CDCC
/
inventarioSustancias
Watch 2
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Proyecto en colaboración con OPASO
44 Commits
1 Branch
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
inventarioSustancias/public_html/session.php

session.php 3.4KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129 
  1. <?php

  2. /*  Authors         :   Carlos C. Corrada-Bravo

  3.                         David J. Ortiz-Rivera

  4. 

  5.     Organization    :   Centro de Desarrollo y Consultoria Computacional

  6.     Project         :   OPASO Material Registry   

  7.     File            :   session.php

  8.     Description     :   Handle google login for OPASO */

  9. 

  10. 	/* verify token */

  11. 	if(isset($_GET["code"])){

  12.     	/* initialize client */

  13. 		require_once "vendor/autoload.php";

  14. 		$config = "config/o_auth.json";

  15.     	$client = new Google_Client();

  16.     	$client->setAuthConfig($config);

  17. 		

  18. 		/* fetch token */

  19. 		$token = $client->fetchAccessTokenWithAuthCode($_GET["code"]);

  20. 

  21. 		/* handle expired token */

  22. 		if(isset($token["error"])){	

  23. 			header("Location: /?error=token_expired");

  24. 			die();

  25. 		}

  26. 

  27. 		/* verify login */

  28. 		else{

  29. 			/* extract user email */

  30. 			require "config/database.php";

  31. 			$client->setAccessToken($token["access_token"]);

  32. 			$google_oauth = new Google_Service_Oauth2($client);

  33. 			$account_info = $google_oauth->userinfo->get();

  34. 			$email = $account_info->email;

  35. 

  36. 			/* fetch user data */

  37. 			$sign_in = $db->prepare("SELECT person_id,person_name FROM Person WHERE email=?");

  38. 			$sign_in->bind_param("s",$email);

  39. 			$sign_in->execute();

  40. 			$sign_in->bind_result($person_id,$person_name);

  41. 			$sign_in->store_result();

  42. 

  43. 			/* registered email */

  44. 			if($sign_in->fetch()){

  45. 				$authorized = $db->prepare("SELECT Authorized.lab_id,Laboratory.lab_room,Authorized.access_level FROM Authorized INNER JOIN Laboratory ON Laboratory.lab_id = Authorized.lab_id WHERE person_id=? AND Authorized.access_level!='none' ORDER BY Laboratory.lab_room ASC");

  46. 

  47. 				$authorized->bind_param("i",$person_id);

  48. 				$authorized->execute();

  49. 				$authorized->bind_result($lab_id,$lab_room,$access_level);

  50. 				$authorized->store_result();

  51. 				/* start user session */

  52. 				start_session();

  53. 

  54. 				$_SESSION["authorized"] = array();

  55. 				$access_level = "technician";

  56. 				$pi_flag = false;

  57. 				$admin_flag = false;

  58. 

  59. 				/* fetch entries */

  60. 				while($authorized->fetch()){

  61. 					if($access_level == "investigator"){

  62. 						$pi_flag = true;

  63. 					}

  64. 

  65. 					elseif($access_level == "admin"){

  66. 						$admin_flag = true;

  67. 					}

  68. 

  69. 			    	$_SESSION["authorized"][$lab_id] = array("lab_room" => $lab_room, "access_level" => $access_level);

  70. 				}

  71. 

  72. 				/* set user data */

  73. 				$_SESSION["person_id"] = $person_id;

  74. 				$_SESSION["person_name"] = explode(" ",$person_name)[0];

  75. 

  76. 				/* set highest access level */

  77. 				if($pi_flag){

  78. 					$access_level = "investigator";

  79. 				}

  80. 

  81. 				elseif($admin_flag){

  82. 					$access_level = "admin";

  83. 				}

  84. 

  85. 				$_SESSION["access_level"] = $access_level;

  86.     			$_SESSION["created"] = time();

  87. 				$_SESSION["last_activity"] = time();

  88. 

  89. 				/* save lab data */

  90. 				while($authorized->fetch()){

  91. 			    	$_SESSION["authorized"][$lab_id] = array("lab_room" => $lab_room, "access_level" => $access_level);

  92. 				}

  93. 

  94. 				/* set user data */

  95. 				$_SESSION["person_id"] = $person_id;

  96. 				$_SESSION["person_name"] = explode(" ",$person_name)[0];

  97.     			$_SESSION["created"] = time();

  98. 				$_SESSION["last_activity"] = time();

  99. 				

  100. 				$sign_in->close();

  101. 				$authorized->close();

  102. 				header("Location: menu");

  103. 				exit();

  104. 			}

  105. 

  106. 			/* unregistered email */ 

  107. 			else{

  108. 				header("Location: /?error=login_failed");

  109. 				die();

  110. 			}

  111. 				

  112. 			$sign_in->close();

  113. 		}

  114. 	}

  115. 

  116. 	/* redirect to index */

  117. 	else{

  118. 		header("Location: /");

  119. 		die();

  120. 	}

  121. 

  122. 	/* start session */

  123. 	function start_session(){

  124. 		/* start user session */

  125. 		if(!isset($_SESSION)){

  126. 			session_start();

  127. 	    }

  128. 	}

  129. ?>