permitted access.
$storage = $auth->getStorage();
$storage->clear();
break;
} else {
if ($user_lastlogindate != '0000-00-00') {
// Check account expiry
$expiry = 0;
if (@isset($params->connect->loginexpiry->time)) {
$expiry = $params->connect->loginexpiry->time;
}
// Add x worth days as per configuration and convert the unix
// timestamp to mysql date format for easy comparison below.
$unixTimeStamp = strtotime("+{$expiry} day", strtotime($user_lastlogindate));
$permissableDate = date("Y-m-d", $unixTimeStamp);
// If the current date is greater than the last login period
// + x days, the account has not been used for x days and so
// has expired
if (date("Y-m-d") > $permissableDate) {
//The user account is expired. Update the User entity to
//reflect this.
$userManager = new Manager_Core_Agent_User();
$user = $userManager->getUser($auth->getStorage()->read()->agentid);
$user->status = Model_Core_Agent_UserStatus::DEACTIVATED;
$userManager->setUser($user);
// forward to new action to deal with expired user accounts
$request->setControllerName('index');
$request->setActionName('account-expired');
// Important! Clears the successful authentication token
// given now that we know that the users session has expired
// and should not be permitted access.
$storage = $auth->getStorage();
$storage->clear();
break;
}
}
}
}
}
// Update the existing last login time in the database and the session data to the current date
$agentid = $auth->getStorage()->read()->agentid;
$currentdate = new Zend_Date();
$agentuser = new Datasource_Core_Agent_UserAccounts();
$agentuser->setLastLoginDate($currentdate, $agentid);
$storage = $auth->getStorage();
$data = $storage->read();
$data->lastlogindate = $currentdate->get(Zend_Date::YEAR . '-' . Zend_Date::MONTH . '-' . Zend_Date::DAY);
$storage->write($data);
}
}
}
break;
case 'agent-admin-suite':
$auth = Zend_Auth::getInstance();
$auth->setStorage(new Zend_Auth_Storage_Session('hl_admin'));
if (!$auth->hasIdentity()) {
$request->setControllerName('index');
$request->setActionName('login');
}
break;
case 'landlords-referencing':
// TODO: This is fairly dirty - it's excluding pages that we want to use in the CMS.
// Could do with restructuring referencing at some point so the application process
// isn't in the way for CMS pages
if ($action != 'products' && $action != 'rent-guarantee-products') {
$this->_referencingPreDespatch($request);
}
break;
default:
// Set default expiration seconds for homelet customer portal access
$params = Zend_Registry::get('params');
$sessionTimeOutSeconds = $params->myhomelet->loginexpiry->sessionTimeOutSeconds;
$session = new Zend_Session_Namespace('homelet_customer');
$session->setExpirationSeconds($sessionTimeOutSeconds);
}
$front = Zend_Controller_Front::getInstance();
// Check to see if this request is actually dispatchable
if (!$this->_actionExists($request)) {
// Is this a connect request?
$module = $request->getModuleName();
if ($module == 'connect') {
$request->setControllerName('index');
$request->setActionName('view-static-page');
} else {
// Not a Connect request, into the CMS we go!
$request->setModuleName('cms');
$request->setControllerName('index');
$request->setActionName('view-page');
}
}
// Set a custom layout route
$layoutPath = APPLICATION_PATH . '/modules/' . $request->getModuleName() . '/layouts/scripts/';
Zend_Layout::getMvcInstance()->setLayoutPath($layoutPath);
}
