Patrick
/
acaresydney_ts
Следить 1
В избранное 0
Форкнуть 0
Код Задачи 0 Pull Request'ы 0 Релизы 0 Вики Активность
timesheet source code
Вы не можете выбрать более 25 тем Темы должны начинаться с буквы или цифры, могут содержать дефисы(-) и должны содержать не более 35 символов.
112 коммитов
1 ветка
1.5MB
Дерево: 9e13da8b7d
Ветки Теги
${ item.name }
Создать ветку ${ searchTerm }
из '9e13da8b7d'
${ noResults }
acaresydney_ts/XeroOauth2.php

461 line
17KB
Исходник Blame История 

  1. <?php

  2. 

  3. /* xero integration oauth 2 */

  4. 

  5. /* required by XeroOauth1 in 2021 */

  6. 

  7. namespace Biukop;

  8. require_once(dirname(__FILE__) . '/vendor/autoload.php');

  9. // require_once(ABSPATH . 'wp-includes/pluggable.php');

  10. require_once(dirname(__FILE__) . '/Storage.php');

  11. 

  12. use \Carbon_Fields\Container;

  13. use \Carbon_Fields\Field;

  14. use \Carbon_Fields\Carbon_Fields;

  15. use phpDocumentor\Reflection\DocBlock\Tags\Method;

  16. 

  17. class XeroOAuth2

  18. {

  19.     private $office; // parent

  20.     private $clientID = '83CC79EEC6A54B4E8C2CA7AD61D1BF69';

  21.     private $clientSecret = 'axgKF-Ri60D89conDFhqZsi1wu7uLdQFGvMpino9nI-nfO3f';

  22.     private $clientContactGroupID="48646f3d-cf5e-4fea-8c8b-5812bd540e1b";

  23. 

  24.     private $shortcodes;

  25. 

  26.     public $provider;

  27.     public $options = [

  28.         'scope' => ['openid email profile offline_access assets projects accounting.settings accounting.transactions accounting.contacts accounting.journals.read accounting.reports.read accounting.attachments payroll.employees payroll.payruns payroll.payslip payroll.timesheets payroll.settings files'],

  29.         'scope1' => [

  30.             'openid',

  31.             'email',

  32.             'profile',

  33.             'offline_access',

  34.             'assets',

  35.             'projects',

  36.             'accounting.settings',

  37.             'accounting.transactions',

  38.             'accounting.contacts',

  39.             'accounting.journals.read',

  40.             'accounting.reports.read',

  41.             'accounting.attachments',

  42.             'payroll.employees',

  43.             'payroll.payruns',

  44.             'payroll.payslip',

  45.             'payroll.timesheets',

  46.             'payroll.settings'

  47.         ]

  48.     ];

  49.     public $storage;

  50.     public $config;

  51.     public $apiAccountingInstance;  //accounting instance

  52.     public $apiPayrollInstance; // payroll au instance

  53.     public $xeroTenantId;

  54. 

  55. 

  56.     public function __construct($office)

  57.     {

  58.         $this->office = $office;

  59.         $this->shortcodes = new XeroOauth2ShortCode($this);

  60.         $this->storage = new StorageClass();

  61. 

  62.         add_action('init', array($this, 'init'));

  63. 

  64.         add_action( 'plugins_loaded', array( '\\Carbon_Fields\\Carbon_Fields', 'boot' ) );

  65.         add_action('carbon_fields_register_fields', array($this, 'build_settings_page'));

  66.         add_action('carbon_fields_container_activated', array($this, 'field_activated'));

  67.         add_action('parse_request', array($this, 'xero_callback'));

  68. 

  69.     }

  70. 

  71.     public function __call($method, $args) {

  72.         if ( method_exists($this->XeroOauth1, $method) ) {

  73.             syslog(LOG_INFO,"Calling $method");

  74.             $this->XeroOauth1->$method($args);

  75.         } else {

  76.             error_log("$method is not defined" );

  77.         }

  78.     }

  79. 

  80.     public function init()

  81.     {

  82.         $this->provider = $this->create_provider();

  83.         $this->init_wp();

  84.     }

  85. 

  86.     public function getTenantId() {

  87.         return $this->xeroTenantId;

  88.     }

  89.     private function create_provider() {

  90.         $provider = new \League\OAuth2\Client\Provider\GenericProvider([

  91.             'clientId' => $this->clientID,

  92.             'clientSecret' =>  $this->clientSecret,

  93.             'redirectUri' => $this->getRedirectURL(),

  94.             'urlAuthorize' => 'https://login.xero.com/identity/connect/authorize',

  95.             'urlAccessToken' => 'https://identity.xero.com/connect/token',

  96.             'urlResourceOwnerDetails' => 'https://api.xero.com/api.xro/2.0/Organisation'

  97.         ]);

  98.         return $provider;

  99.     }

  100. 

  101.     public function load_storage()

  102.     {

  103.         //$this->storage->read_value();

  104.     }

  105. 

  106.     public function boot_carbon()

  107.     {

  108.         \Carbon_Fields\Carbon_Fields::boot();

  109.     }

  110. 

  111. 

  112.     function build_settings_page()

  113.     {

  114.         Container::make('theme_options', __('Xero Integration'))

  115.             ->set_page_parent('options-general.php')

  116.             ->add_fields(array(

  117.                 Field::make('text', 'xero_oauth2state', 'Xero Oauth2 State')

  118.                     ->set_attribute('maxLength', 2048)

  119.                     ->set_attribute('readOnly', true)

  120.                     ->set_default_value($this->storage->getOauth2State()),

  121.                 Field::make('text', 'xero_token', 'Xero Token')

  122.                     ->set_attribute('maxLength', 2048)

  123.                     ->set_attribute('readOnly', true)

  124.                     ->set_default_value($this->storage->getSession()['token']),

  125.                 Field::make('text', 'xero_refresh_token', 'RefreshToken')

  126.                     ->set_attribute('readOnly', true)

  127.                     ->set_default_value($this->storage->getSession()['refresh_token']),

  128.                 Field::make('text', 'xero_id_token', 'ID Token')

  129.                     ->set_attribute('readOnly', true)

  130.                     ->set_default_value($this->storage->getSession()['id_token']),

  131.                 Field::make('text', 'xero_tenant_id', 'Tenant ID')

  132.                     ->set_attribute('readOnly', true)

  133.                     ->set_default_value($this->storage->getSession()['tenant_id']),

  134.                 Field::make('text', 'xero_expires', 'Expires')

  135.                     ->set_attribute('readOnly', true)

  136.                     ->set_default_value($this->storage->getSession()['expires']),

  137.                 Field::make('text', 'xero_expires_human', 'Expires')

  138.                     ->set_attribute('readOnly', true)

  139.                     ->set_default_value($this->storage->getSession()['expires_human']),

  140. 

  141.                 Field::make('html', 'crb_information_text')

  142.                     ->set_html('<h1>Connect/Reconnect</h2><p>if the above field is empty,

  143.         or the expire date looks suspicous, please reconnect to XeroOauth1 </p>

  144.     <form action="/">

  145.         <input type="hidden" name="xero_reauth" value="1" />

  146.         <input type="submit" class="button button-primary button-large" value="Xero Connect" />

  147.     </form>')

  148.             ));

  149. 

  150.         $this->storage->read_value();

  151.     }

  152. 

  153. 

  154.     function field_activated()

  155.     {

  156.         $this->storage->read_value();

  157.         $xeroTenantId = (string)$this->storage->getSession()['tenant_id'];

  158.         if ($xeroTenantId == "") {

  159.             $this->startAuthorization();

  160.         } else {

  161.             $this->refresh_token();

  162.         }

  163.     }

  164. 

  165.     public function startAuthorization()

  166.     {

  167.         // This returns the authorizeUrl with necessary parameters applied (e.g. state).

  168.         $authorizationUrl = $this->provider->getAuthorizationUrl($this->options);

  169. 

  170.         // Save the state generated for you and store it to the session.

  171.         // For security, on callback we compare the saved state with the one returned to ensure they match.

  172.         $this->storage->setOauth2State($this->provider->getState());

  173. 

  174.         // Redirect the user to the authorization URL.

  175.         header('Location: ' . $authorizationUrl);

  176.         exit();

  177.     }

  178. 

  179. 

  180.     function xero_callback()

  181.     {

  182.         if (isset($_GET['xero_reauth'])) {

  183.             $this->startAuthorization();

  184.             return;

  185.         }

  186.         if (!isset($_GET['xero_callback'])) {

  187.             return;

  188.         }

  189.         // If we don't have an authorization code then get one

  190.         if (!isset($_GET['code'])) {

  191.             echo "Something went wrong, no authorization code found";

  192.             exit("Something went wrong, no authorization code found");

  193. 

  194.             // Check given state against previously stored one to mitigate CSRF attack

  195.         } elseif (empty($_GET['state']) || ($_GET['state'] !== $this->storage->getOauth2State())) {

  196.             echo "Invalid State";

  197.             $this->storage->setOauth2State("");

  198.             exit('Invalid state');

  199.         } else {

  200. 

  201.             try {

  202.                 // Try to get an access token using the authorization code grant.

  203.                 $accessToken = $this->provider->getAccessToken('authorization_code', [

  204.                     'code' => $_GET['code']

  205.                 ]);

  206. 

  207.                 $config = \XeroAPI\XeroPHP\Configuration::getDefaultConfiguration()->setAccessToken((string)$accessToken->getToken());

  208.                 $identityInstance = new \XeroAPI\XeroPHP\Api\IdentityApi(

  209.                     new \GuzzleHttp\Client(),

  210.                     $config

  211.                 );

  212. 

  213.                 $result = $identityInstance->getConnections();

  214. 

  215.                 // Save my tokens, expiration tenant_id

  216.                 $this->storage->setToken(

  217.                     $accessToken->getToken(),

  218.                     $accessToken->getExpires(),

  219.                     $result[0]->getTenantId(),

  220.                     $accessToken->getRefreshToken(),

  221.                     $accessToken->getValues()["id_token"]

  222.                 );

  223. 

  224.                 // related to $this->build_settings_page

  225.                 $url = "/wp-admin/options-general.php?page=crb_carbon_fields_container_xero_integration.php";

  226.                 header('Location: ' . $url);

  227.                 exit();

  228. 

  229.             } catch (\League\OAuth2\Client\Provider\Exception\IdentityProviderException $e) {

  230.                 echo "Xero Callback failed";

  231.                 exit();

  232.             }

  233.         }

  234.     }

  235. 

  236.     private function getRedirectURL() {

  237.         return get_site_url() . "/?xero_callback";

  238.     }

  239. 

  240.     function refresh_token($enforced=false)

  241.     {

  242.         $this->storage->read_value();

  243.         $this->xeroTenantId = (string)$this->storage->getSession()['tenant_id'];

  244. 

  245.         if ($this->storage->getHasExpired() || $enforced) {

  246.             $this->provider = $this->create_provider();

  247. 

  248.             try {

  249.                 $newAccessToken = $this->provider->getAccessToken('refresh_token', [

  250.                     'refresh_token' => $this->storage->getRefreshToken()

  251.                 ]);

  252. 

  253.             } catch (\Exception $e) {

  254.                 $this->startAuthorization();

  255.                 return;

  256.             }

  257. 

  258.             // Save my token, expiration and refresh token

  259.             $this->storage->setToken(

  260.                 $newAccessToken->getToken(),

  261.                 $newAccessToken->getExpires(),

  262.                 $this->xeroTenantId,

  263.                 $newAccessToken->getRefreshToken(),

  264.                 $newAccessToken->getValues()["id_token"]);

  265.         }

  266.     }

  267. 

  268.     public function get_accounting_instance() {

  269.         $this->refresh_token();

  270.         if ($this->apiAccountingInstance == null) {

  271.             $this->config = \XeroAPI\XeroPHP\Configuration::getDefaultConfiguration()->setAccessToken(

  272.                 (string)$this->storage->getSession()['token']);

  273.             $this->apiAccountingInstance = new \XeroAPI\XeroPHP\Api\AccountingApi(

  274.                 new \GuzzleHttp\Client(),

  275.                 $this->config

  276.             );

  277.         }

  278.         return $this->apiAccountingInstance;

  279.     }

  280. 

  281.     public function get_payroll_au_instance() {

  282.         $this->refresh_token();

  283.         if ($this->apiPayrollInstance == null) {

  284.             $this->config = \XeroAPI\XeroPHP\Configuration::getDefaultConfiguration()->setAccessToken(

  285.                 (string)$this->storage->getSession()['token']);

  286.             $this->config->setDebug(true);

  287.             $this->config->setDebugFile("/home/acaresydneycom/public_html/wp-content/plugins/ts/debug.log");

  288.             $this->apiPayrollInstance = new \XeroAPI\XeroPHP\Api\PayrollAuApi(

  289.                 new \GuzzleHttp\Client(),

  290.                 $this->config

  291.             );

  292.         }

  293.         return $this->apiPayrollInstance;

  294.     }

  295. 

  296. 

  297.     //

  298.     //TS implementation

  299.     //

  300. 

  301.     /* sync xero to wp options */

  302.     public function init_wp(){

  303.         try{

  304.             $this->sync_pay_item();

  305. //            $this->add_new_client();

  306. //            $this->add_new_employee();

  307.             $this->sync_payroll_calendar();

  308.         }catch(\Exception $e){

  309.             $this->office->log("XeroAuth2\\init_wp() has exception", $e->getMessage());

  310.         }

  311.     }

  312. 

  313.     private function sync_pay_item() {

  314.         if ($this->too_close_to_sync_payitem()){

  315.             return;

  316.         }

  317. 

  318.         $api = $this->get_payroll_au_instance();

  319.         $xeroTenantId = $this->xeroTenantId;

  320.         $page = 1;

  321.         try {

  322.             $result = $api->getPayItems($xeroTenantId, null, null, null, $page);

  323. 

  324.             foreach ($result->getPayItems()->getEarningsRates() as $e){

  325. //             "EarningsRateID": "34e17d08-237a-4ae2-8115-375d1ff8a9ed",

  326. //             "Name": "Overtime Hours (exempt from super)",

  327. //             "EarningsType": "OVERTIMEEARNINGS",

  328. //             "RateType": "MULTIPLE",

  329. //             "AccountCode": "477",

  330. //             "Multiplier": 1.5,

  331. //             "IsExemptFromTax": true,

  332. //             "IsExemptFromSuper": true,

  333. //             "AccrueLeave": false,

  334. //             "IsReportableAsW1": true,

  335. //             "UpdatedDateUTC": "2019-03-16T13:18:19+00:00",

  336. //             "CurrentRecord": false

  337.                 if ($e->getCurrentRecord() == "true"){

  338.                     $payitem_options[]= array(

  339.                         'EarningsRateID' => $e->getEarningsRateID(),

  340.                         'Name'=> $e->getName(),

  341.                         'EarningsType'=> $e->getEarningstype(),

  342.                         'RatePerUnit' => $e->getRatePerUnit(),

  343.                         'RateType' => $e->getRateType(),

  344.                         'AccountCode' => $e->getAccountCode(),

  345.                         "Multiplier"=> $e->getMultiplier(),

  346.                         "IsExemptFromTax" => $e->getIsExemptFromTax(),

  347.                         "IsExemptFromSuper"=> $e->getIsExemptFromSuper(),

  348.                         "AccrueLeave" => $e->getAccrueLeave(),

  349.                         "TypeOfUnits" => $e->getTypeOfUnits(),

  350.                         "CurrentRecord"=> $e->getCurrentRecord(),

  351.                     );

  352.                 }

  353.             }

  354.             update_option('bts_payitem_earnings_rate', $payitem_options);

  355.             update_option('bts_payitem_last_sync', time());

  356. 

  357. 

  358.         } catch (Exception $e) {

  359.             echo 'Exception when calling PayrollAuApi->getPayItems: ', $e->getMessage(), PHP_EOL;

  360.         }

  361.     }

  362. 

  363.     public function sync_users($mininterval, $employeeonly, $clientsonly){

  364.         echo "not implemented "; //TODO;

  365.     }

  366. 

  367.     public function sync_payroll_calendar() {

  368.         if ($this->too_close_to_sync_payroll_calendar()){

  369.             // return;

  370.         }

  371.         update_option('bts_pay_roll_calendar_last_sync', time());

  372. 

  373.         $pc = $this->get_payroll_calendar();

  374.         $start = $pc->getStartDateAsDate()->format('Y-m-d');

  375.         $finish = new \DateTime($start);

  376.         $finish = $finish->modify("+13 days")->format('Y-m-d');

  377.         $paydate = $pc->getPaymentDateAsDate()->format('Y-m-d');

  378.         $calendar["start"] = $start;

  379.         $calendar["finish"] = $finish;

  380.         $calendar["paydate"] = $paydate;

  381. 

  382.         update_option('bts_pay_roll_calendar', $calendar);

  383.     }

  384. 

  385.     private function too_close_to_sync_payitem(){

  386.         $lastsync = get_option('bts_payitem_last_sync', 0);

  387.         $now = time();

  388.         $diff = $now - (int) $lastsync;

  389.         return $diff < $this->minimum_sync_interval_in_seconds; //default 10 minutes

  390.     }

  391. 

  392.     private function too_close_to_add_employee(){

  393.         $lastsync = get_option('bts_add_employee_last_sync', 0);

  394.         $now = time();

  395.         $diff = $now - (int) $lastsync;

  396.         return $diff < 1.5 * $this->minimum_sync_interval_in_seconds; //default 1.1 * 10 minutes

  397.     }

  398.     private function too_close_to_add_client(){

  399.         $lastsync = get_option('bts_add_client_last_sync', 0);

  400.         $now = time();

  401.         $diff = $now - (int) $lastsync;

  402.         return $diff < 2.0 * $this->minimum_sync_interval_in_seconds; //default 1.2 * 10 minutes

  403.     }

  404.     private function too_close_to_sync_payroll_calendar(){

  405.         $lastsync = get_option('bts_pay_roll_calendar_last_sync', 0);

  406.         $now = time();

  407.         $diff = $now - (int) $lastsync;

  408.         return $diff < 3.0 * $this->minimum_sync_interval_in_seconds; //default 1.3 * 10 minutes

  409.     }

  410. 

  411. 

  412.     public function getClients($contact_group_id = null) {

  413.         if ( $contact_group_id  == null ){

  414.             $contact_group_id   = $this->clientContactGroupID;

  415.         }

  416.         $apiAcc = $this->get_accounting_instance();

  417.         $result = $apiAcc->getContactGroup($this->xeroTenantId, $contact_group_id);

  418.         $cg = $result->getContactGroups();

  419.         $allClients = $cg[0]->getContacts();

  420. 

  421.         $ifModifiedSince = new \DateTime();

  422.         $recent = new \DateInterval("P30D");

  423.         $ifModifiedSince->sub($recent);

  424. 

  425. 

  426.         $allContacts = $apiAcc->getContacts($this->xeroTenantId, $ifModifiedSince);

  427.         $ret = [];

  428.         foreach ( $allContacts as $ac ) {

  429.             //search from within the group

  430.             $found = false;

  431.             $id = $ac->getContactID();

  432.             foreach ($allClients as $client) {

  433.                 $clientID = $client->getContactID();

  434.                 if ( $clientID == $id ) {

  435.                     $found = true;

  436.                     break;

  437.                 }

  438.             }

  439. 

  440.             if ( $found ) {

  441.                 $ret[] = $ac;

  442.             }

  443. 

  444.         }

  445.         return $ret;

  446.     }

  447. 

  448.     /*

  449.      * operation get_payroll_calendar

  450.      * @throws \XeroAPI\XeroPHP\ApiException on non-2xx response

  451.      * @throws \InvalidArgumentException

  452.      */

  453.     public function get_payroll_calendar()

  454.     {

  455.         $id =  "33dc7df5-3060-4d76-b4da-57c20685d77d"; //fortnightly

  456.         $api = $this->get_payroll_au_instance();

  457.         $calendars = $api->getPayrollCalendar($this->xeroTenantId, $id);

  458.         return $calendars[0];

  459.     }

  460. 

  461. }