Mirrors/sysPass
2
0
Fork 0
mirror of https://github.com/nuxsmin/sysPass.git synced 2026-03-03 15:14:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
6e2c461d722e58e71cd8dc59d8f925a2da91968e
sysPass/web/MainC.class.php
nuxsmin 8538ba3dfc * [ADD] New classes to improve performance and code readability. 
* [ADD] Security enhancement for master password in session.
* [MOD] Minor UI tweaks.
* [MOD] Improved config handling.
* [MOD] Code cleaning.
* [FIX] Accounts' main group were not set when the user hadn't enough privileges.
* [FIX] Accounts restoration didn't restore the account's main group.
2015-10-06 19:27:49 +02:00

431 lines
16 KiB
PHP
Raw Blame History

<?php
/**
* sysPass
*
* @author nuxsmin
* @link http://syspass.org
* @copyright 2012-2015 Rubén Domínguez nuxsmin@syspass.org
*
* This file is part of sysPass.
*
* sysPass is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* sysPass is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with sysPass. If not, see <http://www.gnu.org/licenses/>.
*
*/
namespace SP\Controller;
use SP\Init;
use SP\Installer;
use SP\Request;
use SP\Session;
use SP\SessionUtil;
use SP\SPException;
use SP\Themes;
use SP\Util;
/**
* Clase encargada de mostrar el interface principal de la aplicación
* e interfaces que requieren de un documento html completo
*
* @package Controller
*/
class MainC extends Controller implements ActionsInterface
{
/**
* Constructor
*
* @param $template \SP\Template con instancia de plantilla
* @param null $page El nombre de página para la clase del body
* @param bool $initialize Si es una inicialización completa
*/
public function __construct(\SP\Template $template = null, $page = null, $initialize = true)
{
parent::__construct($template);
if ($initialize) {
$this->view->assign('startTime', microtime());
$this->view->addTemplate('header');
$this->view->addTemplate('body-start');
$this->view->assign('sk', SessionUtil::getSessionKey(true));
$this->view->assign('appInfo', Util::getAppInfo());
$this->view->assign('appVersion', Util::getVersionString());
$this->view->assign('isDemoMode', Util::demoIsEnabled());
$this->view->assign('page', $page);
$this->view->assign('loggedIn', \SP\Init::isLoggedIn());
$this->view->assign('logoIcon', Init::$WEBURI . '/imgs/logo.png');
$this->view->assign('logoNoText', Init::$WEBURI . '/imgs/logo.svg');
$this->view->assign('logo', Init::$WEBURI . '/imgs/logo_full.svg');
$this->view->assign('httpsEnabled', Util::httpsEnabled());
// Cargar la clave pública en la sesión
SessionUtil::loadPublicKey();
$this->getResourcesLinks();
$this->setResponseHeaders();
}
}
/**
* Obtener los datos para la cabcera de la página
*/
public function getResourcesLinks()
{
$cssVersionHash = 'v=' . md5(implode(Util::getVersion()) . Util::resultsCardsIsEnabled());
$this->view->assign('cssLink', Init::$WEBROOT . '/css/css.php?' . $cssVersionHash);
$jsVersionHash = 'v=' . md5(implode(Util::getVersion()));
$this->view->assign('jsLink', Init::$WEBROOT . '/js/js.php?' . $jsVersionHash);
$themeInfo = Themes::getThemeInfo();
if (isset($themeInfo['js'])) {
$themeJsBase = 'b=' . urlencode(Themes::$themePath . DIRECTORY_SEPARATOR . 'js');
$themeJsFiles = 'f=' . urlencode(implode(',', $themeInfo['js']));
$this->view->assign('jsLinkTheme', Init::$WEBROOT . '/js/js.php?' . $themeJsFiles . '&' . $themeJsBase . '&' . $jsVersionHash);
}
if (isset($themeInfo['css'])) {
if (!\SP\Util::resultsCardsIsEnabled()) {
array_push($themeInfo['css'], 'search-grid.min.css');
}
$themeCssBase = 'b=' . urlencode(Themes::$themePath . DIRECTORY_SEPARATOR . 'css');
$themeCssFiles = 'f=' . urlencode(implode(',', $themeInfo['css']));
$this->view->assign('cssLinkTheme', Init::$WEBROOT . '/css/css.php?' . $themeCssFiles . '&' . $themeCssBase . '&' . $jsVersionHash);
}
}
/**
* Establecer las cabeceras HTTP
*/
private function setResponseHeaders()
{
// UTF8 Headers
header("Content-Type: text/html; charset=UTF-8");
// Cache Control
header("Cache-Control: public, no-cache, max-age=0, must-revalidate");
header("Pragma: public; max-age=0");
}
/**
* Obtener los datos para el interface principal de sysPass
*
* @param string $onLoad Las acciones a realizar en la carga de la página
*/
public function getMain($onLoad = null)
{
if (is_null($onLoad)) {
$onLoad = array('sysPassUtil.Common.doAction(' . self::ACTION_ACC_SEARCH . ')');
if (Session::getUserIsAdminApp() || Util::demoIsEnabled()) {
$onLoad[] = 'sysPassUtil.Common.checkUpds()';
}
$this->view->assign('onLoad', implode(';', $onLoad));
} else {
$this->view->assign('onLoad', $onLoad);
}
$this->getSessionBar();
$this->getMenu();
$this->view->addTemplate('footer');
$this->view->addTemplate('body-end');
}
/**
* Obtener los datos para la mostrar la barra de sesión
*/
private function getSessionBar()
{
$this->view->addTemplate('sessionbar');
$this->view->assign('adminApp', (Session::getUserIsAdminApp()) ? '<span title="' . _('Admin Aplicación') . '">(A+)</span>' : '');
$this->view->assign('userId', Session::getUserId());
$this->view->assign('userLogin', strtoupper(Session::getUserLogin()));
$this->view->assign('userName', (Session::getUserName()) ? Session::getUserName() : strtoupper($this->view->userLogin));
$this->view->assign('userGroup', Session::getUserGroupName());
$this->view->assign('showPassIcon', !Session::getUserIsLdap());
}
/**
* Obtener los datos para mostrar el menú de acciones
*/
private function getMenu()
{
$this->view->addTemplate('menu');
$this->view->assign('actions', array(
array(
'name' => self::ACTION_ACC_SEARCH,
'title' => _('Buscar'),
'img' => 'search.png',
'icon' => 'search',
'checkaccess' => 0),
array(
'name' => self::ACTION_ACC_NEW,
'title' => _('Nueva Cuenta'),
'img' => 'add.png',
'icon' => 'add',
'checkaccess' => 1),
array(
'name' => self::ACTION_USR,
'title' => _('Usuarios y Accesos'),
'img' => 'users.png',
'icon' => 'account_box',
'checkaccess' => 1),
array(
'name' => self::ACTION_MGM,
'title' => _('Elementos y Personalización'),
'img' => 'appmgmt.png',
'icon' => 'group_work',
'checkaccess' => 1),
array(
'name' => self::ACTION_CFG,
'title' => _('Configuración'),
'img' => 'config.png',
'icon' => 'settings_applications',
'checkaccess' => 1),
array(
'name' => self::ACTION_EVL,
'title' => _('Registro de Eventos'),
'img' => 'log.png',
'icon' => 'view_headline',
'checkaccess' => 1)
));
}
/**
* Obtener los datos para el interface de login
*/
public function getLogin()
{
$this->view->addTemplate('login');
$this->view->addTemplate('footer');
$this->view->addTemplate('body-end');
$this->view->assign('demoEnabled', Util::demoIsEnabled());
$this->view->assign('mailEnabled', Util::mailIsEnabled());
$this->view->assign('isLogout', Request::analyze('logout', false, true));
$this->view->assign('updated', Init::$UPDATED === true);
$this->view->assign('newFeatures', array(
_('Nuevo estilo visual basado en Material Design Lite by Google'),
_('Usuarios en múltiples grupos'),
_('Previsualización de imágenes'),
_('Mostrar claves como imágenes'),
_('Campos personalizados'),
_('API de consultas'),
_('Autentificación en 2 pasos'),
_('Complejidad de generador de claves'),
_('Consultas especiales'),
_('Exportación a XML'),
_('Clave maestra temporal'),
_('Importación de cuentas desde sysPass, KeePass, KeePassX y CSV'),
_('Optimización del código y mayor rapidez de carga'),
_('Mejoras de seguridad en XSS e inyección SQL')
));
// Comprobar y parsear los parámetros GET para pasarlos como POST en los inputs
$this->view->assign('getParams');
if (count($_GET) > 0) {
foreach ($_GET as $param => $value) {
$getParams['g_' . \SP\Html::sanitize($param)] = \SP\Html::sanitize($value);
}
$this->view->assign('getParams', $getParams);
}
}
/**
* Obtener los datos para el interface del instalador
*/
public function getInstaller()
{
$this->view->addTemplate('install');
$this->view->addTemplate('footer');
$this->view->addTemplate('body-end');
$this->view->assign('modulesErrors', Util::checkModules());
$this->view->assign('versionErrors', Util::checkPhpVersion());
$this->view->assign('securityErrors', array());
$this->view->assign('resInstall', array());
$this->view->assign('isCompleted', false);
$this->view->assign('version', \SP\Util::getVersionString());
$this->view->assign('adminlogin', Request::analyze('adminlogin', 'admin'));
$this->view->assign('adminpass', Request::analyzeEncrypted('adminpass'));
$this->view->assign('masterpassword', Request::analyzeEncrypted('masterpassword'));
$this->view->assign('dbuser', Request::analyze('dbuser', 'root'));
$this->view->assign('dbpass', Request::analyzeEncrypted('dbpass'));
$this->view->assign('dbname', Request::analyze('dbname', 'syspass'));
$this->view->assign('dbhost', Request::analyze('dbhost', 'localhost'));
$this->view->assign('hostingmode', Request::analyze('hostingmode', false));
if (@file_exists(__FILE__ . "\0Nullbyte")) {
$this->view->append('securityErrors', array(
'type' => SPException::SP_WARNING,
'description' => _('La version de PHP es vulnerable al ataque NULL Byte (CVE-2006-7243)'),
'hint' => _('Actualice la versión de PHP para usar sysPass de forma segura'))
);
}
if (!Util::secureRNG_available()) {
$this->view->append('securityErrors', array(
'type' => SPException::SP_WARNING,
'description' => _('No se encuentra el generador de números aleatorios.'),
'hint' => _('Sin esta función un atacante puede utilizar su cuenta al resetear la clave'))
);
}
if (Request::analyze('install', false)) {
Installer::setUsername($this->view->adminlogin);
Installer::setPassword($this->view->adminpass);
Installer::setMasterPassword($this->view->masterpassword);
Installer::setDbuser($this->view->dbuser);
Installer::setDbpass($this->view->dbpass);
Installer::setDbname($this->view->dbname);
Installer::setDbhost($this->view->dbhost);
Installer::setIsHostingMode($this->view->hostingmode);
$this->view->assign('resInstall', Installer::install());
if (count($this->view->resInstall) == 0) {
$this->view->append('errors', array(
'type' => SPException::SP_OK,
'description' => _('Instalación finalizada'),
'hint' => _('Pulse <a href="index.php" title="Acceder">aquí</a> para acceder')
));
$this->view->assign('isCompleted', true);
return true;
}
}
$this->view->assign('errors', array_merge($this->view->modulesErrors, $this->view->securityErrors, $this->view->resInstall));
}
/**
* Obtener los datos para el interface de error
*
* @param bool $showLogo mostrar el logo de sysPass
*/
public function getError($showLogo = false)
{
$this->view->addTemplate('error');
$this->view->addTemplate('footer');
$this->view->assign('showLogo', $showLogo);
}
/**
* Obtener los datos para el interface de restablecimiento de clave de usuario
*/
public function getPassReset()
{
if (Util::mailIsEnabled() || Request::analyze('f', 0) === 1) {
$this->view->addTemplate('passreset');
$this->view->assign('action', Request::analyze('a'));
$this->view->assign('hash', Request::analyze('h'));
$this->view->assign('time', Request::analyze('t'));
$this->view->assign('passReset', ($this->view->action === 'passreset' && $this->view->hash && $this->view->time));
} else {
$this->view->assign('showLogo', true);
$this->showError(self::ERR_UNAVAILABLE, false);
}
$this->view->addTemplate('footer');
$this->view->addTemplate('body-end');
}
/**
* Obtener los datos para el interface de actualización de BD
*/
public function getUpgrade()
{
$this->view->addTemplate('upgrade');
$this->view->addTemplate('footer');
$this->view->addTemplate('body-end');
$this->view->assign('action', Request::analyze('a'));
$this->view->assign('time', Request::analyze('t'));
$this->view->assign('upgrade', $this->view->action === 'upgrade');
}
/**
* Obtener los datos para el interface de autentificación en 2 pasos
*/
public function get2FA()
{
if (Request::analyze('f', 0) === 1) {
$this->view->addTemplate('2fa');
$this->view->assign('action', Request::analyze('a'));
$this->view->assign('userId', Request::analyze('i'));
$this->view->assign('time', Request::analyze('t'));
} else {
$this->view->assign('showLogo', true);
$this->showError(self::ERR_UNAVAILABLE, false);
}
$this->view->addTemplate('footer');
$this->view->addTemplate('body-end');
}
/**
* Obtener los datos para el interface de comprobación de actualizaciones
*/
public function getCheckUpdates()
{
$updates = \SP\Util::checkUpdates();
$this->view->addTemplate('update');
if (is_array($updates)) {
$description = nl2br($updates['description']);
$version = $updates['version'];
$this->view->assign('hasUpdates', true);
$this->view->assign('title', $updates['title']);
$this->view->assign('url', $updates['url']);
$this->view->assign('description', sprintf('%s - %s <br><br>%s', _('Descargar nueva versión'), $version, $description));
} else {
$this->view->assign('hasUpdates', false);
$this->view->assign('status', $updates);
}
$notices = \SP\Util::checkNotices();
$numNotices = count($notices);
$noticesTitle = '';
if ($notices !== false && $numNotices > 0) {
$noticesTitle = sprintf('%s <br><br>', _('Avisos de sysPass'));
foreach ($notices as $notice) {
$noticesTitle .= sprintf('%s <br>', $notice[0]);
}
}
$this->view->assign('numNotices', $numNotices);
$this->view->assign('noticesTitle', $noticesTitle);
}
}
Reference in New Issue View Git Blame Copy Permalink