CUDirect_API.i

<?php
/*
 *  07-2019 Added from Mammoth, left most comments "as is." Made use of
 * existing Odyssey functions where appropriate, eliminated duplicate
 * functions, and moved shared ones to hcuConnect.i.
 *
 * SSO flow
 * CuDir_config to set parameters
 * populate mir
 * $MIR = fetch_mir($Cu, $Cn);
 *      $MIR['status']['status'] =  101 is only usable value.
 *                                  999 is connection err,
 *                                  anything else is data err
 *      Remember Mammoth fetch_mir returns camelcase keys
 *      Force to lowercase so this is Odyssey-ready
 *      Also Mammoth is $MIR['info'], Odyssey is $MIR['data']
 *
 * $reqMIR = array(
  'accountnumber' => 1,
  'firstname' => 1,
  'lastname' => 1,
  'address1' => 1,
  'city' => 1,
  'state' => 1,
  'zip' => 1,
  'phonenumbers' => 1
  );
 * $parsedMIR = populateMIR($MIR['data'], $Ml, $reqMIR, 'Y-m-d', 'named', true);
 * throw error if $parsedMIR['status']['response'] is false
 *
 * build sso payload
 * call CuDir_embcurl to get URI
 * redirect to URI
 */

/**
 * Set up config from Trusted Details. Note parms is by reference, is modified
 * when this function is through with it.
 * @param array $parms
 * @throws Exception
 * @return void
 */
function CuDir_config(&$parms) {

  $parms['devMode'] = (!HCU_array_key_value('devMode', $parms)) ? 0 : HCU_array_key_value('devMode', $parms);
  if ($parms['devMode']) {
     // External Services / User Management
    $parms['CuDirOrg'] = HCU_array_key_value('devOrg', $parms);
    // HomeCU login
    $parms['CuDirUser'] = HCU_array_key_value('devUser', $parms);
    // HomeCU password
    $parms['CuDirPass'] = HCU_array_key_value('devPass', $parms);
    // Mobile Services / Deposits & History
    $parms['CuDirURL'] = HCU_array_key_value('devURL', $parms);

  } else {
    // External Services / User Management
    $parms['CuDirOrg'] = HCU_array_key_value('prdOrg', $parms);
    // HomeCU login
    $parms['CuDirUser'] = HCU_array_key_value('prdUser', $parms);
    // HomeCU password
    $parms['CuDirPass'] = HCU_array_key_value('prdPass', $parms);
    // Mobile Services / Deposits & History
    $parms['CuDirURL'] = HCU_array_key_value('prdURL', $parms);
  }

  if (
    empty($parms['CuDirOrg']) ||
    empty($parms['CuDirUser']) ||
    empty($parms['CuDirPass']) ||
    empty($parms['CuDirURL']
  )) {
    throw new Exception("Missing Parameters", 100);
  }
}

/**
 * HomeCU implementation supports
 *  Primary Applicant only - no joint account owners
 *  Personal accounts only - no business accounts
 *
 * @param string $CuDirOrg
 * @param string $CuDirUser
 * @param string $CuDirPass
 * @param string $mbrAccount
 * @param array $mir
 * @return array
 */
function CuDir_buildSSOPayload($CuDirOrg, $CuDirUser, $CuDirPass, $mbrAccount, $mir) {

  try {
    $return['status']['response'] = true;
    $return['status']['message'] = 'Success';

    $req_string = '<?xml version="1.0" encoding="UTF-8"?>
<env:Envelope xmlns:xsd="http://www.w3.org/2001/XMLSchema" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
xmlns:tns="http://www.cudl.com/CUDLConnect/" xmlns:env="http://schemas.xmlsoap.org/soap/envelope/"
xmlns:ins0="http://www.cudl.com/CUDLConnect">
<env:Body>
<tns:ProcessSOAPMessage>
<CUDLConnect xmlns="http://www.cudl.com/CUDLConnect" xmlns:xsd="http://www.w3.org/2001/XMLSchema"
xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" Version="1.0" Direction="Request" TargetAction="Other" OtherAction="GET SSO TOKEN">
<CUDLAuthentication Version="1.0">
<UserID>' . $CuDirUser . '</UserID>
<Password>' . $CuDirPass . '</Password>
<OrganizationCode>' . $CuDirOrg . '</OrganizationCode>
</CUDLAuthentication>
<CUDLAccountLink>
<ApplicationID>0</ApplicationID>
<Applicants>
<Applicant ApplicantType="PrimaryApplicant">
<EmailAddresses>
<EmailAddress>' . $mir['email'] . '</EmailAddress>
</EmailAddresses>
<Name Type="PersonName">
<First>' . $mir['firstname'] . '</First>
';

  if (HCU_array_key_value('middlename', $mir)) {
    $req_string .= '<Middle>' . $mir['middlename'] . '</Middle>
';
  }

  $req_string .= '<Last>' . $mir['lastname'] . '</Last>
</Name>
';

  if (HCU_array_key_value('dob', $mir)) {
    $req_string .= '<DateOfBirth>' . $mir['dob'] . '</DateOfBirth>
';
  }

  $req_string .= '<SSN>' . $mir['ssn'] . '</SSN>
<MemberAccountNumber>' . $mbrAccount . '</MemberAccountNumber>
<IsMember>true</IsMember>
<Addresses>
<Address AddressType="Home">
<Address1>' . $mir['address1'] . '</Address1>
';

  if (HCU_array_key_value('address2', $mir)) {
    $req_string .= '<Middle>' . $mir['address2'] . '</Middle>
';
  }

  $req_string .= '<City>' . $mir['city'] . '</City>
<State>' . $mir['state'] . '</State>
<Zip>' . $mir['zip'] . '</Zip>
</Address>
</Addresses>
<PhoneNumbers>
';

  if (HCU_array_key_exists('phonenumbers', $mir)) {
  foreach ($mir['phonenumbers'] as $ph => $phoneitm) {
    $req_string .= '<PhoneNumber PhoneNumberType="' . $phoneitm['name'] . '">
<Number>' . $phoneitm['number'] . '</Number>
</PhoneNumber>
';
    }
  }

  $req_string .= '</PhoneNumbers>
</Applicant>
</Applicants>
</CUDLAccountLink>
<OtherData>
<InternetApplication>
<SSOUserID>' . $CuDirOrg . ":" . $mbrAccount . '</SSOUserID>
</InternetApplication>
</OtherData>
</CUDLConnect>
</tns:ProcessSOAPMessage>
</env:Body>
</env:Envelope>';

    $return['data'] = $req_string;

  } catch (Exception $e) {
      $return['status']['response'] = false;
      $return['status']['message'] = $e->getMessage() . " (" . $e->getLine() . ")";
      $return['data'] = [];
  }

  return $return;
}

/**
 * Curl the URL set in trusted details (CuDirURL) Dev mode is different URL.
 * @param array $parms
 * @param string $reqURL
 * @param string $reqMethod
 * @param array $reqHeaders
 * @param string $reqData
 * @return array
 */
function CuDir_embcurl($parms, $reqURL, $reqMethod, $reqHeaders, $reqData = '') {

  $curlopts = [
    CURLOPT_RETURNTRANSFER  => 1,
    CURLOPT_SSL_VERIFYPEER  => 0,
    CURLOPT_SSL_VERIFYHOST  => 0,
    CURLOPT_HEADER          => FALSE,
    CURLOPT_URL             => $reqURL
  ];

  $ch = @curl_init();
  curl_setopt_array($ch, $curlopts);

  if ($reqMethod != 'GET') {
    curl_setopt($ch, CURLOPT_CUSTOMREQUEST, $reqMethod);
  }

  if (strlen($reqData) > 0) {
    curl_setopt($ch, CURLOPT_POSTFIELDS, $reqData);
  }

  if (count($reqHeaders)) {
    curl_setopt($ch, CURLOPT_HTTPHEADER, $reqHeaders);
  }

  $response = curl_exec($ch);

  if (isset($parms["logging"]) && ($parms["logging"] == "enabled")) {

    // get the environment info passed in
    $logParms = $parms["environment"];
    // the id used across all communications in session
    $logParms["token"] = '';
    // the id for this transaction
    $logParms["txnId"] = time();
    // the request
    $logParms["request"] = "curl ";

    if ($reqMethod != 'GET') {
      $logParms["request"] .= "-X $reqMethod ";
    }

    if (is_array($reqHeaders)) {
      foreach ($reqHeaders as $hdr) {
        $logParms["request"] .= "-H '$hdr' ";
      }
    }

    if (strlen($reqData) > 0) {
      // the request
      $logParms["request"] .= "-d '$reqData' ";
    }

    // the request
    $logParms['logPoint'] = 'CU Direct SSO';
    $logParms["request"] .= "'$reqURL' ";
    $logParms["reply"] = print_r(curl_getinfo($ch),true);
    $logParms["reply"] .= "\n$response";
    LogSSOActivity($logParms);
  }

  $respERR = '';
  $respHTTP = curl_getinfo($ch, CURLINFO_HTTP_CODE);
  $respCURL = curl_errno($ch);

  if ($respCURL) {
    // curl error
    $respERR = "HCUERROR: Connection Failed cURL $respCURL";
  } elseif ($respHTTP > 400 && $respHTTP < 600) {
    // HTTP Response 4xx client error or 5xx server error
    $respERR = "HCUERROR: Connection Failed HTTP $respHTTP";
  } elseif (!isset($response) || $response == '') {
    // no response
    $respERR = "HCUERROR: Empty Response";
  }

  if ($respERR == '') {
    //set xml to catch errors, and remember the current setting
    $xmlerr_setting = libxml_use_internal_errors(true);
    $xml = simplexml_load_string($response);
    // retrieve any errors encountered on the load (@todo this is not used anywhere)
    $xmlerrors = libxml_get_errors();
    // clear the internal buffer
    libxml_clear_errors();
    // put the setting back to previous state
    libxml_use_internal_errors($xmlerr_setting);

    if (!is_object($xml)) {
      $respERR = "HCUERROR INVALID XML: ";
      // if we need to print ea. error this would do it
      // but really just want to know the doc. didn't load
      // foreach ($xmlerrors as $error) {
      //  $respERR .= $error->message;
      // }
    } else {

      $respToken = '';
      $respBURL = '';

      // look for soap level error
      $xml->registerXPathNamespace('s', "http://schemas.xmlsoap.org/soap/envelope/");
      $errorresponse = $xml->xpath("//s:Fault");

      if (is_array($errorresponse) && count($errorresponse)) {
        $respERR = "HCUERROR: " . $errorresponse[0]->faultcode . " " . $errorresponse[0]->faultstring;

      } else {
        // got this far, guess good document first -
        $xml->registerXPathNamespace('cudir', 'http://www.cudl.com/CUDLConnect');
        // xml always returns an array.  But there will only by 1, so use [0]
        $respToken = (string) $xml->xpath("//cudir:SSOToken")[0];
        $respBURL = (string) $xml->xpath("//cudir:BaseURL")[0];

        if (empty($respToken) || empty($respBURL)) {
          // @todo not used anywhere
          $respAPI = $xml->xpath("//cudir:CUDLConfirmation")[0];
          $respERR = "HCUERROR: Empty Token or URL" ;
        } else {
          $respERR = "";
        }
      }
    }
  }

  curl_close($ch);
  // return array('Error' => $respERR, 'Token' => (string) $respToken, 'BaseURL' => (string) $respBURL);
  return [
    'Error' => $respERR,
    'Token' => $respToken,
    'BaseURL' => $respBURL
  ];
}