Inspection of "Feature/tool for fixing items empty" - nilsteampassnet/TeamPass - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Pull Request — master (#4585)

by Nils

created 2025-02-22 17:11 UTC

Status

Spacing +33 added lines, -33 removed lines patch added patch discarded remove patch

@@ -122,7 +122,7 @@  discard block
 block discarded – undo
 DB::update(
     prefixTable('background_subtasks'),
     array(
-        'sub_task_in_progress' => 0,    // flag sub task is no more in prgoress
+        'sub_task_in_progress' => 0, // flag sub task is no more in prgoress
         'is_in_progress' => 0,
         'finished_at' => time(),
         'updated_at' => time(),
@@ -158,7 +158,7 @@  discard block
 block discarded – undo
         // Check if user exists
         $userInfo = DB::queryFirstRow(
             'SELECT public_key, private_key
-            FROM ' . prefixTable('users') . '
+            FROM ' . prefixTable('users').'
             WHERE id = %i',
             $post_user_id
         );
@@ -271,13 +271,13 @@  discard block
 block discarded – undo
 {
     $userInfo = DB::queryFirstRow(
         'SELECT pw, public_key, private_key, login, name
-        FROM ' . prefixTable('users') . '
+        FROM ' . prefixTable('users').'
         WHERE id = %i',
         $owner_id
     );
     
     // decrypt owner password
-    $pwd = cryption($owner_pwd, '','decrypt', $SETTINGS)['string'];
+    $pwd = cryption($owner_pwd, '', 'decrypt', $SETTINGS)['string'];
     // decrypt private key and send back
     return [
         'private_key' => decryptPrivateKey($pwd, $userInfo['private_key']),
@@ -317,17 +317,17 @@  discard block
 block discarded – undo
     // Loop on items
     $rows = DB::query(
         'SELECT id, pw, perso
-        FROM ' . prefixTable('items') . '
+        FROM ' . prefixTable('items').'
         '.(isset($extra_arguments['only_personal_items']) === true && $extra_arguments['only_personal_items'] === 1 ? 'WHERE perso = 1' : 'WHERE perso = 0').'
         ORDER BY id ASC
-        LIMIT ' . $post_start . ', ' . $post_length
+        LIMIT ' . $post_start.', '.$post_length
     );
 
     foreach ($rows as $record) {
         // Get itemKey from current user
         $currentUserKey = DB::queryFirstRow(
             'SELECT share_key, increment_id
-            FROM ' . prefixTable('sharekeys_items') . '
+            FROM ' . prefixTable('sharekeys_items').'
             WHERE object_id = %i AND user_id = %i',
             $record['id'],
             (int) $record['perso'] === 0 ? $extra_arguments['owner_id'] : $extra_arguments['new_user_id']
@@ -354,7 +354,7 @@  discard block
 block discarded – undo
         
         $currentUserKey = DB::queryFirstRow(
             'SELECT increment_id
-            FROM ' . prefixTable('sharekeys_items') . '
+            FROM ' . prefixTable('sharekeys_items').'
             WHERE object_id = %i AND user_id = %i',
             $record['id'],
             $post_user_id
@@ -428,15 +428,15 @@  discard block
 block discarded – undo
     // Loop on logs
     $rows = DB::query(
         'SELECT increment_id
-        FROM ' . prefixTable('log_items') . '
+        FROM ' . prefixTable('log_items').'
         WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"
-        LIMIT ' . $post_start . ', ' . $post_length
+        LIMIT ' . $post_start.', '.$post_length
     );
     foreach ($rows as $record) {
         // Get itemKey from current user
         $currentUserKey = DB::queryFirstRow(
             'SELECT share_key
-            FROM ' . prefixTable('sharekeys_logs') . '
+            FROM ' . prefixTable('sharekeys_logs').'
             WHERE object_id = %i AND user_id = %i',
             $record['increment_id'],
             $extra_arguments['owner_id']
@@ -468,7 +468,7 @@  discard block
 block discarded – undo
             if ((int) $post_user_id !== (int) $extra_arguments['owner_id']) {
                 $currentUserKey = DB::queryFirstRow(
                     'SELECT increment_id
-                    FROM ' . prefixTable('sharekeys_items') . '
+                    FROM ' . prefixTable('sharekeys_items').'
                     WHERE object_id = %i AND user_id = %i',
                     $record['id'],
                     $post_user_id
@@ -490,7 +490,7 @@  discard block
 block discarded – undo
     // SHould we change step?
     DB::query(
         'SELECT increment_id
-        FROM ' . prefixTable('log_items') . '
+        FROM ' . prefixTable('log_items').'
         WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"'
     );
 
@@ -530,15 +530,15 @@  discard block
 block discarded – undo
     // Loop on fields
     $rows = DB::query(
         'SELECT id
-        FROM ' . prefixTable('categories_items') . '
+        FROM ' . prefixTable('categories_items').'
         WHERE encryption_type = "teampass_aes"
-        LIMIT ' . $post_start . ', ' . $post_length
+        LIMIT ' . $post_start.', '.$post_length
     );
     foreach ($rows as $record) {
         // Get itemKey from current user
         $currentUserKey = DB::queryFirstRow(
             'SELECT share_key
-            FROM ' . prefixTable('sharekeys_fields') . '
+            FROM ' . prefixTable('sharekeys_fields').'
             WHERE object_id = %i AND user_id = %i',
             $record['id'],
             $extra_arguments['owner_id']
@@ -566,7 +566,7 @@  discard block
 block discarded – undo
                 if ((int) $post_user_id !== (int) $extra_arguments['owner_id']) {
                     $currentUserKey = DB::queryFirstRow(
                         'SELECT increment_id
-                        FROM ' . prefixTable('sharekeys_items') . '
+                        FROM ' . prefixTable('sharekeys_items').'
                         WHERE object_id = %i AND user_id = %i',
                         $record['id'],
                         $post_user_id
@@ -589,7 +589,7 @@  discard block
 block discarded – undo
     // SHould we change step?
     DB::query(
         'SELECT *
-        FROM ' . prefixTable('categories_items') . '
+        FROM ' . prefixTable('categories_items').'
         WHERE encryption_type = "teampass_aes"'
     );
 
@@ -629,14 +629,14 @@  discard block
 block discarded – undo
     // Loop on suggestions
     $rows = DB::query(
         'SELECT id
-        FROM ' . prefixTable('suggestion') . '
-        LIMIT ' . $post_start . ', ' . $post_length
+        FROM ' . prefixTable('suggestion').'
+        LIMIT ' . $post_start.', '.$post_length
     );
     foreach ($rows as $record) {
         // Get itemKey from current user
         $currentUserKey = DB::queryFirstRow(
             'SELECT share_key
-            FROM ' . prefixTable('sharekeys_suggestions') . '
+            FROM ' . prefixTable('sharekeys_suggestions').'
             WHERE object_id = %i AND user_id = %i',
             $record['id'],
             $extra_arguments['owner_id']
@@ -668,7 +668,7 @@  discard block
 block discarded – undo
             if ((int) $post_user_id !== (int) $extra_arguments['owner_id']) {
                 $currentUserKey = DB::queryFirstRow(
                     'SELECT increment_id
-                    FROM ' . prefixTable('sharekeys_items') . '
+                    FROM ' . prefixTable('sharekeys_items').'
                     WHERE object_id = %i AND user_id = %i',
                     $record['id'],
                     $post_user_id
@@ -728,16 +728,16 @@  discard block
 block discarded – undo
     // Loop on files
     $rows = DB::query(
         'SELECT f.id AS id, i.perso AS perso
-        FROM ' . prefixTable('files') . ' AS f
-        INNER JOIN ' . prefixTable('items') . ' AS i ON i.id = f.id_item
-        WHERE f.status = "' . TP_ENCRYPTION_NAME . '"
-        LIMIT ' . $post_start . ', ' . $post_length
+        FROM ' . prefixTable('files').' AS f
+        INNER JOIN ' . prefixTable('items').' AS i ON i.id = f.id_item
+        WHERE f.status = "' . TP_ENCRYPTION_NAME.'"
+        LIMIT ' . $post_start.', '.$post_length
     ); //aes_encryption
     foreach ($rows as $record) {
         // Get itemKey from current user
         $currentUserKey = DB::queryFirstRow(
             'SELECT share_key, increment_id
-            FROM ' . prefixTable('sharekeys_files') . '
+            FROM ' . prefixTable('sharekeys_files').'
             WHERE object_id = %i AND user_id = %i',
             $record['id'],
             (int) $record['perso'] === 0 ? $extra_arguments['owner_id'] : $extra_arguments['new_user_id']
@@ -765,7 +765,7 @@  discard block
 block discarded – undo
 
         $currentUserKey = DB::queryFirstRow(
             'SELECT increment_id
-            FROM ' . prefixTable('sharekeys_files') . '
+            FROM ' . prefixTable('sharekeys_files').'
             WHERE object_id = %i AND user_id = %i',
             $record['id'],
             $post_user_id
@@ -796,8 +796,8 @@  discard block
 block discarded – undo
     // SHould we change step? Finished ?
     DB::query(
         'SELECT *
-        FROM ' . prefixTable('files') . '
-        WHERE status = "' . TP_ENCRYPTION_NAME . '"'
+        FROM ' . prefixTable('files').'
+        WHERE status = "' . TP_ENCRYPTION_NAME.'"'
     );
     $counter = DB::count();
     $next_start = (int) $post_start + (int) $post_length;
@@ -863,7 +863,7 @@  discard block
 block discarded – undo
     // get user info
     $userInfo = DB::queryFirstRow(
         'SELECT email, login, auth_type, special, lastname, name
-        FROM ' . prefixTable('users') . '
+        FROM ' . prefixTable('users').'
         WHERE id = %i',
         $extra_arguments['new_user_id']
     );
@@ -878,10 +878,10 @@  discard block
 block discarded – undo
             filter_var($userInfo['email'], FILTER_SANITIZE_FULL_SPECIAL_CHARS),
             // @scrutinizer ignore-type
             empty($extra_arguments['email_body']) === false ? $extra_arguments['email_body'] : $lang->get('email_body_user_config_1'),
-            'TEAMPASS - ' . $lang->get('login_credentials'),
+            'TEAMPASS - '.$lang->get('login_credentials'),
             (array) filter_var_array(
                 [
-                    '#code#' => cryption($extra_arguments['new_user_code'], '','decrypt', $SETTINGS)['string'],
+                    '#code#' => cryption($extra_arguments['new_user_code'], '', 'decrypt', $SETTINGS)['string'],
                     '#lastname#' => isset($userInfo['name']) === true ? $userInfo['name'] : '',
                     '#login#' => isset($userInfo['login']) === true ? $userInfo['login'] : '',
                 ],

Please login to merge, or discard this patch.

scripts/background_tasks___userKeysCreation.php 1 patch

Spacing +14 added lines, -14 removed lines patch added patch discarded remove patch

@@ -67,7 +67,7 @@  discard block
 block discarded – undo
 
 $processToPerform = DB::queryfirstrow(
     'SELECT *
-    FROM ' . prefixTable('background_tasks') . '
+    FROM ' . prefixTable('background_tasks').'
     WHERE (finished_at IS NULL OR finished_at = "") AND process_type = %s
     ORDER BY increment_id ASC',
     'create_user_keys'
@@ -84,7 +84,7 @@  discard block
 block discarded – undo
     // Check if subtasks are still running
     // This in order to prevent the script from running multiple times on same objects
     while (DB::queryFirstField(
-        'SELECT COUNT(*) FROM ' . prefixTable('background_subtasks') . ' 
+        'SELECT COUNT(*) FROM '.prefixTable('background_subtasks').' 
         WHERE is_in_progress = 1'
     ) > 0) {
         sleep(10); // Wait 10 seconds before continuing
@@ -117,7 +117,7 @@  discard block
 block discarded – undo
             $subTaskParams = json_decode($subTask['task'], true);
 
             if (WIP === true) {
-                error_log('Subtask in progress: '.$subTask['increment_id']." (".$taskId.") - "./** @scrutinizer ignore-type */ print_r($subTaskParams,true));
+                error_log('Subtask in progress: '.$subTask['increment_id']." (".$taskId.") - "./** @scrutinizer ignore-type */ print_r($subTaskParams, true));
             }
             
             // Build all subtasks if first one
@@ -126,7 +126,7 @@  discard block
 block discarded – undo
                     // Get total number of items
                     DB::query(
                         'SELECT *
-                        FROM ' . prefixTable('items') . '
+                        FROM ' . prefixTable('items').'
                         '.(isset($taskArgumentsArray['only_personal_items']) === true && $taskArgumentsArray['only_personal_items'] === 1 ? 'WHERE perso = 1' : '')
                     );
                     createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
@@ -135,7 +135,7 @@  discard block
 block discarded – undo
                     // Get total number of items
                     DB::query(
                         'SELECT *
-                        FROM ' . prefixTable('log_items') . '
+                        FROM ' . prefixTable('log_items').'
                         WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"'
                     );
                     createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
@@ -144,7 +144,7 @@  discard block
 block discarded – undo
                     // Get total number of items
                     DB::query(
                         'SELECT *
-                        FROM ' . prefixTable('categories_items') . '
+                        FROM ' . prefixTable('categories_items').'
                         WHERE encryption_type = "teampass_aes"'
                     );
                     createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
@@ -161,9 +161,9 @@  discard block
 block discarded – undo
                     // Get total number of items
                     DB::query(
                         'SELECT *
-                        FROM ' . prefixTable('files') . ' AS f
-                        INNER JOIN ' . prefixTable('items') . ' AS i ON i.id = f.id_item
-                        WHERE f.status = "' . TP_ENCRYPTION_NAME . '"'
+                        FROM ' . prefixTable('files').' AS f
+                        INNER JOIN ' . prefixTable('items').' AS i ON i.id = f.id_item
+                        WHERE f.status = "' . TP_ENCRYPTION_NAME.'"'
                     );
                     createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
                 }
@@ -190,7 +190,7 @@  discard block
 block discarded – undo
     // Check if subtasks have to be created
     DB::query(
         'SELECT *
-        FROM ' . prefixTable('background_subtasks') . '
+        FROM ' . prefixTable('background_subtasks').'
         WHERE task_id = %i AND task LIKE %ss',
         $taskId,
         $action
@@ -218,7 +218,7 @@  discard block
 block discarded – undo
 function countActiveSymfonyProcesses() {
     // Count the number of active processes
     return DB::queryFirstField(
-        'SELECT COUNT(*) FROM ' . prefixTable('background_subtasks') . 
+        'SELECT COUNT(*) FROM '.prefixTable('background_subtasks'). 
         ' WHERE process_id IS NOT NULL AND finished_at IS NULL'
     );
 }
@@ -229,7 +229,7 @@  discard block
 block discarded – undo
 function getSubTasks($taskId) {
     $task_to_perform = DB::query(
         'SELECT *
-        FROM ' . prefixTable('background_subtasks') . '
+        FROM ' . prefixTable('background_subtasks').'
         WHERE task_id = %i AND finished_at IS NULL
         ORDER BY increment_id ASC',
         $taskId
@@ -278,7 +278,7 @@  discard block
 block discarded – undo
 function reloadSubTask($subTaskId) {
     // Retrieve subtask information from the database
     $subTask = DB::queryFirstRow(
-        'SELECT * FROM ' . prefixTable('background_subtasks') . ' WHERE increment_id = %i', 
+        'SELECT * FROM '.prefixTable('background_subtasks').' WHERE increment_id = %i', 
         $subTaskId
     );
 
@@ -323,7 +323,7 @@  discard block
 block discarded – undo
     // Get all processes
     $subtasks = DB::query(
         'SELECT *
-        FROM ' . prefixTable('background_subtasks') . '
+        FROM ' . prefixTable('background_subtasks').'
         WHERE process_id IS NOT NULL AND finished_at IS NULL'
     );
 

Please login to merge, or discard this patch.

sources/tools.queries.php 2 patches

Switch Indentation +171 added lines, -171 removed lines patch added patch discarded remove patch

@@ -91,215 +91,215 @@
 block discarded – undo
 switch ($post_type) {
 //##########################################################
 //CASE for creating a DB backup
-case 'perform_fix_pf_items-step1':
-    // Check KEY
-    if ($post_key !== $session->get('key')) {
-        echo prepareExchangedData(
-            array(
-                'error' => true,
-                'message' => $lang->get('key_is_not_correct'),
-            ),
-            'encode'
-        );
-        break;
-    }
-    // Is admin?
-    if ($session->get('user-admin') !== 1) {
-        echo prepareExchangedData(
-            array(
-                'error' => true,
-                'message' => $lang->get('error_not_allowed_to'),
-            ),
-            'encode'
-        );
-        break;
-    }
+    case 'perform_fix_pf_items-step1':
+        // Check KEY
+        if ($post_key !== $session->get('key')) {
+            echo prepareExchangedData(
+                array(
+                    'error' => true,
+                    'message' => $lang->get('key_is_not_correct'),
+                ),
+                'encode'
+            );
+            break;
+        }
+        // Is admin?
+        if ($session->get('user-admin') !== 1) {
+            echo prepareExchangedData(
+                array(
+                    'error' => true,
+                    'message' => $lang->get('error_not_allowed_to'),
+                ),
+                'encode'
+            );
+            break;
+        }
 
-    // decrypt and retrieve data in JSON format
-    $dataReceived = prepareExchangedData(
-        $post_data,
-        'decode'
-    );
+        // decrypt and retrieve data in JSON format
+        $dataReceived = prepareExchangedData(
+            $post_data,
+            'decode'
+        );
 
-    $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
+        $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
 
-    // Get user info
-    $userInfo = DB::queryFirstRow(
-        'SELECT private_key, public_key, psk, encrypted_psk
+        // Get user info
+        $userInfo = DB::queryFirstRow(
+            'SELECT private_key, public_key, psk, encrypted_psk
         FROM teampass_users
         WHERE id = %i',
-        $userId
-    );
+            $userId
+        );
 
-    // Get user's private folders
-    $userPFRoot = DB::queryFirstRow(
-        'SELECT id
+        // Get user's private folders
+        $userPFRoot = DB::queryFirstRow(
+            'SELECT id
         FROM teampass_nested_tree
         WHERE title = %i',
-        $userId
-    );
-    if (DB::count() === 0) {
-        echo prepareExchangedData(
-            array(
-                'error' => true,
-                'message' => 'User has no personal folders',
-            ),
-            'encode'
-        );
-        break;
-    }
-    $personalFolders = [];
-    $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title');
-    $tree->rebuild();
-    $folders = $tree->getDescendants($userPFRoot['id'], true);
-    foreach ($folders as $folder) {
-        array_push($personalFolders, $folder->id);
-    }
-
-    //Show done
-    echo prepareExchangedData(
-        array(
-            'error' => false,
-            'message' => 'Personal Folders found: ',
-            'personalFolders' => json_encode($personalFolders),
-        ),
-        'encode'
-    );
-    break;
-
-case 'perform_fix_pf_items-step2':
-    // Check KEY
-    if ($post_key !== $session->get('key')) {
-        echo prepareExchangedData(
-            array(
-                'error' => true,
-                'message' => $lang->get('key_is_not_correct'),
-            ),
-            'encode'
+            $userId
         );
-        break;
-    }
-    // Is admin?
-    if ($session->get('user-admin') !== 1) {
+        if (DB::count() === 0) {
+            echo prepareExchangedData(
+                array(
+                    'error' => true,
+                    'message' => 'User has no personal folders',
+                ),
+                'encode'
+            );
+            break;
+        }
+        $personalFolders = [];
+        $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title');
+        $tree->rebuild();
+        $folders = $tree->getDescendants($userPFRoot['id'], true);
+        foreach ($folders as $folder) {
+            array_push($personalFolders, $folder->id);
+        }
+
+        //Show done
         echo prepareExchangedData(
             array(
-                'error' => true,
-                'message' => $lang->get('error_not_allowed_to'),
+                'error' => false,
+                'message' => 'Personal Folders found: ',
+                'personalFolders' => json_encode($personalFolders),
             ),
             'encode'
         );
         break;
-    }
 
-    // decrypt and retrieve data in JSON format
-    $dataReceived = prepareExchangedData(
-        $post_data,
-        'decode'
-    );
+    case 'perform_fix_pf_items-step2':
+        // Check KEY
+        if ($post_key !== $session->get('key')) {
+            echo prepareExchangedData(
+                array(
+                    'error' => true,
+                    'message' => $lang->get('key_is_not_correct'),
+                ),
+                'encode'
+            );
+            break;
+        }
+        // Is admin?
+        if ($session->get('user-admin') !== 1) {
+            echo prepareExchangedData(
+                array(
+                    'error' => true,
+                    'message' => $lang->get('error_not_allowed_to'),
+                ),
+                'encode'
+            );
+            break;
+        }
 
-    $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
-    $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
+        // decrypt and retrieve data in JSON format
+        $dataReceived = prepareExchangedData(
+            $post_data,
+            'decode'
+        );
+
+        $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
+        $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
 
-    // Delete all private items with sharekeys
-    $pfiSharekeys = DB::queryFirstColumn(
-        'select s.increment_id
+        // Delete all private items with sharekeys
+        $pfiSharekeys = DB::queryFirstColumn(
+            'select s.increment_id
         from teampass_sharekeys_items as s
         INNER JOIN teampass_items AS i ON (i.id = s.object_id)
         WHERE s.user_id = %i AND i.perso = 1 AND i.id_tree IN %ls',
-        $userId,
-        $personalFolders
-    );
-    $pfiSharekeysCount = DB::count();
-    if ($pfiSharekeysCount > 0) {
-        DB::delete(
-            "teampass_sharekeys_items",
-            "increment_id IN %ls",
-            $pfiSharekeys
+            $userId,
+            $personalFolders
         );
-    }
+        $pfiSharekeysCount = DB::count();
+        if ($pfiSharekeysCount > 0) {
+            DB::delete(
+                "teampass_sharekeys_items",
+                "increment_id IN %ls",
+                $pfiSharekeys
+            );
+        }
 
     
-    //Show done
-    echo prepareExchangedData(
-        array(
-            'error' => false,
-            'message' => '<br>Number of Sharekeys for private items DELETED: ',
-            'nbDeleted' => $pfiSharekeysCount,
-            'personalFolders' => json_encode($personalFolders),
-        ),
-        'encode'
-    );
-    break;
-
-case 'perform_fix_pf_items-step3':
-    // Check KEY
-    if ($post_key !== $session->get('key')) {
-        echo prepareExchangedData(
-            array(
-                'error' => true,
-                'message' => $lang->get('key_is_not_correct'),
-            ),
-            'encode'
-        );
-        break;
-    }
-    // Is admin?
-    if ($session->get('user-admin') !== 1) {
+        //Show done
         echo prepareExchangedData(
             array(
-                'error' => true,
-                'message' => $lang->get('error_not_allowed_to'),
+                'error' => false,
+                'message' => '<br>Number of Sharekeys for private items DELETED: ',
+                'nbDeleted' => $pfiSharekeysCount,
+                'personalFolders' => json_encode($personalFolders),
             ),
             'encode'
         );
         break;
-    }
 
-    // decrypt and retrieve data in JSON format
-    $dataReceived = prepareExchangedData(
-        $post_data,
-        'decode'
-    );
+    case 'perform_fix_pf_items-step3':
+        // Check KEY
+        if ($post_key !== $session->get('key')) {
+            echo prepareExchangedData(
+                array(
+                    'error' => true,
+                    'message' => $lang->get('key_is_not_correct'),
+                ),
+                'encode'
+            );
+            break;
+        }
+        // Is admin?
+        if ($session->get('user-admin') !== 1) {
+            echo prepareExchangedData(
+                array(
+                    'error' => true,
+                    'message' => $lang->get('error_not_allowed_to'),
+                ),
+                'encode'
+            );
+            break;
+        }
+
+        // decrypt and retrieve data in JSON format
+        $dataReceived = prepareExchangedData(
+            $post_data,
+            'decode'
+        );
 
-    $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
-    $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
+        $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
+        $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
 
-    // Update from items_old to items all the private itemsitems that have been converted to teampass_aes
-    // Get all key back
-    $items = DB::query(
-        "SELECT id
+        // Update from items_old to items all the private itemsitems that have been converted to teampass_aes
+        // Get all key back
+        $items = DB::query(
+            "SELECT id
         FROM teampass_items
         WHERE id_tree IN %ls AND encryption_type = %s",
-        $personalFolders,
-        "teampass_aes"
-    );
-    //DB::debugMode(false);
-    $nbItems = DB::count();
-    foreach ($items as $item) {
-        $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']);
-        DB::update(
-            "teampass_items",
-            ['pw' => $defusePwd, "encryption_type" => "defuse"],
-            "id = %i",
-            $item['id']
+            $personalFolders,
+            "teampass_aes"
         );
-    }
+        //DB::debugMode(false);
+        $nbItems = DB::count();
+        foreach ($items as $item) {
+            $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']);
+            DB::update(
+                "teampass_items",
+                ['pw' => $defusePwd, "encryption_type" => "defuse"],
+                "id = %i",
+                $item['id']
+            );
+        }
 
     
-    //Show done
-    echo prepareExchangedData(
-        array(
-            'error' => false,
-            'message' => '<br>Number of items reseted to Defuse: ',
-            'nbItems' => $nbItems,
-            'personalFolders' => json_encode($personalFolders),
-        ),
-        'encode'
-    );
-    break;
-
-    /* TOOL #2 - Fixing items master keys */
-    /*
+        //Show done
+        echo prepareExchangedData(
+            array(
+                'error' => false,
+                'message' => '<br>Number of items reseted to Defuse: ',
+                'nbItems' => $nbItems,
+                'personalFolders' => json_encode($personalFolders),
+            ),
+            'encode'
+        );
+        break;
+
+        /* TOOL #2 - Fixing items master keys */
+        /*
     * STEP 1 - Check if we have the correct pwd for TP_USER
     */
     case 'perform_fix_items_master_keys-step1':

Please login to merge, or discard this patch.

Spacing +20 added lines, -20 removed lines patch added patch discarded remove patch

@@ -70,7 +70,7 @@  discard block
 block discarded – undo
 if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('tools') === false) {
     // Not allowed page
     $session->set('system-error_code', ERR_NOT_ALLOWED);
-    include $SETTINGS['cpassman_dir'] . '/error.php';
+    include $SETTINGS['cpassman_dir'].'/error.php';
     exit;
 }
 
@@ -335,13 +335,13 @@  discard block
 block discarded – undo
         // Get PT_USER info
         $userInfo = DB::queryFirstRow(
             'SELECT pw, public_key, private_key, login, name
-            FROM ' . prefixTable('users') . '
+            FROM ' . prefixTable('users').'
             WHERE id = %i',
             TP_USER_ID
         );
 
         // decrypt owner password
-        $pwd = cryption($userInfo['pw'], '','decrypt', $SETTINGS)['string'];
+        $pwd = cryption($userInfo['pw'], '', 'decrypt', $SETTINGS)['string'];
 
         $privateKey = decryptPrivateKey($pwd, $userInfo['private_key']);
 
@@ -367,8 +367,8 @@  discard block
 block discarded – undo
         // Get one itemKey from current user
         $currentUserKey = DB::queryFirstRow(
             'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user
-            FROM ' . prefixTable('sharekeys_items') . ' AS ski
-            INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item
+            FROM ' . prefixTable('sharekeys_items').' AS ski
+            INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item
             WHERE ski.user_id = %i
             ORDER BY RAND()
             LIMIT 1',
@@ -387,7 +387,7 @@  discard block
 block discarded – undo
                 echo  prepareExchangedData(
                     array(
                         'error' => true,
-                        'message' => 'No issue found, normal process should work. This process is now finished. (item id : ' . $currentUserKey['increment_id'] . ')',
+                        'message' => 'No issue found, normal process should work. This process is now finished. (item id : '.$currentUserKey['increment_id'].')',
                     ),
                     'encode'
                 );
@@ -447,7 +447,7 @@  discard block
 block discarded – undo
         // Get user info
         $userInfo = DB::queryFirstRow(
             'SELECT public_key, private_key
-            FROM ' . prefixTable('users') . '
+            FROM ' . prefixTable('users').'
             WHERE id = %i',
             $userId
         );
@@ -470,8 +470,8 @@  discard block
 block discarded – undo
         // Get one itemKey from current user
         $currentUserKey = DB::queryFirstRow(
             'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user
-            FROM ' . prefixTable('sharekeys_items') . ' AS ski
-            INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item
+            FROM ' . prefixTable('sharekeys_items').' AS ski
+            INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item
             WHERE ski.user_id = %i
             ORDER BY RAND()
             LIMIT 1',
@@ -509,8 +509,8 @@  discard block
 block discarded – undo
                 // Get number of users to treat
                 DB::query(
                     'SELECT i.id 
-                    FROM ' . prefixTable('items') . ' AS i
-                    INNER JOIN ' . prefixTable('sharekeys_items') . ' AS si ON i.id = si.object_id
+                    FROM ' . prefixTable('items').' AS i
+                    INNER JOIN ' . prefixTable('sharekeys_items').' AS si ON i.id = si.object_id
                     WHERE i.perso = %i AND si.user_id = %i;',
                     0,
                     $userId
@@ -591,11 +591,11 @@  discard block
 block discarded – undo
         DB::debugMode(false);
         $rows = DB::query(
             'SELECT si.object_id AS object_id, si.share_key AS share_key, i.pw AS pw, si.increment_id as increment_id
-            FROM ' . prefixTable('sharekeys_items') . ' AS si
-            INNER JOIN ' . prefixTable('items') . ' AS i ON (i.id = si.object_id)
+            FROM ' . prefixTable('sharekeys_items').' AS si
+            INNER JOIN ' . prefixTable('items').' AS i ON (i.id = si.object_id)
             WHERE si.user_id = %i
             ORDER BY si.increment_id ASC
-            LIMIT ' . $startIndex . ', ' . $limit,
+            LIMIT ' . $startIndex.', '.$limit,
             $userId
         );        
         DB::debugMode(false);
@@ -621,7 +621,7 @@  discard block
 block discarded – undo
             // It will be updated if already exists
             $currentTPUserKey = DB::queryFirstRow(
                 'SELECT increment_id, user_id, share_key
-                FROM ' . prefixTable('sharekeys_items') . '
+                FROM ' . prefixTable('sharekeys_items').'
                 WHERE object_id = %i AND user_id = %i',
                 $record['object_id'],
                 TP_USER_ID
@@ -708,7 +708,7 @@  discard block
 block discarded – undo
             // Get PT_USER info
             DB::queryFirstRow(
                 'SELECT operation_code
-                FROM ' . prefixTable('sharekeys_backup') . '
+                FROM ' . prefixTable('sharekeys_backup').'
                 WHERE operation_code = %s',
                 $operationCode
             );
@@ -718,7 +718,7 @@  discard block
 block discarded – undo
                 // using increment_id_value in order to update the correct record
                 $rows = DB::query(
                     'SELECT *
-                    FROM ' . prefixTable('sharekeys_backup') . '
+                    FROM ' . prefixTable('sharekeys_backup').'
                     WHERE operation_code = %s',
                     $operationCode
                 );
@@ -737,7 +737,7 @@  discard block
 block discarded – undo
 
                 // Delete all sharekeys for this operation
                 DB::query(
-                    'DELETE FROM ' . prefixTable('sharekeys_backup') . '
+                    'DELETE FROM '.prefixTable('sharekeys_backup').'
                     WHERE operation_code = %i',
                     $operationCode
                 );
@@ -800,7 +800,7 @@  discard block
 block discarded – undo
             // Get operation info
             DB::query(
                 'SELECT operation_code
-                FROM ' . prefixTable('sharekeys_backup') . '
+                FROM ' . prefixTable('sharekeys_backup').'
                 WHERE operation_code = %s',
                 $operationCode
             );
@@ -809,7 +809,7 @@  discard block
 block discarded – undo
             if ($nbKeys > 0) {
                 // Delete all sharekeys for this operation
                 DB::query(
-                    'DELETE FROM ' . prefixTable('sharekeys_backup') . '
+                    'DELETE FROM '.prefixTable('sharekeys_backup').'
                     WHERE operation_code = %s',
                     $operationCode
                 );

Please login to merge, or discard this patch.

		@@ -122,7 +122,7 @@ discard block
		block discarded – undo
122	122	DB::update(
123	123	prefixTable('background_subtasks'),
124	124	array(
125		- 'sub_task_in_progress' => 0, // flag sub task is no more in prgoress
	125	+ 'sub_task_in_progress' => 0, // flag sub task is no more in prgoress
126	126	'is_in_progress' => 0,
127	127	'finished_at' => time(),
128	128	'updated_at' => time(),
		@@ -158,7 +158,7 @@ discard block
		block discarded – undo
158	158	// Check if user exists
159	159	$userInfo = DB::queryFirstRow(
160	160	'SELECT public_key, private_key
161		- FROM ' . prefixTable('users') . '
	161	+ FROM ' . prefixTable('users').'
162	162	WHERE id = %i',
163	163	$post_user_id
164	164	);
		@@ -271,13 +271,13 @@ discard block
		block discarded – undo
271	271	{
272	272	$userInfo = DB::queryFirstRow(
273	273	'SELECT pw, public_key, private_key, login, name
274		- FROM ' . prefixTable('users') . '
	274	+ FROM ' . prefixTable('users').'
275	275	WHERE id = %i',
276	276	$owner_id
277	277	);
278	278
279	279	// decrypt owner password
280		- $pwd = cryption($owner_pwd, '','decrypt', $SETTINGS)['string'];
	280	+ $pwd = cryption($owner_pwd, '', 'decrypt', $SETTINGS)['string'];
281	281	// decrypt private key and send back
282	282	return [
283	283	'private_key' => decryptPrivateKey($pwd, $userInfo['private_key']),
		@@ -317,17 +317,17 @@ discard block
		block discarded – undo
317	317	// Loop on items
318	318	$rows = DB::query(
319	319	'SELECT id, pw, perso
320		- FROM ' . prefixTable('items') . '
	320	+ FROM ' . prefixTable('items').'
321	321	'.(isset($extra_arguments['only_personal_items']) === true && $extra_arguments['only_personal_items'] === 1 ? 'WHERE perso = 1' : 'WHERE perso = 0').'
322	322	ORDER BY id ASC
323		- LIMIT ' . $post_start . ', ' . $post_length
	323	+ LIMIT ' . $post_start.', '.$post_length
324	324	);
325	325
326	326	foreach ($rows as $record) {
327	327	// Get itemKey from current user
328	328	$currentUserKey = DB::queryFirstRow(
329	329	'SELECT share_key, increment_id
330		- FROM ' . prefixTable('sharekeys_items') . '
	330	+ FROM ' . prefixTable('sharekeys_items').'
331	331	WHERE object_id = %i AND user_id = %i',
332	332	$record['id'],
333	333	(int) $record['perso'] === 0 ? $extra_arguments['owner_id'] : $extra_arguments['new_user_id']
		@@ -354,7 +354,7 @@ discard block
		block discarded – undo
354	354
355	355	$currentUserKey = DB::queryFirstRow(
356	356	'SELECT increment_id
357		- FROM ' . prefixTable('sharekeys_items') . '
	357	+ FROM ' . prefixTable('sharekeys_items').'
358	358	WHERE object_id = %i AND user_id = %i',
359	359	$record['id'],
360	360	$post_user_id
		@@ -428,15 +428,15 @@ discard block
		block discarded – undo
428	428	// Loop on logs
429	429	$rows = DB::query(
430	430	'SELECT increment_id
431		- FROM ' . prefixTable('log_items') . '
	431	+ FROM ' . prefixTable('log_items').'
432	432	WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"
433		- LIMIT ' . $post_start . ', ' . $post_length
	433	+ LIMIT ' . $post_start.', '.$post_length
434	434	);
435	435	foreach ($rows as $record) {
436	436	// Get itemKey from current user
437	437	$currentUserKey = DB::queryFirstRow(
438	438	'SELECT share_key
439		- FROM ' . prefixTable('sharekeys_logs') . '
	439	+ FROM ' . prefixTable('sharekeys_logs').'
440	440	WHERE object_id = %i AND user_id = %i',
441	441	$record['increment_id'],
442	442	$extra_arguments['owner_id']
		@@ -468,7 +468,7 @@ discard block
		block discarded – undo
468	468	if ((int) $post_user_id !== (int) $extra_arguments['owner_id']) {
469	469	$currentUserKey = DB::queryFirstRow(
470	470	'SELECT increment_id
471		- FROM ' . prefixTable('sharekeys_items') . '
	471	+ FROM ' . prefixTable('sharekeys_items').'
472	472	WHERE object_id = %i AND user_id = %i',
473	473	$record['id'],
474	474	$post_user_id
		@@ -490,7 +490,7 @@ discard block
		block discarded – undo
490	490	// SHould we change step?
491	491	DB::query(
492	492	'SELECT increment_id
493		- FROM ' . prefixTable('log_items') . '
	493	+ FROM ' . prefixTable('log_items').'
494	494	WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"'
495	495	);
496	496
		@@ -530,15 +530,15 @@ discard block
		block discarded – undo
530	530	// Loop on fields
531	531	$rows = DB::query(
532	532	'SELECT id
533		- FROM ' . prefixTable('categories_items') . '
	533	+ FROM ' . prefixTable('categories_items').'
534	534	WHERE encryption_type = "teampass_aes"
535		- LIMIT ' . $post_start . ', ' . $post_length
	535	+ LIMIT ' . $post_start.', '.$post_length
536	536	);
537	537	foreach ($rows as $record) {
538	538	// Get itemKey from current user
539	539	$currentUserKey = DB::queryFirstRow(
540	540	'SELECT share_key
541		- FROM ' . prefixTable('sharekeys_fields') . '
	541	+ FROM ' . prefixTable('sharekeys_fields').'
542	542	WHERE object_id = %i AND user_id = %i',
543	543	$record['id'],
544	544	$extra_arguments['owner_id']
		@@ -566,7 +566,7 @@ discard block
		block discarded – undo
566	566	if ((int) $post_user_id !== (int) $extra_arguments['owner_id']) {
567	567	$currentUserKey = DB::queryFirstRow(
568	568	'SELECT increment_id
569		- FROM ' . prefixTable('sharekeys_items') . '
	569	+ FROM ' . prefixTable('sharekeys_items').'
570	570	WHERE object_id = %i AND user_id = %i',
571	571	$record['id'],
572	572	$post_user_id
		@@ -589,7 +589,7 @@ discard block
		block discarded – undo
589	589	// SHould we change step?
590	590	DB::query(
591	591	'SELECT *
592		- FROM ' . prefixTable('categories_items') . '
	592	+ FROM ' . prefixTable('categories_items').'
593	593	WHERE encryption_type = "teampass_aes"'
594	594	);
595	595
		@@ -629,14 +629,14 @@ discard block
		block discarded – undo
629	629	// Loop on suggestions
630	630	$rows = DB::query(
631	631	'SELECT id
632		- FROM ' . prefixTable('suggestion') . '
633		- LIMIT ' . $post_start . ', ' . $post_length
	632	+ FROM ' . prefixTable('suggestion').'
	633	+ LIMIT ' . $post_start.', '.$post_length
634	634	);
635	635	foreach ($rows as $record) {
636	636	// Get itemKey from current user
637	637	$currentUserKey = DB::queryFirstRow(
638	638	'SELECT share_key
639		- FROM ' . prefixTable('sharekeys_suggestions') . '
	639	+ FROM ' . prefixTable('sharekeys_suggestions').'
640	640	WHERE object_id = %i AND user_id = %i',
641	641	$record['id'],
642	642	$extra_arguments['owner_id']
		@@ -668,7 +668,7 @@ discard block
		block discarded – undo
668	668	if ((int) $post_user_id !== (int) $extra_arguments['owner_id']) {
669	669	$currentUserKey = DB::queryFirstRow(
670	670	'SELECT increment_id
671		- FROM ' . prefixTable('sharekeys_items') . '
	671	+ FROM ' . prefixTable('sharekeys_items').'
672	672	WHERE object_id = %i AND user_id = %i',
673	673	$record['id'],
674	674	$post_user_id
		@@ -728,16 +728,16 @@ discard block
		block discarded – undo
728	728	// Loop on files
729	729	$rows = DB::query(
730	730	'SELECT f.id AS id, i.perso AS perso
731		- FROM ' . prefixTable('files') . ' AS f
732		- INNER JOIN ' . prefixTable('items') . ' AS i ON i.id = f.id_item
733		- WHERE f.status = "' . TP_ENCRYPTION_NAME . '"
734		- LIMIT ' . $post_start . ', ' . $post_length
	731	+ FROM ' . prefixTable('files').' AS f
	732	+ INNER JOIN ' . prefixTable('items').' AS i ON i.id = f.id_item
	733	+ WHERE f.status = "' . TP_ENCRYPTION_NAME.'"
	734	+ LIMIT ' . $post_start.', '.$post_length
735	735	); //aes_encryption
736	736	foreach ($rows as $record) {
737	737	// Get itemKey from current user
738	738	$currentUserKey = DB::queryFirstRow(
739	739	'SELECT share_key, increment_id
740		- FROM ' . prefixTable('sharekeys_files') . '
	740	+ FROM ' . prefixTable('sharekeys_files').'
741	741	WHERE object_id = %i AND user_id = %i',
742	742	$record['id'],
743	743	(int) $record['perso'] === 0 ? $extra_arguments['owner_id'] : $extra_arguments['new_user_id']
		@@ -765,7 +765,7 @@ discard block
		block discarded – undo
765	765
766	766	$currentUserKey = DB::queryFirstRow(
767	767	'SELECT increment_id
768		- FROM ' . prefixTable('sharekeys_files') . '
	768	+ FROM ' . prefixTable('sharekeys_files').'
769	769	WHERE object_id = %i AND user_id = %i',
770	770	$record['id'],
771	771	$post_user_id
		@@ -796,8 +796,8 @@ discard block
		block discarded – undo
796	796	// SHould we change step? Finished ?
797	797	DB::query(
798	798	'SELECT *
799		- FROM ' . prefixTable('files') . '
800		- WHERE status = "' . TP_ENCRYPTION_NAME . '"'
	799	+ FROM ' . prefixTable('files').'
	800	+ WHERE status = "' . TP_ENCRYPTION_NAME.'"'
801	801	);
802	802	$counter = DB::count();
803	803	$next_start = (int) $post_start + (int) $post_length;
		@@ -863,7 +863,7 @@ discard block
		block discarded – undo
863	863	// get user info
864	864	$userInfo = DB::queryFirstRow(
865	865	'SELECT email, login, auth_type, special, lastname, name
866		- FROM ' . prefixTable('users') . '
	866	+ FROM ' . prefixTable('users').'
867	867	WHERE id = %i',
868	868	$extra_arguments['new_user_id']
869	869	);
		@@ -878,10 +878,10 @@ discard block
		block discarded – undo
878	878	filter_var($userInfo['email'], FILTER_SANITIZE_FULL_SPECIAL_CHARS),
879	879	// @scrutinizer ignore-type
880	880	empty($extra_arguments['email_body']) === false ? $extra_arguments['email_body'] : $lang->get('email_body_user_config_1'),
881		- 'TEAMPASS - ' . $lang->get('login_credentials'),
	881	+ 'TEAMPASS - '.$lang->get('login_credentials'),
882	882	(array) filter_var_array(
883	883	[
884		- '#code#' => cryption($extra_arguments['new_user_code'], '','decrypt', $SETTINGS)['string'],
	884	+ '#code#' => cryption($extra_arguments['new_user_code'], '', 'decrypt', $SETTINGS)['string'],
885	885	'#lastname#' => isset($userInfo['name']) === true ? $userInfo['name'] : '',
886	886	'#login#' => isset($userInfo['login']) === true ? $userInfo['login'] : '',
887	887	],

		@@ -67,7 +67,7 @@ discard block
		block discarded – undo
67	67
68	68	$processToPerform = DB::queryfirstrow(
69	69	'SELECT *
70		- FROM ' . prefixTable('background_tasks') . '
	70	+ FROM ' . prefixTable('background_tasks').'
71	71	WHERE (finished_at IS NULL OR finished_at = "") AND process_type = %s
72	72	ORDER BY increment_id ASC',
73	73	'create_user_keys'
		@@ -84,7 +84,7 @@ discard block
		block discarded – undo
84	84	// Check if subtasks are still running
85	85	// This in order to prevent the script from running multiple times on same objects
86	86	while (DB::queryFirstField(
87		- 'SELECT COUNT(*) FROM ' . prefixTable('background_subtasks') . '
	87	+ 'SELECT COUNT(*) FROM '.prefixTable('background_subtasks').'
88	88	WHERE is_in_progress = 1'
89	89	) > 0) {
90	90	sleep(10); // Wait 10 seconds before continuing
		@@ -117,7 +117,7 @@ discard block
		block discarded – undo
117	117	$subTaskParams = json_decode($subTask['task'], true);
118	118
119	119	if (WIP === true) {
120		- error_log('Subtask in progress: '.$subTask['increment_id']." (".$taskId.") - "./** @scrutinizer ignore-type */ print_r($subTaskParams,true));
	120	+ error_log('Subtask in progress: '.$subTask['increment_id']." (".$taskId.") - "./** @scrutinizer ignore-type */ print_r($subTaskParams, true));
121	121	}
122	122
123	123	// Build all subtasks if first one
		@@ -126,7 +126,7 @@ discard block
		block discarded – undo
126	126	// Get total number of items
127	127	DB::query(
128	128	'SELECT *
129		- FROM ' . prefixTable('items') . '
	129	+ FROM ' . prefixTable('items').'
130	130	'.(isset($taskArgumentsArray['only_personal_items']) === true && $taskArgumentsArray['only_personal_items'] === 1 ? 'WHERE perso = 1' : '')
131	131	);
132	132	createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
		@@ -135,7 +135,7 @@ discard block
		block discarded – undo
135	135	// Get total number of items
136	136	DB::query(
137	137	'SELECT *
138		- FROM ' . prefixTable('log_items') . '
	138	+ FROM ' . prefixTable('log_items').'
139	139	WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"'
140	140	);
141	141	createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
		@@ -144,7 +144,7 @@ discard block
		block discarded – undo
144	144	// Get total number of items
145	145	DB::query(
146	146	'SELECT *
147		- FROM ' . prefixTable('categories_items') . '
	147	+ FROM ' . prefixTable('categories_items').'
148	148	WHERE encryption_type = "teampass_aes"'
149	149	);
150	150	createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
		@@ -161,9 +161,9 @@ discard block
		block discarded – undo
161	161	// Get total number of items
162	162	DB::query(
163	163	'SELECT *
164		- FROM ' . prefixTable('files') . ' AS f
165		- INNER JOIN ' . prefixTable('items') . ' AS i ON i.id = f.id_item
166		- WHERE f.status = "' . TP_ENCRYPTION_NAME . '"'
	164	+ FROM ' . prefixTable('files').' AS f
	165	+ INNER JOIN ' . prefixTable('items').' AS i ON i.id = f.id_item
	166	+ WHERE f.status = "' . TP_ENCRYPTION_NAME.'"'
167	167	);
168	168	createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId);
169	169	}
		@@ -190,7 +190,7 @@ discard block
		block discarded – undo
190	190	// Check if subtasks have to be created
191	191	DB::query(
192	192	'SELECT *
193		- FROM ' . prefixTable('background_subtasks') . '
	193	+ FROM ' . prefixTable('background_subtasks').'
194	194	WHERE task_id = %i AND task LIKE %ss',
195	195	$taskId,
196	196	$action
		@@ -218,7 +218,7 @@ discard block
		block discarded – undo
218	218	function countActiveSymfonyProcesses() {
219	219	// Count the number of active processes
220	220	return DB::queryFirstField(
221		- 'SELECT COUNT(*) FROM ' . prefixTable('background_subtasks') .
	221	+ 'SELECT COUNT(*) FROM '.prefixTable('background_subtasks').
222	222	' WHERE process_id IS NOT NULL AND finished_at IS NULL'
223	223	);
224	224	}
		@@ -229,7 +229,7 @@ discard block
		block discarded – undo
229	229	function getSubTasks($taskId) {
230	230	$task_to_perform = DB::query(
231	231	'SELECT *
232		- FROM ' . prefixTable('background_subtasks') . '
	232	+ FROM ' . prefixTable('background_subtasks').'
233	233	WHERE task_id = %i AND finished_at IS NULL
234	234	ORDER BY increment_id ASC',
235	235	$taskId
		@@ -278,7 +278,7 @@ discard block
		block discarded – undo
278	278	function reloadSubTask($subTaskId) {
279	279	// Retrieve subtask information from the database
280	280	$subTask = DB::queryFirstRow(
281		- 'SELECT * FROM ' . prefixTable('background_subtasks') . ' WHERE increment_id = %i',
	281	+ 'SELECT * FROM '.prefixTable('background_subtasks').' WHERE increment_id = %i',
282	282	$subTaskId
283	283	);
284	284
		@@ -323,7 +323,7 @@ discard block
		block discarded – undo
323	323	// Get all processes
324	324	$subtasks = DB::query(
325	325	'SELECT *
326		- FROM ' . prefixTable('background_subtasks') . '
	326	+ FROM ' . prefixTable('background_subtasks').'
327	327	WHERE process_id IS NOT NULL AND finished_at IS NULL'
328	328	);
329	329

		@@ -91,215 +91,215 @@
		block discarded – undo
91	91	switch ($post_type) {
92	92	//##########################################################
93	93	//CASE for creating a DB backup
94		-case 'perform_fix_pf_items-step1':
95		- // Check KEY
96		- if ($post_key !== $session->get('key')) {
97		- echo prepareExchangedData(
98		- array(
99		- 'error' => true,
100		- 'message' => $lang->get('key_is_not_correct'),
101		- ),
102		- 'encode'
103		- );
104		- break;
105		- }
106		- // Is admin?
107		- if ($session->get('user-admin') !== 1) {
108		- echo prepareExchangedData(
109		- array(
110		- 'error' => true,
111		- 'message' => $lang->get('error_not_allowed_to'),
112		- ),
113		- 'encode'
114		- );
115		- break;
116		- }
	94	+ case 'perform_fix_pf_items-step1':
	95	+ // Check KEY
	96	+ if ($post_key !== $session->get('key')) {
	97	+ echo prepareExchangedData(
	98	+ array(
	99	+ 'error' => true,
	100	+ 'message' => $lang->get('key_is_not_correct'),
	101	+ ),
	102	+ 'encode'
	103	+ );
	104	+ break;
	105	+ }
	106	+ // Is admin?
	107	+ if ($session->get('user-admin') !== 1) {
	108	+ echo prepareExchangedData(
	109	+ array(
	110	+ 'error' => true,
	111	+ 'message' => $lang->get('error_not_allowed_to'),
	112	+ ),
	113	+ 'encode'
	114	+ );
	115	+ break;
	116	+ }
117	117
118		- // decrypt and retrieve data in JSON format
119		- $dataReceived = prepareExchangedData(
120		- $post_data,
121		- 'decode'
122		- );
	118	+ // decrypt and retrieve data in JSON format
	119	+ $dataReceived = prepareExchangedData(
	120	+ $post_data,
	121	+ 'decode'
	122	+ );
123	123
124		- $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
	124	+ $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
125	125
126		- // Get user info
127		- $userInfo = DB::queryFirstRow(
128		- 'SELECT private_key, public_key, psk, encrypted_psk
	126	+ // Get user info
	127	+ $userInfo = DB::queryFirstRow(
	128	+ 'SELECT private_key, public_key, psk, encrypted_psk
129	129	FROM teampass_users
130	130	WHERE id = %i',
131		- $userId
132		- );
	131	+ $userId
	132	+ );
133	133
134		- // Get user's private folders
135		- $userPFRoot = DB::queryFirstRow(
136		- 'SELECT id
	134	+ // Get user's private folders
	135	+ $userPFRoot = DB::queryFirstRow(
	136	+ 'SELECT id
137	137	FROM teampass_nested_tree
138	138	WHERE title = %i',
139		- $userId
140		- );
141		- if (DB::count() === 0) {
142		- echo prepareExchangedData(
143		- array(
144		- 'error' => true,
145		- 'message' => 'User has no personal folders',
146		- ),
147		- 'encode'
148		- );
149		- break;
150		- }
151		- $personalFolders = [];
152		- $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title');
153		- $tree->rebuild();
154		- $folders = $tree->getDescendants($userPFRoot['id'], true);
155		- foreach ($folders as $folder) {
156		- array_push($personalFolders, $folder->id);
157		- }
158		-
159		- //Show done
160		- echo prepareExchangedData(
161		- array(
162		- 'error' => false,
163		- 'message' => 'Personal Folders found: ',
164		- 'personalFolders' => json_encode($personalFolders),
165		- ),
166		- 'encode'
167		- );
168		- break;
169		-
170		-case 'perform_fix_pf_items-step2':
171		- // Check KEY
172		- if ($post_key !== $session->get('key')) {
173		- echo prepareExchangedData(
174		- array(
175		- 'error' => true,
176		- 'message' => $lang->get('key_is_not_correct'),
177		- ),
178		- 'encode'
	139	+ $userId
179	140	);
180		- break;
181		- }
182		- // Is admin?
183		- if ($session->get('user-admin') !== 1) {
	141	+ if (DB::count() === 0) {
	142	+ echo prepareExchangedData(
	143	+ array(
	144	+ 'error' => true,
	145	+ 'message' => 'User has no personal folders',
	146	+ ),
	147	+ 'encode'
	148	+ );
	149	+ break;
	150	+ }
	151	+ $personalFolders = [];
	152	+ $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title');
	153	+ $tree->rebuild();
	154	+ $folders = $tree->getDescendants($userPFRoot['id'], true);
	155	+ foreach ($folders as $folder) {
	156	+ array_push($personalFolders, $folder->id);
	157	+ }
	158	+
	159	+ //Show done
184	160	echo prepareExchangedData(
185	161	array(
186		- 'error' => true,
187		- 'message' => $lang->get('error_not_allowed_to'),
	162	+ 'error' => false,
	163	+ 'message' => 'Personal Folders found: ',
	164	+ 'personalFolders' => json_encode($personalFolders),
188	165	),
189	166	'encode'
190	167	);
191	168	break;
192		- }
193	169
194		- // decrypt and retrieve data in JSON format
195		- $dataReceived = prepareExchangedData(
196		- $post_data,
197		- 'decode'
198		- );
	170	+ case 'perform_fix_pf_items-step2':
	171	+ // Check KEY
	172	+ if ($post_key !== $session->get('key')) {
	173	+ echo prepareExchangedData(
	174	+ array(
	175	+ 'error' => true,
	176	+ 'message' => $lang->get('key_is_not_correct'),
	177	+ ),
	178	+ 'encode'
	179	+ );
	180	+ break;
	181	+ }
	182	+ // Is admin?
	183	+ if ($session->get('user-admin') !== 1) {
	184	+ echo prepareExchangedData(
	185	+ array(
	186	+ 'error' => true,
	187	+ 'message' => $lang->get('error_not_allowed_to'),
	188	+ ),
	189	+ 'encode'
	190	+ );
	191	+ break;
	192	+ }
199	193
200		- $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
201		- $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
	194	+ // decrypt and retrieve data in JSON format
	195	+ $dataReceived = prepareExchangedData(
	196	+ $post_data,
	197	+ 'decode'
	198	+ );
	199	+
	200	+ $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
	201	+ $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
202	202
203		- // Delete all private items with sharekeys
204		- $pfiSharekeys = DB::queryFirstColumn(
205		- 'select s.increment_id
	203	+ // Delete all private items with sharekeys
	204	+ $pfiSharekeys = DB::queryFirstColumn(
	205	+ 'select s.increment_id
206	206	from teampass_sharekeys_items as s
207	207	INNER JOIN teampass_items AS i ON (i.id = s.object_id)
208	208	WHERE s.user_id = %i AND i.perso = 1 AND i.id_tree IN %ls',
209		- $userId,
210		- $personalFolders
211		- );
212		- $pfiSharekeysCount = DB::count();
213		- if ($pfiSharekeysCount > 0) {
214		- DB::delete(
215		- "teampass_sharekeys_items",
216		- "increment_id IN %ls",
217		- $pfiSharekeys
	209	+ $userId,
	210	+ $personalFolders
218	211	);
219		- }
	212	+ $pfiSharekeysCount = DB::count();
	213	+ if ($pfiSharekeysCount > 0) {
	214	+ DB::delete(
	215	+ "teampass_sharekeys_items",
	216	+ "increment_id IN %ls",
	217	+ $pfiSharekeys
	218	+ );
	219	+ }
220	220
221	221
222		- //Show done
223		- echo prepareExchangedData(
224		- array(
225		- 'error' => false,
226		- 'message' => '<br>Number of Sharekeys for private items DELETED: ',
227		- 'nbDeleted' => $pfiSharekeysCount,
228		- 'personalFolders' => json_encode($personalFolders),
229		- ),
230		- 'encode'
231		- );
232		- break;
233		-
234		-case 'perform_fix_pf_items-step3':
235		- // Check KEY
236		- if ($post_key !== $session->get('key')) {
237		- echo prepareExchangedData(
238		- array(
239		- 'error' => true,
240		- 'message' => $lang->get('key_is_not_correct'),
241		- ),
242		- 'encode'
243		- );
244		- break;
245		- }
246		- // Is admin?
247		- if ($session->get('user-admin') !== 1) {
	222	+ //Show done
248	223	echo prepareExchangedData(
249	224	array(
250		- 'error' => true,
251		- 'message' => $lang->get('error_not_allowed_to'),
	225	+ 'error' => false,
	226	+ 'message' => '<br>Number of Sharekeys for private items DELETED: ',
	227	+ 'nbDeleted' => $pfiSharekeysCount,
	228	+ 'personalFolders' => json_encode($personalFolders),
252	229	),
253	230	'encode'
254	231	);
255	232	break;
256		- }
257	233
258		- // decrypt and retrieve data in JSON format
259		- $dataReceived = prepareExchangedData(
260		- $post_data,
261		- 'decode'
262		- );
	234	+ case 'perform_fix_pf_items-step3':
	235	+ // Check KEY
	236	+ if ($post_key !== $session->get('key')) {
	237	+ echo prepareExchangedData(
	238	+ array(
	239	+ 'error' => true,
	240	+ 'message' => $lang->get('key_is_not_correct'),
	241	+ ),
	242	+ 'encode'
	243	+ );
	244	+ break;
	245	+ }
	246	+ // Is admin?
	247	+ if ($session->get('user-admin') !== 1) {
	248	+ echo prepareExchangedData(
	249	+ array(
	250	+ 'error' => true,
	251	+ 'message' => $lang->get('error_not_allowed_to'),
	252	+ ),
	253	+ 'encode'
	254	+ );
	255	+ break;
	256	+ }
	257	+
	258	+ // decrypt and retrieve data in JSON format
	259	+ $dataReceived = prepareExchangedData(
	260	+ $post_data,
	261	+ 'decode'
	262	+ );
263	263
264		- $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
265		- $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
	264	+ $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT);
	265	+ $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS);
266	266
267		- // Update from items_old to items all the private itemsitems that have been converted to teampass_aes
268		- // Get all key back
269		- $items = DB::query(
270		- "SELECT id
	267	+ // Update from items_old to items all the private itemsitems that have been converted to teampass_aes
	268	+ // Get all key back
	269	+ $items = DB::query(
	270	+ "SELECT id
271	271	FROM teampass_items
272	272	WHERE id_tree IN %ls AND encryption_type = %s",
273		- $personalFolders,
274		- "teampass_aes"
275		- );
276		- //DB::debugMode(false);
277		- $nbItems = DB::count();
278		- foreach ($items as $item) {
279		- $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']);
280		- DB::update(
281		- "teampass_items",
282		- ['pw' => $defusePwd, "encryption_type" => "defuse"],
283		- "id = %i",
284		- $item['id']
	273	+ $personalFolders,
	274	+ "teampass_aes"
285	275	);
286		- }
	276	+ //DB::debugMode(false);
	277	+ $nbItems = DB::count();
	278	+ foreach ($items as $item) {
	279	+ $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']);
	280	+ DB::update(
	281	+ "teampass_items",
	282	+ ['pw' => $defusePwd, "encryption_type" => "defuse"],
	283	+ "id = %i",
	284	+ $item['id']
	285	+ );
	286	+ }
287	287
288	288
289		- //Show done
290		- echo prepareExchangedData(
291		- array(
292		- 'error' => false,
293		- 'message' => '<br>Number of items reseted to Defuse: ',
294		- 'nbItems' => $nbItems,
295		- 'personalFolders' => json_encode($personalFolders),
296		- ),
297		- 'encode'
298		- );
299		- break;
300		-
301		- /* TOOL #2 - Fixing items master keys */
302		- /*
	289	+ //Show done
	290	+ echo prepareExchangedData(
	291	+ array(
	292	+ 'error' => false,
	293	+ 'message' => '<br>Number of items reseted to Defuse: ',
	294	+ 'nbItems' => $nbItems,
	295	+ 'personalFolders' => json_encode($personalFolders),
	296	+ ),
	297	+ 'encode'
	298	+ );
	299	+ break;
	300	+
	301	+ /* TOOL #2 - Fixing items master keys */
	302	+ /*
303	303	* STEP 1 - Check if we have the correct pwd for TP_USER
304	304	*/
305	305	case 'perform_fix_items_master_keys-step1':

		@@ -70,7 +70,7 @@ discard block
		block discarded – undo
70	70	if ($checkUserAccess->checkSession() === false \|\| $checkUserAccess->userAccessPage('tools') === false) {
71	71	// Not allowed page
72	72	$session->set('system-error_code', ERR_NOT_ALLOWED);
73		- include $SETTINGS['cpassman_dir'] . '/error.php';
	73	+ include $SETTINGS['cpassman_dir'].'/error.php';
74	74	exit;
75	75	}
76	76
		@@ -335,13 +335,13 @@ discard block
		block discarded – undo
335	335	// Get PT_USER info
336	336	$userInfo = DB::queryFirstRow(
337	337	'SELECT pw, public_key, private_key, login, name
338		- FROM ' . prefixTable('users') . '
	338	+ FROM ' . prefixTable('users').'
339	339	WHERE id = %i',
340	340	TP_USER_ID
341	341	);
342	342
343	343	// decrypt owner password
344		- $pwd = cryption($userInfo['pw'], '','decrypt', $SETTINGS)['string'];
	344	+ $pwd = cryption($userInfo['pw'], '', 'decrypt', $SETTINGS)['string'];
345	345
346	346	$privateKey = decryptPrivateKey($pwd, $userInfo['private_key']);
347	347
		@@ -367,8 +367,8 @@ discard block
		block discarded – undo
367	367	// Get one itemKey from current user
368	368	$currentUserKey = DB::queryFirstRow(
369	369	'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user
370		- FROM ' . prefixTable('sharekeys_items') . ' AS ski
371		- INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item
	370	+ FROM ' . prefixTable('sharekeys_items').' AS ski
	371	+ INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item
372	372	WHERE ski.user_id = %i
373	373	ORDER BY RAND()
374	374	LIMIT 1',
		@@ -387,7 +387,7 @@ discard block
		block discarded – undo
387	387	echo prepareExchangedData(
388	388	array(
389	389	'error' => true,
390		- 'message' => 'No issue found, normal process should work. This process is now finished. (item id : ' . $currentUserKey['increment_id'] . ')',
	390	+ 'message' => 'No issue found, normal process should work. This process is now finished. (item id : '.$currentUserKey['increment_id'].')',
391	391	),
392	392	'encode'
393	393	);
		@@ -447,7 +447,7 @@ discard block
		block discarded – undo
447	447	// Get user info
448	448	$userInfo = DB::queryFirstRow(
449	449	'SELECT public_key, private_key
450		- FROM ' . prefixTable('users') . '
	450	+ FROM ' . prefixTable('users').'
451	451	WHERE id = %i',
452	452	$userId
453	453	);
		@@ -470,8 +470,8 @@ discard block
		block discarded – undo
470	470	// Get one itemKey from current user
471	471	$currentUserKey = DB::queryFirstRow(
472	472	'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user
473		- FROM ' . prefixTable('sharekeys_items') . ' AS ski
474		- INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item
	473	+ FROM ' . prefixTable('sharekeys_items').' AS ski
	474	+ INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item
475	475	WHERE ski.user_id = %i
476	476	ORDER BY RAND()
477	477	LIMIT 1',
		@@ -509,8 +509,8 @@ discard block
		block discarded – undo
509	509	// Get number of users to treat
510	510	DB::query(
511	511	'SELECT i.id
512		- FROM ' . prefixTable('items') . ' AS i
513		- INNER JOIN ' . prefixTable('sharekeys_items') . ' AS si ON i.id = si.object_id
	512	+ FROM ' . prefixTable('items').' AS i
	513	+ INNER JOIN ' . prefixTable('sharekeys_items').' AS si ON i.id = si.object_id
514	514	WHERE i.perso = %i AND si.user_id = %i;',
515	515	0,
516	516	$userId
		@@ -591,11 +591,11 @@ discard block
		block discarded – undo
591	591	DB::debugMode(false);
592	592	$rows = DB::query(
593	593	'SELECT si.object_id AS object_id, si.share_key AS share_key, i.pw AS pw, si.increment_id as increment_id
594		- FROM ' . prefixTable('sharekeys_items') . ' AS si
595		- INNER JOIN ' . prefixTable('items') . ' AS i ON (i.id = si.object_id)
	594	+ FROM ' . prefixTable('sharekeys_items').' AS si
	595	+ INNER JOIN ' . prefixTable('items').' AS i ON (i.id = si.object_id)
596	596	WHERE si.user_id = %i
597	597	ORDER BY si.increment_id ASC
598		- LIMIT ' . $startIndex . ', ' . $limit,
	598	+ LIMIT ' . $startIndex.', '.$limit,
599	599	$userId
600	600	);
601	601	DB::debugMode(false);
		@@ -621,7 +621,7 @@ discard block
		block discarded – undo
621	621	// It will be updated if already exists
622	622	$currentTPUserKey = DB::queryFirstRow(
623	623	'SELECT increment_id, user_id, share_key
624		- FROM ' . prefixTable('sharekeys_items') . '
	624	+ FROM ' . prefixTable('sharekeys_items').'
625	625	WHERE object_id = %i AND user_id = %i',
626	626	$record['object_id'],
627	627	TP_USER_ID
		@@ -708,7 +708,7 @@ discard block
		block discarded – undo
708	708	// Get PT_USER info
709	709	DB::queryFirstRow(
710	710	'SELECT operation_code
711		- FROM ' . prefixTable('sharekeys_backup') . '
	711	+ FROM ' . prefixTable('sharekeys_backup').'
712	712	WHERE operation_code = %s',
713	713	$operationCode
714	714	);
		@@ -718,7 +718,7 @@ discard block
		block discarded – undo
718	718	// using increment_id_value in order to update the correct record
719	719	$rows = DB::query(
720	720	'SELECT *
721		- FROM ' . prefixTable('sharekeys_backup') . '
	721	+ FROM ' . prefixTable('sharekeys_backup').'
722	722	WHERE operation_code = %s',
723	723	$operationCode
724	724	);
		@@ -737,7 +737,7 @@ discard block
		block discarded – undo
737	737
738	738	// Delete all sharekeys for this operation
739	739	DB::query(
740		- 'DELETE FROM ' . prefixTable('sharekeys_backup') . '
	740	+ 'DELETE FROM '.prefixTable('sharekeys_backup').'
741	741	WHERE operation_code = %i',
742	742	$operationCode
743	743	);
		@@ -800,7 +800,7 @@ discard block
		block discarded – undo
800	800	// Get operation info
801	801	DB::query(
802	802	'SELECT operation_code
803		- FROM ' . prefixTable('sharekeys_backup') . '
	803	+ FROM ' . prefixTable('sharekeys_backup').'
804	804	WHERE operation_code = %s',
805	805	$operationCode
806	806	);
		@@ -809,7 +809,7 @@ discard block
		block discarded – undo
809	809	if ($nbKeys > 0) {
810	810	// Delete all sharekeys for this operation
811	811	DB::query(
812		- 'DELETE FROM ' . prefixTable('sharekeys_backup') . '
	812	+ 'DELETE FROM '.prefixTable('sharekeys_backup').'
813	813	WHERE operation_code = %s',
814	814	$operationCode
815	815	);

nilsteampassnet / TeamPass

Pull Request — master (#4585)

Status

Category

Spacing +33 added lines, -33 removed lines patch added patch discarded remove patch

Spacing +14 added lines, -14 removed lines patch added patch discarded remove patch

Switch Indentation +171 added lines, -171 removed lines patch added patch discarded remove patch

Spacing +20 added lines, -20 removed lines patch added patch discarded remove patch