feat(agent): enroll by entity token

Signed-off-by: Thierry Bugier <[email protected]>

Author: btry

inc/agent.class.php

@@ -1390,91 +1390,46 @@ protected function enrollByInvitationToken($input) {
    }
 
    /**
-    * @param string $serial
-    * @param array $authFactors
-    * @param string $csr Certificate Signing Request from the agent
-    * @param &string $notFoundMessage Contains the error message if the enrollment failed
-    * @return boolean|PluginFlyvemdmAgent
-    *
+    * Attemt to enroll with an entity invitation token
+    * @param array $input Enrollment data
+    * @return array|bool
     */
-   //protected static function enrollByEntityToken($serial, $authFactors, $csr, &$errorMessage) {
-      //global $DB;
-
-      //$token = $DB->escape($authFactors['entityToken']);
-
-      //// Find an entity matching the given token
-      //$entity = new PluginFlyvemdmEntityconfig();
-      //if (!$entity->getFromDBByCrit(['enroll_token' => $token])) {
-      //   $errorMessage = "no entity token not found";
-      //   return false;
-      //}
-
-      //// Create a new computer for the device being enrolled
-      //// TODO : Enable localization of the type
-      //$computerType = new ComputerType();
-      //$computerTypeId = $computerType->import(['name' => 'Smartphone']);
-      //if ($computerTypeId == -1 || $computerTypeId === false) {
-      //   $computerTypeId = 0;
-      //}
-      //$computer = new Computer();
-      //$condition = "`serial`='" . $DB->escape($serial) . "' AND `entities_id`='" . $entity->getID() . "'";
-      //$computerCollection = $computer->find($condition);
-      //if (count($computerCollection) > 1) {
-      //   $errorMessage = "failed to find the computer";
-      //   return false;
-      //}
-      //if (count($computerCollection) == 1) {
-
-      //   reset($computerCollection);
-      //   $computer->getFromDB(key($computerCollection));
-      //   $computerId = $computer->getID();
-
-      //} else {
-      //   $computerId = $computer->add([
-      //      'entities_id'        => $entity->getID(),
-      //      'serial'             => $serial,
-      //      'computertypes_id'   => $computerTypeId
-      //   ]);
-
-      //   if ($computerId === false) {
-      //      $errorMessage = "failed to create the computer";
-      //      return false;
-      //   }
-      //}
-
-      //if (! $computerId > 0) {
-      //   $errorMessage = "failed to update the computer";
-      //   return false;
-      //}
-
-      //// Create an agent for this device, linked to the new computer
-      //$agent = new PluginFlyvemdmAgent();
-      //$condition = "`computers_id`='$computerId'";
-      //$agentCollection = $agent->find($condition);
-      //if (count($agentCollection) > 1) {
-      //   return false;
-      //}
-      //if (count($agentCollection) == 1) {
-
-      //   reset($agentCollection);
-      //   $agent->getFromDB(key($agentCollection));
-      //   $agentId = $agent->getId();
-
-      //} else {
-      //   $agentId = $agent->add([
-      //         'entities_id'     => $entity->getID(),
-      //         'computers_id'    => $computer->getID(),
-      //         'token_expire'    => '0000-00-00 00:00:00'
-      //   ]);
-      //}
-
-      //if (! $agentId > 0) {
-      //   return false;
-      //}
-
-      //return $agent;
-
-   //}
+    protected function enrollByEntityToken($input) {
+      $invitationToken  = isset($input['_invitation_token']) ? $input['_invitation_token'] : null;
+      $serial           = isset($input['_serial']) ? $input['_serial'] : null;
+      $uuid             = isset($input['_uuid']) ? $input['_uuid'] : null;
+      $csr              = isset($input['csr']) ? $input['csr'] : null;
+      $version          = isset($input['version']) ? $input['version'] : null;
+      $mdmType          = isset($input['type']) ? $input['type'] : null;
+      $inventory        = isset($input['inventory']) ? htmlspecialchars_decode($input['inventory'], ENT_XML1) : null;
+      $systemPermission = isset($input['has_system_permission']) ? $input['has_system_permission'] : 0;
+      // For non-android agents, system permssion might be forced to 1 depending on the lack of such cosntraint
+
+      $input = [];
+
+      // Find the invitation
+      $entityConfig = new PluginFlyvemdmEntityconfig();
+      if (!$entityConfig->getFromDBByToken($invitationToken)) {
+         $this->filterMessages(__('Invitation token invalid', 'flyvemdm'));
+         return false;
+      }
+
+      // To be written
+      // ...
+
+      $input['name']                      = $email;
+      $input['computers_id']              = $computerId;
+      $input['entities_id']               = $entityId;
+      $input['plugin_flyvemdm_fleets_id'] = $defaultFleet->getID();
+      $input['_invitations_id']           = $invitation->getID();
+      $input['enroll_status']             = 'enrolled';
+      $input['version']                   = $version;
+      $input['users_id']                  = $agentAccount->getID();
+      $input['mdm_type']                  = $mdmType;
+      $input['$systemPermission']         = $systemPermission;
+
+      return $input;
+   }
 
    /**
     * Erase delete persisted MQTT topics of the agent