/**
* @return array User FirstName, LastName and Address.
*/
public static function readUserData()
{
$service = ESBFactory::getUserService();
$result = $service->form();
if ( SolrSafeOperatorHelper::featureIsActive('UUMP') )
{
$params = $result['data']["profile"];
}
else
{
$params = $result['Data']["Params"];
}
$addressLines = array();
$addressLine1 = $params[$service->getBusinessNameMapping( 'addressLine1' )];
$addressLine2 = $params[$service->getBusinessNameMapping( 'addressLine2' )];
if ( $addressLine1 )
{
$addressLines[] = $addressLine1;
}
if ( $addressLine2 )
{
$addressLines[] = $addressLine2;
}
$address = implode("\n", $addressLines);
return array(
'FirstName' => $params[$service->getBusinessNameMapping( 'firstName' )],
'LastName' => $params[$service->getBusinessNameMapping( 'lastName' )],
'UserAddress' => $address,
);
}
/**
* @return string
*/
protected function validateToU()
{
if( !self::user() )
return false;
self::user()->toUValidated(true);
$context = ContextTool::instance()->backUrl();
$context = isset( $_POST['context'] ) ? $_POST['context'] : '/';
// @todo: update ESB by sending validation status
$esbResult = new ESBResult();
$userService = ESBFactory::getUserService();
if(SolrSafeOperatorHelper::featureIsActive('UUMP'))
{
$result = $userService->read(self::user()->attribute('uuid'));
ServiceLoginUUMP::populateESBResult($esbResult, $result);
}
else
{
$result = ServiceLogin::readCall(self::user()->attribute('uuid'), $esbResult);
ServiceLogin::populateESBResult($esbResult, $result);
}
$esbResult->userName = self::user()->attribute('uuid');
$esbResult->termsOfUse = 'Y';
$esbResult->privacyPolicy = 'Y';
if( SolrSafeOperatorHelper::featureIsActive('UUMP') || (ClusterTool::clusterIdentifier() == "cluster_at") )
{
$esbResult->termsOfUse = '1';
$esbResult->privacyPolicy = '1';
}
$esbResult->countryOfRegistration = self::user()->attribute( 'country' );
$userService->write($esbResult->toServiceAgreementTicket());
// if the ESB call fails, we still validate the user input to let him access the content
$esbResult->forceToUValidated = true;
$esbResult->sessionID = $_COOKIE[self::iniMerck()->variable('TIBCOCookieSettings', 'TIBCOCookieName')];
$loginResult = MMUserLogin::esbLogin( self::user()->attribute('uuid'), $esbResult, false, $context );
if ( $loginResult )
{
// Stringify params
$strParams = json_encode( $loginResult['params'] );
// Encrypts params
$encryptedParams = MMUserLogin::encryptText( $strParams );
// Redirect to PHP-ESI
$redirectURL = ContextTool::instance()->domain()."/loginActions.php?context=" . urlencode( $loginResult['destUrl'] ) . "¶ms=" . urlencode( $encryptedParams );
return $redirectURL;
}
}
public static function getAndStoreGPNotebookHS()
{
if(!self::featureIsActive("GPNotebook"))
return null;
$key = self::feature("GPNotebook", "key");
$iv = self::feature("GPNotebook", "iv");
$data = array();
$service = ESBFactory::getUserService();
$user = $service->form();
if ( $user && $user['data']['errorCode'] == 0 && !is_null($user['data']['profile']['userId']) )
{
$data = array(
"uump_id" => $user['data']['profile']['userId'],
"salutations" => $user['data']['profile']['salutation'],
"first_name" => $user['data']['profile']['firstName'],
"last_name" => $user['data']['profile']['lastName'],
"work_address_1" => $user['data']['profile']['addressLine1'],
"work_address_2" => $user['data']['profile']['addressLine2'],
"work_address_postcode" => $user['data']['profile']['postalCode'],
"email_address" => $user['data']['profile']['emailAddress'],
"job_title" => $user['data']['profile']['customerType'],
"speciality" => $user['data']['profile']['userSpecialty'],
"country" => $user['data']['profile']['countryOfRegistration'],
"professional_registration_number" => $user['data']['profile']['licenseNumber']
);
}
$gpNotebookHS = self::encodeGPNotebook( json_encode($data), $key, $iv );
if(MMUsers::getCurrentUserObject())
{
MMUsers::getCurrentUserObject()->setGPNotebookHS($gpNotebookHS);
MMUsers::getCurrentUserObject()->setCookieUserPreferences();
}
return $gpNotebookHS;
}
if ( MMUsers::getCurrentUserObject() )
{
header( 'Content-Type: application/json' );
if ( isset( $_POST['remove_cookie'] ) )
{
CookieTool::destroyCookie( 'displayToUPPPopin' );
CookieTool::destroyCookie( 'displayToUPPPopin', '/', null );
CookieTool::destroyCookie( 'displayToUPPPage' );
CookieTool::destroyCookie( 'displayToUPPPage', '/', null );
echo json_encode( array( 'result' => 0 ) );
eZExecution::cleanExit();
}
$service = ESBFactory::getUserService();
$userProfile = $service->form();
$touPage = MMStaticPage::fetchPageByInternalId( 'terms-of-use' );
$privacyPolicyPageInternalId = SolrSafeOperatorHelper::feature( 'ToUPPPopin', 'shortPrivacyPolicyPageInternalId' );
$privacyPolicyPageInternalId = ( $privacyPolicyPageInternalId === false || is_null( $privacyPolicyPageInternalId ) || trim( $privacyPolicyPageInternalId ) == "" ) ? 'privacy-policy' : $privacyPolicyPageInternalId;
$ppPage = MMStaticPage::fetchPageByInternalId( $privacyPolicyPageInternalId );
$currentToUConsentVersion = SolrSafeOperatorHelper::feature( 'ToUPPPopin', 'currentToUConsentVersion' );
$currentPPConsentVersion = SolrSafeOperatorHelper::feature( 'ToUPPPopin', 'currentPPConsentVersion' );
$hasCheckbox = SolrSafeOperatorHelper::feature( 'ToUPPPopin', 'hasCheckbox' );
$precheckedCheckbox = SolrSafeOperatorHelper::feature( 'ToUPPPopin', 'precheckedCheckbox' );
$adaptConsentText = in_array( ClusterTool::clusterIdentifier(), array( 'cluster_uk' ) ) ? true : false;
$touPPCheckboxFeatures = array(
eZExecution::cleanExit();
}
elseif ( isset($_REQUEST['dsp'])
&& $_REQUEST['dsp'] == 1
){
$tpl = eZTemplate::factory();
$tpl->setVariable( 'cluster_identifier', ClusterTool::clusterIdentifier() );
header_remove('Pragma');
header_remove('Cache-control');
header_remove('Expires');
header('Expires: ' . gmdate( 'D, d M Y H:i:s', time() + 7200 ) . ' GMT');
header('esi-enabled: 1');
$Result = array();
$Result['content'] = $tpl->fetch('design:html/loading.tpl');
}
else
{
$login = ESBFactory::getLoginService( 'autologin', $_REQUEST );
if ( isset($_REQUEST['ws'])
&& $_REQUEST['ws'] == 1
){
$login->redirectMode( ServiceLogin::LOGIN_REDIRECT_MODE_JS );
}
$login->login();
}
/**
* Relog the user if rememberme is checked and not logged in
* @param bool $try
* @throws Exception
* @return boolean
*/
public static function relog($try = false)
{
$out = array('session_lifetime' => intval(eZINI::instance('merck.ini')->variable('WSMobile', 'SessionLifetime')));
$backendUrl = eZINI::instance('merck.ini')->variable('WSMobile', 'BackEndUrl');
$c = curl_init();
curl_setopt($c, CURLOPT_URL, $backendUrl.'/mobile.php');
curl_setopt($c, CURLOPT_RETURNTRANSFER, true);
curl_setopt($c, CURLOPT_NOBODY, true);
curl_setopt($c, CURLOPT_HEADER, true);
if ( eZINI::instance('merck.ini')->hasVariable('WSMobile', 'BackEndHeader') )
{
/* @type $headers array */
$headersList = array();
$headers = eZINI::instance('merck.ini')->variable('WSMobile', 'BackEndHeader');
foreach ( $headers as $header => $value )
{
$headersList[] = sprintf('%s: %s', $header, $value);
}
curl_setopt($c, CURLOPT_HTTPHEADER, $headersList);
}
$headers = getallheaders();
if( isset($headers['Cookie']) )
curl_setopt($c, CURLOPT_COOKIE, $headers['Cookie']);
$result = curl_exec($c);
$errno = curl_errno($c);
$error = curl_error($c);
curl_close($c);
$loggedOnBackend = true;
if( preg_match( '#^HTTP/1.1 302 Found#', $result )
|| (
preg_match( '#Set-Cookie: .*BSESSIONID=(?P<baksess>.*?);#m', $result, $m )
&& isset( $_COOKIE['BESSIONID'] )
&& $_COOKIE['BESSIONID'] != $m['baksess']
)
){
$loggedOnBackend = false;
}
if ( self::isLogged() && $loggedOnBackend )
{
return $out;
}
if ( isset($_COOKIE['remember_me']) )
{
$db = MMDB::instance();
$corQuery = "SELECT r.code
FROM bo_reference r
JOIN bo_cluster_has_reference chr ON chr.cluster_identifier = '%s'
WHERE r.type = 'country' AND r.id = chr.reference_id";
$cor = $db->arrayQuery( sprintf( $corQuery, ClusterTool::clusterIdentifier() ) );
if( count( $cor ) > 0 )
$countryOfRegistration = $cor[0]['code'];
else
$countryOfRegistration = eZINI::instance('site.ini')->variable('RegionalSettings', 'CountryOfRegistration');
$uuid = MMUserLogin::uncryptTicket($_COOKIE['remember_me']);
$context = isset( $_REQUEST['context'] ) ? $_REQUEST['context'] : ContextTool::instance()->domain() . '/';
$readService = ESBFactory::getUserService();
$parameters = $readService->getFormParameters($uuid);
$datas = $readService->read( $parameters, $uuid );
$esbResult = new ESBResult();
$isPopulated = ServiceLoginUUMP::populateESBResult( $esbResult, $datas );
if ( !$isPopulated )
{
// error log caught on WS stack
return null;
}
$loginResult = MMUserLogin::esbLogin( $uuid, $esbResult, true, $context );
if( is_null( $loginResult ))
{
$out['status'] = 'failed';
$out['errorCode'] = 9;
$out['msg'] = 'User not found.';
return $out;
}
$user = MMUsers::fetchByIdAndCountry($loginResult['params']['Username'], $countryOfRegistration);
$loginResult['params']['mmSettings'] = $user->getMMSettings();
$loginResult['params']['unorderedAppList'] = $user->getApplicationList();
$loginResult['params']['alterboxMsgReset'] = $user->hasPreference('alterboxMsgReset') ? $user->getPreferences('alterboxMsgReset') : true;
$logged = self::backendLog($loginResult['params']);
if ( $logged )
{
return $out;
}
}
if ( $try !== true )
{
throw new Exception('Missing "remember_me" cookie', 30);
}
return false;
}
/**
* Reset password
*
* @return array
*/
public function r()
{
$http = BlockDefault::http();
$tokenData = self::decryptToken($http->postVariable('Token'));
$token = $tokenData['token'];
$userId = $tokenData['userId'];
$expirationDate = strtotime('+1day',(integer)($tokenData['expirationDate'] / 1000));
$password = $http->postVariable('new_password');
$confirmedPassword = $http->postVariable('new_password_check');
$now = time();
$isConsult = (bool) $http->postVariable('consult');
if ($now > $expirationDate)
{
if ( $isConsult )
{
$redirectUrl = $this->getCustomParameter('ConsultExpiredUrl');
}
else
{
$redirectUrl = $this->getCustomParameter('ExpiredUrl');
}
return array(
'errorCode' => ResponseError::ERROR_TOKEN_EXPIRED,
'redirectUrl' => $redirectUrl
);
}
$esbClient = self::getEsbClient();
$isTokenValid = $esbClient->checkToken($userId, $token, $tokenData['expirationDate']);
if (!$isTokenValid)
{
if ( $isConsult )
{
$redirectUrl = $this->getCustomParameter('ConsultAlreadyChangedUrl');
}
else
{
$redirectUrl = $this->getCustomParameter('AlreadyChangedUrl');
}
return array(
'errorCode' => ResponseError::ERROR_INVALID_TOKEN,
'redirectUrl' => $redirectUrl
);
}
try
{
$response = $esbClient->changePassword($userId, $password, $confirmedPassword);
if ($response === true)
{
if( SolrSafeOperatorHelper::featureIsActive( 'ExactTarget' ) && SolrSafeOperatorHelper::featureIsActive( 'UUMP' ) )
{
self::sendSuccessMail($tokenData['email'], $userId, $isConsult);
}
else
{
self::sendSuccessMail($tokenData['userId'], $userId);
}
}
$esbResult = new ESBResult();
$userService = ESBFactory::getUserService();
$result = $userService->read(null, $userId);
ServiceLoginUUMP::populateESBResult($esbResult, $result);
$loginResult = MMUserLogin::esbLogin($userId, $esbResult);
if ( $isConsult )
{
$redirectUrl = $this->getCustomParameter('ConsultSuccessUrl');
}
else
{
$redirectUrl = $this->getCustomParameter('SuccessUrl');
}
$params = array(
'uuid' => $userId,
'h' => sha1( eZINI::instance( 'merck.ini' )->variable( 'TicketLogin', 'DESKey' ) . $userId ),
'context' => $redirectUrl
);
//CookieTool::setCookie('h', sha1( eZINI::instance( 'merck.ini' )->variable( 'TicketLogin', 'DESKey' ) . $userId ), time() + 3600);
$url = '/service/relog?' . http_build_query($params);
return array(
'errorCode' => ResponseError::SUCCESS,
'redirectUrl' => $url,
);
}
catch (\Exception $e)
{
return array(
'errorCode' => ResponseError::ERROR_REQUEST_EXECUTION,
'msg' => $e->getMessage()
);
}
}
/**
* @param bool $tokenOnly
* @return string
*/
protected function getAutologinLink( $tokenOnly = false )
{
if( self::user() )
{
$esbResponse = ESBFactory::getUserService()->read();
if( isset( $esbResponse['data']['profile']['emailAddress'] ) )
{
$in = $esbResponse['data']['profile']['emailAddress'];
$blocksize = mcrypt_get_block_size( MCRYPT_3DES, MCRYPT_MODE_CBC );
$pad = $blocksize - ( strlen( $in ) % $blocksize );
$pad = $in . str_repeat( chr( $pad ), $pad );
$enc = mcrypt_encrypt(
MCRYPT_3DES,
pack( 'H*', "437b0551edcdfd377963fe77b07b65d374735d22b688f7d6" ),
$pad,
MCRYPT_MODE_CBC,
"Univadis"
);
$enc = base64_encode( $enc );
return $tokenOnly ? $enc : array( 'al' => $this->anonymousUrl . '?ltoken=' . $enc );
}
}
return $tokenOnly ? '' : $this->anonymousUrl;
}
/**
* @return ServiceUserBase
*/
public static function getInstance()
{
if ( is_null( self::$_instance ) )
{
self::$_instance = ESBFactory::getUserService();
}
return self::$_instance;
}
/**
* @return string
*/
private function prepareMessageText()
{
$transmissionSubject = $_POST['transmissionSubject'] ? $_POST['transmissionSubject'] : '';
$transmissionSubject = ezpI18n::tr( 'merck/static-page', strtoupper( $transmissionSubject ) );
$translationArray = array(
'{0}' => isset( $_POST['firstName'] ) ? $_POST['firstName'] : '',
'{1}' => isset( $_POST['lastName'] ) ? $_POST['lastName'] : '',
'{2}' => isset( $_POST['emailAddress'] ) ? $_POST['emailAddress'] : '',
'{3}' => $transmissionSubject,
'{4}' => isset( $_POST['message'] ) ? $_POST['message'] : '',
);
if ($this->shouldAppendCountryOfRegistration())
{
$translationArray['{5}'] = !empty($_POST['countryOfResidence']) ? $_POST['countryOfResidence'] : '-';
}
$msg = ezpI18n::tr( 'application/contactus', 'MAIL CONTENT', null, $translationArray);
if( !empty( $this->additionalMsg ) )
{
require_once 'vendor/autoload.php';
$service = ESBFactory::getUserService();
$user = $service->form();
if ( $user['Data']['ErrorCode'] == 0 )
{
$msg .= ezpI18n::tr( 'application/contactus', 'MAIL ADDITIONAL CONTENT', null, array(
'{0}' => !empty( $user['Data']['Params']['Phone_number'] ) ? $user['Data']['Params']['Phone_number'] : '',
'{1}' => !empty( $user['Data']['Params']['Customer_type'] ) ? $user['Data']['Params']['Customer_type'] : '',
'{2}' => !empty( $user['Data']['Params']['Main_specialty'] ) ? $user['Data']['Params']['Main_specialty'] : '',
) );
}
}
$customFields = $this->getCustomFormFields($_POST);
foreach ($customFields as $key => $value)
{
$msg .= $this->getCustomFieldMailText($key, $value);
}
return strip_tags( str_replace( array( '<br />', '<br>' ), "\n", $msg ) );
}
<?php
MMUserLogin::$isLogin = true;
$service = ESBFactory::getLoginService( 'relog', $_REQUEST );
$service->relog();
// If we run these lines, it means that relog was unsuccessful
// => destroy remember_me cookie and redirect to fallback URL :
$domain = preg_replace( '#^https?://#', '', ContextTool::instance()->domain() );
$domainParts = explode('.', $domain);
while( count($domainParts) > 1 )
{
setcookie( 'remember_me', '', time() - 3600, '/', implode('.', $domainParts ) );
array_shift( $domainParts );
}
$context = isset( $_REQUEST['context'] ) ? $_REQUEST['context'] : ContextTool::instance()->domain().'/';
header( 'Location: '.$context );
eZExecution::cleanExit();
public function relog()
{
$uuid = isset( $this->_input['uuid'] ) ? $this->_input['uuid'] : null;
//$h = isset( $_COOKIE['h'] ) ? $_COOKIE['h'] : null;
$h = isset( $this->_input['h'] ) ? $this->_input['h'] : null;
$context = isset( $this->_input['context'] ) ? $this->_input['context'] : ContextTool::instance()->domain().'/';
//delete session id cookie
//unset($_COOKIE['h']);
if ( is_null( $uuid ) || is_null( $h ) )
{
MMUserLogin::logError( $uuid, null, null, 'Empty uuid or hash given on Relog' );
return $this->relogError();
}
if ( $h != sha1( eZINI::instance( 'merck.ini' )->variable( 'TicketLogin', 'DESKey' ) . $uuid ) )
{
MMUserLogin::logError( $uuid, null, null, 'Invalid hash given on Relog' );
return $this->relogError();
}
UserLog::instance()->action( 'rememberme' )->uuid( $uuid )->step( 'received' )->store();
$esbResult = new ESBResult();
if ( !SolrSafeOperatorHelper::featureIsActive('UUMP') )
{
$datas = static::readCall( $uuid, $esbResult );
}
else
{
$readService = ESBFactory::getUserService();
$parameters = $readService->getFormParameters($uuid);
$datas = $readService->read( $parameters, $uuid );
}
$isPopulated = static::populateESBResult( $esbResult, $datas );
$this->_esbResult = $esbResult;
if ( !$isPopulated )
{
// error log caught on WS stack
return $this->relogError();
}
$esbResult->login = ( $esbResult->userId === $uuid );
if ( !$isPopulated )
{
// error log caught on WS stack
return $this->relogError();
}
$loginResult = MMUserLogin::esbLogin( $uuid, $esbResult, true, $context );
if ( $loginResult )
{
$this->_isLoginSuccessful = true;
$this->_destUrl = $loginResult['destUrl'];
UserLog::instance()
->uuid( $uuid )
->esb_status( 'Accepted' )
->store();
$user = MMUsers::getCurrentUserObject();
$sl = SystemLocale::fetchByClusterAndSystem( ClusterTool::clusterIdentifier(), 'esb_language' );
$customerLanguage = !is_null( $sl ) ? $sl : eZINI::instance()->variable( 'RegionalSettings', 'ContentObjectLocale' );
if( SolrSafeOperatorHelper::featureIsActive( 'AsynchronousAnalyticsLoginCall' ) && SolrSafeOperatorHelper::feature( 'AsynchronousAnalyticsLoginCall', 'GoogleAnalytics' ) )
{
$amq = new ActiveMQManager();
$domains = eZINI::instance( 'merck.ini' )->variable( 'DomainMappingSettings', 'ClusterDomains' );
$domain = isset( $domains[ClusterTool::clusterIdentifier()] ) ? $domains[ClusterTool::clusterIdentifier()] : 'unidentified.univadis.com';
$gasl = SystemLocale::fetchByClusterAndSystem( ClusterTool::clusterIdentifier(), 'ga_visitor_country' );
$gaCountry = !is_null( $gasl ) ? $gasl : $user->attribute( 'country' );
$gaParams = array(
'v' => 1,
'tid' => 'UA-41415675-6',
'uid' => $uuid,
't' => 'event',
'ec' => 'esb',
'ea' => 'login',
'ni' => 1,
'cd1' => $uuid,
'cd2' => 'logged',
'cd7' => $gaCountry,
'dh' => preg_replace( '#^.*?\.#', '', $domain ),
);
$gaParams = 'https://ssl.google-analytics.com/collect?' . http_build_query( $gaParams );
$amq->sendMessageToQueue( 'portail.analytics.google', $gaParams );
}
// Stringify params
$loginResult['params'][AppBarControl::COOKIE_UNORDERED_APPLIST_KEY] = $user->getApplicationList();
$loginResult['params'][MMUsers::COOKIE_KEY] = $user->getMMSettings();
$strParams = json_encode( $loginResult['params'] );
// Encrypts params
$encryptedParams = MMUserLogin::encryptText( $strParams );
// Redirect to PHP-ESI
$redirectURL = "/loginActions.php?context=" . urlencode( $loginResult['destUrl'] ) . "¶ms=" . urlencode( $encryptedParams );
if ( !MMUsers::checkCookieLaw() && SolrSafeOperatorHelper::feature('CookieLaw', 'Mode') == MMUsers::COOKIE_LAW_ACTIVE_VERSION_KEY)
{
$cookieLawPage = SolrSafeOperatorHelper::feature( 'CookieLaw', 'CookieLawPage' );
$redirectURL = ( $cookieLawPage ? $cookieLawPage : '/page/cookie-law' );
}
// Branding reconsent check, done only if:
// 1. feature ToUPPPopin enabled
// 2. Always on WEB with this feature
// 3. Only on mobile, whne setting showOnMobile is ON.
if
(
SolrSafeOperatorHelper::featureIsActive( 'ToUPPPopin')
&&
(
!ContextTool::instance()->isMobile()
||
( ContextTool::instance()->isMobile() && SolrSafeOperatorHelper::feature('ToUPPPopin','showOnMobile') )
)
)
{
$displayReconsent = $this->checkTouPPPopin( $datas );
// if we need to ask user for reconsent ($displayReconsent - taken fromESB response) we decide if we want page below if:
// 1. On WEB and useDedicatedPage setting is ON
// 2. On mobile and useDedicatedPageMobile setting is ON
if (
$displayReconsent
&&
(
( !ContextTool::instance()->isMobile() && SolrSafeOperatorHelper::feature( 'ToUPPPopin', 'useDedicatedPage' ) )
||
( ContextTool::instance()->isMobile() && SolrSafeOperatorHelper::feature( 'ToUPPPopin', 'useDedicatedPageMobile' ) )
)
)
{
CookieTool::destroyCookie( 'displayToUPPPopin' );
CookieTool::destroyCookie( 'displayToUPPPopin', '/', null );
CookieTool::setCookie( 'displayToUPPPage', 1, time() + ( 2 * 24 * 60 * 60 ) );
$touPpPageUrl = eZINI::instance( 'site.ini' )->variable( 'SiteSettings', 'ToUPPPageUrl' ) . "/#?tpc=" . urlencode( $loginResult['destUrl'] );
$redirectURL = "/loginActions.php?context=" . urlencode( $touPpPageUrl ) . "¶ms=" . urlencode( $encryptedParams );
}
}
$this->response( $redirectURL );
}
}
