Vendor & contractor integration

2021-06-10 05:20:29 -04:00
parent f2d7d9ee14
commit b16b55fa11
24 changed files with 1036 additions and 111 deletions
--- a/signin_0.php
+++ b/signin_0.php
@@ -0,0 +1,94 @@
+<?php
+/*
+ * Copyright (C) 2018 josh.north
+ *
+ * This program is free software: you can redistribute it and/or modify
+ * it under the terms of the GNU General Public License as published by
+ * the Free Software Foundation, either version 3 of the License, or
+ * (at your option) any later version.
+ *
+ * This program is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+ * GNU General Public License for more details.
+ *
+ * You should have received a copy of the GNU General Public License
+ * along with this program.  If not, see <http://www.gnu.org/licenses/>.
+ */
+
+    ini_set('session.gc_maxlifetime', 24*60*60);                                // MIN SESSION
+    ini_set('session.gc_probability', 1);                                       // GC RATES
+    ini_set('session.gc_divisor', 100);                                         // TIMES
+    ini_set('session.use_cookies', '1');
+    ini_set('session.use_only_cookies', '1');
+    ini_set('session.cookie_secure', '0');
+    ini_set('session.cookie_httponly', '0');
+    ini_set('session.cookie_samesite', 'Lax');
+    session_save_path('.tmp');                                                  // TEMP
+    session_start();                                                            // START
+    require_once __DIR__ . '/autoload.php';                                     // AUTOLOAD
+    use App\LobbySIO\Misc\Csrf;                                        // ANTICSRF
+    $StaticFunctions = new \App\LobbySIO\Misc\StaticFunctions();                // DEFAULT CLASSES
+    $SiteInfo = new \App\LobbySIO\Database\SiteInfo();
+    $Users = new \App\LobbySIO\Database\Users();
+    if (isset($_SESSION['user_id'])) {                                          // LOGGED IN? GET USER OBJECT
+        $session_user = $Users->getUserInfo($_SESSION['user_id'], "1", "0"); }
+    if (isset($session_user)) {                                                 // GET UID OR SET TO KIOSK
+        $uid = $session_user["0"]["users_id"];} else { $uid = "2"; }
+    $app_disp_lang = filter_input(INPUT_COOKIE, 'app_disp_lang');               // SETUP LANGUAGE
+    if(!isset($app_disp_lang)) {
+        $app_disp_lang=$StaticFunctions->getDefaultLanguage(); }
+    $siteidcookie = filter_input(INPUT_COOKIE, 'app_site');                     // SETUP SITE
+    foreach($SiteInfo->getSite("0", $uid, "0", "0") as $arr) {
+        $lookup_array[$arr['sites_id']]=1; }
+        if(isset($lookup_array[$siteidcookie])) {
+            $siteid = $siteidcookie; } else { $siteid = "1"; }
+        if(!isset($siteid)) { $siteid="1"; }
+    $Translate = new \App\LobbySIO\Language\Translate($app_disp_lang);          // SETUP TRANSLATOR
+    $transLang =  $Translate->userLanguage();
+    $VisitTypeInfo = new \App\LobbySIO\Database\VisitTypeInfo();
+    $app_current_pagename = $transLang['SIGNIN'];                               // PAGE SETUP
+    $app_current_pageicon = '<i class="fas fa-sign-in-alt"></i> ';
+    require_once("inc/header.inc.php");
+    if ($StaticFunctions->getSessionStatus() == true) {                         // CHECK STATUS
+        header('Location: index.php');                                          // ELSE HOME
+    } else {
+      header("X-Frame-Options: SAMEORIGIN");
+      header("X-Content-Type-Options: nosniff");
+      //header("Content-Security-Policy: script-src 'self' 'unsafe-inline'; script-src-elem 'self'; script-src-attr 'self'; style-src 'self'; style-src-elem 'self'; style-src-attr 'self'; img-src 'self'; connect-src 'self'; frame-src 'self'; font-src 'self'; media-src 'self'; object-src 'self'; manifest-src 'self'; worker-src 'self'; prefetch-src 'self'; form-action 'self'; frame-ancestors 'self'; default-src 'self'", false);
+      if (!empty($_GET['a'])) {
+        echo '<pre>' . print_r($_POST, true) . '</pre>';
+        echo 'Verification has been : ' . (Csrf::verifyToken('home') ? 'successful' : 'unsuccessful');
+      }
+    ?>
+
+
+
+<!-- START CONTENT -->
+  <div class="container">
+    <div class="row row-cols-1">
+      <div class="col d-grid gap-2">
+        <h2><i class="fas fa-sign-in-alt"></i> <?php echo $transLang['SIGNIN']; ?></h2>
+      </div>
+    </div>
+    <form name="form-signin" class="form-signin" action="signin_1.php" method="post">
+      <?php echo Csrf::getInputToken('home') ?>
+      <div class="row row-cols-2">
+        <div class="col">
+          <?php echo $transLang['CUSTOMERVENDOR_DESC']; ?>
+        </div>
+      </div>
+      <div class="row row-cols-2">
+        <div class="col d-grid gap-2">
+          <input type="hidden" name="vtype" value="submit" />
+          <button id="customer-submit" type="submit" name="submit" value="0" class="btn btn-success btn-lg" tabindex="-1" role="button"><?php echo $transLang['CUSTOMER']; ?></button>
+        </div>
+        <div class="col d-grid gap-2">
+          <button id="vendor-submit" type="submit" name="submit" value="1" class="btn btn-success btn-lg" tabindex="-1" role="button"><?php echo $transLang['VENDORINFO-VENDORTITLE']; ?></button>
+        </div>
+      </div>
+    </form>
+  </div>
+<!-- END CONTENT -->
+
+<?php }; require_once("inc/footer.inc.php"); ?>