openvk/ServiceAPI/Apps.php

<?php

declare(strict_types=1);

namespace openvk\ServiceAPI;

use openvk\Web\Models\Entities\APIToken;
use openvk\Web\Models\Entities\User;
use openvk\Web\Models\Repositories\APITokens;
use openvk\Web\Models\Repositories\Applications;
use WhichBrowser;

class Apps implements Handler
{
    private $user;
    private $apps;

    public function __construct(?User $user)
    {
        $this->user = $user;
        $this->apps = new Applications();
    }

    public function getUserInfo(callable $resolve, callable $reject): void
    {
        $hexId       = dechex($this->user->getId());
        $sign        = hash_hmac("sha512/224", $hexId, CHANDLER_ROOT_CONF["security"]["secret"], true);
        $marketingId = $hexId . "_" . base64_encode($sign);

        $resolve([
            "id"           => $this->user->getId(),
            "marketing_id" => $marketingId,
            "name"         => [
                "first" => $this->user->getFirstName(),
                "last"  => $this->user->getLastName(),
                "full"  => $this->user->getFullName(),
            ],
            "ava" => $this->user->getAvatarUrl(),
        ]);
    }

    public function updatePermission(int $app, string $perm, string $state, callable $resolve, callable $reject): void
    {
        $app = $this->apps->get($app);
        if (!$app || !$app->isEnabled()) {
            $reject("No application with this id found");
            return;
        }

        if (!$app->setPermission($this->user, $perm, $state == "yes")) {
            $reject("Invalid permission $perm");
        }

        $resolve(1);
    }

    public function pay(int $appId, float $amount, callable $resolve, callable $reject): void
    {
        $app = $this->apps->get($appId);
        if (!$app || !$app->isEnabled()) {
            $reject("No application with this id found");
            return;
        }

        if ($amount < 0) {
            $reject(552, "Payment amount is invalid");
            return;
        }

        $coinsLeft = $this->user->getCoins() - $amount;
        if ($coinsLeft < 0) {
            $reject(41, "Not enough money");
            return;
        }

        $this->user->setCoins($coinsLeft);
        $this->user->save();
        $app->addCoins($amount);

        $t = time();
        $resolve($t . "," . hash_hmac("whirlpool", "$appId:$amount:$t", CHANDLER_ROOT_CONF["security"]["secret"]));
    }

    public function withdrawFunds(int $appId, callable $resolve, callable $reject): void
    {
        $app = $this->apps->get($appId);
        if (!$app) {
            $reject("No application with this id found");
            return;
        } elseif ($app->getOwner()->getId() != $this->user->getId()) {
            $reject("You don't have rights to edit this app");
            return;
        }

        $coins = $app->getBalance();
        $app->withdrawCoins();
        $resolve($coins);
    }

    public function getRegularToken(string $clientName, bool $acceptsStale, callable $resolve, callable $reject): void
    {
        $token = null;
        $stale = true;
        if ($acceptsStale) {
            $token = (new APITokens())->getStaleByUser($this->user->getId(), $clientName);
        }

        if (is_null($token)) {
            $stale = false;
            $token = new APIToken();
            $token->setUser($this->user);
            $token->setPlatform($clientName ?? (new WhichBrowser\Parser(getallheaders()))->toString());
            $token->save();
        }

        $resolve([
            'is_stale' => $stale,
            'token'    => $token->getFormattedToken(),
        ]);
    }
}