Mirrors/sysPass
2
0
Fork 0
mirror of https://github.com/nuxsmin/sysPass.git synced 2026-03-03 15:14:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
2ccce01acbfdc070ba39de03108864244ceeb2de
sysPass/lib/SP/Mvc/Controller/ControllerTrait.php
Rubén D 66dcab2cd0 refactor: Fix initialization errors. 
Signed-off-by: Rubén D <nuxsmin@syspass.org>
2022-06-16 07:54:44 +02:00

140 lines
4.1 KiB
PHP
Raw Blame History

<?php
/*
* sysPass
*
* @author nuxsmin
* @link https://syspass.org
* @copyright 2012-2022, Rubén Domínguez nuxsmin@$syspass.org
*
* This file is part of sysPass.
*
* sysPass is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* sysPass is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with sysPass. If not, see <http://www.gnu.org/licenses/>.
*/
namespace SP\Mvc\Controller;
use Closure;
use Klein\Klein;
use SP\Core\Bootstrap\BootstrapBase;
use SP\Core\Exceptions\SPException;
use SP\Domain\Config\In\ConfigDataInterface;
use SP\Http\Json;
use SP\Http\JsonResponse;
use SP\Http\RequestInterface;
use SP\Http\Uri;
use SP\Util\Util;
/**
* Trait ControllerTrait
*
* @package SP\Mvc\Controller
*/
trait ControllerTrait
{
protected Klein $router;
protected string $controllerName;
protected function getControllerName(): string
{
$class = static::class;
return substr($class, strrpos($class, '\\') + 1, -strlen('Controller')) ?: '';
}
protected function getViewBaseName(): string
{
$parts = explode('\\', static::class);
return strtolower($parts[count($parts) - 2]);
}
/**
* Logout from current session
*
* @param \SP\Http\RequestInterface $request
* @param \SP\Domain\Config\In\ConfigDataInterface $configData
* @param \Closure $onRedirect
*
* @throws \SP\Core\Exceptions\SPException
*/
protected function sessionLogout(
RequestInterface $request,
ConfigDataInterface $configData,
Closure $onRedirect
): void {
if ($request->isJson()) {
$jsonResponse = new JsonResponse(__u('Session not started or timed out'));
$jsonResponse->setStatus(10);
Json::factory($this->router->response())->returnJson($jsonResponse);
} elseif ($request->isAjax()) {
Util::logout();
} else {
try {
// Analyzes if there is any direct route within the URL
// then it computes the route HMAC to build a signed URI
// which would be used during logging in
$route = $request->analyzeString('r');
$hash = $request->analyzeString('h');
$uri = new Uri(BootstrapBase::$WEBROOT.BootstrapBase::$SUBURI);
$uri->addParam('_r', 'login');
if ($route && $hash) {
$key = $configData->getPasswordSalt();
$request->verifySignature($key);
$uri->addParam('from', $route);
$onRedirect->call($this, $uri->getUriSigned($key));
} else {
$onRedirect->call($this, $uri->getUri());
}
} catch (SPException $e) {
processException($e);
}
}
}
/**
* Acción no disponible
*
* @throws \SP\Core\Exceptions\SPException
*/
protected function invalidAction(): void
{
Json::factory($this->router->response())->returnJson(new JsonResponse(__u('Invalid Action')));
}
/**
* @throws SPException
* @deprecated
*/
protected function checkSecurityToken(
string $previousToken,
RequestInterface $request,
ConfigDataInterface $configData
): void {
if ($request->analyzeString('h') !== null && $request->analyzeString('from') === null) {
$request->verifySignature($configData->getPasswordSalt());
} else {
$sk = $request->analyzeString('sk');
if (!$sk || $previousToken !== $sk) {
throw new SPException(__u('Invalid Action'), SPException::ERROR, null, 1);
}
}
}
}
Reference in New Issue View Git Blame Copy Permalink