Improve _sha256 field handling

tsugiproject · May 17, 2022 · 8b1eeda · 8b1eeda
1 parent feb6f2b
commit 8b1eeda
Show file tree

Hide file tree

Showing 2 changed files with 23 additions and 2 deletions.
diff --git a/src/Core/LTIX.php b/src/Core/LTIX.php
@@ -1,5 +1,6 @@
 <?php
 
+
 namespace Tsugi\Core;
 
 use \Tsugi\OAuth\TrivialOAuthDataStore;
@@ -1369,7 +1370,7 @@ public static function loadAllData($p, $profile_table, $post) {
             $sql .= "\nWHERE (k.deploy_key = :deployment_id OR k.deploy_key IS NULL)
                 AND (
                     (i.issuer_sha256 = :issuer_sha256 AND i.issuer_client = :issuer_client)
-                    OR ( lms_issuer_sha256 = :issuer_sha256 AND lms_client = :issuer_client )
+                    OR ( (lms_issuer_sha256 IS NULL OR lms_issuer_sha256 = :issuer_sha256 ) AND lms_client = :issuer_client )
                 )
             ";
         } else {

diff --git a/src/UI/CrudForm.php b/src/UI/CrudForm.php
@@ -118,6 +118,16 @@ public static function handleInsert($tablename, $fields) {
                 // Set the sha256 value if it is not there
                 if ( strpos($field, "_sha256") !== false && ! isset($_POST[$field])) {
                     $key = str_replace("_sha256", "_key", $field);
+                    $key2 = str_replace("_sha256", "", $field);
+                    // Allow nulls
+                    if ( array_key_exists($key, $_POST)) {
+                        // All good
+                    } else if ( array_key_exists($key2, $_POST)) {
+                        $key = $key2;
+                    } else {
+                        continue;
+                    }
+
                     // Nulls allowed
                     if ( !array_key_exists($key, $_POST) ) {
                         $_SESSION['error'] = "Missing POST field: ".$key;
@@ -352,10 +362,20 @@ public static function handleUpdate($tablename, $fields, $where_clause=false,
                 }
 
                 // Update the sha256 value if we have a corresponding _key value
+                // xyz => xyz_sha256
+                // xyz_key => xyz_sha256
                 if ( strpos($field, "_sha256") !== false && ! isset($_POST[$field])) {
                     $key = str_replace("_sha256", "_key", $field);
+                    $key2 = str_replace("_sha256", "", $field);
                     // Allow nulls
-                    if ( ! array_key_exists($key, $_POST) ) continue;
+                    if ( array_key_exists($key, $_POST)) {
+                        // All good
+                    } else if ( array_key_exists($key2, $_POST)) {
+                        $key = $key2;
+                    } else {
+                        continue;
+                    }
+
                     if ( $_POST[$key] === null ) {
                         $value = null;
                     } else {