siteSettings.data

<?php


  /*
   * siteSettings
   *
   * Configuration script for the Credit union to allow them to customize
   * the languages, menu, content theme
   *
   * Possible changes to the brand.css would need to be uploaded and not done through
   *  this screen.
   *
   */


  // ** Include these scripts, mostly to ensure that the Monitor security is maintained
  $monLibrary= dirname(__FILE__) . "/../library";
  require_once("$monLibrary/cu_top.i");
  require_once("$monLibrary/ck_hticket.i");

  // ** Use the permmissions from the main script siteSettings
  if (!CheckPerm($link, $Hu, 'siteSettings', $_SERVER['REMOTE_ADDR'])) {
    // ** Permissions failed
    // ** redirect to new page
    header("Location: /hcuadm/hcu_noperm.prg");
    exit;
  }


  /* Expecting the following fields
   * user_name - credit union name
   * loadSettings - This will determine which directory the settings will be saved
   *                - The options are
   *                production - saved to the production directory
   *                preview - saved to the preview directory
   *                savetoproduction - the preview hcuSettings.i will be copied to the production directory
   * langSelect - Languages selected for Home Banking
   * postScriptProxy - This will be a JSON string of the array for the script proxies being used
   * postContentTheme - A string of the content theme that is selected
   * postLogout - A JSON string containing the name to put at the footer and an http link to go to when any logout clicked
   */

  $HB_ENV = Array();
  $string = array("filter" => FILTER_SANITIZE_STRING);
  $array = HCUFILTER_INPUT_ARRAY;
  $encodedArray = array("filter" => FILTER_DEFAULT);
  $dms_ok = Array('user_name' => $string, 'loadSettings' => $string, 'langSelect' => $array, 'postScriptProxy' => $string, 'postContentTheme' => $string,
    "postLogout" => array('filter' => FILTER_SANITIZE_STRING, 'options' => array( "flags" => FILTER_FLAG_NO_ENCODE_QUOTES)), "postil" => $encodedArray, "operation" => $string, "fileNames" => $string);
  HCU_ImportVars($HB_ENV, 'HCUPOST', $dms_ok);

  $username = HCU_array_key_exists("user_name", $HB_ENV["HCUPOST"]) ? trim($HB_ENV["HCUPOST"]["user_name"]) : "";
  $operation = HCU_array_key_exists("operation", $HB_ENV["HCUPOST"]) ? trim($HB_ENV["HCUPOST"]["operation"]) : "";
  $fileNames = HCU_array_key_exists("fileNames", $HB_ENV["HCUPOST"]) ? trim($HB_ENV["HCUPOST"]["fileNames"]) : "";

  $retStatus_ary = Array(
                       'homecuInfo' => '',
                       'homecuErrors' => Array(),
                       'homecuData' => ''
                       );


  // * *use this for

    // This operation happens when you use the file uploader to upload a file.
    if ($operation == "loadImage") {
      try {

        $fileErrors = array(
        "1" => "1: The file you tried to upload is just too big.  The allowable limit is 10MB.",
        "2" => "2: The file you tried to upload is just too big.  The allowable limit is 10MB.",
        "3" => "3: The file was only partially uploaded",
        "4" => "4: no file was uploaded");

        $fileDir = "/home/$username/public_html/images/";
        if (!is_writable($fileDir)) {
          throw new exception("Image Directory is not set up correctly.", 1);
        }

        $file = $_FILES['photoUpload'];
        $filepath = $fileDir . basename($file["name"]);

        if ($file["error"] != 0) {
          $errorInt = $file["error"];
          throw new exception(HCU_array_key_exists($errorInt, $fileErrors) ? $fileErrors[$errorInt] : "$errorInt: Unknown error.", 2);
        }

        $filetmp = $file['tmp_name'];
        if (!@move_uploaded_file($filetmp, $filepath)) {
          @unlink ($filetmp);
          throw new exception("Couldn't post the file where it belongs.", 3);
        }

        @chmod($filepath, 0644);
        $returnArray = array("code" => "000");
      } catch(exception $e) {
        $returnArray = array("error" => $e->getMessage(), "code" => $e->getCode());
      }

      header('Content-type: application/json');
      print HCU_JsonEncode($returnArray);

      // This operation happens when you click on the "X" in the file upload file list.
    } else if ($operation == "removeImage") {
        try {

          $fileDir = "/home/$username/public_html/images/";
          if (!is_writable($fileDir)) {
            throw new exception("Image Directory is not set up correctly.", 1);
          }

          $filepath = $fileDir . $fileNames;
          if (@file_exists($filepath) && !@unlink($filepath)) { // Not a problem if the file doesn't exist to begin with.
            throw new exception("File could not be deleted.", 2);
          }

          $returnValue = ""; // Empty string is success.
        } catch(exception $e) {
          $returnValue = $e->getMessage();
        }

      print $returnValue;
    } else {

    try {
        if ($HB_ENV['HCUPOST']['loadSettings'] == 'preview' || $HB_ENV['HCUPOST']['loadSettings'] == 'production') {
      /*
       *  Create the cuSettings Array
       *
       */

      /*
       * Language
       *  -- Use the master list and trim the values that were NOT posted
       */
      $masterLangList = returnMasterLanguageList();

      // * Ensure langSelect is an array prior to saving
      $langSelect = HCU_array_key_value("langSelect", $HB_ENV["HCUPOST"]);
      $langSelect = $langSelect === false || !is_array($langSelect) ? array() : $langSelect;
      $HB_ENV["HCUPOST"]["langSelect"] = $langSelect;

      // ** I Need to push English onto this list.. BECAUSE it is a disabled checkbox
        // * ON the form and does NOT get included in the POST
      array_push($HB_ENV['HCUPOST']['langSelect'], 'en_US');

      $selectedLang = array_intersect_key($masterLangList, array_flip($HB_ENV['HCUPOST']['langSelect']));

      $cuSettings = Array(
                          'language' => $selectedLang,
                          'contentTheme' => $HB_ENV['HCUPOST']['postContentTheme'],
                          'Logout' => $HB_ENV['HCUPOST']['postLogout'],
                          "imageLocations" => HCU_JsonDecode($HB_ENV["HCUPOST"]["postil"])
      );
    } elseif ($HB_ENV['HCUPOST']['loadSettings'] == 'savetoproduction') {
      // ** WE will be copying the preview to production

    } else {
      // ** ERROR
      throw new Exception('Invalid parameter setting.  Action cancelled.');
    }

    /*
     * File system saving
     *
     *    1 - Keep a hidden copy of an older version
     *      a - This should be named .hcuSettings.i
     *    2 - Save the json string the new settings to the bankingIncludes directory
     *
     */
    $cuSettingsFileName = "hcuSettings.i";
    // ** Configure location of the hcuSettings file for the Credit Union
    $cuSettingsDir = "/home/{$HB_ENV['HCUPOST']['user_name']}/public_html/bankingIncludes/";
    $cuPublicDir = "/home/{$HB_ENV['HCUPOST']['user_name']}/public_html/";


    if ($HB_ENV['HCUPOST']['loadSettings'] == 'preview' || $HB_ENV['HCUPOST']['loadSettings'] == 'production') {
      $cuSaveSettingsDir = $cuSettingsDir . $HB_ENV['HCUPOST']['loadSettings'] . '/';
      // ** Configure location of the default hcuSettings
      $cuDefaultSettingsDir = "/home/httpd/homecu/bankingIncludes/";
      $cuLoadSettingsFile = '';
      if (is_dir($cuSaveSettingsDir)) {
        // ** Directory found - prepare to write
        if (is_readable($cuSaveSettingsDir . $cuSettingsFileName)) {
          // ** we have a current version.. make a backup
          // ** File copy the current to a different name
          copy($cuSaveSettingsDir . $cuSettingsFileName, $cuSaveSettingsDir . '.' . $cuSettingsFileName);
        }
        $fhSettings = fopen($cuSaveSettingsDir . $cuSettingsFileName, 'w');
        fwrite($fhSettings, HCU_JsonEncode($cuSettings));
        fclose($fhSettings);
        $retStatus_ary['homecuInfo'] = "Credit union {$HB_ENV['HCUPOST']['loadSettings']} settings updated.";
      } else {
        // ** Directory NOT FOUND.. HOW is that possible
        throw new Exception('Directory not found for the credit union.');
      }
    } else {
      // ** We want to copy the preview file to the production
      $cuSourceSettingsDir = $cuSettingsDir . 'preview/';
      $cuDestSettingsDir = $cuSettingsDir . 'production/';
      if (is_readable($cuSourceSettingsDir . $cuSettingsFileName)) {
        if (is_readable($cuDestSettingsDir . $cuSettingsFileName)) {
          // ** we have a current version.. make a backup
          // ** File copy the current to a different name
          copy($cuDestSettingsDir . $cuSettingsFileName, $cuDestSettingsDir . '.' . $cuSettingsFileName);
        }
        copy($cuSourceSettingsDir . $cuSettingsFileName, $cuDestSettingsDir . $cuSettingsFileName);
        $retStatus_ary['homecuInfo'] = 'Credit Union Preview settings saved to production.';
      } else {
        throw new Exception('Preview settings not found.  Unable to save to production.');
      }
    }

  } catch (Exception $ex) {
    $retStatus_ary['homecuErrors'][] = "Unexpected error while saving.  " . $ex->getMessage();
  }
  // ** Prepare the package for returning
  header('Content-type: application/json');

  print HCU_JsonEncode(Array("Results" => Array($retStatus_ary)));

}