projects/emailtemplate.it
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

sdsd

Browse Source
This commit is contained in:
Lars Gebhardt-Kusche
2025-12-08 01:07:43 +01:00
parent 3ec6fdd6d6
commit ae4f32abce
1 changed files with 28 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

30
src/ApiKernel.php
View File

@@ -1863,6 +1863,7 @@ class ApiKernel
private function getCustomerSettings(int $customerId): array private function getCustomerSettings(int $customerId): array
{ {
if ($customerId <= 0) return []; if ($customerId <= 0) return [];
$this->ensureCustomerSettingsTableExists();
$table = $this->customerSettingsTable(); $table = $this->customerSettingsTable();
$stmt = $this->pdo->prepare("SELECT * FROM `$table` WHERE `customer_id` = :id LIMIT 1"); $stmt = $this->pdo->prepare("SELECT * FROM `$table` WHERE `customer_id` = :id LIMIT 1");
$stmt->execute([':id' => $customerId]); $stmt->execute([':id' => $customerId]);
@@ -1873,6 +1874,7 @@ class ApiKernel
private function saveCustomerSettings(int $customerId, array $data): array private function saveCustomerSettings(int $customerId, array $data): array
{ {
if ($customerId <= 0) return []; if ($customerId <= 0) return [];
$this->ensureCustomerSettingsTableExists();
$allowed = ['bridge_url', 'bridge_token', 'sender_token', 'external_api_token', 'bridge_tables']; $allowed = ['bridge_url', 'bridge_token', 'sender_token', 'external_api_token', 'bridge_tables'];
$fields = array_intersect_key($data, array_flip($allowed)); $fields = array_intersect_key($data, array_flip($allowed));
if (!$fields) return $this->getCustomerSettings($customerId); if (!$fields) return $this->getCustomerSettings($customerId);
@@ -1990,6 +1992,29 @@ class ApiKernel
return 'emailtemplate_customer_settings'; return 'emailtemplate_customer_settings';
} }
private function ensureCustomerSettingsTableExists(): void
{
$table = $this->customerSettingsTable();
if ($this->tableExists($table)) {
return;
}
$sql = <<<SQL
CREATE TABLE IF NOT EXISTS `$table` (
`customer_id` int(10) unsigned NOT NULL,
`bridge_url` varchar(500) DEFAULT NULL,
`bridge_token` varchar(255) DEFAULT NULL,
`sender_token` varchar(255) DEFAULT NULL,
`external_api_token` varchar(255) DEFAULT NULL,
`bridge_tables` text DEFAULT NULL,
`created_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP,
`updated_at` timestamp NOT NULL DEFAULT CURRENT_TIMESTAMP ON UPDATE CURRENT_TIMESTAMP,
PRIMARY KEY (`customer_id`)
) ENGINE=InnoDB DEFAULT CHARSET=utf8mb4 COLLATE=utf8mb4_general_ci
SQL;
$this->pdo->exec($sql);
$this->tableExistsCache[$table] = true;
}
private function generateToken(int $length = 48): string private function generateToken(int $length = 48): string
{ {
return rtrim(strtr(base64_encode(random_bytes($length)), '+/', '-_'), '='); return rtrim(strtr(base64_encode(random_bytes($length)), '+/', '-_'), '=');
@@ -2215,13 +2240,14 @@ class ApiKernel
return password_hash($password, PASSWORD_DEFAULT); return password_hash($password, PASSWORD_DEFAULT);
} }
private function ensureOwner(array $user): void private function ensureOwner(array &$user): void
{ {
$this->ensureRole($user, ['owner']); $this->ensureRole($user, ['owner']);
} }
private function ensureRole(array $user, array $roles): void private function ensureRole(array &$user, array $roles): void
{ {
$user = $this->ensureAuthUserHydrated($user);
$role = strtolower((string)($user['role'] ?? '')); $role = strtolower((string)($user['role'] ?? ''));
$allowed = array_values(array_unique(array_map('strtolower', $roles))); $allowed = array_values(array_unique(array_map('strtolower', $roles)));
if (!in_array($role, $allowed, true)) { if (!in_array($role, $allowed, true)) {