nilsteampassnet /
TeamPass
@@ -86,7 +86,9 @@ discard block |
||
| 86 | 86 | |
| 87 | 87 | if (DB::count() > 0) { |
| 88 | 88 | // handle tasks inside this process |
| 89 | - if (WIP === true) error_log("Process in progress: ".$process_to_perform['increment_id']); |
|
| 89 | + if (WIP === true) { |
|
| 90 | + error_log("Process in progress: ".$process_to_perform['increment_id']); |
|
| 91 | + } |
|
| 90 | 92 | handleTask( |
| 91 | 93 | $process_to_perform['increment_id'], |
| 92 | 94 | json_decode($process_to_perform['arguments'], true), |
@@ -103,7 +105,9 @@ discard block |
||
| 103 | 105 | ); |
| 104 | 106 | |
| 105 | 107 | if (DB::count() > 0) { |
| 106 | - if (WIP === true) error_log("New process ta start: ".$process_to_perform['increment_id']); |
|
| 108 | + if (WIP === true) { |
|
| 109 | + error_log("New process ta start: ".$process_to_perform['increment_id']); |
|
| 110 | + } |
|
| 107 | 111 | // update DB - started_at |
| 108 | 112 | DB::update( |
| 109 | 113 | prefixTable('background_tasks'), |
@@ -306,7 +310,9 @@ discard block |
||
| 306 | 310 | if ($args['step'] === 'create_users_files_key') { |
| 307 | 311 | // Loop on all files for this item |
| 308 | 312 | // and encrypt them for each user |
| 309 | - if (WIP === true) provideLog('[DEBUG] '.print_r($args['files_keys'], true), $SETTINGS); |
|
| 313 | + if (WIP === true) { |
|
| 314 | + provideLog('[DEBUG] '.print_r($args['files_keys'], true), $SETTINGS); |
|
| 315 | + } |
|
| 310 | 316 | foreach($args['files_keys'] as $file) { |
| 311 | 317 | storeUsersShareKey( |
| 312 | 318 | prefixTable('sharekeys_items'), |
@@ -323,7 +329,9 @@ discard block |
||
| 323 | 329 | } elseif ($args['step'] === 'create_users_fields_key') { |
| 324 | 330 | // Loop on all encrypted fields for this item |
| 325 | 331 | // and encrypt them for each user |
| 326 | - if (WIP === true) provideLog('[DEBUG] '.print_r($args, true), $SETTINGS); |
|
| 332 | + if (WIP === true) { |
|
| 333 | + provideLog('[DEBUG] '.print_r($args, true), $SETTINGS); |
|
| 334 | + } |
|
| 327 | 335 | foreach($args['fields_keys'] as $field) { |
| 328 | 336 | storeUsersShareKey( |
| 329 | 337 | prefixTable('sharekeys_fields'), |
@@ -78,7 +78,7 @@ discard block |
||
| 78 | 78 | DB::debugmode(false); |
| 79 | 79 | $process_to_perform = DB::queryfirstrow( |
| 80 | 80 | 'SELECT * |
| 81 | - FROM ' . prefixTable('background_tasks') . ' |
|
| 81 | + FROM ' . prefixTable('background_tasks').' |
|
| 82 | 82 | WHERE is_in_progress = %i AND process_type IN ("item_copy", "new_item", "update_item", "item_update_create_keys") |
| 83 | 83 | ORDER BY increment_id ASC', |
| 84 | 84 | 1 |
@@ -96,7 +96,7 @@ discard block |
||
| 96 | 96 | // search for next process to handle |
| 97 | 97 | $process_to_perform = DB::queryfirstrow( |
| 98 | 98 | 'SELECT * |
| 99 | - FROM ' . prefixTable('background_tasks') . ' |
|
| 99 | + FROM ' . prefixTable('background_tasks').' |
|
| 100 | 100 | WHERE is_in_progress = %i AND (finished_at = "" OR finished_at IS NULL) AND process_type IN ("item_copy", "new_item", "update_item", "item_update_create_keys") |
| 101 | 101 | ORDER BY increment_id ASC', |
| 102 | 102 | 0 |
@@ -114,7 +114,7 @@ discard block |
||
| 114 | 114 | $process_to_perform['increment_id'] |
| 115 | 115 | ); |
| 116 | 116 | |
| 117 | - provideLog('[PROCESS][#'. $process_to_perform['increment_id'].'][START]', $SETTINGS); |
|
| 117 | + provideLog('[PROCESS][#'.$process_to_perform['increment_id'].'][START]', $SETTINGS); |
|
| 118 | 118 | handleTask( |
| 119 | 119 | $process_to_perform['increment_id'], |
| 120 | 120 | json_decode($process_to_perform['arguments'], true), |
@@ -136,7 +136,7 @@ discard block |
||
| 136 | 136 | // launch a new iterative process |
| 137 | 137 | $process_to_perform = DB::queryfirstrow( |
| 138 | 138 | 'SELECT * |
| 139 | - FROM ' . prefixTable('background_tasks') . ' |
|
| 139 | + FROM ' . prefixTable('background_tasks').' |
|
| 140 | 140 | WHERE is_in_progress = %i AND process_type IN ("item_copy", "new_item", "update_item", "item_update_create_keys") |
| 141 | 141 | ORDER BY increment_id DESC', |
| 142 | 142 | 1 |
@@ -159,10 +159,10 @@ discard block |
||
| 159 | 159 | */ |
| 160 | 160 | function handleTask(int $processId, array $ProcessArguments, array $SETTINGS, int $itemId = null): bool |
| 161 | 161 | { |
| 162 | - provideLog('[PROCESS][#'. $processId.'][START]', $SETTINGS); |
|
| 162 | + provideLog('[PROCESS][#'.$processId.'][START]', $SETTINGS); |
|
| 163 | 163 | $task_to_perform = DB::queryfirstrow( |
| 164 | 164 | 'SELECT * |
| 165 | - FROM ' . prefixTable('background_subtasks') . ' |
|
| 165 | + FROM ' . prefixTable('background_subtasks').' |
|
| 166 | 166 | WHERE task_id = %i AND finished_at IS NULL |
| 167 | 167 | ORDER BY increment_id ASC', |
| 168 | 168 | $processId |
@@ -177,7 +177,7 @@ discard block |
||
| 177 | 177 | if ((int) $task_to_perform['sub_task_in_progress'] === 0) { |
| 178 | 178 | // handle next task |
| 179 | 179 | $args = json_decode($task_to_perform['task'], true); |
| 180 | - provideLog('[TASK][#'. $task_to_perform['increment_id'].'][START]Task '.$args['step'], $SETTINGS); |
|
| 180 | + provideLog('[TASK][#'.$task_to_perform['increment_id'].'][START]Task '.$args['step'], $SETTINGS); |
|
| 181 | 181 | |
| 182 | 182 | // flag as in progress |
| 183 | 183 | DB::update( |
@@ -219,7 +219,7 @@ discard block |
||
| 219 | 219 | DB::update( |
| 220 | 220 | prefixTable('background_subtasks'), |
| 221 | 221 | array( |
| 222 | - 'sub_task_in_progress' => 0, // flag sub task is no more in prgoress |
|
| 222 | + 'sub_task_in_progress' => 0, // flag sub task is no more in prgoress |
|
| 223 | 223 | 'task' => json_encode(["status" => "Done"]), |
| 224 | 224 | 'is_in_progress' => -1, |
| 225 | 225 | 'finished_at' => time(), |
@@ -234,7 +234,7 @@ discard block |
||
| 234 | 234 | // are all tasks done? |
| 235 | 235 | DB::query( |
| 236 | 236 | 'SELECT * |
| 237 | - FROM ' . prefixTable('background_subtasks') . ' |
|
| 237 | + FROM ' . prefixTable('background_subtasks').' |
|
| 238 | 238 | WHERE task_id = %i AND finished_at IS NULL', |
| 239 | 239 | $processId |
| 240 | 240 | ); |
@@ -264,7 +264,7 @@ discard block |
||
| 264 | 264 | |
| 265 | 265 | } else { |
| 266 | 266 | // Task is currently being in progress by another server process |
| 267 | - provideLog('[TASK][#'. $task_to_perform['increment_id'].'][WARNING] Similar task already being processes', $SETTINGS); |
|
| 267 | + provideLog('[TASK][#'.$task_to_perform['increment_id'].'][WARNING] Similar task already being processes', $SETTINGS); |
|
| 268 | 268 | return false; |
| 269 | 269 | } |
| 270 | 270 | } else { |
@@ -311,7 +311,7 @@ discard block |
||
| 311 | 311 | // Loop on all files for this item |
| 312 | 312 | // and encrypt them for each user |
| 313 | 313 | if (WIP === true) provideLog('[DEBUG] '.print_r($args['files_keys'], true), $SETTINGS); |
| 314 | - foreach($args['files_keys'] as $file) { |
|
| 314 | + foreach ($args['files_keys'] as $file) { |
|
| 315 | 315 | storeUsersShareKey( |
| 316 | 316 | prefixTable('sharekeys_items'), |
| 317 | 317 | 0, |
@@ -328,7 +328,7 @@ discard block |
||
| 328 | 328 | // Loop on all encrypted fields for this item |
| 329 | 329 | // and encrypt them for each user |
| 330 | 330 | if (WIP === true) provideLog('[DEBUG] '.print_r($args, true), $SETTINGS); |
| 331 | - foreach($args['fields_keys'] as $field) { |
|
| 331 | + foreach ($args['fields_keys'] as $field) { |
|
| 332 | 332 | storeUsersShareKey( |
| 333 | 333 | prefixTable('sharekeys_fields'), |
| 334 | 334 | 0, |
@@ -382,6 +382,6 @@ discard block |
||
| 382 | 382 | DB::query( |
| 383 | 383 | 'DELETE FROM '.prefixTable('items_edition').' |
| 384 | 384 | WHERE timestamp < %i', |
| 385 | - ($SETTINGS['delay_item_edition'] > 0) ? time() - ($SETTINGS['delay_item_edition']*60) : time() - EDITION_LOCK_PERIOD |
|
| 385 | + ($SETTINGS['delay_item_edition'] > 0) ? time() - ($SETTINGS['delay_item_edition'] * 60) : time() - EDITION_LOCK_PERIOD |
|
| 386 | 386 | ); |
| 387 | 387 | } |
| 388 | 388 | \ No newline at end of file |
@@ -74,7 +74,7 @@ discard block |
||
| 74 | 74 | // get count of Items in this folder |
| 75 | 75 | $get = DB::queryfirstrow( |
| 76 | 76 | 'SELECT count(*) as num_results |
| 77 | - FROM ' . prefixTable('items') . ' |
|
| 77 | + FROM ' . prefixTable('items').' |
|
| 78 | 78 | WHERE inactif = %i AND id_tree = %i', |
| 79 | 79 | 0, |
| 80 | 80 | $child->id |
@@ -83,14 +83,14 @@ discard block |
||
| 83 | 83 | $ret[$child->id]['id'] = $child->id; |
| 84 | 84 | |
| 85 | 85 | // get number of subfolders |
| 86 | - $nodeDescendants =$tree->getDescendants($child->id, false, false, true); |
|
| 86 | + $nodeDescendants = $tree->getDescendants($child->id, false, false, true); |
|
| 87 | 87 | $ret[$child->id]['subfoldersCount'] = count($nodeDescendants); |
| 88 | 88 | |
| 89 | 89 | // get items number in subfolders |
| 90 | 90 | if (count($nodeDescendants) > 0) { |
| 91 | 91 | $get = DB::queryfirstrow( |
| 92 | 92 | 'SELECT count(*) as num_results |
| 93 | - FROM ' . prefixTable('items') . ' |
|
| 93 | + FROM ' . prefixTable('items').' |
|
| 94 | 94 | WHERE inactif = %i AND id_tree IN (%l)', |
| 95 | 95 | 0, |
| 96 | 96 | implode(',', $nodeDescendants) |
@@ -138,7 +138,7 @@ discard block |
||
| 138 | 138 | // Get item key |
| 139 | 139 | $itemKey = DB::queryFirstRow( |
| 140 | 140 | 'SELECT share_key |
| 141 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 141 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 142 | 142 | WHERE user_id = %i AND object_id = %i', |
| 143 | 143 | TP_USER_ID, |
| 144 | 144 | $item['itemId'] |
@@ -131,64 +131,64 @@ |
||
| 131 | 131 | |
| 132 | 132 | // Delete all item keys for which no user exist |
| 133 | 133 | DB::query( |
| 134 | - 'DELETE k FROM ' . prefixTable('sharekeys_items') . ' k |
|
| 135 | - LEFT JOIN ' . prefixTable('users') . ' u ON k.user_id = u.id |
|
| 134 | + 'DELETE k FROM '.prefixTable('sharekeys_items').' k |
|
| 135 | + LEFT JOIN ' . prefixTable('users').' u ON k.user_id = u.id |
|
| 136 | 136 | WHERE u.id IS NULL OR u.deleted_at IS NOT NULL' |
| 137 | 137 | ); |
| 138 | 138 | |
| 139 | 139 | // Delete all files keys for which no user exist |
| 140 | 140 | DB::query( |
| 141 | - 'DELETE k FROM ' . prefixTable('sharekeys_files') . ' k |
|
| 142 | - LEFT JOIN ' . prefixTable('users') . ' u ON k.user_id = u.id |
|
| 141 | + 'DELETE k FROM '.prefixTable('sharekeys_files').' k |
|
| 142 | + LEFT JOIN ' . prefixTable('users').' u ON k.user_id = u.id |
|
| 143 | 143 | WHERE u.id IS NULL OR u.deleted_at IS NOT NULL' |
| 144 | 144 | ); |
| 145 | 145 | |
| 146 | 146 | // Delete all fields keys for which no user exist |
| 147 | 147 | DB::query( |
| 148 | - 'DELETE k FROM ' . prefixTable('sharekeys_fields') . ' k |
|
| 149 | - LEFT JOIN ' . prefixTable('users') . ' u ON k.user_id = u.id |
|
| 148 | + 'DELETE k FROM '.prefixTable('sharekeys_fields').' k |
|
| 149 | + LEFT JOIN ' . prefixTable('users').' u ON k.user_id = u.id |
|
| 150 | 150 | WHERE u.id IS NULL OR u.deleted_at IS NOT NULL' |
| 151 | 151 | ); |
| 152 | 152 | |
| 153 | 153 | // Delete all item logs for which no user exist |
| 154 | 154 | DB::query( |
| 155 | - 'DELETE l FROM ' . prefixTable('log_items') . ' l |
|
| 156 | - LEFT JOIN ' . prefixTable('users') . ' u ON l.id_user = u.id |
|
| 155 | + 'DELETE l FROM '.prefixTable('log_items').' l |
|
| 156 | + LEFT JOIN ' . prefixTable('users').' u ON l.id_user = u.id |
|
| 157 | 157 | WHERE u.id IS NULL OR u.deleted_at IS NOT NULL' |
| 158 | 158 | ); |
| 159 | 159 | |
| 160 | 160 | // Delete all system logs for which no user exist |
| 161 | 161 | DB::query( |
| 162 | - 'DELETE l FROM ' . prefixTable('log_system') . ' l |
|
| 163 | - LEFT JOIN ' . prefixTable('users') . ' u ON l.qui = u.id |
|
| 162 | + 'DELETE l FROM '.prefixTable('log_system').' l |
|
| 163 | + LEFT JOIN ' . prefixTable('users').' u ON l.qui = u.id |
|
| 164 | 164 | WHERE i.id IS NULL OR u.deleted_at IS NOT NULL' |
| 165 | 165 | ); |
| 166 | 166 | |
| 167 | 167 | // Delete all item keys for which no object exist |
| 168 | 168 | DB::query( |
| 169 | - 'DELETE k FROM ' . prefixTable('sharekeys_items') . ' k |
|
| 170 | - LEFT JOIN ' . prefixTable('items') . ' i ON k.object_id = i.id |
|
| 169 | + 'DELETE k FROM '.prefixTable('sharekeys_items').' k |
|
| 170 | + LEFT JOIN ' . prefixTable('items').' i ON k.object_id = i.id |
|
| 171 | 171 | WHERE i.id IS NULL' |
| 172 | 172 | ); |
| 173 | 173 | |
| 174 | 174 | // Delete all files keys for which no object exist |
| 175 | 175 | DB::query( |
| 176 | - 'DELETE k FROM ' . prefixTable('sharekeys_files') . ' k |
|
| 177 | - LEFT JOIN ' . prefixTable('items') . ' i ON k.object_id = i.id |
|
| 176 | + 'DELETE k FROM '.prefixTable('sharekeys_files').' k |
|
| 177 | + LEFT JOIN ' . prefixTable('items').' i ON k.object_id = i.id |
|
| 178 | 178 | WHERE i.id IS NULL' |
| 179 | 179 | ); |
| 180 | 180 | |
| 181 | 181 | // Delete all fields keys for which no object exist |
| 182 | 182 | DB::query( |
| 183 | - 'DELETE k FROM ' . prefixTable('sharekeys_fields') . ' k |
|
| 184 | - LEFT JOIN ' . prefixTable('items') . ' i ON k.object_id = i.id |
|
| 183 | + 'DELETE k FROM '.prefixTable('sharekeys_fields').' k |
|
| 184 | + LEFT JOIN ' . prefixTable('items').' i ON k.object_id = i.id |
|
| 185 | 185 | WHERE i.id IS NULL' |
| 186 | 186 | ); |
| 187 | 187 | |
| 188 | 188 | // Delete all item logs for which no object exist |
| 189 | 189 | DB::query( |
| 190 | - 'DELETE l FROM ' . prefixTable('log_items') . ' l |
|
| 191 | - LEFT JOIN ' . prefixTable('items') . ' i ON k.id_item = i.id |
|
| 190 | + 'DELETE l FROM '.prefixTable('log_items').' l |
|
| 191 | + LEFT JOIN ' . prefixTable('items').' i ON k.id_item = i.id |
|
| 192 | 192 | WHERE i.id IS NULL' |
| 193 | 193 | ); |
| 194 | 194 | |
@@ -69,7 +69,7 @@ discard block |
||
| 69 | 69 | |
| 70 | 70 | $processToPerform = DB::queryfirstrow( |
| 71 | 71 | 'SELECT * |
| 72 | - FROM ' . prefixTable('background_tasks') . ' |
|
| 72 | + FROM ' . prefixTable('background_tasks').' |
|
| 73 | 73 | WHERE (finished_at IS NULL OR finished_at = "") AND process_type = %s |
| 74 | 74 | ORDER BY increment_id ASC', |
| 75 | 75 | 'create_user_keys' |
@@ -115,7 +115,7 @@ discard block |
||
| 115 | 115 | // Extract the subtask parameters |
| 116 | 116 | $subTaskParams = json_decode($subTask['task'], true); |
| 117 | 117 | |
| 118 | - error_log('Subtask in progress: '.$subTask['increment_id']." (".$taskId.") - ".print_r($subTaskParams,true)); |
|
| 118 | + error_log('Subtask in progress: '.$subTask['increment_id']." (".$taskId.") - ".print_r($subTaskParams, true)); |
|
| 119 | 119 | /* |
| 120 | 120 | $fichier = fopen(__DIR__.'/log.txt', 'a'); |
| 121 | 121 | fwrite($fichier, 'Step : '.$subTaskParams['step']." - index : ".$subTaskParams['index']."\n"); |
@@ -128,7 +128,7 @@ discard block |
||
| 128 | 128 | // Get total number of items |
| 129 | 129 | DB::query( |
| 130 | 130 | 'SELECT * |
| 131 | - FROM ' . prefixTable('items') . ' |
|
| 131 | + FROM ' . prefixTable('items').' |
|
| 132 | 132 | '.(isset($taskArgumentsArray['only_personal_items']) === true && $taskArgumentsArray['only_personal_items'] === 1 ? 'WHERE perso = 1' : '') |
| 133 | 133 | ); |
| 134 | 134 | createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId); |
@@ -137,7 +137,7 @@ discard block |
||
| 137 | 137 | // Get total number of items |
| 138 | 138 | DB::query( |
| 139 | 139 | 'SELECT * |
| 140 | - FROM ' . prefixTable('log_items') . ' |
|
| 140 | + FROM ' . prefixTable('log_items').' |
|
| 141 | 141 | WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"' |
| 142 | 142 | ); |
| 143 | 143 | createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId); |
@@ -146,7 +146,7 @@ discard block |
||
| 146 | 146 | // Get total number of items |
| 147 | 147 | DB::query( |
| 148 | 148 | 'SELECT * |
| 149 | - FROM ' . prefixTable('categories_items') . ' |
|
| 149 | + FROM ' . prefixTable('categories_items').' |
|
| 150 | 150 | WHERE encryption_type = "teampass_aes"' |
| 151 | 151 | ); |
| 152 | 152 | createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId); |
@@ -163,9 +163,9 @@ discard block |
||
| 163 | 163 | // Get total number of items |
| 164 | 164 | DB::query( |
| 165 | 165 | 'SELECT * |
| 166 | - FROM ' . prefixTable('files') . ' AS f |
|
| 167 | - INNER JOIN ' . prefixTable('items') . ' AS i ON i.id = f.id_item |
|
| 168 | - WHERE f.status = "' . TP_ENCRYPTION_NAME . '"' |
|
| 166 | + FROM ' . prefixTable('files').' AS f |
|
| 167 | + INNER JOIN ' . prefixTable('items').' AS i ON i.id = f.id_item |
|
| 168 | + WHERE f.status = "' . TP_ENCRYPTION_NAME.'"' |
|
| 169 | 169 | ); |
| 170 | 170 | createAllSubTasks($subTaskParams['step'], DB::count(), $subTaskParams['nb'], $taskId); |
| 171 | 171 | } |
@@ -192,7 +192,7 @@ discard block |
||
| 192 | 192 | // Check if subtasks have to be created |
| 193 | 193 | DB::query( |
| 194 | 194 | 'SELECT * |
| 195 | - FROM ' . prefixTable('background_subtasks') . ' |
|
| 195 | + FROM ' . prefixTable('background_subtasks').' |
|
| 196 | 196 | WHERE task_id = %i AND task LIKE %ss', |
| 197 | 197 | $taskId, |
| 198 | 198 | $action |
@@ -224,7 +224,7 @@ discard block |
||
| 224 | 224 | function countActiveSymfonyProcesses() { |
| 225 | 225 | // Compter le nombre de processus actifs |
| 226 | 226 | return DB::queryFirstField( |
| 227 | - 'SELECT COUNT(*) FROM ' . prefixTable('background_subtasks') . |
|
| 227 | + 'SELECT COUNT(*) FROM '.prefixTable('background_subtasks'). |
|
| 228 | 228 | ' WHERE process_id IS NOT NULL AND finished_at IS NULL' |
| 229 | 229 | ); |
| 230 | 230 | } |
@@ -235,7 +235,7 @@ discard block |
||
| 235 | 235 | function getSubTasks($taskId) { |
| 236 | 236 | $task_to_perform = DB::query( |
| 237 | 237 | 'SELECT * |
| 238 | - FROM ' . prefixTable('background_subtasks') . ' |
|
| 238 | + FROM ' . prefixTable('background_subtasks').' |
|
| 239 | 239 | WHERE task_id = %i AND finished_at IS NULL |
| 240 | 240 | ORDER BY increment_id ASC', |
| 241 | 241 | $taskId |
@@ -286,7 +286,7 @@ discard block |
||
| 286 | 286 | function reloadSubTask($subTaskId) { |
| 287 | 287 | // Récupérer les informations de la sous-tâche de la base de données |
| 288 | 288 | $subTask = DB::queryFirstRow( |
| 289 | - 'SELECT * FROM ' . prefixTable('background_subtasks') . ' WHERE increment_id = %i', |
|
| 289 | + 'SELECT * FROM '.prefixTable('background_subtasks').' WHERE increment_id = %i', |
|
| 290 | 290 | $subTaskId |
| 291 | 291 | ); |
| 292 | 292 | |
@@ -332,7 +332,7 @@ discard block |
||
| 332 | 332 | // Get all processes |
| 333 | 333 | $subtasks = DB::query( |
| 334 | 334 | 'SELECT * |
| 335 | - FROM ' . prefixTable('background_subtasks') . ' |
|
| 335 | + FROM ' . prefixTable('background_subtasks').' |
|
| 336 | 336 | WHERE process_id IS NOT NULL AND finished_at IS NULL' |
| 337 | 337 | ); |
| 338 | 338 | |
@@ -24,21 +24,21 @@ discard block |
||
| 24 | 24 | */ |
| 25 | 25 | |
| 26 | 26 | |
| 27 | -define("API_ROOT_PATH", __DIR__ . "/.."); |
|
| 27 | +define("API_ROOT_PATH", __DIR__."/.."); |
|
| 28 | 28 | |
| 29 | 29 | // include main configuration file |
| 30 | -require API_ROOT_PATH . '/../sources/main.functions.php'; |
|
| 30 | +require API_ROOT_PATH.'/../sources/main.functions.php'; |
|
| 31 | 31 | |
| 32 | 32 | // init |
| 33 | 33 | loadClasses('DB'); |
| 34 | 34 | |
| 35 | 35 | // include the base controller file |
| 36 | -require API_ROOT_PATH . "/Controller/Api/BaseController.php"; |
|
| 36 | +require API_ROOT_PATH."/Controller/Api/BaseController.php"; |
|
| 37 | 37 | |
| 38 | 38 | // include the use model file |
| 39 | -require API_ROOT_PATH . "/Model/UserModel.php"; |
|
| 40 | -require API_ROOT_PATH . "/Model/ItemModel.php"; |
|
| 41 | -require API_ROOT_PATH . "/Model/FolderModel.php"; |
|
| 39 | +require API_ROOT_PATH."/Model/UserModel.php"; |
|
| 40 | +require API_ROOT_PATH."/Model/ItemModel.php"; |
|
| 41 | +require API_ROOT_PATH."/Model/FolderModel.php"; |
|
| 42 | 42 | |
| 43 | 43 | /** |
| 44 | 44 | * Launch expected action for ITEM |
@@ -57,9 +57,9 @@ discard block |
||
| 57 | 57 | ); |
| 58 | 58 | } |
| 59 | 59 | // Perform the action |
| 60 | - require API_ROOT_PATH . "/Controller/Api/ItemController.php"; |
|
| 60 | + require API_ROOT_PATH."/Controller/Api/ItemController.php"; |
|
| 61 | 61 | $objFeedController = new ItemController(); |
| 62 | - $strMethodName = $actions[0] . 'Action'; |
|
| 62 | + $strMethodName = $actions[0].'Action'; |
|
| 63 | 63 | $objFeedController->{$strMethodName}($userData); |
| 64 | 64 | } |
| 65 | 65 | |
@@ -80,9 +80,9 @@ discard block |
||
| 80 | 80 | ); |
| 81 | 81 | } |
| 82 | 82 | // Perform the action |
| 83 | - require API_ROOT_PATH . "/Controller/Api/FolderController.php"; |
|
| 83 | + require API_ROOT_PATH."/Controller/Api/FolderController.php"; |
|
| 84 | 84 | $objFeedController = new FolderController(); |
| 85 | - $strMethodName = $actions[0] . 'Action'; |
|
| 85 | + $strMethodName = $actions[0].'Action'; |
|
| 86 | 86 | $objFeedController->{$strMethodName}($userData); |
| 87 | 87 | } |
| 88 | 88 | |
@@ -108,7 +108,7 @@ discard block |
||
| 108 | 108 | */ |
| 109 | 109 | function apiIsEnabled(): string |
| 110 | 110 | { |
| 111 | - include API_ROOT_PATH . '/../includes/config/tp.config.php'; |
|
| 111 | + include API_ROOT_PATH.'/../includes/config/tp.config.php'; |
|
| 112 | 112 | |
| 113 | 113 | if (isset($SETTINGS) === true && isset($SETTINGS['api']) === true && (int) $SETTINGS['api'] === 1) { |
| 114 | 114 | return json_encode( |
@@ -137,7 +137,7 @@ discard block |
||
| 137 | 137 | */ |
| 138 | 138 | function verifyAuth(): string |
| 139 | 139 | { |
| 140 | - include_once API_ROOT_PATH . '/inc/jwt_utils.php'; |
|
| 140 | + include_once API_ROOT_PATH.'/inc/jwt_utils.php'; |
|
| 141 | 141 | $bearer_token = get_bearer_token(); |
| 142 | 142 | |
| 143 | 143 | if (empty($bearer_token) === false && is_jwt_valid($bearer_token) === true) { |
@@ -167,7 +167,7 @@ discard block |
||
| 167 | 167 | */ |
| 168 | 168 | function getDataFromToken(): string |
| 169 | 169 | { |
| 170 | - include_once API_ROOT_PATH . '/inc/jwt_utils.php'; |
|
| 170 | + include_once API_ROOT_PATH.'/inc/jwt_utils.php'; |
|
| 171 | 171 | $bearer_token = get_bearer_token(); |
| 172 | 172 | |
| 173 | 173 | if (empty($bearer_token) === false) { |
@@ -71,7 +71,7 @@ discard block |
||
| 71 | 71 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('api') === false) { |
| 72 | 72 | // Not allowed page |
| 73 | 73 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 74 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 74 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 75 | 75 | exit; |
| 76 | 76 | } |
| 77 | 77 | |
@@ -158,7 +158,7 @@ discard block |
||
| 158 | 158 | <?php |
| 159 | 159 | $rowsKeys = DB::query( |
| 160 | 160 | 'SELECT * |
| 161 | - FROM ' . prefixTable('api') . ' |
|
| 161 | + FROM ' . prefixTable('api').' |
|
| 162 | 162 | WHERE type = %s |
| 163 | 163 | ORDER BY timestamp ASC', |
| 164 | 164 | 'key' |
@@ -181,15 +181,15 @@ discard block |
||
| 181 | 181 | <?php |
| 182 | 182 | foreach ($rowsKeys as $key) { |
| 183 | 183 | echo ' |
| 184 | - <tr data-id="' . $key['increment_id'] . '"> |
|
| 185 | - <td width="50px"><i class="fas fa-trash infotip pointer delete-api-key" title="' . $lang->get('del_button') . '"></i></td> |
|
| 186 | - <td><span class="edit-api-key pointer">' . $key['label'] . '</span></td> |
|
| 187 | - <td>' . $key['value']. '</td> |
|
| 188 | - <td><i class="fas '.((int) $key['enabled'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="enabled" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 189 | - <td><i class="fas '.((int) $key['allowed_to_create'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_create" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 190 | - <td><i class="fas '.((int) $key['allowed_to_read'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_read" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 191 | - <td><i class="fas '.((int) $key['allowed_to_update'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_update" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 192 | - <td><i class="fas '.((int) $key['allowed_to_delete'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_delete" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 184 | + <tr data-id="' . $key['increment_id'].'"> |
|
| 185 | + <td width="50px"><i class="fas fa-trash infotip pointer delete-api-key" title="' . $lang->get('del_button').'"></i></td> |
|
| 186 | + <td><span class="edit-api-key pointer">' . $key['label'].'</span></td> |
|
| 187 | + <td>' . $key['value'].'</td> |
|
| 188 | + <td><i class="fas '.((int) $key['enabled'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="enabled" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 189 | + <td><i class="fas '.((int) $key['allowed_to_create'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_create" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 190 | + <td><i class="fas '.((int) $key['allowed_to_read'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_read" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 191 | + <td><i class="fas '.((int) $key['allowed_to_update'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_update" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 192 | + <td><i class="fas '.((int) $key['allowed_to_delete'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_delete" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 193 | 193 | </tr>'; |
| 194 | 194 | } ?> |
| 195 | 195 | </tbody> |
@@ -224,7 +224,7 @@ discard block |
||
| 224 | 224 | <div class="col-12 mt-4" id="table-api-ip"> |
| 225 | 225 | <?php |
| 226 | 226 | $rowsIps = DB::query( |
| 227 | - 'SELECT increment_id, label, timestamp value FROM ' . prefixTable('api') . ' |
|
| 227 | + 'SELECT increment_id, label, timestamp value FROM '.prefixTable('api').' |
|
| 228 | 228 | WHERE type = %s |
| 229 | 229 | ORDER BY timestamp ASC', |
| 230 | 230 | 'ip' |
@@ -242,10 +242,10 @@ discard block |
||
| 242 | 242 | <?php |
| 243 | 243 | foreach ($rowsIps as $ip) { |
| 244 | 244 | echo ' |
| 245 | - <tr data-id="' . $ip['increment_id'] . '"> |
|
| 246 | - <td width="50px"><i class="fas fa-trash infotip pointer delete-api-ip" title="' . $lang->get('del_button') . '"></i></td> |
|
| 247 | - <td><span class="edit-api-ip pointer" data-field="label">' . $ip['label'] . '</span></td> |
|
| 248 | - <td><span class="edit-api-ip pointer" data-field="value">' . $ip['value'] . '</span></td> |
|
| 245 | + <tr data-id="' . $ip['increment_id'].'"> |
|
| 246 | + <td width="50px"><i class="fas fa-trash infotip pointer delete-api-ip" title="' . $lang->get('del_button').'"></i></td> |
|
| 247 | + <td><span class="edit-api-ip pointer" data-field="label">' . $ip['label'].'</span></td> |
|
| 248 | + <td><span class="edit-api-ip pointer" data-field="value">' . $ip['value'].'</span></td> |
|
| 249 | 249 | </tr>'; |
| 250 | 250 | } ?> |
| 251 | 251 | </tbody> |
@@ -281,8 +281,8 @@ discard block |
||
| 281 | 281 | <?php |
| 282 | 282 | $rowsKeys = DB::query( |
| 283 | 283 | 'SELECT a.*, u.name, u.lastname, u.login |
| 284 | - FROM ' . prefixTable('api') . ' AS a |
|
| 285 | - INNER JOIN ' . prefixTable('users') . ' AS u ON a.user_id = u.id |
|
| 284 | + FROM ' . prefixTable('api').' AS a |
|
| 285 | + INNER JOIN ' . prefixTable('users').' AS u ON a.user_id = u.id |
|
| 286 | 286 | WHERE a.type = %s |
| 287 | 287 | ORDER BY u.login ASC', |
| 288 | 288 | 'user' |
@@ -303,13 +303,13 @@ discard block |
||
| 303 | 303 | <?php |
| 304 | 304 | foreach ($rowsKeys as $key) { |
| 305 | 305 | echo ' |
| 306 | - <tr data-id="' . $key['increment_id'] . '"> |
|
| 307 | - <td>' . $key['name'] . ' ' . $key['lastname'] . ' (<i>'.$key['login'].'</i>)</td> |
|
| 308 | - <td><i class="fas '.((int) $key['enabled'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="enabled" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 309 | - <td><i class="fas '.((int) $key['allowed_to_create'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_create" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 310 | - <td><i class="fas '.((int) $key['allowed_to_read'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_read" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 311 | - <td><i class="fas '.((int) $key['allowed_to_update'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_update" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 312 | - <td><i class="fas '.((int) $key['allowed_to_delete'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_delete" data-increment-id="' . $key['increment_id'] . '"></i></td> |
|
| 306 | + <tr data-id="' . $key['increment_id'].'"> |
|
| 307 | + <td>' . $key['name'].' '.$key['lastname'].' (<i>'.$key['login'].'</i>)</td> |
|
| 308 | + <td><i class="fas '.((int) $key['enabled'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="enabled" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 309 | + <td><i class="fas '.((int) $key['allowed_to_create'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_create" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 310 | + <td><i class="fas '.((int) $key['allowed_to_read'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_read" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 311 | + <td><i class="fas '.((int) $key['allowed_to_update'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_update" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 312 | + <td><i class="fas '.((int) $key['allowed_to_delete'] === 1 ? 'fa-toggle-on text-info' : 'fa-toggle-off').' mr-1 text-center pointer api-clickme-action" data-field="allowed_to_delete" data-increment-id="'.$key['increment_id'].'"></i></td> |
|
| 313 | 313 | </tr>'; |
| 314 | 314 | } ?> |
| 315 | 315 | </tbody> |
@@ -224,8 +224,7 @@ |
||
| 224 | 224 | </div> |
| 225 | 225 | <?php |
| 226 | 226 | } |
| 227 | -} |
|
| 228 | -catch (Exception $e) { |
|
| 227 | +} catch (Exception $e) { |
|
| 229 | 228 | error_log('TEAMPASS Error - admin page - '.$e->getMessage()); |
| 230 | 229 | // deepcode ignore ServerLeak: no critical information is provided |
| 231 | 230 | echo 'An error occurred. Please refer to server logs.'; |
@@ -71,7 +71,7 @@ discard block |
||
| 71 | 71 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('admin') === false) { |
| 72 | 72 | // Not allowed page |
| 73 | 73 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 74 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 74 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 75 | 75 | exit; |
| 76 | 76 | } |
| 77 | 77 | |
@@ -262,7 +262,7 @@ discard block |
||
| 262 | 262 | <div class="card-body"> |
| 263 | 263 | <?php |
| 264 | 264 | // Display information about server |
| 265 | - $dbSize = DB::queryFirstRow("SELECT ROUND(SUM(data_length + index_length) / 1024 / 1024, 2) AS 'size' FROM information_schema.TABLES WHERE table_schema = '" . DB_NAME . "'"); |
|
| 265 | + $dbSize = DB::queryFirstRow("SELECT ROUND(SUM(data_length + index_length) / 1024 / 1024, 2) AS 'size' FROM information_schema.TABLES WHERE table_schema = '".DB_NAME."'"); |
|
| 266 | 266 | |
| 267 | 267 | // Get OS |
| 268 | 268 | $uname = php_uname('s'); |
@@ -301,7 +301,7 @@ discard block |
||
| 301 | 301 | |
| 302 | 302 | // Test internet access |
| 303 | 303 | $connected = @fsockopen("www.cloudflare.com", 443, $errno, $errstr, 1); // API Duo API (MFA). |
| 304 | - if ($connected){ |
|
| 304 | + if ($connected) { |
|
| 305 | 305 | fclose($connected); |
| 306 | 306 | $internetAccess = ' |
| 307 | 307 | <p> |
@@ -318,17 +318,17 @@ discard block |
||
| 318 | 318 | } |
| 319 | 319 | |
| 320 | 320 | echo |
| 321 | - '<p>' . $os. |
|
| 321 | + '<p>'.$os. |
|
| 322 | 322 | '<br><span class="ml-4"></span>'. |
| 323 | 323 | '</p>'. |
| 324 | 324 | $internetAccess. |
| 325 | - '<p><i class="fa-brands fa-php mr-2"></i>PHP version: ' . phpversion(). |
|
| 325 | + '<p><i class="fa-brands fa-php mr-2"></i>PHP version: '.phpversion(). |
|
| 326 | 326 | '<br><span class="ml-4">Memory limit: '.(ini_get('memory_limit')).'</span>'. |
| 327 | 327 | '<br><span class="ml-4">Memory usage: '.formatSizeUnits(memory_get_usage()).'</span>'. |
| 328 | 328 | '<br><span class="ml-4">Maximum time execution: '.ini_get('max_execution_time').'</span>'. |
| 329 | 329 | '<br><span class="ml-4">Maximum file size upload: '.ini_get('upload_max_filesize').'</span>'. |
| 330 | 330 | '</p>'. |
| 331 | - '<p><i class="fa-solid fa-server mr-2"></i>Server version: ' . DB::serverVersion(). |
|
| 331 | + '<p><i class="fa-solid fa-server mr-2"></i>Server version: '.DB::serverVersion(). |
|
| 332 | 332 | '<br><span class="ml-4">Database size: '.($dbSize['size']).'MB</span>'. |
| 333 | 333 | '</p>'; |
| 334 | 334 | |
@@ -336,11 +336,11 @@ discard block |
||
| 336 | 336 | $serverTime = localtime(time(), true); |
| 337 | 337 | echo '<div class="row">'. |
| 338 | 338 | '<div class="col-6"><i class="fa-solid fa-clock mr-2"></i>Server time:</div>'. |
| 339 | - '<div class="col-6"><span class="badge badge-info">' . |
|
| 340 | - str_pad(strval($serverTime['tm_hour']), 2, "0", STR_PAD_LEFT) . ':' . |
|
| 341 | - str_pad(strval($serverTime['tm_min']), 2, "0", STR_PAD_LEFT) . ':' . |
|
| 342 | - str_pad(strval($serverTime['tm_sec']), 2, "0", STR_PAD_LEFT) . |
|
| 343 | - '</span></div>' . |
|
| 339 | + '<div class="col-6"><span class="badge badge-info">'. |
|
| 340 | + str_pad(strval($serverTime['tm_hour']), 2, "0", STR_PAD_LEFT).':'. |
|
| 341 | + str_pad(strval($serverTime['tm_min']), 2, "0", STR_PAD_LEFT).':'. |
|
| 342 | + str_pad(strval($serverTime['tm_sec']), 2, "0", STR_PAD_LEFT). |
|
| 343 | + '</span></div>'. |
|
| 344 | 344 | '</div>'. |
| 345 | 345 | '<div class="row">'. |
| 346 | 346 | '<div class="col-6"><span class="ml-4">Timezone:</span></div>'. |
@@ -74,7 +74,7 @@ |
||
| 74 | 74 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('oauth') === false) { |
| 75 | 75 | // Not allowed page |
| 76 | 76 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 77 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 77 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 78 | 78 | exit; |
| 79 | 79 | } |
| 80 | 80 | ?> |
@@ -91,210 +91,210 @@ |
||
| 91 | 91 | switch ($post_type) { |
| 92 | 92 | //########################################################## |
| 93 | 93 | //CASE for creating a DB backup |
| 94 | -case 'perform_fix_pf_items-step1': |
|
| 95 | - // Check KEY |
|
| 96 | - if ($post_key !== $session->get('key')) { |
|
| 97 | - echo prepareExchangedData( |
|
| 98 | - array( |
|
| 99 | - 'error' => true, |
|
| 100 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 101 | - ), |
|
| 102 | - 'encode' |
|
| 103 | - ); |
|
| 104 | - break; |
|
| 105 | - } |
|
| 106 | - // Is admin? |
|
| 107 | - if ($session->get('user-admin') !== 1) { |
|
| 108 | - echo prepareExchangedData( |
|
| 109 | - array( |
|
| 110 | - 'error' => true, |
|
| 111 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 112 | - ), |
|
| 113 | - 'encode' |
|
| 114 | - ); |
|
| 115 | - break; |
|
| 116 | - } |
|
| 94 | + case 'perform_fix_pf_items-step1': |
|
| 95 | + // Check KEY |
|
| 96 | + if ($post_key !== $session->get('key')) { |
|
| 97 | + echo prepareExchangedData( |
|
| 98 | + array( |
|
| 99 | + 'error' => true, |
|
| 100 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 101 | + ), |
|
| 102 | + 'encode' |
|
| 103 | + ); |
|
| 104 | + break; |
|
| 105 | + } |
|
| 106 | + // Is admin? |
|
| 107 | + if ($session->get('user-admin') !== 1) { |
|
| 108 | + echo prepareExchangedData( |
|
| 109 | + array( |
|
| 110 | + 'error' => true, |
|
| 111 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 112 | + ), |
|
| 113 | + 'encode' |
|
| 114 | + ); |
|
| 115 | + break; |
|
| 116 | + } |
|
| 117 | 117 | |
| 118 | - // decrypt and retrieve data in JSON format |
|
| 119 | - $dataReceived = prepareExchangedData( |
|
| 120 | - $post_data, |
|
| 121 | - 'decode' |
|
| 122 | - ); |
|
| 118 | + // decrypt and retrieve data in JSON format |
|
| 119 | + $dataReceived = prepareExchangedData( |
|
| 120 | + $post_data, |
|
| 121 | + 'decode' |
|
| 122 | + ); |
|
| 123 | 123 | |
| 124 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 124 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 125 | 125 | |
| 126 | - // Get user info |
|
| 127 | - $userInfo = DB::queryFirstRow( |
|
| 128 | - 'SELECT private_key, public_key, psk, encrypted_psk |
|
| 126 | + // Get user info |
|
| 127 | + $userInfo = DB::queryFirstRow( |
|
| 128 | + 'SELECT private_key, public_key, psk, encrypted_psk |
|
| 129 | 129 | FROM teampass_users |
| 130 | 130 | WHERE id = %i', |
| 131 | - $userId |
|
| 132 | - ); |
|
| 131 | + $userId |
|
| 132 | + ); |
|
| 133 | 133 | |
| 134 | - // Get user's private folders |
|
| 135 | - $userPFRoot = DB::queryFirstRow( |
|
| 136 | - 'SELECT id |
|
| 134 | + // Get user's private folders |
|
| 135 | + $userPFRoot = DB::queryFirstRow( |
|
| 136 | + 'SELECT id |
|
| 137 | 137 | FROM teampass_nested_tree |
| 138 | 138 | WHERE title = %i', |
| 139 | - $userId |
|
| 140 | - ); |
|
| 141 | - if (DB::count() === 0) { |
|
| 142 | - echo prepareExchangedData( |
|
| 143 | - array( |
|
| 144 | - 'error' => true, |
|
| 145 | - 'message' => 'User has no personal folders', |
|
| 146 | - ), |
|
| 147 | - 'encode' |
|
| 139 | + $userId |
|
| 148 | 140 | ); |
| 149 | - break; |
|
| 150 | - } |
|
| 151 | - $personalFolders = []; |
|
| 152 | - $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title'); |
|
| 153 | - $tree->rebuild(); |
|
| 154 | - $folders = $tree->getDescendants($userPFRoot['id'], true); |
|
| 155 | - foreach ($folders as $folder) { |
|
| 156 | - array_push($personalFolders, $folder->id); |
|
| 157 | - } |
|
| 158 | - |
|
| 159 | - //Show done |
|
| 160 | - echo prepareExchangedData( |
|
| 161 | - array( |
|
| 162 | - 'error' => false, |
|
| 163 | - 'message' => 'Personal Folders found: ', |
|
| 164 | - 'personalFolders' => json_encode($personalFolders), |
|
| 165 | - ), |
|
| 166 | - 'encode' |
|
| 167 | - ); |
|
| 168 | - break; |
|
| 141 | + if (DB::count() === 0) { |
|
| 142 | + echo prepareExchangedData( |
|
| 143 | + array( |
|
| 144 | + 'error' => true, |
|
| 145 | + 'message' => 'User has no personal folders', |
|
| 146 | + ), |
|
| 147 | + 'encode' |
|
| 148 | + ); |
|
| 149 | + break; |
|
| 150 | + } |
|
| 151 | + $personalFolders = []; |
|
| 152 | + $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title'); |
|
| 153 | + $tree->rebuild(); |
|
| 154 | + $folders = $tree->getDescendants($userPFRoot['id'], true); |
|
| 155 | + foreach ($folders as $folder) { |
|
| 156 | + array_push($personalFolders, $folder->id); |
|
| 157 | + } |
|
| 169 | 158 | |
| 170 | -case 'perform_fix_pf_items-step2': |
|
| 171 | - // Check KEY |
|
| 172 | - if ($post_key !== $session->get('key')) { |
|
| 159 | + //Show done |
|
| 173 | 160 | echo prepareExchangedData( |
| 174 | 161 | array( |
| 175 | - 'error' => true, |
|
| 176 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 162 | + 'error' => false, |
|
| 163 | + 'message' => 'Personal Folders found: ', |
|
| 164 | + 'personalFolders' => json_encode($personalFolders), |
|
| 177 | 165 | ), |
| 178 | 166 | 'encode' |
| 179 | 167 | ); |
| 180 | 168 | break; |
| 181 | - } |
|
| 182 | - // Is admin? |
|
| 183 | - if ($session->get('user-admin') !== 1) { |
|
| 184 | - echo prepareExchangedData( |
|
| 185 | - array( |
|
| 186 | - 'error' => true, |
|
| 187 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 188 | - ), |
|
| 189 | - 'encode' |
|
| 190 | - ); |
|
| 191 | - break; |
|
| 192 | - } |
|
| 193 | 169 | |
| 194 | - // decrypt and retrieve data in JSON format |
|
| 195 | - $dataReceived = prepareExchangedData( |
|
| 196 | - $post_data, |
|
| 197 | - 'decode' |
|
| 198 | - ); |
|
| 170 | + case 'perform_fix_pf_items-step2': |
|
| 171 | + // Check KEY |
|
| 172 | + if ($post_key !== $session->get('key')) { |
|
| 173 | + echo prepareExchangedData( |
|
| 174 | + array( |
|
| 175 | + 'error' => true, |
|
| 176 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 177 | + ), |
|
| 178 | + 'encode' |
|
| 179 | + ); |
|
| 180 | + break; |
|
| 181 | + } |
|
| 182 | + // Is admin? |
|
| 183 | + if ($session->get('user-admin') !== 1) { |
|
| 184 | + echo prepareExchangedData( |
|
| 185 | + array( |
|
| 186 | + 'error' => true, |
|
| 187 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 188 | + ), |
|
| 189 | + 'encode' |
|
| 190 | + ); |
|
| 191 | + break; |
|
| 192 | + } |
|
| 193 | + |
|
| 194 | + // decrypt and retrieve data in JSON format |
|
| 195 | + $dataReceived = prepareExchangedData( |
|
| 196 | + $post_data, |
|
| 197 | + 'decode' |
|
| 198 | + ); |
|
| 199 | 199 | |
| 200 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 201 | - $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 200 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 201 | + $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 202 | 202 | |
| 203 | - // Delete all private items with sharekeys |
|
| 204 | - $pfiSharekeys = DB::queryFirstColumn( |
|
| 205 | - 'select s.increment_id |
|
| 203 | + // Delete all private items with sharekeys |
|
| 204 | + $pfiSharekeys = DB::queryFirstColumn( |
|
| 205 | + 'select s.increment_id |
|
| 206 | 206 | from teampass_sharekeys_items as s |
| 207 | 207 | INNER JOIN teampass_items AS i ON (i.id = s.object_id) |
| 208 | 208 | WHERE s.user_id = %i AND i.perso = 1 AND i.id_tree IN %ls', |
| 209 | - $userId, |
|
| 210 | - $personalFolders |
|
| 211 | - ); |
|
| 212 | - $pfiSharekeysCount = DB::count(); |
|
| 213 | - if ($pfiSharekeysCount > 0) { |
|
| 214 | - DB::delete( |
|
| 215 | - "teampass_sharekeys_items", |
|
| 216 | - "increment_id IN %ls", |
|
| 217 | - $pfiSharekeys |
|
| 209 | + $userId, |
|
| 210 | + $personalFolders |
|
| 218 | 211 | ); |
| 219 | - } |
|
| 212 | + $pfiSharekeysCount = DB::count(); |
|
| 213 | + if ($pfiSharekeysCount > 0) { |
|
| 214 | + DB::delete( |
|
| 215 | + "teampass_sharekeys_items", |
|
| 216 | + "increment_id IN %ls", |
|
| 217 | + $pfiSharekeys |
|
| 218 | + ); |
|
| 219 | + } |
|
| 220 | 220 | |
| 221 | 221 | |
| 222 | - //Show done |
|
| 223 | - echo prepareExchangedData( |
|
| 224 | - array( |
|
| 225 | - 'error' => false, |
|
| 226 | - 'message' => '<br>Number of Sharekeys for private items DELETED: ', |
|
| 227 | - 'nbDeleted' => $pfiSharekeysCount, |
|
| 228 | - 'personalFolders' => json_encode($personalFolders), |
|
| 229 | - ), |
|
| 230 | - 'encode' |
|
| 231 | - ); |
|
| 232 | - break; |
|
| 233 | - |
|
| 234 | -case 'perform_fix_pf_items-step3': |
|
| 235 | - // Check KEY |
|
| 236 | - if ($post_key !== $session->get('key')) { |
|
| 222 | + //Show done |
|
| 237 | 223 | echo prepareExchangedData( |
| 238 | 224 | array( |
| 239 | - 'error' => true, |
|
| 240 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 225 | + 'error' => false, |
|
| 226 | + 'message' => '<br>Number of Sharekeys for private items DELETED: ', |
|
| 227 | + 'nbDeleted' => $pfiSharekeysCount, |
|
| 228 | + 'personalFolders' => json_encode($personalFolders), |
|
| 241 | 229 | ), |
| 242 | 230 | 'encode' |
| 243 | 231 | ); |
| 244 | 232 | break; |
| 245 | - } |
|
| 246 | - // Is admin? |
|
| 247 | - if ($session->get('user-admin') !== 1) { |
|
| 248 | - echo prepareExchangedData( |
|
| 249 | - array( |
|
| 250 | - 'error' => true, |
|
| 251 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 252 | - ), |
|
| 253 | - 'encode' |
|
| 254 | - ); |
|
| 255 | - break; |
|
| 256 | - } |
|
| 257 | 233 | |
| 258 | - // decrypt and retrieve data in JSON format |
|
| 259 | - $dataReceived = prepareExchangedData( |
|
| 260 | - $post_data, |
|
| 261 | - 'decode' |
|
| 262 | - ); |
|
| 234 | + case 'perform_fix_pf_items-step3': |
|
| 235 | + // Check KEY |
|
| 236 | + if ($post_key !== $session->get('key')) { |
|
| 237 | + echo prepareExchangedData( |
|
| 238 | + array( |
|
| 239 | + 'error' => true, |
|
| 240 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 241 | + ), |
|
| 242 | + 'encode' |
|
| 243 | + ); |
|
| 244 | + break; |
|
| 245 | + } |
|
| 246 | + // Is admin? |
|
| 247 | + if ($session->get('user-admin') !== 1) { |
|
| 248 | + echo prepareExchangedData( |
|
| 249 | + array( |
|
| 250 | + 'error' => true, |
|
| 251 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 252 | + ), |
|
| 253 | + 'encode' |
|
| 254 | + ); |
|
| 255 | + break; |
|
| 256 | + } |
|
| 263 | 257 | |
| 264 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 265 | - $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 258 | + // decrypt and retrieve data in JSON format |
|
| 259 | + $dataReceived = prepareExchangedData( |
|
| 260 | + $post_data, |
|
| 261 | + 'decode' |
|
| 262 | + ); |
|
| 266 | 263 | |
| 267 | - // Update from items_old to items all the private itemsitems that have been converted to teampass_aes |
|
| 268 | - // Get all key back |
|
| 269 | - $items = DB::query( |
|
| 270 | - "SELECT id |
|
| 264 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 265 | + $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 266 | + |
|
| 267 | + // Update from items_old to items all the private itemsitems that have been converted to teampass_aes |
|
| 268 | + // Get all key back |
|
| 269 | + $items = DB::query( |
|
| 270 | + "SELECT id |
|
| 271 | 271 | FROM teampass_items |
| 272 | 272 | WHERE id_tree IN %ls AND encryption_type = %s", |
| 273 | - $personalFolders, |
|
| 274 | - "teampass_aes" |
|
| 275 | - ); |
|
| 276 | - //DB::debugMode(false); |
|
| 277 | - $nbItems = DB::count(); |
|
| 278 | - foreach ($items as $item) { |
|
| 279 | - $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']); |
|
| 280 | - DB::update( |
|
| 281 | - "teampass_items", |
|
| 282 | - ['pw' => $defusePwd, "encryption_type" => "defuse"], |
|
| 283 | - "id = %i", |
|
| 284 | - $item['id'] |
|
| 273 | + $personalFolders, |
|
| 274 | + "teampass_aes" |
|
| 285 | 275 | ); |
| 286 | - } |
|
| 276 | + //DB::debugMode(false); |
|
| 277 | + $nbItems = DB::count(); |
|
| 278 | + foreach ($items as $item) { |
|
| 279 | + $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']); |
|
| 280 | + DB::update( |
|
| 281 | + "teampass_items", |
|
| 282 | + ['pw' => $defusePwd, "encryption_type" => "defuse"], |
|
| 283 | + "id = %i", |
|
| 284 | + $item['id'] |
|
| 285 | + ); |
|
| 286 | + } |
|
| 287 | 287 | |
| 288 | 288 | |
| 289 | - //Show done |
|
| 290 | - echo prepareExchangedData( |
|
| 291 | - array( |
|
| 292 | - 'error' => false, |
|
| 293 | - 'message' => '<br>Number of items reseted to Defuse: ', |
|
| 294 | - 'nbItems' => $nbItems, |
|
| 295 | - 'personalFolders' => json_encode($personalFolders), |
|
| 296 | - ), |
|
| 297 | - 'encode' |
|
| 298 | - ); |
|
| 299 | - break; |
|
| 289 | + //Show done |
|
| 290 | + echo prepareExchangedData( |
|
| 291 | + array( |
|
| 292 | + 'error' => false, |
|
| 293 | + 'message' => '<br>Number of items reseted to Defuse: ', |
|
| 294 | + 'nbItems' => $nbItems, |
|
| 295 | + 'personalFolders' => json_encode($personalFolders), |
|
| 296 | + ), |
|
| 297 | + 'encode' |
|
| 298 | + ); |
|
| 299 | + break; |
|
| 300 | 300 | } |
| 301 | 301 | \ No newline at end of file |
@@ -70,7 +70,7 @@ |
||
| 70 | 70 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('tools') === false) { |
| 71 | 71 | // Not allowed page |
| 72 | 72 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 73 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 73 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 74 | 74 | exit; |
| 75 | 75 | } |
| 76 | 76 | |
