mirror of
https://github.com/nuxsmin/sysPass.git
synced 2026-03-03 07:04:07 +01:00
337 lines
10 KiB
PHP
337 lines
10 KiB
PHP
<?php
|
|
/**
|
|
* sysPass
|
|
*
|
|
* @author nuxsmin
|
|
* @link http://syspass.org
|
|
* @copyright 2012-2017, Rubén Domínguez nuxsmin@$syspass.org
|
|
*
|
|
* This file is part of sysPass.
|
|
*
|
|
* sysPass is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* sysPass is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with sysPass. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
namespace SP\Import;
|
|
|
|
use DOMXPath;
|
|
use SP\Config\ConfigDB;
|
|
use SP\Core\Crypt\Crypt;
|
|
use SP\Core\Crypt\Hash;
|
|
use SP\Core\Exceptions\SPException;
|
|
use SP\Core\OldCrypt;
|
|
use SP\DataModel\AccountExtData;
|
|
use SP\DataModel\CategoryData;
|
|
use SP\DataModel\ClientData;
|
|
use SP\DataModel\TagData;
|
|
|
|
defined('APP_ROOT') || die();
|
|
|
|
/**
|
|
* Esta clase es la encargada de importar cuentas desde sysPass
|
|
*/
|
|
class SyspassImport extends ImportBase
|
|
{
|
|
use XmlImportTrait;
|
|
|
|
/**
|
|
* Mapeo de etiquetas
|
|
*
|
|
* @var array
|
|
*/
|
|
protected $tags = [];
|
|
/**
|
|
* Mapeo de categorías.
|
|
*
|
|
* @var array
|
|
*/
|
|
protected $categories = [];
|
|
/**
|
|
* Mapeo de clientes.
|
|
*
|
|
* @var array
|
|
*/
|
|
protected $customers = [];
|
|
|
|
/**
|
|
* Iniciar la importación desde sysPass.
|
|
*
|
|
* @throws SPException
|
|
*/
|
|
public function doImport()
|
|
{
|
|
try {
|
|
if ($this->ImportParams->getImportMasterPwd() !== '') {
|
|
$this->mPassValidHash = Hash::checkHashKey($this->ImportParams->getImportMasterPwd(), ConfigDB::getValue('masterPwd'));
|
|
}
|
|
|
|
$this->getXmlVersion();
|
|
|
|
if ($this->detectEncrypted()) {
|
|
if ($this->ImportParams->getImportPwd() === '') {
|
|
throw new SPException(__('Clave de encriptación no indicada', false), SPException::ERROR);
|
|
}
|
|
|
|
$this->processEncrypted();
|
|
}
|
|
|
|
$this->processCategories();
|
|
$this->processCustomers();
|
|
$this->processTags();
|
|
$this->processAccounts();
|
|
} catch (SPException $e) {
|
|
throw $e;
|
|
} catch (\Exception $e) {
|
|
throw new SPException($e->getMessage(), SPException::CRITICAL);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Obtener la versión del XML
|
|
*/
|
|
protected function getXmlVersion()
|
|
{
|
|
$DomXpath = new DOMXPath($this->xmlDOM);
|
|
$this->version = (int)str_replace('.', '', $DomXpath->query('/Root/Meta/Version')->item(0)->nodeValue);
|
|
}
|
|
|
|
/**
|
|
* Verificar si existen datos encriptados
|
|
*
|
|
* @return bool
|
|
*/
|
|
protected function detectEncrypted()
|
|
{
|
|
return ($this->xmlDOM->getElementsByTagName('Encrypted')->length > 0);
|
|
}
|
|
|
|
/**
|
|
* Procesar los datos encriptados y añadirlos al árbol DOM desencriptados
|
|
*
|
|
* @throws \SP\Core\Exceptions\SPException
|
|
* @throws \Defuse\Crypto\Exception\CryptoException
|
|
*/
|
|
protected function processEncrypted()
|
|
{
|
|
$hash = $this->xmlDOM->getElementsByTagName('Encrypted')->item(0)->getAttribute('hash');
|
|
|
|
if ($hash !== '' && !Hash::checkHashKey($this->ImportParams->getImportPwd(), $hash)) {
|
|
throw new SPException(__('Clave de encriptación incorrecta', false), SPException::ERROR);
|
|
}
|
|
|
|
foreach ($this->xmlDOM->getElementsByTagName('Data') as $node) {
|
|
/** @var $node \DOMElement */
|
|
$data = base64_decode($node->nodeValue);
|
|
|
|
if ($this->version >= 210) {
|
|
$securedKey = Crypt::unlockSecuredKey($node->getAttribute('key'), $this->ImportParams->getImportPwd());
|
|
$xmlDecrypted = Crypt::decrypt($data, $securedKey, $this->ImportParams->getImportPwd());
|
|
} else {
|
|
$xmlDecrypted = OldCrypt::getDecrypt($data, base64_decode($node->getAttribute('iv'), $this->ImportParams->getImportPwd()));
|
|
}
|
|
|
|
$newXmlData = new \DOMDocument();
|
|
// $newXmlData->preserveWhiteSpace = true;
|
|
if (!$newXmlData->loadXML($xmlDecrypted)) {
|
|
throw new SPException(__('Clave de encriptación incorrecta', false), SPException::ERROR);
|
|
}
|
|
|
|
$newNode = $this->xmlDOM->importNode($newXmlData->documentElement, TRUE);
|
|
|
|
$this->xmlDOM->documentElement->appendChild($newNode);
|
|
}
|
|
|
|
// Eliminar los datos encriptados tras desencriptar los mismos
|
|
if ($this->xmlDOM->getElementsByTagName('Data')->length > 0) {
|
|
$nodeData = $this->xmlDOM->getElementsByTagName('Encrypted')->item(0);
|
|
$nodeData->parentNode->removeChild($nodeData);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Obtener las categorías y añadirlas a sysPass.
|
|
*
|
|
* @param \DOMElement $Category
|
|
* @throws SPException
|
|
* @throws \SP\Core\Exceptions\InvalidClassException
|
|
*/
|
|
protected function processCategories(\DOMElement $Category = null)
|
|
{
|
|
if ($Category === null) {
|
|
$this->getNodesData('Categories', 'Category', __FUNCTION__);
|
|
return;
|
|
}
|
|
|
|
$CategoryData = new CategoryData();
|
|
|
|
foreach ($Category->childNodes as $categoryNode) {
|
|
if (isset($categoryNode->tagName)) {
|
|
switch ($categoryNode->tagName) {
|
|
case 'name':
|
|
$CategoryData->setName($categoryNode->nodeValue);
|
|
break;
|
|
case 'description':
|
|
$CategoryData->setDescription($categoryNode->nodeValue);
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
$this->addCategory($CategoryData);
|
|
|
|
$this->categories[$Category->getAttribute('id')] = $CategoryData->getId();
|
|
}
|
|
|
|
/**
|
|
* Obtener los clientes y añadirlos a sysPass.
|
|
*
|
|
* @param \DOMElement $Customer
|
|
* @throws SPException
|
|
* @throws \SP\Core\Exceptions\InvalidClassException
|
|
*/
|
|
protected function processCustomers(\DOMElement $Customer = null)
|
|
{
|
|
if ($Customer === null) {
|
|
$this->getNodesData('Customers', 'Customer', __FUNCTION__);
|
|
return;
|
|
}
|
|
|
|
$CustomerData = new ClientData();
|
|
|
|
foreach ($Customer->childNodes as $customerNode) {
|
|
if (isset($customerNode->tagName)) {
|
|
switch ($customerNode->tagName) {
|
|
case 'name':
|
|
$CustomerData->setName($customerNode->nodeValue);
|
|
break;
|
|
case 'description':
|
|
$CustomerData->setDescription($customerNode->nodeValue);
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
$this->addCustomer($CustomerData);
|
|
|
|
$this->customers[$Customer->getAttribute('id')] = $CustomerData->getId();
|
|
}
|
|
|
|
/**
|
|
* Obtener las etiquetas y añadirlas a sysPass.
|
|
*
|
|
* @param \DOMElement $Tag
|
|
* @throws SPException
|
|
* @throws \SP\Core\Exceptions\InvalidClassException
|
|
*/
|
|
protected function processTags(\DOMElement $Tag = null)
|
|
{
|
|
if ($Tag === null) {
|
|
$this->getNodesData('Tags', 'Tag', __FUNCTION__, false);
|
|
return;
|
|
}
|
|
|
|
$TagData = new TagData();
|
|
|
|
foreach ($Tag->childNodes as $tagNode) {
|
|
if (isset($tagNode->tagName)) {
|
|
switch ($tagNode->tagName) {
|
|
case 'name':
|
|
$TagData->setName($tagNode->nodeValue);
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
|
|
$this->addTag($TagData);
|
|
|
|
$this->tags[$Tag->getAttribute('id')] = $TagData->getId();
|
|
}
|
|
|
|
/**
|
|
* Obtener los datos de las cuentas de sysPass y crearlas.
|
|
*
|
|
* @param \DOMElement $Account
|
|
* @throws SPException
|
|
*/
|
|
protected function processAccounts(\DOMElement $Account = null)
|
|
{
|
|
if ($Account === null) {
|
|
$this->getNodesData('Accounts', 'Account', __FUNCTION__);
|
|
return;
|
|
}
|
|
|
|
$AccountData = new AccountExtData();
|
|
|
|
/** @var \DOMElement $accountNode */
|
|
foreach ($Account->childNodes as $accountNode) {
|
|
if (isset($accountNode->tagName)) {
|
|
switch ($accountNode->tagName) {
|
|
case 'name';
|
|
$AccountData->setName($accountNode->nodeValue);
|
|
break;
|
|
case 'login';
|
|
$AccountData->setLogin($accountNode->nodeValue);
|
|
break;
|
|
case 'categoryId';
|
|
$AccountData->setCategoryId($this->categories[(int)$accountNode->nodeValue]);
|
|
break;
|
|
case 'customerId';
|
|
$AccountData->setClientId($this->customers[(int)$accountNode->nodeValue]);
|
|
break;
|
|
case 'url';
|
|
$AccountData->setUrl($accountNode->nodeValue);
|
|
break;
|
|
case 'pass';
|
|
$AccountData->setPass($accountNode->nodeValue);
|
|
break;
|
|
case 'key';
|
|
$AccountData->setKey($accountNode->nodeValue);
|
|
break;
|
|
case 'notes';
|
|
$AccountData->setNotes($accountNode->nodeValue);
|
|
break;
|
|
case 'tags':
|
|
$tags = $this->processAccountTags($accountNode->childNodes);
|
|
}
|
|
}
|
|
}
|
|
|
|
$this->addAccount($AccountData);
|
|
|
|
if (isset($tags) && count($tags)) {
|
|
$this->addAccountTags($AccountData, $tags);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Procesar las etiquetas de la cuenta
|
|
*
|
|
* @param \DOMNodeList $nodes
|
|
* @return array
|
|
*/
|
|
protected function processAccountTags(\DOMNodeList $nodes)
|
|
{
|
|
$tags = [];
|
|
|
|
if ($nodes->length > 0) {
|
|
/** @var \DOMElement $accountTagNode */
|
|
foreach ($nodes as $accountTagNode) {
|
|
if (isset($accountTagNode->tagName)) {
|
|
$tags[] = $accountTagNode->getAttribute('id');
|
|
}
|
|
}
|
|
}
|
|
|
|
return $tags;
|
|
}
|
|
} |