Mirrors/sysPass
2
0
Fork 0
mirror of https://github.com/nuxsmin/sysPass.git synced 2026-03-24 00:57:17 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
0e0cf2ebb35bc4dcb5a44dff423d64a211d62a01
sysPass/ajax/ajax_backup.php
nuxsmin 9b7a7736b3 * [ADD] RSA Encryption for passwords sent from client to server for non secured environments (no HTTPS). 
* [MOD] Tweaked javascript files to make more reusable code and isolation using namespaces.
* [MOD] UI tweaks.
* [FIX] Minor bugfixes.
2015-09-23 02:08:57 +02:00

82 lines
3.1 KiB
PHP
Raw Blame History

<?php
/**
* sysPass
*
* @author nuxsmin
* @link http://syspass.org
* @copyright 2012-2015 Rubén Domínguez nuxsmin@syspass.org
*
* This file is part of sysPass.
*
* sysPass is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* sysPass is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with sysPass. If not, see <http://www.gnu.org/licenses/>.
*
*/
define('APP_ROOT', '..');
require_once APP_ROOT . DIRECTORY_SEPARATOR . 'inc' . DIRECTORY_SEPARATOR . 'Base.php';
SP\Request::checkReferer('POST');
if (!SP\Init::isLoggedIn()) {
SP\Common::printJSON(_('La sesión no se ha iniciado o ha caducado'), 10);
}
$sk = SP\Request::analyze('sk', false);
if (!$sk || !SP\Common::checkSessionKey($sk)) {
SP\Common::printJSON(_('CONSULTA INVÁLIDA'));
}
$actionId = SP\Request::analyze('actionId', 0);
$onCloseAction = SP\Request::analyze('onCloseAction');
$activeTab = SP\Request::analyze('activeTab', 0);
$exportPassword = SP\Request::analyze('exportPwd', '', false, false, false);
$exportPasswordR = SP\Request::analyze('exportPwdR', '', false, false, false);
$doActionOnClose = "sysPassUtil.Common.doAction($actionId,'',$activeTab);";
if ($actionId === SP\Controller\ActionsInterface::ACTION_CFG_BACKUP) {
if (!SP\Backup::doBackup()) {
SP\Log::writeNewLogAndEmail(_('Realizar Backup'), _('Error al realizar el backup'));
SP\Common::printJSON(_('Error al realizar el backup') . ';;' . _('Revise el registro de eventos para más detalles'));
}
SP\Log::writeNewLogAndEmail(_('Realizar Backup'), _('Copia de la aplicación y base de datos realizada correctamente'));
SP\Common::printJSON(_('Proceso de backup finalizado'), 0, $doActionOnClose);
} elseif ($actionId === SP\Controller\ActionsInterface::ACTION_CFG_EXPORT) {
try {
$CryptPKI = new \SP\CryptPKI();
$clearExportPwd = $CryptPKI->decryptRSA(base64_decode($exportPassword));
$clearExportPwdR = $CryptPKI->decryptRSA(base64_decode($exportPasswordR));
} catch (Exception $e) {
SP\Common::printJSON(_('Error en clave RSA'));
}
if (!empty($clearExportPwd) && $clearExportPwd !== $clearExportPwdR){
SP\Common::printJSON(_('Las claves no coinciden'));
}
if(!\SP\XmlExport::doExport($clearExportPwd)){
SP\Log::writeNewLogAndEmail(_('Realizar Exportación'), _('Error al realizar la exportación de cuentas'));
SP\Common::printJSON(_('Error al realizar la exportación') . ';;' . _('Revise el registro de eventos para más detalles'));
}
SP\Log::writeNewLogAndEmail(_('Realizar Exportación'), _('Exportación de cuentas realizada correctamente'));
SP\Common::printJSON(_('Proceso de exportación finalizado'), 0, $doActionOnClose);
}
Reference in New Issue View Git Blame Copy Permalink