No OneTemporary
Actions

Size

17 KB

Referenced Files

None

Subscribers

None

View Options

	diff --git a/src/applications/auth/controller/PhabricatorAuthRevokeTokenController.php b/src/applications/auth/controller/PhabricatorAuthRevokeTokenController.php
	index 6d516916eb..8e063ba565 100644
	--- a/src/applications/auth/controller/PhabricatorAuthRevokeTokenController.php
	+++ b/src/applications/auth/controller/PhabricatorAuthRevokeTokenController.php
	@@ -1,72 +1,75 @@
	<?php

	final class PhabricatorAuthRevokeTokenController
	extends PhabricatorAuthController {

	public function handleRequest(AphrontRequest $request) {
	$viewer = $this->getViewer();
	$id = $request->getURIData('id');

	$is_all = ($id === 'all');

	$query = id(new PhabricatorAuthTemporaryTokenQuery())
	->setViewer($viewer)
	->withTokenResources(array($viewer->getPHID()));
	if (!$is_all) {
	$query->withIDs(array($id));
	}

	$tokens = $query->execute();
	foreach ($tokens as $key => $token) {
	if (!$token->isRevocable()) {
	// Don't revoke unrevocable tokens.
	unset($tokens[$key]);
	}
	}

	- $panel_uri = '/settings/panel/tokens/';
	+ $panel_uri = id(new PhabricatorTokensSettingsPanel())
	+ ->setViewer($viewer)
	+ ->setUser($viewer)
	+ ->getPanelURI();

	if (!$tokens) {
	return $this->newDialog()
	->setTitle(pht('No Matching Tokens'))
	->appendParagraph(
	pht('There are no matching tokens to revoke.'))
	->appendParagraph(
	pht(
	'(Some types of token can not be revoked, and you can not revoke '.
	'tokens which have already expired.)'))
	->addCancelButton($panel_uri);
	}

	if ($request->isDialogFormPost()) {
	foreach ($tokens as $token) {
	$token->revokeToken();
	}
	return id(new AphrontRedirectResponse())->setURI($panel_uri);
	}

	if ($is_all) {
	$title = pht('Revoke Tokens?');
	$short = pht('Revoke Tokens');
	$body = pht(
	'Really revoke all tokens? Among other temporary authorizations, '.
	'this will disable any outstanding password reset or account '.
	'recovery links.');
	} else {
	$title = pht('Revoke Token?');
	$short = pht('Revoke Token');
	$body = pht(
	'Really revoke this token? Any temporary authorization it enables '.
	'will be disabled.');
	}

	return $this->newDialog()
	->setTitle($title)
	->setShortTitle($short)
	->appendParagraph($body)
	->addSubmitButton(pht('Revoke'))
	->addCancelButton($panel_uri);
	}


	}
	diff --git a/src/applications/conduit/controller/PhabricatorConduitController.php b/src/applications/conduit/controller/PhabricatorConduitController.php
	index 000d01f888..b29c05f2af 100644
	--- a/src/applications/conduit/controller/PhabricatorConduitController.php
	+++ b/src/applications/conduit/controller/PhabricatorConduitController.php
	@@ -1,274 +1,281 @@
	<?php

	abstract class PhabricatorConduitController extends PhabricatorController {

	protected function buildSideNavView() {
	$viewer = $this->getRequest()->getUser();

	$nav = new AphrontSideNavFilterView();
	$nav->setBaseURI(new PhutilURI($this->getApplicationURI()));

	id(new PhabricatorConduitSearchEngine())
	->setViewer($viewer)
	->addNavigationItems($nav->getMenu());

	$nav->addLabel('Logs');
	$nav->addFilter('log', pht('Call Logs'));

	$nav->selectFilter(null);

	return $nav;
	}

	public function buildApplicationMenu() {
	return $this->buildSideNavView()->getMenu();
	}

	protected function renderExampleBox(ConduitAPIMethod $method, $params) {
	+ $viewer = $this->getViewer();
	+
	$arc_example = id(new PHUIPropertyListView())
	->addRawContent($this->renderExample($method, 'arc', $params));

	$curl_example = id(new PHUIPropertyListView())
	->addRawContent($this->renderExample($method, 'curl', $params));

	$php_example = id(new PHUIPropertyListView())
	->addRawContent($this->renderExample($method, 'php', $params));

	+ $panel_uri = id(new PhabricatorConduitTokensSettingsPanel())
	+ ->setViewer($viewer)
	+ ->setUser($viewer)
	+ ->getPanelURI();
	+
	$panel_link = phutil_tag(
	'a',
	array(
	- 'href' => '/settings/panel/apitokens/',
	+ 'href' => $panel_uri,
	),
	pht('Conduit API Tokens'));

	$panel_link = phutil_tag('strong', array(), $panel_link);

	$messages = array(
	pht(
	'Use the %s panel in Settings to generate or manage API tokens.',
	$panel_link),
	);

	$info_view = id(new PHUIInfoView())
	->setErrors($messages)
	->setSeverity(PHUIInfoView::SEVERITY_NOTICE);

	return id(new PHUIObjectBoxView())
	->setHeaderText(pht('Examples'))
	->setInfoView($info_view)
	->setBackground(PHUIObjectBoxView::BLUE_PROPERTY)
	->addPropertyList($arc_example, pht('arc call-conduit'))
	->addPropertyList($curl_example, pht('cURL'))
	->addPropertyList($php_example, pht('PHP'));
	}

	private function renderExample(
	ConduitAPIMethod $method,
	$kind,
	$params) {

	switch ($kind) {
	case 'arc':
	$example = $this->buildArcanistExample($method, $params);
	break;
	case 'php':
	$example = $this->buildPHPExample($method, $params);
	break;
	case 'curl':
	$example = $this->buildCURLExample($method, $params);
	break;
	default:
	throw new Exception(pht('Conduit client "%s" is not known.', $kind));
	}

	return $example;
	}

	private function buildArcanistExample(
	ConduitAPIMethod $method,
	$params) {

	$parts = array();

	$parts[] = '$ echo ';
	if ($params === null) {
	$parts[] = phutil_tag('strong', array(), '<json-parameters>');
	} else {
	$params = $this->simplifyParams($params);
	$params = id(new PhutilJSON())->encodeFormatted($params);
	$params = trim($params);
	$params = csprintf('%s', $params);
	$parts[] = phutil_tag('strong', array('class' => 'real'), $params);
	}

	$parts[] = ' \| ';
	$parts[] = 'arc call-conduit ';

	$parts[] = '--conduit-uri ';
	$parts[] = phutil_tag(
	'strong',
	array('class' => 'real'),
	PhabricatorEnv::getURI('/'));
	$parts[] = ' ';

	$parts[] = '--conduit-token ';
	$parts[] = phutil_tag('strong', array(), '<conduit-token>');
	$parts[] = ' ';

	$parts[] = $method->getAPIMethodName();

	return $this->renderExampleCode($parts);
	}

	private function buildPHPExample(
	ConduitAPIMethod $method,
	$params) {

	$parts = array();

	$libphutil_path = 'path/to/libphutil/src/__phutil_library_init__.php';

	$parts[] = '<?php';
	$parts[] = "\n\n";

	$parts[] = 'require_once ';
	$parts[] = phutil_var_export($libphutil_path, true);
	$parts[] = ";\n\n";

	$parts[] = '$api_token = "';
	$parts[] = phutil_tag('strong', array(), pht('<api-token>'));
	$parts[] = "\";\n";

	$parts[] = '$api_parameters = ';
	if ($params === null) {
	$parts[] = 'array(';
	$parts[] = phutil_tag('strong', array(), pht('<parameters>'));
	$parts[] = ');';
	} else {
	$params = $this->simplifyParams($params);
	$params = phutil_var_export($params, true);
	$parts[] = phutil_tag('strong', array('class' => 'real'), $params);
	$parts[] = ';';
	}
	$parts[] = "\n\n";

	$parts[] = '$client = new ConduitClient(';
	$parts[] = phutil_tag(
	'strong',
	array('class' => 'real'),
	phutil_var_export(PhabricatorEnv::getURI('/'), true));
	$parts[] = ");\n";

	$parts[] = '$client->setConduitToken($api_token);';
	$parts[] = "\n\n";

	$parts[] = '$result = $client->callMethodSynchronous(';
	$parts[] = phutil_tag(
	'strong',
	array('class' => 'real'),
	phutil_var_export($method->getAPIMethodName(), true));
	$parts[] = ', ';
	$parts[] = '$api_parameters';
	$parts[] = ");\n";

	$parts[] = 'print_r($result);';

	return $this->renderExampleCode($parts);
	}

	private function buildCURLExample(
	ConduitAPIMethod $method,
	$params) {

	$call_uri = '/api/'.$method->getAPIMethodName();

	$parts = array();

	$linebreak = array('\\', phutil_tag('br'), ' ');

	$parts[] = '$ curl ';
	$parts[] = phutil_tag(
	'strong',
	array('class' => 'real'),
	csprintf('%R', PhabricatorEnv::getURI($call_uri)));
	$parts[] = ' ';
	$parts[] = $linebreak;

	$parts[] = '-d api.token=';
	$parts[] = phutil_tag('strong', array(), 'api-token');
	$parts[] = ' ';
	$parts[] = $linebreak;

	if ($params === null) {
	$parts[] = '-d ';
	$parts[] = phutil_tag('strong', array(), 'param');
	$parts[] = '=';
	$parts[] = phutil_tag('strong', array(), 'value');
	$parts[] = ' ';
	$parts[] = $linebreak;
	$parts[] = phutil_tag('strong', array(), '...');
	} else {
	$lines = array();
	$params = $this->simplifyParams($params);

	foreach ($params as $key => $value) {
	$pieces = $this->getQueryStringParts(null, $key, $value);
	foreach ($pieces as $piece) {
	$lines[] = array(
	'-d ',
	phutil_tag('strong', array('class' => 'real'), $piece),
	);
	}
	}

	$parts[] = phutil_implode_html(array(' ', $linebreak), $lines);
	}

	return $this->renderExampleCode($parts);
	}

	private function renderExampleCode($example) {
	require_celerity_resource('conduit-api-css');

	return phutil_tag(
	'div',
	array(
	'class' => 'PhabricatorMonospaced conduit-api-example-code',
	),
	$example);
	}

	private function simplifyParams(array $params) {
	foreach ($params as $key => $value) {
	if ($value === null) {
	unset($params[$key]);
	}
	}
	return $params;
	}

	private function getQueryStringParts($prefix, $key, $value) {
	if ($prefix === null) {
	$head = phutil_escape_uri($key);
	} else {
	$head = $prefix.'['.phutil_escape_uri($key).']';
	}

	if (!is_array($value)) {
	return array(
	$head.'='.phutil_escape_uri($value),
	);
	}

	$results = array();
	foreach ($value as $subkey => $subvalue) {
	$subparts = $this->getQueryStringParts($head, $subkey, $subvalue);
	foreach ($subparts as $subpart) {
	$results[] = $subpart;
	}
	}

	return $results;
	}

	}
	diff --git a/src/applications/conduit/controller/PhabricatorConduitTokenEditController.php b/src/applications/conduit/controller/PhabricatorConduitTokenEditController.php
	index 503456d010..7550f92210 100644
	--- a/src/applications/conduit/controller/PhabricatorConduitTokenEditController.php
	+++ b/src/applications/conduit/controller/PhabricatorConduitTokenEditController.php
	@@ -1,109 +1,108 @@
	<?php

	final class PhabricatorConduitTokenEditController
	extends PhabricatorConduitController {

	public function handleRequest(AphrontRequest $request) {
	$viewer = $request->getViewer();
	$id = $request->getURIData('id');

	if ($id) {
	$token = id(new PhabricatorConduitTokenQuery())
	->setViewer($viewer)
	->withIDs(array($id))
	->withExpired(false)
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->executeOne();
	if (!$token) {
	return new Aphront404Response();
	}

	$object = $token->getObject();

	$is_new = false;
	$title = pht('View API Token');
	} else {
	$object = id(new PhabricatorObjectQuery())
	->setViewer($viewer)
	->withPHIDs(array($request->getStr('objectPHID')))
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->executeOne();
	if (!$object) {
	return new Aphront404Response();
	}

	$token = PhabricatorConduitToken::initializeNewToken(
	$object->getPHID(),
	PhabricatorConduitToken::TYPE_STANDARD);

	$is_new = true;
	$title = pht('Generate API Token');
	$submit_button = pht('Generate Token');
	}

	- if ($viewer->getPHID() == $object->getPHID()) {
	- $panel_uri = '/settings/panel/apitokens/';
	- } else {
	- $panel_uri = '/settings/'.$object->getID().'/panel/apitokens/';
	- }
	+ $panel_uri = id(new PhabricatorConduitTokensSettingsPanel())
	+ ->setViewer($viewer)
	+ ->setUser($object)
	+ ->getPanelURI();

	id(new PhabricatorAuthSessionEngine())->requireHighSecuritySession(
	$viewer,
	$request,
	$panel_uri);

	if ($request->isFormPost()) {
	$token->save();

	if ($is_new) {
	$token_uri = '/conduit/token/edit/'.$token->getID().'/';
	} else {
	$token_uri = $panel_uri;
	}

	return id(new AphrontRedirectResponse())->setURI($token_uri);
	}

	$dialog = $this->newDialog()
	->setTitle($title)
	->addHiddenInput('objectPHID', $object->getPHID());

	if ($is_new) {
	$dialog
	->appendParagraph(pht('Generate a new API token?'))
	->addSubmitButton($submit_button)
	->addCancelButton($panel_uri);
	} else {
	$form = id(new AphrontFormView())
	->setUser($viewer);

	if ($token->getTokenType() === PhabricatorConduitToken::TYPE_CLUSTER) {
	$dialog->appendChild(
	pht(
	'This token is automatically generated by Phabricator, and used '.
	'to make requests between nodes in a Phabricator cluster. You '.
	'can not use this token in external applications.'));
	} else {
	$form->appendChild(
	id(new AphrontFormTextControl())
	->setLabel(pht('Token'))
	->setValue($token->getToken()));
	}

	$dialog
	->appendForm($form)
	->addCancelButton($panel_uri, pht('Done'));
	}

	return $dialog;
	}

	}
	diff --git a/src/applications/conduit/controller/PhabricatorConduitTokenTerminateController.php b/src/applications/conduit/controller/PhabricatorConduitTokenTerminateController.php
	index 466089ebeb..9f1ffd2964 100644
	--- a/src/applications/conduit/controller/PhabricatorConduitTokenTerminateController.php
	+++ b/src/applications/conduit/controller/PhabricatorConduitTokenTerminateController.php
	@@ -1,96 +1,100 @@
	<?php

	final class PhabricatorConduitTokenTerminateController
	extends PhabricatorConduitController {

	public function handleRequest(AphrontRequest $request) {
	$viewer = $request->getViewer();
	$object_phid = $request->getStr('objectPHID');
	$id = $request->getURIData('id');

	if ($id) {
	$token = id(new PhabricatorConduitTokenQuery())
	->setViewer($viewer)
	->withIDs(array($id))
	->withExpired(false)
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->executeOne();
	if (!$token) {
	return new Aphront404Response();
	}

	$tokens = array($token);
	$object_phid = $token->getObjectPHID();

	$title = pht('Terminate API Token');
	$body = pht(
	'Really terminate this token? Any system using this token '.
	'will no longer be able to make API requests.');
	$submit_button = pht('Terminate Token');
	- $panel_uri = '/settings/panel/apitokens/';
	} else {
	$tokens = id(new PhabricatorConduitTokenQuery())
	->setViewer($viewer)
	->withObjectPHIDs(array($object_phid))
	->withExpired(false)
	->requireCapabilities(
	array(
	PhabricatorPolicyCapability::CAN_VIEW,
	PhabricatorPolicyCapability::CAN_EDIT,
	))
	->execute();

	$title = pht('Terminate API Tokens');
	$body = pht(
	'Really terminate all active API tokens? Any systems using these '.
	'tokens will no longer be able to make API requests.');
	$submit_button = pht('Terminate Tokens');
	}

	- $panel_uri = '/settings/panel/apitokens/';
	if ($object_phid != $viewer->getPHID()) {
	$object = id(new PhabricatorObjectQuery())
	->setViewer($viewer)
	->withPHIDs(array($object_phid))
	->executeOne();
	if (!$object) {
	return new Aphront404Response();
	}
	- $panel_uri = '/settings/'.$object->getID().'/panel/apitokens/';
	+ } else {
	+ $object = $viewer;
	}

	+ $panel_uri = id(new PhabricatorConduitTokensSettingsPanel())
	+ ->setViewer($viewer)
	+ ->setUser($object)
	+ ->getPanelURI();
	+
	id(new PhabricatorAuthSessionEngine())->requireHighSecuritySession(
	$viewer,
	$request,
	$panel_uri);

	if (!$tokens) {
	return $this->newDialog()
	->setTitle(pht('No Tokens to Terminate'))
	->appendParagraph(
	pht('There are no API tokens to terminate.'))
	->addCancelButton($panel_uri);
	}

	if ($request->isFormPost()) {
	foreach ($tokens as $token) {
	$token
	->setExpires(PhabricatorTime::getNow() - 60)
	->save();
	}
	return id(new AphrontRedirectResponse())->setURI($panel_uri);
	}

	return $this->newDialog()
	->setTitle($title)
	->addHiddenInput('objectPHID', $object_phid)
	->appendParagraph($body)
	->addSubmitButton($submit_button)
	->addCancelButton($panel_uri);
	}

	}

File Metadata

Mime Type: text/x-diff
Expires: Fri, Mar 14, 7:48 AM (4 h, 5 m)
Storage Engine: blob
Storage Format: Raw Data
Storage Handle: 71691
Default Alt Text: (17 KB)

No OneTemporaryActions

View Options

File Metadata

Event Timeline

No OneTemporary
Actions