Mirrors/sysPass
2
0
Fork 0
mirror of https://github.com/nuxsmin/sysPass.git synced 2026-03-03 15:14:08 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
ef700ec79dd42dc5d8a583e55cbba661429df87d
sysPass/lib/SP/Mvc/Controller/ControllerTrait.php
nuxsmin 98fe0ba35c * [FIX] Fixed URL when downloading resources and sysPass id behind a reverse proxy. Thanks to @vmario89 for the feedback. Closes #1102 
* [FIX] Fixed wrong behavior when copying to clipboard an account's password through public link
* [MOD] Improved URL handling
* [MOD] Improved deep links handling

Signed-off-by: nuxsmin <nuxsmin@syspass.org>
2018-11-17 13:11:58 +01:00

143 lines
4.4 KiB
PHP
Raw Blame History

<?php
/**
* sysPass
*
* @author nuxsmin
* @link https://syspass.org
* @copyright 2012-2018, Rubén Domínguez nuxsmin@$syspass.org
*
* This file is part of sysPass.
*
* sysPass is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
*
* sysPass is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License
* along with sysPass. If not, see <http://www.gnu.org/licenses/>.
*/
namespace SP\Mvc\Controller;
use SP\Bootstrap;
use SP\Config\ConfigData;
use SP\Core\Context\SessionContext;
use SP\Core\Exceptions\SPException;
use SP\Http\Json;
use SP\Http\JsonResponse;
use SP\Http\Request;
use SP\Http\Uri;
use SP\Util\Util;
/**
* Trait ControllerTrait
*
* @package SP\Mvc\Controller
* @property ConfigData $configData
*/
trait ControllerTrait
{
/**
* @return string
*/
protected function getControllerName()
{
$class = static::class;
return substr($class, strrpos($class, '\\') + 1, -strlen('Controller')) ?: '';
}
/**
* Comprobar si la sesión está activa
*
* @param SessionContext $context
* @param Request $request
* @param ConfigData $configData
* @param \Closure $onRedirect
* @param bool $requireAuthCompleted
*/
protected function checkLoggedInSession(SessionContext $context,
Request $request,
ConfigData $configData,
\Closure $onRedirect,
$requireAuthCompleted = true)
{
if ($context->isLoggedIn() === false
|| $context->getAuthCompleted() !== $requireAuthCompleted
) {
if ($request->isJson()) {
$jsonResponse = new JsonResponse(__u('Session not started or timed out'));
$jsonResponse->setStatus(10);
Json::fromDic()->returnJson($jsonResponse);
} elseif ($request->isAjax()) {
Util::logout();
} else {
try {
// Analyzes if there is any direct route within the URL
// then it computes the route HMAC to build a signed URI
// which would be used during logging in
$route = $request->analyzeString('r');
$hash = $request->analyzeString('h');
$uri = new Uri(Bootstrap::$WEBROOT . Bootstrap::$SUBURI);
$uri->addParam('_r', 'login');
if ($route && $hash) {
$key = $configData->getPasswordSalt();
$request->verifySignature($key);
$uri->addParam('from', $route);
$onRedirect->call($this, $uri->getUriSigned($key));
} else {
$onRedirect->call($this, $uri->getUri());
}
} catch (SPException $e) {
processException($e);
}
}
}
}
/**
* @param string $previousToken
* @param Request $request
*
* @throws SPException
*/
protected function checkSecurityToken($previousToken, Request $request)
{
if ($request->analyzeString('h') !== null
&& $request->analyzeString('from') === null
&& isset($this->configData)
) {
$request->verifySignature($this->configData->getPasswordSalt());
} else {
$sk = $request->analyzeString('sk');
if (!$sk || $previousToken !== $sk) {
throw new SPException(
__u('Invalid Action'),
SPException::ERROR,
null,
1
);
}
}
}
/**
* Acción no disponible
*/
protected function invalidAction()
{
Json::fromDic()->returnJson(new JsonResponse(__u('Invalid Action')));
}
}
Reference in New Issue View Git Blame Copy Permalink