SSO (Single Sign-On)

README.md

@@ -4,7 +4,7 @@ Desenvolvido pela equipe Blitz, o projeto tem como finalidade gerenciar os está
 
 <p align="center">
 <a href="https://travis-ci.org/blitzcti/sgecti"><img src="https://travis-ci.org/blitzcti/sgecti.svg?branch=master" alt="Build Status"></a>
-<a href="https://github.com/laravel/laravel"><img src="https://img.shields.io/badge/Laravel-6.5.1-red.svg" alt="Laravel Version"></a>
+<a href="https://github.com/laravel/laravel"><img src="https://img.shields.io/badge/Laravel-6.18.0-red.svg" alt="Laravel Version"></a>
 <a href="https://github.com/ColorlibHQ/AdminLTE"><img src="https://img.shields.io/badge/AdminLTE-2.4.18-blue.svg" alt="AdminLTE Version"></a>
 </p>
 
@@ -119,7 +119,7 @@ Para isso, crie uma nova tarefa que execute o Laravel Scheduler:
 3. Ações
 
     Crie uma nova ação com as seguintes opções:
-    1. Em `Programa/script` selecione o executável do PHP;
+    1. Em `Programa/script`, selecione o executável do PHP;
     2. Em `Adicione argumentos`, digite `artisan schedule:run`;
     3. Em `Iniciar em`, insira o diretório onde o SGE está instalado.
 

app/APIUtils.php

@@ -156,7 +156,7 @@ public static function search(array $array, string $q, $col = null)
     /**
      * Properly sorts an array
      *
-     * @param $array
+     * @param array $array
      * @param null|string $col
      */
     public static function sort(array &$array, $col = null)

app/AdminLTE/LangFilter.php

@@ -0,0 +1,31 @@
+<?php
+
+namespace App\AdminLTE;
+
+use JeroenNoten\LaravelAdminLte\Menu\Builder;
+
+class LangFilter extends \JeroenNoten\LaravelAdminLte\Menu\Filters\LangFilter
+{
+    public function transform($item, Builder $builder)
+    {
+        if (isset($item['header'])) {
+            $item['header'] = $this->getTranslation($item['header']) ?? $item['header'];
+        }
+        if (isset($item['text'])) {
+            $item['text'] = $this->getTranslation($item['text']) ?? $item['text'];
+        }
+
+        return $item;
+    }
+
+    protected function getTranslation($item)
+    {
+        if ($this->langGenerator->has("menu.{$item}")) {
+            return $this->langGenerator->get("menu.{$item}");
+        } elseif ($this->langGenerator->has("adminlte::menu.{$item}")) {
+            return $this->langGenerator->get("adminlte::menu.{$item}");
+        }
+
+        return $item;
+    }
+}

app/AdminLTE/RoleFilter.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace App\AdminLTE;
+
+use App\Auth;
+use JeroenNoten\LaravelAdminLte\Menu\Builder;
+use JeroenNoten\LaravelAdminLte\Menu\Filters\FilterInterface;
+
+class RoleFilter implements FilterInterface
+{
+    public function transform($item, Builder $builder)
+    {
+        if (!$this->isVisible($item)) {
+            return false;
+        }
+
+        return $item;
+    }
+
+    protected function isVisible($item)
+    {
+        if (!isset($item['role'])) {
+            return true;
+        }
+
+        return Auth::user()->hasRole($item['role']);
+    }
+}

app/AdminLTE/SSOFilter.php

@@ -0,0 +1,28 @@
+<?php
+
+namespace App\AdminLTE;
+
+use JeroenNoten\LaravelAdminLte\Menu\Builder;
+use JeroenNoten\LaravelAdminLte\Menu\Filters\FilterInterface;
+
+class SSOFilter implements FilterInterface
+{
+
+    public function transform($item, Builder $builder)
+    {
+        if (!$this->isVisible($item)) {
+            return false;
+        }
+
+        return $item;
+    }
+
+    protected function isVisible($item)
+    {
+        if (!isset($item['sso'])) {
+            return true;
+        }
+
+        return $item['sso'] == config('broker.useSSO');
+    }
+}

app/Broker.php

@@ -9,7 +9,7 @@
 
 class Broker extends \Jasny\SSO\Broker
 {
-    public function __construct($cookie_lifetime = 3600)
+    public function __construct(int $cookie_lifetime = 3600)
     {
         $url = config('broker.url');
         $broker = config('broker.name');
@@ -21,6 +21,11 @@ public function __construct($cookie_lifetime = 3600)
         $this->saveToken();
     }
 
+    public function createUser($data)
+    {
+        $data;
+    }
+
     public function serverLoginPage()
     {
         $parameters = [
@@ -32,10 +37,21 @@ public function serverLoginPage()
         return $this->generateCommandUrl('loginForm', $parameters);
     }
 
+    public function serverPasswordPage()
+    {
+        $parameters = [
+            'return_url' => $this->getPreviousUrl(),
+            'broker' => $this->broker,
+            'session_id' => $this->getSessionId(),
+        ];
+
+        return $this->generateCommandUrl('passwordForm', $parameters);
+    }
+
     /**
      * Attach client session to broker session in SSO server.
      *
-     * @param null $returnUrl
+     * @param null|string $returnUrl
      * @return void
      */
     public function attach($returnUrl = null)
@@ -44,7 +60,7 @@ public function attach($returnUrl = null)
             'return_url' => $this->getCurrentUrl(),
             'broker' => $this->broker,
             'token' => $this->token,
-            'checksum' => hash('sha256', 'attach' . $this->token . $this->secret)
+            'checksum' => hash('sha256', "attach{$this->token}{$this->secret}")
         ];
 
         $attachUrl = $this->generateCommandUrl('attach', $parameters);
@@ -70,14 +86,14 @@ public function getUserInfo()
     /**
      * Login client to SSO server with user credentials.
      *
-     * @param string $email
-     * @param string $password
+     * @param null|string $email
+     * @param null|string $password
      * @param bool $remember
      *
      * @return bool
      * @throws GuzzleException
      */
-    public function login($email = null, $password = null, $remember = false)
+    public function login($email = null, $password = null, bool $remember = false)
     {
         $this->userinfo = $this->makeRequest('POST', 'login', ["email" => $email, "password" => $password, "remember" => $remember]);
 
@@ -116,11 +132,11 @@ protected function generateCommandUrl($command, $parameters = [])
             $query = '?' . http_build_query($parameters);
         }
 
-        if ($command == 'loginForm') {
-            return $this->url . '/loginForm' . $query;
+        if ($command == 'loginForm' || $command == 'passwordForm') {
+            return "{$this->url}/{$command}{$query}";
         }
 
-        return $this->url . '/api/sso/' . $command . $query;
+        return "{$this->url}/api/sso/{$command}{$query}";
     }
 
     /**
@@ -130,7 +146,7 @@ protected function generateCommandUrl($command, $parameters = [])
      */
     protected function getSessionId()
     {
-        $checksum = hash('sha256', 'session' . $this->token . $this->secret);
+        $checksum = hash('sha256', "session{$this->token}{$this->secret}");
         return "SSO-{$this->broker}-{$this->token}-$checksum";
     }
 
@@ -184,7 +200,7 @@ protected function makeRequest($method, $command, $parameters = [])
 
         $headers = [
             'Accept' => 'application/json',
-            'Authorization' => 'Bearer ' . $this->getSessionId(),
+            'Authorization' => "Bearer {$this->getSessionId()}",
         ];
 
         switch ($method) {
@@ -228,7 +244,7 @@ protected function redirect($url, $parameters = [], $httpResponseCode = 307)
             $query .= http_build_query($parameters);
         }
 
-        app()->abort($httpResponseCode, '', ['Location' => $url . $query]);
+        app()->abort($httpResponseCode, '', ['Location' => "{$url}{$query}"]);
     }
 
     /**
@@ -241,6 +257,16 @@ protected function getCurrentUrl()
         return url()->full();
     }
 
+    /**
+     * Getting previous url which can be used as return to url.
+     *
+     * @return string
+     */
+    protected function getPreviousUrl()
+    {
+        return url()->previous();
+    }
+
     /**
      * Cookie name in which we save unique client token.
      *

app/Console/Kernel.php

@@ -2,7 +2,6 @@
 
 namespace App\Console;
 
-use App\Models\Agreement;
 use App\Models\BackupConfiguration;
 use App\Models\Coordinator;
 use App\Models\FinalReport;
@@ -45,8 +44,7 @@ private function isConnected()
     protected function schedule(Schedule $schedule)
     {
         if ($this->isConnected()) {
-            $backupConfig = new BackupConfiguration();
-            if (Schema::hasTable($backupConfig->getTable())) {
+            if (Schema::hasTable((new BackupConfiguration())->getTable())) {
                 $backupConfig = BackupConfiguration::findOrFail(1);
                 $days = $backupConfig->cronDays();
                 $hour = $backupConfig->getHour();
@@ -55,11 +53,6 @@ protected function schedule(Schedule $schedule)
                 $schedule->call('App\Http\Controllers\Admin\LogController@clearLogs')->monthly()->at('00:00');
             }
 
-            if (Schema::hasTable((new User())->getTable())
-                && Schema::hasTable((new Agreement())->getTable())) {
-                $schedule->call('App\Http\Controllers\Coordinator\AgreementController@deleteUsers')->daily()->at('00:00');
-            }
-
             if (Schema::hasTable((new User())->getTable())
                 && Schema::hasTable((new Coordinator())->getTable())
                 && Schema::hasTable((new DatabaseNotification())->getTable())) {

app/Http/Controllers/API/Coordinator/InternshipController.php

@@ -55,7 +55,7 @@ public function getById($id)
 
     public function getByRA($ra)
     {
-        $internships = Internship::where('ra', '=', $ra)->get()->sortBy('id');
+        $internships = Internship::where('ra', '=', $ra)->orderBy('id')->get();
 
         return response()->json(
             $internships,

app/Http/Controllers/API/Coordinator/JobController.php

@@ -55,7 +55,7 @@ public function getById($id)
 
     public function getByRA($ra)
     {
-        $jobs = Job::where('ra', '=', $ra)->get()->sortBy('id');
+        $jobs = Job::where('ra', '=', $ra)->orderBy('id')->get();
 
         return response()->json(
             $jobs,

app/Http/Controllers/API/ExternalAPISController.php

@@ -4,17 +4,25 @@
 
 use App\APIUtils;
 use App\Http\Controllers\Controller;
+use Carbon\Carbon;
 use Illuminate\Http\Request;
+use Illuminate\Support\Facades\Cache;
 
 class ExternalAPISController extends Controller
 {
     public function getUFS(Request $request)
     {
-        $url = APIUtils::parseURL('apis.ufs.url');
-        $column = config('apis.ufs.column');
-        $json = APIUtils::getData($url);
-        $json = array_column($json, $column);
-        APIUtils::sort($json);
+        if (Cache::has('extapi.ufs')) {
+            $json = Cache::get('extapi.ufs');
+        } else {
+            $url = APIUtils::parseURL('apis.ufs.url');
+            $column = config('apis.ufs.column');
+            $json = APIUtils::getData($url);
+            $json = array_column($json, $column);
+            APIUtils::sort($json);
+
+            Cache::put('extapi.ufs', $json, Carbon::now()->addDay());
+        }
 
         if (!empty($request->q)) {
             $json = APIUtils::search($json, $request->q);
@@ -48,10 +56,17 @@ public function getCities($uf, Request $request)
             );
         }
 
-        $url = APIUtils::parseURL('apis.ufs.url');
-        $column = config('apis.ufs.column');
-        $json = APIUtils::getData($url);
-        $json = array_column($json, 'id', $column);
+        if (Cache::has('extapi.ufsid')) {
+            $json = Cache::get('extapi.ufsid');
+        } else {
+            $url = APIUtils::parseURL('apis.ufs.url');
+            $column = config('apis.ufs.column');
+            $json = APIUtils::getData($url);
+            $json = array_column($json, 'id', $column);
+
+            Cache::put('extapi.ufsid', $json, Carbon::now()->addDay());
+        }
+
 
         $ufId = 0;
         foreach ($json as $data => $id) {
@@ -74,11 +89,18 @@ public function getCities($uf, Request $request)
             );
         }
 
-        $url = APIUtils::parseURL('apis.cities.url', $ufId);
-        $column = config('apis.cities.column');
-        $json = APIUtils::getData($url);
-        $json = array_column($json, $column);
-        APIUtils::sort($json);
+        if (Cache::has("extapi.cities_{$ufId}")) {
+            $json = Cache::get("extapi.cities_{$ufId}");
+        } else {
+            $url = APIUtils::parseURL('apis.cities.url', $ufId);
+            $column = config('apis.cities.column');
+            $json = APIUtils::getData($url);
+            $json = array_column($json, $column);
+            APIUtils::sort($json);
+
+            Cache::put("extapi.cities_{$ufId}", $json, Carbon::now()->addDay());
+        }
+
 
         if (!empty($request->q)) {
             $json = APIUtils::search($json, $request->q);