add functions errorLog, badRequest

simonLeary42 · simonLeary42 · commit 42091f8e2244 · 2025-04-29T15:45:15.000-04:00
diff --git a/resources/lib/UnitySite.php b/resources/lib/UnitySite.php
@@ -3,13 +3,13 @@
 namespace UnityWebPortal\lib;
 
 use phpseclib3\Crypt\PublicKeyLoader;
-use UnityWebPortal\lib\exceptions\TestingDieException;
+use UnityWebPortal\lib\exceptions\PhpUnitNoDieException;
 
 class UnitySite
 {
     public static function die($x)
     {
-        if ($GLOBALS["PHPUNIT_NO_DIE_PLEASE"] ?? false) {
+        if (@$GLOBALS["PHPUNIT_NO_DIE_PLEASE"] == true) {
             throw new PhpUnitNoDieException(strval($x));
         } else {
             \die($x);
@@ -20,10 +20,39 @@ public static function redirect($destination)
     {
         if ($_SERVER["PHP_SELF"] != $destination) {
             header("Location: $destination");
-            die("Redirect failed, click <a href='$destination'>here</a> to continue.");
+            self::die("Redirect failed, click <a href='$destination'>here</a> to continue.");
         }
     }
 
+    public static function headerResponseCode(int $code)
+    {
+        $responseCodeMessage = @http_response_code($code) ?? "";
+        $msg = $_SERVER["SERVER_PROTOCOL"] . " " . strval($code) . " " . $responseCodeMessage;
+        header($msg, true, $ncode);
+    }
+
+    public static function errorLog(string $title, string $message)
+    {
+        error_log(
+            "$title: " . json_encode(
+                [
+                    "message" => $message,
+                    "REMOTE_USER" => @$_SERVER["REMOTE_USER"], // "@": allow null default value
+                    "REMOTE_ADDR" => @$_SERVER["REMOTE_ADDR"], // "@": allow null default value
+                    // getTrace() is a list but the JSON is very verbose
+                    "trace" => explode(PHP_EOL, (new \Exception())->getTraceAsString())
+                ]
+            )
+        );
+    }
+
+    public static function badRequest($message)
+    {
+        self::headerResponseCode(400);
+        self::errorLog("bad request", $message);
+        self::die($message);
+    }
+
     public static function removeTrailingWhitespace($arr)
     {
         $out = array();
diff --git a/test/phpunit-bootstrap.php b/test/phpunit-bootstrap.php
@@ -14,6 +14,9 @@
 require_once __DIR__ . "/../resources/lib/UnityWebhook.php";
 require_once __DIR__ . "/../resources/lib/UnityRedis.php";
 require_once __DIR__ . "/../resources/lib/UnityGithub.php";
+require_once __DIR__ . "/../resources/lib/exceptions/PhpUnitNoDieException.php";
+
+$GLOBALS["PHPUNIT_NO_DIE_PLEASE"] = true;
 
 global $HTTP_HEADER_TEST_INPUTS;
 $HTTP_HEADER_TEST_INPUTS = [
diff --git a/test/unit/UnitySiteTest.php b/test/unit/UnitySiteTest.php
@@ -4,6 +4,8 @@
 
 use PHPUnit\Framework\TestCase;
 use PHPUnit\Framework\Attributes\DataProvider;
+// use PHPUnit\Framework\Attributes\BackupGlobals;
+// use PHPUnit\Framework\Attributes\RunTestsInSeparateProcess;
 
 class UnitySiteTest extends TestCase
 {
@@ -75,8 +77,28 @@ public static function SSHKeyProvider()
     #[DataProvider("SSHKeyProvider")]
     public function testTestValidSSHKey(bool $expected, string $key)
     {
-        $SITE = new UnitySite();
-        $this->assertEquals($expected, $SITE->testValidSSHKey($key));
+        $this->assertEquals($expected, UnitySite::testValidSSHKey($key));
     }
 
+    // I suspect that this test could have unexpected interactions with other tests.
+    // even with RunTestsInSeparateProcess and BackupGlobalState, http_response_code()
+    // still persists to the next test. header("HTTP/1.1 false") puts it back to its
+    // initial value, but this is a hack and does not inspire confidence.
+    // #[BackupGlobals(true)]
+    // #[RunTestsInSeparateProcess]
+    // public function testHeaderResponseCode()
+    // {
+    //     $this->assertEquals(false, http_response_code());
+    //     $this->assertArrayNotHasKey("SERVER_PROTOCOL", $_SERVER);
+    //     try {
+    //         $_SERVER["SERVER_PROTOCOL"] = "HTTP/1.1";
+    //         UnitySite::headerResponseCode(400);
+    //         $this->assertEquals(400, http_response_code());
+    //         UnitySite::headerResponseCode(401);
+    //         $this->assertEquals(401, http_response_code());
+    //     } finally {
+    //         unset($_SERVER["SERVER_PROTOCOL"]);
+    //         header("HTTP/1.1 false");
+    //     }
+    // }
 }
diff --git a/webroot/admin/ajax/get_group_members.php b/webroot/admin/ajax/get_group_members.php
@@ -3,13 +3,14 @@
 require_once __DIR__ . "/../../../resources/autoload.php";
 
 use UnityWebPortal\lib\UnityGroup;
+use UnityWebPortal\lib\UnitySite;
 
 if (!$USER->isAdmin()) {
-    die();
+    UnitySite::die();
 }
 
 if (!isset($_GET["pi_uid"])) {
-    die("PI UID not set");
+    UnitySite::badRequest("PI UID not set");
 }
 
 $group = new UnityGroup($_GET["pi_uid"], $LDAP, $SQL, $MAILER, $REDIS, $WEBHOOK);
diff --git a/webroot/admin/ajax/get_page_contents.php b/webroot/admin/ajax/get_page_contents.php
@@ -2,12 +2,14 @@
 
 require_once __DIR__ . "/../../../resources/autoload.php";
 
+use UnityWebPortal\lib\UnitySite;
+
 if (!$USER->isAdmin()) {
-    die();
+    UnitySite::die();
 }
 
 if (!isset($_GET["pageid"])) {
-    die("Pageid not found");
+    UnitySite::badRequest("Pageid not found");
 }
 
 $page = $SQL->getPage($_GET["pageid"]);
diff --git a/webroot/admin/content.php b/webroot/admin/content.php
@@ -2,8 +2,10 @@
 
 require_once __DIR__ . "/../../resources/autoload.php";
 
+use UnityWebPortal\lib\UnitySite;
+
 if (!$USER->isAdmin()) {
-    die();
+    UnitySite::die();
 }
 
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
diff --git a/webroot/admin/notices.php b/webroot/admin/notices.php
@@ -2,8 +2,10 @@
 
 require_once __DIR__ . "/../../resources/autoload.php";
 
+use UnityWebPortal\lib\UnitySite;
+
 if (!$USER->isAdmin()) {
-    die();
+    UnitySite::die();
 }
 
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
diff --git a/webroot/admin/pi-mgmt.php b/webroot/admin/pi-mgmt.php
@@ -4,9 +4,10 @@
 
 use UnityWebPortal\lib\UnityUser;
 use UnityWebPortal\lib\UnityGroup;
+use UnityWebPortal\lib\UnitySite;
 
 if (!$USER->isAdmin()) {
-    die();
+    UnitySite::die();
 }
 
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
diff --git a/webroot/admin/user-mgmt.php b/webroot/admin/user-mgmt.php
@@ -5,7 +5,7 @@
 use UnityWebPortal\lib\UnitySite;
 
 if (!$USER->isAdmin()) {
-    die();
+    UnitySite::die();
 }
 
 if ($_SERVER["REQUEST_METHOD"] == "POST") {
diff --git a/webroot/api/content/index.php b/webroot/api/content/index.php
@@ -1,5 +1,7 @@
 <?php
 
+use UnityWebPortal\lib\UnitySite;
+
 header('Content-type: text/plain');
 
 require_once __DIR__ . "/../../../resources/autoload.php";
@@ -11,7 +13,7 @@
 }
 
 if (!isset($_GET["content_name"])) {
-    die();
+    UnitySite::badRequest("content_name not set");
 }
 
 echo $SQL->getPage($_GET["content_name"])["content"];
diff --git a/webroot/panel/ajax/get_group_members.php b/webroot/panel/ajax/get_group_members.php
@@ -5,7 +5,7 @@
 use UnityWebPortal\lib\UnityGroup;
 
 if (!isset($_GET["pi_uid"])) {
-    die("PI UID not set");
+    UnitySite::badRequest("PI UID not set");
 }
 
 $group = new UnityGroup($_GET["pi_uid"], $LDAP, $SQL, $MAILER, $REDIS, $WEBHOOK);
diff --git a/webroot/panel/pi.php b/webroot/panel/pi.php
@@ -8,7 +8,7 @@
 $group = $USER->getPIGroup();
 
 if (!$USER->isPI()) {
-    die();
+    UnitySite::die("not a PI");
 }
 
 if ($_SERVER["REQUEST_METHOD"] == "POST") {

Original file line number	Diff line number	Diff line change
`@@ -3,13 +3,14 @@`
`3`	`3`	`require_once __DIR__ . "/../../../resources/autoload.php";`
`4`	`4`
`5`	`5`	`use UnityWebPortal\lib\UnityGroup;`
	`6`	`+use UnityWebPortal\lib\UnitySite;`
`6`	`7`
`7`	`8`	`if (!$USER->isAdmin()) {`
`8`		`- die();`
	`9`	`+ UnitySite::die();`
`9`	`10`	`}`
`10`	`11`
`11`	`12`	`if (!isset($_GET["pi_uid"])) {`
`12`		`- die("PI UID not set");`
	`13`	`+ UnitySite::badRequest("PI UID not set");`
`13`	`14`	`}`
`14`	`15`
`15`	`16`	`$group = new UnityGroup($_GET["pi_uid"], $LDAP, $SQL, $MAILER, $REDIS, $WEBHOOK);`
Original file line number	Diff line number	Diff line change
`@@ -2,12 +2,14 @@`
`2`	`2`
`3`	`3`	`require_once __DIR__ . "/../../../resources/autoload.php";`
`4`	`4`
	`5`	`+use UnityWebPortal\lib\UnitySite;`
	`6`	`+`
`5`	`7`	`if (!$USER->isAdmin()) {`
`6`		`- die();`
	`8`	`+ UnitySite::die();`
`7`	`9`	`}`
`8`	`10`
`9`	`11`	`if (!isset($_GET["pageid"])) {`
`10`		`- die("Pageid not found");`
	`12`	`+ UnitySite::badRequest("Pageid not found");`
`11`	`13`	`}`
`12`	`14`
`13`	`15`	`$page = $SQL->getPage($_GET["pageid"]);`
Original file line number	Diff line number	Diff line change
`@@ -2,8 +2,10 @@`
`2`	`2`
`3`	`3`	`require_once __DIR__ . "/../../resources/autoload.php";`
`4`	`4`
	`5`	`+use UnityWebPortal\lib\UnitySite;`
	`6`	`+`
`5`	`7`	`if (!$USER->isAdmin()) {`
`6`		`- die();`
	`8`	`+ UnitySite::die();`
`7`	`9`	`}`
`8`	`10`
`9`	`11`	`if ($_SERVER["REQUEST_METHOD"] == "POST") {`
Original file line number	Diff line number	Diff line change
`@@ -4,9 +4,10 @@`
`4`	`4`
`5`	`5`	`use UnityWebPortal\lib\UnityUser;`
`6`	`6`	`use UnityWebPortal\lib\UnityGroup;`
	`7`	`+use UnityWebPortal\lib\UnitySite;`
`7`	`8`
`8`	`9`	`if (!$USER->isAdmin()) {`
`9`		`- die();`
	`10`	`+ UnitySite::die();`
`10`	`11`	`}`
`11`	`12`
`12`	`13`	`if ($_SERVER["REQUEST_METHOD"] == "POST") {`
Original file line number	Diff line number	Diff line change
`@@ -5,7 +5,7 @@`
`5`	`5`	`use UnityWebPortal\lib\UnitySite;`
`6`	`6`
`7`	`7`	`if (!$USER->isAdmin()) {`
`8`		`- die();`
	`8`	`+ UnitySite::die();`
`9`	`9`	`}`
`10`	`10`
`11`	`11`	`if ($_SERVER["REQUEST_METHOD"] == "POST") {`
Original file line number	Diff line number	Diff line change
`@@ -1,5 +1,7 @@`
`1`	`1`	`<?php`
`2`	`2`
	`3`	`+use UnityWebPortal\lib\UnitySite;`
	`4`	`+`
`3`	`5`	`header('Content-type: text/plain');`
`4`	`6`
`5`	`7`	`require_once __DIR__ . "/../../../resources/autoload.php";`
`@@ -11,7 +13,7 @@`
`11`	`13`	`}`
`12`	`14`
`13`	`15`	`if (!isset($_GET["content_name"])) {`
`14`		`- die();`
	`16`	`+ UnitySite::badRequest("content_name not set");`
`15`	`17`	`}`
`16`	`18`
`17`	`19`	`echo $SQL->getPage($_GET["content_name"])["content"];`