Patrick
/
acaresydney_ts
Seguir 1
Destacar 0
Fork 0
Código Incidencias 0 Pull Requests 0 Lanzamientos 0 Wiki Actividad
timesheet source code
No puede seleccionar más de 25 temas Los temas deben comenzar con una letra o número, pueden incluir guiones ('-') y pueden tener hasta 35 caracteres de largo.
115 Commits
1 Rama
1.5MB
Árbol: 54c37ddd75
Ramas Etiquetas
${ item.name }
Crear rama ${ searchTerm }
desde '54c37ddd75'
${ noResults }
acaresydney_ts/XeroOauth2.php

419 líneas
15KB
Original Blame Histórico 

  1. <?php

  2. 

  3. /* xero integration oauth 2 */

  4. 

  5. /* required by XeroOauth2 in 2021 */

  6. 

  7. namespace Biukop;

  8. require_once(dirname(__FILE__) . '/vendor/autoload.php');

  9. // require_once(ABSPATH . 'wp-includes/pluggable.php');

  10. require_once(dirname(__FILE__) . '/Storage.php');

  11. 

  12. use \Carbon_Fields\Container;

  13. use \Carbon_Fields\Field;

  14. use \Carbon_Fields\Carbon_Fields;

  15. use phpDocumentor\Reflection\DocBlock\Tags\Method;

  16. 

  17. class XeroOAuth2

  18. {

  19.     private $office; // parent

  20. 

  21.     private $clientID = '83CC79EEC6A54B4E8C2CA7AD61D1BF69';

  22.     private $clientSecret = 'axgKF-Ri60D89conDFhqZsi1wu7uLdQFGvMpino9nI-nfO3f';

  23. 

  24. 

  25.     public $provider;

  26.     public $options = [

  27.         'scope' => ['openid email profile offline_access assets projects accounting.settings accounting.transactions accounting.contacts accounting.journals.read accounting.reports.read accounting.attachments payroll.employees payroll.payruns payroll.payslip payroll.timesheets payroll.settings files']

  28.     ];

  29. 

  30.     public $storage;

  31.     public $config;

  32.     public $apiAccountingInstance;  //accounting instance

  33.     public $apiPayrollInstance; // payroll au instance

  34.     public $xeroTenantId;

  35. 

  36.     private $shortcodes;

  37.     private $sync;

  38. 

  39.     public function __construct($office)

  40.     {

  41.         $this->office = $office;

  42.         $this->shortcodes = new XeroOauth2ShortCode($this);

  43.         $this->sync = new XeroOauth2Sync($this);

  44.         $this->storage = new StorageClass();

  45. 

  46.         add_action('init', array($this, 'init'));

  47. 

  48.         add_action( 'plugins_loaded', array( '\\Carbon_Fields\\Carbon_Fields', 'boot' ) );

  49.         add_action('carbon_fields_register_fields', array($this, 'build_settings_page'));

  50.         add_action('carbon_fields_container_activated', array($this, 'field_activated'));

  51.         add_action('parse_request', array($this, 'xero_callback'));

  52. 

  53.     }

  54. 

  55.     public function __call($method, $args) {

  56.         error_log("$method is not defined" );

  57.     }

  58. 

  59.     public function sync_users($mininterval, $employeeonly, $clientsonly) {

  60.         $this->sync->sync_users($mininterval, $employeeonly, $clientsonly);

  61.     }

  62. 

  63.     public function init()

  64.     {

  65.         $this->provider = $this->create_provider();

  66.         $this->instant_sync();

  67.     }

  68. 

  69.     public function getTenantId() {

  70.         return $this->xeroTenantId;

  71.     }

  72.     private function create_provider() {

  73.         $provider = new \League\OAuth2\Client\Provider\GenericProvider([

  74.             'clientId' => $this->clientID,

  75.             'clientSecret' =>  $this->clientSecret,

  76.             'redirectUri' => $this->getRedirectURL(),

  77.             'urlAuthorize' => 'https://login.xero.com/identity/connect/authorize',

  78.             'urlAccessToken' => 'https://identity.xero.com/connect/token',

  79.             'urlResourceOwnerDetails' => 'https://api.xero.com/api.xro/2.0/Organisation'

  80.         ]);

  81.         return $provider;

  82.     }

  83. 

  84.     public function load_storage()

  85.     {

  86.         //$this->storage->read_value();

  87.     }

  88. 

  89.     public function boot_carbon()

  90.     {

  91.         \Carbon_Fields\Carbon_Fields::boot();

  92.     }

  93. 

  94. 

  95.     function build_settings_page()

  96.     {

  97.         Container::make('theme_options', __('Xero Integration'))

  98.             ->set_page_parent('options-general.php')

  99.             ->add_fields(array(

  100.                 Field::make('text', 'xero_oauth2state', 'Xero Oauth2 State')

  101.                     ->set_attribute('maxLength', 2048)

  102.                     ->set_attribute('readOnly', true)

  103.                     ->set_default_value($this->storage->getOauth2State()),

  104.                 Field::make('text', 'xero_token', 'Xero Token')

  105.                     ->set_attribute('maxLength', 2048)

  106.                     ->set_attribute('readOnly', true)

  107.                     ->set_default_value($this->storage->getSession()['token']),

  108.                 Field::make('text', 'xero_refresh_token', 'RefreshToken')

  109.                     ->set_attribute('readOnly', true)

  110.                     ->set_default_value($this->storage->getSession()['refresh_token']),

  111.                 Field::make('text', 'xero_id_token', 'ID Token')

  112.                     ->set_attribute('readOnly', true)

  113.                     ->set_default_value($this->storage->getSession()['id_token']),

  114.                 Field::make('text', 'xero_tenant_id', 'Tenant ID')

  115.                     ->set_attribute('readOnly', true)

  116.                     ->set_default_value($this->storage->getSession()['tenant_id']),

  117.                 Field::make('text', 'xero_expires', 'Expires')

  118.                     ->set_attribute('readOnly', true)

  119.                     ->set_default_value($this->storage->getSession()['expires']),

  120.                 Field::make('text', 'xero_expires_human', 'Expires')

  121.                     ->set_attribute('readOnly', true)

  122.                     ->set_default_value($this->storage->getSession()['expires_human']),

  123. 

  124.                 Field::make('html', 'crb_information_text')

  125.                     ->set_html('<h1>Connect/Reconnect</h2><p>if the above field is empty,

  126.         or the expire date looks suspicous, please reconnect to XeroOauth2 </p>

  127.     <form action="/">

  128.         <input type="hidden" name="xero_reauth" value="1" />

  129.         <input type="submit" class="button button-primary button-large" value="Xero Connect" />

  130.     </form>')

  131.             ));

  132. 

  133.         $this->storage->read_value();

  134.     }

  135. 

  136. 

  137.     function field_activated()

  138.     {

  139.         $this->storage->read_value();

  140.         $xeroTenantId = (string)$this->storage->getSession()['tenant_id'];

  141.         if ($xeroTenantId == "") {

  142.             $this->startAuthorization();

  143.         } else {

  144.             $this->refresh_token();

  145.         }

  146.     }

  147. 

  148.     public function startAuthorization()

  149.     {

  150.         // This returns the authorizeUrl with necessary parameters applied (e.g. state).

  151.         $authorizationUrl = $this->provider->getAuthorizationUrl($this->options);

  152. 

  153.         // Save the state generated for you and store it to the session.

  154.         // For security, on callback we compare the saved state with the one returned to ensure they match.

  155.         $this->storage->setOauth2State($this->provider->getState());

  156. 

  157.         // Redirect the user to the authorization URL.

  158.         header('Location: ' . $authorizationUrl);

  159.         exit();

  160.     }

  161. 

  162. 

  163.     function xero_callback()

  164.     {

  165.         if (isset($_GET['xero_reauth'])) {

  166.             $this->startAuthorization();

  167.             return;

  168.         }

  169.         if (!isset($_GET['xero_callback'])) {

  170.             return;

  171.         }

  172.         // If we don't have an authorization code then get one

  173.         if (!isset($_GET['code'])) {

  174.             echo "Something went wrong, no authorization code found";

  175.             exit("Something went wrong, no authorization code found");

  176. 

  177.             // Check given state against previously stored one to mitigate CSRF attack

  178.         } elseif (empty($_GET['state']) || ($_GET['state'] !== $this->storage->getOauth2State())) {

  179.             echo "Invalid State";

  180.             $this->storage->setOauth2State("");

  181.             exit('Invalid state');

  182.         } else {

  183. 

  184.             try {

  185.                 // Try to get an access token using the authorization code grant.

  186.                 $accessToken = $this->provider->getAccessToken('authorization_code', [

  187.                     'code' => $_GET['code']

  188.                 ]);

  189. 

  190.                 $config = \XeroAPI\XeroPHP\Configuration::getDefaultConfiguration()->setAccessToken((string)$accessToken->getToken());

  191.                 $identityInstance = new \XeroAPI\XeroPHP\Api\IdentityApi(

  192.                     new \GuzzleHttp\Client(),

  193.                     $config

  194.                 );

  195. 

  196.                 $result = $identityInstance->getConnections();

  197. 

  198.                 // Save my tokens, expiration tenant_id

  199.                 $this->storage->setToken(

  200.                     $accessToken->getToken(),

  201.                     $accessToken->getExpires(),

  202.                     $result[0]->getTenantId(),

  203.                     $accessToken->getRefreshToken(),

  204.                     $accessToken->getValues()["id_token"]

  205.                 );

  206. 

  207.                 // related to $this->build_settings_page

  208.                 $url = "/wp-admin/options-general.php?page=crb_carbon_fields_container_xero_integration.php";

  209.                 header('Location: ' . $url);

  210.                 exit();

  211. 

  212.             } catch (\League\OAuth2\Client\Provider\Exception\IdentityProviderException $e) {

  213.                 echo "Xero Callback failed";

  214.                 exit();

  215.             }

  216.         }

  217.     }

  218. 

  219.     private function getRedirectURL() {

  220.         return get_site_url() . "/?xero_callback";

  221.     }

  222. 

  223.     function refresh_token($enforced=false)

  224.     {

  225.         $this->storage->read_value();

  226.         $this->xeroTenantId = (string)$this->storage->getSession()['tenant_id'];

  227. 

  228.         if ($this->storage->getHasExpired() || $enforced) {

  229.             $this->provider = $this->create_provider();

  230. 

  231.             try {

  232.                 $newAccessToken = $this->provider->getAccessToken('refresh_token', [

  233.                     'refresh_token' => $this->storage->getRefreshToken()

  234.                 ]);

  235. 

  236.             } catch (\Exception $e) {

  237.                 $this->startAuthorization();

  238.                 return;

  239.             }

  240. 

  241.             // Save my token, expiration and refresh token

  242.             $this->storage->setToken(

  243.                 $newAccessToken->getToken(),

  244.                 $newAccessToken->getExpires(),

  245.                 $this->xeroTenantId,

  246.                 $newAccessToken->getRefreshToken(),

  247.                 $newAccessToken->getValues()["id_token"]);

  248.         }

  249.     }

  250. 

  251.     public function get_accounting_instance() {

  252.         $this->refresh_token();

  253.         if ($this->apiAccountingInstance == null) {

  254.             $this->config = \XeroAPI\XeroPHP\Configuration::getDefaultConfiguration()->setAccessToken(

  255.                 (string)$this->storage->getSession()['token']);

  256.             $this->apiAccountingInstance = new \XeroAPI\XeroPHP\Api\AccountingApi(

  257.                 new \GuzzleHttp\Client(),

  258.                 $this->config

  259.             );

  260.         }

  261.         return $this->apiAccountingInstance;

  262.     }

  263. 

  264.     public function get_payroll_au_instance() {

  265.         $this->refresh_token();

  266.         if ($this->apiPayrollInstance == null) {

  267.             $this->config = \XeroAPI\XeroPHP\Configuration::getDefaultConfiguration()->setAccessToken(

  268.                 (string)$this->storage->getSession()['token']);

  269.             //$this->config->setDebug(true);

  270.             //$this->config->setDebugFile("/home/acaresydneycom/public_html/wp-content/plugins/ts/debug.log");

  271.             $this->apiPayrollInstance = new \XeroAPI\XeroPHP\Api\PayrollAuApi(

  272.                 new \GuzzleHttp\Client(),

  273.                 $this->config

  274.             );

  275.         }

  276.         return $this->apiPayrollInstance;

  277.     }

  278. 

  279. 

  280.     //

  281.     //TS implementation

  282.     //

  283. 

  284.     /* sync xero to wp options */

  285.     public function instant_sync(){

  286.         try{

  287.             $this->sync_pay_item();

  288.             $this->sync_payroll_calendar();

  289.         }catch(\Exception $e){

  290.             $this->office->log("XeroAuth2\\init_wp() has exception", $e->getMessage());

  291.         }

  292.     }

  293. 

  294.     private function sync_pay_item() {

  295.         if ($this->too_close_to_sync_payitem()){

  296.             return;

  297.         }

  298. 

  299.         $api = $this->get_payroll_au_instance();

  300.         $xeroTenantId = $this->xeroTenantId;

  301.         $page = 1;

  302.         try {

  303.             $result = $api->getPayItems($xeroTenantId, null, null, null, $page);

  304. 

  305.             foreach ($result->getPayItems()->getEarningsRates() as $e){

  306. //             "EarningsRateID": "34e17d08-237a-4ae2-8115-375d1ff8a9ed",

  307. //             "Name": "Overtime Hours (exempt from super)",

  308. //             "EarningsType": "OVERTIMEEARNINGS",

  309. //             "RateType": "MULTIPLE",

  310. //             "AccountCode": "477",

  311. //             "Multiplier": 1.5,

  312. //             "IsExemptFromTax": true,

  313. //             "IsExemptFromSuper": true,

  314. //             "AccrueLeave": false,

  315. //             "IsReportableAsW1": true,

  316. //             "UpdatedDateUTC": "2019-03-16T13:18:19+00:00",

  317. //             "CurrentRecord": false

  318.                 if ($e->getCurrentRecord() == "true"){

  319.                     $payitem_options[]= array(

  320.                         'EarningsRateID' => $e->getEarningsRateID(),

  321.                         'Name'=> $e->getName(),

  322.                         'EarningsType'=> $e->getEarningstype(),

  323.                         'RatePerUnit' => $e->getRatePerUnit(),

  324.                         'RateType' => $e->getRateType(),

  325.                         'AccountCode' => $e->getAccountCode(),

  326.                         "Multiplier"=> $e->getMultiplier(),

  327.                         "IsExemptFromTax" => $e->getIsExemptFromTax(),

  328.                         "IsExemptFromSuper"=> $e->getIsExemptFromSuper(),

  329.                         "AccrueLeave" => $e->getAccrueLeave(),

  330.                         "TypeOfUnits" => $e->getTypeOfUnits(),

  331.                         "CurrentRecord"=> $e->getCurrentRecord(),

  332.                     );

  333.                 }

  334.             }

  335.             update_option('bts_payitem_earnings_rate', $payitem_options);

  336.             update_option('bts_payitem_last_sync', time());

  337. 

  338. 

  339.         } catch (Exception $e) {

  340.             echo 'Exception when calling PayrollAuApi->getPayItems: ', $e->getMessage(), PHP_EOL;

  341.         }

  342.     }

  343. 

  344.     public function sync_payroll_calendar() {

  345.         if ($this->too_close_to_sync_payroll_calendar()){

  346.             // return;

  347.         }

  348.         update_option('bts_pay_roll_calendar_last_sync', time());

  349. 

  350.         $pc = $this->get_payroll_calendar();

  351.         $start = $pc->getStartDateAsDate()->format('Y-m-d');

  352.         $finish = new \DateTime($start);

  353.         $finish = $finish->modify("+13 days")->format('Y-m-d');

  354.         $paydate = $pc->getPaymentDateAsDate()->format('Y-m-d');

  355.         $calendar["start"] = $start;

  356.         $calendar["finish"] = $finish;

  357.         $calendar["paydate"] = $paydate;

  358. 

  359.         update_option('bts_pay_roll_calendar', $calendar);

  360.     }

  361. 

  362.     private function too_close_to_sync_payitem(){

  363.         $lastsync = get_option('bts_payitem_last_sync', 0);

  364.         $now = time();

  365.         $diff = $now - (int) $lastsync;

  366.         return $diff < $this->minimum_sync_interval_in_seconds; //default 10 minutes

  367.     }

  368. 

  369. 

  370.     private function too_close_to_sync_payroll_calendar(){

  371.         $lastsync = get_option('bts_pay_roll_calendar_last_sync', 0);

  372.         $now = time();

  373.         $diff = $now - (int) $lastsync;

  374.         return $diff < 3.0 * $this->minimum_sync_interval_in_seconds; //default 1.3 * 10 minutes

  375.     }

  376. 

  377. 

  378.     public function getClients($contact_group_id = null) {

  379.         $ret = $this->sync->getClients($contact_group_id);

  380.         $this->shortcodes->updateClientsShortCode($ret);

  381.         return $ret;

  382.     }

  383. 

  384.     public function getEmployees(){

  385.         $ret = $this->sync->getEmployees();

  386.         $this->shortcodes->updateEmployeeShortCode($ret);

  387.         return $ret;

  388.     }

  389. 

  390.     public function devGetEmployees() {

  391.         $this->sync->sync_users(600);

  392.     }

  393.     /*

  394.      *

  395.      * @param XeroAPI\Model\Accounting\Contact $client

  396.      */

  397.     public function getClientAddress($client) {

  398.         return $this->sync->get_client_post_address($client);

  399.     }

  400. 

  401.     public function getEmployeeAddress($employee) {

  402.         return $this->sync->get_employee_home_address($employee);

  403.     }

  404. 

  405. 

  406.     /*

  407.      * operation get_payroll_calendar

  408.      * @throws \XeroAPI\XeroPHP\ApiException on non-2xx response

  409.      * @throws \InvalidArgumentException

  410.      */

  411.     public function get_payroll_calendar()

  412.     {

  413.         $id =  "33dc7df5-3060-4d76-b4da-57c20685d77d"; //fortnightly

  414.         $api = $this->get_payroll_au_instance();

  415.         $calendars = $api->getPayrollCalendar($this->xeroTenantId, $id);

  416.         return $calendars[0];

  417.     }

  418. 

  419. }