ekke
933bfcf4c0
Iframe embed for the Permitting app (LUPMIS2_Reusable_Mapping_Concept §3.2): - public/embed.php — SSO + production gate + frame-ancestors CSP + whitelisted URL params (mode, lon/lat/zoom, upn, basemap, application_code); injects window.LUPMIS_SESSION + window.LUPMIS_EMBED. - public/.htaccess — clean /embed URL (rewrite before the SPA fallback). - src/embed-bridge.js — postMessage protocol: out ready / parcel:select / parcel:cleared / error; in set:view / set:selected / clear:selected / set:basemap. Visual highlight via a dedicated VectorLayer; pending-UPN queue resolved as parcels stream in. - main.js — reads window.LUPMIS_EMBED, gates the normal click/dblclick handlers in permit mode, exposes parcelsLayer to module scope, makes it visible and hands it to the bridge after loadParcels(). - index.html — CSS for body.embed-mode-permit hides navbar/dock/offcanvas and lets the map fill the iframe. - LUPMIS2_Permit_Map_Integration.docx — integration instructions for the Permitting team (contract, show.blade.php changes, phasing). Local lu_parcels structural refactor: - src/database.js — parcels table now mirrors spatial.lu_parcels with explicit columns (upn, style, landuse, zone_code/name, sector, block, parcel_no, prop_no, st_name, prop_add, fac_name, min/max_height, eff_date, lp_name, locality, mmda, last_update, remarks, geom→geometry_wkt, created_at, updated_at, districtid) plus local-only status/fetched_at. Drop-and-recreate migration off `upn` presence. saveParcels wraps the ~25k inserts in a transaction; numeric coercion via numOrNull. updateParcel/insertNewParcel write individual columns. - main.js parcelsToGeoJSON — handles GeoJSON `geom` object (API) and `geometry_wkt` string (local cache); skips housekeeping fields. Production access guard + no-district overlay: - public/index.php — on *.lupmis4luspa.org, redirect to the SSO portal if no session. - src/remotedb.js resolveDistrictId — no silent fallback to '1' for an authenticated user; dev mode (no session at all) keeps the fallback. - main.js — blocking overlay if the session lacks district_id; init aborts so no API call is made with the wrong scope. LayerSwitcher ordering fix: - MapView.initEditBar + MapTools — find the Overlays group by reference / title instead of assuming it's the last layer (the GPS layers add-layered on top in the constructor broke that assumption). Service Worker v8 → v9 to evict stale shell/module caches on deploy. Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
132 lines
7.3 KiB
PHP
132 lines
7.3 KiB
PHP
<?php
|
|
/**
|
|
* LUPMIS2 PWA — Authenticated entry point
|
|
*
|
|
* This file replaces a plain index.html as the directory index in production.
|
|
* It:
|
|
* 1. Picks up the LUSPA SSO cookie (sso_auth_token) set by the central
|
|
* login at https://lupmis4luspa.org/sso/.
|
|
* 2. Validates the token server-side against the SSO endpoint.
|
|
* 3. Populates a PHP session with the authenticated user's profile
|
|
* (user_id, district_id, region_id, full_name, ua_id, …).
|
|
* 4. Reads the built index.html that Vite produces and injects the
|
|
* session payload as a JavaScript global `window.LUPMIS_SESSION` —
|
|
* the PWA reads this on startup (see src/remotedb.js) to scope every
|
|
* API call to the logged-in user's district.
|
|
*
|
|
* In local development (Vite serves index.html directly without PHP) the
|
|
* global is absent and the PWA falls back to a hard-coded district for
|
|
* testing. See remotedb.js getApiCredentials().
|
|
*
|
|
* Adapted from auth code provided by the LUSPA authentication team
|
|
* (FromKwesi / 20260527 / index.php).
|
|
*/
|
|
session_start();
|
|
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
// SSO authentication — validate the cookie if we don't already have a session
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
if (!isset($_SESSION['user_id']) && isset($_COOKIE['sso_auth_token'])) {
|
|
$plainToken = $_COOKIE['sso_auth_token'];
|
|
$validate_url = 'https://lupmis4luspa.org/sso/validate?token=' . urlencode($plainToken);
|
|
|
|
$curl = curl_init();
|
|
curl_setopt_array($curl, [
|
|
CURLOPT_URL => $validate_url,
|
|
CURLOPT_RETURNTRANSFER => true,
|
|
CURLOPT_ENCODING => "",
|
|
CURLOPT_MAXREDIRS => 10,
|
|
CURLOPT_TIMEOUT => 30,
|
|
CURLOPT_HTTP_VERSION => CURL_HTTP_VERSION_1_1,
|
|
CURLOPT_CUSTOMREQUEST => "GET",
|
|
CURLOPT_HTTPHEADER => [ "Content-Type: application/xml" ],
|
|
]);
|
|
$response = curl_exec($curl);
|
|
$httpCode = curl_getinfo($curl, CURLINFO_HTTP_CODE);
|
|
curl_close($curl);
|
|
|
|
if ($httpCode === 200) {
|
|
$data = json_decode($response, true);
|
|
if (
|
|
is_array($data)
|
|
&& isset($data['valid']) && $data['valid'] === true
|
|
&& isset($data['logged_in_user']) && is_array($data['logged_in_user'])
|
|
) {
|
|
// Copy all returned user fields into the session
|
|
foreach ($data['logged_in_user'] as $key => $value) {
|
|
$_SESSION[$key] = $value;
|
|
}
|
|
}
|
|
} else {
|
|
// Token rejected by the SSO server — clear the stale cookie so the
|
|
// browser stops sending it. Domain `.lupmis4luspa.org` covers all
|
|
// subdomains (so SSO logout works from the PWA too).
|
|
setcookie('sso_auth_token', '', time() - 3600, '/', '.lupmis4luspa.org');
|
|
}
|
|
}
|
|
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
// Production access guard
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
// On the public production host, calling this file without a valid SSO session
|
|
// is not allowed — bounce the visitor to the central LUSPA login portal. On
|
|
// local development (any host that is not *.lupmis4luspa.org, e.g. localhost,
|
|
// 127.0.0.1, a developer's .local hostname) the guard is bypassed so the PHP
|
|
// entry point can still be exercised directly during testing.
|
|
$host = $_SERVER['HTTP_HOST'] ?? '';
|
|
$isProduction = (bool) preg_match('/(^|\.)lupmis4luspa\.org$/i', $host);
|
|
if ($isProduction && !isset($_SESSION['user_id'])) {
|
|
header('Location: https://lupmis4luspa.org/', true, 302);
|
|
exit;
|
|
}
|
|
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
// Build the payload exposed to the PWA as window.LUPMIS_SESSION
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
$payload = [];
|
|
if (isset($_SESSION['user_id'])) {
|
|
$payload = [
|
|
'user_id' => $_SESSION['user_id'] ?? null,
|
|
'ua_id' => $_SESSION['ua_id'] ?? null,
|
|
'username' => $_SESSION['username'] ?? null,
|
|
'title' => $_SESSION['title'] ?? null,
|
|
'full_name' => $_SESSION['full_name'] ?? null,
|
|
'email' => $_SESSION['email'] ?? null,
|
|
'user_type' => $_SESSION['user_type'] ?? null,
|
|
'phone' => $_SESSION['phone'] ?? null,
|
|
'ua_position' => $_SESSION['ua_position'] ?? null,
|
|
'region_id' => $_SESSION['region_id'] ?? null,
|
|
'district_id' => $_SESSION['district_id'] ?? null,
|
|
];
|
|
}
|
|
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
// Read the built index.html and inject the session as a JS global
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
$indexPath = __DIR__ . '/index.html';
|
|
$html = is_readable($indexPath)
|
|
? file_get_contents($indexPath)
|
|
: '<!DOCTYPE html><html><body><h1>LUPMIS2 PWA</h1><p>index.html is missing from this deployment.</p></body></html>';
|
|
|
|
// Encode safely for inline <script> — the JSON flags below escape
|
|
// characters that could break the HTML parser (<, >, &, ', ").
|
|
$sessionJson = json_encode(
|
|
$payload,
|
|
JSON_UNESCAPED_SLASHES | JSON_HEX_TAG | JSON_HEX_AMP | JSON_HEX_APOS | JSON_HEX_QUOT
|
|
);
|
|
$inject = "<script>window.LUPMIS_SESSION = {$sessionJson};</script>";
|
|
|
|
// Insert right after the opening <head> tag
|
|
$html = preg_replace('/<head\b[^>]*>/i', '$0' . "\n " . $inject, $html, 1);
|
|
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
// Serve
|
|
// ────────────────────────────────────────────────────────────────────────────
|
|
header('Content-Type: text/html; charset=utf-8');
|
|
// Don't let intermediaries cache an authenticated response — the next visit
|
|
// might be a different user. Asset hashes still let static files be cached.
|
|
header('Cache-Control: no-store, must-revalidate');
|
|
header('Pragma: no-cache');
|
|
|
|
echo $html;
|