2021-10-15 16:58:59 +02:00
< ? php
/*
* This program is free software ; you can redistribute it and / or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation ; either version 3 of the License , or
* ( at your option ) any later version .
*
* This program is distributed in the hope that it will be useful ,
* but WITHOUT ANY WARRANTY ; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
* GNU General Public License for more details .
*
* You should have received a copy of the GNU General Public License
* along with this program . If not , see < https :// www . gnu . org / licenses />.
*/
/**
* \file / htdocs / core / ajax / onlineSign . php
* \brief File to make Ajax action on Knowledge Management
*/
if ( ! defined ( 'NOTOKENRENEWAL' )) {
define ( 'NOTOKENRENEWAL' , '1' ); // Disables token renewal
}
if ( ! defined ( 'NOREQUIREHTML' )) {
define ( 'NOREQUIREHTML' , '1' );
}
if ( ! defined ( 'NOREQUIREAJAX' )) {
define ( 'NOREQUIREAJAX' , '1' );
}
2022-10-06 16:03:50 +02:00
// Needed to create other objects with workflow
2022-10-03 08:22:27 +02:00
/* if ( ! defined ( 'NOREQUIRESOC' )) {
2021-10-15 16:58:59 +02:00
define ( 'NOREQUIRESOC' , '1' );
2022-10-03 08:22:27 +02:00
} */
2021-10-15 16:58:59 +02:00
// Do not check anti CSRF attack test
if ( ! defined ( 'NOREQUIREMENU' )) {
define ( 'NOREQUIREMENU' , '1' );
}
// If there is no need to load and show top and left menu
if ( ! defined ( " NOLOGIN " )) {
define ( " NOLOGIN " , '1' );
}
if ( ! defined ( 'NOIPCHECK' )) {
define ( 'NOIPCHECK' , '1' ); // Do not check IP defined into conf $dolibarr_main_restrict_ip
}
if ( ! defined ( 'NOBROWSERNOTIF' )) {
define ( 'NOBROWSERNOTIF' , '1' );
}
2022-04-11 18:01:25 +02:00
$entity = ( ! empty ( $_GET [ 'entity' ]) ? ( int ) $_GET [ 'entity' ] : ( ! empty ( $_POST [ 'entity' ]) ? ( int ) $_POST [ 'entity' ] : 1 ));
if ( is_numeric ( $entity )) {
define ( " DOLENTITY " , $entity );
}
2021-10-15 16:58:59 +02:00
include '../../main.inc.php' ;
2022-08-14 20:45:04 +02:00
require_once DOL_DOCUMENT_ROOT . '/core/lib/files.lib.php' ;
2021-10-15 16:58:59 +02:00
$action = GETPOST ( 'action' , 'aZ09' );
2021-12-25 17:08:40 +01:00
2021-10-15 16:58:59 +02:00
$signature = GETPOST ( 'signaturebase64' );
$ref = GETPOST ( 'ref' , 'aZ09' );
2022-08-14 15:28:04 +02:00
$mode = GETPOST ( 'mode' , 'aZ09' ); // 'proposal', ...
2021-12-25 17:08:40 +01:00
$SECUREKEY = GETPOST ( " securekey " ); // Secure key
2021-10-15 16:58:59 +02:00
$error = 0 ;
$response = " " ;
2021-12-25 17:08:40 +01:00
$type = $mode ;
2022-01-04 12:56:08 +01:00
// Check securitykey
$securekeyseed = '' ;
if ( $type == 'proposal' ) {
2022-08-14 19:00:50 +02:00
$securekeyseed = getDolGlobalString ( 'PROPOSAL_ONLINE_SIGNATURE_SECURITY_TOKEN' );
2022-01-04 12:56:08 +01:00
}
2022-08-28 13:52:03 +02:00
if ( empty ( $SECUREKEY ) || ! dol_verifyHash ( $securekeyseed . $type . $ref . ( ! isModEnabled ( 'multicompany' ) ? '' : $entity ), $SECUREKEY , '0' )) {
2022-09-09 11:55:45 +02:00
httponly_accessforbidden ( 'Bad value for securitykey. Value provided ' . dol_escape_htmltag ( $SECUREKEY ) . ' does not match expected value for ref=' . dol_escape_htmltag ( $ref ), 403 );
2021-12-25 17:08:40 +01:00
}
2021-10-15 16:58:59 +02:00
/*
* Actions
*/
// None
/*
* View
*/
2022-09-03 20:08:13 +02:00
top_httphead ();
2021-10-15 16:58:59 +02:00
if ( $action == " importSignature " ) {
2023-03-01 23:50:02 +01:00
$issignatureok = ( ! empty ( $signature ) && $signature [ 0 ] == " image/png;base64 " );
if ( $issignatureok ) {
2021-10-15 16:58:59 +02:00
$signature = $signature [ 1 ];
$data = base64_decode ( $signature );
2021-12-25 17:08:40 +01:00
if ( $mode == " propale " || $mode == 'proposal' ) {
require_once DOL_DOCUMENT_ROOT . '/comm/propal/class/propal.class.php' ;
require_once DOL_DOCUMENT_ROOT . '/core/lib/pdf.lib.php' ;
$object = new Propal ( $db );
$object -> fetch ( 0 , $ref );
$upload_dir = ! empty ( $conf -> propal -> multidir_output [ $object -> entity ]) ? $conf -> propal -> multidir_output [ $object -> entity ] : $conf -> propal -> dir_output ;
$upload_dir .= '/' . dol_sanitizeFileName ( $object -> ref ) . '/' ;
$date = dol_print_date ( dol_now (), " %Y%m%d%H%M%S " );
$filename = " signatures/ " . $date . " _signature.png " ;
if ( ! is_dir ( $upload_dir . " signatures/ " )) {
if ( ! dol_mkdir ( $upload_dir . " signatures/ " )) {
$response = " Error mkdir. Failed to create dir " . $upload_dir . " signatures/ " ;
$error ++ ;
}
2021-10-15 16:58:59 +02:00
}
2021-12-25 17:08:40 +01:00
if ( ! $error ) {
$return = file_put_contents ( $upload_dir . $filename , $data );
if ( $return == false ) {
$error ++ ;
2022-01-04 12:56:08 +01:00
$response = 'Error file_put_content: failed to create signature file.' ;
2021-12-25 17:08:40 +01:00
}
}
if ( ! $error ) {
2022-07-10 18:06:41 +02:00
// Defined modele of doc
2022-08-14 20:45:04 +02:00
$last_main_doc_file = $object -> last_main_doc ;
$directdownloadlink = $object -> getLastMainDocLink ( 'proposal' ); // url to download the $object->last_main_doc
2022-07-10 18:06:41 +02:00
2022-08-14 20:45:04 +02:00
if ( preg_match ( '/\.pdf/i' , $last_main_doc_file )) {
// TODO Use the $last_main_doc_file to defined the $newpdffilename and $sourcefile
2022-07-10 18:06:41 +02:00
$newpdffilename = $upload_dir . $ref . " _signed- " . $date . " .pdf " ;
$sourcefile = $upload_dir . $ref . " .pdf " ;
if ( dol_is_file ( $sourcefile )) {
2022-08-14 21:31:53 +02:00
// We build the new PDF
2022-07-10 18:06:41 +02:00
$pdf = pdf_getInstance ();
2022-08-14 21:31:53 +02:00
if ( class_exists ( 'TCPDF' )) {
$pdf -> setPrintHeader ( false );
$pdf -> setPrintFooter ( false );
}
$pdf -> SetFont ( pdf_getPDFFont ( $langs ));
if ( getDolGlobalString ( 'MAIN_DISABLE_PDF_COMPRESSION' )) {
$pdf -> SetCompression ( false );
}
//$pdf->Open();
2022-07-10 18:06:41 +02:00
$pagecount = $pdf -> setSourceFile ( $sourcefile ); // original PDF
2022-08-14 21:31:53 +02:00
$s = array (); // Array with size of each page. Exemple array(w'=>210, 'h'=>297);
2022-07-10 18:06:41 +02:00
for ( $i = 1 ; $i < ( $pagecount + 1 ); $i ++ ) {
2022-08-14 21:31:53 +02:00
try {
$tppl = $pdf -> importPage ( $i );
$s = $pdf -> getTemplatesize ( $tppl );
$pdf -> AddPage ( $s [ 'h' ] > $s [ 'w' ] ? 'P' : 'L' );
$pdf -> useTemplate ( $tppl );
} catch ( Exception $e ) {
2023-03-01 23:50:02 +01:00
dol_syslog ( " Error when manipulating the PDF " . $sourcefile . " by onlineSign: " . $e -> getMessage (), LOG_ERR );
2022-08-14 21:31:53 +02:00
$response = $e -> getMessage ();
$error ++ ;
}
2022-07-10 18:06:41 +02:00
}
2022-08-14 21:31:53 +02:00
// A signature image file is 720 x 180 (ratio 1/4) but we use only the size into PDF
// TODO Get position of box from PDF template
$xforimgstart = ( empty ( $s [ 'w' ]) ? 120 : round ( $s [ 'w' ] / 2 ) + 15 );
$yforimgstart = ( empty ( $s [ 'h' ]) ? 240 : $s [ 'h' ] - 60 );
$wforimg = $s [ 'w' ] - 20 - $xforimgstart ;
2022-08-14 21:41:25 +02:00
$pdf -> Image ( $upload_dir . $filename , $xforimgstart , $yforimgstart , $wforimg , round ( $wforimg / 4 ));
2022-08-14 21:31:53 +02:00
//$pdf->Close();
2022-07-10 18:06:41 +02:00
$pdf -> Output ( $newpdffilename , " F " );
// Index the new file and update the last_main_doc property of object.
$object -> indexFile ( $newpdffilename , 1 );
}
2022-08-14 20:45:04 +02:00
} elseif ( preg_match ( '/\.odt/i' , $last_main_doc_file )) {
2022-08-14 20:03:13 +02:00
// Adding signature on .ODT not yet supported
// TODO
2022-07-10 18:06:41 +02:00
} else {
2022-08-14 20:03:13 +02:00
// Document format not supported to insert online signature.
// We should just create an image file with the signature.
2022-05-21 15:30:52 +02:00
}
2022-07-10 18:06:41 +02:00
}
2022-05-21 15:30:52 +02:00
2022-07-10 18:06:41 +02:00
if ( ! $error ) {
2022-01-04 13:27:26 +01:00
$db -> begin ();
2022-01-04 13:25:02 +01:00
$online_sign_ip = getUserRemoteIP ();
$online_sign_name = '' ; // TODO Ask name on form to sign
2021-12-25 17:08:40 +01:00
$sql = " UPDATE " . MAIN_DB_PREFIX . " propal " ;
2022-01-04 13:27:26 +01:00
$sql .= " SET fk_statut = " . (( int ) $object :: STATUS_SIGNED ) . " , note_private = ' " . $db -> escape ( $object -> note_private ) . " ', " ;
$sql .= " date_signature = ' " . $db -> idate ( dol_now ()) . " ', " ;
$sql .= " online_sign_ip = ' " . $db -> escape ( $online_sign_ip ) . " ' " ;
2022-01-04 13:25:02 +01:00
if ( $online_sign_name ) {
2022-01-04 13:27:26 +01:00
$sql .= " , online_sign_name = ' " . $db -> escape ( $online_sign_name ) . " ' " ;
2022-01-04 13:25:02 +01:00
}
2021-12-25 17:08:40 +01:00
$sql .= " WHERE rowid = " . (( int ) $object -> id );
dol_syslog ( __METHOD__ , LOG_DEBUG );
$resql = $db -> query ( $sql );
if ( ! $resql ) {
$error ++ ;
} else {
$num = $db -> affected_rows ( $resql );
}
if ( ! $error ) {
2022-08-29 15:57:13 +02:00
if ( method_exists ( $object , 'call_trigger' )) {
//customer is not a user !?! so could we use same user as validation ?
$user = new User ( $db );
$user -> fetch ( $object -> user_valid_id );
2022-11-14 22:38:39 +01:00
$object -> context = array ( 'closedfromonlinesignature' => 'closedfromonlinesignature' );
2022-08-29 15:57:13 +02:00
$result = $object -> call_trigger ( 'PROPAL_CLOSE_SIGNED' , $user );
if ( $result < 0 ) {
$error ++ ;
2023-03-01 23:50:02 +01:00
$response = " error in trigger " . $object -> error ;
} else {
$response = " success " ;
2022-08-29 15:57:13 +02:00
}
2023-03-01 23:50:02 +01:00
} else {
$response = " success " ;
2022-08-29 15:57:13 +02:00
}
2021-12-25 17:08:40 +01:00
} else {
$error ++ ;
$response = " error sql " ;
2021-10-15 16:58:59 +02:00
}
2023-03-01 23:50:02 +01:00
if ( ! $error ) {
$db -> commit ();
$response = " success " ;
setEventMessages ( " PropalSigned " , null , 'warnings' );
} else {
$db -> rollback ();
}
2021-10-15 16:58:59 +02:00
}
2022-09-29 14:28:58 +02:00
} elseif ( $mode == 'contract' ) {
require_once DOL_DOCUMENT_ROOT . '/contrat/class/contrat.class.php' ;
require_once DOL_DOCUMENT_ROOT . '/core/lib/pdf.lib.php' ;
$object = new Contrat ( $db );
$object -> fetch ( 0 , $ref );
$upload_dir = ! empty ( $conf -> contrat -> multidir_output [ $object -> entity ]) ? $conf -> contrat -> multidir_output [ $object -> entity ] : $conf -> contrat -> dir_output ;
$upload_dir .= '/' . dol_sanitizeFileName ( $object -> ref ) . '/' ;
$date = dol_print_date ( dol_now (), " %Y%m%d%H%M%S " );
$filename = " signatures/ " . $date . " _signature.png " ;
if ( ! is_dir ( $upload_dir . " signatures/ " )) {
if ( ! dol_mkdir ( $upload_dir . " signatures/ " )) {
$response = " Error mkdir. Failed to create dir " . $upload_dir . " signatures/ " ;
$error ++ ;
}
}
if ( ! $error ) {
$return = file_put_contents ( $upload_dir . $filename , $data );
if ( $return == false ) {
$error ++ ;
$response = 'Error file_put_content: failed to create signature file.' ;
}
}
if ( ! $error ) {
// Defined modele of doc
$last_main_doc_file = $object -> last_main_doc ;
$directdownloadlink = $object -> getLastMainDocLink ( 'contrat' ); // url to download the $object->last_main_doc
if ( preg_match ( '/\.pdf/i' , $last_main_doc_file )) {
// TODO Use the $last_main_doc_file to defined the $newpdffilename and $sourcefile
$newpdffilename = $upload_dir . $ref . " _signed- " . $date . " .pdf " ;
$sourcefile = $upload_dir . $ref . " .pdf " ;
if ( dol_is_file ( $sourcefile )) {
// We build the new PDF
$pdf = pdf_getInstance ();
if ( class_exists ( 'TCPDF' )) {
$pdf -> setPrintHeader ( false );
$pdf -> setPrintFooter ( false );
}
$pdf -> SetFont ( pdf_getPDFFont ( $langs ));
if ( getDolGlobalString ( 'MAIN_DISABLE_PDF_COMPRESSION' )) {
$pdf -> SetCompression ( false );
}
//$pdf->Open();
$pagecount = $pdf -> setSourceFile ( $sourcefile ); // original PDF
$s = array (); // Array with size of each page. Exemple array(w'=>210, 'h'=>297);
for ( $i = 1 ; $i < ( $pagecount + 1 ); $i ++ ) {
try {
$tppl = $pdf -> importPage ( $i );
$s = $pdf -> getTemplatesize ( $tppl );
$pdf -> AddPage ( $s [ 'h' ] > $s [ 'w' ] ? 'P' : 'L' );
$pdf -> useTemplate ( $tppl );
} catch ( Exception $e ) {
dol_syslog ( " Error when manipulating some PDF by onlineSign: " . $e -> getMessage (), LOG_ERR );
$response = $e -> getMessage ();
$error ++ ;
}
}
// A signature image file is 720 x 180 (ratio 1/4) but we use only the size into PDF
// TODO Get position of box from PDF template
$xforimgstart = 5 ;
$yforimgstart = ( empty ( $s [ 'h' ]) ? 240 : $s [ 'h' ] - 65 );
$wforimg = $s [ 'w' ] / 2 - $xforimgstart ;
$pdf -> Image ( $upload_dir . $filename , $xforimgstart , $yforimgstart , $wforimg , round ( $wforimg / 4 ));
//$pdf->Close();
$pdf -> Output ( $newpdffilename , " F " );
// Index the new file and update the last_main_doc property of object.
$object -> indexFile ( $newpdffilename , 1 );
}
if ( ! $error ) {
$response = " success " ;
}
} elseif ( preg_match ( '/\.odt/i' , $last_main_doc_file )) {
// Adding signature on .ODT not yet supported
// TODO
} else {
// Document format not supported to insert online signature.
// We should just create an image file with the signature.
}
2022-10-20 18:54:45 +02:00
}
2022-10-20 16:52:57 +02:00
} elseif ( $mode == 'fichinter' ) {
require_once DOL_DOCUMENT_ROOT . '/fichinter/class/fichinter.class.php' ;
require_once DOL_DOCUMENT_ROOT . '/core/lib/pdf.lib.php' ;
$object = new Fichinter ( $db );
$object -> fetch ( 0 , $ref );
$upload_dir = ! empty ( $conf -> ficheinter -> multidir_output [ $object -> entity ]) ? $conf -> ficheinter -> multidir_output [ $object -> entity ] : $conf -> ficheinter -> dir_output ;
$upload_dir .= '/' . dol_sanitizeFileName ( $object -> ref ) . '/' ;
$date = dol_print_date ( dol_now (), " %Y%m%d%H%M%S " );
$filename = " signatures/ " . $date . " _signature.png " ;
if ( ! is_dir ( $upload_dir . " signatures/ " )) {
if ( ! dol_mkdir ( $upload_dir . " signatures/ " )) {
$response = " Error mkdir. Failed to create dir " . $upload_dir . " signatures/ " ;
$error ++ ;
}
}
if ( ! $error ) {
$return = file_put_contents ( $upload_dir . $filename , $data );
if ( $return == false ) {
$error ++ ;
$response = 'Error file_put_content: failed to create signature file.' ;
}
}
if ( ! $error ) {
// Defined modele of doc
$last_main_doc_file = $object -> last_main_doc ;
$directdownloadlink = $object -> getLastMainDocLink ( 'fichinter' ); // url to download the $object->last_main_doc
if ( preg_match ( '/\.pdf/i' , $last_main_doc_file )) {
// TODO Use the $last_main_doc_file to defined the $newpdffilename and $sourcefile
$newpdffilename = $upload_dir . $ref . " _signed- " . $date . " .pdf " ;
$sourcefile = $upload_dir . $ref . " .pdf " ;
if ( dol_is_file ( $sourcefile )) {
// We build the new PDF
$pdf = pdf_getInstance ();
if ( class_exists ( 'TCPDF' )) {
$pdf -> setPrintHeader ( false );
$pdf -> setPrintFooter ( false );
}
$pdf -> SetFont ( pdf_getPDFFont ( $langs ));
if ( getDolGlobalString ( 'MAIN_DISABLE_PDF_COMPRESSION' )) {
$pdf -> SetCompression ( false );
}
//$pdf->Open();
$pagecount = $pdf -> setSourceFile ( $sourcefile ); // original PDF
$s = array (); // Array with size of each page. Exemple array(w'=>210, 'h'=>297);
for ( $i = 1 ; $i < ( $pagecount + 1 ); $i ++ ) {
try {
$tppl = $pdf -> importPage ( $i );
$s = $pdf -> getTemplatesize ( $tppl );
$pdf -> AddPage ( $s [ 'h' ] > $s [ 'w' ] ? 'P' : 'L' );
$pdf -> useTemplate ( $tppl );
} catch ( Exception $e ) {
dol_syslog ( " Error when manipulating some PDF by onlineSign: " . $e -> getMessage (), LOG_ERR );
$response = $e -> getMessage ();
$error ++ ;
}
}
// A signature image file is 720 x 180 (ratio 1/4) but we use only the size into PDF
// TODO Get position of box from PDF template
$xforimgstart = 105 ;
$yforimgstart = ( empty ( $s [ 'h' ]) ? 250 : $s [ 'h' ] - 57 );
$wforimg = $s [ 'w' ] / 1 - ( $xforimgstart + 16 );
$pdf -> Image ( $upload_dir . $filename , $xforimgstart , $yforimgstart , $wforimg , round ( $wforimg / 4 ));
//$pdf->Close();
$pdf -> Output ( $newpdffilename , " F " );
// Index the new file and update the last_main_doc property of object.
$object -> indexFile ( $newpdffilename , 1 );
}
if ( ! $error ) {
$response = " success " ;
}
} elseif ( preg_match ( '/\.odt/i' , $last_main_doc_file )) {
// Adding signature on .ODT not yet supported
// TODO
} else {
// Document format not supported to insert online signature.
// We should just create an image file with the signature.
}
2022-09-29 14:28:58 +02:00
}
2021-10-15 16:58:59 +02:00
}
} else {
2021-12-25 17:08:40 +01:00
$error ++ ;
2021-10-15 16:58:59 +02:00
$response = 'error signature_not_found' ;
}
}
2021-12-25 17:08:40 +01:00
if ( $error ) {
http_response_code ( 501 );
}
2021-10-15 16:58:59 +02:00
echo $response ;
