WebSVN – Applications.annuaire – Diff – //trunk/jrest/services/InscritsRss.php

 Class InscritsRss extends JRestService {
 	public function getElement($uid){
 	    $mail_utilisateur = $uid[0];
+	    $admin = (isset($uid[1])) ? $uid[1] : false;
+	    $id_annuaire = Config::get('annuaire_defaut');
+	    if($admin) {
-	    $mail_utilisateur = $uid[0];
+	    	$this->authentifier();
-	    $id_annuaire = Config::get('annuaire_defaut');
+	    }
 	    $controleur = new RSSControleur();
+		$inscrits = $controleur->obtenirDerniersInscritsRSS($id_annuaire, $admin);
+		$this->envoyer($inscrits, 'text/xml',Config::get('sortie_encodage'), false);
+	}
+	public function authentifier() {
+        if (!isset($_SERVER['PHP_AUTH_USER'])) {
+        header('WWW-Authenticate: Basic realm="www.tela-botanica.org"');
+        header('HTTP/1.0 401 Unauthorized');
+        header('Content-type: text/html; charset=UTF-8');
+        echo 'Accès interdit';
+        exit;
+        } else {
+            if($this->verifierAcces($_SERVER['PHP_AUTH_USER'])) {
+                return ;
+            }
+            else
+            {
+                header('WWW-Authenticate: Basic realm="www.tela-botanica.org"');
+                header('HTTP/1.0 401 Unauthorized');
+                header('Content-type: text/html; charset=UTF-8');
+                echo 'Accès interdit';
+                exit ;
+            }
+        }
+    }
+    public function verifierAcces($id) {
+        $query="SELECT ".$this->config['database_ident']['ann_id']." as name FROM ".$this->config['database_ident']['database'].'.'.$this->config['database_ident']['annuaire']." WHERE ".$this->config['database_ident']['ann_id']." =".$this->bdd->quote($id)
+        ." AND ".$this->config['database_ident']['ann_pwd']." = ".$this->config['database_ident']['pass_crypt_funct']."(".$this->bdd->quote($_SERVER['PHP_AUTH_PW']).")" ;
+        $res = $this->bdd->query($query);
+        if($res == "") {
+            return false ;
+        }
+        if (DB::isError($res)) {
+            die($res->getMessage());
+        }
 		$inscrits = $controleur->obtenirDerniersInscritsRSS($id_annuaire);
         return true ;
 		$this->envoyer($inscrits, 'text/xml',Config::get('sortie_encodage'), false);

Subversion Repositories Applications.annuaire

(root)//trunk/jrest/services/InscritsRss.php – Rev 74 → 204