Inspection of "Login now works without using the code in dolibarr..." - alxarafe/alixar - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( 49af33...3cffbe )

by Alxarafe

created 2019-01-26 11:50 UTC

Status

Indentation +100 added lines, -100 removed lines patch added patch discarded remove patch

@@ -31,110 +31,110 @@
 block discarded – undo
      */
     function __construct()
     {
-		global $db;
-		$this->db = $db;
-	}
-
-	/**
-	 * Login
-	 *
-	 * Request the API token for a couple username / password.
-	 * Using method POST is recommanded for security reasons (method GET is often logged by default by web servers with parameters so with login and pass into server log file).
-	 * Both methods are provided for developer conveniance. Best is to not use at all the login API method and enter directly the "DOLAPIKEY" into field at the top right of page. Note: The API key (DOLAPIKEY) can be found/set on the user page.
-	 *
-	 * @param   string  $login			User login
-	 * @param   string  $password		User password
-	 * @param   string  $entity			Entity (when multicompany module is used). '' means 1=first company.
-	 * @param   int     $reset          Reset token (0=get current token, 1=ask a new token and canceled old token. This means access using current existing API token of user will fails: new token will be required for new access)
+        global $db;
+        $this->db = $db;
+    }
+
+    /**
+     * Login
+     *
+     * Request the API token for a couple username / password.
+     * Using method POST is recommanded for security reasons (method GET is often logged by default by web servers with parameters so with login and pass into server log file).
+     * Both methods are provided for developer conveniance. Best is to not use at all the login API method and enter directly the "DOLAPIKEY" into field at the top right of page. Note: The API key (DOLAPIKEY) can be found/set on the user page.
+     *
+     * @param   string  $login			User login
+     * @param   string  $password		User password
+     * @param   string  $entity			Entity (when multicompany module is used). '' means 1=first company.
+     * @param   int     $reset          Reset token (0=get current token, 1=ask a new token and canceled old token. This means access using current existing API token of user will fails: new token will be required for new access)
      * @return  array                   Response status and user token
      *
-	 * @throws 200
-	 * @throws 403
-	 * @throws 500
-	 *
-	 * @url GET /
-	 * @url POST /
-	 */
+     * @throws 200
+     * @throws 403
+     * @throws 500
+     *
+     * @url GET /
+     * @url POST /
+     */
     public function index($login, $password, $entity='', $reset=0)
     {
 
-	    global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
-
-		// Authentication mode
-		if (empty($dolibarr_main_authentication))
-			$dolibarr_main_authentication = 'http,dolibarr';
-		// Authentication mode: forceuser
-		if ($dolibarr_main_authentication == 'forceuser')
-		{
-			if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
-			if ($dolibarr_auto_user != $login)
-			{
-				dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
-				throw new RestException(403, "Your instance is set to use the automatic login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
-			}
-		}
-		// Set authmode
-		$authmode = explode(',', $dolibarr_main_authentication);
-
-		if ($entity != '' && ! is_numeric($entity))
-		{
-			throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
-		}
-		if ($entity == '') $entity=1;
-
-		include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
-		$login = checkLoginPassEntity($login, $password, $entity, $authmode);
-		if (empty($login))
-		{
-			throw new RestException(403, 'Access denied');
-		}
-
-		$token = 'failedtogenerateorgettoken';
-
-		$tmpuser=new User($this->db);
-		$tmpuser->fetch(0, $login, 0, 0, $entity);
-		if (empty($tmpuser->id))
-		{
-			throw new RestException(500, 'Failed to load user');
-		}
-
-		// Renew the hash
-		if (empty($tmpuser->api_key) || $reset)
-		{
-			$tmpuser->getrights();
-			if (empty($tmpuser->rights->user->self->creer))
-			{
-				throw new RestException(403, 'User need write permission on itself to reset its API token');
-			}
-
-    		// Generate token for user
-    		$token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY,1);
-
-    		// We store API token into database
-    		$sql = "UPDATE ".MAIN_DB_PREFIX."user";
-    		$sql.= " SET api_key = '".$this->db->escape($token)."'";
-    		$sql.= " WHERE login = '".$this->db->escape($login)."'";
-
-    		dol_syslog(get_class($this)."::login", LOG_DEBUG);	// No log
-    		$result = $this->db->query($sql);
-    		if (!$result)
-    		{
-    			throw new RestException(500, 'Error when updating api_key for user :'.$this->db->lasterror());
-    		}
-		}
-		else
-		{
+        global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
+
+        // Authentication mode
+        if (empty($dolibarr_main_authentication))
+            $dolibarr_main_authentication = 'http,dolibarr';
+        // Authentication mode: forceuser
+        if ($dolibarr_main_authentication == 'forceuser')
+        {
+            if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
+            if ($dolibarr_auto_user != $login)
+            {
+                dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
+                throw new RestException(403, "Your instance is set to use the automatic login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
+            }
+        }
+        // Set authmode
+        $authmode = explode(',', $dolibarr_main_authentication);
+
+        if ($entity != '' && ! is_numeric($entity))
+        {
+            throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
+        }
+        if ($entity == '') $entity=1;
+
+        include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
+        $login = checkLoginPassEntity($login, $password, $entity, $authmode);
+        if (empty($login))
+        {
+            throw new RestException(403, 'Access denied');
+        }
+
+        $token = 'failedtogenerateorgettoken';
+
+        $tmpuser=new User($this->db);
+        $tmpuser->fetch(0, $login, 0, 0, $entity);
+        if (empty($tmpuser->id))
+        {
+            throw new RestException(500, 'Failed to load user');
+        }
+
+        // Renew the hash
+        if (empty($tmpuser->api_key) || $reset)
+        {
+            $tmpuser->getrights();
+            if (empty($tmpuser->rights->user->self->creer))
+            {
+                throw new RestException(403, 'User need write permission on itself to reset its API token');
+            }
+
+            // Generate token for user
+            $token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY,1);
+
+            // We store API token into database
+            $sql = "UPDATE ".MAIN_DB_PREFIX."user";
+            $sql.= " SET api_key = '".$this->db->escape($token)."'";
+            $sql.= " WHERE login = '".$this->db->escape($login)."'";
+
+            dol_syslog(get_class($this)."::login", LOG_DEBUG);	// No log
+            $result = $this->db->query($sql);
+            if (!$result)
+            {
+                throw new RestException(500, 'Error when updating api_key for user :'.$this->db->lasterror());
+            }
+        }
+        else
+        {
             $token = $tmpuser->api_key;
-		}
-
-		//return token
-		return array(
-			'success' => array(
-				'code' => 200,
-				'token' => $token,
-			    'entity' => $tmpuser->entity,
-			    'message' => 'Welcome ' . $login.($reset?' - Token is new':' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
-			)
-		);
-	}
+        }
+
+        //return token
+        return array(
+            'success' => array(
+                'code' => 200,
+                'token' => $token,
+                'entity' => $tmpuser->entity,
+                'message' => 'Welcome ' . $login.($reset?' - Token is new':' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
+            )
+        );
+    }
 }

Please login to merge, or discard this patch.

Spacing +11 added lines, -11 removed lines patch added patch discarded remove patch

@@ -55,7 +55,7 @@  discard block
 block discarded – undo
 	 * @url GET /
 	 * @url POST /
 	 */
-    public function index($login, $password, $entity='', $reset=0)
+    public function index($login, $password, $entity = '', $reset = 0)
     {
 
 	    global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
@@ -66,7 +66,7 @@  discard block
 block discarded – undo
 		// Authentication mode: forceuser
 		if ($dolibarr_main_authentication == 'forceuser')
 		{
-			if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
+			if (empty($dolibarr_auto_user)) $dolibarr_auto_user = 'auto';
 			if ($dolibarr_auto_user != $login)
 			{
 				dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
@@ -76,13 +76,13 @@  discard block
 block discarded – undo
 		// Set authmode
 		$authmode = explode(',', $dolibarr_main_authentication);
 
-		if ($entity != '' && ! is_numeric($entity))
+		if ($entity != '' && !is_numeric($entity))
 		{
 			throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
 		}
-		if ($entity == '') $entity=1;
+		if ($entity == '') $entity = 1;
 
-		include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
+		include_once DOL_DOCUMENT_ROOT.'/core/lib/security2.lib.php';
 		$login = checkLoginPassEntity($login, $password, $entity, $authmode);
 		if (empty($login))
 		{
@@ -91,7 +91,7 @@  discard block
 block discarded – undo
 
 		$token = 'failedtogenerateorgettoken';
 
-		$tmpuser=new User($this->db);
+		$tmpuser = new User($this->db);
 		$tmpuser->fetch(0, $login, 0, 0, $entity);
 		if (empty($tmpuser->id))
 		{
@@ -108,14 +108,14 @@  discard block
 block discarded – undo
 			}
 
     		// Generate token for user
-    		$token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY,1);
+    		$token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY, 1);
 
     		// We store API token into database
     		$sql = "UPDATE ".MAIN_DB_PREFIX."user";
-    		$sql.= " SET api_key = '".$this->db->escape($token)."'";
-    		$sql.= " WHERE login = '".$this->db->escape($login)."'";
+    		$sql .= " SET api_key = '".$this->db->escape($token)."'";
+    		$sql .= " WHERE login = '".$this->db->escape($login)."'";
 
-    		dol_syslog(get_class($this)."::login", LOG_DEBUG);	// No log
+    		dol_syslog(get_class($this)."::login", LOG_DEBUG); // No log
     		$result = $this->db->query($sql);
     		if (!$result)
     		{
@@ -133,7 +133,7 @@  discard block
 block discarded – undo
 				'code' => 200,
 				'token' => $token,
 			    'entity' => $tmpuser->entity,
-			    'message' => 'Welcome ' . $login.($reset?' - Token is new':' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
+			    'message' => 'Welcome '.$login.($reset ? ' - Token is new' : ' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
 			)
 		);
 	}

Please login to merge, or discard this patch.

Braces +10 added lines, -6 removed lines patch added patch discarded remove patch

@@ -61,12 +61,15 @@  discard block
 block discarded – undo
 	    global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
 
 		// Authentication mode
-		if (empty($dolibarr_main_authentication))
-			$dolibarr_main_authentication = 'http,dolibarr';
+		if (empty($dolibarr_main_authentication)) {
+					$dolibarr_main_authentication = 'http,dolibarr';
+		}
 		// Authentication mode: forceuser
 		if ($dolibarr_main_authentication == 'forceuser')
 		{
-			if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
+			if (empty($dolibarr_auto_user)) {
+			    $dolibarr_auto_user='auto';
+			}
 			if ($dolibarr_auto_user != $login)
 			{
 				dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
@@ -80,7 +83,9 @@  discard block
 block discarded – undo
 		{
 			throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
 		}
-		if ($entity == '') $entity=1;
+		if ($entity == '') {
+		    $entity=1;
+		}
 
 		include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
 		$login = checkLoginPassEntity($login, $password, $entity, $authmode);
@@ -121,8 +126,7 @@  discard block
 block discarded – undo
     		{
     			throw new RestException(500, 'Error when updating api_key for user :'.$this->db->lasterror());
     		}
-		}
-		else
+		} else
 		{
             $token = $tmpuser->api_key;
 		}

Please login to merge, or discard this patch.

dolibarr/htdocs/api/class/api.class.php 3 patches

Indentation +83 added lines, -83 removed lines patch added patch discarded remove patch

@@ -100,8 +100,8 @@  discard block
 block discarded – undo
         // Remove $db object property for object
         unset($object->db);
         unset($object->isextrafieldmanaged);
-		unset($object->ismultientitymanaged);
-		unset($object->restrictiononfksoc);
+        unset($object->ismultientitymanaged);
+        unset($object->restrictiononfksoc);
 
         // Remove linkedObjects. We should already have linkedObjectIds that avoid huge responses
         unset($object->linkedObjects);
@@ -145,7 +145,7 @@  discard block
 block discarded – undo
         unset($object->picto);
 
         unset($object->fieldsforcombobox);
-		unset($object->comments);
+        unset($object->comments);
 
         unset($object->skip_update_total);
         unset($object->context);
@@ -164,7 +164,7 @@  discard block
 block discarded – undo
         // If object has lines, remove $db property
         if (isset($object->lines) && is_array($object->lines) && count($object->lines) > 0)  {
             $nboflines = count($object->lines);
-        	for ($i=0; $i < $nboflines; $i++)
+            for ($i=0; $i < $nboflines; $i++)
             {
                 $this->_cleanObjectDatas($object->lines[$i]);
 
@@ -202,101 +202,101 @@  discard block
 block discarded – undo
 
         if (! empty($object->thirdparty) && is_object($object->thirdparty))
         {
-        	$this->_cleanObjectDatas($object->thirdparty);
+            $this->_cleanObjectDatas($object->thirdparty);
         }
 
-		return $object;
+        return $object;
     }
 
-	/**
-	 * Check user access to a resource
-	 *
-	 * Check access by user to a given resource
-	 *
-	 * @param string	$resource		element to check
-	 * @param int		$resource_id	Object ID if we want to check a particular record (optional) is linked to a owned thirdparty (optional).
-	 * @param type		$dbtablename	'TableName&SharedElement' with Tablename is table where object is stored. SharedElement is an optional key to define where to check entity. Not used if objectid is null (optional)
-	 * @param string	$feature2		Feature to check, second level of permission (optional). Can be or check with 'level1|level2'.
-	 * @param string	$dbt_keyfield   Field name for socid foreign key if not fk_soc. Not used if objectid is null (optional)
-	 * @param string	$dbt_select     Field name for select if not rowid. Not used if objectid is null (optional)
+    /**
+     * Check user access to a resource
+     *
+     * Check access by user to a given resource
+     *
+     * @param string	$resource		element to check
+     * @param int		$resource_id	Object ID if we want to check a particular record (optional) is linked to a owned thirdparty (optional).
+     * @param type		$dbtablename	'TableName&SharedElement' with Tablename is table where object is stored. SharedElement is an optional key to define where to check entity. Not used if objectid is null (optional)
+     * @param string	$feature2		Feature to check, second level of permission (optional). Can be or check with 'level1|level2'.
+     * @param string	$dbt_keyfield   Field name for socid foreign key if not fk_soc. Not used if objectid is null (optional)
+     * @param string	$dbt_select     Field name for select if not rowid. Not used if objectid is null (optional)
      * @return bool
-	 * @throws RestException
-	 */
+     * @throws RestException
+     */
     static function _checkAccessToResource($resource, $resource_id=0, $dbtablename='', $feature2='', $dbt_keyfield='fk_soc', $dbt_select='rowid')
     {
 
-		// Features/modules to check
-		$featuresarray = array($resource);
-		if (preg_match('/&/', $resource)) {
-			$featuresarray = explode("&", $resource);
-		}
-		else if (preg_match('/\|/', $resource)) {
-			$featuresarray = explode("|", $resource);
-		}
-
-		// More subfeatures to check
-		if (! empty($feature2)) {
-			$feature2 = explode("|", $feature2);
-		}
-
-		return checkUserAccessToObject(DolibarrApiAccess::$user, $featuresarray, $resource_id, $dbtablename, $feature2, $dbt_keyfield, $dbt_select);
-	}
-
-	/**
-	 * Return if a $sqlfilters parameter is valid
-	 *
-	 * @param  string   $sqlfilters     sqlfilter string
-	 * @return boolean                  True if valid, False if not valid
-	 */
-	function _checkFilters($sqlfilters)
-	{
-	    //$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-	    //$tmp=preg_replace_all('/'.$regexstring.'/', '', $sqlfilters);
-	    $tmp=$sqlfilters;
-	    $ok=0;
-	    $i=0; $nb=strlen($tmp);
-	    $counter=0;
-	    while ($i < $nb)
-	    {
-	        if ($tmp[$i]=='(') $counter++;
-	        if ($tmp[$i]==')') $counter--;
+        // Features/modules to check
+        $featuresarray = array($resource);
+        if (preg_match('/&/', $resource)) {
+            $featuresarray = explode("&", $resource);
+        }
+        else if (preg_match('/\|/', $resource)) {
+            $featuresarray = explode("|", $resource);
+        }
+
+        // More subfeatures to check
+        if (! empty($feature2)) {
+            $feature2 = explode("|", $feature2);
+        }
+
+        return checkUserAccessToObject(DolibarrApiAccess::$user, $featuresarray, $resource_id, $dbtablename, $feature2, $dbt_keyfield, $dbt_select);
+    }
+
+    /**
+     * Return if a $sqlfilters parameter is valid
+     *
+     * @param  string   $sqlfilters     sqlfilter string
+     * @return boolean                  True if valid, False if not valid
+     */
+    function _checkFilters($sqlfilters)
+    {
+        //$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+        //$tmp=preg_replace_all('/'.$regexstring.'/', '', $sqlfilters);
+        $tmp=$sqlfilters;
+        $ok=0;
+        $i=0; $nb=strlen($tmp);
+        $counter=0;
+        while ($i < $nb)
+        {
+            if ($tmp[$i]=='(') $counter++;
+            if ($tmp[$i]==')') $counter--;
             if ($counter < 0)
             {
-	           $error="Bad sqlfilters=".$sqlfilters;
-	           dol_syslog($error, LOG_WARNING);
-	           return false;
+                $error="Bad sqlfilters=".$sqlfilters;
+                dol_syslog($error, LOG_WARNING);
+                return false;
             }
             $i++;
-	    }
-	    return true;
-	}
+        }
+        return true;
+    }
 
     // phpcs:disable PEAR.NamingConventions.ValidFunctionName.NotCamelCaps
-	/**
-	 * Function to forge a SQL criteria
-	 *
-	 * @param  array    $matches       Array of found string by regex search
-	 * @return string                  Forged criteria. Example: "t.field like 'abc%'"
-	 */
-	static function _forge_criteria_callback($matches)
-	{
+    /**
+     * Function to forge a SQL criteria
+     *
+     * @param  array    $matches       Array of found string by regex search
+     * @return string                  Forged criteria. Example: "t.field like 'abc%'"
+     */
+    static function _forge_criteria_callback($matches)
+    {
         // phpcs:enable
-	    global $db;
+        global $db;
 
-	    //dol_syslog("Convert matches ".$matches[1]);
-	    if (empty($matches[1])) return '';
-	    $tmp=explode(':',$matches[1]);
+        //dol_syslog("Convert matches ".$matches[1]);
+        if (empty($matches[1])) return '';
+        $tmp=explode(':',$matches[1]);
         if (count($tmp) < 3) return '';
 
-	    $tmpescaped=$tmp[2];
-	    if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
-	    {
-	        $tmpescaped = "'".$db->escape($regbis[1])."'";
-	    }
-	    else
-	    {
-	        $tmpescaped = $db->escape($tmpescaped);
-	    }
-	    return $db->escape($tmp[0]).' '.strtoupper($db->escape($tmp[1]))." ".$tmpescaped;
-	}
+        $tmpescaped=$tmp[2];
+        if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
+        {
+            $tmpescaped = "'".$db->escape($regbis[1])."'";
+        }
+        else
+        {
+            $tmpescaped = $db->escape($tmpescaped);
+        }
+        return $db->escape($tmp[0]).' '.strtoupper($db->escape($tmp[1]))." ".$tmpescaped;
+    }
 }

Please login to merge, or discard this patch.

Spacing +23 added lines, -23 removed lines patch added patch discarded remove patch

@@ -46,7 +46,7 @@  discard block
 block discarded – undo
      * @param   string  $cachedir       Cache dir
      * @param   boolean $refreshCache   Update cache
      */
-    function __construct($db, $cachedir='', $refreshCache=false)
+    function __construct($db, $cachedir = '', $refreshCache = false)
     {
         global $conf, $dolibarr_main_url_root;
 
@@ -54,14 +54,14 @@  discard block
 block discarded – undo
         Defaults::$cacheDirectory = $cachedir;
 
         $this->db = $db;
-        $production_mode = ( empty($conf->global->API_PRODUCTION_MODE) ? false : true );
+        $production_mode = (empty($conf->global->API_PRODUCTION_MODE) ? false : true);
         $this->r = new Restler($production_mode, $refreshCache);
 
-        $urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim($dolibarr_main_url_root));
-        $urlwithroot=$urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
+        $urlwithouturlroot = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim($dolibarr_main_url_root));
+        $urlwithroot = $urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
 
-        $urlwithouturlrootautodetect=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim(DOL_MAIN_URL_ROOT));
-        $urlwithrootautodetect=$urlwithouturlroot.DOL_URL_ROOT; // This is to use local domain autodetected by dolibarr from url
+        $urlwithouturlrootautodetect = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim(DOL_MAIN_URL_ROOT));
+        $urlwithrootautodetect = $urlwithouturlroot.DOL_URL_ROOT; // This is to use local domain autodetected by dolibarr from url
 
         $this->r->setBaseUrls($urlwithouturlroot, $urlwithouturlrootautodetect);
         $this->r->setAPIVersion(1);
@@ -118,9 +118,9 @@  discard block
 block discarded – undo
         unset($object->ref_next);
         unset($object->ref_int);
 
-        unset($object->projet);     // Should be fk_project
-        unset($object->project);    // Should be fk_project
-        unset($object->author);     // Should be fk_user_author
+        unset($object->projet); // Should be fk_project
+        unset($object->project); // Should be fk_project
+        unset($object->author); // Should be fk_user_author
         unset($object->timespent_old_duration);
         unset($object->timespent_id);
         unset($object->timespent_duration);
@@ -162,9 +162,9 @@  discard block
 block discarded – undo
         unset($object->oldcopy);
 
         // If object has lines, remove $db property
-        if (isset($object->lines) && is_array($object->lines) && count($object->lines) > 0)  {
+        if (isset($object->lines) && is_array($object->lines) && count($object->lines) > 0) {
             $nboflines = count($object->lines);
-        	for ($i=0; $i < $nboflines; $i++)
+        	for ($i = 0; $i < $nboflines; $i++)
             {
                 $this->_cleanObjectDatas($object->lines[$i]);
 
@@ -200,7 +200,7 @@  discard block
 block discarded – undo
             }
         }
 
-        if (! empty($object->thirdparty) && is_object($object->thirdparty))
+        if (!empty($object->thirdparty) && is_object($object->thirdparty))
         {
         	$this->_cleanObjectDatas($object->thirdparty);
         }
@@ -222,7 +222,7 @@  discard block
 block discarded – undo
      * @return bool
 	 * @throws RestException
 	 */
-    static function _checkAccessToResource($resource, $resource_id=0, $dbtablename='', $feature2='', $dbt_keyfield='fk_soc', $dbt_select='rowid')
+    static function _checkAccessToResource($resource, $resource_id = 0, $dbtablename = '', $feature2 = '', $dbt_keyfield = 'fk_soc', $dbt_select = 'rowid')
     {
 
 		// Features/modules to check
@@ -235,7 +235,7 @@  discard block
 block discarded – undo
 		}
 
 		// More subfeatures to check
-		if (! empty($feature2)) {
+		if (!empty($feature2)) {
 			$feature2 = explode("|", $feature2);
 		}
 
@@ -252,17 +252,17 @@  discard block
 block discarded – undo
 	{
 	    //$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
 	    //$tmp=preg_replace_all('/'.$regexstring.'/', '', $sqlfilters);
-	    $tmp=$sqlfilters;
-	    $ok=0;
-	    $i=0; $nb=strlen($tmp);
-	    $counter=0;
+	    $tmp = $sqlfilters;
+	    $ok = 0;
+	    $i = 0; $nb = strlen($tmp);
+	    $counter = 0;
 	    while ($i < $nb)
 	    {
-	        if ($tmp[$i]=='(') $counter++;
-	        if ($tmp[$i]==')') $counter--;
+	        if ($tmp[$i] == '(') $counter++;
+	        if ($tmp[$i] == ')') $counter--;
             if ($counter < 0)
             {
-	           $error="Bad sqlfilters=".$sqlfilters;
+	           $error = "Bad sqlfilters=".$sqlfilters;
 	           dol_syslog($error, LOG_WARNING);
 	           return false;
             }
@@ -285,10 +285,10 @@  discard block
 block discarded – undo
 
 	    //dol_syslog("Convert matches ".$matches[1]);
 	    if (empty($matches[1])) return '';
-	    $tmp=explode(':',$matches[1]);
+	    $tmp = explode(':', $matches[1]);
         if (count($tmp) < 3) return '';
 
-	    $tmpescaped=$tmp[2];
+	    $tmpescaped = $tmp[2];
 	    if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
 	    {
 	        $tmpescaped = "'".$db->escape($regbis[1])."'";

Please login to merge, or discard this patch.

Braces +17 added lines, -9 removed lines patch added patch discarded remove patch

@@ -50,7 +50,9 @@  discard block
 block discarded – undo
     {
         global $conf, $dolibarr_main_url_root;
 
-        if (empty($cachedir)) $cachedir = $conf->api->dir_temp;
+        if (empty($cachedir)) {
+            $cachedir = $conf->api->dir_temp;
+        }
         Defaults::$cacheDirectory = $cachedir;
 
         $this->db = $db;
@@ -229,8 +231,7 @@  discard block
 block discarded – undo
 		$featuresarray = array($resource);
 		if (preg_match('/&/', $resource)) {
 			$featuresarray = explode("&", $resource);
-		}
-		else if (preg_match('/\|/', $resource)) {
+		} else if (preg_match('/\|/', $resource)) {
 			$featuresarray = explode("|", $resource);
 		}
 
@@ -258,8 +259,12 @@  discard block
 block discarded – undo
 	    $counter=0;
 	    while ($i < $nb)
 	    {
-	        if ($tmp[$i]=='(') $counter++;
-	        if ($tmp[$i]==')') $counter--;
+	        if ($tmp[$i]=='(') {
+	            $counter++;
+	        }
+	        if ($tmp[$i]==')') {
+	            $counter--;
+	        }
             if ($counter < 0)
             {
 	           $error="Bad sqlfilters=".$sqlfilters;
@@ -284,16 +289,19 @@  discard block
 block discarded – undo
 	    global $db;
 
 	    //dol_syslog("Convert matches ".$matches[1]);
-	    if (empty($matches[1])) return '';
+	    if (empty($matches[1])) {
+	        return '';
+	    }
 	    $tmp=explode(':',$matches[1]);
-        if (count($tmp) < 3) return '';
+        if (count($tmp) < 3) {
+            return '';
+        }
 
 	    $tmpescaped=$tmp[2];
 	    if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
 	    {
 	        $tmpescaped = "'".$db->escape($regbis[1])."'";
-	    }
-	    else
+	    } else
 	    {
 	        $tmpescaped = $db->escape($tmpescaped);
 	    }

Please login to merge, or discard this patch.

dolibarr/htdocs/api/class/api_access.class.php 3 patches

Indentation +121 added lines, -121 removed lines patch added patch discarded remove patch

@@ -42,151 +42,151 @@
 block discarded – undo
  */
 class DolibarrApiAccess implements iAuthenticate
 {
-	const REALM = 'Restricted Dolibarr API';
+    const REALM = 'Restricted Dolibarr API';
 
-	/**
-	 * @var array $requires	role required by API method		user / external / admin
-	 */
-	public static $requires = array('user','external','admin');
+    /**
+     * @var array $requires	role required by API method		user / external / admin
+     */
+    public static $requires = array('user','external','admin');
 
-	/**
-	 * @var string $role		user role
-	 */
+    /**
+     * @var string $role		user role
+     */
     public static $role = 'user';
 
-	/**
-	 * @var User		$user	Loggued user
-	 */
-	public static $user = '';
+    /**
+     * @var User		$user	Loggued user
+     */
+    public static $user = '';
 
     // phpcs:disable PEAR.NamingConventions.ValidFunctionName
-	/**
-	 * Check access
-	 *
-	 * @return bool
-	 * @throws RestException
-	 */
-	public function __isAllowed()
-	{
+    /**
+     * Check access
+     *
+     * @return bool
+     * @throws RestException
+     */
+    public function __isAllowed()
+    {
         // phpcs:enable
-		global $conf, $db;
+        global $conf, $db;
 
-		$login = '';
-		$stored_key = '';
+        $login = '';
+        $stored_key = '';
 
-		$userClass = Defaults::$userIdentifierClass;
+        $userClass = Defaults::$userIdentifierClass;
 
-		/*foreach ($_SERVER as $key => $val)
+        /*foreach ($_SERVER as $key => $val)
 		{
 		    dol_syslog($key.' - '.$val);
 		}*/
 
-		// api key can be provided in url with parameter api_key=xxx or ni header with header DOLAPIKEY:xxx
-		$api_key = '';
-		if (isset($_GET['api_key']))	// For backward compatibility
-		{
-		    // TODO Add option to disable use of api key on url. Return errors if used.
-		    $api_key = $_GET['api_key'];
-		}
-		if (isset($_GET['DOLAPIKEY']))
-		{
-		    // TODO Add option to disable use of api key on url. Return errors if used.
-		    $api_key = $_GET['DOLAPIKEY'];                     // With GET method
-		}
-		if (isset($_SERVER['HTTP_DOLAPIKEY']))         // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
-		{
-		    $api_key = $_SERVER['HTTP_DOLAPIKEY'];     // With header method (recommanded)
-		}
+        // api key can be provided in url with parameter api_key=xxx or ni header with header DOLAPIKEY:xxx
+        $api_key = '';
+        if (isset($_GET['api_key']))	// For backward compatibility
+        {
+            // TODO Add option to disable use of api key on url. Return errors if used.
+            $api_key = $_GET['api_key'];
+        }
+        if (isset($_GET['DOLAPIKEY']))
+        {
+            // TODO Add option to disable use of api key on url. Return errors if used.
+            $api_key = $_GET['DOLAPIKEY'];                     // With GET method
+        }
+        if (isset($_SERVER['HTTP_DOLAPIKEY']))         // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
+        {
+            $api_key = $_SERVER['HTTP_DOLAPIKEY'];     // With header method (recommanded)
+        }
 
-		if ($api_key)
-		{
-			$userentity = 0;
-
-			$sql = "SELECT u.login, u.datec, u.api_key, ";
-			$sql.= " u.tms as date_modification, u.entity";
-			$sql.= " FROM ".MAIN_DB_PREFIX."user as u";
-			$sql.= " WHERE u.api_key = '".$db->escape($api_key)."'";
-			// TODO Check if 2 users has same API key.
-
-			$result = $db->query($sql);
-			if ($result)
-			{
-				if ($db->num_rows($result))
-				{
-					$obj = $db->fetch_object($result);
-					$login = $obj->login;
-					$stored_key = $obj->api_key;
-					$userentity = $obj->entity;
-
-					if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1))		// If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
-					{
-						$conf->entity = ($obj->entity?$obj->entity:1);
-						// We must also reload global conf to get params from the entity
-						dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
-						$conf->setValues($db);
-					}
-				}
-			}
-			else {
-				throw new RestException(503, 'Error when fetching user api_key :'.$db->error_msg);
-			}
-
-			if ($stored_key != $api_key) {		// This should not happen since we did a search on api_key
-				$userClass::setCacheIdentifier($api_key);
-				return false;
-			}
-
-			if (! $login)
-			{
-			    throw new RestException(503, 'Error when searching login user from api key');
-			}
-			$fuser = new User($db);
-			$result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity));	// If user is not entity 0, we search in working entity $conf->entity  (that may have been forced to a different value than user entity)
-			if ($result <= 0) {
-				throw new RestException(503, 'Error when fetching user :'.$fuser->error.' (conf->entity='.$conf->entity.')');
-			}
-			$fuser->getrights();
-			static::$user = $fuser;
-
-			if($fuser->societe_id)
-				static::$role = 'external';
-
-			if($fuser->admin)
-				static::$role = 'admin';
+        if ($api_key)
+        {
+            $userentity = 0;
+
+            $sql = "SELECT u.login, u.datec, u.api_key, ";
+            $sql.= " u.tms as date_modification, u.entity";
+            $sql.= " FROM ".MAIN_DB_PREFIX."user as u";
+            $sql.= " WHERE u.api_key = '".$db->escape($api_key)."'";
+            // TODO Check if 2 users has same API key.
+
+            $result = $db->query($sql);
+            if ($result)
+            {
+                if ($db->num_rows($result))
+                {
+                    $obj = $db->fetch_object($result);
+                    $login = $obj->login;
+                    $stored_key = $obj->api_key;
+                    $userentity = $obj->entity;
+
+                    if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1))		// If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
+                    {
+                        $conf->entity = ($obj->entity?$obj->entity:1);
+                        // We must also reload global conf to get params from the entity
+                        dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
+                        $conf->setValues($db);
+                    }
+                }
+            }
+            else {
+                throw new RestException(503, 'Error when fetching user api_key :'.$db->error_msg);
+            }
+
+            if ($stored_key != $api_key) {		// This should not happen since we did a search on api_key
+                $userClass::setCacheIdentifier($api_key);
+                return false;
+            }
+
+            if (! $login)
+            {
+                throw new RestException(503, 'Error when searching login user from api key');
+            }
+            $fuser = new User($db);
+            $result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity));	// If user is not entity 0, we search in working entity $conf->entity  (that may have been forced to a different value than user entity)
+            if ($result <= 0) {
+                throw new RestException(503, 'Error when fetching user :'.$fuser->error.' (conf->entity='.$conf->entity.')');
+            }
+            $fuser->getrights();
+            static::$user = $fuser;
+
+            if($fuser->societe_id)
+                static::$role = 'external';
+
+            if($fuser->admin)
+                static::$role = 'admin';
+        }
+        else
+        {
+            throw new RestException(401, "Failed to login to API. No parameter 'HTTP_DOLAPIKEY' on HTTP header (and no parameter DOLAPIKEY in URL).");
         }
-		else
-		{
-		    throw new RestException(401, "Failed to login to API. No parameter 'HTTP_DOLAPIKEY' on HTTP header (and no parameter DOLAPIKEY in URL).");
-		}
 
-	    $userClass::setCacheIdentifier(static::$role);
-	    Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
-	    $requirefortest = static::$requires;
-	    if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
-	    return in_array(static::$role, (array) $requirefortest) || static::$role == 'admin';
-	}
+        $userClass::setCacheIdentifier(static::$role);
+        Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
+        $requirefortest = static::$requires;
+        if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
+        return in_array(static::$role, (array) $requirefortest) || static::$role == 'admin';
+    }
 
     // phpcs:disable PEAR.NamingConventions.ValidFunctionName
-	/**
-	 * @return string string to be used with WWW-Authenticate header
-	 * @example Basic
-	 * @example Digest
-	 * @example OAuth
-	 */
-	public function __getWWWAuthenticateString()
+    /**
+     * @return string string to be used with WWW-Authenticate header
+     * @example Basic
+     * @example Digest
+     * @example OAuth
+     */
+    public function __getWWWAuthenticateString()
     {
         // phpcs:enable
         return '';
     }
 
-	/**
-	 * Verify access
-	 *
-	 * @param   array $m Properties of method
-	 *
-	 * @access private
-	 * @return bool
-	 */
+    /**
+     * Verify access
+     *
+     * @param   array $m Properties of method
+     *
+     * @access private
+     * @return bool
+     */
     public static function verifyAccess(array $m)
     {
         $requires = isset($m['class']['DolibarrApiAccess']['properties']['requires'])

Please login to merge, or discard this patch.

Spacing +15 added lines, -15 removed lines patch added patch discarded remove patch

@@ -18,7 +18,7 @@  discard block
 block discarded – undo
 
 // Create the autoloader for Luracast
 require_once DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/AutoLoader.php';
-call_user_func(function () {
+call_user_func(function() {
     $loader = Luracast\Restler\AutoLoader::instance();
     spl_autoload_register($loader);
     return $loader;
@@ -47,7 +47,7 @@  discard block
 block discarded – undo
 	/**
 	 * @var array $requires	role required by API method		user / external / admin
 	 */
-	public static $requires = array('user','external','admin');
+	public static $requires = array('user', 'external', 'admin');
 
 	/**
 	 * @var string $role		user role
@@ -91,11 +91,11 @@  discard block
 block discarded – undo
 		if (isset($_GET['DOLAPIKEY']))
 		{
 		    // TODO Add option to disable use of api key on url. Return errors if used.
-		    $api_key = $_GET['DOLAPIKEY'];                     // With GET method
+		    $api_key = $_GET['DOLAPIKEY']; // With GET method
 		}
 		if (isset($_SERVER['HTTP_DOLAPIKEY']))         // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
 		{
-		    $api_key = $_SERVER['HTTP_DOLAPIKEY'];     // With header method (recommanded)
+		    $api_key = $_SERVER['HTTP_DOLAPIKEY']; // With header method (recommanded)
 		}
 
 		if ($api_key)
@@ -103,9 +103,9 @@  discard block
 block discarded – undo
 			$userentity = 0;
 
 			$sql = "SELECT u.login, u.datec, u.api_key, ";
-			$sql.= " u.tms as date_modification, u.entity";
-			$sql.= " FROM ".MAIN_DB_PREFIX."user as u";
-			$sql.= " WHERE u.api_key = '".$db->escape($api_key)."'";
+			$sql .= " u.tms as date_modification, u.entity";
+			$sql .= " FROM ".MAIN_DB_PREFIX."user as u";
+			$sql .= " WHERE u.api_key = '".$db->escape($api_key)."'";
 			// TODO Check if 2 users has same API key.
 
 			$result = $db->query($sql);
@@ -118,11 +118,11 @@  discard block
 block discarded – undo
 					$stored_key = $obj->api_key;
 					$userentity = $obj->entity;
 
-					if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1))		// If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
+					if (!defined("DOLENTITY") && $conf->entity != ($obj->entity ? $obj->entity : 1))		// If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
 					{
-						$conf->entity = ($obj->entity?$obj->entity:1);
+						$conf->entity = ($obj->entity ? $obj->entity : 1);
 						// We must also reload global conf to get params from the entity
-						dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
+						dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity.") and we have to reload configuration.", LOG_WARNING);
 						$conf->setValues($db);
 					}
 				}
@@ -136,22 +136,22 @@  discard block
 block discarded – undo
 				return false;
 			}
 
-			if (! $login)
+			if (!$login)
 			{
 			    throw new RestException(503, 'Error when searching login user from api key');
 			}
 			$fuser = new User($db);
-			$result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity));	// If user is not entity 0, we search in working entity $conf->entity  (that may have been forced to a different value than user entity)
+			$result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity)); // If user is not entity 0, we search in working entity $conf->entity  (that may have been forced to a different value than user entity)
 			if ($result <= 0) {
 				throw new RestException(503, 'Error when fetching user :'.$fuser->error.' (conf->entity='.$conf->entity.')');
 			}
 			$fuser->getrights();
 			static::$user = $fuser;
 
-			if($fuser->societe_id)
+			if ($fuser->societe_id)
 				static::$role = 'external';
 
-			if($fuser->admin)
+			if ($fuser->admin)
 				static::$role = 'admin';
         }
 		else
@@ -162,7 +162,7 @@  discard block
 block discarded – undo
 	    $userClass::setCacheIdentifier(static::$role);
 	    Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
 	    $requirefortest = static::$requires;
-	    if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
+	    if (!is_array($requirefortest)) $requirefortest = explode(',', $requirefortest);
 	    return in_array(static::$role, (array) $requirefortest) || static::$role == 'admin';
 	}
 

Please login to merge, or discard this patch.

Braces +22 added lines, -13 removed lines patch added patch discarded remove patch

@@ -83,19 +83,24 @@  discard block
 block discarded – undo
 
 		// api key can be provided in url with parameter api_key=xxx or ni header with header DOLAPIKEY:xxx
 		$api_key = '';
-		if (isset($_GET['api_key']))	// For backward compatibility
+		if (isset($_GET['api_key'])) {
+		    // For backward compatibility
 		{
 		    // TODO Add option to disable use of api key on url. Return errors if used.
 		    $api_key = $_GET['api_key'];
 		}
+		}
 		if (isset($_GET['DOLAPIKEY']))
 		{
 		    // TODO Add option to disable use of api key on url. Return errors if used.
 		    $api_key = $_GET['DOLAPIKEY'];                     // With GET method
 		}
-		if (isset($_SERVER['HTTP_DOLAPIKEY']))         // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
+		if (isset($_SERVER['HTTP_DOLAPIKEY'])) {
+		    // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
 		{
-		    $api_key = $_SERVER['HTTP_DOLAPIKEY'];     // With header method (recommanded)
+		    $api_key = $_SERVER['HTTP_DOLAPIKEY'];
+		}
+		// With header method (recommanded)
 		}
 
 		if ($api_key)
@@ -118,16 +123,17 @@  discard block
 block discarded – undo
 					$stored_key = $obj->api_key;
 					$userentity = $obj->entity;
 
-					if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1))		// If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
+					if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1)) {
+					    // If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
 					{
 						$conf->entity = ($obj->entity?$obj->entity:1);
+					}
 						// We must also reload global conf to get params from the entity
 						dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
 						$conf->setValues($db);
 					}
 				}
-			}
-			else {
+			} else {
 				throw new RestException(503, 'Error when fetching user api_key :'.$db->error_msg);
 			}
 
@@ -148,13 +154,14 @@  discard block
 block discarded – undo
 			$fuser->getrights();
 			static::$user = $fuser;
 
-			if($fuser->societe_id)
-				static::$role = 'external';
+			if($fuser->societe_id) {
+							static::$role = 'external';
+			}
 
-			if($fuser->admin)
-				static::$role = 'admin';
-        }
-		else
+			if($fuser->admin) {
+							static::$role = 'admin';
+			}
+        } else
 		{
 		    throw new RestException(401, "Failed to login to API. No parameter 'HTTP_DOLAPIKEY' on HTTP header (and no parameter DOLAPIKEY in URL).");
 		}
@@ -162,7 +169,9 @@  discard block
 block discarded – undo
 	    $userClass::setCacheIdentifier(static::$role);
 	    Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
 	    $requirefortest = static::$requires;
-	    if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
+	    if (! is_array($requirefortest)) {
+	        $requirefortest=explode(',',$requirefortest);
+	    }
 	    return in_array(static::$role, (array) $requirefortest) || static::$role == 'admin';
 	}
 

Please login to merge, or discard this patch.

dolibarr/htdocs/api/class/api_setup.class.php 3 patches

Indentation +495 added lines, -495 removed lines patch added patch discarded remove patch

@@ -76,7 +76,7 @@  discard block
 block discarded – undo
             {
                 throw new RestException(400, 'error when validating parameter sqlfilters '.$sqlfilters);
             }
-	          $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+                $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
             $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
@@ -143,7 +143,7 @@  discard block
 block discarded – undo
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
             $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
@@ -242,7 +242,7 @@  discard block
 block discarded – undo
             {
                 throw new RestException(400, 'error when validating parameter sqlfilters '.$sqlfilters);
             }
-                  $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+                    $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
             $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
@@ -349,7 +349,7 @@  discard block
 block discarded – undo
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
             $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
@@ -410,7 +410,7 @@  discard block
 block discarded – undo
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
             $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
@@ -468,12 +468,12 @@  discard block
 block discarded – undo
         // Add sql filters
         if ($sqlfilters)
         {
-        	if (! DolibarrApi::_checkFilters($sqlfilters))
-        	{
-        		throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
-        	}
-        	$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-        	$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+            if (! DolibarrApi::_checkFilters($sqlfilters))
+            {
+                throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
+            }
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
         $sql.= $this->db->order($sortfield, $sortorder);
@@ -481,26 +481,26 @@  discard block
 block discarded – undo
         $resql=$this->db->query($sql);
         if ($resql)
         {
-        	if ($this->db->num_rows($resql))
-        	{
-        		while ($tab = $this->db->fetch_object($resql))
-        		{
-        			// New usage
-        			$list[$tab->elementtype][$tab->name]['type']=$tab->type;
-        			$list[$tab->elementtype][$tab->name]['label']=$tab->label;
-        			$list[$tab->elementtype][$tab->name]['size']=$tab->size;
-        			$list[$tab->elementtype][$tab->name]['elementtype']=$tab->elementtype;
-        			$list[$tab->elementtype][$tab->name]['default']=$tab->fielddefault;
-        			$list[$tab->elementtype][$tab->name]['computed']=$tab->fieldcomputed;
-        			$list[$tab->elementtype][$tab->name]['unique']=$tab->fieldunique;
-        			$list[$tab->elementtype][$tab->name]['required']=$tab->fieldrequired;
-        			$list[$tab->elementtype][$tab->name]['param']=($tab->param ? unserialize($tab->param) : '');
-        			$list[$tab->elementtype][$tab->name]['pos']=$tab->pos;
-        			$list[$tab->elementtype][$tab->name]['alwayseditable']=$tab->alwayseditable;
-        			$list[$tab->elementtype][$tab->name]['perms']=$tab->perms;
-        			$list[$tab->elementtype][$tab->name]['list']=$tab->list;
-        		}
-        	}
+            if ($this->db->num_rows($resql))
+            {
+                while ($tab = $this->db->fetch_object($resql))
+                {
+                    // New usage
+                    $list[$tab->elementtype][$tab->name]['type']=$tab->type;
+                    $list[$tab->elementtype][$tab->name]['label']=$tab->label;
+                    $list[$tab->elementtype][$tab->name]['size']=$tab->size;
+                    $list[$tab->elementtype][$tab->name]['elementtype']=$tab->elementtype;
+                    $list[$tab->elementtype][$tab->name]['default']=$tab->fielddefault;
+                    $list[$tab->elementtype][$tab->name]['computed']=$tab->fieldcomputed;
+                    $list[$tab->elementtype][$tab->name]['unique']=$tab->fieldunique;
+                    $list[$tab->elementtype][$tab->name]['required']=$tab->fieldrequired;
+                    $list[$tab->elementtype][$tab->name]['param']=($tab->param ? unserialize($tab->param) : '');
+                    $list[$tab->elementtype][$tab->name]['pos']=$tab->pos;
+                    $list[$tab->elementtype][$tab->name]['alwayseditable']=$tab->alwayseditable;
+                    $list[$tab->elementtype][$tab->name]['perms']=$tab->perms;
+                    $list[$tab->elementtype][$tab->name]['list']=$tab->list;
+                }
+            }
         }
         else
         {
@@ -509,7 +509,7 @@  discard block
 block discarded – undo
 
         if (! count($list))
         {
-        	throw new RestException(404, 'No extrafield found');
+            throw new RestException(404, 'No extrafield found');
         }
 
         return $list;
@@ -548,7 +548,7 @@  discard block
 block discarded – undo
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
             $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
@@ -642,63 +642,63 @@  discard block
 block discarded – undo
         return $list;
     }
 
-     /**
-     * Get the list of tickets categories.
-     *
-     * @param string    $sortfield  Sort field
-     * @param string    $sortorder  Sort order
-     * @param int       $limit      Number of items per page
-     * @param int       $page       Page number (starting from zero)
-     * @param string    $sqlfilters Other criteria to filter answers separated by a comma. Syntax example "(t.code:like:'A%') and (t.active:>=:0)"
-     * @return List of events types
-     *
-     * @url     GET dictionary/ticket_categories
-     *
-     * @throws RestException
-     */
+        /**
+         * Get the list of tickets categories.
+         *
+         * @param string    $sortfield  Sort field
+         * @param string    $sortorder  Sort order
+         * @param int       $limit      Number of items per page
+         * @param int       $page       Page number (starting from zero)
+         * @param string    $sqlfilters Other criteria to filter answers separated by a comma. Syntax example "(t.code:like:'A%') and (t.active:>=:0)"
+         * @return List of events types
+         *
+         * @url     GET dictionary/ticket_categories
+         *
+         * @throws RestException
+         */
     function getTicketsCategories($sortfield = "code", $sortorder = 'ASC', $limit = 100, $page = 0, $sqlfilters = '')
     {
-    	$list = array();
-
-    	$sql = "SELECT rowid, code, pos,  label, use_default, description";
-    	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_category as t";
-    	$sql.= " WHERE t.active = 1";
-    	// Add sql filters
-    	if ($sqlfilters)
-    	{
-    		if (! DolibarrApi::_checkFilters($sqlfilters))
-    		{
-    			throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
-    		}
-    		$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-    		$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
-    	}
-
-
-    	$sql.= $this->db->order($sortfield, $sortorder);
-
-    	if ($limit) {
-    		if ($page < 0) {
-    			$page = 0;
-    		}
-    		$offset = $limit * $page;
-
-    		$sql .= $this->db->plimit($limit, $offset);
-    	}
-
-    	$result = $this->db->query($sql);
-
-    	if ($result) {
-    		$num = $this->db->num_rows($result);
-    		$min = min($num, ($limit <= 0 ? $num : $limit));
-    		for ($i = 0; $i < $min; $i++) {
-    			$list[] = $this->db->fetch_object($result);
-    		}
-    	} else {
-    		throw new RestException(503, 'Error when retrieving list of ticket categories : '.$this->db->lasterror());
-    	}
-
-    	return $list;
+        $list = array();
+
+        $sql = "SELECT rowid, code, pos,  label, use_default, description";
+        $sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_category as t";
+        $sql.= " WHERE t.active = 1";
+        // Add sql filters
+        if ($sqlfilters)
+        {
+            if (! DolibarrApi::_checkFilters($sqlfilters))
+            {
+                throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
+            }
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+        }
+
+
+        $sql.= $this->db->order($sortfield, $sortorder);
+
+        if ($limit) {
+            if ($page < 0) {
+                $page = 0;
+            }
+            $offset = $limit * $page;
+
+            $sql .= $this->db->plimit($limit, $offset);
+        }
+
+        $result = $this->db->query($sql);
+
+        if ($result) {
+            $num = $this->db->num_rows($result);
+            $min = min($num, ($limit <= 0 ? $num : $limit));
+            for ($i = 0; $i < $min; $i++) {
+                $list[] = $this->db->fetch_object($result);
+            }
+        } else {
+            throw new RestException(503, 'Error when retrieving list of ticket categories : '.$this->db->lasterror());
+        }
+
+        return $list;
     }
 
     /**
@@ -717,47 +717,47 @@  discard block
 block discarded – undo
      */
     function getTicketsSeverities($sortfield = "code", $sortorder = 'ASC', $limit = 100, $page = 0, $sqlfilters = '')
     {
-    	$list = array();
-
-    	$sql = "SELECT rowid, code, pos,  label, use_default, color, description";
-    	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_severity as t";
-    	$sql.= " WHERE t.active = 1";
-    	// Add sql filters
-    	if ($sqlfilters)
-    	{
-    		if (! DolibarrApi::_checkFilters($sqlfilters))
-    		{
-    			throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
-    		}
-    		$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-    		$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
-    	}
-
-
-    	$sql.= $this->db->order($sortfield, $sortorder);
-
-    	if ($limit) {
-    		if ($page < 0) {
-    			$page = 0;
-    		}
-    		$offset = $limit * $page;
-
-    		$sql .= $this->db->plimit($limit, $offset);
-    	}
-
-    	$result = $this->db->query($sql);
-
-    	if ($result) {
-    		$num = $this->db->num_rows($result);
-    		$min = min($num, ($limit <= 0 ? $num : $limit));
-    		for ($i = 0; $i < $min; $i++) {
-    			$list[] = $this->db->fetch_object($result);
-    		}
-    	} else {
-    		throw new RestException(503, 'Error when retrieving list of ticket severities : '.$this->db->lasterror());
-    	}
-
-    	return $list;
+        $list = array();
+
+        $sql = "SELECT rowid, code, pos,  label, use_default, color, description";
+        $sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_severity as t";
+        $sql.= " WHERE t.active = 1";
+        // Add sql filters
+        if ($sqlfilters)
+        {
+            if (! DolibarrApi::_checkFilters($sqlfilters))
+            {
+                throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
+            }
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+        }
+
+
+        $sql.= $this->db->order($sortfield, $sortorder);
+
+        if ($limit) {
+            if ($page < 0) {
+                $page = 0;
+            }
+            $offset = $limit * $page;
+
+            $sql .= $this->db->plimit($limit, $offset);
+        }
+
+        $result = $this->db->query($sql);
+
+        if ($result) {
+            $num = $this->db->num_rows($result);
+            $min = min($num, ($limit <= 0 ? $num : $limit));
+            for ($i = 0; $i < $min; $i++) {
+                $list[] = $this->db->fetch_object($result);
+            }
+        } else {
+            throw new RestException(503, 'Error when retrieving list of ticket severities : '.$this->db->lasterror());
+        }
+
+        return $list;
     }
 
     /**
@@ -776,49 +776,49 @@  discard block
 block discarded – undo
      */
     function getTicketsTypes($sortfield = "code", $sortorder = 'ASC', $limit = 100, $page = 0, $sqlfilters = '')
     {
-    	$list = array();
-
-    	$sql = "SELECT rowid, code, pos,  label, use_default, description";
-    	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_type as t";
-    	$sql.= " WHERE t.active = 1";
-    	if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
-    	if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
-    	// Add sql filters
-    	if ($sqlfilters)
-    	{
-    		if (! DolibarrApi::_checkFilters($sqlfilters))
-    		{
-    			throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
-    		}
-    		$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-    		$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
-    	}
-
-
-    	$sql.= $this->db->order($sortfield, $sortorder);
-
-    	if ($limit) {
-    		if ($page < 0) {
-    			$page = 0;
-    		}
-    		$offset = $limit * $page;
-
-    		$sql .= $this->db->plimit($limit, $offset);
-    	}
-
-    	$result = $this->db->query($sql);
-
-    	if ($result) {
-    		$num = $this->db->num_rows($result);
-    		$min = min($num, ($limit <= 0 ? $num : $limit));
-    		for ($i = 0; $i < $min; $i++) {
-    			$list[] = $this->db->fetch_object($result);
-    		}
-    	} else {
-    		throw new RestException(503, 'Error when retrieving list of ticket types : '.$this->db->lasterror());
-    	}
-
-    	return $list;
+        $list = array();
+
+        $sql = "SELECT rowid, code, pos,  label, use_default, description";
+        $sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_type as t";
+        $sql.= " WHERE t.active = 1";
+        if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
+        if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+        // Add sql filters
+        if ($sqlfilters)
+        {
+            if (! DolibarrApi::_checkFilters($sqlfilters))
+            {
+                throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
+            }
+            $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+        }
+
+
+        $sql.= $this->db->order($sortfield, $sortorder);
+
+        if ($limit) {
+            if ($page < 0) {
+                $page = 0;
+            }
+            $offset = $limit * $page;
+
+            $sql .= $this->db->plimit($limit, $offset);
+        }
+
+        $result = $this->db->query($sql);
+
+        if ($result) {
+            $num = $this->db->num_rows($result);
+            $min = min($num, ($limit <= 0 ? $num : $limit));
+            for ($i = 0; $i < $min; $i++) {
+                $list[] = $this->db->fetch_object($result);
+            }
+        } else {
+            throw new RestException(503, 'Error when retrieving list of ticket types : '.$this->db->lasterror());
+        }
+
+        return $list;
     }
 
 
@@ -834,328 +834,328 @@  discard block
 block discarded – undo
      */
     function getCheckIntegrity($target)
     {
-    	global $langs, $conf;
-
-    	if (! DolibarrApiAccess::$user->admin
-    		&& (empty($conf->global->API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK) || DolibarrApiAccess::$user->login != $conf->global->API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK))
-    	{
-    		throw new RestException(503, 'Error API open to admin users only or to login user defined with constant API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK');
-    	}
-
-    	require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
-    	require_once DOL_DOCUMENT_ROOT.'/core/lib/geturl.lib.php';
-
-    	$langs->load("admin");
-
-    	$outexpectedchecksum = '';
-    	$outcurrentchecksum = '';
-
-    	// Modified or missing files
-    	$file_list = array('missing' => array(), 'updated' => array());
-
-    	// Local file to compare to
-    	$xmlshortfile = GETPOST('xmlshortfile')?GETPOST('xmlshortfile'):'/install/filelist-'.DOL_VERSION.'.xml';
-    	$xmlfile = DOL_DOCUMENT_ROOT.$xmlshortfile;
-    	// Remote file to compare to
-    	$xmlremote = ($target == 'default' ? '' : $target);
-    	if (empty($xmlremote) && ! empty($conf->global->MAIN_FILECHECK_URL)) $xmlremote = $conf->global->MAIN_FILECHECK_URL;
-    	$param='MAIN_FILECHECK_URL_'.DOL_VERSION;
-    	if (empty($xmlremote) && ! empty($conf->global->$param)) $xmlremote = $conf->global->$param;
-    	if (empty($xmlremote)) $xmlremote = 'https://www.dolibarr.org/files/stable/signatures/filelist-'.DOL_VERSION.'.xml';
-
-    	if ($target == 'local')
-    	{
-    		if (dol_is_file($xmlfile))
-    		{
-    			$xml = simplexml_load_file($xmlfile);
-    		}
-    		else
-    		{
-    			throw new RestException(500, $langs->trans('XmlNotFound') . ': ' . $xmlfile);
-    		}
-    	}
-    	else
-    	{
-    		$xmlarray = getURLContent($xmlremote);
-
-    		// Return array('content'=>response,'curl_error_no'=>errno,'curl_error_msg'=>errmsg...)
-    		if (! $xmlarray['curl_error_no'] && $xmlarray['http_code'] != '404')
-    		{
-    			$xmlfile = $xmlarray['content'];
-    			//print "xmlfilestart".$xmlfile."endxmlfile";
-    			$xml = simplexml_load_string($xmlfile);
-    		}
-    		else
-    		{
-    			$errormsg=$langs->trans('XmlNotFound') . ': ' . $xmlremote.' - '.$xmlarray['http_code'].' '.$xmlarray['curl_error_no'].' '.$xmlarray['curl_error_msg'];
-    			throw new RestException(500, $errormsg);
-    		}
-    	}
-
-
-
-    	if ($xml)
-    	{
-    		$checksumconcat = array();
-    		$file_list = array();
-    		$out = '';
-
-    		// Forced constants
-    		if (is_object($xml->dolibarr_constants[0]))
-    		{
-    			$out.=load_fiche_titre($langs->trans("ForcedConstants"));
-
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Constant") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedValue") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("Value") . '</td>';
-    			$out.='</tr>'."\n";
-
-    			$i = 0;
-    			foreach ($xml->dolibarr_constants[0]->constant as $constant)    // $constant is a simpleXMLElement
-    			{
-    				$constname=$constant['name'];
-    				$constvalue=(string) $constant;
-    				$constvalue = (empty($constvalue)?'0':$constvalue);
-    				// Value found
-    				$value='';
-    				if ($constname && $conf->global->$constname != '') $value=$conf->global->$constname;
-    				$valueforchecksum=(empty($value)?'0':$value);
-
-    				$checksumconcat[]=$valueforchecksum;
-
-    				$i++;
-    				$out.='<tr class="oddeven">';
-    				$out.='<td>'.$i.'</td>' . "\n";
-    				$out.='<td>'.$constname.'</td>' . "\n";
-    				$out.='<td align="center">'.$constvalue.'</td>' . "\n";
-    				$out.='<td align="center">'.$valueforchecksum.'</td>' . "\n";
-    				$out.="</tr>\n";
-    			}
-
-    			if ($i==0)
-    			{
-    				$out.='<tr class="oddeven"><td colspan="4" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
-    			}
-    			$out.='</table>';
-    			$out.='</div>';
-
-    			$out.='<br>';
-    		}
-
-    		// Scan htdocs
-    		if (is_object($xml->dolibarr_htdocs_dir[0]))
-    		{
-    			//var_dump($xml->dolibarr_htdocs_dir[0]['includecustom']);exit;
-    			$includecustom=(empty($xml->dolibarr_htdocs_dir[0]['includecustom'])?0:$xml->dolibarr_htdocs_dir[0]['includecustom']);
-
-    			// Defined qualified files (must be same than into generate_filelist_xml.php)
-    			$regextoinclude='\.(php|css|html|js|json|tpl|jpg|png|gif|sql|lang)$';
-    			$regextoexclude='('.($includecustom?'':'custom|').'documents|conf|install|public\/test|Shared\/PCLZip|nusoap\/lib\/Mail|php\/example|php\/test|geoip\/sample.*\.php|ckeditor\/samples|ckeditor\/adapters)$';  // Exclude dirs
-    			$scanfiles = dol_dir_list(DOL_DOCUMENT_ROOT, 'files', 1, $regextoinclude, $regextoexclude);
-
-    			// Fill file_list with files in signature, new files, modified files
-    			$ret = getFilesUpdated($file_list, $xml->dolibarr_htdocs_dir[0], '', DOL_DOCUMENT_ROOT, $checksumconcat, $scanfiles);		// Fill array $file_list
-    			// Complete with list of new files
-    			foreach ($scanfiles as $keyfile => $valfile)
-    			{
-    				$tmprelativefilename=preg_replace('/^'.preg_quote(DOL_DOCUMENT_ROOT,'/').'/','', $valfile['fullname']);
-    				if (! in_array($tmprelativefilename, $file_list['insignature']))
-    				{
-    					$md5newfile=@md5_file($valfile['fullname']);    // Can fails if we don't have permission to open/read file
-    					$file_list['added'][]=array('filename'=>$tmprelativefilename, 'md5'=>$md5newfile);
-    				}
-    			}
-
-    			// Files missings
-    			$out.=load_fiche_titre($langs->trans("FilesMissing"));
-
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Filename") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
-    			$out.='</tr>'."\n";
-    			$tmpfilelist = dol_sort_array($file_list['missing'], 'filename');
-    			if (is_array($tmpfilelist) && count($tmpfilelist))
-    			{
-    				$i = 0;
-    				foreach ($tmpfilelist as $file)
-    				{
-    					$i++;
-    					$out.='<tr class="oddeven">';
-    					$out.='<td>'.$i.'</td>' . "\n";
-    					$out.='<td>'.$file['filename'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
-    					$out.="</tr>\n";
-    				}
-    			}
-    			else
-    			{
-    				$out.='<tr class="oddeven"><td colspan="3" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
-    			}
-    			$out.='</table>';
-    			$out.='</div>';
-
-    			$out.='<br>';
-
-    			// Files modified
-    			$out.=load_fiche_titre($langs->trans("FilesModified"));
-
-    			$totalsize=0;
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Filename") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("CurrentChecksum") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("Size") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("DateModification") . '</td>';
-    			$out.='</tr>'."\n";
-    			$tmpfilelist2 = dol_sort_array($file_list['updated'], 'filename');
-    			if (is_array($tmpfilelist2) && count($tmpfilelist2))
-    			{
-    				$i = 0;
-    				foreach ($tmpfilelist2 as $file)
-    				{
-    					$i++;
-    					$out.='<tr class="oddeven">';
-    					$out.='<td>'.$i.'</td>' . "\n";
-    					$out.='<td>'.$file['filename'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['md5'].'</td>' . "\n";
-    					$size = dol_filesize(DOL_DOCUMENT_ROOT.'/'.$file['filename']);
-    					$totalsize += $size;
-    					$out.='<td align="right">'.dol_print_size($size).'</td>' . "\n";
-    					$out.='<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']),'dayhour').'</td>' . "\n";
-    					$out.="</tr>\n";
-    				}
-    				$out.='<tr class="liste_total">';
-    				$out.='<td></td>' . "\n";
-    				$out.='<td>'.$langs->trans("Total").'</td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
-    				$out.='<td align="right"></td>' . "\n";
-    				$out.="</tr>\n";
-    			}
-    			else
-    			{
-    				$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
-    			}
-    			$out.='</table>';
-    			$out.='</div>';
-
-    			$out.='<br>';
-
-    			// Files added
-    			$out.=load_fiche_titre($langs->trans("FilesAdded"));
-
-    			$totalsize = 0;
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Filename") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("CurrentChecksum") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("Size") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("DateModification") . '</td>';
-    			$out.='</tr>'."\n";
-    			$tmpfilelist3 = dol_sort_array($file_list['added'], 'filename');
-    			if (is_array($tmpfilelist3) && count($tmpfilelist3))
-    			{
-    				$i = 0;
-    				foreach ($tmpfilelist3 as $file)
-    				{
-    					$i++;
-    					$out.='<tr class="oddeven">';
-    					$out.='<td>'.$i.'</td>' . "\n";
-    					$out.='<td>'.$file['filename'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['md5'].'</td>' . "\n";
-    					$size = dol_filesize(DOL_DOCUMENT_ROOT.'/'.$file['filename']);
-    					$totalsize += $size;
-    					$out.='<td align="right">'.dol_print_size($size).'</td>' . "\n";
-    					$out.='<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']),'dayhour').'</td>' . "\n";
-    					$out.="</tr>\n";
-    				}
-    				$out.='<tr class="liste_total">';
-    				$out.='<td></td>' . "\n";
-    				$out.='<td>'.$langs->trans("Total").'</td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
-    				$out.='<td align="right"></td>' . "\n";
-    				$out.="</tr>\n";
-    			}
-    			else
-    			{
-    				$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
-    			}
-    			$out.='</table>';
-    			$out.='</div>';
-
-
-    			// Show warning
-    			if (empty($tmpfilelist) && empty($tmpfilelist2) && empty($tmpfilelist3))
-    			{
-    				//setEventMessages($langs->trans("FileIntegrityIsStrictlyConformedWithReference"), null, 'mesgs');
-    			}
-    			else
-    			{
-    				//setEventMessages($langs->trans("FileIntegritySomeFilesWereRemovedOrModified"), null, 'warnings');
-    			}
-    		}
-    		else
-    		{
-    			throw new RestException(500, 'Error: Failed to found dolibarr_htdocs_dir into XML file '.$xmlfile);
-    		}
-
-
-    		// Scan scripts
-
-
-    		asort($checksumconcat); // Sort list of checksum
-    		//var_dump($checksumconcat);
-    		$checksumget = md5(join(',',$checksumconcat));
-    		$checksumtoget = trim((string) $xml->dolibarr_htdocs_dir_checksum);
-
-    		$outexpectedchecksum = ($checksumtoget ? $checksumtoget : $langs->trans("Unknown"));
-    		if ($checksumget == $checksumtoget)
-    		{
-    			if (count($file_list['added']))
-    			{
-    				$resultcode = 'warning';
-    				$resultcomment='FileIntegrityIsOkButFilesWereAdded';
-    				//$outcurrentchecksum =  $checksumget.' - <span class="'.$resultcode.'">'.$langs->trans("FileIntegrityIsOkButFilesWereAdded").'</span>';
-    				$outcurrentchecksum =  $checksumget;
-    			}
-    			else
-    			{
-    				$resultcode = 'ok';
-    				$resultcomment='Success';
-    				//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
-    				$outcurrentchecksum =  $checksumget;
-    			}
-    		}
-    		else
-    		{
-    			$resultcode = 'error';
-    			$resultcomment='Error';
-    			//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
-    			$outcurrentchecksum =  $checksumget;
-    		}
-    	}
-    	else {
-    		throw new RestException(404, 'No signature file known');
-    	}
-
-    	return array('resultcode'=>$resultcode, 'resultcomment'=>$resultcomment, 'expectedchecksum'=> $outexpectedchecksum, 'currentchecksum'=> $outcurrentchecksum, 'out'=>$out);
+        global $langs, $conf;
+
+        if (! DolibarrApiAccess::$user->admin
+            && (empty($conf->global->API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK) || DolibarrApiAccess::$user->login != $conf->global->API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK))
+        {
+            throw new RestException(503, 'Error API open to admin users only or to login user defined with constant API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK');
+        }
+
+        require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
+        require_once DOL_DOCUMENT_ROOT.'/core/lib/geturl.lib.php';
+
+        $langs->load("admin");
+
+        $outexpectedchecksum = '';
+        $outcurrentchecksum = '';
+
+        // Modified or missing files
+        $file_list = array('missing' => array(), 'updated' => array());
+
+        // Local file to compare to
+        $xmlshortfile = GETPOST('xmlshortfile')?GETPOST('xmlshortfile'):'/install/filelist-'.DOL_VERSION.'.xml';
+        $xmlfile = DOL_DOCUMENT_ROOT.$xmlshortfile;
+        // Remote file to compare to
+        $xmlremote = ($target == 'default' ? '' : $target);
+        if (empty($xmlremote) && ! empty($conf->global->MAIN_FILECHECK_URL)) $xmlremote = $conf->global->MAIN_FILECHECK_URL;
+        $param='MAIN_FILECHECK_URL_'.DOL_VERSION;
+        if (empty($xmlremote) && ! empty($conf->global->$param)) $xmlremote = $conf->global->$param;
+        if (empty($xmlremote)) $xmlremote = 'https://www.dolibarr.org/files/stable/signatures/filelist-'.DOL_VERSION.'.xml';
+
+        if ($target == 'local')
+        {
+            if (dol_is_file($xmlfile))
+            {
+                $xml = simplexml_load_file($xmlfile);
+            }
+            else
+            {
+                throw new RestException(500, $langs->trans('XmlNotFound') . ': ' . $xmlfile);
+            }
+        }
+        else
+        {
+            $xmlarray = getURLContent($xmlremote);
+
+            // Return array('content'=>response,'curl_error_no'=>errno,'curl_error_msg'=>errmsg...)
+            if (! $xmlarray['curl_error_no'] && $xmlarray['http_code'] != '404')
+            {
+                $xmlfile = $xmlarray['content'];
+                //print "xmlfilestart".$xmlfile."endxmlfile";
+                $xml = simplexml_load_string($xmlfile);
+            }
+            else
+            {
+                $errormsg=$langs->trans('XmlNotFound') . ': ' . $xmlremote.' - '.$xmlarray['http_code'].' '.$xmlarray['curl_error_no'].' '.$xmlarray['curl_error_msg'];
+                throw new RestException(500, $errormsg);
+            }
+        }
+
+
+
+        if ($xml)
+        {
+            $checksumconcat = array();
+            $file_list = array();
+            $out = '';
+
+            // Forced constants
+            if (is_object($xml->dolibarr_constants[0]))
+            {
+                $out.=load_fiche_titre($langs->trans("ForcedConstants"));
+
+                $out.='<div class="div-table-responsive-no-min">';
+                $out.='<table class="noborder">';
+                $out.='<tr class="liste_titre">';
+                $out.='<td>#</td>';
+                $out.='<td>' . $langs->trans("Constant") . '</td>';
+                $out.='<td align="center">' . $langs->trans("ExpectedValue") . '</td>';
+                $out.='<td align="center">' . $langs->trans("Value") . '</td>';
+                $out.='</tr>'."\n";
+
+                $i = 0;
+                foreach ($xml->dolibarr_constants[0]->constant as $constant)    // $constant is a simpleXMLElement
+                {
+                    $constname=$constant['name'];
+                    $constvalue=(string) $constant;
+                    $constvalue = (empty($constvalue)?'0':$constvalue);
+                    // Value found
+                    $value='';
+                    if ($constname && $conf->global->$constname != '') $value=$conf->global->$constname;
+                    $valueforchecksum=(empty($value)?'0':$value);
+
+                    $checksumconcat[]=$valueforchecksum;
+
+                    $i++;
+                    $out.='<tr class="oddeven">';
+                    $out.='<td>'.$i.'</td>' . "\n";
+                    $out.='<td>'.$constname.'</td>' . "\n";
+                    $out.='<td align="center">'.$constvalue.'</td>' . "\n";
+                    $out.='<td align="center">'.$valueforchecksum.'</td>' . "\n";
+                    $out.="</tr>\n";
+                }
+
+                if ($i==0)
+                {
+                    $out.='<tr class="oddeven"><td colspan="4" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+                }
+                $out.='</table>';
+                $out.='</div>';
+
+                $out.='<br>';
+            }
+
+            // Scan htdocs
+            if (is_object($xml->dolibarr_htdocs_dir[0]))
+            {
+                //var_dump($xml->dolibarr_htdocs_dir[0]['includecustom']);exit;
+                $includecustom=(empty($xml->dolibarr_htdocs_dir[0]['includecustom'])?0:$xml->dolibarr_htdocs_dir[0]['includecustom']);
+
+                // Defined qualified files (must be same than into generate_filelist_xml.php)
+                $regextoinclude='\.(php|css|html|js|json|tpl|jpg|png|gif|sql|lang)$';
+                $regextoexclude='('.($includecustom?'':'custom|').'documents|conf|install|public\/test|Shared\/PCLZip|nusoap\/lib\/Mail|php\/example|php\/test|geoip\/sample.*\.php|ckeditor\/samples|ckeditor\/adapters)$';  // Exclude dirs
+                $scanfiles = dol_dir_list(DOL_DOCUMENT_ROOT, 'files', 1, $regextoinclude, $regextoexclude);
+
+                // Fill file_list with files in signature, new files, modified files
+                $ret = getFilesUpdated($file_list, $xml->dolibarr_htdocs_dir[0], '', DOL_DOCUMENT_ROOT, $checksumconcat, $scanfiles);		// Fill array $file_list
+                // Complete with list of new files
+                foreach ($scanfiles as $keyfile => $valfile)
+                {
+                    $tmprelativefilename=preg_replace('/^'.preg_quote(DOL_DOCUMENT_ROOT,'/').'/','', $valfile['fullname']);
+                    if (! in_array($tmprelativefilename, $file_list['insignature']))
+                    {
+                        $md5newfile=@md5_file($valfile['fullname']);    // Can fails if we don't have permission to open/read file
+                        $file_list['added'][]=array('filename'=>$tmprelativefilename, 'md5'=>$md5newfile);
+                    }
+                }
+
+                // Files missings
+                $out.=load_fiche_titre($langs->trans("FilesMissing"));
+
+                $out.='<div class="div-table-responsive-no-min">';
+                $out.='<table class="noborder">';
+                $out.='<tr class="liste_titre">';
+                $out.='<td>#</td>';
+                $out.='<td>' . $langs->trans("Filename") . '</td>';
+                $out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
+                $out.='</tr>'."\n";
+                $tmpfilelist = dol_sort_array($file_list['missing'], 'filename');
+                if (is_array($tmpfilelist) && count($tmpfilelist))
+                {
+                    $i = 0;
+                    foreach ($tmpfilelist as $file)
+                    {
+                        $i++;
+                        $out.='<tr class="oddeven">';
+                        $out.='<td>'.$i.'</td>' . "\n";
+                        $out.='<td>'.$file['filename'].'</td>' . "\n";
+                        $out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
+                        $out.="</tr>\n";
+                    }
+                }
+                else
+                {
+                    $out.='<tr class="oddeven"><td colspan="3" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+                }
+                $out.='</table>';
+                $out.='</div>';
+
+                $out.='<br>';
+
+                // Files modified
+                $out.=load_fiche_titre($langs->trans("FilesModified"));
+
+                $totalsize=0;
+                $out.='<div class="div-table-responsive-no-min">';
+                $out.='<table class="noborder">';
+                $out.='<tr class="liste_titre">';
+                $out.='<td>#</td>';
+                $out.='<td>' . $langs->trans("Filename") . '</td>';
+                $out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
+                $out.='<td align="center">' . $langs->trans("CurrentChecksum") . '</td>';
+                $out.='<td align="right">' . $langs->trans("Size") . '</td>';
+                $out.='<td align="right">' . $langs->trans("DateModification") . '</td>';
+                $out.='</tr>'."\n";
+                $tmpfilelist2 = dol_sort_array($file_list['updated'], 'filename');
+                if (is_array($tmpfilelist2) && count($tmpfilelist2))
+                {
+                    $i = 0;
+                    foreach ($tmpfilelist2 as $file)
+                    {
+                        $i++;
+                        $out.='<tr class="oddeven">';
+                        $out.='<td>'.$i.'</td>' . "\n";
+                        $out.='<td>'.$file['filename'].'</td>' . "\n";
+                        $out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
+                        $out.='<td align="center">'.$file['md5'].'</td>' . "\n";
+                        $size = dol_filesize(DOL_DOCUMENT_ROOT.'/'.$file['filename']);
+                        $totalsize += $size;
+                        $out.='<td align="right">'.dol_print_size($size).'</td>' . "\n";
+                        $out.='<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']),'dayhour').'</td>' . "\n";
+                        $out.="</tr>\n";
+                    }
+                    $out.='<tr class="liste_total">';
+                    $out.='<td></td>' . "\n";
+                    $out.='<td>'.$langs->trans("Total").'</td>' . "\n";
+                    $out.='<td align="center"></td>' . "\n";
+                    $out.='<td align="center"></td>' . "\n";
+                    $out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
+                    $out.='<td align="right"></td>' . "\n";
+                    $out.="</tr>\n";
+                }
+                else
+                {
+                    $out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+                }
+                $out.='</table>';
+                $out.='</div>';
+
+                $out.='<br>';
+
+                // Files added
+                $out.=load_fiche_titre($langs->trans("FilesAdded"));
+
+                $totalsize = 0;
+                $out.='<div class="div-table-responsive-no-min">';
+                $out.='<table class="noborder">';
+                $out.='<tr class="liste_titre">';
+                $out.='<td>#</td>';
+                $out.='<td>' . $langs->trans("Filename") . '</td>';
+                $out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
+                $out.='<td align="center">' . $langs->trans("CurrentChecksum") . '</td>';
+                $out.='<td align="right">' . $langs->trans("Size") . '</td>';
+                $out.='<td align="right">' . $langs->trans("DateModification") . '</td>';
+                $out.='</tr>'."\n";
+                $tmpfilelist3 = dol_sort_array($file_list['added'], 'filename');
+                if (is_array($tmpfilelist3) && count($tmpfilelist3))
+                {
+                    $i = 0;
+                    foreach ($tmpfilelist3 as $file)
+                    {
+                        $i++;
+                        $out.='<tr class="oddeven">';
+                        $out.='<td>'.$i.'</td>' . "\n";
+                        $out.='<td>'.$file['filename'].'</td>' . "\n";
+                        $out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
+                        $out.='<td align="center">'.$file['md5'].'</td>' . "\n";
+                        $size = dol_filesize(DOL_DOCUMENT_ROOT.'/'.$file['filename']);
+                        $totalsize += $size;
+                        $out.='<td align="right">'.dol_print_size($size).'</td>' . "\n";
+                        $out.='<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']),'dayhour').'</td>' . "\n";
+                        $out.="</tr>\n";
+                    }
+                    $out.='<tr class="liste_total">';
+                    $out.='<td></td>' . "\n";
+                    $out.='<td>'.$langs->trans("Total").'</td>' . "\n";
+                    $out.='<td align="center"></td>' . "\n";
+                    $out.='<td align="center"></td>' . "\n";
+                    $out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
+                    $out.='<td align="right"></td>' . "\n";
+                    $out.="</tr>\n";
+                }
+                else
+                {
+                    $out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+                }
+                $out.='</table>';
+                $out.='</div>';
+
+
+                // Show warning
+                if (empty($tmpfilelist) && empty($tmpfilelist2) && empty($tmpfilelist3))
+                {
+                    //setEventMessages($langs->trans("FileIntegrityIsStrictlyConformedWithReference"), null, 'mesgs');
+                }
+                else
+                {
+                    //setEventMessages($langs->trans("FileIntegritySomeFilesWereRemovedOrModified"), null, 'warnings');
+                }
+            }
+            else
+            {
+                throw new RestException(500, 'Error: Failed to found dolibarr_htdocs_dir into XML file '.$xmlfile);
+            }
+
+
+            // Scan scripts
+
+
+            asort($checksumconcat); // Sort list of checksum
+            //var_dump($checksumconcat);
+            $checksumget = md5(join(',',$checksumconcat));
+            $checksumtoget = trim((string) $xml->dolibarr_htdocs_dir_checksum);
+
+            $outexpectedchecksum = ($checksumtoget ? $checksumtoget : $langs->trans("Unknown"));
+            if ($checksumget == $checksumtoget)
+            {
+                if (count($file_list['added']))
+                {
+                    $resultcode = 'warning';
+                    $resultcomment='FileIntegrityIsOkButFilesWereAdded';
+                    //$outcurrentchecksum =  $checksumget.' - <span class="'.$resultcode.'">'.$langs->trans("FileIntegrityIsOkButFilesWereAdded").'</span>';
+                    $outcurrentchecksum =  $checksumget;
+                }
+                else
+                {
+                    $resultcode = 'ok';
+                    $resultcomment='Success';
+                    //$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
+                    $outcurrentchecksum =  $checksumget;
+                }
+            }
+            else
+            {
+                $resultcode = 'error';
+                $resultcomment='Error';
+                //$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
+                $outcurrentchecksum =  $checksumget;
+            }
+        }
+        else {
+            throw new RestException(404, 'No signature file known');
+        }
+
+        return array('resultcode'=>$resultcode, 'resultcomment'=>$resultcomment, 'expectedchecksum'=> $outexpectedchecksum, 'currentchecksum'=> $outcurrentchecksum, 'out'=>$out);
     }
 }

Please login to merge, or discard this patch.

Spacing +223 added lines, -223 removed lines patch added patch discarded remove patch

@@ -66,22 +66,22 @@  discard block
 block discarded – undo
         $list = array();
 
         $sql = "SELECT id, code, type, libelle as label, module";
-        $sql.= " FROM ".MAIN_DB_PREFIX."c_paiement as t";
-        $sql.= " WHERE t.entity IN (".getEntity('c_paiement').")";
-        $sql.= " AND t.active = ".$active;
+        $sql .= " FROM ".MAIN_DB_PREFIX."c_paiement as t";
+        $sql .= " WHERE t.entity IN (".getEntity('c_paiement').")";
+        $sql .= " AND t.active = ".$active;
         // Add sql filters
         if ($sqlfilters)
         {
-            if (! DolibarrApi::_checkFilters($sqlfilters))
+            if (!DolibarrApi::_checkFilters($sqlfilters))
             {
                 throw new RestException(400, 'error when validating parameter sqlfilters '.$sqlfilters);
             }
-	          $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+	          $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
         if ($limit) {
             if ($page < 0) {
@@ -135,19 +135,19 @@  discard block
 block discarded – undo
         // Note: The filter is not applied in the SQL request because it must
         // be applied to the translated names, not to the names in database.
         $sql = "SELECT rowid FROM ".MAIN_DB_PREFIX."c_country as t";
-        $sql.=" WHERE 1 = 1";
+        $sql .= " WHERE 1 = 1";
         // Add sql filters
         if ($sqlfilters)
         {
-            if (! DolibarrApi::_checkFilters($sqlfilters))
+            if (!DolibarrApi::_checkFilters($sqlfilters))
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+	        $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
         if ($limit) {
             if ($page < 0) {
@@ -233,21 +233,21 @@  discard block
 block discarded – undo
         $list = array();
 
         $sql = "SELECT rowid, code, label";
-        $sql.= " FROM ".MAIN_DB_PREFIX."c_availability as t";
-        $sql.= " WHERE t.active = ".$active;
+        $sql .= " FROM ".MAIN_DB_PREFIX."c_availability as t";
+        $sql .= " WHERE t.active = ".$active;
         // Add sql filters
         if ($sqlfilters)
         {
-            if (! DolibarrApi::_checkFilters($sqlfilters))
+            if (!DolibarrApi::_checkFilters($sqlfilters))
             {
                 throw new RestException(400, 'error when validating parameter sqlfilters '.$sqlfilters);
             }
-                  $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+                  $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
         if ($limit) {
             if ($page < 0) {
@@ -338,23 +338,23 @@  discard block
 block discarded – undo
         $list = array();
 
         $sql = "SELECT id, code, type, libelle as label, module";
-        $sql.= " FROM ".MAIN_DB_PREFIX."c_actioncomm as t";
-        $sql.= " WHERE t.active = 1";
-        if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
-        if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+        $sql .= " FROM ".MAIN_DB_PREFIX."c_actioncomm as t";
+        $sql .= " WHERE t.active = 1";
+        if ($type) $sql .= " AND t.type LIKE '%".$this->db->escape($type)."%'";
+        if ($module)    $sql .= " AND t.module LIKE '%".$this->db->escape($module)."%'";
         // Add sql filters
         if ($sqlfilters)
         {
-            if (! DolibarrApi::_checkFilters($sqlfilters))
+            if (!DolibarrApi::_checkFilters($sqlfilters))
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+	        $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
         if ($limit) {
             if ($page < 0) {
@@ -400,22 +400,22 @@  discard block
 block discarded – undo
         $list = array();
 
         $sql = "SELECT rowid, code, label, module";
-        $sql.= " FROM ".MAIN_DB_PREFIX."c_civility as t";
-        $sql.= " WHERE t.active = 1";
-        if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+        $sql .= " FROM ".MAIN_DB_PREFIX."c_civility as t";
+        $sql .= " WHERE t.active = 1";
+        if ($module)    $sql .= " AND t.module LIKE '%".$this->db->escape($module)."%'";
         // Add sql filters
         if ($sqlfilters)
         {
-            if (! DolibarrApi::_checkFilters($sqlfilters))
+            if (!DolibarrApi::_checkFilters($sqlfilters))
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+	        $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
         if ($limit) {
             if ($page < 0) {
@@ -458,27 +458,27 @@  discard block
 block discarded – undo
     {
         $list = array();
 
-        if ($type == 'thirdparty') $type='societe';
-        if ($type == 'contact') $type='socpeople';
+        if ($type == 'thirdparty') $type = 'societe';
+        if ($type == 'contact') $type = 'socpeople';
 
         $sql = "SELECT t.rowid, t.name, t.label, t.type, t.size, t.elementtype, t.fieldunique, t.fieldrequired, t.param, t.pos, t.alwayseditable, t.perms, t.list, t.fielddefault, t.fieldcomputed";
-        $sql.= " FROM ".MAIN_DB_PREFIX."extrafields as t";
-        $sql.= " WHERE t.entity IN (".getEntity('extrafields').")";
-        if (! empty($type)) $sql.= " AND t.elementtype = '".$this->db->escape($type)."'";
+        $sql .= " FROM ".MAIN_DB_PREFIX."extrafields as t";
+        $sql .= " WHERE t.entity IN (".getEntity('extrafields').")";
+        if (!empty($type)) $sql .= " AND t.elementtype = '".$this->db->escape($type)."'";
         // Add sql filters
         if ($sqlfilters)
         {
-        	if (! DolibarrApi::_checkFilters($sqlfilters))
+        	if (!DolibarrApi::_checkFilters($sqlfilters))
         	{
         		throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
         	}
-        	$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-        	$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+        	$regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+        	$sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
-        $resql=$this->db->query($sql);
+        $resql = $this->db->query($sql);
         if ($resql)
         {
         	if ($this->db->num_rows($resql))
@@ -486,19 +486,19 @@  discard block
 block discarded – undo
         		while ($tab = $this->db->fetch_object($resql))
         		{
         			// New usage
-        			$list[$tab->elementtype][$tab->name]['type']=$tab->type;
-        			$list[$tab->elementtype][$tab->name]['label']=$tab->label;
-        			$list[$tab->elementtype][$tab->name]['size']=$tab->size;
-        			$list[$tab->elementtype][$tab->name]['elementtype']=$tab->elementtype;
-        			$list[$tab->elementtype][$tab->name]['default']=$tab->fielddefault;
-        			$list[$tab->elementtype][$tab->name]['computed']=$tab->fieldcomputed;
-        			$list[$tab->elementtype][$tab->name]['unique']=$tab->fieldunique;
-        			$list[$tab->elementtype][$tab->name]['required']=$tab->fieldrequired;
-        			$list[$tab->elementtype][$tab->name]['param']=($tab->param ? unserialize($tab->param) : '');
-        			$list[$tab->elementtype][$tab->name]['pos']=$tab->pos;
-        			$list[$tab->elementtype][$tab->name]['alwayseditable']=$tab->alwayseditable;
-        			$list[$tab->elementtype][$tab->name]['perms']=$tab->perms;
-        			$list[$tab->elementtype][$tab->name]['list']=$tab->list;
+        			$list[$tab->elementtype][$tab->name]['type'] = $tab->type;
+        			$list[$tab->elementtype][$tab->name]['label'] = $tab->label;
+        			$list[$tab->elementtype][$tab->name]['size'] = $tab->size;
+        			$list[$tab->elementtype][$tab->name]['elementtype'] = $tab->elementtype;
+        			$list[$tab->elementtype][$tab->name]['default'] = $tab->fielddefault;
+        			$list[$tab->elementtype][$tab->name]['computed'] = $tab->fieldcomputed;
+        			$list[$tab->elementtype][$tab->name]['unique'] = $tab->fieldunique;
+        			$list[$tab->elementtype][$tab->name]['required'] = $tab->fieldrequired;
+        			$list[$tab->elementtype][$tab->name]['param'] = ($tab->param ? unserialize($tab->param) : '');
+        			$list[$tab->elementtype][$tab->name]['pos'] = $tab->pos;
+        			$list[$tab->elementtype][$tab->name]['alwayseditable'] = $tab->alwayseditable;
+        			$list[$tab->elementtype][$tab->name]['perms'] = $tab->perms;
+        			$list[$tab->elementtype][$tab->name]['list'] = $tab->list;
         		}
         	}
         }
@@ -507,7 +507,7 @@  discard block
 block discarded – undo
             throw new RestException(503, 'Error when retrieving list of extra fields : '.$this->db->lasterror());
         }
 
-        if (! count($list))
+        if (!count($list))
         {
         	throw new RestException(404, 'No extrafield found');
         }
@@ -537,23 +537,23 @@  discard block
 block discarded – undo
         $list = array();
 
         $sql = "SELECT rowid AS id, zip, town, fk_county, fk_pays AS fk_country";
-        $sql.= " FROM ".MAIN_DB_PREFIX."c_ziptown as t";
-        $sql.= " WHERE t.active = 1";
-        if ($zipcode) $sql.=" AND t.zip LIKE '%" . $this->db->escape($zipcode) . "%'";
-        if ($town)    $sql.=" AND t.town LIKE '%" . $this->db->escape($town) . "%'";
+        $sql .= " FROM ".MAIN_DB_PREFIX."c_ziptown as t";
+        $sql .= " WHERE t.active = 1";
+        if ($zipcode) $sql .= " AND t.zip LIKE '%".$this->db->escape($zipcode)."%'";
+        if ($town)    $sql .= " AND t.town LIKE '%".$this->db->escape($town)."%'";
         // Add sql filters
         if ($sqlfilters)
         {
-            if (! DolibarrApi::_checkFilters($sqlfilters))
+            if (!DolibarrApi::_checkFilters($sqlfilters))
             {
                 throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-	        $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+	        $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
         if ($limit) {
             if ($page < 0) {
@@ -601,22 +601,22 @@  discard block
 block discarded – undo
         $list = array();
 
         $sql = "SELECT rowid as id, code, sortorder, libelle as label, libelle_facture as descr, type_cdr, nbjour, decalage, module";
-        $sql.= " FROM ".MAIN_DB_PREFIX."c_payment_term as t";
-        $sql.= " WHERE t.entity IN (".getEntity('c_payment_term').")";
-        $sql.= " AND t.active = ".$active;
+        $sql .= " FROM ".MAIN_DB_PREFIX."c_payment_term as t";
+        $sql .= " WHERE t.entity IN (".getEntity('c_payment_term').")";
+        $sql .= " AND t.active = ".$active;
         // Add sql filters
         if ($sqlfilters)
         {
-            if (! DolibarrApi::_checkFilters($sqlfilters))
+            if (!DolibarrApi::_checkFilters($sqlfilters))
             {
                 throw new RestException(400, 'Error when validating parameter sqlfilters '.$sqlfilters);
             }
-                $regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-            $sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+                $regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+            $sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
         }
 
 
-        $sql.= $this->db->order($sortfield, $sortorder);
+        $sql .= $this->db->order($sortfield, $sortorder);
 
         if ($limit) {
             if ($page < 0) {
@@ -661,21 +661,21 @@  discard block
 block discarded – undo
     	$list = array();
 
     	$sql = "SELECT rowid, code, pos,  label, use_default, description";
-    	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_category as t";
-    	$sql.= " WHERE t.active = 1";
+    	$sql .= " FROM ".MAIN_DB_PREFIX."c_ticket_category as t";
+    	$sql .= " WHERE t.active = 1";
     	// Add sql filters
     	if ($sqlfilters)
     	{
-    		if (! DolibarrApi::_checkFilters($sqlfilters))
+    		if (!DolibarrApi::_checkFilters($sqlfilters))
     		{
     			throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
     		}
-    		$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-    		$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+    		$regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+    		$sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
     	}
 
 
-    	$sql.= $this->db->order($sortfield, $sortorder);
+    	$sql .= $this->db->order($sortfield, $sortorder);
 
     	if ($limit) {
     		if ($page < 0) {
@@ -720,21 +720,21 @@  discard block
 block discarded – undo
     	$list = array();
 
     	$sql = "SELECT rowid, code, pos,  label, use_default, color, description";
-    	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_severity as t";
-    	$sql.= " WHERE t.active = 1";
+    	$sql .= " FROM ".MAIN_DB_PREFIX."c_ticket_severity as t";
+    	$sql .= " WHERE t.active = 1";
     	// Add sql filters
     	if ($sqlfilters)
     	{
-    		if (! DolibarrApi::_checkFilters($sqlfilters))
+    		if (!DolibarrApi::_checkFilters($sqlfilters))
     		{
     			throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
     		}
-    		$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-    		$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+    		$regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+    		$sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
     	}
 
 
-    	$sql.= $this->db->order($sortfield, $sortorder);
+    	$sql .= $this->db->order($sortfield, $sortorder);
 
     	if ($limit) {
     		if ($page < 0) {
@@ -779,23 +779,23 @@  discard block
 block discarded – undo
     	$list = array();
 
     	$sql = "SELECT rowid, code, pos,  label, use_default, description";
-    	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_type as t";
-    	$sql.= " WHERE t.active = 1";
-    	if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
-    	if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+    	$sql .= " FROM ".MAIN_DB_PREFIX."c_ticket_type as t";
+    	$sql .= " WHERE t.active = 1";
+    	if ($type) $sql .= " AND t.type LIKE '%".$this->db->escape($type)."%'";
+    	if ($module)    $sql .= " AND t.module LIKE '%".$this->db->escape($module)."%'";
     	// Add sql filters
     	if ($sqlfilters)
     	{
-    		if (! DolibarrApi::_checkFilters($sqlfilters))
+    		if (!DolibarrApi::_checkFilters($sqlfilters))
     		{
     			throw new RestException(503, 'Error when validating parameter sqlfilters '.$sqlfilters);
     		}
-    		$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
-    		$sql.=" AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
+    		$regexstring = '\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
+    		$sql .= " AND (".preg_replace_callback('/'.$regexstring.'/', 'DolibarrApi::_forge_criteria_callback', $sqlfilters).")";
     	}
 
 
-    	$sql.= $this->db->order($sortfield, $sortorder);
+    	$sql .= $this->db->order($sortfield, $sortorder);
 
     	if ($limit) {
     		if ($page < 0) {
@@ -836,7 +836,7 @@  discard block
 block discarded – undo
     {
     	global $langs, $conf;
 
-    	if (! DolibarrApiAccess::$user->admin
+    	if (!DolibarrApiAccess::$user->admin
     		&& (empty($conf->global->API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK) || DolibarrApiAccess::$user->login != $conf->global->API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK))
     	{
     		throw new RestException(503, 'Error API open to admin users only or to login user defined with constant API_LOGIN_ALLOWED_FOR_INTEGRITY_CHECK');
@@ -854,13 +854,13 @@  discard block
 block discarded – undo
     	$file_list = array('missing' => array(), 'updated' => array());
 
     	// Local file to compare to
-    	$xmlshortfile = GETPOST('xmlshortfile')?GETPOST('xmlshortfile'):'/install/filelist-'.DOL_VERSION.'.xml';
+    	$xmlshortfile = GETPOST('xmlshortfile') ?GETPOST('xmlshortfile') : '/install/filelist-'.DOL_VERSION.'.xml';
     	$xmlfile = DOL_DOCUMENT_ROOT.$xmlshortfile;
     	// Remote file to compare to
     	$xmlremote = ($target == 'default' ? '' : $target);
-    	if (empty($xmlremote) && ! empty($conf->global->MAIN_FILECHECK_URL)) $xmlremote = $conf->global->MAIN_FILECHECK_URL;
-    	$param='MAIN_FILECHECK_URL_'.DOL_VERSION;
-    	if (empty($xmlremote) && ! empty($conf->global->$param)) $xmlremote = $conf->global->$param;
+    	if (empty($xmlremote) && !empty($conf->global->MAIN_FILECHECK_URL)) $xmlremote = $conf->global->MAIN_FILECHECK_URL;
+    	$param = 'MAIN_FILECHECK_URL_'.DOL_VERSION;
+    	if (empty($xmlremote) && !empty($conf->global->$param)) $xmlremote = $conf->global->$param;
     	if (empty($xmlremote)) $xmlremote = 'https://www.dolibarr.org/files/stable/signatures/filelist-'.DOL_VERSION.'.xml';
 
     	if ($target == 'local')
@@ -871,7 +871,7 @@  discard block
 block discarded – undo
     		}
     		else
     		{
-    			throw new RestException(500, $langs->trans('XmlNotFound') . ': ' . $xmlfile);
+    			throw new RestException(500, $langs->trans('XmlNotFound').': '.$xmlfile);
     		}
     	}
     	else
@@ -879,7 +879,7 @@  discard block
 block discarded – undo
     		$xmlarray = getURLContent($xmlremote);
 
     		// Return array('content'=>response,'curl_error_no'=>errno,'curl_error_msg'=>errmsg...)
-    		if (! $xmlarray['curl_error_no'] && $xmlarray['http_code'] != '404')
+    		if (!$xmlarray['curl_error_no'] && $xmlarray['http_code'] != '404')
     		{
     			$xmlfile = $xmlarray['content'];
     			//print "xmlfilestart".$xmlfile."endxmlfile";
@@ -887,7 +887,7 @@  discard block
 block discarded – undo
     		}
     		else
     		{
-    			$errormsg=$langs->trans('XmlNotFound') . ': ' . $xmlremote.' - '.$xmlarray['http_code'].' '.$xmlarray['curl_error_no'].' '.$xmlarray['curl_error_msg'];
+    			$errormsg = $langs->trans('XmlNotFound').': '.$xmlremote.' - '.$xmlarray['http_code'].' '.$xmlarray['curl_error_no'].' '.$xmlarray['curl_error_msg'];
     			throw new RestException(500, $errormsg);
     		}
     	}
@@ -903,83 +903,83 @@  discard block
 block discarded – undo
     		// Forced constants
     		if (is_object($xml->dolibarr_constants[0]))
     		{
-    			$out.=load_fiche_titre($langs->trans("ForcedConstants"));
+    			$out .= load_fiche_titre($langs->trans("ForcedConstants"));
 
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Constant") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedValue") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("Value") . '</td>';
-    			$out.='</tr>'."\n";
+    			$out .= '<div class="div-table-responsive-no-min">';
+    			$out .= '<table class="noborder">';
+    			$out .= '<tr class="liste_titre">';
+    			$out .= '<td>#</td>';
+    			$out .= '<td>'.$langs->trans("Constant").'</td>';
+    			$out .= '<td align="center">'.$langs->trans("ExpectedValue").'</td>';
+    			$out .= '<td align="center">'.$langs->trans("Value").'</td>';
+    			$out .= '</tr>'."\n";
 
     			$i = 0;
     			foreach ($xml->dolibarr_constants[0]->constant as $constant)    // $constant is a simpleXMLElement
     			{
-    				$constname=$constant['name'];
-    				$constvalue=(string) $constant;
-    				$constvalue = (empty($constvalue)?'0':$constvalue);
+    				$constname = $constant['name'];
+    				$constvalue = (string) $constant;
+    				$constvalue = (empty($constvalue) ? '0' : $constvalue);
     				// Value found
-    				$value='';
-    				if ($constname && $conf->global->$constname != '') $value=$conf->global->$constname;
-    				$valueforchecksum=(empty($value)?'0':$value);
+    				$value = '';
+    				if ($constname && $conf->global->$constname != '') $value = $conf->global->$constname;
+    				$valueforchecksum = (empty($value) ? '0' : $value);
 
-    				$checksumconcat[]=$valueforchecksum;
+    				$checksumconcat[] = $valueforchecksum;
 
     				$i++;
-    				$out.='<tr class="oddeven">';
-    				$out.='<td>'.$i.'</td>' . "\n";
-    				$out.='<td>'.$constname.'</td>' . "\n";
-    				$out.='<td align="center">'.$constvalue.'</td>' . "\n";
-    				$out.='<td align="center">'.$valueforchecksum.'</td>' . "\n";
-    				$out.="</tr>\n";
+    				$out .= '<tr class="oddeven">';
+    				$out .= '<td>'.$i.'</td>'."\n";
+    				$out .= '<td>'.$constname.'</td>'."\n";
+    				$out .= '<td align="center">'.$constvalue.'</td>'."\n";
+    				$out .= '<td align="center">'.$valueforchecksum.'</td>'."\n";
+    				$out .= "</tr>\n";
     			}
 
-    			if ($i==0)
+    			if ($i == 0)
     			{
-    				$out.='<tr class="oddeven"><td colspan="4" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+    				$out .= '<tr class="oddeven"><td colspan="4" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
     			}
-    			$out.='</table>';
-    			$out.='</div>';
+    			$out .= '</table>';
+    			$out .= '</div>';
 
-    			$out.='<br>';
+    			$out .= '<br>';
     		}
 
     		// Scan htdocs
     		if (is_object($xml->dolibarr_htdocs_dir[0]))
     		{
     			//var_dump($xml->dolibarr_htdocs_dir[0]['includecustom']);exit;
-    			$includecustom=(empty($xml->dolibarr_htdocs_dir[0]['includecustom'])?0:$xml->dolibarr_htdocs_dir[0]['includecustom']);
+    			$includecustom = (empty($xml->dolibarr_htdocs_dir[0]['includecustom']) ? 0 : $xml->dolibarr_htdocs_dir[0]['includecustom']);
 
     			// Defined qualified files (must be same than into generate_filelist_xml.php)
-    			$regextoinclude='\.(php|css|html|js|json|tpl|jpg|png|gif|sql|lang)$';
-    			$regextoexclude='('.($includecustom?'':'custom|').'documents|conf|install|public\/test|Shared\/PCLZip|nusoap\/lib\/Mail|php\/example|php\/test|geoip\/sample.*\.php|ckeditor\/samples|ckeditor\/adapters)$';  // Exclude dirs
+    			$regextoinclude = '\.(php|css|html|js|json|tpl|jpg|png|gif|sql|lang)$';
+    			$regextoexclude = '('.($includecustom ? '' : 'custom|').'documents|conf|install|public\/test|Shared\/PCLZip|nusoap\/lib\/Mail|php\/example|php\/test|geoip\/sample.*\.php|ckeditor\/samples|ckeditor\/adapters)$'; // Exclude dirs
     			$scanfiles = dol_dir_list(DOL_DOCUMENT_ROOT, 'files', 1, $regextoinclude, $regextoexclude);
 
     			// Fill file_list with files in signature, new files, modified files
-    			$ret = getFilesUpdated($file_list, $xml->dolibarr_htdocs_dir[0], '', DOL_DOCUMENT_ROOT, $checksumconcat, $scanfiles);		// Fill array $file_list
+    			$ret = getFilesUpdated($file_list, $xml->dolibarr_htdocs_dir[0], '', DOL_DOCUMENT_ROOT, $checksumconcat, $scanfiles); // Fill array $file_list
     			// Complete with list of new files
     			foreach ($scanfiles as $keyfile => $valfile)
     			{
-    				$tmprelativefilename=preg_replace('/^'.preg_quote(DOL_DOCUMENT_ROOT,'/').'/','', $valfile['fullname']);
-    				if (! in_array($tmprelativefilename, $file_list['insignature']))
+    				$tmprelativefilename = preg_replace('/^'.preg_quote(DOL_DOCUMENT_ROOT, '/').'/', '', $valfile['fullname']);
+    				if (!in_array($tmprelativefilename, $file_list['insignature']))
     				{
-    					$md5newfile=@md5_file($valfile['fullname']);    // Can fails if we don't have permission to open/read file
-    					$file_list['added'][]=array('filename'=>$tmprelativefilename, 'md5'=>$md5newfile);
+    					$md5newfile = @md5_file($valfile['fullname']); // Can fails if we don't have permission to open/read file
+    					$file_list['added'][] = array('filename'=>$tmprelativefilename, 'md5'=>$md5newfile);
     				}
     			}
 
     			// Files missings
-    			$out.=load_fiche_titre($langs->trans("FilesMissing"));
-
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Filename") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
-    			$out.='</tr>'."\n";
+    			$out .= load_fiche_titre($langs->trans("FilesMissing"));
+
+    			$out .= '<div class="div-table-responsive-no-min">';
+    			$out .= '<table class="noborder">';
+    			$out .= '<tr class="liste_titre">';
+    			$out .= '<td>#</td>';
+    			$out .= '<td>'.$langs->trans("Filename").'</td>';
+    			$out .= '<td align="center">'.$langs->trans("ExpectedChecksum").'</td>';
+    			$out .= '</tr>'."\n";
     			$tmpfilelist = dol_sort_array($file_list['missing'], 'filename');
     			if (is_array($tmpfilelist) && count($tmpfilelist))
     			{
@@ -987,36 +987,36 @@  discard block
 block discarded – undo
     				foreach ($tmpfilelist as $file)
     				{
     					$i++;
-    					$out.='<tr class="oddeven">';
-    					$out.='<td>'.$i.'</td>' . "\n";
-    					$out.='<td>'.$file['filename'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
-    					$out.="</tr>\n";
+    					$out .= '<tr class="oddeven">';
+    					$out .= '<td>'.$i.'</td>'."\n";
+    					$out .= '<td>'.$file['filename'].'</td>'."\n";
+    					$out .= '<td align="center">'.$file['expectedmd5'].'</td>'."\n";
+    					$out .= "</tr>\n";
     				}
     			}
     			else
     			{
-    				$out.='<tr class="oddeven"><td colspan="3" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+    				$out .= '<tr class="oddeven"><td colspan="3" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
     			}
-    			$out.='</table>';
-    			$out.='</div>';
+    			$out .= '</table>';
+    			$out .= '</div>';
 
-    			$out.='<br>';
+    			$out .= '<br>';
 
     			// Files modified
-    			$out.=load_fiche_titre($langs->trans("FilesModified"));
-
-    			$totalsize=0;
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Filename") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("CurrentChecksum") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("Size") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("DateModification") . '</td>';
-    			$out.='</tr>'."\n";
+    			$out .= load_fiche_titre($langs->trans("FilesModified"));
+
+    			$totalsize = 0;
+    			$out .= '<div class="div-table-responsive-no-min">';
+    			$out .= '<table class="noborder">';
+    			$out .= '<tr class="liste_titre">';
+    			$out .= '<td>#</td>';
+    			$out .= '<td>'.$langs->trans("Filename").'</td>';
+    			$out .= '<td align="center">'.$langs->trans("ExpectedChecksum").'</td>';
+    			$out .= '<td align="center">'.$langs->trans("CurrentChecksum").'</td>';
+    			$out .= '<td align="right">'.$langs->trans("Size").'</td>';
+    			$out .= '<td align="right">'.$langs->trans("DateModification").'</td>';
+    			$out .= '</tr>'."\n";
     			$tmpfilelist2 = dol_sort_array($file_list['updated'], 'filename');
     			if (is_array($tmpfilelist2) && count($tmpfilelist2))
     			{
@@ -1024,49 +1024,49 @@  discard block
 block discarded – undo
     				foreach ($tmpfilelist2 as $file)
     				{
     					$i++;
-    					$out.='<tr class="oddeven">';
-    					$out.='<td>'.$i.'</td>' . "\n";
-    					$out.='<td>'.$file['filename'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['md5'].'</td>' . "\n";
+    					$out .= '<tr class="oddeven">';
+    					$out .= '<td>'.$i.'</td>'."\n";
+    					$out .= '<td>'.$file['filename'].'</td>'."\n";
+    					$out .= '<td align="center">'.$file['expectedmd5'].'</td>'."\n";
+    					$out .= '<td align="center">'.$file['md5'].'</td>'."\n";
     					$size = dol_filesize(DOL_DOCUMENT_ROOT.'/'.$file['filename']);
     					$totalsize += $size;
-    					$out.='<td align="right">'.dol_print_size($size).'</td>' . "\n";
-    					$out.='<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']),'dayhour').'</td>' . "\n";
-    					$out.="</tr>\n";
+    					$out .= '<td align="right">'.dol_print_size($size).'</td>'."\n";
+    					$out .= '<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']), 'dayhour').'</td>'."\n";
+    					$out .= "</tr>\n";
     				}
-    				$out.='<tr class="liste_total">';
-    				$out.='<td></td>' . "\n";
-    				$out.='<td>'.$langs->trans("Total").'</td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
-    				$out.='<td align="right"></td>' . "\n";
-    				$out.="</tr>\n";
+    				$out .= '<tr class="liste_total">';
+    				$out .= '<td></td>'."\n";
+    				$out .= '<td>'.$langs->trans("Total").'</td>'."\n";
+    				$out .= '<td align="center"></td>'."\n";
+    				$out .= '<td align="center"></td>'."\n";
+    				$out .= '<td align="right">'.dol_print_size($totalsize).'</td>'."\n";
+    				$out .= '<td align="right"></td>'."\n";
+    				$out .= "</tr>\n";
     			}
     			else
     			{
-    				$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+    				$out .= '<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
     			}
-    			$out.='</table>';
-    			$out.='</div>';
+    			$out .= '</table>';
+    			$out .= '</div>';
 
-    			$out.='<br>';
+    			$out .= '<br>';
 
     			// Files added
-    			$out.=load_fiche_titre($langs->trans("FilesAdded"));
+    			$out .= load_fiche_titre($langs->trans("FilesAdded"));
 
     			$totalsize = 0;
-    			$out.='<div class="div-table-responsive-no-min">';
-    			$out.='<table class="noborder">';
-    			$out.='<tr class="liste_titre">';
-    			$out.='<td>#</td>';
-    			$out.='<td>' . $langs->trans("Filename") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("ExpectedChecksum") . '</td>';
-    			$out.='<td align="center">' . $langs->trans("CurrentChecksum") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("Size") . '</td>';
-    			$out.='<td align="right">' . $langs->trans("DateModification") . '</td>';
-    			$out.='</tr>'."\n";
+    			$out .= '<div class="div-table-responsive-no-min">';
+    			$out .= '<table class="noborder">';
+    			$out .= '<tr class="liste_titre">';
+    			$out .= '<td>#</td>';
+    			$out .= '<td>'.$langs->trans("Filename").'</td>';
+    			$out .= '<td align="center">'.$langs->trans("ExpectedChecksum").'</td>';
+    			$out .= '<td align="center">'.$langs->trans("CurrentChecksum").'</td>';
+    			$out .= '<td align="right">'.$langs->trans("Size").'</td>';
+    			$out .= '<td align="right">'.$langs->trans("DateModification").'</td>';
+    			$out .= '</tr>'."\n";
     			$tmpfilelist3 = dol_sort_array($file_list['added'], 'filename');
     			if (is_array($tmpfilelist3) && count($tmpfilelist3))
     			{
@@ -1074,32 +1074,32 @@  discard block
 block discarded – undo
     				foreach ($tmpfilelist3 as $file)
     				{
     					$i++;
-    					$out.='<tr class="oddeven">';
-    					$out.='<td>'.$i.'</td>' . "\n";
-    					$out.='<td>'.$file['filename'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
-    					$out.='<td align="center">'.$file['md5'].'</td>' . "\n";
+    					$out .= '<tr class="oddeven">';
+    					$out .= '<td>'.$i.'</td>'."\n";
+    					$out .= '<td>'.$file['filename'].'</td>'."\n";
+    					$out .= '<td align="center">'.$file['expectedmd5'].'</td>'."\n";
+    					$out .= '<td align="center">'.$file['md5'].'</td>'."\n";
     					$size = dol_filesize(DOL_DOCUMENT_ROOT.'/'.$file['filename']);
     					$totalsize += $size;
-    					$out.='<td align="right">'.dol_print_size($size).'</td>' . "\n";
-    					$out.='<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']),'dayhour').'</td>' . "\n";
-    					$out.="</tr>\n";
+    					$out .= '<td align="right">'.dol_print_size($size).'</td>'."\n";
+    					$out .= '<td align="right">'.dol_print_date(dol_filemtime(DOL_DOCUMENT_ROOT.'/'.$file['filename']), 'dayhour').'</td>'."\n";
+    					$out .= "</tr>\n";
     				}
-    				$out.='<tr class="liste_total">';
-    				$out.='<td></td>' . "\n";
-    				$out.='<td>'.$langs->trans("Total").'</td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="center"></td>' . "\n";
-    				$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
-    				$out.='<td align="right"></td>' . "\n";
-    				$out.="</tr>\n";
+    				$out .= '<tr class="liste_total">';
+    				$out .= '<td></td>'."\n";
+    				$out .= '<td>'.$langs->trans("Total").'</td>'."\n";
+    				$out .= '<td align="center"></td>'."\n";
+    				$out .= '<td align="center"></td>'."\n";
+    				$out .= '<td align="right">'.dol_print_size($totalsize).'</td>'."\n";
+    				$out .= '<td align="right"></td>'."\n";
+    				$out .= "</tr>\n";
     			}
     			else
     			{
-    				$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
+    				$out .= '<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
     			}
-    			$out.='</table>';
-    			$out.='</div>';
+    			$out .= '</table>';
+    			$out .= '</div>';
 
 
     			// Show warning
@@ -1123,7 +1123,7 @@  discard block
 block discarded – undo
 
     		asort($checksumconcat); // Sort list of checksum
     		//var_dump($checksumconcat);
-    		$checksumget = md5(join(',',$checksumconcat));
+    		$checksumget = md5(join(',', $checksumconcat));
     		$checksumtoget = trim((string) $xml->dolibarr_htdocs_dir_checksum);
 
     		$outexpectedchecksum = ($checksumtoget ? $checksumtoget : $langs->trans("Unknown"));
@@ -1132,24 +1132,24 @@  discard block
 block discarded – undo
     			if (count($file_list['added']))
     			{
     				$resultcode = 'warning';
-    				$resultcomment='FileIntegrityIsOkButFilesWereAdded';
+    				$resultcomment = 'FileIntegrityIsOkButFilesWereAdded';
     				//$outcurrentchecksum =  $checksumget.' - <span class="'.$resultcode.'">'.$langs->trans("FileIntegrityIsOkButFilesWereAdded").'</span>';
-    				$outcurrentchecksum =  $checksumget;
+    				$outcurrentchecksum = $checksumget;
     			}
     			else
     			{
     				$resultcode = 'ok';
-    				$resultcomment='Success';
+    				$resultcomment = 'Success';
     				//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
-    				$outcurrentchecksum =  $checksumget;
+    				$outcurrentchecksum = $checksumget;
     			}
     		}
     		else
     		{
     			$resultcode = 'error';
-    			$resultcomment='Error';
+    			$resultcomment = 'Error';
     			//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
-    			$outcurrentchecksum =  $checksumget;
+    			$outcurrentchecksum = $checksumget;
     		}
     	}
     	else {

Please login to merge, or discard this patch.

Braces +58 added lines, -41 removed lines patch added patch discarded remove patch

@@ -201,8 +201,7 @@  discard block
 block discarded – undo
 
         if ($country->fetch($id) < 0) {
             throw new RestException(503, 'Error when retrieving country : '.$country->error);
-        }
-        else if ($country->fetch($id) == 0) {
+        } else if ($country->fetch($id) == 0) {
             throw new RestException(404, 'country not found');
         }
 
@@ -340,8 +339,12 @@  discard block
 block discarded – undo
         $sql = "SELECT id, code, type, libelle as label, module";
         $sql.= " FROM ".MAIN_DB_PREFIX."c_actioncomm as t";
         $sql.= " WHERE t.active = 1";
-        if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
-        if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+        if ($type) {
+            $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
+        }
+        if ($module) {
+            $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+        }
         // Add sql filters
         if ($sqlfilters)
         {
@@ -402,7 +405,9 @@  discard block
 block discarded – undo
         $sql = "SELECT rowid, code, label, module";
         $sql.= " FROM ".MAIN_DB_PREFIX."c_civility as t";
         $sql.= " WHERE t.active = 1";
-        if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+        if ($module) {
+            $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+        }
         // Add sql filters
         if ($sqlfilters)
         {
@@ -458,13 +463,19 @@  discard block
 block discarded – undo
     {
         $list = array();
 
-        if ($type == 'thirdparty') $type='societe';
-        if ($type == 'contact') $type='socpeople';
+        if ($type == 'thirdparty') {
+            $type='societe';
+        }
+        if ($type == 'contact') {
+            $type='socpeople';
+        }
 
         $sql = "SELECT t.rowid, t.name, t.label, t.type, t.size, t.elementtype, t.fieldunique, t.fieldrequired, t.param, t.pos, t.alwayseditable, t.perms, t.list, t.fielddefault, t.fieldcomputed";
         $sql.= " FROM ".MAIN_DB_PREFIX."extrafields as t";
         $sql.= " WHERE t.entity IN (".getEntity('extrafields').")";
-        if (! empty($type)) $sql.= " AND t.elementtype = '".$this->db->escape($type)."'";
+        if (! empty($type)) {
+            $sql.= " AND t.elementtype = '".$this->db->escape($type)."'";
+        }
         // Add sql filters
         if ($sqlfilters)
         {
@@ -501,8 +512,7 @@  discard block
 block discarded – undo
         			$list[$tab->elementtype][$tab->name]['list']=$tab->list;
         		}
         	}
-        }
-        else
+        } else
         {
             throw new RestException(503, 'Error when retrieving list of extra fields : '.$this->db->lasterror());
         }
@@ -539,8 +549,12 @@  discard block
 block discarded – undo
         $sql = "SELECT rowid AS id, zip, town, fk_county, fk_pays AS fk_country";
         $sql.= " FROM ".MAIN_DB_PREFIX."c_ziptown as t";
         $sql.= " WHERE t.active = 1";
-        if ($zipcode) $sql.=" AND t.zip LIKE '%" . $this->db->escape($zipcode) . "%'";
-        if ($town)    $sql.=" AND t.town LIKE '%" . $this->db->escape($town) . "%'";
+        if ($zipcode) {
+            $sql.=" AND t.zip LIKE '%" . $this->db->escape($zipcode) . "%'";
+        }
+        if ($town) {
+            $sql.=" AND t.town LIKE '%" . $this->db->escape($town) . "%'";
+        }
         // Add sql filters
         if ($sqlfilters)
         {
@@ -781,8 +795,12 @@  discard block
 block discarded – undo
     	$sql = "SELECT rowid, code, pos,  label, use_default, description";
     	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_type as t";
     	$sql.= " WHERE t.active = 1";
-    	if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
-    	if ($module)    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+    	if ($type) {
+    	    $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
+    	}
+    	if ($module) {
+    	    $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
+    	}
     	// Add sql filters
     	if ($sqlfilters)
     	{
@@ -858,23 +876,27 @@  discard block
 block discarded – undo
     	$xmlfile = DOL_DOCUMENT_ROOT.$xmlshortfile;
     	// Remote file to compare to
     	$xmlremote = ($target == 'default' ? '' : $target);
-    	if (empty($xmlremote) && ! empty($conf->global->MAIN_FILECHECK_URL)) $xmlremote = $conf->global->MAIN_FILECHECK_URL;
+    	if (empty($xmlremote) && ! empty($conf->global->MAIN_FILECHECK_URL)) {
+    	    $xmlremote = $conf->global->MAIN_FILECHECK_URL;
+    	}
     	$param='MAIN_FILECHECK_URL_'.DOL_VERSION;
-    	if (empty($xmlremote) && ! empty($conf->global->$param)) $xmlremote = $conf->global->$param;
-    	if (empty($xmlremote)) $xmlremote = 'https://www.dolibarr.org/files/stable/signatures/filelist-'.DOL_VERSION.'.xml';
+    	if (empty($xmlremote) && ! empty($conf->global->$param)) {
+    	    $xmlremote = $conf->global->$param;
+    	}
+    	if (empty($xmlremote)) {
+    	    $xmlremote = 'https://www.dolibarr.org/files/stable/signatures/filelist-'.DOL_VERSION.'.xml';
+    	}
 
     	if ($target == 'local')
     	{
     		if (dol_is_file($xmlfile))
     		{
     			$xml = simplexml_load_file($xmlfile);
-    		}
-    		else
+    		} else
     		{
     			throw new RestException(500, $langs->trans('XmlNotFound') . ': ' . $xmlfile);
     		}
-    	}
-    	else
+    	} else
     	{
     		$xmlarray = getURLContent($xmlremote);
 
@@ -884,8 +906,7 @@  discard block
 block discarded – undo
     			$xmlfile = $xmlarray['content'];
     			//print "xmlfilestart".$xmlfile."endxmlfile";
     			$xml = simplexml_load_string($xmlfile);
-    		}
-    		else
+    		} else
     		{
     			$errormsg=$langs->trans('XmlNotFound') . ': ' . $xmlremote.' - '.$xmlarray['http_code'].' '.$xmlarray['curl_error_no'].' '.$xmlarray['curl_error_msg'];
     			throw new RestException(500, $errormsg);
@@ -915,14 +936,18 @@  discard block
 block discarded – undo
     			$out.='</tr>'."\n";
 
     			$i = 0;
-    			foreach ($xml->dolibarr_constants[0]->constant as $constant)    // $constant is a simpleXMLElement
+    			foreach ($xml->dolibarr_constants[0]->constant as $constant) {
+    			    // $constant is a simpleXMLElement
     			{
     				$constname=$constant['name'];
+    			}
     				$constvalue=(string) $constant;
     				$constvalue = (empty($constvalue)?'0':$constvalue);
     				// Value found
     				$value='';
-    				if ($constname && $conf->global->$constname != '') $value=$conf->global->$constname;
+    				if ($constname && $conf->global->$constname != '') {
+    				    $value=$conf->global->$constname;
+    				}
     				$valueforchecksum=(empty($value)?'0':$value);
 
     				$checksumconcat[]=$valueforchecksum;
@@ -993,8 +1018,7 @@  discard block
 block discarded – undo
     					$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
     					$out.="</tr>\n";
     				}
-    			}
-    			else
+    			} else
     			{
     				$out.='<tr class="oddeven"><td colspan="3" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
     			}
@@ -1043,8 +1067,7 @@  discard block
 block discarded – undo
     				$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
     				$out.='<td align="right"></td>' . "\n";
     				$out.="</tr>\n";
-    			}
-    			else
+    			} else
     			{
     				$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
     			}
@@ -1093,8 +1116,7 @@  discard block
 block discarded – undo
     				$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
     				$out.='<td align="right"></td>' . "\n";
     				$out.="</tr>\n";
-    			}
-    			else
+    			} else
     			{
     				$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
     			}
@@ -1106,13 +1128,11 @@  discard block
 block discarded – undo
     			if (empty($tmpfilelist) && empty($tmpfilelist2) && empty($tmpfilelist3))
     			{
     				//setEventMessages($langs->trans("FileIntegrityIsStrictlyConformedWithReference"), null, 'mesgs');
-    			}
-    			else
+    			} else
     			{
     				//setEventMessages($langs->trans("FileIntegritySomeFilesWereRemovedOrModified"), null, 'warnings');
     			}
-    		}
-    		else
+    		} else
     		{
     			throw new RestException(500, 'Error: Failed to found dolibarr_htdocs_dir into XML file '.$xmlfile);
     		}
@@ -1135,24 +1155,21 @@  discard block
 block discarded – undo
     				$resultcomment='FileIntegrityIsOkButFilesWereAdded';
     				//$outcurrentchecksum =  $checksumget.' - <span class="'.$resultcode.'">'.$langs->trans("FileIntegrityIsOkButFilesWereAdded").'</span>';
     				$outcurrentchecksum =  $checksumget;
-    			}
-    			else
+    			} else
     			{
     				$resultcode = 'ok';
     				$resultcomment='Success';
     				//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
     				$outcurrentchecksum =  $checksumget;
     			}
-    		}
-    		else
+    		} else
     		{
     			$resultcode = 'error';
     			$resultcomment='Error';
     			//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
     			$outcurrentchecksum =  $checksumget;
     		}
-    	}
-    	else {
+    	} else {
     		throw new RestException(404, 'No signature file known');
     	}
 

Please login to merge, or discard this patch.

dolibarr/htdocs/api/class/api_status.class.php 1 patch

Spacing +2 added lines, -2 removed lines patch added patch discarded remove patch

@@ -15,7 +15,7 @@  discard block
 block discarded – undo
  * along with this program. If not, see <http://www.gnu.org/licenses/>.
  */
 
-require_once DOL_DOCUMENT_ROOT . '/core/lib/functions.lib.php';
+require_once DOL_DOCUMENT_ROOT.'/core/lib/functions.lib.php';
 
 
 /**
@@ -39,7 +39,7 @@  discard block
 block discarded – undo
             'success' => array(
                 'code' => 200,
                 'dolibarr_version' => DOL_VERSION,
-                'access_locked' => (empty($conf->global->MAIN_ONLY_LOGIN_ALLOWED)?'0':$conf->global->MAIN_ONLY_LOGIN_ALLOWED),
+                'access_locked' => (empty($conf->global->MAIN_ONLY_LOGIN_ALLOWED) ? '0' : $conf->global->MAIN_ONLY_LOGIN_ALLOWED),
             ),
         );
     }

Please login to merge, or discard this patch.

dolibarr/htdocs/api/class/api_documents.class.php 3 patches

Indentation +550 added lines, -550 removed lines patch added patch discarded remove patch

@@ -33,563 +33,563 @@
 block discarded – undo
 class Documents extends DolibarrApi
 {
 
-	/**
-	 * @var array   $DOCUMENT_FIELDS     Mandatory fields, checked when create and update object
-	 */
-	static $DOCUMENT_FIELDS = array(
-		'modulepart'
-	);
-
-	/**
-	 * Constructor
-	 */
-	function __construct()
-	{
-		global $db;
-		$this->db = $db;
-	}
-
-
-	/**
-	 * Download a document.
-	 *
-	 * Note that, this API is similar to using the wrapper link "documents.php" to download a file (used for
-	 * internal HTML links of documents into application), but with no need to have a session cookie (the token is used instead).
-	 *
-	 * @param   string  $module_part    Name of module or area concerned by file download ('facture', ...)
-	 * @param   string  $original_file  Relative path with filename, relative to modulepart (for example: IN201701-999/IN201701-999.pdf)
-	 * @return  array                   List of documents
-	 *
-	 * @throws 400
-	 * @throws 401
-	 * @throws 404
-	 * @throws 200
-	 *
-	 * @url GET /download
-	 */
-	public function index($module_part, $original_file='')
-	{
-		global $conf, $langs;
-
-		if (empty($module_part)) {
-				throw new RestException(400, 'bad value for parameter modulepart');
-		}
-		if (empty($original_file)) {
-			throw new RestException(400, 'bad value for parameter original_file');
-		}
-
-		//--- Finds and returns the document
-		$entity=$conf->entity;
-
-		$check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'read');
-		$accessallowed              = $check_access['accessallowed'];
-		$sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
-		$original_file              = $check_access['original_file'];
-
-		if (preg_match('/\.\./',$original_file) || preg_match('/[<>|]/',$original_file))
-		{
-			throw new RestException(401);
-		}
-		if (!$accessallowed) {
-			throw new RestException(401);
-		}
-
-		$filename = basename($original_file);
-		$original_file_osencoded=dol_osencode($original_file);	// New file name encoded in OS encoding charset
-
-		if (! file_exists($original_file_osencoded))
-		{
-			throw new RestException(404, 'File not found');
-		}
-
-		$file_content=file_get_contents($original_file_osencoded);
-		return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'encoding'=>'base64' );
-	}
-
-
-	/**
-	 * Build a document.
-	 *
-	 * Test sample 1: { "module_part": "invoice", "original_file": "FA1701-001/FA1701-001.pdf", "doctemplate": "crabe", "langcode": "fr_FR" }.
-	 *
-	 * @param   string  $module_part    Name of module or area concerned by file download ('invoice', 'order', ...).
-	 * @param   string  $original_file  Relative path with filename, relative to modulepart (for example: IN201701-999/IN201701-999.pdf).
-	 * @param	string	$doctemplate	Set here the doc template to use for document generation (If not set, use the default template).
-	 * @param	string	$langcode		Language code like 'en_US', 'fr_FR', 'es_ES', ... (If not set, use the default language).
-	 * @return  array                   List of documents
-	 *
-	 * @throws 500
-	 * @throws 501
-	 * @throws 400
-	 * @throws 401
-	 * @throws 404
-	 * @throws 200
-	 *
-	 * @url PUT /builddoc
-	 */
-	public function builddoc($module_part, $original_file='', $doctemplate='', $langcode='')
-	{
-		global $conf, $langs;
-
-		if (empty($module_part)) {
-			throw new RestException(400, 'bad value for parameter modulepart');
-		}
-		if (empty($original_file)) {
-			throw new RestException(400, 'bad value for parameter original_file');
-		}
-
-		$outputlangs = $langs;
-		if ($langcode && $langs->defaultlang != $langcode)
-		{
-			$outputlangs=new Translate('', $conf);
-			$outputlangs->setDefaultLang($langcode);
-		}
-
-		//--- Finds and returns the document
-		$entity=$conf->entity;
-
-		$check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'write');
-		$accessallowed              = $check_access['accessallowed'];
-		$sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
-		$original_file              = $check_access['original_file'];
-
-		if (preg_match('/\.\./',$original_file) || preg_match('/[<>|]/',$original_file)) {
-			throw new RestException(401);
-		}
-		if (!$accessallowed) {
-			throw new RestException(401);
-		}
-
-		// --- Generates the document
-		$hidedetails = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_DETAILS) ? 0 : 1;
-		$hidedesc = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_DESC) ? 0 : 1;
-		$hideref = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_REF) ? 0 : 1;
-
-		$templateused='';
-
-		if ($module_part == 'facture' || $module_part == 'invoice')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
-			$this->invoice = new Facture($this->db);
-			$result = $this->invoice->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
-			if( ! $result ) {
-				throw new RestException(404, 'Invoice not found');
-			}
-
-			$templateused = $doctemplate?$doctemplate:$this->invoice->modelpdf;
-			$result = $this->invoice->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
-			if( $result <= 0 ) {
-				throw new RestException(500, 'Error generating document');
-			}
-		}
-		elseif ($module_part == 'commande' || $module_part == 'order')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
-			$this->order = new Commande($this->db);
-			$result = $this->order->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
-			if( ! $result ) {
-				throw new RestException(404, 'Order not found');
-			}
-			$templateused = $doctemplate?$doctemplate:$this->order->modelpdf;
-			$result = $this->order->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
-			if( $result <= 0 ) {
-				throw new RestException(500, 'Error generating document');
-			}
-		}
-		elseif ($module_part == 'propal' || $module_part == 'proposal')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
-			$this->propal = new Propal($this->db);
-			$result = $this->propal->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
-			if( ! $result ) {
-				throw new RestException(404, 'Proposal not found');
-			}
-			$templateused = $doctemplate?$doctemplate:$this->propal->modelpdf;
-			$result = $this->propal->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
-			if( $result <= 0 ) {
-				throw new RestException(500, 'Error generating document');
-			}
-		}
-		else
-		{
-			throw new RestException(403, 'Generation not available for this modulepart');
-		}
-
-		$filename = basename($original_file);
-		$original_file_osencoded=dol_osencode($original_file);	// New file name encoded in OS encoding charset
-
-		if (! file_exists($original_file_osencoded))
-		{
-			throw new RestException(404, 'File not found');
-		}
-
-		$file_content=file_get_contents($original_file_osencoded);
-		return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'langcode'=>$outputlangs->defaultlang, 'template'=>$templateused, 'encoding'=>'base64' );
-	}
-
-	/**
-	 * Return the list of documents of a dedicated element (from its ID or Ref)
-	 *
-	 * @param   string 	$modulepart		Name of module or area concerned ('thirdparty', 'member', 'proposal', 'order', 'invoice', 'shipment', 'project',  ...)
-	 * @param	int		$id				ID of element
-	 * @param	string	$ref			Ref of element
-	 * @param	string	$sortfield		Sort criteria ('','fullname','relativename','name','date','size')
-	 * @param	string	$sortorder		Sort order ('asc' or 'desc')
-	 * @return	array					Array of documents with path
-	 *
-	 * @throws 200
-	 * @throws 400
-	 * @throws 401
-	 * @throws 404
-	 * @throws 500
-	 *
-	 * @url GET /
-	 */
-	function getDocumentsListByElement($modulepart, $id=0, $ref='', $sortfield='', $sortorder='')
-	{
-		global $conf;
-
-		if (empty($modulepart)) {
-			throw new RestException(400, 'bad value for parameter modulepart');
-		}
-
-		if (empty($id) && empty($ref)) {
-			throw new RestException(400, 'bad value for parameter id or ref');
-		}
-
-		$id = (empty($id)?0:$id);
-
-		if ($modulepart == 'societe' || $modulepart == 'thirdparty')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/societe/class/societe.class.php';
-
-			if (!DolibarrApiAccess::$user->rights->societe->lire) {
-				throw new RestException(401);
-			}
-
-			$object = new Societe($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
-				throw new RestException(404, 'Thirdparty not found');
-			}
-
-			$upload_dir = $conf->societe->multidir_output[$object->entity] . "/" . $object->id;
-		}
-		else if ($modulepart == 'adherent' || $modulepart == 'member')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/adherents/class/adherent.class.php';
-
-			if (!DolibarrApiAccess::$user->rights->adherent->lire) {
-				throw new RestException(401);
-			}
-
-			$object = new Adherent($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
-				throw new RestException(404, 'Member not found');
-			}
-
-			$upload_dir = $conf->adherent->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'member');
-		}
-		else if ($modulepart == 'propal' || $modulepart == 'proposal')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
-
-			if (!DolibarrApiAccess::$user->rights->propal->lire) {
-				throw new RestException(401);
-			}
-
-			$object = new Propal($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
-				throw new RestException(404, 'Proposal not found');
-			}
-
-			$upload_dir = $conf->propal->multidir_output[$object->entity] . "/" . get_exdir(0, 0, 0, 1, $object, 'propal');
-		}
-		else if ($modulepart == 'commande' || $modulepart == 'order')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
-
-			if (!DolibarrApiAccess::$user->rights->commande->lire) {
-				throw new RestException(401);
-			}
-
-			$object = new Commande($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
-				throw new RestException(404, 'Order not found');
-			}
-
-			$upload_dir = $conf->commande->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'commande');
-		}
-		else if ($modulepart == 'shipment' || $modulepart == 'expedition')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
-
-			if (!DolibarrApiAccess::$user->rights->expedition->lire) {
-				throw new RestException(401);
-			}
-
-			$object = new Expedition($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
-				throw new RestException(404, 'Shipment not found');
-			}
-
-			$upload_dir = $conf->expedition->dir_output . "/sending/" . get_exdir(0, 0, 0, 1, $object, 'shipment');
-		}
-		else if ($modulepart == 'facture' || $modulepart == 'invoice')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
-
-			if (!DolibarrApiAccess::$user->rights->facture->lire) {
-				throw new RestException(401);
-			}
-
-			$object = new Facture($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
-				throw new RestException(404, 'Invoice not found');
-			}
-
-			$upload_dir = $conf->facture->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'invoice');
-		}
-		else if ($modulepart == 'agenda' || $modulepart == 'action' || $modulepart == 'event')
-		{
-			require_once DOL_DOCUMENT_ROOT.'/comm/action/class/actioncomm.class.php';
-
-			if (!DolibarrApiAccess::$user->rights->agenda->myactions->read && !DolibarrApiAccess::$user->rights->agenda->allactions->read) {
-				throw new RestException(401);
-			}
-
-			$object = new ActionComm($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
-				throw new RestException(404, 'Event not found');
-			}
-
-			$upload_dir = $conf->agenda->dir_output.'/'.dol_sanitizeFileName($object->ref);
-		}
-		else
-		{
-			throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
-		}
-
-		$filearray=dol_dir_list($upload_dir,"files",0,'','(\.meta|_preview.*\.png)$',$sortfield,(strtolower($sortorder)=='desc'?SORT_DESC:SORT_ASC),1);
-		if (empty($filearray)) {
-			throw new RestException(404, 'Search for modulepart '.$modulepart.' with Id '.$object->id.(! empty($object->Ref)?' or Ref '.$object->ref:'').' does not return any document.');
-		}
-
-		return $filearray;
-	}
-
-
-	/**
-	 * Return a document.
-	 *
-	 * @param   int         $id          ID of document
-	 * @return  array                    Array with data of file
-	 *
-	 * @throws RestException
-	 */
-	/*
+    /**
+     * @var array   $DOCUMENT_FIELDS     Mandatory fields, checked when create and update object
+     */
+    static $DOCUMENT_FIELDS = array(
+        'modulepart'
+    );
+
+    /**
+     * Constructor
+     */
+    function __construct()
+    {
+        global $db;
+        $this->db = $db;
+    }
+
+
+    /**
+     * Download a document.
+     *
+     * Note that, this API is similar to using the wrapper link "documents.php" to download a file (used for
+     * internal HTML links of documents into application), but with no need to have a session cookie (the token is used instead).
+     *
+     * @param   string  $module_part    Name of module or area concerned by file download ('facture', ...)
+     * @param   string  $original_file  Relative path with filename, relative to modulepart (for example: IN201701-999/IN201701-999.pdf)
+     * @return  array                   List of documents
+     *
+     * @throws 400
+     * @throws 401
+     * @throws 404
+     * @throws 200
+     *
+     * @url GET /download
+     */
+    public function index($module_part, $original_file='')
+    {
+        global $conf, $langs;
+
+        if (empty($module_part)) {
+                throw new RestException(400, 'bad value for parameter modulepart');
+        }
+        if (empty($original_file)) {
+            throw new RestException(400, 'bad value for parameter original_file');
+        }
+
+        //--- Finds and returns the document
+        $entity=$conf->entity;
+
+        $check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'read');
+        $accessallowed              = $check_access['accessallowed'];
+        $sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
+        $original_file              = $check_access['original_file'];
+
+        if (preg_match('/\.\./',$original_file) || preg_match('/[<>|]/',$original_file))
+        {
+            throw new RestException(401);
+        }
+        if (!$accessallowed) {
+            throw new RestException(401);
+        }
+
+        $filename = basename($original_file);
+        $original_file_osencoded=dol_osencode($original_file);	// New file name encoded in OS encoding charset
+
+        if (! file_exists($original_file_osencoded))
+        {
+            throw new RestException(404, 'File not found');
+        }
+
+        $file_content=file_get_contents($original_file_osencoded);
+        return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'encoding'=>'base64' );
+    }
+
+
+    /**
+     * Build a document.
+     *
+     * Test sample 1: { "module_part": "invoice", "original_file": "FA1701-001/FA1701-001.pdf", "doctemplate": "crabe", "langcode": "fr_FR" }.
+     *
+     * @param   string  $module_part    Name of module or area concerned by file download ('invoice', 'order', ...).
+     * @param   string  $original_file  Relative path with filename, relative to modulepart (for example: IN201701-999/IN201701-999.pdf).
+     * @param	string	$doctemplate	Set here the doc template to use for document generation (If not set, use the default template).
+     * @param	string	$langcode		Language code like 'en_US', 'fr_FR', 'es_ES', ... (If not set, use the default language).
+     * @return  array                   List of documents
+     *
+     * @throws 500
+     * @throws 501
+     * @throws 400
+     * @throws 401
+     * @throws 404
+     * @throws 200
+     *
+     * @url PUT /builddoc
+     */
+    public function builddoc($module_part, $original_file='', $doctemplate='', $langcode='')
+    {
+        global $conf, $langs;
+
+        if (empty($module_part)) {
+            throw new RestException(400, 'bad value for parameter modulepart');
+        }
+        if (empty($original_file)) {
+            throw new RestException(400, 'bad value for parameter original_file');
+        }
+
+        $outputlangs = $langs;
+        if ($langcode && $langs->defaultlang != $langcode)
+        {
+            $outputlangs=new Translate('', $conf);
+            $outputlangs->setDefaultLang($langcode);
+        }
+
+        //--- Finds and returns the document
+        $entity=$conf->entity;
+
+        $check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'write');
+        $accessallowed              = $check_access['accessallowed'];
+        $sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
+        $original_file              = $check_access['original_file'];
+
+        if (preg_match('/\.\./',$original_file) || preg_match('/[<>|]/',$original_file)) {
+            throw new RestException(401);
+        }
+        if (!$accessallowed) {
+            throw new RestException(401);
+        }
+
+        // --- Generates the document
+        $hidedetails = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_DETAILS) ? 0 : 1;
+        $hidedesc = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_DESC) ? 0 : 1;
+        $hideref = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_REF) ? 0 : 1;
+
+        $templateused='';
+
+        if ($module_part == 'facture' || $module_part == 'invoice')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
+            $this->invoice = new Facture($this->db);
+            $result = $this->invoice->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
+            if( ! $result ) {
+                throw new RestException(404, 'Invoice not found');
+            }
+
+            $templateused = $doctemplate?$doctemplate:$this->invoice->modelpdf;
+            $result = $this->invoice->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
+            if( $result <= 0 ) {
+                throw new RestException(500, 'Error generating document');
+            }
+        }
+        elseif ($module_part == 'commande' || $module_part == 'order')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
+            $this->order = new Commande($this->db);
+            $result = $this->order->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
+            if( ! $result ) {
+                throw new RestException(404, 'Order not found');
+            }
+            $templateused = $doctemplate?$doctemplate:$this->order->modelpdf;
+            $result = $this->order->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
+            if( $result <= 0 ) {
+                throw new RestException(500, 'Error generating document');
+            }
+        }
+        elseif ($module_part == 'propal' || $module_part == 'proposal')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
+            $this->propal = new Propal($this->db);
+            $result = $this->propal->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
+            if( ! $result ) {
+                throw new RestException(404, 'Proposal not found');
+            }
+            $templateused = $doctemplate?$doctemplate:$this->propal->modelpdf;
+            $result = $this->propal->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
+            if( $result <= 0 ) {
+                throw new RestException(500, 'Error generating document');
+            }
+        }
+        else
+        {
+            throw new RestException(403, 'Generation not available for this modulepart');
+        }
+
+        $filename = basename($original_file);
+        $original_file_osencoded=dol_osencode($original_file);	// New file name encoded in OS encoding charset
+
+        if (! file_exists($original_file_osencoded))
+        {
+            throw new RestException(404, 'File not found');
+        }
+
+        $file_content=file_get_contents($original_file_osencoded);
+        return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'langcode'=>$outputlangs->defaultlang, 'template'=>$templateused, 'encoding'=>'base64' );
+    }
+
+    /**
+     * Return the list of documents of a dedicated element (from its ID or Ref)
+     *
+     * @param   string 	$modulepart		Name of module or area concerned ('thirdparty', 'member', 'proposal', 'order', 'invoice', 'shipment', 'project',  ...)
+     * @param	int		$id				ID of element
+     * @param	string	$ref			Ref of element
+     * @param	string	$sortfield		Sort criteria ('','fullname','relativename','name','date','size')
+     * @param	string	$sortorder		Sort order ('asc' or 'desc')
+     * @return	array					Array of documents with path
+     *
+     * @throws 200
+     * @throws 400
+     * @throws 401
+     * @throws 404
+     * @throws 500
+     *
+     * @url GET /
+     */
+    function getDocumentsListByElement($modulepart, $id=0, $ref='', $sortfield='', $sortorder='')
+    {
+        global $conf;
+
+        if (empty($modulepart)) {
+            throw new RestException(400, 'bad value for parameter modulepart');
+        }
+
+        if (empty($id) && empty($ref)) {
+            throw new RestException(400, 'bad value for parameter id or ref');
+        }
+
+        $id = (empty($id)?0:$id);
+
+        if ($modulepart == 'societe' || $modulepart == 'thirdparty')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/societe/class/societe.class.php';
+
+            if (!DolibarrApiAccess::$user->rights->societe->lire) {
+                throw new RestException(401);
+            }
+
+            $object = new Societe($this->db);
+            $result=$object->fetch($id, $ref);
+            if ( ! $result ) {
+                throw new RestException(404, 'Thirdparty not found');
+            }
+
+            $upload_dir = $conf->societe->multidir_output[$object->entity] . "/" . $object->id;
+        }
+        else if ($modulepart == 'adherent' || $modulepart == 'member')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/adherents/class/adherent.class.php';
+
+            if (!DolibarrApiAccess::$user->rights->adherent->lire) {
+                throw new RestException(401);
+            }
+
+            $object = new Adherent($this->db);
+            $result=$object->fetch($id, $ref);
+            if ( ! $result ) {
+                throw new RestException(404, 'Member not found');
+            }
+
+            $upload_dir = $conf->adherent->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'member');
+        }
+        else if ($modulepart == 'propal' || $modulepart == 'proposal')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
+
+            if (!DolibarrApiAccess::$user->rights->propal->lire) {
+                throw new RestException(401);
+            }
+
+            $object = new Propal($this->db);
+            $result=$object->fetch($id, $ref);
+            if ( ! $result ) {
+                throw new RestException(404, 'Proposal not found');
+            }
+
+            $upload_dir = $conf->propal->multidir_output[$object->entity] . "/" . get_exdir(0, 0, 0, 1, $object, 'propal');
+        }
+        else if ($modulepart == 'commande' || $modulepart == 'order')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
+
+            if (!DolibarrApiAccess::$user->rights->commande->lire) {
+                throw new RestException(401);
+            }
+
+            $object = new Commande($this->db);
+            $result=$object->fetch($id, $ref);
+            if ( ! $result ) {
+                throw new RestException(404, 'Order not found');
+            }
+
+            $upload_dir = $conf->commande->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'commande');
+        }
+        else if ($modulepart == 'shipment' || $modulepart == 'expedition')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
+
+            if (!DolibarrApiAccess::$user->rights->expedition->lire) {
+                throw new RestException(401);
+            }
+
+            $object = new Expedition($this->db);
+            $result=$object->fetch($id, $ref);
+            if ( ! $result ) {
+                throw new RestException(404, 'Shipment not found');
+            }
+
+            $upload_dir = $conf->expedition->dir_output . "/sending/" . get_exdir(0, 0, 0, 1, $object, 'shipment');
+        }
+        else if ($modulepart == 'facture' || $modulepart == 'invoice')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
+
+            if (!DolibarrApiAccess::$user->rights->facture->lire) {
+                throw new RestException(401);
+            }
+
+            $object = new Facture($this->db);
+            $result=$object->fetch($id, $ref);
+            if ( ! $result ) {
+                throw new RestException(404, 'Invoice not found');
+            }
+
+            $upload_dir = $conf->facture->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'invoice');
+        }
+        else if ($modulepart == 'agenda' || $modulepart == 'action' || $modulepart == 'event')
+        {
+            require_once DOL_DOCUMENT_ROOT.'/comm/action/class/actioncomm.class.php';
+
+            if (!DolibarrApiAccess::$user->rights->agenda->myactions->read && !DolibarrApiAccess::$user->rights->agenda->allactions->read) {
+                throw new RestException(401);
+            }
+
+            $object = new ActionComm($this->db);
+            $result=$object->fetch($id, $ref);
+            if ( ! $result ) {
+                throw new RestException(404, 'Event not found');
+            }
+
+            $upload_dir = $conf->agenda->dir_output.'/'.dol_sanitizeFileName($object->ref);
+        }
+        else
+        {
+            throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
+        }
+
+        $filearray=dol_dir_list($upload_dir,"files",0,'','(\.meta|_preview.*\.png)$',$sortfield,(strtolower($sortorder)=='desc'?SORT_DESC:SORT_ASC),1);
+        if (empty($filearray)) {
+            throw new RestException(404, 'Search for modulepart '.$modulepart.' with Id '.$object->id.(! empty($object->Ref)?' or Ref '.$object->ref:'').' does not return any document.');
+        }
+
+        return $filearray;
+    }
+
+
+    /**
+     * Return a document.
+     *
+     * @param   int         $id          ID of document
+     * @return  array                    Array with data of file
+     *
+     * @throws RestException
+     */
+    /*
     public function get($id) {
         return array('note'=>'xxx');
     }*/
 
 
-	/**
-	 * Upload a file.
-	 *
-	 * Test sample 1: { "filename": "mynewfile.txt", "modulepart": "facture", "ref": "FA1701-001", "subdir": "", "filecontent": "content text", "fileencoding": "", "overwriteifexists": "0" }.
-	 * Test sample 2: { "filename": "mynewfile.txt", "modulepart": "medias", "ref": "", "subdir": "image/mywebsite", "filecontent": "Y29udGVudCB0ZXh0Cg==", "fileencoding": "base64", "overwriteifexists": "0" }.
-	 *
-	 * @param   string  $filename           Name of file to create ('FA1705-0123.txt')
-	 * @param   string  $modulepart         Name of module or area concerned by file upload ('facture', 'project', 'project_task', ...)
-	 * @param   string  $ref                Reference of object (This will define subdir automatically and store submited file into it)
-	 * @param   string  $subdir       		Subdirectory (Only if ref not provided)
-	 * @param   string  $filecontent        File content (string with file content. An empty file will be created if this parameter is not provided)
-	 * @param   string  $fileencoding       File encoding (''=no encoding, 'base64'=Base 64) {@example '' or 'base64'}
-	 * @param   int 	$overwriteifexists  Overwrite file if exists (1 by default)
-	 *
-	 * @throws 200
-	 * @throws 400
-	 * @throws 401
-	 * @throws 404
-	 * @throws 500
-	 *
-	 * @url POST /upload
-	 */
-	public function post($filename, $modulepart, $ref='', $subdir='', $filecontent='', $fileencoding='', $overwriteifexists=0)
-	{
-		global $db, $conf;
-
-		/*var_dump($modulepart);
+    /**
+     * Upload a file.
+     *
+     * Test sample 1: { "filename": "mynewfile.txt", "modulepart": "facture", "ref": "FA1701-001", "subdir": "", "filecontent": "content text", "fileencoding": "", "overwriteifexists": "0" }.
+     * Test sample 2: { "filename": "mynewfile.txt", "modulepart": "medias", "ref": "", "subdir": "image/mywebsite", "filecontent": "Y29udGVudCB0ZXh0Cg==", "fileencoding": "base64", "overwriteifexists": "0" }.
+     *
+     * @param   string  $filename           Name of file to create ('FA1705-0123.txt')
+     * @param   string  $modulepart         Name of module or area concerned by file upload ('facture', 'project', 'project_task', ...)
+     * @param   string  $ref                Reference of object (This will define subdir automatically and store submited file into it)
+     * @param   string  $subdir       		Subdirectory (Only if ref not provided)
+     * @param   string  $filecontent        File content (string with file content. An empty file will be created if this parameter is not provided)
+     * @param   string  $fileencoding       File encoding (''=no encoding, 'base64'=Base 64) {@example '' or 'base64'}
+     * @param   int 	$overwriteifexists  Overwrite file if exists (1 by default)
+     *
+     * @throws 200
+     * @throws 400
+     * @throws 401
+     * @throws 404
+     * @throws 500
+     *
+     * @url POST /upload
+     */
+    public function post($filename, $modulepart, $ref='', $subdir='', $filecontent='', $fileencoding='', $overwriteifexists=0)
+    {
+        global $db, $conf;
+
+        /*var_dump($modulepart);
         var_dump($filename);
         var_dump($filecontent);
         exit;*/
 
-		if(empty($modulepart))
-		{
-			throw new RestException(400, 'Modulepart not provided.');
-		}
-
-		if (!DolibarrApiAccess::$user->rights->ecm->upload) {
-			throw new RestException(401);
-		}
-
-		$newfilecontent = '';
-		if (empty($fileencoding)) $newfilecontent = $filecontent;
-		if ($fileencoding == 'base64') $newfilecontent = base64_decode($filecontent);
-
-		$original_file = dol_sanitizeFileName($filename);
-
-		// Define $uploadir
-		$object = null;
-		$entity = DolibarrApiAccess::$user->entity;
-		if ($ref)
-		{
-			$tmpreldir='';
-
-			if ($modulepart == 'facture' || $modulepart == 'invoice')
-			{
-				$modulepart='facture';
-
-				require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
-				$object = new Facture($this->db);
-			}
-			elseif ($modulepart == 'project')
-			{
-				require_once DOL_DOCUMENT_ROOT.'/projet/class/project.class.php';
-				$object = new Project($this->db);
-			}
-			elseif ($modulepart == 'task' || $modulepart == 'project_task')
-			{
-				$modulepart = 'project_task';
-
-				require_once DOL_DOCUMENT_ROOT.'/projet/class/task.class.php';
-				$object = new Task($this->db);
-
-				$task_result = $object->fetch('', $ref);
-
-				// Fetching the tasks project is required because its out_dir might be a sub-directory of the project
-				if($task_result > 0)
-				{
-					$project_result = $object->fetch_projet();
-
-					if($project_result >= 0)
-					{
-						$tmpreldir = dol_sanitizeFileName($object->project->ref).'/';
-					}
-				}
-				else
-				{
-					throw new RestException(500, 'Error while fetching Task '.$ref);
-				}
-			}
-			// TODO Implement additional moduleparts
-			else
-			{
-				throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
-			}
-
-			if(is_object($object))
-			{
-				$result = $object->fetch('', $ref);
-
-				if($result == 0)
-				{
-					throw new RestException(404, "Object with ref '".$ref."' was not found.");
-			}
-				elseif ($result < 0)
-				{
-					throw new RestException(500, 'Error while fetching object.');
-				}
-			}
-
-			if (! ($object->id > 0))
-			{
-   				throw new RestException(404, 'The object '.$modulepart." with ref '".$ref."' was not found.");
-			}
-
-			$relativefile = $tmpreldir.dol_sanitizeFileName($object->ref);
-
-			$tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, $ref, 'write');
-			$upload_dir = $tmp['original_file'];	// No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
-
-			if (empty($upload_dir) || $upload_dir == '/')
-			{
-				throw new RestException(500, 'This value of modulepart does not support yet usage of ref. Check modulepart parameter or try to use subdir parameter instead of ref.');
-			}
-		}
-		else
-		{
-			if ($modulepart == 'invoice') $modulepart ='facture';
-
-			$relativefile = $subdir;
-
-			$tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, '', 'write');
-			$upload_dir = $tmp['original_file'];	// No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
-
-			if (empty($upload_dir) || $upload_dir == '/')
-			{
-				throw new RestException(500, 'This value of modulepart does not support yet usage of ref. Check modulepart parameter or try to use subdir parameter instead of ref.');
-			}
-		}
-		// $original_file here is still value of filename without any dir.
-
-		$upload_dir = dol_sanitizePathName($upload_dir);
-
-		$destfile = $upload_dir . '/' . $original_file;
-		$destfiletmp = DOL_DATA_ROOT.'/admin/temp/' . $original_file;
-		dol_delete_file($destfiletmp);
-		//var_dump($original_file);exit;
-
-		if (!dol_is_dir(dirname($destfile))) {
-			throw new RestException(401, 'Directory not exists : '.dirname($destfile));
-		}
-
-		if (! $overwriteifexists && dol_is_file($destfile))
-		{
-			throw new RestException(500, "File with name '".$original_file."' already exists.");
-		}
-
-		$fhandle = @fopen($destfiletmp, 'w');
-		if ($fhandle)
-		{
-			$nbofbyteswrote = fwrite($fhandle, $newfilecontent);
-			fclose($fhandle);
-			@chmod($destfiletmp, octdec($conf->global->MAIN_UMASK));
-		}
-		else
-		{
-			throw new RestException(500, "Failed to open file '".$destfiletmp."' for write");
-		}
-
-		$result = dol_move($destfiletmp, $destfile, 0, $overwriteifexists, 1);
-		if (! $result)
-		{
-			throw new RestException(500, "Failed to move file into '".$destfile."'");
-		}
-
-		return dol_basename($destfile);
-	}
-
-	/**
-	 * Validate fields before create or update object
-	 *
-	 * @param   array           $data   Array with data to verify
-	 * @return  array
-	 * @throws  RestException
-	 */
-	function _validate_file($data) {
-		$result = array();
-		foreach (Documents::$DOCUMENT_FIELDS as $field) {
-			if (!isset($data[$field]))
-				throw new RestException(400, "$field field missing");
-			$result[$field] = $data[$field];
-		}
-		return $result;
-	}
+        if(empty($modulepart))
+        {
+            throw new RestException(400, 'Modulepart not provided.');
+        }
+
+        if (!DolibarrApiAccess::$user->rights->ecm->upload) {
+            throw new RestException(401);
+        }
+
+        $newfilecontent = '';
+        if (empty($fileencoding)) $newfilecontent = $filecontent;
+        if ($fileencoding == 'base64') $newfilecontent = base64_decode($filecontent);
+
+        $original_file = dol_sanitizeFileName($filename);
+
+        // Define $uploadir
+        $object = null;
+        $entity = DolibarrApiAccess::$user->entity;
+        if ($ref)
+        {
+            $tmpreldir='';
+
+            if ($modulepart == 'facture' || $modulepart == 'invoice')
+            {
+                $modulepart='facture';
+
+                require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
+                $object = new Facture($this->db);
+            }
+            elseif ($modulepart == 'project')
+            {
+                require_once DOL_DOCUMENT_ROOT.'/projet/class/project.class.php';
+                $object = new Project($this->db);
+            }
+            elseif ($modulepart == 'task' || $modulepart == 'project_task')
+            {
+                $modulepart = 'project_task';
+
+                require_once DOL_DOCUMENT_ROOT.'/projet/class/task.class.php';
+                $object = new Task($this->db);
+
+                $task_result = $object->fetch('', $ref);
+
+                // Fetching the tasks project is required because its out_dir might be a sub-directory of the project
+                if($task_result > 0)
+                {
+                    $project_result = $object->fetch_projet();
+
+                    if($project_result >= 0)
+                    {
+                        $tmpreldir = dol_sanitizeFileName($object->project->ref).'/';
+                    }
+                }
+                else
+                {
+                    throw new RestException(500, 'Error while fetching Task '.$ref);
+                }
+            }
+            // TODO Implement additional moduleparts
+            else
+            {
+                throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
+            }
+
+            if(is_object($object))
+            {
+                $result = $object->fetch('', $ref);
+
+                if($result == 0)
+                {
+                    throw new RestException(404, "Object with ref '".$ref."' was not found.");
+            }
+                elseif ($result < 0)
+                {
+                    throw new RestException(500, 'Error while fetching object.');
+                }
+            }
+
+            if (! ($object->id > 0))
+            {
+                    throw new RestException(404, 'The object '.$modulepart." with ref '".$ref."' was not found.");
+            }
+
+            $relativefile = $tmpreldir.dol_sanitizeFileName($object->ref);
+
+            $tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, $ref, 'write');
+            $upload_dir = $tmp['original_file'];	// No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
+
+            if (empty($upload_dir) || $upload_dir == '/')
+            {
+                throw new RestException(500, 'This value of modulepart does not support yet usage of ref. Check modulepart parameter or try to use subdir parameter instead of ref.');
+            }
+        }
+        else
+        {
+            if ($modulepart == 'invoice') $modulepart ='facture';
+
+            $relativefile = $subdir;
+
+            $tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, '', 'write');
+            $upload_dir = $tmp['original_file'];	// No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
+
+            if (empty($upload_dir) || $upload_dir == '/')
+            {
+                throw new RestException(500, 'This value of modulepart does not support yet usage of ref. Check modulepart parameter or try to use subdir parameter instead of ref.');
+            }
+        }
+        // $original_file here is still value of filename without any dir.
+
+        $upload_dir = dol_sanitizePathName($upload_dir);
+
+        $destfile = $upload_dir . '/' . $original_file;
+        $destfiletmp = DOL_DATA_ROOT.'/admin/temp/' . $original_file;
+        dol_delete_file($destfiletmp);
+        //var_dump($original_file);exit;
+
+        if (!dol_is_dir(dirname($destfile))) {
+            throw new RestException(401, 'Directory not exists : '.dirname($destfile));
+        }
+
+        if (! $overwriteifexists && dol_is_file($destfile))
+        {
+            throw new RestException(500, "File with name '".$original_file."' already exists.");
+        }
+
+        $fhandle = @fopen($destfiletmp, 'w');
+        if ($fhandle)
+        {
+            $nbofbyteswrote = fwrite($fhandle, $newfilecontent);
+            fclose($fhandle);
+            @chmod($destfiletmp, octdec($conf->global->MAIN_UMASK));
+        }
+        else
+        {
+            throw new RestException(500, "Failed to open file '".$destfiletmp."' for write");
+        }
+
+        $result = dol_move($destfiletmp, $destfile, 0, $overwriteifexists, 1);
+        if (! $result)
+        {
+            throw new RestException(500, "Failed to move file into '".$destfile."'");
+        }
+
+        return dol_basename($destfile);
+    }
+
+    /**
+     * Validate fields before create or update object
+     *
+     * @param   array           $data   Array with data to verify
+     * @return  array
+     * @throws  RestException
+     */
+    function _validate_file($data) {
+        $result = array();
+        foreach (Documents::$DOCUMENT_FIELDS as $field) {
+            if (!isset($data[$field]))
+                throw new RestException(400, "$field field missing");
+            $result[$field] = $data[$field];
+        }
+        return $result;
+    }
 }

Please login to merge, or discard this patch.

Spacing +65 added lines, -65 removed lines patch added patch discarded remove patch

@@ -67,7 +67,7 @@  discard block
 block discarded – undo
 	 *
 	 * @url GET /download
 	 */
-	public function index($module_part, $original_file='')
+	public function index($module_part, $original_file = '')
 	{
 		global $conf, $langs;
 
@@ -79,14 +79,14 @@  discard block
 block discarded – undo
 		}
 
 		//--- Finds and returns the document
-		$entity=$conf->entity;
+		$entity = $conf->entity;
 
 		$check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'read');
 		$accessallowed              = $check_access['accessallowed'];
 		$sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
 		$original_file              = $check_access['original_file'];
 
-		if (preg_match('/\.\./',$original_file) || preg_match('/[<>|]/',$original_file))
+		if (preg_match('/\.\./', $original_file) || preg_match('/[<>|]/', $original_file))
 		{
 			throw new RestException(401);
 		}
@@ -95,15 +95,15 @@  discard block
 block discarded – undo
 		}
 
 		$filename = basename($original_file);
-		$original_file_osencoded=dol_osencode($original_file);	// New file name encoded in OS encoding charset
+		$original_file_osencoded = dol_osencode($original_file); // New file name encoded in OS encoding charset
 
-		if (! file_exists($original_file_osencoded))
+		if (!file_exists($original_file_osencoded))
 		{
 			throw new RestException(404, 'File not found');
 		}
 
-		$file_content=file_get_contents($original_file_osencoded);
-		return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'encoding'=>'base64' );
+		$file_content = file_get_contents($original_file_osencoded);
+		return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'encoding'=>'base64');
 	}
 
 
@@ -127,7 +127,7 @@  discard block
 block discarded – undo
 	 *
 	 * @url PUT /builddoc
 	 */
-	public function builddoc($module_part, $original_file='', $doctemplate='', $langcode='')
+	public function builddoc($module_part, $original_file = '', $doctemplate = '', $langcode = '')
 	{
 		global $conf, $langs;
 
@@ -141,19 +141,19 @@  discard block
 block discarded – undo
 		$outputlangs = $langs;
 		if ($langcode && $langs->defaultlang != $langcode)
 		{
-			$outputlangs=new Translate('', $conf);
+			$outputlangs = new Translate('', $conf);
 			$outputlangs->setDefaultLang($langcode);
 		}
 
 		//--- Finds and returns the document
-		$entity=$conf->entity;
+		$entity = $conf->entity;
 
 		$check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'write');
 		$accessallowed              = $check_access['accessallowed'];
 		$sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
 		$original_file              = $check_access['original_file'];
 
-		if (preg_match('/\.\./',$original_file) || preg_match('/[<>|]/',$original_file)) {
+		if (preg_match('/\.\./', $original_file) || preg_match('/[<>|]/', $original_file)) {
 			throw new RestException(401);
 		}
 		if (!$accessallowed) {
@@ -165,20 +165,20 @@  discard block
 block discarded – undo
 		$hidedesc = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_DESC) ? 0 : 1;
 		$hideref = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_REF) ? 0 : 1;
 
-		$templateused='';
+		$templateused = '';
 
 		if ($module_part == 'facture' || $module_part == 'invoice')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
 			$this->invoice = new Facture($this->db);
 			$result = $this->invoice->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
-			if( ! $result ) {
+			if (!$result) {
 				throw new RestException(404, 'Invoice not found');
 			}
 
-			$templateused = $doctemplate?$doctemplate:$this->invoice->modelpdf;
+			$templateused = $doctemplate ? $doctemplate : $this->invoice->modelpdf;
 			$result = $this->invoice->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
-			if( $result <= 0 ) {
+			if ($result <= 0) {
 				throw new RestException(500, 'Error generating document');
 			}
 		}
@@ -187,12 +187,12 @@  discard block
 block discarded – undo
 			require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
 			$this->order = new Commande($this->db);
 			$result = $this->order->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
-			if( ! $result ) {
+			if (!$result) {
 				throw new RestException(404, 'Order not found');
 			}
-			$templateused = $doctemplate?$doctemplate:$this->order->modelpdf;
+			$templateused = $doctemplate ? $doctemplate : $this->order->modelpdf;
 			$result = $this->order->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
-			if( $result <= 0 ) {
+			if ($result <= 0) {
 				throw new RestException(500, 'Error generating document');
 			}
 		}
@@ -201,12 +201,12 @@  discard block
 block discarded – undo
 			require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
 			$this->propal = new Propal($this->db);
 			$result = $this->propal->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
-			if( ! $result ) {
+			if (!$result) {
 				throw new RestException(404, 'Proposal not found');
 			}
-			$templateused = $doctemplate?$doctemplate:$this->propal->modelpdf;
+			$templateused = $doctemplate ? $doctemplate : $this->propal->modelpdf;
 			$result = $this->propal->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
-			if( $result <= 0 ) {
+			if ($result <= 0) {
 				throw new RestException(500, 'Error generating document');
 			}
 		}
@@ -216,15 +216,15 @@  discard block
 block discarded – undo
 		}
 
 		$filename = basename($original_file);
-		$original_file_osencoded=dol_osencode($original_file);	// New file name encoded in OS encoding charset
+		$original_file_osencoded = dol_osencode($original_file); // New file name encoded in OS encoding charset
 
-		if (! file_exists($original_file_osencoded))
+		if (!file_exists($original_file_osencoded))
 		{
 			throw new RestException(404, 'File not found');
 		}
 
-		$file_content=file_get_contents($original_file_osencoded);
-		return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'langcode'=>$outputlangs->defaultlang, 'template'=>$templateused, 'encoding'=>'base64' );
+		$file_content = file_get_contents($original_file_osencoded);
+		return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'langcode'=>$outputlangs->defaultlang, 'template'=>$templateused, 'encoding'=>'base64');
 	}
 
 	/**
@@ -245,7 +245,7 @@  discard block
 block discarded – undo
 	 *
 	 * @url GET /
 	 */
-	function getDocumentsListByElement($modulepart, $id=0, $ref='', $sortfield='', $sortorder='')
+	function getDocumentsListByElement($modulepart, $id = 0, $ref = '', $sortfield = '', $sortorder = '')
 	{
 		global $conf;
 
@@ -257,7 +257,7 @@  discard block
 block discarded – undo
 			throw new RestException(400, 'bad value for parameter id or ref');
 		}
 
-		$id = (empty($id)?0:$id);
+		$id = (empty($id) ? 0 : $id);
 
 		if ($modulepart == 'societe' || $modulepart == 'thirdparty')
 		{
@@ -268,12 +268,12 @@  discard block
 block discarded – undo
 			}
 
 			$object = new Societe($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
+			$result = $object->fetch($id, $ref);
+			if (!$result) {
 				throw new RestException(404, 'Thirdparty not found');
 			}
 
-			$upload_dir = $conf->societe->multidir_output[$object->entity] . "/" . $object->id;
+			$upload_dir = $conf->societe->multidir_output[$object->entity]."/".$object->id;
 		}
 		else if ($modulepart == 'adherent' || $modulepart == 'member')
 		{
@@ -284,12 +284,12 @@  discard block
 block discarded – undo
 			}
 
 			$object = new Adherent($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
+			$result = $object->fetch($id, $ref);
+			if (!$result) {
 				throw new RestException(404, 'Member not found');
 			}
 
-			$upload_dir = $conf->adherent->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'member');
+			$upload_dir = $conf->adherent->dir_output."/".get_exdir(0, 0, 0, 1, $object, 'member');
 		}
 		else if ($modulepart == 'propal' || $modulepart == 'proposal')
 		{
@@ -300,12 +300,12 @@  discard block
 block discarded – undo
 			}
 
 			$object = new Propal($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
+			$result = $object->fetch($id, $ref);
+			if (!$result) {
 				throw new RestException(404, 'Proposal not found');
 			}
 
-			$upload_dir = $conf->propal->multidir_output[$object->entity] . "/" . get_exdir(0, 0, 0, 1, $object, 'propal');
+			$upload_dir = $conf->propal->multidir_output[$object->entity]."/".get_exdir(0, 0, 0, 1, $object, 'propal');
 		}
 		else if ($modulepart == 'commande' || $modulepart == 'order')
 		{
@@ -316,12 +316,12 @@  discard block
 block discarded – undo
 			}
 
 			$object = new Commande($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
+			$result = $object->fetch($id, $ref);
+			if (!$result) {
 				throw new RestException(404, 'Order not found');
 			}
 
-			$upload_dir = $conf->commande->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'commande');
+			$upload_dir = $conf->commande->dir_output."/".get_exdir(0, 0, 0, 1, $object, 'commande');
 		}
 		else if ($modulepart == 'shipment' || $modulepart == 'expedition')
 		{
@@ -332,12 +332,12 @@  discard block
 block discarded – undo
 			}
 
 			$object = new Expedition($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
+			$result = $object->fetch($id, $ref);
+			if (!$result) {
 				throw new RestException(404, 'Shipment not found');
 			}
 
-			$upload_dir = $conf->expedition->dir_output . "/sending/" . get_exdir(0, 0, 0, 1, $object, 'shipment');
+			$upload_dir = $conf->expedition->dir_output."/sending/".get_exdir(0, 0, 0, 1, $object, 'shipment');
 		}
 		else if ($modulepart == 'facture' || $modulepart == 'invoice')
 		{
@@ -348,12 +348,12 @@  discard block
 block discarded – undo
 			}
 
 			$object = new Facture($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
+			$result = $object->fetch($id, $ref);
+			if (!$result) {
 				throw new RestException(404, 'Invoice not found');
 			}
 
-			$upload_dir = $conf->facture->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'invoice');
+			$upload_dir = $conf->facture->dir_output."/".get_exdir(0, 0, 0, 1, $object, 'invoice');
 		}
 		else if ($modulepart == 'agenda' || $modulepart == 'action' || $modulepart == 'event')
 		{
@@ -364,8 +364,8 @@  discard block
 block discarded – undo
 			}
 
 			$object = new ActionComm($this->db);
-			$result=$object->fetch($id, $ref);
-			if ( ! $result ) {
+			$result = $object->fetch($id, $ref);
+			if (!$result) {
 				throw new RestException(404, 'Event not found');
 			}
 
@@ -376,9 +376,9 @@  discard block
 block discarded – undo
 			throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
 		}
 
-		$filearray=dol_dir_list($upload_dir,"files",0,'','(\.meta|_preview.*\.png)$',$sortfield,(strtolower($sortorder)=='desc'?SORT_DESC:SORT_ASC),1);
+		$filearray = dol_dir_list($upload_dir, "files", 0, '', '(\.meta|_preview.*\.png)$', $sortfield, (strtolower($sortorder) == 'desc' ?SORT_DESC:SORT_ASC), 1);
 		if (empty($filearray)) {
-			throw new RestException(404, 'Search for modulepart '.$modulepart.' with Id '.$object->id.(! empty($object->Ref)?' or Ref '.$object->ref:'').' does not return any document.');
+			throw new RestException(404, 'Search for modulepart '.$modulepart.' with Id '.$object->id.(!empty($object->Ref) ? ' or Ref '.$object->ref : '').' does not return any document.');
 		}
 
 		return $filearray;
@@ -421,7 +421,7 @@  discard block
 block discarded – undo
 	 *
 	 * @url POST /upload
 	 */
-	public function post($filename, $modulepart, $ref='', $subdir='', $filecontent='', $fileencoding='', $overwriteifexists=0)
+	public function post($filename, $modulepart, $ref = '', $subdir = '', $filecontent = '', $fileencoding = '', $overwriteifexists = 0)
 	{
 		global $db, $conf;
 
@@ -430,7 +430,7 @@  discard block
 block discarded – undo
         var_dump($filecontent);
         exit;*/
 
-		if(empty($modulepart))
+		if (empty($modulepart))
 		{
 			throw new RestException(400, 'Modulepart not provided.');
 		}
@@ -450,11 +450,11 @@  discard block
 block discarded – undo
 		$entity = DolibarrApiAccess::$user->entity;
 		if ($ref)
 		{
-			$tmpreldir='';
+			$tmpreldir = '';
 
 			if ($modulepart == 'facture' || $modulepart == 'invoice')
 			{
-				$modulepart='facture';
+				$modulepart = 'facture';
 
 				require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
 				$object = new Facture($this->db);
@@ -474,11 +474,11 @@  discard block
 block discarded – undo
 				$task_result = $object->fetch('', $ref);
 
 				// Fetching the tasks project is required because its out_dir might be a sub-directory of the project
-				if($task_result > 0)
+				if ($task_result > 0)
 				{
 					$project_result = $object->fetch_projet();
 
-					if($project_result >= 0)
+					if ($project_result >= 0)
 					{
 						$tmpreldir = dol_sanitizeFileName($object->project->ref).'/';
 					}
@@ -494,11 +494,11 @@  discard block
 block discarded – undo
 				throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
 			}
 
-			if(is_object($object))
+			if (is_object($object))
 			{
 				$result = $object->fetch('', $ref);
 
-				if($result == 0)
+				if ($result == 0)
 				{
 					throw new RestException(404, "Object with ref '".$ref."' was not found.");
 			}
@@ -508,7 +508,7 @@  discard block
 block discarded – undo
 				}
 			}
 
-			if (! ($object->id > 0))
+			if (!($object->id > 0))
 			{
    				throw new RestException(404, 'The object '.$modulepart." with ref '".$ref."' was not found.");
 			}
@@ -516,7 +516,7 @@  discard block
 block discarded – undo
 			$relativefile = $tmpreldir.dol_sanitizeFileName($object->ref);
 
 			$tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, $ref, 'write');
-			$upload_dir = $tmp['original_file'];	// No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
+			$upload_dir = $tmp['original_file']; // No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
 
 			if (empty($upload_dir) || $upload_dir == '/')
 			{
@@ -525,12 +525,12 @@  discard block
 block discarded – undo
 		}
 		else
 		{
-			if ($modulepart == 'invoice') $modulepart ='facture';
+			if ($modulepart == 'invoice') $modulepart = 'facture';
 
 			$relativefile = $subdir;
 
 			$tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, '', 'write');
-			$upload_dir = $tmp['original_file'];	// No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
+			$upload_dir = $tmp['original_file']; // No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
 
 			if (empty($upload_dir) || $upload_dir == '/')
 			{
@@ -541,8 +541,8 @@  discard block
 block discarded – undo
 
 		$upload_dir = dol_sanitizePathName($upload_dir);
 
-		$destfile = $upload_dir . '/' . $original_file;
-		$destfiletmp = DOL_DATA_ROOT.'/admin/temp/' . $original_file;
+		$destfile = $upload_dir.'/'.$original_file;
+		$destfiletmp = DOL_DATA_ROOT.'/admin/temp/'.$original_file;
 		dol_delete_file($destfiletmp);
 		//var_dump($original_file);exit;
 
@@ -550,7 +550,7 @@  discard block
 block discarded – undo
 			throw new RestException(401, 'Directory not exists : '.dirname($destfile));
 		}
 
-		if (! $overwriteifexists && dol_is_file($destfile))
+		if (!$overwriteifexists && dol_is_file($destfile))
 		{
 			throw new RestException(500, "File with name '".$original_file."' already exists.");
 		}
@@ -568,7 +568,7 @@  discard block
 block discarded – undo
 		}
 
 		$result = dol_move($destfiletmp, $destfile, 0, $overwriteifexists, 1);
-		if (! $result)
+		if (!$result)
 		{
 			throw new RestException(500, "Failed to move file into '".$destfile."'");
 		}

Please login to merge, or discard this patch.

Braces +28 added lines, -37 removed lines patch added patch discarded remove patch

@@ -181,8 +181,7 @@  discard block
 block discarded – undo
 			if( $result <= 0 ) {
 				throw new RestException(500, 'Error generating document');
 			}
-		}
-		elseif ($module_part == 'commande' || $module_part == 'order')
+		} elseif ($module_part == 'commande' || $module_part == 'order')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
 			$this->order = new Commande($this->db);
@@ -195,8 +194,7 @@  discard block
 block discarded – undo
 			if( $result <= 0 ) {
 				throw new RestException(500, 'Error generating document');
 			}
-		}
-		elseif ($module_part == 'propal' || $module_part == 'proposal')
+		} elseif ($module_part == 'propal' || $module_part == 'proposal')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
 			$this->propal = new Propal($this->db);
@@ -209,8 +207,7 @@  discard block
 block discarded – undo
 			if( $result <= 0 ) {
 				throw new RestException(500, 'Error generating document');
 			}
-		}
-		else
+		} else
 		{
 			throw new RestException(403, 'Generation not available for this modulepart');
 		}
@@ -274,8 +271,7 @@  discard block
 block discarded – undo
 			}
 
 			$upload_dir = $conf->societe->multidir_output[$object->entity] . "/" . $object->id;
-		}
-		else if ($modulepart == 'adherent' || $modulepart == 'member')
+		} else if ($modulepart == 'adherent' || $modulepart == 'member')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/adherents/class/adherent.class.php';
 
@@ -290,8 +286,7 @@  discard block
 block discarded – undo
 			}
 
 			$upload_dir = $conf->adherent->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'member');
-		}
-		else if ($modulepart == 'propal' || $modulepart == 'proposal')
+		} else if ($modulepart == 'propal' || $modulepart == 'proposal')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
 
@@ -306,8 +301,7 @@  discard block
 block discarded – undo
 			}
 
 			$upload_dir = $conf->propal->multidir_output[$object->entity] . "/" . get_exdir(0, 0, 0, 1, $object, 'propal');
-		}
-		else if ($modulepart == 'commande' || $modulepart == 'order')
+		} else if ($modulepart == 'commande' || $modulepart == 'order')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
 
@@ -322,8 +316,7 @@  discard block
 block discarded – undo
 			}
 
 			$upload_dir = $conf->commande->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'commande');
-		}
-		else if ($modulepart == 'shipment' || $modulepart == 'expedition')
+		} else if ($modulepart == 'shipment' || $modulepart == 'expedition')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
 
@@ -338,8 +331,7 @@  discard block
 block discarded – undo
 			}
 
 			$upload_dir = $conf->expedition->dir_output . "/sending/" . get_exdir(0, 0, 0, 1, $object, 'shipment');
-		}
-		else if ($modulepart == 'facture' || $modulepart == 'invoice')
+		} else if ($modulepart == 'facture' || $modulepart == 'invoice')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
 
@@ -354,8 +346,7 @@  discard block
 block discarded – undo
 			}
 
 			$upload_dir = $conf->facture->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'invoice');
-		}
-		else if ($modulepart == 'agenda' || $modulepart == 'action' || $modulepart == 'event')
+		} else if ($modulepart == 'agenda' || $modulepart == 'action' || $modulepart == 'event')
 		{
 			require_once DOL_DOCUMENT_ROOT.'/comm/action/class/actioncomm.class.php';
 
@@ -370,8 +361,7 @@  discard block
 block discarded – undo
 			}
 
 			$upload_dir = $conf->agenda->dir_output.'/'.dol_sanitizeFileName($object->ref);
-		}
-		else
+		} else
 		{
 			throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
 		}
@@ -440,8 +430,12 @@  discard block
 block discarded – undo
 		}
 
 		$newfilecontent = '';
-		if (empty($fileencoding)) $newfilecontent = $filecontent;
-		if ($fileencoding == 'base64') $newfilecontent = base64_decode($filecontent);
+		if (empty($fileencoding)) {
+		    $newfilecontent = $filecontent;
+		}
+		if ($fileencoding == 'base64') {
+		    $newfilecontent = base64_decode($filecontent);
+		}
 
 		$original_file = dol_sanitizeFileName($filename);
 
@@ -458,13 +452,11 @@  discard block
 block discarded – undo
 
 				require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
 				$object = new Facture($this->db);
-			}
-			elseif ($modulepart == 'project')
+			} elseif ($modulepart == 'project')
 			{
 				require_once DOL_DOCUMENT_ROOT.'/projet/class/project.class.php';
 				$object = new Project($this->db);
-			}
-			elseif ($modulepart == 'task' || $modulepart == 'project_task')
+			} elseif ($modulepart == 'task' || $modulepart == 'project_task')
 			{
 				$modulepart = 'project_task';
 
@@ -482,8 +474,7 @@  discard block
 block discarded – undo
 					{
 						$tmpreldir = dol_sanitizeFileName($object->project->ref).'/';
 					}
-				}
-				else
+				} else
 				{
 					throw new RestException(500, 'Error while fetching Task '.$ref);
 				}
@@ -501,8 +492,7 @@  discard block
 block discarded – undo
 				if($result == 0)
 				{
 					throw new RestException(404, "Object with ref '".$ref."' was not found.");
-			}
-				elseif ($result < 0)
+			} elseif ($result < 0)
 				{
 					throw new RestException(500, 'Error while fetching object.');
 				}
@@ -522,10 +512,11 @@  discard block
 block discarded – undo
 			{
 				throw new RestException(500, 'This value of modulepart does not support yet usage of ref. Check modulepart parameter or try to use subdir parameter instead of ref.');
 			}
-		}
-		else
+		} else
 		{
-			if ($modulepart == 'invoice') $modulepart ='facture';
+			if ($modulepart == 'invoice') {
+			    $modulepart ='facture';
+			}
 
 			$relativefile = $subdir;
 
@@ -561,8 +552,7 @@  discard block
 block discarded – undo
 			$nbofbyteswrote = fwrite($fhandle, $newfilecontent);
 			fclose($fhandle);
 			@chmod($destfiletmp, octdec($conf->global->MAIN_UMASK));
-		}
-		else
+		} else
 		{
 			throw new RestException(500, "Failed to open file '".$destfiletmp."' for write");
 		}
@@ -586,8 +576,9 @@  discard block
 block discarded – undo
 	function _validate_file($data) {
 		$result = array();
 		foreach (Documents::$DOCUMENT_FIELDS as $field) {
-			if (!isset($data[$field]))
-				throw new RestException(400, "$field field missing");
+			if (!isset($data[$field])) {
+							throw new RestException(400, "$field field missing");
+			}
 			$result[$field] = $data[$field];
 		}
 		return $result;

Please login to merge, or discard this patch.

dolibarr/htdocs/api/admin/index.php 3 patches

Indentation +37 added lines, -37 removed lines patch added patch discarded remove patch

@@ -33,49 +33,49 @@
 block discarded – undo
 $langs->load("admin");
 
 if (! $user->admin)
-	accessforbidden();
+    accessforbidden();
 
 $action=GETPOST('action','aZ09');
 
 //Activate ProfId
 if ($action == 'setproductionmode')
 {
-	$status = GETPOST('status','alpha');
-
-	if (dolibarr_set_const($db, 'API_PRODUCTION_MODE', $status, 'chaine', 0, '', 0) > 0)
-	{
-		$error=0;
-
-		if ($status == 1)
-		{
-			$result = dol_mkdir($conf->api->dir_temp);
-			if ($result < 0)
-			{
-				setEventMessages($langs->trans("ErrorFailedToCreateDir", $conf->api->dir_temp), null, 'errors');
-				$error++;
-			}
-		}
-		else
-		{
-			// Delete the cache file otherwise it does not update
-			$result = dol_delete_file($conf->api->dir_temp.'/routes.php');
-			if ($result < 0)
-			{
-				setEventMessages($langs->trans("ErrorFailedToDeleteFile", $conf->api->dir_temp.'/routes.php'), null, 'errors');
-				$error++;
-			}
-		}
-
-	    if (!$error)
-	    {
-    		header("Location: ".$_SERVER["PHP_SELF"]);
-	   	    exit;
-	    }
-	}
-	else
-	{
-		dol_print_error($db);
-	}
+    $status = GETPOST('status','alpha');
+
+    if (dolibarr_set_const($db, 'API_PRODUCTION_MODE', $status, 'chaine', 0, '', 0) > 0)
+    {
+        $error=0;
+
+        if ($status == 1)
+        {
+            $result = dol_mkdir($conf->api->dir_temp);
+            if ($result < 0)
+            {
+                setEventMessages($langs->trans("ErrorFailedToCreateDir", $conf->api->dir_temp), null, 'errors');
+                $error++;
+            }
+        }
+        else
+        {
+            // Delete the cache file otherwise it does not update
+            $result = dol_delete_file($conf->api->dir_temp.'/routes.php');
+            if ($result < 0)
+            {
+                setEventMessages($langs->trans("ErrorFailedToDeleteFile", $conf->api->dir_temp.'/routes.php'), null, 'errors');
+                $error++;
+            }
+        }
+
+        if (!$error)
+        {
+            header("Location: ".$_SERVER["PHP_SELF"]);
+                exit;
+        }
+    }
+    else
+    {
+        dol_print_error($db);
+    }
 }
 
 dol_mkdir(DOL_DATA_ROOT.'/api/temp');		// May have been deleted by a purge

Please login to merge, or discard this patch.

Braces +6 added lines, -9 removed lines patch added patch discarded remove patch

@@ -32,8 +32,9 @@  discard block
 block discarded – undo
 // Load translation files required by the page
 $langs->load("admin");
 
-if (! $user->admin)
+if (! $user->admin) {
 	accessforbidden();
+}
 
 $action=GETPOST('action','aZ09');
 
@@ -54,8 +55,7 @@  discard block
 block discarded – undo
 				setEventMessages($langs->trans("ErrorFailedToCreateDir", $conf->api->dir_temp), null, 'errors');
 				$error++;
 			}
-		}
-		else
+		} else
 		{
 			// Delete the cache file otherwise it does not update
 			$result = dol_delete_file($conf->api->dir_temp.'/routes.php');
@@ -71,8 +71,7 @@  discard block
 block discarded – undo
     		header("Location: ".$_SERVER["PHP_SELF"]);
 	   	    exit;
 	    }
-	}
-	else
+	} else
 	{
 		dol_print_error($db);
 	}
@@ -111,8 +110,7 @@  discard block
 block discarded – undo
     print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=0">';
     print img_picto($langs->trans("Activated"),'switch_on');
     print '</a></td>';
-}
-else
+} else
 {
     print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=1">';
     print img_picto($langs->trans("Disabled"),'switch_off');
@@ -144,8 +142,7 @@  discard block
 block discarded – undo
 {
     $url=DOL_MAIN_URL_ROOT.'/api/index.php/explorer';
     print img_picto('','object_globe.png').' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
-}
-else
+} else
 {
     print $langs->trans("NotAvailableWithThisDistribution");
 }

Please login to merge, or discard this patch.

Spacing +21 added lines, -21 removed lines patch added patch discarded remove patch

@@ -28,26 +28,26 @@  discard block
 block discarded – undo
 
 // Copyright (C) 2018 Alxarafe/Alixar  <[email protected]>
 defined('BASE_PATH') or die('Single entry point through the index.php of the main folder');
-require DOL_BASE_PATH . '/main.inc.php';
+require DOL_BASE_PATH.'/main.inc.php';
 require_once DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';
 require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
 
 // Load translation files required by the page
 $langs->load("admin");
 
-if (! $user->admin)
+if (!$user->admin)
 	accessforbidden();
 
-$action=GETPOST('action','aZ09');
+$action = GETPOST('action', 'aZ09');
 
 //Activate ProfId
 if ($action == 'setproductionmode')
 {
-	$status = GETPOST('status','alpha');
+	$status = GETPOST('status', 'alpha');
 
 	if (dolibarr_set_const($db, 'API_PRODUCTION_MODE', $status, 'chaine', 0, '', 0) > 0)
 	{
-		$error=0;
+		$error = 0;
 
 		if ($status == 1)
 		{
@@ -81,7 +81,7 @@  discard block
 block discarded – undo
 	}
 }
 
-dol_mkdir(DOL_DATA_ROOT.'/api/temp');		// May have been deleted by a purge
+dol_mkdir(DOL_DATA_ROOT.'/api/temp'); // May have been deleted by a purge
 
 
 /*
@@ -90,8 +90,8 @@  discard block
 block discarded – undo
 
 llxHeader();
 
-$linkback='<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
-print load_fiche_titre($langs->trans("ApiSetup"),$linkback,'title_setup');
+$linkback = '<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
+print load_fiche_titre($langs->trans("ApiSetup"), $linkback, 'title_setup');
 
 print $langs->trans("ApiDesc")."<br>\n";
 print "<br>\n";
@@ -108,17 +108,17 @@  discard block
 block discarded – undo
 
 print '<tr class="impair">';
 print '<td>'.$langs->trans("ApiProductionMode").'</td>';
-$production_mode=(empty($conf->global->API_PRODUCTION_MODE)?false:true);
+$production_mode = (empty($conf->global->API_PRODUCTION_MODE) ?false:true);
 if ($production_mode)
 {
-    print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=0">';
-    print img_picto($langs->trans("Activated"),'switch_on');
+    print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i + 1).'&status=0">';
+    print img_picto($langs->trans("Activated"), 'switch_on');
     print '</a></td>';
 }
 else
 {
-    print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=1">';
-    print img_picto($langs->trans("Disabled"),'switch_off');
+    print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i + 1).'&status=1">';
+    print img_picto($langs->trans("Disabled"), 'switch_off');
     print '</a></td>';
 }
 print '<td>&nbsp;</td>';
@@ -128,15 +128,15 @@  discard block
 block discarded – undo
 print '<br><br>';
 
 // Define $urlwithroot
-$urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim($dolibarr_main_url_root));
-$urlwithroot=$urlwithouturlroot.DOL_URL_ROOT;		// This is to use external domain name found into config file
+$urlwithouturlroot = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim($dolibarr_main_url_root));
+$urlwithroot = $urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
 //$urlwithroot=DOL_MAIN_URL_ROOT;					// This is to use same domain name than current
 
 // Show message
-$message='';
-$url=$urlwithroot.'/api/index.php/login?login=<strong>auserlogin</strong>&password=<strong>thepassword</strong>[&reset=1]';
-$message.=$langs->trans("UrlToGetKeyToUseAPIs").':<br>';
-$message.=img_picto('','object_globe.png').' '.$url;
+$message = '';
+$url = $urlwithroot.'/api/index.php/login?login=<strong>auserlogin</strong>&password=<strong>thepassword</strong>[&reset=1]';
+$message .= $langs->trans("UrlToGetKeyToUseAPIs").':<br>';
+$message .= img_picto('', 'object_globe.png').' '.$url;
 print $message;
 print '<br>';
 print '<br>';
@@ -145,8 +145,8 @@  discard block
 block discarded – undo
 print '<u>'.$langs->trans("ApiExporerIs").':</u><br>';
 if (dol_is_dir(DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/explorer'))
 {
-    $url=DOL_MAIN_URL_ROOT.'/api/index.php/explorer';
-    print img_picto('','object_globe.png').' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
+    $url = DOL_MAIN_URL_ROOT.'/api/index.php/explorer';
+    print img_picto('', 'object_globe.png').' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
 }
 else
 {

Please login to merge, or discard this patch.

dolibarr/htdocs/api/admin/explorer.php 3 patches

Indentation +12 added lines, -12 removed lines patch added patch discarded remove patch

@@ -78,23 +78,23 @@  discard block
 block discarded – undo
                 $module=$part=$obj=strtolower(preg_replace('/^mod/i','',$modulename));
                 //if ($part == 'propale') $part='propal';
                 if ($module == 'societe') {
-					$obj = 'thirdparty';
-				}
+                    $obj = 'thirdparty';
+                }
                 if ($module == 'categorie') {
                     $part = 'categories';
-					$obj = 'category';
-				}
+                    $obj = 'category';
+                }
                 if ($module == 'facture') {
                     $part = 'compta/facture';
-					$obj = 'facture';
-				}
+                    $obj = 'facture';
+                }
                 if ($module == 'ficheinter') {
-                                       $obj = 'fichinter';
-                                       $part = 'fichinter';
-                                       $module='fichinter';
-                               }
+                                        $obj = 'fichinter';
+                                        $part = 'fichinter';
+                                        $module='fichinter';
+                                }
 
-		if (empty($conf->$module->enabled)) $enabled=false;
+        if (empty($conf->$module->enabled)) $enabled=false;
 
                 if ($enabled)
                 {
@@ -149,7 +149,7 @@  discard block
 block discarded – undo
                                     }*/
 
                                     //$listofapis[]=array('classname'=>$classname, 'fullpath'=>$file_searched);
-                           /*     }
+                            /*     }
 
                             }*/
                         }

Please login to merge, or discard this patch.

Spacing +29 added lines, -29 removed lines patch added patch discarded remove patch

@@ -42,7 +42,7 @@  discard block
 block discarded – undo
 if (empty($conf->global->MAIN_MODULE_API))
 {
     dol_syslog("Call Dolibarr API interfaces with module REST disabled");
-    print $langs->trans("WarningModuleNotActive",'Api').'.<br><br>';
+    print $langs->trans("WarningModuleNotActive", 'Api').'.<br><br>';
     print $langs->trans("ToActivateModule");
     exit;
 }
@@ -52,7 +52,7 @@  discard block
 block discarded – undo
 
 $api->r->addAPIClass('Luracast\\Restler\\Resources'); //this creates resources.json at API Root
 $api->r->setSupportedFormats('JsonFormat', 'XmlFormat');
-$api->r->addAuthenticationClass('DolibarrApiAccess','');
+$api->r->addAuthenticationClass('DolibarrApiAccess', '');
 
 $listofapis = array();
 
@@ -64,18 +64,18 @@  discard block
 block discarded – undo
      */
     //dol_syslog("Scan directory ".$dir." for API modules");
 
-    $handle=@opendir(dol_osencode($dir));
+    $handle = @opendir(dol_osencode($dir));
     if (is_resource($handle))
     {
-        while (($file = readdir($handle))!==false)
+        while (($file = readdir($handle)) !== false)
         {
-            if (is_readable($dir.$file) && preg_match("/^(mod.*)\.class\.php$/i",$file,$reg))
+            if (is_readable($dir.$file) && preg_match("/^(mod.*)\.class\.php$/i", $file, $reg))
             {
-                $modulename=$reg[1];
+                $modulename = $reg[1];
 
                 // Defined if module is enabled
-                $enabled=true;
-                $module=$part=$obj=strtolower(preg_replace('/^mod/i','',$modulename));
+                $enabled = true;
+                $module = $part = $obj = strtolower(preg_replace('/^mod/i', '', $modulename));
                 //if ($part == 'propale') $part='propal';
                 if ($module == 'societe') {
 					$obj = 'thirdparty';
@@ -91,10 +91,10 @@  discard block
 block discarded – undo
                 if ($module == 'ficheinter') {
                                        $obj = 'fichinter';
                                        $part = 'fichinter';
-                                       $module='fichinter';
+                                       $module = 'fichinter';
                                }
 
-		if (empty($conf->$module->enabled)) $enabled=false;
+		if (empty($conf->$module->enabled)) $enabled = false;
 
                 if ($enabled)
                 {
@@ -108,12 +108,12 @@  discard block
 block discarded – undo
                      */
                     $dir_part = DOL_DOCUMENT_ROOT.'/'.$part.'/class/';
 
-                    $handle_part=@opendir(dol_osencode($dir_part));
+                    $handle_part = @opendir(dol_osencode($dir_part));
                     if (is_resource($handle_part))
                     {
-                        while (($file_searched = readdir($handle_part))!==false)
+                        while (($file_searched = readdir($handle_part)) !== false)
                         {
-                            if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i",$file_searched,$reg))
+                            if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i", $file_searched, $reg))
                             {
                                 $classname = ucwords($reg[1]);
                                 require_once $dir_part.$file_searched;
@@ -161,43 +161,43 @@  discard block
 block discarded – undo
 }
 
 //var_dump($listofapis);
-$listofapis=Routes::toArray();          // TODO api for "status" is lost here
+$listofapis = Routes::toArray(); // TODO api for "status" is lost here
 //var_dump($listofapis);
 
 
 llxHeader();
 
-$linkback='<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
-print load_fiche_titre($langs->trans("ApiSetup"),$linkback,'title_setup');
+$linkback = '<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
+print load_fiche_titre($langs->trans("ApiSetup"), $linkback, 'title_setup');
 
 // Define $urlwithroot
-$urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim($dolibarr_main_url_root));
-$urlwithroot=$urlwithouturlroot.DOL_URL_ROOT;		// This is to use external domain name found into config file
+$urlwithouturlroot = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim($dolibarr_main_url_root));
+$urlwithroot = $urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
 //$urlwithroot=DOL_MAIN_URL_ROOT;					// This is to use same domain name than current
 
 // Show message
 print '<br>';
-$message='';
-$url='<a href="'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword" target="_blank">'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword[&reset=1]</a>';
-$message.=$langs->trans("UrlToGetKeyToUseAPIs").':<br>';
-$message.=img_picto('','object_globe.png').' '.$url;
+$message = '';
+$url = '<a href="'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword" target="_blank">'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword[&reset=1]</a>';
+$message .= $langs->trans("UrlToGetKeyToUseAPIs").':<br>';
+$message .= img_picto('', 'object_globe.png').' '.$url;
 print $message;
 print '<br>';
 print '<br>';
 
-$oldclass='';
+$oldclass = '';
 
 print $langs->trans("ListOfAvailableAPIs").':<br>';
-foreach($listofapis['v1'] as $key => $val)
+foreach ($listofapis['v1'] as $key => $val)
 {
     if ($key == 'login') continue;
     if ($key == 'index') continue;
 
     if ($key)
     {
-        foreach($val as $method => $val2)
+        foreach ($val as $method => $val2)
         {
-            $newclass=$val2['className'];
+            $newclass = $val2['className'];
 
             if (preg_match('/restler/i', $newclass)) continue;
 
@@ -207,9 +207,9 @@  discard block
 block discarded – undo
                 $oldclass = $newclass;
             }
             //print $key.' - '.$val['classname'].' - '.$val['fullpath']." - ".DOL_MAIN_URL_ROOT.'/api/index.php/'.strtolower(preg_replace('/Api$/','',$val['classname']))."/xxx<br>\n";
-            $url=$urlwithroot.'/api/index.php/'.$key;
-            $url.='?api_key=token';
-            print img_picto('','object_globe.png').' '.$method.' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
+            $url = $urlwithroot.'/api/index.php/'.$key;
+            $url .= '?api_key=token';
+            print img_picto('', 'object_globe.png').' '.$method.' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
         }
     }
 }

Please login to merge, or discard this patch.

Braces +12 added lines, -4 removed lines patch added patch discarded remove patch

@@ -94,7 +94,9 @@  discard block
 block discarded – undo
                                        $module='fichinter';
                                }
 
-		if (empty($conf->$module->enabled)) $enabled=false;
+		if (empty($conf->$module->enabled)) {
+		    $enabled=false;
+		}
 
                 if ($enabled)
                 {
@@ -190,8 +192,12 @@  discard block
 block discarded – undo
 print $langs->trans("ListOfAvailableAPIs").':<br>';
 foreach($listofapis['v1'] as $key => $val)
 {
-    if ($key == 'login') continue;
-    if ($key == 'index') continue;
+    if ($key == 'login') {
+        continue;
+    }
+    if ($key == 'index') {
+        continue;
+    }
 
     if ($key)
     {
@@ -199,7 +205,9 @@  discard block
 block discarded – undo
         {
             $newclass=$val2['className'];
 
-            if (preg_match('/restler/i', $newclass)) continue;
+            if (preg_match('/restler/i', $newclass)) {
+                continue;
+            }
 
             if ($oldclass != $newclass)
             {

Please login to merge, or discard this patch.

dolibarr/htdocs/api/index.php 3 patches

Indentation +32 added lines, -32 removed lines patch added patch discarded remove patch

@@ -215,38 +215,38 @@
 block discarded – undo
     // Load a dedicated API file
     dol_syslog("Load a dedicated API file module=".$module." moduledirforclass=".$moduledirforclass);
 
-	$tmpmodule = $module;
-	if ($tmpmodule != 'api')
-		$tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
-	$classfile = str_replace('_', '', $tmpmodule);
-	if ($module == 'supplierproposals')
-		$classfile = 'supplier_proposals';
-	if ($module == 'supplierorders')
-		$classfile = 'supplier_orders';
-	if ($module == 'supplierinvoices')
-		$classfile = 'supplier_invoices';
-	if ($module == 'ficheinter')
-		$classfile = 'interventions';
-	if ($module == 'interventions')
-		$classfile = 'interventions';
-
-	$dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
-
-	$classname = ucwords($module);
-
-	dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
-
-	$res = false;
-	if ($dir_part_file)
-		$res = include_once $dir_part_file;
-	if (! $res) {
-		print 'API not found (failed to include API file)';
-		header('HTTP/1.1 501 API not found (failed to include API file)');
-		exit(0);
-	}
-
-	if (class_exists($classname))
-		$api->r->addAPIClass($classname);
+    $tmpmodule = $module;
+    if ($tmpmodule != 'api')
+        $tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
+    $classfile = str_replace('_', '', $tmpmodule);
+    if ($module == 'supplierproposals')
+        $classfile = 'supplier_proposals';
+    if ($module == 'supplierorders')
+        $classfile = 'supplier_orders';
+    if ($module == 'supplierinvoices')
+        $classfile = 'supplier_invoices';
+    if ($module == 'ficheinter')
+        $classfile = 'interventions';
+    if ($module == 'interventions')
+        $classfile = 'interventions';
+
+    $dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
+
+    $classname = ucwords($module);
+
+    dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
+
+    $res = false;
+    if ($dir_part_file)
+        $res = include_once $dir_part_file;
+    if (! $res) {
+        print 'API not found (failed to include API file)';
+        header('HTTP/1.1 501 API not found (failed to include API file)');
+        exit(0);
+    }
+
+    if (class_exists($classname))
+        $api->r->addAPIClass($classname);
 }
 
 // TODO If not found, redirect to explorer

Please login to merge, or discard this patch.

Spacing +35 added lines, -35 removed lines patch added patch discarded remove patch

@@ -24,25 +24,25 @@  discard block
 block discarded – undo
  *  \file       htdocs/api/index.php
  */
 
-if (! defined('NOCSRFCHECK'))    define('NOCSRFCHECK','1');			// Do not check anti CSRF attack test
-if (! defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL','1');		// Do not check anti POST attack test
-if (! defined('NOREQUIREMENU'))  define('NOREQUIREMENU','1');		// If there is no need to load and show top and left menu
-if (! defined('NOREQUIREHTML'))  define('NOREQUIREHTML','1');		// If we don't need to load the html.form.class.php
-if (! defined('NOREQUIREAJAX'))  define('NOREQUIREAJAX','1');       // Do not load ajax.lib.php library
-if (! defined("NOLOGIN"))        define("NOLOGIN",'1');				// If this page is public (can be called outside logged session)
+if (!defined('NOCSRFCHECK'))    define('NOCSRFCHECK', '1'); // Do not check anti CSRF attack test
+if (!defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL', '1'); // Do not check anti POST attack test
+if (!defined('NOREQUIREMENU'))  define('NOREQUIREMENU', '1'); // If there is no need to load and show top and left menu
+if (!defined('NOREQUIREHTML'))  define('NOREQUIREHTML', '1'); // If we don't need to load the html.form.class.php
+if (!defined('NOREQUIREAJAX'))  define('NOREQUIREAJAX', '1'); // Do not load ajax.lib.php library
+if (!defined("NOLOGIN"))        define("NOLOGIN", '1'); // If this page is public (can be called outside logged session)
 
 
 // Force entity if a value is provided into HTTP header. Otherwise, will use the entity of user of token used.
-if (! empty($_SERVER['HTTP_DOLAPIENTITY'])) define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
+if (!empty($_SERVER['HTTP_DOLAPIENTITY'])) define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
 
 
-$res=0;
-if (! $res && file_exists("../main.inc.php")) $res=include '../main.inc.php';
-if (! $res) die("Include of main fails");
+$res = 0;
+if (!$res && file_exists("../main.inc.php")) $res = include '../main.inc.php';
+if (!$res) die("Include of main fails");
 
 require_once DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/AutoLoader.php';
 
-call_user_func(function () {
+call_user_func(function() {
     $loader = Luracast\Restler\AutoLoader::instance();
     spl_autoload_register($loader);
     return $loader;
@@ -59,13 +59,13 @@  discard block
 block discarded – undo
 {
     $langs->load("admin");
     dol_syslog("Call Dolibarr API interfaces with module REST disabled");
-    print $langs->trans("WarningModuleNotActive",'Api').'.<br><br>';
+    print $langs->trans("WarningModuleNotActive", 'Api').'.<br><br>';
     print $langs->trans("ToActivateModule");
     exit;
 }
 
 // Test if explorer is not disabled
-if (preg_match('/api\/index\.php\/explorer/', $_SERVER["PHP_SELF"]) && ! empty($conf->global->API_EXPLORER_DISABLED))
+if (preg_match('/api\/index\.php\/explorer/', $_SERVER["PHP_SELF"]) && !empty($conf->global->API_EXPLORER_DISABLED))
 {
     $langs->load("admin");
     dol_syslog("Call Dolibarr API interfaces with module REST disabled");
@@ -93,10 +93,10 @@  discard block
 block discarded – undo
 
 
 // Set the flag to say to refresh (when we reload the explorer, production must be for API call only)
-$refreshcache=false;
-if (! empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' || $reg[2] == '/swagger.json/root' || $reg[2] == '/resources.json' || $reg[2] == '/resources.json/root'))
+$refreshcache = false;
+if (!empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' || $reg[2] == '/swagger.json/root' || $reg[2] == '/resources.json' || $reg[2] == '/resources.json/root'))
 {
-    $refreshcache=true;
+    $refreshcache = true;
 }
 
 
@@ -107,8 +107,8 @@  discard block
 block discarded – undo
 // See https://github.com/Luracast/Restler-API-Explorer for more info.
 $api->r->addAPIClass('Luracast\\Restler\\Explorer');
 
-$api->r->setSupportedFormats('JsonFormat', 'XmlFormat', 'UploadFormat');	// 'YamlFormat'
-$api->r->addAuthenticationClass('DolibarrApiAccess','');
+$api->r->setSupportedFormats('JsonFormat', 'XmlFormat', 'UploadFormat'); // 'YamlFormat'
+$api->r->addAuthenticationClass('DolibarrApiAccess', '');
 
 // Define accepted mime types
 UploadFormat::$allowedMimeTypes = array('image/jpeg', 'image/png', 'text/plain', 'application/octet-stream');
@@ -116,7 +116,7 @@  discard block
 block discarded – undo
 
 
 // Call Explorer file for all APIs definitions
-if (! empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' || $reg[2] == '/swagger.json/root' || $reg[2] == '/resources.json' || $reg[2] == '/resources.json/root'))
+if (!empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' || $reg[2] == '/swagger.json/root' || $reg[2] == '/resources.json' || $reg[2] == '/resources.json/root'))
 {
     // Scan all API files to load them
 
@@ -128,25 +128,25 @@  discard block
 block discarded – undo
         // Search available module
         dol_syslog("Scan directory ".$dir." for module descriptor files, then search for API files");
 
-        $handle=@opendir(dol_osencode($dir));
+        $handle = @opendir(dol_osencode($dir));
         if (is_resource($handle))
         {
-            while (($file = readdir($handle))!==false)
+            while (($file = readdir($handle)) !== false)
             {
-                if (is_readable($dir.$file) && preg_match("/^mod(.*)\.class\.php$/i",$file,$regmod))
+                if (is_readable($dir.$file) && preg_match("/^mod(.*)\.class\.php$/i", $file, $regmod))
                 {
                     $module = strtolower($regmod[1]);
                     $moduledirforclass = getModuleDirForApiClass($module);
                     $modulenameforenabled = $module;
-                    if ($module == 'propale') { $modulenameforenabled='propal'; }
-                    if ($module == 'supplierproposal') { $modulenameforenabled='supplier_proposal'; }
-                    if ($module == 'ficheinter') { $modulenameforenabled='ficheinter'; }
+                    if ($module == 'propale') { $modulenameforenabled = 'propal'; }
+                    if ($module == 'supplierproposal') { $modulenameforenabled = 'supplier_proposal'; }
+                    if ($module == 'ficheinter') { $modulenameforenabled = 'ficheinter'; }
 
                     dol_syslog("Found module file ".$file." - module=".$module." - modulenameforenabled=".$modulenameforenabled." - moduledirforclass=".$moduledirforclass);
 
                     // Defined if module is enabled
-                    $enabled=true;
-                    if (empty($conf->$modulenameforenabled->enabled)) $enabled=false;
+                    $enabled = true;
+                    if (empty($conf->$modulenameforenabled->enabled)) $enabled = false;
 
                     if ($enabled)
                     {
@@ -155,14 +155,14 @@  discard block
 block discarded – undo
                         // @todo : use getElementProperties() function ?
                         $dir_part = dol_buildpath('/'.$moduledirforclass.'/class/');
 
-                        $handle_part=@opendir(dol_osencode($dir_part));
+                        $handle_part = @opendir(dol_osencode($dir_part));
                         if (is_resource($handle_part))
                         {
-                            while (($file_searched = readdir($handle_part))!==false)
+                            while (($file_searched = readdir($handle_part)) !== false)
                             {
                                 if ($file_searched == 'api_access.class.php') continue;
 
-                                if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i",$file_searched,$regapi))
+                                if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i", $file_searched, $regapi))
                                 {
                                     $classname = ucwords($regapi[1]);
                                     $classname = str_replace('_', '', $classname);
@@ -201,7 +201,7 @@  discard block
 block discarded – undo
 }
 
 // Call one APIs or one definition of an API
-if (! empty($reg[1]) && ($reg[1] != 'explorer' || ($reg[2] != '/swagger.json' && $reg[2] != '/resources.json' && preg_match('/^\/(swagger|resources)\.json\/(.+)$/', $reg[2], $regbis) && $regbis[2] != 'root')))
+if (!empty($reg[1]) && ($reg[1] != 'explorer' || ($reg[2] != '/swagger.json' && $reg[2] != '/resources.json' && preg_match('/^\/(swagger|resources)\.json\/(.+)$/', $reg[2], $regbis) && $regbis[2] != 'root')))
 {
     $module = $reg[1];
     if ($module == 'explorer')  // If we call page to explore details of a service
@@ -209,7 +209,7 @@  discard block
 block discarded – undo
         $module = $regbis[2];
     }
 
-    $module=strtolower($module);
+    $module = strtolower($module);
     $moduledirforclass = getModuleDirForApiClass($module);
 
     // Load a dedicated API file
@@ -230,16 +230,16 @@  discard block
 block discarded – undo
 	if ($module == 'interventions')
 		$classfile = 'interventions';
 
-	$dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
+	$dir_part_file = dol_buildpath('/'.$moduledirforclass.'/class/api_'.$classfile.'.class.php', 0, 2);
 
 	$classname = ucwords($module);
 
-	dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
+	dol_syslog('Search /'.$moduledirforclass.'/class/api_'.$classfile.'.class.php => dir_part_file='.$dir_part_file.' classname='.$classname);
 
 	$res = false;
 	if ($dir_part_file)
 		$res = include_once $dir_part_file;
-	if (! $res) {
+	if (!$res) {
 		print 'API not found (failed to include API file)';
 		header('HTTP/1.1 501 API not found (failed to include API file)');
 		exit(0);

Please login to merge, or discard this patch.

Braces +69 added lines, -33 removed lines patch added patch discarded remove patch

@@ -24,21 +24,45 @@  discard block
 block discarded – undo
  *  \file       htdocs/api/index.php
  */
 
-if (! defined('NOCSRFCHECK'))    define('NOCSRFCHECK','1');			// Do not check anti CSRF attack test
-if (! defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL','1');		// Do not check anti POST attack test
-if (! defined('NOREQUIREMENU'))  define('NOREQUIREMENU','1');		// If there is no need to load and show top and left menu
-if (! defined('NOREQUIREHTML'))  define('NOREQUIREHTML','1');		// If we don't need to load the html.form.class.php
-if (! defined('NOREQUIREAJAX'))  define('NOREQUIREAJAX','1');       // Do not load ajax.lib.php library
-if (! defined("NOLOGIN"))        define("NOLOGIN",'1');				// If this page is public (can be called outside logged session)
+if (! defined('NOCSRFCHECK')) {
+    define('NOCSRFCHECK','1');
+}
+// Do not check anti CSRF attack test
+if (! defined('NOTOKENRENEWAL')) {
+    define('NOTOKENRENEWAL','1');
+}
+// Do not check anti POST attack test
+if (! defined('NOREQUIREMENU')) {
+    define('NOREQUIREMENU','1');
+}
+// If there is no need to load and show top and left menu
+if (! defined('NOREQUIREHTML')) {
+    define('NOREQUIREHTML','1');
+}
+// If we don't need to load the html.form.class.php
+if (! defined('NOREQUIREAJAX')) {
+    define('NOREQUIREAJAX','1');
+}
+// Do not load ajax.lib.php library
+if (! defined("NOLOGIN")) {
+    define("NOLOGIN",'1');
+}
+// If this page is public (can be called outside logged session)
 
 
 // Force entity if a value is provided into HTTP header. Otherwise, will use the entity of user of token used.
-if (! empty($_SERVER['HTTP_DOLAPIENTITY'])) define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
+if (! empty($_SERVER['HTTP_DOLAPIENTITY'])) {
+    define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
+}
 
 
 $res=0;
-if (! $res && file_exists("../main.inc.php")) $res=include '../main.inc.php';
-if (! $res) die("Include of main fails");
+if (! $res && file_exists("../main.inc.php")) {
+    $res=include '../main.inc.php';
+}
+if (! $res) {
+    die("Include of main fails");
+}
 
 require_once DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/AutoLoader.php';
 
@@ -146,7 +170,9 @@  discard block
 block discarded – undo
 
                     // Defined if module is enabled
                     $enabled=true;
-                    if (empty($conf->$modulenameforenabled->enabled)) $enabled=false;
+                    if (empty($conf->$modulenameforenabled->enabled)) {
+                        $enabled=false;
+                    }
 
                     if ($enabled)
                     {
@@ -160,7 +186,9 @@  discard block
 block discarded – undo
                         {
                             while (($file_searched = readdir($handle_part))!==false)
                             {
-                                if ($file_searched == 'api_access.class.php') continue;
+                                if ($file_searched == 'api_access.class.php') {
+                                    continue;
+                                }
 
                                 if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i",$file_searched,$regapi))
                                 {
@@ -171,13 +199,11 @@  discard block
 block discarded – undo
                                     {
                                         //dol_syslog("Found API by index.php: classname=".$classname."Api for module ".$dir." into ".$dir_part.$file_searched);
                                         $listofapis[strtolower($classname.'Api')] = $classname.'Api';
-                                    }
-                                    elseif (class_exists($classname))
+                                    } elseif (class_exists($classname))
                                     {
                                         //dol_syslog("Found API by index.php: classname=".$classname." for module ".$dir." into ".$dir_part.$file_searched);
                                         $listofapis[strtolower($classname)] = $classname;
-                                    }
-                                    else
+                                    } else
                                     {
                                         dol_syslog("We found an api_xxx file (".$file_searched.") but class ".$classname." does not exists after loading file", LOG_WARNING);
                                     }
@@ -204,10 +230,12 @@  discard block
 block discarded – undo
 if (! empty($reg[1]) && ($reg[1] != 'explorer' || ($reg[2] != '/swagger.json' && $reg[2] != '/resources.json' && preg_match('/^\/(swagger|resources)\.json\/(.+)$/', $reg[2], $regbis) && $regbis[2] != 'root')))
 {
     $module = $reg[1];
-    if ($module == 'explorer')  // If we call page to explore details of a service
+    if ($module == 'explorer') {
+        // If we call page to explore details of a service
     {
         $module = $regbis[2];
     }
+    }
 
     $module=strtolower($module);
     $moduledirforclass = getModuleDirForApiClass($module);
@@ -216,19 +244,25 @@  discard block
 block discarded – undo
     dol_syslog("Load a dedicated API file module=".$module." moduledirforclass=".$moduledirforclass);
 
 	$tmpmodule = $module;
-	if ($tmpmodule != 'api')
-		$tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
+	if ($tmpmodule != 'api') {
+			$tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
+	}
 	$classfile = str_replace('_', '', $tmpmodule);
-	if ($module == 'supplierproposals')
-		$classfile = 'supplier_proposals';
-	if ($module == 'supplierorders')
-		$classfile = 'supplier_orders';
-	if ($module == 'supplierinvoices')
-		$classfile = 'supplier_invoices';
-	if ($module == 'ficheinter')
-		$classfile = 'interventions';
-	if ($module == 'interventions')
-		$classfile = 'interventions';
+	if ($module == 'supplierproposals') {
+			$classfile = 'supplier_proposals';
+	}
+	if ($module == 'supplierorders') {
+			$classfile = 'supplier_orders';
+	}
+	if ($module == 'supplierinvoices') {
+			$classfile = 'supplier_invoices';
+	}
+	if ($module == 'ficheinter') {
+			$classfile = 'interventions';
+	}
+	if ($module == 'interventions') {
+			$classfile = 'interventions';
+	}
 
 	$dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
 
@@ -237,17 +271,19 @@  discard block
 block discarded – undo
 	dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
 
 	$res = false;
-	if ($dir_part_file)
-		$res = include_once $dir_part_file;
+	if ($dir_part_file) {
+			$res = include_once $dir_part_file;
+	}
 	if (! $res) {
 		print 'API not found (failed to include API file)';
 		header('HTTP/1.1 501 API not found (failed to include API file)');
 		exit(0);
 	}
 
-	if (class_exists($classname))
-		$api->r->addAPIClass($classname);
-}
+	if (class_exists($classname)) {
+			$api->r->addAPIClass($classname);
+	}
+	}
 
 // TODO If not found, redirect to explorer
 //var_dump($api->r->apiVersionMap);

Please login to merge, or discard this patch.

		@@ -31,110 +31,110 @@
		block discarded – undo
31	31	*/
32	32	function __construct()
33	33	{
34		- global $db;
35		- $this->db = $db;
36		- }
37		-
38		- /**
39		- * Login
40		- *
41		- * Request the API token for a couple username / password.
42		- * Using method POST is recommanded for security reasons (method GET is often logged by default by web servers with parameters so with login and pass into server log file).
43		- * Both methods are provided for developer conveniance. Best is to not use at all the login API method and enter directly the "DOLAPIKEY" into field at the top right of page. Note: The API key (DOLAPIKEY) can be found/set on the user page.
44		- *
45		- * @param string $login User login
46		- * @param string $password User password
47		- * @param string $entity Entity (when multicompany module is used). '' means 1=first company.
48		- * @param int $reset Reset token (0=get current token, 1=ask a new token and canceled old token. This means access using current existing API token of user will fails: new token will be required for new access)
	34	+ global $db;
	35	+ $this->db = $db;
	36	+ }
	37	+
	38	+ /**
	39	+ * Login
	40	+ *
	41	+ * Request the API token for a couple username / password.
	42	+ * Using method POST is recommanded for security reasons (method GET is often logged by default by web servers with parameters so with login and pass into server log file).
	43	+ * Both methods are provided for developer conveniance. Best is to not use at all the login API method and enter directly the "DOLAPIKEY" into field at the top right of page. Note: The API key (DOLAPIKEY) can be found/set on the user page.
	44	+ *
	45	+ * @param string $login User login
	46	+ * @param string $password User password
	47	+ * @param string $entity Entity (when multicompany module is used). '' means 1=first company.
	48	+ * @param int $reset Reset token (0=get current token, 1=ask a new token and canceled old token. This means access using current existing API token of user will fails: new token will be required for new access)
49	49	* @return array Response status and user token
50	50	*
51		- * @throws 200
52		- * @throws 403
53		- * @throws 500
54		- *
55		- * @url GET /
56		- * @url POST /
57		- */
	51	+ * @throws 200
	52	+ * @throws 403
	53	+ * @throws 500
	54	+ *
	55	+ * @url GET /
	56	+ * @url POST /
	57	+ */
58	58	public function index($login, $password, $entity='', $reset=0)
59	59	{
60	60
61		- global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
62		-
63		- // Authentication mode
64		- if (empty($dolibarr_main_authentication))
65		- $dolibarr_main_authentication = 'http,dolibarr';
66		- // Authentication mode: forceuser
67		- if ($dolibarr_main_authentication == 'forceuser')
68		- {
69		- if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
70		- if ($dolibarr_auto_user != $login)
71		- {
72		- dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
73		- throw new RestException(403, "Your instance is set to use the automatic login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
74		- }
75		- }
76		- // Set authmode
77		- $authmode = explode(',', $dolibarr_main_authentication);
78		-
79		- if ($entity != '' && ! is_numeric($entity))
80		- {
81		- throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
82		- }
83		- if ($entity == '') $entity=1;
84		-
85		- include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
86		- $login = checkLoginPassEntity($login, $password, $entity, $authmode);
87		- if (empty($login))
88		- {
89		- throw new RestException(403, 'Access denied');
90		- }
91		-
92		- $token = 'failedtogenerateorgettoken';
93		-
94		- $tmpuser=new User($this->db);
95		- $tmpuser->fetch(0, $login, 0, 0, $entity);
96		- if (empty($tmpuser->id))
97		- {
98		- throw new RestException(500, 'Failed to load user');
99		- }
100		-
101		- // Renew the hash
102		- if (empty($tmpuser->api_key) \|\| $reset)
103		- {
104		- $tmpuser->getrights();
105		- if (empty($tmpuser->rights->user->self->creer))
106		- {
107		- throw new RestException(403, 'User need write permission on itself to reset its API token');
108		- }
109		-
110		- // Generate token for user
111		- $token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY,1);
112		-
113		- // We store API token into database
114		- $sql = "UPDATE ".MAIN_DB_PREFIX."user";
115		- $sql.= " SET api_key = '".$this->db->escape($token)."'";
116		- $sql.= " WHERE login = '".$this->db->escape($login)."'";
117		-
118		- dol_syslog(get_class($this)."::login", LOG_DEBUG); // No log
119		- $result = $this->db->query($sql);
120		- if (!$result)
121		- {
122		- throw new RestException(500, 'Error when updating api_key for user :'.$this->db->lasterror());
123		- }
124		- }
125		- else
126		- {
	61	+ global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
	62	+
	63	+ // Authentication mode
	64	+ if (empty($dolibarr_main_authentication))
	65	+ $dolibarr_main_authentication = 'http,dolibarr';
	66	+ // Authentication mode: forceuser
	67	+ if ($dolibarr_main_authentication == 'forceuser')
	68	+ {
	69	+ if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
	70	+ if ($dolibarr_auto_user != $login)
	71	+ {
	72	+ dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
	73	+ throw new RestException(403, "Your instance is set to use the automatic login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
	74	+ }
	75	+ }
	76	+ // Set authmode
	77	+ $authmode = explode(',', $dolibarr_main_authentication);
	78	+
	79	+ if ($entity != '' && ! is_numeric($entity))
	80	+ {
	81	+ throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
	82	+ }
	83	+ if ($entity == '') $entity=1;
	84	+
	85	+ include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
	86	+ $login = checkLoginPassEntity($login, $password, $entity, $authmode);
	87	+ if (empty($login))
	88	+ {
	89	+ throw new RestException(403, 'Access denied');
	90	+ }
	91	+
	92	+ $token = 'failedtogenerateorgettoken';
	93	+
	94	+ $tmpuser=new User($this->db);
	95	+ $tmpuser->fetch(0, $login, 0, 0, $entity);
	96	+ if (empty($tmpuser->id))
	97	+ {
	98	+ throw new RestException(500, 'Failed to load user');
	99	+ }
	100	+
	101	+ // Renew the hash
	102	+ if (empty($tmpuser->api_key) \|\| $reset)
	103	+ {
	104	+ $tmpuser->getrights();
	105	+ if (empty($tmpuser->rights->user->self->creer))
	106	+ {
	107	+ throw new RestException(403, 'User need write permission on itself to reset its API token');
	108	+ }
	109	+
	110	+ // Generate token for user
	111	+ $token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY,1);
	112	+
	113	+ // We store API token into database
	114	+ $sql = "UPDATE ".MAIN_DB_PREFIX."user";
	115	+ $sql.= " SET api_key = '".$this->db->escape($token)."'";
	116	+ $sql.= " WHERE login = '".$this->db->escape($login)."'";
	117	+
	118	+ dol_syslog(get_class($this)."::login", LOG_DEBUG); // No log
	119	+ $result = $this->db->query($sql);
	120	+ if (!$result)
	121	+ {
	122	+ throw new RestException(500, 'Error when updating api_key for user :'.$this->db->lasterror());
	123	+ }
	124	+ }
	125	+ else
	126	+ {
127	127	$token = $tmpuser->api_key;
128		- }
129		-
130		- //return token
131		- return array(
132		- 'success' => array(
133		- 'code' => 200,
134		- 'token' => $token,
135		- 'entity' => $tmpuser->entity,
136		- 'message' => 'Welcome ' . $login.($reset?' - Token is new':' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
137		- )
138		- );
139		- }
	128	+ }
	129	+
	130	+ //return token
	131	+ return array(
	132	+ 'success' => array(
	133	+ 'code' => 200,
	134	+ 'token' => $token,
	135	+ 'entity' => $tmpuser->entity,
	136	+ 'message' => 'Welcome ' . $login.($reset?' - Token is new':' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
	137	+ )
	138	+ );
	139	+ }
140	140	}

		@@ -55,7 +55,7 @@ discard block
		block discarded – undo
55	55	* @url GET /
56	56	* @url POST /
57	57	*/
58		- public function index($login, $password, $entity='', $reset=0)
	58	+ public function index($login, $password, $entity = '', $reset = 0)
59	59	{
60	60
61	61	global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
		@@ -66,7 +66,7 @@ discard block
		block discarded – undo
66	66	// Authentication mode: forceuser
67	67	if ($dolibarr_main_authentication == 'forceuser')
68	68	{
69		- if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
	69	+ if (empty($dolibarr_auto_user)) $dolibarr_auto_user = 'auto';
70	70	if ($dolibarr_auto_user != $login)
71	71	{
72	72	dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
		@@ -76,13 +76,13 @@ discard block
		block discarded – undo
76	76	// Set authmode
77	77	$authmode = explode(',', $dolibarr_main_authentication);
78	78
79		- if ($entity != '' && ! is_numeric($entity))
	79	+ if ($entity != '' && !is_numeric($entity))
80	80	{
81	81	throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
82	82	}
83		- if ($entity == '') $entity=1;
	83	+ if ($entity == '') $entity = 1;
84	84
85		- include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
	85	+ include_once DOL_DOCUMENT_ROOT.'/core/lib/security2.lib.php';
86	86	$login = checkLoginPassEntity($login, $password, $entity, $authmode);
87	87	if (empty($login))
88	88	{
		@@ -91,7 +91,7 @@ discard block
		block discarded – undo
91	91
92	92	$token = 'failedtogenerateorgettoken';
93	93
94		- $tmpuser=new User($this->db);
	94	+ $tmpuser = new User($this->db);
95	95	$tmpuser->fetch(0, $login, 0, 0, $entity);
96	96	if (empty($tmpuser->id))
97	97	{
		@@ -108,14 +108,14 @@ discard block
		block discarded – undo
108	108	}
109	109
110	110	// Generate token for user
111		- $token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY,1);
	111	+ $token = dol_hash($login.uniqid().$conf->global->MAIN_API_KEY, 1);
112	112
113	113	// We store API token into database
114	114	$sql = "UPDATE ".MAIN_DB_PREFIX."user";
115		- $sql.= " SET api_key = '".$this->db->escape($token)."'";
116		- $sql.= " WHERE login = '".$this->db->escape($login)."'";
	115	+ $sql .= " SET api_key = '".$this->db->escape($token)."'";
	116	+ $sql .= " WHERE login = '".$this->db->escape($login)."'";
117	117
118		- dol_syslog(get_class($this)."::login", LOG_DEBUG); // No log
	118	+ dol_syslog(get_class($this)."::login", LOG_DEBUG); // No log
119	119	$result = $this->db->query($sql);
120	120	if (!$result)
121	121	{
		@@ -133,7 +133,7 @@ discard block
		block discarded – undo
133	133	'code' => 200,
134	134	'token' => $token,
135	135	'entity' => $tmpuser->entity,
136		- 'message' => 'Welcome ' . $login.($reset?' - Token is new':' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
	136	+ 'message' => 'Welcome '.$login.($reset ? ' - Token is new' : ' - This is your token (generated by a previous call). You can use it to make any REST API call, or enter it into the DOLAPIKEY field to use the Dolibarr API explorer.')
137	137	)
138	138	);
139	139	}

		@@ -61,12 +61,15 @@ discard block
		block discarded – undo
61	61	global $conf, $dolibarr_main_authentication, $dolibarr_auto_user;
62	62
63	63	// Authentication mode
64		- if (empty($dolibarr_main_authentication))
65		- $dolibarr_main_authentication = 'http,dolibarr';
	64	+ if (empty($dolibarr_main_authentication)) {
	65	+ $dolibarr_main_authentication = 'http,dolibarr';
	66	+ }
66	67	// Authentication mode: forceuser
67	68	if ($dolibarr_main_authentication == 'forceuser')
68	69	{
69		- if (empty($dolibarr_auto_user)) $dolibarr_auto_user='auto';
	70	+ if (empty($dolibarr_auto_user)) {
	71	+ $dolibarr_auto_user='auto';
	72	+ }
70	73	if ($dolibarr_auto_user != $login)
71	74	{
72	75	dol_syslog("Warning: your instance is set to use the automatic forced login '".$dolibarr_auto_user."' that is not the requested login. API usage is forbidden in this mode.");
		@@ -80,7 +83,9 @@ discard block
		block discarded – undo
80	83	{
81	84	throw new RestException(403, "Bad value for entity, must be the numeric ID of company.");
82	85	}
83		- if ($entity == '') $entity=1;
	86	+ if ($entity == '') {
	87	+ $entity=1;
	88	+ }
84	89
85	90	include_once DOL_DOCUMENT_ROOT . '/core/lib/security2.lib.php';
86	91	$login = checkLoginPassEntity($login, $password, $entity, $authmode);
		@@ -121,8 +126,7 @@ discard block
		block discarded – undo
121	126	{
122	127	throw new RestException(500, 'Error when updating api_key for user :'.$this->db->lasterror());
123	128	}
124		- }
125		- else
	129	+ } else
126	130	{
127	131	$token = $tmpuser->api_key;
128	132	}

		@@ -100,8 +100,8 @@ discard block
		block discarded – undo
100	100	// Remove $db object property for object
101	101	unset($object->db);
102	102	unset($object->isextrafieldmanaged);
103		- unset($object->ismultientitymanaged);
104		- unset($object->restrictiononfksoc);
	103	+ unset($object->ismultientitymanaged);
	104	+ unset($object->restrictiononfksoc);
105	105
106	106	// Remove linkedObjects. We should already have linkedObjectIds that avoid huge responses
107	107	unset($object->linkedObjects);
		@@ -145,7 +145,7 @@ discard block
		block discarded – undo
145	145	unset($object->picto);
146	146
147	147	unset($object->fieldsforcombobox);
148		- unset($object->comments);
	148	+ unset($object->comments);
149	149
150	150	unset($object->skip_update_total);
151	151	unset($object->context);
		@@ -164,7 +164,7 @@ discard block
		block discarded – undo
164	164	// If object has lines, remove $db property
165	165	if (isset($object->lines) && is_array($object->lines) && count($object->lines) > 0) {
166	166	$nboflines = count($object->lines);
167		- for ($i=0; $i < $nboflines; $i++)
	167	+ for ($i=0; $i < $nboflines; $i++)
168	168	{
169	169	$this->_cleanObjectDatas($object->lines[$i]);
170	170
		@@ -202,101 +202,101 @@ discard block
		block discarded – undo
202	202
203	203	if (! empty($object->thirdparty) && is_object($object->thirdparty))
204	204	{
205		- $this->_cleanObjectDatas($object->thirdparty);
	205	+ $this->_cleanObjectDatas($object->thirdparty);
206	206	}
207	207
208		- return $object;
	208	+ return $object;
209	209	}
210	210
211		- /**
212		- * Check user access to a resource
213		- *
214		- * Check access by user to a given resource
215		- *
216		- * @param string $resource element to check
217		- * @param int $resource_id Object ID if we want to check a particular record (optional) is linked to a owned thirdparty (optional).
218		- * @param type $dbtablename 'TableName&SharedElement' with Tablename is table where object is stored. SharedElement is an optional key to define where to check entity. Not used if objectid is null (optional)
219		- * @param string $feature2 Feature to check, second level of permission (optional). Can be or check with 'level1\|level2'.
220		- * @param string $dbt_keyfield Field name for socid foreign key if not fk_soc. Not used if objectid is null (optional)
221		- * @param string $dbt_select Field name for select if not rowid. Not used if objectid is null (optional)
	211	+ /**
	212	+ * Check user access to a resource
	213	+ *
	214	+ * Check access by user to a given resource
	215	+ *
	216	+ * @param string $resource element to check
	217	+ * @param int $resource_id Object ID if we want to check a particular record (optional) is linked to a owned thirdparty (optional).
	218	+ * @param type $dbtablename 'TableName&SharedElement' with Tablename is table where object is stored. SharedElement is an optional key to define where to check entity. Not used if objectid is null (optional)
	219	+ * @param string $feature2 Feature to check, second level of permission (optional). Can be or check with 'level1\|level2'.
	220	+ * @param string $dbt_keyfield Field name for socid foreign key if not fk_soc. Not used if objectid is null (optional)
	221	+ * @param string $dbt_select Field name for select if not rowid. Not used if objectid is null (optional)
222	222	* @return bool
223		- * @throws RestException
224		- */
	223	+ * @throws RestException
	224	+ */
225	225	static function _checkAccessToResource($resource, $resource_id=0, $dbtablename='', $feature2='', $dbt_keyfield='fk_soc', $dbt_select='rowid')
226	226	{
227	227
228		- // Features/modules to check
229		- $featuresarray = array($resource);
230		- if (preg_match('/&/', $resource)) {
231		- $featuresarray = explode("&", $resource);
232		- }
233		- else if (preg_match('/\\|/', $resource)) {
234		- $featuresarray = explode("\|", $resource);
235		- }
236		-
237		- // More subfeatures to check
238		- if (! empty($feature2)) {
239		- $feature2 = explode("\|", $feature2);
240		- }
241		-
242		- return checkUserAccessToObject(DolibarrApiAccess::$user, $featuresarray, $resource_id, $dbtablename, $feature2, $dbt_keyfield, $dbt_select);
243		- }
244		-
245		- /**
246		- * Return if a $sqlfilters parameter is valid
247		- *
248		- * @param string $sqlfilters sqlfilter string
249		- * @return boolean True if valid, False if not valid
250		- */
251		- function _checkFilters($sqlfilters)
252		- {
253		- //$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
254		- //$tmp=preg_replace_all('/'.$regexstring.'/', '', $sqlfilters);
255		- $tmp=$sqlfilters;
256		- $ok=0;
257		- $i=0; $nb=strlen($tmp);
258		- $counter=0;
259		- while ($i < $nb)
260		- {
261		- if ($tmp[$i]=='(') $counter++;
262		- if ($tmp[$i]==')') $counter--;
	228	+ // Features/modules to check
	229	+ $featuresarray = array($resource);
	230	+ if (preg_match('/&/', $resource)) {
	231	+ $featuresarray = explode("&", $resource);
	232	+ }
	233	+ else if (preg_match('/\\|/', $resource)) {
	234	+ $featuresarray = explode("\|", $resource);
	235	+ }
	236	+
	237	+ // More subfeatures to check
	238	+ if (! empty($feature2)) {
	239	+ $feature2 = explode("\|", $feature2);
	240	+ }
	241	+
	242	+ return checkUserAccessToObject(DolibarrApiAccess::$user, $featuresarray, $resource_id, $dbtablename, $feature2, $dbt_keyfield, $dbt_select);
	243	+ }
	244	+
	245	+ /**
	246	+ * Return if a $sqlfilters parameter is valid
	247	+ *
	248	+ * @param string $sqlfilters sqlfilter string
	249	+ * @return boolean True if valid, False if not valid
	250	+ */
	251	+ function _checkFilters($sqlfilters)
	252	+ {
	253	+ //$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
	254	+ //$tmp=preg_replace_all('/'.$regexstring.'/', '', $sqlfilters);
	255	+ $tmp=$sqlfilters;
	256	+ $ok=0;
	257	+ $i=0; $nb=strlen($tmp);
	258	+ $counter=0;
	259	+ while ($i < $nb)
	260	+ {
	261	+ if ($tmp[$i]=='(') $counter++;
	262	+ if ($tmp[$i]==')') $counter--;
263	263	if ($counter < 0)
264	264	{
265		- $error="Bad sqlfilters=".$sqlfilters;
266		- dol_syslog($error, LOG_WARNING);
267		- return false;
	265	+ $error="Bad sqlfilters=".$sqlfilters;
	266	+ dol_syslog($error, LOG_WARNING);
	267	+ return false;
268	268	}
269	269	$i++;
270		- }
271		- return true;
272		- }
	270	+ }
	271	+ return true;
	272	+ }
273	273
274	274	// phpcs:disable PEAR.NamingConventions.ValidFunctionName.NotCamelCaps
275		- /**
276		- * Function to forge a SQL criteria
277		- *
278		- * @param array $matches Array of found string by regex search
279		- * @return string Forged criteria. Example: "t.field like 'abc%'"
280		- */
281		- static function _forge_criteria_callback($matches)
282		- {
	275	+ /**
	276	+ * Function to forge a SQL criteria
	277	+ *
	278	+ * @param array $matches Array of found string by regex search
	279	+ * @return string Forged criteria. Example: "t.field like 'abc%'"
	280	+ */
	281	+ static function _forge_criteria_callback($matches)
	282	+ {
283	283	// phpcs:enable
284		- global $db;
	284	+ global $db;
285	285
286		- //dol_syslog("Convert matches ".$matches[1]);
287		- if (empty($matches[1])) return '';
288		- $tmp=explode(':',$matches[1]);
	286	+ //dol_syslog("Convert matches ".$matches[1]);
	287	+ if (empty($matches[1])) return '';
	288	+ $tmp=explode(':',$matches[1]);
289	289	if (count($tmp) < 3) return '';
290	290
291		- $tmpescaped=$tmp[2];
292		- if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
293		- {
294		- $tmpescaped = "'".$db->escape($regbis[1])."'";
295		- }
296		- else
297		- {
298		- $tmpescaped = $db->escape($tmpescaped);
299		- }
300		- return $db->escape($tmp[0]).' '.strtoupper($db->escape($tmp[1]))." ".$tmpescaped;
301		- }
	291	+ $tmpescaped=$tmp[2];
	292	+ if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
	293	+ {
	294	+ $tmpescaped = "'".$db->escape($regbis[1])."'";
	295	+ }
	296	+ else
	297	+ {
	298	+ $tmpescaped = $db->escape($tmpescaped);
	299	+ }
	300	+ return $db->escape($tmp[0]).' '.strtoupper($db->escape($tmp[1]))." ".$tmpescaped;
	301	+ }
302	302	}

		@@ -46,7 +46,7 @@ discard block
		block discarded – undo
46	46	* @param string $cachedir Cache dir
47	47	* @param boolean $refreshCache Update cache
48	48	*/
49		- function __construct($db, $cachedir='', $refreshCache=false)
	49	+ function __construct($db, $cachedir = '', $refreshCache = false)
50	50	{
51	51	global $conf, $dolibarr_main_url_root;
52	52
		@@ -54,14 +54,14 @@ discard block
		block discarded – undo
54	54	Defaults::$cacheDirectory = $cachedir;
55	55
56	56	$this->db = $db;
57		- $production_mode = ( empty($conf->global->API_PRODUCTION_MODE) ? false : true );
	57	+ $production_mode = (empty($conf->global->API_PRODUCTION_MODE) ? false : true);
58	58	$this->r = new Restler($production_mode, $refreshCache);
59	59
60		- $urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim($dolibarr_main_url_root));
61		- $urlwithroot=$urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
	60	+ $urlwithouturlroot = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim($dolibarr_main_url_root));
	61	+ $urlwithroot = $urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
62	62
63		- $urlwithouturlrootautodetect=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim(DOL_MAIN_URL_ROOT));
64		- $urlwithrootautodetect=$urlwithouturlroot.DOL_URL_ROOT; // This is to use local domain autodetected by dolibarr from url
	63	+ $urlwithouturlrootautodetect = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim(DOL_MAIN_URL_ROOT));
	64	+ $urlwithrootautodetect = $urlwithouturlroot.DOL_URL_ROOT; // This is to use local domain autodetected by dolibarr from url
65	65
66	66	$this->r->setBaseUrls($urlwithouturlroot, $urlwithouturlrootautodetect);
67	67	$this->r->setAPIVersion(1);
		@@ -118,9 +118,9 @@ discard block
		block discarded – undo
118	118	unset($object->ref_next);
119	119	unset($object->ref_int);
120	120
121		- unset($object->projet); // Should be fk_project
122		- unset($object->project); // Should be fk_project
123		- unset($object->author); // Should be fk_user_author
	121	+ unset($object->projet); // Should be fk_project
	122	+ unset($object->project); // Should be fk_project
	123	+ unset($object->author); // Should be fk_user_author
124	124	unset($object->timespent_old_duration);
125	125	unset($object->timespent_id);
126	126	unset($object->timespent_duration);
		@@ -162,9 +162,9 @@ discard block
		block discarded – undo
162	162	unset($object->oldcopy);
163	163
164	164	// If object has lines, remove $db property
165		- if (isset($object->lines) && is_array($object->lines) && count($object->lines) > 0) {
	165	+ if (isset($object->lines) && is_array($object->lines) && count($object->lines) > 0) {
166	166	$nboflines = count($object->lines);
167		- for ($i=0; $i < $nboflines; $i++)
	167	+ for ($i = 0; $i < $nboflines; $i++)
168	168	{
169	169	$this->_cleanObjectDatas($object->lines[$i]);
170	170
		@@ -200,7 +200,7 @@ discard block
		block discarded – undo
200	200	}
201	201	}
202	202
203		- if (! empty($object->thirdparty) && is_object($object->thirdparty))
	203	+ if (!empty($object->thirdparty) && is_object($object->thirdparty))
204	204	{
205	205	$this->_cleanObjectDatas($object->thirdparty);
206	206	}
		@@ -222,7 +222,7 @@ discard block
		block discarded – undo
222	222	* @return bool
223	223	* @throws RestException
224	224	*/
225		- static function _checkAccessToResource($resource, $resource_id=0, $dbtablename='', $feature2='', $dbt_keyfield='fk_soc', $dbt_select='rowid')
	225	+ static function _checkAccessToResource($resource, $resource_id = 0, $dbtablename = '', $feature2 = '', $dbt_keyfield = 'fk_soc', $dbt_select = 'rowid')
226	226	{
227	227
228	228	// Features/modules to check
		@@ -235,7 +235,7 @@ discard block
		block discarded – undo
235	235	}
236	236
237	237	// More subfeatures to check
238		- if (! empty($feature2)) {
	238	+ if (!empty($feature2)) {
239	239	$feature2 = explode("\|", $feature2);
240	240	}
241	241
		@@ -252,17 +252,17 @@ discard block
		block discarded – undo
252	252	{
253	253	//$regexstring='\(([^:\'\(\)]+:[^:\'\(\)]+:[^:\(\)]+)\)';
254	254	//$tmp=preg_replace_all('/'.$regexstring.'/', '', $sqlfilters);
255		- $tmp=$sqlfilters;
256		- $ok=0;
257		- $i=0; $nb=strlen($tmp);
258		- $counter=0;
	255	+ $tmp = $sqlfilters;
	256	+ $ok = 0;
	257	+ $i = 0; $nb = strlen($tmp);
	258	+ $counter = 0;
259	259	while ($i < $nb)
260	260	{
261		- if ($tmp[$i]=='(') $counter++;
262		- if ($tmp[$i]==')') $counter--;
	261	+ if ($tmp[$i] == '(') $counter++;
	262	+ if ($tmp[$i] == ')') $counter--;
263	263	if ($counter < 0)
264	264	{
265		- $error="Bad sqlfilters=".$sqlfilters;
	265	+ $error = "Bad sqlfilters=".$sqlfilters;
266	266	dol_syslog($error, LOG_WARNING);
267	267	return false;
268	268	}
		@@ -285,10 +285,10 @@ discard block
		block discarded – undo
285	285
286	286	//dol_syslog("Convert matches ".$matches[1]);
287	287	if (empty($matches[1])) return '';
288		- $tmp=explode(':',$matches[1]);
	288	+ $tmp = explode(':', $matches[1]);
289	289	if (count($tmp) < 3) return '';
290	290
291		- $tmpescaped=$tmp[2];
	291	+ $tmpescaped = $tmp[2];
292	292	if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
293	293	{
294	294	$tmpescaped = "'".$db->escape($regbis[1])."'";

		@@ -50,7 +50,9 @@ discard block
		block discarded – undo
50	50	{
51	51	global $conf, $dolibarr_main_url_root;
52	52
53		- if (empty($cachedir)) $cachedir = $conf->api->dir_temp;
	53	+ if (empty($cachedir)) {
	54	+ $cachedir = $conf->api->dir_temp;
	55	+ }
54	56	Defaults::$cacheDirectory = $cachedir;
55	57
56	58	$this->db = $db;
		@@ -229,8 +231,7 @@ discard block
		block discarded – undo
229	231	$featuresarray = array($resource);
230	232	if (preg_match('/&/', $resource)) {
231	233	$featuresarray = explode("&", $resource);
232		- }
233		- else if (preg_match('/\\|/', $resource)) {
	234	+ } else if (preg_match('/\\|/', $resource)) {
234	235	$featuresarray = explode("\|", $resource);
235	236	}
236	237
		@@ -258,8 +259,12 @@ discard block
		block discarded – undo
258	259	$counter=0;
259	260	while ($i < $nb)
260	261	{
261		- if ($tmp[$i]=='(') $counter++;
262		- if ($tmp[$i]==')') $counter--;
	262	+ if ($tmp[$i]=='(') {
	263	+ $counter++;
	264	+ }
	265	+ if ($tmp[$i]==')') {
	266	+ $counter--;
	267	+ }
263	268	if ($counter < 0)
264	269	{
265	270	$error="Bad sqlfilters=".$sqlfilters;
		@@ -284,16 +289,19 @@ discard block
		block discarded – undo
284	289	global $db;
285	290
286	291	//dol_syslog("Convert matches ".$matches[1]);
287		- if (empty($matches[1])) return '';
	292	+ if (empty($matches[1])) {
	293	+ return '';
	294	+ }
288	295	$tmp=explode(':',$matches[1]);
289		- if (count($tmp) < 3) return '';
	296	+ if (count($tmp) < 3) {
	297	+ return '';
	298	+ }
290	299
291	300	$tmpescaped=$tmp[2];
292	301	if (preg_match('/^\'(.*)\'$/', $tmpescaped, $regbis))
293	302	{
294	303	$tmpescaped = "'".$db->escape($regbis[1])."'";
295		- }
296		- else
	304	+ } else
297	305	{
298	306	$tmpescaped = $db->escape($tmpescaped);
299	307	}

		@@ -42,151 +42,151 @@
		block discarded – undo
42	42	*/
43	43	class DolibarrApiAccess implements iAuthenticate
44	44	{
45		- const REALM = 'Restricted Dolibarr API';
	45	+ const REALM = 'Restricted Dolibarr API';
46	46
47		- /**
48		- * @var array $requires role required by API method user / external / admin
49		- */
50		- public static $requires = array('user','external','admin');
	47	+ /**
	48	+ * @var array $requires role required by API method user / external / admin
	49	+ */
	50	+ public static $requires = array('user','external','admin');
51	51
52		- /**
53		- * @var string $role user role
54		- */
	52	+ /**
	53	+ * @var string $role user role
	54	+ */
55	55	public static $role = 'user';
56	56
57		- /**
58		- * @var User $user Loggued user
59		- */
60		- public static $user = '';
	57	+ /**
	58	+ * @var User $user Loggued user
	59	+ */
	60	+ public static $user = '';
61	61
62	62	// phpcs:disable PEAR.NamingConventions.ValidFunctionName
63		- /**
64		- * Check access
65		- *
66		- * @return bool
67		- * @throws RestException
68		- */
69		- public function __isAllowed()
70		- {
	63	+ /**
	64	+ * Check access
	65	+ *
	66	+ * @return bool
	67	+ * @throws RestException
	68	+ */
	69	+ public function __isAllowed()
	70	+ {
71	71	// phpcs:enable
72		- global $conf, $db;
	72	+ global $conf, $db;
73	73
74		- $login = '';
75		- $stored_key = '';
	74	+ $login = '';
	75	+ $stored_key = '';
76	76
77		- $userClass = Defaults::$userIdentifierClass;
	77	+ $userClass = Defaults::$userIdentifierClass;
78	78
79		- /*foreach ($_SERVER as $key => $val)
	79	+ /*foreach ($_SERVER as $key => $val)
80	80	{
81	81	dol_syslog($key.' - '.$val);
82	82	}*/
83	83
84		- // api key can be provided in url with parameter api_key=xxx or ni header with header DOLAPIKEY:xxx
85		- $api_key = '';
86		- if (isset($_GET['api_key'])) // For backward compatibility
87		- {
88		- // TODO Add option to disable use of api key on url. Return errors if used.
89		- $api_key = $_GET['api_key'];
90		- }
91		- if (isset($_GET['DOLAPIKEY']))
92		- {
93		- // TODO Add option to disable use of api key on url. Return errors if used.
94		- $api_key = $_GET['DOLAPIKEY']; // With GET method
95		- }
96		- if (isset($_SERVER['HTTP_DOLAPIKEY'])) // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
97		- {
98		- $api_key = $_SERVER['HTTP_DOLAPIKEY']; // With header method (recommanded)
99		- }
	84	+ // api key can be provided in url with parameter api_key=xxx or ni header with header DOLAPIKEY:xxx
	85	+ $api_key = '';
	86	+ if (isset($_GET['api_key'])) // For backward compatibility
	87	+ {
	88	+ // TODO Add option to disable use of api key on url. Return errors if used.
	89	+ $api_key = $_GET['api_key'];
	90	+ }
	91	+ if (isset($_GET['DOLAPIKEY']))
	92	+ {
	93	+ // TODO Add option to disable use of api key on url. Return errors if used.
	94	+ $api_key = $_GET['DOLAPIKEY']; // With GET method
	95	+ }
	96	+ if (isset($_SERVER['HTTP_DOLAPIKEY'])) // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
	97	+ {
	98	+ $api_key = $_SERVER['HTTP_DOLAPIKEY']; // With header method (recommanded)
	99	+ }
100	100
101		- if ($api_key)
102		- {
103		- $userentity = 0;
104		-
105		- $sql = "SELECT u.login, u.datec, u.api_key, ";
106		- $sql.= " u.tms as date_modification, u.entity";
107		- $sql.= " FROM ".MAIN_DB_PREFIX."user as u";
108		- $sql.= " WHERE u.api_key = '".$db->escape($api_key)."'";
109		- // TODO Check if 2 users has same API key.
110		-
111		- $result = $db->query($sql);
112		- if ($result)
113		- {
114		- if ($db->num_rows($result))
115		- {
116		- $obj = $db->fetch_object($result);
117		- $login = $obj->login;
118		- $stored_key = $obj->api_key;
119		- $userentity = $obj->entity;
120		-
121		- if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1)) // If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
122		- {
123		- $conf->entity = ($obj->entity?$obj->entity:1);
124		- // We must also reload global conf to get params from the entity
125		- dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
126		- $conf->setValues($db);
127		- }
128		- }
129		- }
130		- else {
131		- throw new RestException(503, 'Error when fetching user api_key :'.$db->error_msg);
132		- }
133		-
134		- if ($stored_key != $api_key) { // This should not happen since we did a search on api_key
135		- $userClass::setCacheIdentifier($api_key);
136		- return false;
137		- }
138		-
139		- if (! $login)
140		- {
141		- throw new RestException(503, 'Error when searching login user from api key');
142		- }
143		- $fuser = new User($db);
144		- $result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity)); // If user is not entity 0, we search in working entity $conf->entity (that may have been forced to a different value than user entity)
145		- if ($result <= 0) {
146		- throw new RestException(503, 'Error when fetching user :'.$fuser->error.' (conf->entity='.$conf->entity.')');
147		- }
148		- $fuser->getrights();
149		- static::$user = $fuser;
150		-
151		- if($fuser->societe_id)
152		- static::$role = 'external';
153		-
154		- if($fuser->admin)
155		- static::$role = 'admin';
	101	+ if ($api_key)
	102	+ {
	103	+ $userentity = 0;
	104	+
	105	+ $sql = "SELECT u.login, u.datec, u.api_key, ";
	106	+ $sql.= " u.tms as date_modification, u.entity";
	107	+ $sql.= " FROM ".MAIN_DB_PREFIX."user as u";
	108	+ $sql.= " WHERE u.api_key = '".$db->escape($api_key)."'";
	109	+ // TODO Check if 2 users has same API key.
	110	+
	111	+ $result = $db->query($sql);
	112	+ if ($result)
	113	+ {
	114	+ if ($db->num_rows($result))
	115	+ {
	116	+ $obj = $db->fetch_object($result);
	117	+ $login = $obj->login;
	118	+ $stored_key = $obj->api_key;
	119	+ $userentity = $obj->entity;
	120	+
	121	+ if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1)) // If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
	122	+ {
	123	+ $conf->entity = ($obj->entity?$obj->entity:1);
	124	+ // We must also reload global conf to get params from the entity
	125	+ dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
	126	+ $conf->setValues($db);
	127	+ }
	128	+ }
	129	+ }
	130	+ else {
	131	+ throw new RestException(503, 'Error when fetching user api_key :'.$db->error_msg);
	132	+ }
	133	+
	134	+ if ($stored_key != $api_key) { // This should not happen since we did a search on api_key
	135	+ $userClass::setCacheIdentifier($api_key);
	136	+ return false;
	137	+ }
	138	+
	139	+ if (! $login)
	140	+ {
	141	+ throw new RestException(503, 'Error when searching login user from api key');
	142	+ }
	143	+ $fuser = new User($db);
	144	+ $result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity)); // If user is not entity 0, we search in working entity $conf->entity (that may have been forced to a different value than user entity)
	145	+ if ($result <= 0) {
	146	+ throw new RestException(503, 'Error when fetching user :'.$fuser->error.' (conf->entity='.$conf->entity.')');
	147	+ }
	148	+ $fuser->getrights();
	149	+ static::$user = $fuser;
	150	+
	151	+ if($fuser->societe_id)
	152	+ static::$role = 'external';
	153	+
	154	+ if($fuser->admin)
	155	+ static::$role = 'admin';
	156	+ }
	157	+ else
	158	+ {
	159	+ throw new RestException(401, "Failed to login to API. No parameter 'HTTP_DOLAPIKEY' on HTTP header (and no parameter DOLAPIKEY in URL).");
156	160	}
157		- else
158		- {
159		- throw new RestException(401, "Failed to login to API. No parameter 'HTTP_DOLAPIKEY' on HTTP header (and no parameter DOLAPIKEY in URL).");
160		- }
161	161
162		- $userClass::setCacheIdentifier(static::$role);
163		- Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
164		- $requirefortest = static::$requires;
165		- if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
166		- return in_array(static::$role, (array) $requirefortest) \|\| static::$role == 'admin';
167		- }
	162	+ $userClass::setCacheIdentifier(static::$role);
	163	+ Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
	164	+ $requirefortest = static::$requires;
	165	+ if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
	166	+ return in_array(static::$role, (array) $requirefortest) \|\| static::$role == 'admin';
	167	+ }
168	168
169	169	// phpcs:disable PEAR.NamingConventions.ValidFunctionName
170		- /**
171		- * @return string string to be used with WWW-Authenticate header
172		- * @example Basic
173		- * @example Digest
174		- * @example OAuth
175		- */
176		- public function __getWWWAuthenticateString()
	170	+ /**
	171	+ * @return string string to be used with WWW-Authenticate header
	172	+ * @example Basic
	173	+ * @example Digest
	174	+ * @example OAuth
	175	+ */
	176	+ public function __getWWWAuthenticateString()
177	177	{
178	178	// phpcs:enable
179	179	return '';
180	180	}
181	181
182		- /**
183		- * Verify access
184		- *
185		- * @param array $m Properties of method
186		- *
187		- * @access private
188		- * @return bool
189		- */
	182	+ /**
	183	+ * Verify access
	184	+ *
	185	+ * @param array $m Properties of method
	186	+ *
	187	+ * @access private
	188	+ * @return bool
	189	+ */
190	190	public static function verifyAccess(array $m)
191	191	{
192	192	$requires = isset($m['class']['DolibarrApiAccess']['properties']['requires'])

		@@ -18,7 +18,7 @@ discard block
		block discarded – undo
18	18
19	19	// Create the autoloader for Luracast
20	20	require_once DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/AutoLoader.php';
21		-call_user_func(function () {
	21	+call_user_func(function() {
22	22	$loader = Luracast\Restler\AutoLoader::instance();
23	23	spl_autoload_register($loader);
24	24	return $loader;
		@@ -47,7 +47,7 @@ discard block
		block discarded – undo
47	47	/**
48	48	* @var array $requires role required by API method user / external / admin
49	49	*/
50		- public static $requires = array('user','external','admin');
	50	+ public static $requires = array('user', 'external', 'admin');
51	51
52	52	/**
53	53	* @var string $role user role
		@@ -91,11 +91,11 @@ discard block
		block discarded – undo
91	91	if (isset($_GET['DOLAPIKEY']))
92	92	{
93	93	// TODO Add option to disable use of api key on url. Return errors if used.
94		- $api_key = $_GET['DOLAPIKEY']; // With GET method
	94	+ $api_key = $_GET['DOLAPIKEY']; // With GET method
95	95	}
96	96	if (isset($_SERVER['HTTP_DOLAPIKEY'])) // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
97	97	{
98		- $api_key = $_SERVER['HTTP_DOLAPIKEY']; // With header method (recommanded)
	98	+ $api_key = $_SERVER['HTTP_DOLAPIKEY']; // With header method (recommanded)
99	99	}
100	100
101	101	if ($api_key)
		@@ -103,9 +103,9 @@ discard block
		block discarded – undo
103	103	$userentity = 0;
104	104
105	105	$sql = "SELECT u.login, u.datec, u.api_key, ";
106		- $sql.= " u.tms as date_modification, u.entity";
107		- $sql.= " FROM ".MAIN_DB_PREFIX."user as u";
108		- $sql.= " WHERE u.api_key = '".$db->escape($api_key)."'";
	106	+ $sql .= " u.tms as date_modification, u.entity";
	107	+ $sql .= " FROM ".MAIN_DB_PREFIX."user as u";
	108	+ $sql .= " WHERE u.api_key = '".$db->escape($api_key)."'";
109	109	// TODO Check if 2 users has same API key.
110	110
111	111	$result = $db->query($sql);
		@@ -118,11 +118,11 @@ discard block
		block discarded – undo
118	118	$stored_key = $obj->api_key;
119	119	$userentity = $obj->entity;
120	120
121		- if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1)) // If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
	121	+ if (!defined("DOLENTITY") && $conf->entity != ($obj->entity ? $obj->entity : 1)) // If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
122	122	{
123		- $conf->entity = ($obj->entity?$obj->entity:1);
	123	+ $conf->entity = ($obj->entity ? $obj->entity : 1);
124	124	// We must also reload global conf to get params from the entity
125		- dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
	125	+ dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity.") and we have to reload configuration.", LOG_WARNING);
126	126	$conf->setValues($db);
127	127	}
128	128	}
		@@ -136,22 +136,22 @@ discard block
		block discarded – undo
136	136	return false;
137	137	}
138	138
139		- if (! $login)
	139	+ if (!$login)
140	140	{
141	141	throw new RestException(503, 'Error when searching login user from api key');
142	142	}
143	143	$fuser = new User($db);
144		- $result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity)); // If user is not entity 0, we search in working entity $conf->entity (that may have been forced to a different value than user entity)
	144	+ $result = $fuser->fetch('', $login, '', 0, (empty($userentity) ? -1 : $conf->entity)); // If user is not entity 0, we search in working entity $conf->entity (that may have been forced to a different value than user entity)
145	145	if ($result <= 0) {
146	146	throw new RestException(503, 'Error when fetching user :'.$fuser->error.' (conf->entity='.$conf->entity.')');
147	147	}
148	148	$fuser->getrights();
149	149	static::$user = $fuser;
150	150
151		- if($fuser->societe_id)
	151	+ if ($fuser->societe_id)
152	152	static::$role = 'external';
153	153
154		- if($fuser->admin)
	154	+ if ($fuser->admin)
155	155	static::$role = 'admin';
156	156	}
157	157	else
		@@ -162,7 +162,7 @@ discard block
		block discarded – undo
162	162	$userClass::setCacheIdentifier(static::$role);
163	163	Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
164	164	$requirefortest = static::$requires;
165		- if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
	165	+ if (!is_array($requirefortest)) $requirefortest = explode(',', $requirefortest);
166	166	return in_array(static::$role, (array) $requirefortest) \|\| static::$role == 'admin';
167	167	}
168	168

		@@ -83,19 +83,24 @@ discard block
		block discarded – undo
83	83
84	84	// api key can be provided in url with parameter api_key=xxx or ni header with header DOLAPIKEY:xxx
85	85	$api_key = '';
86		- if (isset($_GET['api_key'])) // For backward compatibility
	86	+ if (isset($_GET['api_key'])) {
	87	+ // For backward compatibility
87	88	{
88	89	// TODO Add option to disable use of api key on url. Return errors if used.
89	90	$api_key = $_GET['api_key'];
90	91	}
	92	+ }
91	93	if (isset($_GET['DOLAPIKEY']))
92	94	{
93	95	// TODO Add option to disable use of api key on url. Return errors if used.
94	96	$api_key = $_GET['DOLAPIKEY']; // With GET method
95	97	}
96		- if (isset($_SERVER['HTTP_DOLAPIKEY'])) // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
	98	+ if (isset($_SERVER['HTTP_DOLAPIKEY'])) {
	99	+ // Param DOLAPIKEY in header can be read with HTTP_DOLAPIKEY
97	100	{
98		- $api_key = $_SERVER['HTTP_DOLAPIKEY']; // With header method (recommanded)
	101	+ $api_key = $_SERVER['HTTP_DOLAPIKEY'];
	102	+ }
	103	+ // With header method (recommanded)
99	104	}
100	105
101	106	if ($api_key)
		@@ -118,16 +123,17 @@ discard block
		block discarded – undo
118	123	$stored_key = $obj->api_key;
119	124	$userentity = $obj->entity;
120	125
121		- if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1)) // If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
	126	+ if (! defined("DOLENTITY") && $conf->entity != ($obj->entity?$obj->entity:1)) {
	127	+ // If API was not forced with HTTP_DOLENTITY, and user is on another entity, so we reset entity to entity of user
122	128	{
123	129	$conf->entity = ($obj->entity?$obj->entity:1);
	130	+ }
124	131	// We must also reload global conf to get params from the entity
125	132	dol_syslog("Entity was not set on http header with HTTP_DOLAPIENTITY (recommanded for performance purpose), so we switch now on entity of user (".$conf->entity .") and we have to reload configuration.", LOG_WARNING);
126	133	$conf->setValues($db);
127	134	}
128	135	}
129		- }
130		- else {
	136	+ } else {
131	137	throw new RestException(503, 'Error when fetching user api_key :'.$db->error_msg);
132	138	}
133	139
		@@ -148,13 +154,14 @@ discard block
		block discarded – undo
148	154	$fuser->getrights();
149	155	static::$user = $fuser;
150	156
151		- if($fuser->societe_id)
152		- static::$role = 'external';
	157	+ if($fuser->societe_id) {
	158	+ static::$role = 'external';
	159	+ }
153	160
154		- if($fuser->admin)
155		- static::$role = 'admin';
156		- }
157		- else
	161	+ if($fuser->admin) {
	162	+ static::$role = 'admin';
	163	+ }
	164	+ } else
158	165	{
159	166	throw new RestException(401, "Failed to login to API. No parameter 'HTTP_DOLAPIKEY' on HTTP header (and no parameter DOLAPIKEY in URL).");
160	167	}
		@@ -162,7 +169,9 @@ discard block
		block discarded – undo
162	169	$userClass::setCacheIdentifier(static::$role);
163	170	Resources::$accessControlFunction = 'DolibarrApiAccess::verifyAccess';
164	171	$requirefortest = static::$requires;
165		- if (! is_array($requirefortest)) $requirefortest=explode(',',$requirefortest);
	172	+ if (! is_array($requirefortest)) {
	173	+ $requirefortest=explode(',',$requirefortest);
	174	+ }
166	175	return in_array(static::$role, (array) $requirefortest) \|\| static::$role == 'admin';
167	176	}
168	177

		@@ -201,8 +201,7 @@ discard block
		block discarded – undo
201	201
202	202	if ($country->fetch($id) < 0) {
203	203	throw new RestException(503, 'Error when retrieving country : '.$country->error);
204		- }
205		- else if ($country->fetch($id) == 0) {
	204	+ } else if ($country->fetch($id) == 0) {
206	205	throw new RestException(404, 'country not found');
207	206	}
208	207
		@@ -340,8 +339,12 @@ discard block
		block discarded – undo
340	339	$sql = "SELECT id, code, type, libelle as label, module";
341	340	$sql.= " FROM ".MAIN_DB_PREFIX."c_actioncomm as t";
342	341	$sql.= " WHERE t.active = 1";
343		- if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
344		- if ($module) $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
	342	+ if ($type) {
	343	+ $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
	344	+ }
	345	+ if ($module) {
	346	+ $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
	347	+ }
345	348	// Add sql filters
346	349	if ($sqlfilters)
347	350	{
		@@ -402,7 +405,9 @@ discard block
		block discarded – undo
402	405	$sql = "SELECT rowid, code, label, module";
403	406	$sql.= " FROM ".MAIN_DB_PREFIX."c_civility as t";
404	407	$sql.= " WHERE t.active = 1";
405		- if ($module) $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
	408	+ if ($module) {
	409	+ $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
	410	+ }
406	411	// Add sql filters
407	412	if ($sqlfilters)
408	413	{
		@@ -458,13 +463,19 @@ discard block
		block discarded – undo
458	463	{
459	464	$list = array();
460	465
461		- if ($type == 'thirdparty') $type='societe';
462		- if ($type == 'contact') $type='socpeople';
	466	+ if ($type == 'thirdparty') {
	467	+ $type='societe';
	468	+ }
	469	+ if ($type == 'contact') {
	470	+ $type='socpeople';
	471	+ }
463	472
464	473	$sql = "SELECT t.rowid, t.name, t.label, t.type, t.size, t.elementtype, t.fieldunique, t.fieldrequired, t.param, t.pos, t.alwayseditable, t.perms, t.list, t.fielddefault, t.fieldcomputed";
465	474	$sql.= " FROM ".MAIN_DB_PREFIX."extrafields as t";
466	475	$sql.= " WHERE t.entity IN (".getEntity('extrafields').")";
467		- if (! empty($type)) $sql.= " AND t.elementtype = '".$this->db->escape($type)."'";
	476	+ if (! empty($type)) {
	477	+ $sql.= " AND t.elementtype = '".$this->db->escape($type)."'";
	478	+ }
468	479	// Add sql filters
469	480	if ($sqlfilters)
470	481	{
		@@ -501,8 +512,7 @@ discard block
		block discarded – undo
501	512	$list[$tab->elementtype][$tab->name]['list']=$tab->list;
502	513	}
503	514	}
504		- }
505		- else
	515	+ } else
506	516	{
507	517	throw new RestException(503, 'Error when retrieving list of extra fields : '.$this->db->lasterror());
508	518	}
		@@ -539,8 +549,12 @@ discard block
		block discarded – undo
539	549	$sql = "SELECT rowid AS id, zip, town, fk_county, fk_pays AS fk_country";
540	550	$sql.= " FROM ".MAIN_DB_PREFIX."c_ziptown as t";
541	551	$sql.= " WHERE t.active = 1";
542		- if ($zipcode) $sql.=" AND t.zip LIKE '%" . $this->db->escape($zipcode) . "%'";
543		- if ($town) $sql.=" AND t.town LIKE '%" . $this->db->escape($town) . "%'";
	552	+ if ($zipcode) {
	553	+ $sql.=" AND t.zip LIKE '%" . $this->db->escape($zipcode) . "%'";
	554	+ }
	555	+ if ($town) {
	556	+ $sql.=" AND t.town LIKE '%" . $this->db->escape($town) . "%'";
	557	+ }
544	558	// Add sql filters
545	559	if ($sqlfilters)
546	560	{
		@@ -781,8 +795,12 @@ discard block
		block discarded – undo
781	795	$sql = "SELECT rowid, code, pos, label, use_default, description";
782	796	$sql.= " FROM ".MAIN_DB_PREFIX."c_ticket_type as t";
783	797	$sql.= " WHERE t.active = 1";
784		- if ($type) $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
785		- if ($module) $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
	798	+ if ($type) {
	799	+ $sql.=" AND t.type LIKE '%" . $this->db->escape($type) . "%'";
	800	+ }
	801	+ if ($module) {
	802	+ $sql.=" AND t.module LIKE '%" . $this->db->escape($module) . "%'";
	803	+ }
786	804	// Add sql filters
787	805	if ($sqlfilters)
788	806	{
		@@ -858,23 +876,27 @@ discard block
		block discarded – undo
858	876	$xmlfile = DOL_DOCUMENT_ROOT.$xmlshortfile;
859	877	// Remote file to compare to
860	878	$xmlremote = ($target == 'default' ? '' : $target);
861		- if (empty($xmlremote) && ! empty($conf->global->MAIN_FILECHECK_URL)) $xmlremote = $conf->global->MAIN_FILECHECK_URL;
	879	+ if (empty($xmlremote) && ! empty($conf->global->MAIN_FILECHECK_URL)) {
	880	+ $xmlremote = $conf->global->MAIN_FILECHECK_URL;
	881	+ }
862	882	$param='MAIN_FILECHECK_URL_'.DOL_VERSION;
863		- if (empty($xmlremote) && ! empty($conf->global->$param)) $xmlremote = $conf->global->$param;
864		- if (empty($xmlremote)) $xmlremote = 'https://www.dolibarr.org/files/stable/signatures/filelist-'.DOL_VERSION.'.xml';
	883	+ if (empty($xmlremote) && ! empty($conf->global->$param)) {
	884	+ $xmlremote = $conf->global->$param;
	885	+ }
	886	+ if (empty($xmlremote)) {
	887	+ $xmlremote = 'https://www.dolibarr.org/files/stable/signatures/filelist-'.DOL_VERSION.'.xml';
	888	+ }
865	889
866	890	if ($target == 'local')
867	891	{
868	892	if (dol_is_file($xmlfile))
869	893	{
870	894	$xml = simplexml_load_file($xmlfile);
871		- }
872		- else
	895	+ } else
873	896	{
874	897	throw new RestException(500, $langs->trans('XmlNotFound') . ': ' . $xmlfile);
875	898	}
876		- }
877		- else
	899	+ } else
878	900	{
879	901	$xmlarray = getURLContent($xmlremote);
880	902
		@@ -884,8 +906,7 @@ discard block
		block discarded – undo
884	906	$xmlfile = $xmlarray['content'];
885	907	//print "xmlfilestart".$xmlfile."endxmlfile";
886	908	$xml = simplexml_load_string($xmlfile);
887		- }
888		- else
	909	+ } else
889	910	{
890	911	$errormsg=$langs->trans('XmlNotFound') . ': ' . $xmlremote.' - '.$xmlarray['http_code'].' '.$xmlarray['curl_error_no'].' '.$xmlarray['curl_error_msg'];
891	912	throw new RestException(500, $errormsg);
		@@ -915,14 +936,18 @@ discard block
		block discarded – undo
915	936	$out.='</tr>'."\n";
916	937
917	938	$i = 0;
918		- foreach ($xml->dolibarr_constants[0]->constant as $constant) // $constant is a simpleXMLElement
	939	+ foreach ($xml->dolibarr_constants[0]->constant as $constant) {
	940	+ // $constant is a simpleXMLElement
919	941	{
920	942	$constname=$constant['name'];
	943	+ }
921	944	$constvalue=(string) $constant;
922	945	$constvalue = (empty($constvalue)?'0':$constvalue);
923	946	// Value found
924	947	$value='';
925		- if ($constname && $conf->global->$constname != '') $value=$conf->global->$constname;
	948	+ if ($constname && $conf->global->$constname != '') {
	949	+ $value=$conf->global->$constname;
	950	+ }
926	951	$valueforchecksum=(empty($value)?'0':$value);
927	952
928	953	$checksumconcat[]=$valueforchecksum;
		@@ -993,8 +1018,7 @@ discard block
		block discarded – undo
993	1018	$out.='<td align="center">'.$file['expectedmd5'].'</td>' . "\n";
994	1019	$out.="</tr>\n";
995	1020	}
996		- }
997		- else
	1021	+ } else
998	1022	{
999	1023	$out.='<tr class="oddeven"><td colspan="3" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
1000	1024	}
		@@ -1043,8 +1067,7 @@ discard block
		block discarded – undo
1043	1067	$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
1044	1068	$out.='<td align="right"></td>' . "\n";
1045	1069	$out.="</tr>\n";
1046		- }
1047		- else
	1070	+ } else
1048	1071	{
1049	1072	$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
1050	1073	}
		@@ -1093,8 +1116,7 @@ discard block
		block discarded – undo
1093	1116	$out.='<td align="right">'.dol_print_size($totalsize).'</td>' . "\n";
1094	1117	$out.='<td align="right"></td>' . "\n";
1095	1118	$out.="</tr>\n";
1096		- }
1097		- else
	1119	+ } else
1098	1120	{
1099	1121	$out.='<tr class="oddeven"><td colspan="5" class="opacitymedium">'.$langs->trans("None").'</td></tr>';
1100	1122	}
		@@ -1106,13 +1128,11 @@ discard block
		block discarded – undo
1106	1128	if (empty($tmpfilelist) && empty($tmpfilelist2) && empty($tmpfilelist3))
1107	1129	{
1108	1130	//setEventMessages($langs->trans("FileIntegrityIsStrictlyConformedWithReference"), null, 'mesgs');
1109		- }
1110		- else
	1131	+ } else
1111	1132	{
1112	1133	//setEventMessages($langs->trans("FileIntegritySomeFilesWereRemovedOrModified"), null, 'warnings');
1113	1134	}
1114		- }
1115		- else
	1135	+ } else
1116	1136	{
1117	1137	throw new RestException(500, 'Error: Failed to found dolibarr_htdocs_dir into XML file '.$xmlfile);
1118	1138	}
		@@ -1135,24 +1155,21 @@ discard block
		block discarded – undo
1135	1155	$resultcomment='FileIntegrityIsOkButFilesWereAdded';
1136	1156	//$outcurrentchecksum = $checksumget.' - <span class="'.$resultcode.'">'.$langs->trans("FileIntegrityIsOkButFilesWereAdded").'</span>';
1137	1157	$outcurrentchecksum = $checksumget;
1138		- }
1139		- else
	1158	+ } else
1140	1159	{
1141	1160	$resultcode = 'ok';
1142	1161	$resultcomment='Success';
1143	1162	//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
1144	1163	$outcurrentchecksum = $checksumget;
1145	1164	}
1146		- }
1147		- else
	1165	+ } else
1148	1166	{
1149	1167	$resultcode = 'error';
1150	1168	$resultcomment='Error';
1151	1169	//$outcurrentchecksum = '<span class="'.$resultcode.'">'.$checksumget.'</span>';
1152	1170	$outcurrentchecksum = $checksumget;
1153	1171	}
1154		- }
1155		- else {
	1172	+ } else {
1156	1173	throw new RestException(404, 'No signature file known');
1157	1174	}
1158	1175

		@@ -15,7 +15,7 @@ discard block
		block discarded – undo
15	15	* along with this program. If not, see <http://www.gnu.org/licenses/>.
16	16	*/
17	17
18		-require_once DOL_DOCUMENT_ROOT . '/core/lib/functions.lib.php';
	18	+require_once DOL_DOCUMENT_ROOT.'/core/lib/functions.lib.php';
19	19
20	20
21	21	/**
		@@ -39,7 +39,7 @@ discard block
		block discarded – undo
39	39	'success' => array(
40	40	'code' => 200,
41	41	'dolibarr_version' => DOL_VERSION,
42		- 'access_locked' => (empty($conf->global->MAIN_ONLY_LOGIN_ALLOWED)?'0':$conf->global->MAIN_ONLY_LOGIN_ALLOWED),
	42	+ 'access_locked' => (empty($conf->global->MAIN_ONLY_LOGIN_ALLOWED) ? '0' : $conf->global->MAIN_ONLY_LOGIN_ALLOWED),
43	43	),
44	44	);
45	45	}

		@@ -67,7 +67,7 @@ discard block
		block discarded – undo
67	67	*
68	68	* @url GET /download
69	69	*/
70		- public function index($module_part, $original_file='')
	70	+ public function index($module_part, $original_file = '')
71	71	{
72	72	global $conf, $langs;
73	73
		@@ -79,14 +79,14 @@ discard block
		block discarded – undo
79	79	}
80	80
81	81	//--- Finds and returns the document
82		- $entity=$conf->entity;
	82	+ $entity = $conf->entity;
83	83
84	84	$check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'read');
85	85	$accessallowed = $check_access['accessallowed'];
86	86	$sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
87	87	$original_file = $check_access['original_file'];
88	88
89		- if (preg_match('/\.\./',$original_file) \|\| preg_match('/[<>\|]/',$original_file))
	89	+ if (preg_match('/\.\./', $original_file) \|\| preg_match('/[<>\|]/', $original_file))
90	90	{
91	91	throw new RestException(401);
92	92	}
		@@ -95,15 +95,15 @@ discard block
		block discarded – undo
95	95	}
96	96
97	97	$filename = basename($original_file);
98		- $original_file_osencoded=dol_osencode($original_file); // New file name encoded in OS encoding charset
	98	+ $original_file_osencoded = dol_osencode($original_file); // New file name encoded in OS encoding charset
99	99
100		- if (! file_exists($original_file_osencoded))
	100	+ if (!file_exists($original_file_osencoded))
101	101	{
102	102	throw new RestException(404, 'File not found');
103	103	}
104	104
105		- $file_content=file_get_contents($original_file_osencoded);
106		- return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'encoding'=>'base64' );
	105	+ $file_content = file_get_contents($original_file_osencoded);
	106	+ return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'encoding'=>'base64');
107	107	}
108	108
109	109
		@@ -127,7 +127,7 @@ discard block
		block discarded – undo
127	127	*
128	128	* @url PUT /builddoc
129	129	*/
130		- public function builddoc($module_part, $original_file='', $doctemplate='', $langcode='')
	130	+ public function builddoc($module_part, $original_file = '', $doctemplate = '', $langcode = '')
131	131	{
132	132	global $conf, $langs;
133	133
		@@ -141,19 +141,19 @@ discard block
		block discarded – undo
141	141	$outputlangs = $langs;
142	142	if ($langcode && $langs->defaultlang != $langcode)
143	143	{
144		- $outputlangs=new Translate('', $conf);
	144	+ $outputlangs = new Translate('', $conf);
145	145	$outputlangs->setDefaultLang($langcode);
146	146	}
147	147
148	148	//--- Finds and returns the document
149		- $entity=$conf->entity;
	149	+ $entity = $conf->entity;
150	150
151	151	$check_access = dol_check_secure_access_document($module_part, $original_file, $entity, DolibarrApiAccess::$user, '', 'write');
152	152	$accessallowed = $check_access['accessallowed'];
153	153	$sqlprotectagainstexternals = $check_access['sqlprotectagainstexternals'];
154	154	$original_file = $check_access['original_file'];
155	155
156		- if (preg_match('/\.\./',$original_file) \|\| preg_match('/[<>\|]/',$original_file)) {
	156	+ if (preg_match('/\.\./', $original_file) \|\| preg_match('/[<>\|]/', $original_file)) {
157	157	throw new RestException(401);
158	158	}
159	159	if (!$accessallowed) {
		@@ -165,20 +165,20 @@ discard block
		block discarded – undo
165	165	$hidedesc = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_DESC) ? 0 : 1;
166	166	$hideref = empty($conf->global->MAIN_GENERATE_DOCUMENTS_HIDE_REF) ? 0 : 1;
167	167
168		- $templateused='';
	168	+ $templateused = '';
169	169
170	170	if ($module_part == 'facture' \|\| $module_part == 'invoice')
171	171	{
172	172	require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
173	173	$this->invoice = new Facture($this->db);
174	174	$result = $this->invoice->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
175		- if( ! $result ) {
	175	+ if (!$result) {
176	176	throw new RestException(404, 'Invoice not found');
177	177	}
178	178
179		- $templateused = $doctemplate?$doctemplate:$this->invoice->modelpdf;
	179	+ $templateused = $doctemplate ? $doctemplate : $this->invoice->modelpdf;
180	180	$result = $this->invoice->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
181		- if( $result <= 0 ) {
	181	+ if ($result <= 0) {
182	182	throw new RestException(500, 'Error generating document');
183	183	}
184	184	}
		@@ -187,12 +187,12 @@ discard block
		block discarded – undo
187	187	require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
188	188	$this->order = new Commande($this->db);
189	189	$result = $this->order->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
190		- if( ! $result ) {
	190	+ if (!$result) {
191	191	throw new RestException(404, 'Order not found');
192	192	}
193		- $templateused = $doctemplate?$doctemplate:$this->order->modelpdf;
	193	+ $templateused = $doctemplate ? $doctemplate : $this->order->modelpdf;
194	194	$result = $this->order->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
195		- if( $result <= 0 ) {
	195	+ if ($result <= 0) {
196	196	throw new RestException(500, 'Error generating document');
197	197	}
198	198	}
		@@ -201,12 +201,12 @@ discard block
		block discarded – undo
201	201	require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
202	202	$this->propal = new Propal($this->db);
203	203	$result = $this->propal->fetch(0, preg_replace('/\.[^\.]+$/', '', basename($original_file)));
204		- if( ! $result ) {
	204	+ if (!$result) {
205	205	throw new RestException(404, 'Proposal not found');
206	206	}
207		- $templateused = $doctemplate?$doctemplate:$this->propal->modelpdf;
	207	+ $templateused = $doctemplate ? $doctemplate : $this->propal->modelpdf;
208	208	$result = $this->propal->generateDocument($templateused, $outputlangs, $hidedetails, $hidedesc, $hideref);
209		- if( $result <= 0 ) {
	209	+ if ($result <= 0) {
210	210	throw new RestException(500, 'Error generating document');
211	211	}
212	212	}
		@@ -216,15 +216,15 @@ discard block
		block discarded – undo
216	216	}
217	217
218	218	$filename = basename($original_file);
219		- $original_file_osencoded=dol_osencode($original_file); // New file name encoded in OS encoding charset
	219	+ $original_file_osencoded = dol_osencode($original_file); // New file name encoded in OS encoding charset
220	220
221		- if (! file_exists($original_file_osencoded))
	221	+ if (!file_exists($original_file_osencoded))
222	222	{
223	223	throw new RestException(404, 'File not found');
224	224	}
225	225
226		- $file_content=file_get_contents($original_file_osencoded);
227		- return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'langcode'=>$outputlangs->defaultlang, 'template'=>$templateused, 'encoding'=>'base64' );
	226	+ $file_content = file_get_contents($original_file_osencoded);
	227	+ return array('filename'=>$filename, 'content-type' => dol_mimetype($filename), 'filesize'=>filesize($original_file), 'content'=>base64_encode($file_content), 'langcode'=>$outputlangs->defaultlang, 'template'=>$templateused, 'encoding'=>'base64');
228	228	}
229	229
230	230	/**
		@@ -245,7 +245,7 @@ discard block
		block discarded – undo
245	245	*
246	246	* @url GET /
247	247	*/
248		- function getDocumentsListByElement($modulepart, $id=0, $ref='', $sortfield='', $sortorder='')
	248	+ function getDocumentsListByElement($modulepart, $id = 0, $ref = '', $sortfield = '', $sortorder = '')
249	249	{
250	250	global $conf;
251	251
		@@ -257,7 +257,7 @@ discard block
		block discarded – undo
257	257	throw new RestException(400, 'bad value for parameter id or ref');
258	258	}
259	259
260		- $id = (empty($id)?0:$id);
	260	+ $id = (empty($id) ? 0 : $id);
261	261
262	262	if ($modulepart == 'societe' \|\| $modulepart == 'thirdparty')
263	263	{
		@@ -268,12 +268,12 @@ discard block
		block discarded – undo
268	268	}
269	269
270	270	$object = new Societe($this->db);
271		- $result=$object->fetch($id, $ref);
272		- if ( ! $result ) {
	271	+ $result = $object->fetch($id, $ref);
	272	+ if (!$result) {
273	273	throw new RestException(404, 'Thirdparty not found');
274	274	}
275	275
276		- $upload_dir = $conf->societe->multidir_output[$object->entity] . "/" . $object->id;
	276	+ $upload_dir = $conf->societe->multidir_output[$object->entity]."/".$object->id;
277	277	}
278	278	else if ($modulepart == 'adherent' \|\| $modulepart == 'member')
279	279	{
		@@ -284,12 +284,12 @@ discard block
		block discarded – undo
284	284	}
285	285
286	286	$object = new Adherent($this->db);
287		- $result=$object->fetch($id, $ref);
288		- if ( ! $result ) {
	287	+ $result = $object->fetch($id, $ref);
	288	+ if (!$result) {
289	289	throw new RestException(404, 'Member not found');
290	290	}
291	291
292		- $upload_dir = $conf->adherent->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'member');
	292	+ $upload_dir = $conf->adherent->dir_output."/".get_exdir(0, 0, 0, 1, $object, 'member');
293	293	}
294	294	else if ($modulepart == 'propal' \|\| $modulepart == 'proposal')
295	295	{
		@@ -300,12 +300,12 @@ discard block
		block discarded – undo
300	300	}
301	301
302	302	$object = new Propal($this->db);
303		- $result=$object->fetch($id, $ref);
304		- if ( ! $result ) {
	303	+ $result = $object->fetch($id, $ref);
	304	+ if (!$result) {
305	305	throw new RestException(404, 'Proposal not found');
306	306	}
307	307
308		- $upload_dir = $conf->propal->multidir_output[$object->entity] . "/" . get_exdir(0, 0, 0, 1, $object, 'propal');
	308	+ $upload_dir = $conf->propal->multidir_output[$object->entity]."/".get_exdir(0, 0, 0, 1, $object, 'propal');
309	309	}
310	310	else if ($modulepart == 'commande' \|\| $modulepart == 'order')
311	311	{
		@@ -316,12 +316,12 @@ discard block
		block discarded – undo
316	316	}
317	317
318	318	$object = new Commande($this->db);
319		- $result=$object->fetch($id, $ref);
320		- if ( ! $result ) {
	319	+ $result = $object->fetch($id, $ref);
	320	+ if (!$result) {
321	321	throw new RestException(404, 'Order not found');
322	322	}
323	323
324		- $upload_dir = $conf->commande->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'commande');
	324	+ $upload_dir = $conf->commande->dir_output."/".get_exdir(0, 0, 0, 1, $object, 'commande');
325	325	}
326	326	else if ($modulepart == 'shipment' \|\| $modulepart == 'expedition')
327	327	{
		@@ -332,12 +332,12 @@ discard block
		block discarded – undo
332	332	}
333	333
334	334	$object = new Expedition($this->db);
335		- $result=$object->fetch($id, $ref);
336		- if ( ! $result ) {
	335	+ $result = $object->fetch($id, $ref);
	336	+ if (!$result) {
337	337	throw new RestException(404, 'Shipment not found');
338	338	}
339	339
340		- $upload_dir = $conf->expedition->dir_output . "/sending/" . get_exdir(0, 0, 0, 1, $object, 'shipment');
	340	+ $upload_dir = $conf->expedition->dir_output."/sending/".get_exdir(0, 0, 0, 1, $object, 'shipment');
341	341	}
342	342	else if ($modulepart == 'facture' \|\| $modulepart == 'invoice')
343	343	{
		@@ -348,12 +348,12 @@ discard block
		block discarded – undo
348	348	}
349	349
350	350	$object = new Facture($this->db);
351		- $result=$object->fetch($id, $ref);
352		- if ( ! $result ) {
	351	+ $result = $object->fetch($id, $ref);
	352	+ if (!$result) {
353	353	throw new RestException(404, 'Invoice not found');
354	354	}
355	355
356		- $upload_dir = $conf->facture->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'invoice');
	356	+ $upload_dir = $conf->facture->dir_output."/".get_exdir(0, 0, 0, 1, $object, 'invoice');
357	357	}
358	358	else if ($modulepart == 'agenda' \|\| $modulepart == 'action' \|\| $modulepart == 'event')
359	359	{
		@@ -364,8 +364,8 @@ discard block
		block discarded – undo
364	364	}
365	365
366	366	$object = new ActionComm($this->db);
367		- $result=$object->fetch($id, $ref);
368		- if ( ! $result ) {
	367	+ $result = $object->fetch($id, $ref);
	368	+ if (!$result) {
369	369	throw new RestException(404, 'Event not found');
370	370	}
371	371
		@@ -376,9 +376,9 @@ discard block
		block discarded – undo
376	376	throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
377	377	}
378	378
379		- $filearray=dol_dir_list($upload_dir,"files",0,'','(\.meta\|_preview.*\.png)$',$sortfield,(strtolower($sortorder)=='desc'?SORT_DESC:SORT_ASC),1);
	379	+ $filearray = dol_dir_list($upload_dir, "files", 0, '', '(\.meta\|_preview.*\.png)$', $sortfield, (strtolower($sortorder) == 'desc' ?SORT_DESC:SORT_ASC), 1);
380	380	if (empty($filearray)) {
381		- throw new RestException(404, 'Search for modulepart '.$modulepart.' with Id '.$object->id.(! empty($object->Ref)?' or Ref '.$object->ref:'').' does not return any document.');
	381	+ throw new RestException(404, 'Search for modulepart '.$modulepart.' with Id '.$object->id.(!empty($object->Ref) ? ' or Ref '.$object->ref : '').' does not return any document.');
382	382	}
383	383
384	384	return $filearray;
		@@ -421,7 +421,7 @@ discard block
		block discarded – undo
421	421	*
422	422	* @url POST /upload
423	423	*/
424		- public function post($filename, $modulepart, $ref='', $subdir='', $filecontent='', $fileencoding='', $overwriteifexists=0)
	424	+ public function post($filename, $modulepart, $ref = '', $subdir = '', $filecontent = '', $fileencoding = '', $overwriteifexists = 0)
425	425	{
426	426	global $db, $conf;
427	427
		@@ -430,7 +430,7 @@ discard block
		block discarded – undo
430	430	var_dump($filecontent);
431	431	exit;*/
432	432
433		- if(empty($modulepart))
	433	+ if (empty($modulepart))
434	434	{
435	435	throw new RestException(400, 'Modulepart not provided.');
436	436	}
		@@ -450,11 +450,11 @@ discard block
		block discarded – undo
450	450	$entity = DolibarrApiAccess::$user->entity;
451	451	if ($ref)
452	452	{
453		- $tmpreldir='';
	453	+ $tmpreldir = '';
454	454
455	455	if ($modulepart == 'facture' \|\| $modulepart == 'invoice')
456	456	{
457		- $modulepart='facture';
	457	+ $modulepart = 'facture';
458	458
459	459	require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
460	460	$object = new Facture($this->db);
		@@ -474,11 +474,11 @@ discard block
		block discarded – undo
474	474	$task_result = $object->fetch('', $ref);
475	475
476	476	// Fetching the tasks project is required because its out_dir might be a sub-directory of the project
477		- if($task_result > 0)
	477	+ if ($task_result > 0)
478	478	{
479	479	$project_result = $object->fetch_projet();
480	480
481		- if($project_result >= 0)
	481	+ if ($project_result >= 0)
482	482	{
483	483	$tmpreldir = dol_sanitizeFileName($object->project->ref).'/';
484	484	}
		@@ -494,11 +494,11 @@ discard block
		block discarded – undo
494	494	throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
495	495	}
496	496
497		- if(is_object($object))
	497	+ if (is_object($object))
498	498	{
499	499	$result = $object->fetch('', $ref);
500	500
501		- if($result == 0)
	501	+ if ($result == 0)
502	502	{
503	503	throw new RestException(404, "Object with ref '".$ref."' was not found.");
504	504	}
		@@ -508,7 +508,7 @@ discard block
		block discarded – undo
508	508	}
509	509	}
510	510
511		- if (! ($object->id > 0))
	511	+ if (!($object->id > 0))
512	512	{
513	513	throw new RestException(404, 'The object '.$modulepart." with ref '".$ref."' was not found.");
514	514	}
		@@ -516,7 +516,7 @@ discard block
		block discarded – undo
516	516	$relativefile = $tmpreldir.dol_sanitizeFileName($object->ref);
517	517
518	518	$tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, $ref, 'write');
519		- $upload_dir = $tmp['original_file']; // No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
	519	+ $upload_dir = $tmp['original_file']; // No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
520	520
521	521	if (empty($upload_dir) \|\| $upload_dir == '/')
522	522	{
		@@ -525,12 +525,12 @@ discard block
		block discarded – undo
525	525	}
526	526	else
527	527	{
528		- if ($modulepart == 'invoice') $modulepart ='facture';
	528	+ if ($modulepart == 'invoice') $modulepart = 'facture';
529	529
530	530	$relativefile = $subdir;
531	531
532	532	$tmp = dol_check_secure_access_document($modulepart, $relativefile, $entity, DolibarrApiAccess::$user, '', 'write');
533		- $upload_dir = $tmp['original_file']; // No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
	533	+ $upload_dir = $tmp['original_file']; // No dirname here, tmp['original_file'] is already the dir because dol_check_secure_access_document was called with param original_file that is only the dir
534	534
535	535	if (empty($upload_dir) \|\| $upload_dir == '/')
536	536	{
		@@ -541,8 +541,8 @@ discard block
		block discarded – undo
541	541
542	542	$upload_dir = dol_sanitizePathName($upload_dir);
543	543
544		- $destfile = $upload_dir . '/' . $original_file;
545		- $destfiletmp = DOL_DATA_ROOT.'/admin/temp/' . $original_file;
	544	+ $destfile = $upload_dir.'/'.$original_file;
	545	+ $destfiletmp = DOL_DATA_ROOT.'/admin/temp/'.$original_file;
546	546	dol_delete_file($destfiletmp);
547	547	//var_dump($original_file);exit;
548	548
		@@ -550,7 +550,7 @@ discard block
		block discarded – undo
550	550	throw new RestException(401, 'Directory not exists : '.dirname($destfile));
551	551	}
552	552
553		- if (! $overwriteifexists && dol_is_file($destfile))
	553	+ if (!$overwriteifexists && dol_is_file($destfile))
554	554	{
555	555	throw new RestException(500, "File with name '".$original_file."' already exists.");
556	556	}
		@@ -568,7 +568,7 @@ discard block
		block discarded – undo
568	568	}
569	569
570	570	$result = dol_move($destfiletmp, $destfile, 0, $overwriteifexists, 1);
571		- if (! $result)
	571	+ if (!$result)
572	572	{
573	573	throw new RestException(500, "Failed to move file into '".$destfile."'");
574	574	}

		@@ -181,8 +181,7 @@ discard block
		block discarded – undo
181	181	if( $result <= 0 ) {
182	182	throw new RestException(500, 'Error generating document');
183	183	}
184		- }
185		- elseif ($module_part == 'commande' \|\| $module_part == 'order')
	184	+ } elseif ($module_part == 'commande' \|\| $module_part == 'order')
186	185	{
187	186	require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
188	187	$this->order = new Commande($this->db);
		@@ -195,8 +194,7 @@ discard block
		block discarded – undo
195	194	if( $result <= 0 ) {
196	195	throw new RestException(500, 'Error generating document');
197	196	}
198		- }
199		- elseif ($module_part == 'propal' \|\| $module_part == 'proposal')
	197	+ } elseif ($module_part == 'propal' \|\| $module_part == 'proposal')
200	198	{
201	199	require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
202	200	$this->propal = new Propal($this->db);
		@@ -209,8 +207,7 @@ discard block
		block discarded – undo
209	207	if( $result <= 0 ) {
210	208	throw new RestException(500, 'Error generating document');
211	209	}
212		- }
213		- else
	210	+ } else
214	211	{
215	212	throw new RestException(403, 'Generation not available for this modulepart');
216	213	}
		@@ -274,8 +271,7 @@ discard block
		block discarded – undo
274	271	}
275	272
276	273	$upload_dir = $conf->societe->multidir_output[$object->entity] . "/" . $object->id;
277		- }
278		- else if ($modulepart == 'adherent' \|\| $modulepart == 'member')
	274	+ } else if ($modulepart == 'adherent' \|\| $modulepart == 'member')
279	275	{
280	276	require_once DOL_DOCUMENT_ROOT.'/adherents/class/adherent.class.php';
281	277
		@@ -290,8 +286,7 @@ discard block
		block discarded – undo
290	286	}
291	287
292	288	$upload_dir = $conf->adherent->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'member');
293		- }
294		- else if ($modulepart == 'propal' \|\| $modulepart == 'proposal')
	289	+ } else if ($modulepart == 'propal' \|\| $modulepart == 'proposal')
295	290	{
296	291	require_once DOL_DOCUMENT_ROOT.'/comm/propal/class/propal.class.php';
297	292
		@@ -306,8 +301,7 @@ discard block
		block discarded – undo
306	301	}
307	302
308	303	$upload_dir = $conf->propal->multidir_output[$object->entity] . "/" . get_exdir(0, 0, 0, 1, $object, 'propal');
309		- }
310		- else if ($modulepart == 'commande' \|\| $modulepart == 'order')
	304	+ } else if ($modulepart == 'commande' \|\| $modulepart == 'order')
311	305	{
312	306	require_once DOL_DOCUMENT_ROOT.'/commande/class/commande.class.php';
313	307
		@@ -322,8 +316,7 @@ discard block
		block discarded – undo
322	316	}
323	317
324	318	$upload_dir = $conf->commande->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'commande');
325		- }
326		- else if ($modulepart == 'shipment' \|\| $modulepart == 'expedition')
	319	+ } else if ($modulepart == 'shipment' \|\| $modulepart == 'expedition')
327	320	{
328	321	require_once DOL_DOCUMENT_ROOT.'/expedition/class/expedition.class.php';
329	322
		@@ -338,8 +331,7 @@ discard block
		block discarded – undo
338	331	}
339	332
340	333	$upload_dir = $conf->expedition->dir_output . "/sending/" . get_exdir(0, 0, 0, 1, $object, 'shipment');
341		- }
342		- else if ($modulepart == 'facture' \|\| $modulepart == 'invoice')
	334	+ } else if ($modulepart == 'facture' \|\| $modulepart == 'invoice')
343	335	{
344	336	require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
345	337
		@@ -354,8 +346,7 @@ discard block
		block discarded – undo
354	346	}
355	347
356	348	$upload_dir = $conf->facture->dir_output . "/" . get_exdir(0, 0, 0, 1, $object, 'invoice');
357		- }
358		- else if ($modulepart == 'agenda' \|\| $modulepart == 'action' \|\| $modulepart == 'event')
	349	+ } else if ($modulepart == 'agenda' \|\| $modulepart == 'action' \|\| $modulepart == 'event')
359	350	{
360	351	require_once DOL_DOCUMENT_ROOT.'/comm/action/class/actioncomm.class.php';
361	352
		@@ -370,8 +361,7 @@ discard block
		block discarded – undo
370	361	}
371	362
372	363	$upload_dir = $conf->agenda->dir_output.'/'.dol_sanitizeFileName($object->ref);
373		- }
374		- else
	364	+ } else
375	365	{
376	366	throw new RestException(500, 'Modulepart '.$modulepart.' not implemented yet.');
377	367	}
		@@ -440,8 +430,12 @@ discard block
		block discarded – undo
440	430	}
441	431
442	432	$newfilecontent = '';
443		- if (empty($fileencoding)) $newfilecontent = $filecontent;
444		- if ($fileencoding == 'base64') $newfilecontent = base64_decode($filecontent);
	433	+ if (empty($fileencoding)) {
	434	+ $newfilecontent = $filecontent;
	435	+ }
	436	+ if ($fileencoding == 'base64') {
	437	+ $newfilecontent = base64_decode($filecontent);
	438	+ }
445	439
446	440	$original_file = dol_sanitizeFileName($filename);
447	441
		@@ -458,13 +452,11 @@ discard block
		block discarded – undo
458	452
459	453	require_once DOL_DOCUMENT_ROOT.'/compta/facture/class/facture.class.php';
460	454	$object = new Facture($this->db);
461		- }
462		- elseif ($modulepart == 'project')
	455	+ } elseif ($modulepart == 'project')
463	456	{
464	457	require_once DOL_DOCUMENT_ROOT.'/projet/class/project.class.php';
465	458	$object = new Project($this->db);
466		- }
467		- elseif ($modulepart == 'task' \|\| $modulepart == 'project_task')
	459	+ } elseif ($modulepart == 'task' \|\| $modulepart == 'project_task')
468	460	{
469	461	$modulepart = 'project_task';
470	462
		@@ -482,8 +474,7 @@ discard block
		block discarded – undo
482	474	{
483	475	$tmpreldir = dol_sanitizeFileName($object->project->ref).'/';
484	476	}
485		- }
486		- else
	477	+ } else
487	478	{
488	479	throw new RestException(500, 'Error while fetching Task '.$ref);
489	480	}
		@@ -501,8 +492,7 @@ discard block
		block discarded – undo
501	492	if($result == 0)
502	493	{
503	494	throw new RestException(404, "Object with ref '".$ref."' was not found.");
504		- }
505		- elseif ($result < 0)
	495	+ } elseif ($result < 0)
506	496	{
507	497	throw new RestException(500, 'Error while fetching object.');
508	498	}
		@@ -522,10 +512,11 @@ discard block
		block discarded – undo
522	512	{
523	513	throw new RestException(500, 'This value of modulepart does not support yet usage of ref. Check modulepart parameter or try to use subdir parameter instead of ref.');
524	514	}
525		- }
526		- else
	515	+ } else
527	516	{
528		- if ($modulepart == 'invoice') $modulepart ='facture';
	517	+ if ($modulepart == 'invoice') {
	518	+ $modulepart ='facture';
	519	+ }
529	520
530	521	$relativefile = $subdir;
531	522
		@@ -561,8 +552,7 @@ discard block
		block discarded – undo
561	552	$nbofbyteswrote = fwrite($fhandle, $newfilecontent);
562	553	fclose($fhandle);
563	554	@chmod($destfiletmp, octdec($conf->global->MAIN_UMASK));
564		- }
565		- else
	555	+ } else
566	556	{
567	557	throw new RestException(500, "Failed to open file '".$destfiletmp."' for write");
568	558	}
		@@ -586,8 +576,9 @@ discard block
		block discarded – undo
586	576	function _validate_file($data) {
587	577	$result = array();
588	578	foreach (Documents::$DOCUMENT_FIELDS as $field) {
589		- if (!isset($data[$field]))
590		- throw new RestException(400, "$field field missing");
	579	+ if (!isset($data[$field])) {
	580	+ throw new RestException(400, "$field field missing");
	581	+ }
591	582	$result[$field] = $data[$field];
592	583	}
593	584	return $result;

		@@ -33,49 +33,49 @@
		block discarded – undo
33	33	$langs->load("admin");
34	34
35	35	if (! $user->admin)
36		- accessforbidden();
	36	+ accessforbidden();
37	37
38	38	$action=GETPOST('action','aZ09');
39	39
40	40	//Activate ProfId
41	41	if ($action == 'setproductionmode')
42	42	{
43		- $status = GETPOST('status','alpha');
44		-
45		- if (dolibarr_set_const($db, 'API_PRODUCTION_MODE', $status, 'chaine', 0, '', 0) > 0)
46		- {
47		- $error=0;
48		-
49		- if ($status == 1)
50		- {
51		- $result = dol_mkdir($conf->api->dir_temp);
52		- if ($result < 0)
53		- {
54		- setEventMessages($langs->trans("ErrorFailedToCreateDir", $conf->api->dir_temp), null, 'errors');
55		- $error++;
56		- }
57		- }
58		- else
59		- {
60		- // Delete the cache file otherwise it does not update
61		- $result = dol_delete_file($conf->api->dir_temp.'/routes.php');
62		- if ($result < 0)
63		- {
64		- setEventMessages($langs->trans("ErrorFailedToDeleteFile", $conf->api->dir_temp.'/routes.php'), null, 'errors');
65		- $error++;
66		- }
67		- }
68		-
69		- if (!$error)
70		- {
71		- header("Location: ".$_SERVER["PHP_SELF"]);
72		- exit;
73		- }
74		- }
75		- else
76		- {
77		- dol_print_error($db);
78		- }
	43	+ $status = GETPOST('status','alpha');
	44	+
	45	+ if (dolibarr_set_const($db, 'API_PRODUCTION_MODE', $status, 'chaine', 0, '', 0) > 0)
	46	+ {
	47	+ $error=0;
	48	+
	49	+ if ($status == 1)
	50	+ {
	51	+ $result = dol_mkdir($conf->api->dir_temp);
	52	+ if ($result < 0)
	53	+ {
	54	+ setEventMessages($langs->trans("ErrorFailedToCreateDir", $conf->api->dir_temp), null, 'errors');
	55	+ $error++;
	56	+ }
	57	+ }
	58	+ else
	59	+ {
	60	+ // Delete the cache file otherwise it does not update
	61	+ $result = dol_delete_file($conf->api->dir_temp.'/routes.php');
	62	+ if ($result < 0)
	63	+ {
	64	+ setEventMessages($langs->trans("ErrorFailedToDeleteFile", $conf->api->dir_temp.'/routes.php'), null, 'errors');
	65	+ $error++;
	66	+ }
	67	+ }
	68	+
	69	+ if (!$error)
	70	+ {
	71	+ header("Location: ".$_SERVER["PHP_SELF"]);
	72	+ exit;
	73	+ }
	74	+ }
	75	+ else
	76	+ {
	77	+ dol_print_error($db);
	78	+ }
79	79	}
80	80
81	81	dol_mkdir(DOL_DATA_ROOT.'/api/temp'); // May have been deleted by a purge

		@@ -32,8 +32,9 @@ discard block
		block discarded – undo
32	32	// Load translation files required by the page
33	33	$langs->load("admin");
34	34
35		-if (! $user->admin)
	35	+if (! $user->admin) {
36	36	accessforbidden();
	37	+}
37	38
38	39	$action=GETPOST('action','aZ09');
39	40
		@@ -54,8 +55,7 @@ discard block
		block discarded – undo
54	55	setEventMessages($langs->trans("ErrorFailedToCreateDir", $conf->api->dir_temp), null, 'errors');
55	56	$error++;
56	57	}
57		- }
58		- else
	58	+ } else
59	59	{
60	60	// Delete the cache file otherwise it does not update
61	61	$result = dol_delete_file($conf->api->dir_temp.'/routes.php');
		@@ -71,8 +71,7 @@ discard block
		block discarded – undo
71	71	header("Location: ".$_SERVER["PHP_SELF"]);
72	72	exit;
73	73	}
74		- }
75		- else
	74	+ } else
76	75	{
77	76	dol_print_error($db);
78	77	}
		@@ -111,8 +110,7 @@ discard block
		block discarded – undo
111	110	print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=0">';
112	111	print img_picto($langs->trans("Activated"),'switch_on');
113	112	print '</a></td>';
114		-}
115		-else
	113	+} else
116	114	{
117	115	print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=1">';
118	116	print img_picto($langs->trans("Disabled"),'switch_off');
		@@ -144,8 +142,7 @@ discard block
		block discarded – undo
144	142	{
145	143	$url=DOL_MAIN_URL_ROOT.'/api/index.php/explorer';
146	144	print img_picto('','object_globe.png').' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
147		-}
148		-else
	145	+} else
149	146	{
150	147	print $langs->trans("NotAvailableWithThisDistribution");
151	148	}

		@@ -28,26 +28,26 @@ discard block
		block discarded – undo
28	28
29	29	// Copyright (C) 2018 Alxarafe/Alixar <[email protected]>
30	30	defined('BASE_PATH') or die('Single entry point through the index.php of the main folder');
31		-require DOL_BASE_PATH . '/main.inc.php';
	31	+require DOL_BASE_PATH.'/main.inc.php';
32	32	require_once DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';
33	33	require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
34	34
35	35	// Load translation files required by the page
36	36	$langs->load("admin");
37	37
38		-if (! $user->admin)
	38	+if (!$user->admin)
39	39	accessforbidden();
40	40
41		-$action=GETPOST('action','aZ09');
	41	+$action = GETPOST('action', 'aZ09');
42	42
43	43	//Activate ProfId
44	44	if ($action == 'setproductionmode')
45	45	{
46		- $status = GETPOST('status','alpha');
	46	+ $status = GETPOST('status', 'alpha');
47	47
48	48	if (dolibarr_set_const($db, 'API_PRODUCTION_MODE', $status, 'chaine', 0, '', 0) > 0)
49	49	{
50		- $error=0;
	50	+ $error = 0;
51	51
52	52	if ($status == 1)
53	53	{
		@@ -81,7 +81,7 @@ discard block
		block discarded – undo
81	81	}
82	82	}
83	83
84		-dol_mkdir(DOL_DATA_ROOT.'/api/temp'); // May have been deleted by a purge
	84	+dol_mkdir(DOL_DATA_ROOT.'/api/temp'); // May have been deleted by a purge
85	85
86	86
87	87	/*
		@@ -90,8 +90,8 @@ discard block
		block discarded – undo
90	90
91	91	llxHeader();
92	92
93		-$linkback='<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
94		-print load_fiche_titre($langs->trans("ApiSetup"),$linkback,'title_setup');
	93	+$linkback = '<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
	94	+print load_fiche_titre($langs->trans("ApiSetup"), $linkback, 'title_setup');
95	95
96	96	print $langs->trans("ApiDesc")."<br>\n";
97	97	print "<br>\n";
		@@ -108,17 +108,17 @@ discard block
		block discarded – undo
108	108
109	109	print '<tr class="impair">';
110	110	print '<td>'.$langs->trans("ApiProductionMode").'</td>';
111		-$production_mode=(empty($conf->global->API_PRODUCTION_MODE)?false:true);
	111	+$production_mode = (empty($conf->global->API_PRODUCTION_MODE) ?false:true);
112	112	if ($production_mode)
113	113	{
114		- print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=0">';
115		- print img_picto($langs->trans("Activated"),'switch_on');
	114	+ print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i + 1).'&status=0">';
	115	+ print img_picto($langs->trans("Activated"), 'switch_on');
116	116	print '</a></td>';
117	117	}
118	118	else
119	119	{
120		- print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i+1).'&status=1">';
121		- print img_picto($langs->trans("Disabled"),'switch_off');
	120	+ print '<td align="center"><a href="'.$_SERVER['PHP_SELF'].'?action=setproductionmode&value='.($i + 1).'&status=1">';
	121	+ print img_picto($langs->trans("Disabled"), 'switch_off');
122	122	print '</a></td>';
123	123	}
124	124	print '<td> </td>';
		@@ -128,15 +128,15 @@ discard block
		block discarded – undo
128	128	print '<br><br>';
129	129
130	130	// Define $urlwithroot
131		-$urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim($dolibarr_main_url_root));
132		-$urlwithroot=$urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
	131	+$urlwithouturlroot = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim($dolibarr_main_url_root));
	132	+$urlwithroot = $urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
133	133	//$urlwithroot=DOL_MAIN_URL_ROOT; // This is to use same domain name than current
134	134
135	135	// Show message
136		-$message='';
137		-$url=$urlwithroot.'/api/index.php/login?login=<strong>auserlogin</strong>&password=<strong>thepassword</strong>[&reset=1]';
138		-$message.=$langs->trans("UrlToGetKeyToUseAPIs").':<br>';
139		-$message.=img_picto('','object_globe.png').' '.$url;
	136	+$message = '';
	137	+$url = $urlwithroot.'/api/index.php/login?login=<strong>auserlogin</strong>&password=<strong>thepassword</strong>[&reset=1]';
	138	+$message .= $langs->trans("UrlToGetKeyToUseAPIs").':<br>';
	139	+$message .= img_picto('', 'object_globe.png').' '.$url;
140	140	print $message;
141	141	print '<br>';
142	142	print '<br>';
		@@ -145,8 +145,8 @@ discard block
		block discarded – undo
145	145	print '<u>'.$langs->trans("ApiExporerIs").':</u><br>';
146	146	if (dol_is_dir(DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/explorer'))
147	147	{
148		- $url=DOL_MAIN_URL_ROOT.'/api/index.php/explorer';
149		- print img_picto('','object_globe.png').' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
	148	+ $url = DOL_MAIN_URL_ROOT.'/api/index.php/explorer';
	149	+ print img_picto('', 'object_globe.png').' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
150	150	}
151	151	else
152	152	{

		@@ -78,23 +78,23 @@ discard block
		block discarded – undo
78	78	$module=$part=$obj=strtolower(preg_replace('/^mod/i','',$modulename));
79	79	//if ($part == 'propale') $part='propal';
80	80	if ($module == 'societe') {
81		- $obj = 'thirdparty';
82		- }
	81	+ $obj = 'thirdparty';
	82	+ }
83	83	if ($module == 'categorie') {
84	84	$part = 'categories';
85		- $obj = 'category';
86		- }
	85	+ $obj = 'category';
	86	+ }
87	87	if ($module == 'facture') {
88	88	$part = 'compta/facture';
89		- $obj = 'facture';
90		- }
	89	+ $obj = 'facture';
	90	+ }
91	91	if ($module == 'ficheinter') {
92		- $obj = 'fichinter';
93		- $part = 'fichinter';
94		- $module='fichinter';
95		- }
	92	+ $obj = 'fichinter';
	93	+ $part = 'fichinter';
	94	+ $module='fichinter';
	95	+ }
96	96
97		- if (empty($conf->$module->enabled)) $enabled=false;
	97	+ if (empty($conf->$module->enabled)) $enabled=false;
98	98
99	99	if ($enabled)
100	100	{
		@@ -149,7 +149,7 @@ discard block
		block discarded – undo
149	149	}*/
150	150
151	151	//$listofapis[]=array('classname'=>$classname, 'fullpath'=>$file_searched);
152		- /* }
	152	+ /* }
153	153
154	154	}*/
155	155	}

		@@ -42,7 +42,7 @@ discard block
		block discarded – undo
42	42	if (empty($conf->global->MAIN_MODULE_API))
43	43	{
44	44	dol_syslog("Call Dolibarr API interfaces with module REST disabled");
45		- print $langs->trans("WarningModuleNotActive",'Api').'.<br><br>';
	45	+ print $langs->trans("WarningModuleNotActive", 'Api').'.<br><br>';
46	46	print $langs->trans("ToActivateModule");
47	47	exit;
48	48	}
		@@ -52,7 +52,7 @@ discard block
		block discarded – undo
52	52
53	53	$api->r->addAPIClass('Luracast\\Restler\\Resources'); //this creates resources.json at API Root
54	54	$api->r->setSupportedFormats('JsonFormat', 'XmlFormat');
55		-$api->r->addAuthenticationClass('DolibarrApiAccess','');
	55	+$api->r->addAuthenticationClass('DolibarrApiAccess', '');
56	56
57	57	$listofapis = array();
58	58
		@@ -64,18 +64,18 @@ discard block
		block discarded – undo
64	64	*/
65	65	//dol_syslog("Scan directory ".$dir." for API modules");
66	66
67		- $handle=@opendir(dol_osencode($dir));
	67	+ $handle = @opendir(dol_osencode($dir));
68	68	if (is_resource($handle))
69	69	{
70		- while (($file = readdir($handle))!==false)
	70	+ while (($file = readdir($handle)) !== false)
71	71	{
72		- if (is_readable($dir.$file) && preg_match("/^(mod.*)\.class\.php$/i",$file,$reg))
	72	+ if (is_readable($dir.$file) && preg_match("/^(mod.*)\.class\.php$/i", $file, $reg))
73	73	{
74		- $modulename=$reg[1];
	74	+ $modulename = $reg[1];
75	75
76	76	// Defined if module is enabled
77		- $enabled=true;
78		- $module=$part=$obj=strtolower(preg_replace('/^mod/i','',$modulename));
	77	+ $enabled = true;
	78	+ $module = $part = $obj = strtolower(preg_replace('/^mod/i', '', $modulename));
79	79	//if ($part == 'propale') $part='propal';
80	80	if ($module == 'societe') {
81	81	$obj = 'thirdparty';
		@@ -91,10 +91,10 @@ discard block
		block discarded – undo
91	91	if ($module == 'ficheinter') {
92	92	$obj = 'fichinter';
93	93	$part = 'fichinter';
94		- $module='fichinter';
	94	+ $module = 'fichinter';
95	95	}
96	96
97		- if (empty($conf->$module->enabled)) $enabled=false;
	97	+ if (empty($conf->$module->enabled)) $enabled = false;
98	98
99	99	if ($enabled)
100	100	{
		@@ -108,12 +108,12 @@ discard block
		block discarded – undo
108	108	*/
109	109	$dir_part = DOL_DOCUMENT_ROOT.'/'.$part.'/class/';
110	110
111		- $handle_part=@opendir(dol_osencode($dir_part));
	111	+ $handle_part = @opendir(dol_osencode($dir_part));
112	112	if (is_resource($handle_part))
113	113	{
114		- while (($file_searched = readdir($handle_part))!==false)
	114	+ while (($file_searched = readdir($handle_part)) !== false)
115	115	{
116		- if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i",$file_searched,$reg))
	116	+ if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i", $file_searched, $reg))
117	117	{
118	118	$classname = ucwords($reg[1]);
119	119	require_once $dir_part.$file_searched;
		@@ -161,43 +161,43 @@ discard block
		block discarded – undo
161	161	}
162	162
163	163	//var_dump($listofapis);
164		-$listofapis=Routes::toArray(); // TODO api for "status" is lost here
	164	+$listofapis = Routes::toArray(); // TODO api for "status" is lost here
165	165	//var_dump($listofapis);
166	166
167	167
168	168	llxHeader();
169	169
170		-$linkback='<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
171		-print load_fiche_titre($langs->trans("ApiSetup"),$linkback,'title_setup');
	170	+$linkback = '<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';
	171	+print load_fiche_titre($langs->trans("ApiSetup"), $linkback, 'title_setup');
172	172
173	173	// Define $urlwithroot
174		-$urlwithouturlroot=preg_replace('/'.preg_quote(DOL_URL_ROOT,'/').'$/i','',trim($dolibarr_main_url_root));
175		-$urlwithroot=$urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
	174	+$urlwithouturlroot = preg_replace('/'.preg_quote(DOL_URL_ROOT, '/').'$/i', '', trim($dolibarr_main_url_root));
	175	+$urlwithroot = $urlwithouturlroot.DOL_URL_ROOT; // This is to use external domain name found into config file
176	176	//$urlwithroot=DOL_MAIN_URL_ROOT; // This is to use same domain name than current
177	177
178	178	// Show message
179	179	print '<br>';
180		-$message='';
181		-$url='<a href="'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword" target="_blank">'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword[&reset=1]</a>';
182		-$message.=$langs->trans("UrlToGetKeyToUseAPIs").':<br>';
183		-$message.=img_picto('','object_globe.png').' '.$url;
	180	+$message = '';
	181	+$url = '<a href="'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword" target="_blank">'.$urlwithroot.'/api/index.php/login?login='.urlencode($user->login).'&password=yourpassword[&reset=1]</a>';
	182	+$message .= $langs->trans("UrlToGetKeyToUseAPIs").':<br>';
	183	+$message .= img_picto('', 'object_globe.png').' '.$url;
184	184	print $message;
185	185	print '<br>';
186	186	print '<br>';
187	187
188		-$oldclass='';
	188	+$oldclass = '';
189	189
190	190	print $langs->trans("ListOfAvailableAPIs").':<br>';
191		-foreach($listofapis['v1'] as $key => $val)
	191	+foreach ($listofapis['v1'] as $key => $val)
192	192	{
193	193	if ($key == 'login') continue;
194	194	if ($key == 'index') continue;
195	195
196	196	if ($key)
197	197	{
198		- foreach($val as $method => $val2)
	198	+ foreach ($val as $method => $val2)
199	199	{
200		- $newclass=$val2['className'];
	200	+ $newclass = $val2['className'];
201	201
202	202	if (preg_match('/restler/i', $newclass)) continue;
203	203
		@@ -207,9 +207,9 @@ discard block
		block discarded – undo
207	207	$oldclass = $newclass;
208	208	}
209	209	//print $key.' - '.$val['classname'].' - '.$val['fullpath']." - ".DOL_MAIN_URL_ROOT.'/api/index.php/'.strtolower(preg_replace('/Api$/','',$val['classname']))."/xxx<br>\n";
210		- $url=$urlwithroot.'/api/index.php/'.$key;
211		- $url.='?api_key=token';
212		- print img_picto('','object_globe.png').' '.$method.' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
	210	+ $url = $urlwithroot.'/api/index.php/'.$key;
	211	+ $url .= '?api_key=token';
	212	+ print img_picto('', 'object_globe.png').' '.$method.' <a href="'.$url.'" target="_blank">'.$url."</a><br>\n";
213	213	}
214	214	}
215	215	}

		@@ -94,7 +94,9 @@ discard block
		block discarded – undo
94	94	$module='fichinter';
95	95	}
96	96
97		- if (empty($conf->$module->enabled)) $enabled=false;
	97	+ if (empty($conf->$module->enabled)) {
	98	+ $enabled=false;
	99	+ }
98	100
99	101	if ($enabled)
100	102	{
		@@ -190,8 +192,12 @@ discard block
		block discarded – undo
190	192	print $langs->trans("ListOfAvailableAPIs").':<br>';
191	193	foreach($listofapis['v1'] as $key => $val)
192	194	{
193		- if ($key == 'login') continue;
194		- if ($key == 'index') continue;
	195	+ if ($key == 'login') {
	196	+ continue;
	197	+ }
	198	+ if ($key == 'index') {
	199	+ continue;
	200	+ }
195	201
196	202	if ($key)
197	203	{
		@@ -199,7 +205,9 @@ discard block
		block discarded – undo
199	205	{
200	206	$newclass=$val2['className'];
201	207
202		- if (preg_match('/restler/i', $newclass)) continue;
	208	+ if (preg_match('/restler/i', $newclass)) {
	209	+ continue;
	210	+ }
203	211
204	212	if ($oldclass != $newclass)
205	213	{

		@@ -215,38 +215,38 @@
		block discarded – undo
215	215	// Load a dedicated API file
216	216	dol_syslog("Load a dedicated API file module=".$module." moduledirforclass=".$moduledirforclass);
217	217
218		- $tmpmodule = $module;
219		- if ($tmpmodule != 'api')
220		- $tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
221		- $classfile = str_replace('_', '', $tmpmodule);
222		- if ($module == 'supplierproposals')
223		- $classfile = 'supplier_proposals';
224		- if ($module == 'supplierorders')
225		- $classfile = 'supplier_orders';
226		- if ($module == 'supplierinvoices')
227		- $classfile = 'supplier_invoices';
228		- if ($module == 'ficheinter')
229		- $classfile = 'interventions';
230		- if ($module == 'interventions')
231		- $classfile = 'interventions';
232		-
233		- $dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
234		-
235		- $classname = ucwords($module);
236		-
237		- dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
238		-
239		- $res = false;
240		- if ($dir_part_file)
241		- $res = include_once $dir_part_file;
242		- if (! $res) {
243		- print 'API not found (failed to include API file)';
244		- header('HTTP/1.1 501 API not found (failed to include API file)');
245		- exit(0);
246		- }
247		-
248		- if (class_exists($classname))
249		- $api->r->addAPIClass($classname);
	218	+ $tmpmodule = $module;
	219	+ if ($tmpmodule != 'api')
	220	+ $tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
	221	+ $classfile = str_replace('_', '', $tmpmodule);
	222	+ if ($module == 'supplierproposals')
	223	+ $classfile = 'supplier_proposals';
	224	+ if ($module == 'supplierorders')
	225	+ $classfile = 'supplier_orders';
	226	+ if ($module == 'supplierinvoices')
	227	+ $classfile = 'supplier_invoices';
	228	+ if ($module == 'ficheinter')
	229	+ $classfile = 'interventions';
	230	+ if ($module == 'interventions')
	231	+ $classfile = 'interventions';
	232	+
	233	+ $dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
	234	+
	235	+ $classname = ucwords($module);
	236	+
	237	+ dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
	238	+
	239	+ $res = false;
	240	+ if ($dir_part_file)
	241	+ $res = include_once $dir_part_file;
	242	+ if (! $res) {
	243	+ print 'API not found (failed to include API file)';
	244	+ header('HTTP/1.1 501 API not found (failed to include API file)');
	245	+ exit(0);
	246	+ }
	247	+
	248	+ if (class_exists($classname))
	249	+ $api->r->addAPIClass($classname);
250	250	}
251	251
252	252	// TODO If not found, redirect to explorer

alxarafe / alixar

Push — master ( 49af33...3cffbe )

Status

Category

Indentation +100 added lines, -100 removed lines patch added patch discarded remove patch

Spacing +11 added lines, -11 removed lines patch added patch discarded remove patch

Braces +10 added lines, -6 removed lines patch added patch discarded remove patch

Indentation +83 added lines, -83 removed lines patch added patch discarded remove patch

Spacing +23 added lines, -23 removed lines patch added patch discarded remove patch

Braces +17 added lines, -9 removed lines patch added patch discarded remove patch

Indentation +121 added lines, -121 removed lines patch added patch discarded remove patch

Spacing +15 added lines, -15 removed lines patch added patch discarded remove patch

Braces +22 added lines, -13 removed lines patch added patch discarded remove patch

Indentation +495 added lines, -495 removed lines patch added patch discarded remove patch

Spacing +223 added lines, -223 removed lines patch added patch discarded remove patch

Braces +58 added lines, -41 removed lines patch added patch discarded remove patch

Spacing +2 added lines, -2 removed lines patch added patch discarded remove patch

Indentation +550 added lines, -550 removed lines patch added patch discarded remove patch

Spacing +65 added lines, -65 removed lines patch added patch discarded remove patch

Braces +28 added lines, -37 removed lines patch added patch discarded remove patch

Indentation +37 added lines, -37 removed lines patch added patch discarded remove patch

Braces +6 added lines, -9 removed lines patch added patch discarded remove patch

Spacing +21 added lines, -21 removed lines patch added patch discarded remove patch

Indentation +12 added lines, -12 removed lines patch added patch discarded remove patch

Spacing +29 added lines, -29 removed lines patch added patch discarded remove patch

Braces +12 added lines, -4 removed lines patch added patch discarded remove patch

Indentation +32 added lines, -32 removed lines patch added patch discarded remove patch

Spacing +35 added lines, -35 removed lines patch added patch discarded remove patch

Braces +69 added lines, -33 removed lines patch added patch discarded remove patch

		@@ -24,25 +24,25 @@ discard block
		block discarded – undo
24	24	* \file htdocs/api/index.php
25	25	*/
26	26
27		-if (! defined('NOCSRFCHECK')) define('NOCSRFCHECK','1'); // Do not check anti CSRF attack test
28		-if (! defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL','1'); // Do not check anti POST attack test
29		-if (! defined('NOREQUIREMENU')) define('NOREQUIREMENU','1'); // If there is no need to load and show top and left menu
30		-if (! defined('NOREQUIREHTML')) define('NOREQUIREHTML','1'); // If we don't need to load the html.form.class.php
31		-if (! defined('NOREQUIREAJAX')) define('NOREQUIREAJAX','1'); // Do not load ajax.lib.php library
32		-if (! defined("NOLOGIN")) define("NOLOGIN",'1'); // If this page is public (can be called outside logged session)
	27	+if (!defined('NOCSRFCHECK')) define('NOCSRFCHECK', '1'); // Do not check anti CSRF attack test
	28	+if (!defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL', '1'); // Do not check anti POST attack test
	29	+if (!defined('NOREQUIREMENU')) define('NOREQUIREMENU', '1'); // If there is no need to load and show top and left menu
	30	+if (!defined('NOREQUIREHTML')) define('NOREQUIREHTML', '1'); // If we don't need to load the html.form.class.php
	31	+if (!defined('NOREQUIREAJAX')) define('NOREQUIREAJAX', '1'); // Do not load ajax.lib.php library
	32	+if (!defined("NOLOGIN")) define("NOLOGIN", '1'); // If this page is public (can be called outside logged session)
33	33
34	34
35	35	// Force entity if a value is provided into HTTP header. Otherwise, will use the entity of user of token used.
36		-if (! empty($_SERVER['HTTP_DOLAPIENTITY'])) define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
	36	+if (!empty($_SERVER['HTTP_DOLAPIENTITY'])) define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
37	37
38	38
39		-$res=0;
40		-if (! $res && file_exists("../main.inc.php")) $res=include '../main.inc.php';
41		-if (! $res) die("Include of main fails");
	39	+$res = 0;
	40	+if (!$res && file_exists("../main.inc.php")) $res = include '../main.inc.php';
	41	+if (!$res) die("Include of main fails");
42	42
43	43	require_once DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/AutoLoader.php';
44	44
45		-call_user_func(function () {
	45	+call_user_func(function() {
46	46	$loader = Luracast\Restler\AutoLoader::instance();
47	47	spl_autoload_register($loader);
48	48	return $loader;
		@@ -59,13 +59,13 @@ discard block
		block discarded – undo
59	59	{
60	60	$langs->load("admin");
61	61	dol_syslog("Call Dolibarr API interfaces with module REST disabled");
62		- print $langs->trans("WarningModuleNotActive",'Api').'.<br><br>';
	62	+ print $langs->trans("WarningModuleNotActive", 'Api').'.<br><br>';
63	63	print $langs->trans("ToActivateModule");
64	64	exit;
65	65	}
66	66
67	67	// Test if explorer is not disabled
68		-if (preg_match('/api\/index\.php\/explorer/', $_SERVER["PHP_SELF"]) && ! empty($conf->global->API_EXPLORER_DISABLED))
	68	+if (preg_match('/api\/index\.php\/explorer/', $_SERVER["PHP_SELF"]) && !empty($conf->global->API_EXPLORER_DISABLED))
69	69	{
70	70	$langs->load("admin");
71	71	dol_syslog("Call Dolibarr API interfaces with module REST disabled");
		@@ -93,10 +93,10 @@ discard block
		block discarded – undo
93	93
94	94
95	95	// Set the flag to say to refresh (when we reload the explorer, production must be for API call only)
96		-$refreshcache=false;
97		-if (! empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' \|\| $reg[2] == '/swagger.json/root' \|\| $reg[2] == '/resources.json' \|\| $reg[2] == '/resources.json/root'))
	96	+$refreshcache = false;
	97	+if (!empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' \|\| $reg[2] == '/swagger.json/root' \|\| $reg[2] == '/resources.json' \|\| $reg[2] == '/resources.json/root'))
98	98	{
99		- $refreshcache=true;
	99	+ $refreshcache = true;
100	100	}
101	101
102	102
		@@ -107,8 +107,8 @@ discard block
		block discarded – undo
107	107	// See https://github.com/Luracast/Restler-API-Explorer for more info.
108	108	$api->r->addAPIClass('Luracast\\Restler\\Explorer');
109	109
110		-$api->r->setSupportedFormats('JsonFormat', 'XmlFormat', 'UploadFormat'); // 'YamlFormat'
111		-$api->r->addAuthenticationClass('DolibarrApiAccess','');
	110	+$api->r->setSupportedFormats('JsonFormat', 'XmlFormat', 'UploadFormat'); // 'YamlFormat'
	111	+$api->r->addAuthenticationClass('DolibarrApiAccess', '');
112	112
113	113	// Define accepted mime types
114	114	UploadFormat::$allowedMimeTypes = array('image/jpeg', 'image/png', 'text/plain', 'application/octet-stream');
		@@ -116,7 +116,7 @@ discard block
		block discarded – undo
116	116
117	117
118	118	// Call Explorer file for all APIs definitions
119		-if (! empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' \|\| $reg[2] == '/swagger.json/root' \|\| $reg[2] == '/resources.json' \|\| $reg[2] == '/resources.json/root'))
	119	+if (!empty($reg[1]) && $reg[1] == 'explorer' && ($reg[2] == '/swagger.json' \|\| $reg[2] == '/swagger.json/root' \|\| $reg[2] == '/resources.json' \|\| $reg[2] == '/resources.json/root'))
120	120	{
121	121	// Scan all API files to load them
122	122
		@@ -128,25 +128,25 @@ discard block
		block discarded – undo
128	128	// Search available module
129	129	dol_syslog("Scan directory ".$dir." for module descriptor files, then search for API files");
130	130
131		- $handle=@opendir(dol_osencode($dir));
	131	+ $handle = @opendir(dol_osencode($dir));
132	132	if (is_resource($handle))
133	133	{
134		- while (($file = readdir($handle))!==false)
	134	+ while (($file = readdir($handle)) !== false)
135	135	{
136		- if (is_readable($dir.$file) && preg_match("/^mod(.*)\.class\.php$/i",$file,$regmod))
	136	+ if (is_readable($dir.$file) && preg_match("/^mod(.*)\.class\.php$/i", $file, $regmod))
137	137	{
138	138	$module = strtolower($regmod[1]);
139	139	$moduledirforclass = getModuleDirForApiClass($module);
140	140	$modulenameforenabled = $module;
141		- if ($module == 'propale') { $modulenameforenabled='propal'; }
142		- if ($module == 'supplierproposal') { $modulenameforenabled='supplier_proposal'; }
143		- if ($module == 'ficheinter') { $modulenameforenabled='ficheinter'; }
	141	+ if ($module == 'propale') { $modulenameforenabled = 'propal'; }
	142	+ if ($module == 'supplierproposal') { $modulenameforenabled = 'supplier_proposal'; }
	143	+ if ($module == 'ficheinter') { $modulenameforenabled = 'ficheinter'; }
144	144
145	145	dol_syslog("Found module file ".$file." - module=".$module." - modulenameforenabled=".$modulenameforenabled." - moduledirforclass=".$moduledirforclass);
146	146
147	147	// Defined if module is enabled
148		- $enabled=true;
149		- if (empty($conf->$modulenameforenabled->enabled)) $enabled=false;
	148	+ $enabled = true;
	149	+ if (empty($conf->$modulenameforenabled->enabled)) $enabled = false;
150	150
151	151	if ($enabled)
152	152	{
		@@ -155,14 +155,14 @@ discard block
		block discarded – undo
155	155	// @todo : use getElementProperties() function ?
156	156	$dir_part = dol_buildpath('/'.$moduledirforclass.'/class/');
157	157
158		- $handle_part=@opendir(dol_osencode($dir_part));
	158	+ $handle_part = @opendir(dol_osencode($dir_part));
159	159	if (is_resource($handle_part))
160	160	{
161		- while (($file_searched = readdir($handle_part))!==false)
	161	+ while (($file_searched = readdir($handle_part)) !== false)
162	162	{
163	163	if ($file_searched == 'api_access.class.php') continue;
164	164
165		- if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i",$file_searched,$regapi))
	165	+ if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i", $file_searched, $regapi))
166	166	{
167	167	$classname = ucwords($regapi[1]);
168	168	$classname = str_replace('_', '', $classname);
		@@ -201,7 +201,7 @@ discard block
		block discarded – undo
201	201	}
202	202
203	203	// Call one APIs or one definition of an API
204		-if (! empty($reg[1]) && ($reg[1] != 'explorer' \|\| ($reg[2] != '/swagger.json' && $reg[2] != '/resources.json' && preg_match('/^\/(swagger\|resources)\.json\/(.+)$/', $reg[2], $regbis) && $regbis[2] != 'root')))
	204	+if (!empty($reg[1]) && ($reg[1] != 'explorer' \|\| ($reg[2] != '/swagger.json' && $reg[2] != '/resources.json' && preg_match('/^\/(swagger\|resources)\.json\/(.+)$/', $reg[2], $regbis) && $regbis[2] != 'root')))
205	205	{
206	206	$module = $reg[1];
207	207	if ($module == 'explorer') // If we call page to explore details of a service
		@@ -209,7 +209,7 @@ discard block
		block discarded – undo
209	209	$module = $regbis[2];
210	210	}
211	211
212		- $module=strtolower($module);
	212	+ $module = strtolower($module);
213	213	$moduledirforclass = getModuleDirForApiClass($module);
214	214
215	215	// Load a dedicated API file
		@@ -230,16 +230,16 @@ discard block
		block discarded – undo
230	230	if ($module == 'interventions')
231	231	$classfile = 'interventions';
232	232
233		- $dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
	233	+ $dir_part_file = dol_buildpath('/'.$moduledirforclass.'/class/api_'.$classfile.'.class.php', 0, 2);
234	234
235	235	$classname = ucwords($module);
236	236
237		- dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
	237	+ dol_syslog('Search /'.$moduledirforclass.'/class/api_'.$classfile.'.class.php => dir_part_file='.$dir_part_file.' classname='.$classname);
238	238
239	239	$res = false;
240	240	if ($dir_part_file)
241	241	$res = include_once $dir_part_file;
242		- if (! $res) {
	242	+ if (!$res) {
243	243	print 'API not found (failed to include API file)';
244	244	header('HTTP/1.1 501 API not found (failed to include API file)');
245	245	exit(0);

		@@ -24,21 +24,45 @@ discard block
		block discarded – undo
24	24	* \file htdocs/api/index.php
25	25	*/
26	26
27		-if (! defined('NOCSRFCHECK')) define('NOCSRFCHECK','1'); // Do not check anti CSRF attack test
28		-if (! defined('NOTOKENRENEWAL')) define('NOTOKENRENEWAL','1'); // Do not check anti POST attack test
29		-if (! defined('NOREQUIREMENU')) define('NOREQUIREMENU','1'); // If there is no need to load and show top and left menu
30		-if (! defined('NOREQUIREHTML')) define('NOREQUIREHTML','1'); // If we don't need to load the html.form.class.php
31		-if (! defined('NOREQUIREAJAX')) define('NOREQUIREAJAX','1'); // Do not load ajax.lib.php library
32		-if (! defined("NOLOGIN")) define("NOLOGIN",'1'); // If this page is public (can be called outside logged session)
	27	+if (! defined('NOCSRFCHECK')) {
	28	+ define('NOCSRFCHECK','1');
	29	+}
	30	+// Do not check anti CSRF attack test
	31	+if (! defined('NOTOKENRENEWAL')) {
	32	+ define('NOTOKENRENEWAL','1');
	33	+}
	34	+// Do not check anti POST attack test
	35	+if (! defined('NOREQUIREMENU')) {
	36	+ define('NOREQUIREMENU','1');
	37	+}
	38	+// If there is no need to load and show top and left menu
	39	+if (! defined('NOREQUIREHTML')) {
	40	+ define('NOREQUIREHTML','1');
	41	+}
	42	+// If we don't need to load the html.form.class.php
	43	+if (! defined('NOREQUIREAJAX')) {
	44	+ define('NOREQUIREAJAX','1');
	45	+}
	46	+// Do not load ajax.lib.php library
	47	+if (! defined("NOLOGIN")) {
	48	+ define("NOLOGIN",'1');
	49	+}
	50	+// If this page is public (can be called outside logged session)
33	51
34	52
35	53	// Force entity if a value is provided into HTTP header. Otherwise, will use the entity of user of token used.
36		-if (! empty($_SERVER['HTTP_DOLAPIENTITY'])) define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
	54	+if (! empty($_SERVER['HTTP_DOLAPIENTITY'])) {
	55	+ define("DOLENTITY", (int) $_SERVER['HTTP_DOLAPIENTITY']);
	56	+}
37	57
38	58
39	59	$res=0;
40		-if (! $res && file_exists("../main.inc.php")) $res=include '../main.inc.php';
41		-if (! $res) die("Include of main fails");
	60	+if (! $res && file_exists("../main.inc.php")) {
	61	+ $res=include '../main.inc.php';
	62	+}
	63	+if (! $res) {
	64	+ die("Include of main fails");
	65	+}
42	66
43	67	require_once DOL_DOCUMENT_ROOT.'/includes/restler/framework/Luracast/Restler/AutoLoader.php';
44	68
		@@ -146,7 +170,9 @@ discard block
		block discarded – undo
146	170
147	171	// Defined if module is enabled
148	172	$enabled=true;
149		- if (empty($conf->$modulenameforenabled->enabled)) $enabled=false;
	173	+ if (empty($conf->$modulenameforenabled->enabled)) {
	174	+ $enabled=false;
	175	+ }
150	176
151	177	if ($enabled)
152	178	{
		@@ -160,7 +186,9 @@ discard block
		block discarded – undo
160	186	{
161	187	while (($file_searched = readdir($handle_part))!==false)
162	188	{
163		- if ($file_searched == 'api_access.class.php') continue;
	189	+ if ($file_searched == 'api_access.class.php') {
	190	+ continue;
	191	+ }
164	192
165	193	if (is_readable($dir_part.$file_searched) && preg_match("/^api_(.*)\.class\.php$/i",$file_searched,$regapi))
166	194	{
		@@ -171,13 +199,11 @@ discard block
		block discarded – undo
171	199	{
172	200	//dol_syslog("Found API by index.php: classname=".$classname."Api for module ".$dir." into ".$dir_part.$file_searched);
173	201	$listofapis[strtolower($classname.'Api')] = $classname.'Api';
174		- }
175		- elseif (class_exists($classname))
	202	+ } elseif (class_exists($classname))
176	203	{
177	204	//dol_syslog("Found API by index.php: classname=".$classname." for module ".$dir." into ".$dir_part.$file_searched);
178	205	$listofapis[strtolower($classname)] = $classname;
179		- }
180		- else
	206	+ } else
181	207	{
182	208	dol_syslog("We found an api_xxx file (".$file_searched.") but class ".$classname." does not exists after loading file", LOG_WARNING);
183	209	}
		@@ -204,10 +230,12 @@ discard block
		block discarded – undo
204	230	if (! empty($reg[1]) && ($reg[1] != 'explorer' \|\| ($reg[2] != '/swagger.json' && $reg[2] != '/resources.json' && preg_match('/^\/(swagger\|resources)\.json\/(.+)$/', $reg[2], $regbis) && $regbis[2] != 'root')))
205	231	{
206	232	$module = $reg[1];
207		- if ($module == 'explorer') // If we call page to explore details of a service
	233	+ if ($module == 'explorer') {
	234	+ // If we call page to explore details of a service
208	235	{
209	236	$module = $regbis[2];
210	237	}
	238	+ }
211	239
212	240	$module=strtolower($module);
213	241	$moduledirforclass = getModuleDirForApiClass($module);
		@@ -216,19 +244,25 @@ discard block
		block discarded – undo
216	244	dol_syslog("Load a dedicated API file module=".$module." moduledirforclass=".$moduledirforclass);
217	245
218	246	$tmpmodule = $module;
219		- if ($tmpmodule != 'api')
220		- $tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
	247	+ if ($tmpmodule != 'api') {
	248	+ $tmpmodule = preg_replace('/api$/i', '', $tmpmodule);
	249	+ }
221	250	$classfile = str_replace('_', '', $tmpmodule);
222		- if ($module == 'supplierproposals')
223		- $classfile = 'supplier_proposals';
224		- if ($module == 'supplierorders')
225		- $classfile = 'supplier_orders';
226		- if ($module == 'supplierinvoices')
227		- $classfile = 'supplier_invoices';
228		- if ($module == 'ficheinter')
229		- $classfile = 'interventions';
230		- if ($module == 'interventions')
231		- $classfile = 'interventions';
	251	+ if ($module == 'supplierproposals') {
	252	+ $classfile = 'supplier_proposals';
	253	+ }
	254	+ if ($module == 'supplierorders') {
	255	+ $classfile = 'supplier_orders';
	256	+ }
	257	+ if ($module == 'supplierinvoices') {
	258	+ $classfile = 'supplier_invoices';
	259	+ }
	260	+ if ($module == 'ficheinter') {
	261	+ $classfile = 'interventions';
	262	+ }
	263	+ if ($module == 'interventions') {
	264	+ $classfile = 'interventions';
	265	+ }
232	266
233	267	$dir_part_file = dol_buildpath('/' . $moduledirforclass . '/class/api_' . $classfile . '.class.php', 0, 2);
234	268
		@@ -237,17 +271,19 @@ discard block
		block discarded – undo
237	271	dol_syslog('Search /' . $moduledirforclass . '/class/api_' . $classfile . '.class.php => dir_part_file=' . $dir_part_file . ' classname=' . $classname);
238	272
239	273	$res = false;
240		- if ($dir_part_file)
241		- $res = include_once $dir_part_file;
	274	+ if ($dir_part_file) {
	275	+ $res = include_once $dir_part_file;
	276	+ }
242	277	if (! $res) {
243	278	print 'API not found (failed to include API file)';
244	279	header('HTTP/1.1 501 API not found (failed to include API file)');
245	280	exit(0);
246	281	}
247	282
248		- if (class_exists($classname))
249		- $api->r->addAPIClass($classname);
250		-}
	283	+ if (class_exists($classname)) {
	284	+ $api->r->addAPIClass($classname);
	285	+ }
	286	+ }
251	287
252	288	// TODO If not found, redirect to explorer
253	289	//var_dump($api->r->apiVersionMap);