webform_encrypt.module 4.12 KB
Newer Older
Jake Bell's avatar
Jake Bell committed
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18
<?php

/**
 * Implementation of hook_permission().
 */
function webform_encrypt_permission() {
  return array(
    'view encrypted values' => array(
      'title' => t('View Encrypted Values in Webform Results'),
      'description' => t('Users that do not have this permission will see placeholder text.'),
    ),
  );
}

/**
 * Implementation of hook_form_alter()
 */
function webform_encrypt_form_alter(&$form, $form_state, $form_id) {
Jake Bell's avatar
Jake Bell committed
19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35
  // Add our config options to the webform settings page.
  if ($form_id == 'webform_admin_settings') {
    dsm($form);
    $form['encrypt'] = array(
      '#type' => 'fieldset',
      '#title' => t('Webform Encrypt'),
      '#collapsible' => TRUE,
      '#collapsed' => FALSE,
    );
    $form['encrypt']['webform_encrypt_match_user'] = array(
      '#type' => 'checkbox',
      '#title' => t('Enable email to user matching'),
      '#description' => t('If enabled, every time webform sends an email, it will attempt to find a user that matches the email address the mail will be sent to in order to correctly determine permissions.'),
      '#default_value' => variable_get('webform_encrypt_match_user', 0),
    );
  }

Jake Bell's avatar
Jake Bell committed
36 37 38
  // Add our fields to the component add/edit form.
  if ($form_id == 'webform_component_edit_form') {

39
    $component = $form_state['build_info']['args'][1];
Jake Bell's avatar
Jake Bell committed
40

41 42 43
    // Exclude webform component types that don't make sense to encrypt.
    $excluded_types = array('fieldset', 'file', 'markup', 'pagebreak');
    if (!in_array($form['type']['#value'], $excluded_types)) {
Jake Bell's avatar
Jake Bell committed
44

45 46 47 48 49 50 51 52 53
      // Add settings for encryption.
      $form['encryption'] = array(
        '#type' => 'fieldset',
        '#title' => t('Encryption'),
        '#tree' => TRUE,
      );
      $form['encryption']['encrypt'] = array(
        '#type' => 'checkbox',
        '#title' => t('Encrypt this field\'s value'),
54
        '#description' => t('!link to edit encryption settings.', array('!link' => l('Click here', 'admin/config/system/encrypt'))),
55 56 57
        '#default_value' => isset($component['extra']['encrypt']) ? $component['extra']['encrypt'] : 0,
      );
    }
Jake Bell's avatar
Jake Bell committed
58 59 60 61 62

  }
}

/**
63 64
 * Implementation of hook_webform_component_presave().
 * Save encryption settings for a component.
Jake Bell's avatar
Jake Bell committed
65
 */
66 67 68
function webform_encrypt_webform_component_presave(&$component) {
  $component['extra'] = array_merge($component['extra'], $component['encryption']);
  unset($component['encryption']);
Jake Bell's avatar
Jake Bell committed
69 70 71 72 73 74 75 76
}

/**
 * Implementation of hook_webform_submission_presave().
 * Encrypt the value if the component has been marked as such.
 */
function webform_encrypt_webform_submission_presave($node, &$submission) {
  foreach ($submission->data as $cid => $entry) {
77 78 79
    if (isset($node->webform['components'][$cid]['extra']['encrypt']) &&
        $node->webform['components'][$cid]['extra']['encrypt']) {
      $submission->data[$cid]['value'][0] = encrypt($entry['value'][0], array('base64' => TRUE));
Jake Bell's avatar
Jake Bell committed
80 81 82 83 84 85 86 87 88
    }
  }
}

/**
 * Implementation of hook_webform_submission_render_alter().
 * Decrypt values when displaying webform submissions.
 */
function webform_encrypt_webform_submission_render_alter(&$renderable) {
Jake Bell's avatar
Jake Bell committed
89 90 91 92 93 94 95 96 97 98 99
  // First, determine if 1) if we are dealing with an email or a page view, and 2) if user matching
  // is enabled.
  if (variable_get('webform_encrypt_match_user', FALSE) && !empty($renderable['#email'])) {
    // If we are, then try to match a user to the email address we are sending to.
    $uid = db_query('SELECT uid FROM {users} WHERE mail = ?', array($renderable['#email']['email']))->fetchField();
    $account = $uid ? user_load($uid) : NULL;
  } else {
    $account = NULL;
  }

  // Next, we loop through components and decrypt as necessary.
Jake Bell's avatar
Jake Bell committed
100
  foreach ($renderable['#submission']->data as $cid => $entry) {
101 102
    if (isset($renderable['#node']->webform['components'][$cid]['extra']['encrypt']) &&
        $renderable['#node']->webform['components'][$cid]['extra']['encrypt']) {
Jake Bell's avatar
Jake Bell committed
103
      $form_key = $renderable['#node']->webform['components'][$cid]['form_key'];
Jake Bell's avatar
Jake Bell committed
104
      if (user_access('view encrypted values', $account)) {
105
        $renderable[$form_key]['#value'] = decrypt($entry['value'][0], array('base64' => TRUE));
Jake Bell's avatar
Jake Bell committed
106
      } else {
107
        $renderable[$form_key]['#value'] = t('[Value Encrypted]');
Jake Bell's avatar
Jake Bell committed
108 109 110 111
      }
    }
  }
}