nilsteampassnet /
TeamPass
@@ -830,7 +830,7 @@ |
||
| 830 | 830 | 'encode' |
| 831 | 831 | ); |
| 832 | 832 | |
| 833 | - /* |
|
| 833 | + /* |
|
| 834 | 834 | * Generate BUG report |
| 835 | 835 | */ |
| 836 | 836 | case 'generate_bug_report'://action_system |
@@ -81,7 +81,7 @@ discard block |
||
| 81 | 81 | ) { |
| 82 | 82 | // Not allowed page |
| 83 | 83 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 84 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 84 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 85 | 85 | exit; |
| 86 | 86 | } |
| 87 | 87 | |
@@ -269,7 +269,7 @@ discard block |
||
| 269 | 269 | |
| 270 | 270 | // Get current user hash |
| 271 | 271 | $userHash = DB::queryFirstRow( |
| 272 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %d;", |
|
| 272 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %d;", |
|
| 273 | 273 | $session->get('user-id') |
| 274 | 274 | )['pw']; |
| 275 | 275 | |
@@ -324,7 +324,7 @@ discard block |
||
| 324 | 324 | * @param string $post_key |
| 325 | 325 | * @return string |
| 326 | 326 | */ |
| 327 | -function userHandler(string $post_type, array|null|string $dataReceived, array $SETTINGS, string $post_key): string |
|
| 327 | +function userHandler(string $post_type, array | null | string $dataReceived, array $SETTINGS, string $post_key): string |
|
| 328 | 328 | { |
| 329 | 329 | $session = SessionManager::getSession(); |
| 330 | 330 | |
@@ -359,7 +359,7 @@ discard block |
||
| 359 | 359 | if (isset($dataReceived['user_id'])) { |
| 360 | 360 | // Get info about user to modify |
| 361 | 361 | $targetUserInfos = DB::queryFirstRow( |
| 362 | - 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 362 | + 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 363 | 363 | WHERE id = %i', |
| 364 | 364 | $dataReceived['user_id'] |
| 365 | 365 | ); |
@@ -508,7 +508,7 @@ discard block |
||
| 508 | 508 | case 'mail_me'://action_mail |
| 509 | 509 | // Get info about user to send email |
| 510 | 510 | $data_user = DB::queryFirstRow( |
| 511 | - 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 511 | + 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 512 | 512 | WHERE email = %s', |
| 513 | 513 | filter_var($dataReceived['receipt'], FILTER_SANITIZE_FULL_SPECIAL_CHARS) |
| 514 | 514 | ); |
@@ -621,7 +621,7 @@ discard block |
||
| 621 | 621 | if (isset($dataReceived['user_id'])) { |
| 622 | 622 | // Get info about user to modify |
| 623 | 623 | $targetUserInfos = DB::queryFirstRow( |
| 624 | - 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 624 | + 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 625 | 625 | WHERE id = %i', |
| 626 | 626 | $dataReceived['user_id'] |
| 627 | 627 | ); |
@@ -700,7 +700,7 @@ discard block |
||
| 700 | 700 | |
| 701 | 701 | // Get current user hash |
| 702 | 702 | $userHash = DB::queryFirstRow( |
| 703 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %d;", |
|
| 703 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %d;", |
|
| 704 | 704 | $session->get('user-id') |
| 705 | 705 | )['pw']; |
| 706 | 706 | |
@@ -738,7 +738,7 @@ discard block |
||
| 738 | 738 | |
| 739 | 739 | // Get current user hash |
| 740 | 740 | $userHash = DB::queryFirstRow( |
| 741 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %d;", |
|
| 741 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %d;", |
|
| 742 | 742 | $session->get('user-id') |
| 743 | 743 | )['pw']; |
| 744 | 744 | |
@@ -782,7 +782,7 @@ discard block |
||
| 782 | 782 | |
| 783 | 783 | // Get current user hash |
| 784 | 784 | $userHash = DB::queryFirstRow( |
| 785 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %i;", |
|
| 785 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %i;", |
|
| 786 | 786 | $session->get('user-id') |
| 787 | 787 | )['pw']; |
| 788 | 788 | |
@@ -826,7 +826,7 @@ discard block |
||
| 826 | 826 | * @param array $SETTINGS |
| 827 | 827 | * @return string |
| 828 | 828 | */ |
| 829 | -function systemHandler(string $post_type, array|null|string $dataReceived, array $SETTINGS): string |
|
| 829 | +function systemHandler(string $post_type, array | null | string $dataReceived, array $SETTINGS): string |
|
| 830 | 830 | { |
| 831 | 831 | $session = SessionManager::getSession(); |
| 832 | 832 | switch ($post_type) { |
@@ -927,7 +927,7 @@ discard block |
||
| 927 | 927 | ) |
| 928 | 928 | ); |
| 929 | 929 | |
| 930 | - return '[{"token" : "' . $token . '"}]'; |
|
| 930 | + return '[{"token" : "'.$token.'"}]'; |
|
| 931 | 931 | |
| 932 | 932 | /* |
| 933 | 933 | * Default case |
@@ -943,7 +943,7 @@ discard block |
||
| 943 | 943 | } |
| 944 | 944 | |
| 945 | 945 | |
| 946 | -function utilsHandler(string $post_type, array|null|string $dataReceived, array $SETTINGS): string |
|
| 946 | +function utilsHandler(string $post_type, array | null | string $dataReceived, array $SETTINGS): string |
|
| 947 | 947 | { |
| 948 | 948 | switch ($post_type) { |
| 949 | 949 | /* |
@@ -1012,7 +1012,7 @@ discard block |
||
| 1012 | 1012 | array( |
| 1013 | 1013 | 'error' => false, |
| 1014 | 1014 | 'timestamp' => $session->get('user-session_duration'), |
| 1015 | - 'max_time_to_add' => intdiv((($maximum_session_expiration_time*60) - ((int) $session->get('user-session_duration') - time())), 60), |
|
| 1015 | + 'max_time_to_add' => intdiv((($maximum_session_expiration_time * 60) - ((int) $session->get('user-session_duration') - time())), 60), |
|
| 1016 | 1016 | 'max_session_duration' => $maximum_session_expiration_time, |
| 1017 | 1017 | ), |
| 1018 | 1018 | 'encode' |
@@ -1064,7 +1064,7 @@ discard block |
||
| 1064 | 1064 | // get number of items |
| 1065 | 1065 | DB::queryFirstRow( |
| 1066 | 1066 | 'SELECT increment_id |
| 1067 | - FROM ' . prefixTable('sharekeys_items') . |
|
| 1067 | + FROM ' . prefixTable('sharekeys_items'). |
|
| 1068 | 1068 | ' WHERE user_id = %i', |
| 1069 | 1069 | $userId |
| 1070 | 1070 | ); |
@@ -1119,7 +1119,7 @@ discard block |
||
| 1119 | 1119 | // check if expected security level is reached |
| 1120 | 1120 | $dataUser = DB::queryFirstRow( |
| 1121 | 1121 | 'SELECT * |
| 1122 | - FROM ' . prefixTable('users') . ' WHERE id = %i', |
|
| 1122 | + FROM ' . prefixTable('users').' WHERE id = %i', |
|
| 1123 | 1123 | $post_user_id |
| 1124 | 1124 | ); |
| 1125 | 1125 | |
@@ -1140,8 +1140,8 @@ discard block |
||
| 1140 | 1140 | if (empty($dataUser['fonction_id']) === false) { |
| 1141 | 1141 | $data = DB::queryFirstRow( |
| 1142 | 1142 | 'SELECT complexity |
| 1143 | - FROM ' . prefixTable('roles_title') . ' |
|
| 1144 | - WHERE id IN (' . $dataUser['fonction_id'] . ') |
|
| 1143 | + FROM ' . prefixTable('roles_title').' |
|
| 1144 | + WHERE id IN (' . $dataUser['fonction_id'].') |
|
| 1145 | 1145 | ORDER BY complexity DESC' |
| 1146 | 1146 | ); |
| 1147 | 1147 | } else { |
@@ -1154,8 +1154,8 @@ discard block |
||
| 1154 | 1154 | return prepareExchangedData( |
| 1155 | 1155 | array( |
| 1156 | 1156 | 'error' => true, |
| 1157 | - 'message' => '<div style="margin:10px 0 10px 15px;">' . $lang->get('complexity_level_not_reached') . '.<br>' . |
|
| 1158 | - $lang->get('expected_complexity_level') . ': <b>' . TP_PW_COMPLEXITY[$data['complexity']][1] . '</b></div>', |
|
| 1157 | + 'message' => '<div style="margin:10px 0 10px 15px;">'.$lang->get('complexity_level_not_reached').'.<br>'. |
|
| 1158 | + $lang->get('expected_complexity_level').': <b>'.TP_PW_COMPLEXITY[$data['complexity']][1].'</b></div>', |
|
| 1159 | 1159 | ), |
| 1160 | 1160 | 'encode' |
| 1161 | 1161 | ); |
@@ -1259,14 +1259,14 @@ discard block |
||
| 1259 | 1259 | // Get data about user |
| 1260 | 1260 | $dataUser = DB::queryFirstRow( |
| 1261 | 1261 | 'SELECT id, email, pw |
| 1262 | - FROM ' . prefixTable('users') . ' |
|
| 1262 | + FROM ' . prefixTable('users').' |
|
| 1263 | 1263 | WHERE login = %s', |
| 1264 | 1264 | $post_login |
| 1265 | 1265 | ); |
| 1266 | 1266 | } else { |
| 1267 | 1267 | $dataUser = DB::queryFirstRow( |
| 1268 | 1268 | 'SELECT id, login, email, pw |
| 1269 | - FROM ' . prefixTable('users') . ' |
|
| 1269 | + FROM ' . prefixTable('users').' |
|
| 1270 | 1270 | WHERE id = %i', |
| 1271 | 1271 | $post_id |
| 1272 | 1272 | ); |
@@ -1320,7 +1320,7 @@ discard block |
||
| 1320 | 1320 | // Check if token already used |
| 1321 | 1321 | $dataToken = DB::queryFirstRow( |
| 1322 | 1322 | 'SELECT end_timestamp, reason |
| 1323 | - FROM ' . prefixTable('tokens') . ' |
|
| 1323 | + FROM ' . prefixTable('tokens').' |
|
| 1324 | 1324 | WHERE token = %s AND user_id = %i', |
| 1325 | 1325 | $post_token, |
| 1326 | 1326 | $dataUser['id'] |
@@ -1331,11 +1331,11 @@ discard block |
||
| 1331 | 1331 | return prepareExchangedData( |
| 1332 | 1332 | array( |
| 1333 | 1333 | 'error' => true, |
| 1334 | - 'message' => 'TOKEN already used',//$lang->get('no_email_set'), |
|
| 1334 | + 'message' => 'TOKEN already used', //$lang->get('no_email_set'), |
|
| 1335 | 1335 | ), |
| 1336 | 1336 | 'encode' |
| 1337 | 1337 | ); |
| 1338 | - } elseif(DB::count() === 0) { |
|
| 1338 | + } elseif (DB::count() === 0) { |
|
| 1339 | 1339 | // Store token for this action |
| 1340 | 1340 | DB::insert( |
| 1341 | 1341 | prefixTable('tokens'), |
@@ -1397,7 +1397,7 @@ discard block |
||
| 1397 | 1397 | 'email' => $dataUser['email'], |
| 1398 | 1398 | 'email_result' => str_replace( |
| 1399 | 1399 | '#email#', |
| 1400 | - '<b>' . obfuscateEmail($dataUser['email']) . '</b>', |
|
| 1400 | + '<b>'.obfuscateEmail($dataUser['email']).'</b>', |
|
| 1401 | 1401 | addslashes($lang->get('admin_email_result_ok')) |
| 1402 | 1402 | ), |
| 1403 | 1403 | ), |
@@ -1413,7 +1413,7 @@ discard block |
||
| 1413 | 1413 | 'email' => $dataUser['email'], |
| 1414 | 1414 | 'email_result' => str_replace( |
| 1415 | 1415 | '#email#', |
| 1416 | - '<b>' . obfuscateEmail($dataUser['email']) . '</b>', |
|
| 1416 | + '<b>'.obfuscateEmail($dataUser['email']).'</b>', |
|
| 1417 | 1417 | addslashes($lang->get('admin_email_result_ok')) |
| 1418 | 1418 | ), |
| 1419 | 1419 | ), |
@@ -1430,7 +1430,7 @@ discard block |
||
| 1430 | 1430 | |
| 1431 | 1431 | if (isKeyExistingAndEqual('enable_send_email_on_user_login', 1, $SETTINGS) === true) { |
| 1432 | 1432 | $row = DB::queryFirstRow( |
| 1433 | - 'SELECT valeur FROM ' . prefixTable('misc') . ' WHERE type = %s AND intitule = %s', |
|
| 1433 | + 'SELECT valeur FROM '.prefixTable('misc').' WHERE type = %s AND intitule = %s', |
|
| 1434 | 1434 | 'cron', |
| 1435 | 1435 | 'sending_emails' |
| 1436 | 1436 | ); |
@@ -1438,7 +1438,7 @@ discard block |
||
| 1438 | 1438 | if ((int) (time() - $row['valeur']) >= 300 || (int) $row['valeur'] === 0) { |
| 1439 | 1439 | $rows = DB::query( |
| 1440 | 1440 | 'SELECT * |
| 1441 | - FROM ' . prefixTable('emails') . |
|
| 1441 | + FROM ' . prefixTable('emails'). |
|
| 1442 | 1442 | ' WHERE status != %s', |
| 1443 | 1443 | 'sent' |
| 1444 | 1444 | ); |
@@ -1490,8 +1490,8 @@ discard block |
||
| 1490 | 1490 | $arr_html = array(); |
| 1491 | 1491 | $rows = DB::query( |
| 1492 | 1492 | 'SELECT i.id AS id, i.label AS label, i.id_tree AS id_tree, l.date, i.perso AS perso, i.restricted_to AS restricted |
| 1493 | - FROM ' . prefixTable('log_items') . ' AS l |
|
| 1494 | - RIGHT JOIN ' . prefixTable('items') . ' AS i ON (l.id_item = i.id) |
|
| 1493 | + FROM ' . prefixTable('log_items').' AS l |
|
| 1494 | + RIGHT JOIN ' . prefixTable('items').' AS i ON (l.id_item = i.id) |
|
| 1495 | 1495 | WHERE l.action = %s AND l.id_user = %i |
| 1496 | 1496 | ORDER BY l.date DESC |
| 1497 | 1497 | LIMIT 0, 100', |
@@ -1523,7 +1523,7 @@ discard block |
||
| 1523 | 1523 | if (isKeyExistingAndEqual('enable_suggestion', 1, $SETTINGS) === true |
| 1524 | 1524 | && ((int) $session->get('user-admin') === 1 || (int) $session->get('user-manager') === 1) |
| 1525 | 1525 | ) { |
| 1526 | - DB::query('SELECT * FROM ' . prefixTable('suggestion')); |
|
| 1526 | + DB::query('SELECT * FROM '.prefixTable('suggestion')); |
|
| 1527 | 1527 | $nb_suggestions_waiting = DB::count(); |
| 1528 | 1528 | } |
| 1529 | 1529 | |
@@ -1558,13 +1558,13 @@ discard block |
||
| 1558 | 1558 | if ($data === 'stat_languages') { |
| 1559 | 1559 | $tmp = ''; |
| 1560 | 1560 | foreach ($stats_data[$data] as $key => $value) { |
| 1561 | - $tmp .= $tmp === '' ? $key . '-' . $value : ',' . $key . '-' . $value; |
|
| 1561 | + $tmp .= $tmp === '' ? $key.'-'.$value : ','.$key.'-'.$value; |
|
| 1562 | 1562 | } |
| 1563 | 1563 | $statsToSend[$data] = $tmp; |
| 1564 | 1564 | } elseif ($data === 'stat_country') { |
| 1565 | 1565 | $tmp = ''; |
| 1566 | 1566 | foreach ($stats_data[$data] as $key => $value) { |
| 1567 | - $tmp .= $tmp === '' ? $key . '-' . $value : ',' . $key . '-' . $value; |
|
| 1567 | + $tmp .= $tmp === '' ? $key.'-'.$value : ','.$key.'-'.$value; |
|
| 1568 | 1568 | } |
| 1569 | 1569 | $statsToSend[$data] = $tmp; |
| 1570 | 1570 | } else { |
@@ -1651,7 +1651,7 @@ discard block |
||
| 1651 | 1651 | $url_found = $value; |
| 1652 | 1652 | if (empty($url_found) === false) { |
| 1653 | 1653 | $tmp = parse_url($url_found); |
| 1654 | - $anonym_url = $tmp['scheme'] . '://<anonym_url>' . (isset($tmp['path']) === true ? $tmp['path'] : ''); |
|
| 1654 | + $anonym_url = $tmp['scheme'].'://<anonym_url>'.(isset($tmp['path']) === true ? $tmp['path'] : ''); |
|
| 1655 | 1655 | $value = $anonym_url; |
| 1656 | 1656 | } else { |
| 1657 | 1657 | $value = ''; |
@@ -1681,7 +1681,7 @@ discard block |
||
| 1681 | 1681 | $teampass_errors = ''; |
| 1682 | 1682 | $rows = DB::query( |
| 1683 | 1683 | 'SELECT label, date AS error_date |
| 1684 | - FROM ' . prefixTable('log_system') . " |
|
| 1684 | + FROM ' . prefixTable('log_system')." |
|
| 1685 | 1685 | WHERE `type` LIKE 'error' |
| 1686 | 1686 | ORDER BY `date` DESC |
| 1687 | 1687 | LIMIT 0, 10" |
@@ -1689,9 +1689,9 @@ discard block |
||
| 1689 | 1689 | if (DB::count() > 0) { |
| 1690 | 1690 | foreach ($rows as $record) { |
| 1691 | 1691 | if (empty($teampass_errors) === true) { |
| 1692 | - $teampass_errors = ' * ' . date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['error_date']) . ' - ' . $record['label']; |
|
| 1692 | + $teampass_errors = ' * '.date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['error_date']).' - '.$record['label']; |
|
| 1693 | 1693 | } else { |
| 1694 | - $teampass_errors .= ' * ' . date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['error_date']) . ' - ' . $record['label']; |
|
| 1694 | + $teampass_errors .= ' * '.date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['error_date']).' - '.$record['label']; |
|
| 1695 | 1695 | } |
| 1696 | 1696 | } |
| 1697 | 1697 | } |
@@ -1703,7 +1703,7 @@ discard block |
||
| 1703 | 1703 | |
| 1704 | 1704 | // Now prepare text |
| 1705 | 1705 | $txt = '### Page on which it happened |
| 1706 | -' . $data['current_page'] . ' |
|
| 1706 | +' . $data['current_page'].' |
|
| 1707 | 1707 | |
| 1708 | 1708 | ### Steps to reproduce |
| 1709 | 1709 | 1. |
@@ -1718,39 +1718,39 @@ discard block |
||
| 1718 | 1718 | Tell us what happens instead |
| 1719 | 1719 | |
| 1720 | 1720 | ### Server configuration |
| 1721 | -**Operating system**: ' . php_uname() . ' |
|
| 1721 | +**Operating system**: ' . php_uname().' |
|
| 1722 | 1722 | |
| 1723 | -**Web server:** ' . $_SERVER['SERVER_SOFTWARE'] . ' |
|
| 1723 | +**Web server:** ' . $_SERVER['SERVER_SOFTWARE'].' |
|
| 1724 | 1724 | |
| 1725 | -**Database:** ' . ($link === false ? $lang->get('undefined') : mysqli_get_server_info($link)) . ' |
|
| 1725 | +**Database:** ' . ($link === false ? $lang->get('undefined') : mysqli_get_server_info($link)).' |
|
| 1726 | 1726 | |
| 1727 | -**PHP version:** ' . PHP_VERSION . ' |
|
| 1727 | +**PHP version:** ' . PHP_VERSION.' |
|
| 1728 | 1728 | |
| 1729 | -**Teampass version:** ' . TP_VERSION . '.' . TP_VERSION_MINOR . ' |
|
| 1729 | +**Teampass version:** ' . TP_VERSION.'.'.TP_VERSION_MINOR.' |
|
| 1730 | 1730 | |
| 1731 | 1731 | **Teampass configuration variables:** |
| 1732 | 1732 | ``` |
| 1733 | -' . $list_of_options . ' |
|
| 1733 | +' . $list_of_options.' |
|
| 1734 | 1734 | ``` |
| 1735 | 1735 | |
| 1736 | 1736 | **Updated from an older Teampass or fresh install:** |
| 1737 | 1737 | |
| 1738 | 1738 | ### Client configuration |
| 1739 | 1739 | |
| 1740 | -**Browser:** ' . $data['browser_name'] . ' - ' . $data['browser_version'] . ' |
|
| 1740 | +**Browser:** ' . $data['browser_name'].' - '.$data['browser_version'].' |
|
| 1741 | 1741 | |
| 1742 | -**Operating system:** ' . $data['os'] . ' - ' . $data['os_archi'] . 'bits |
|
| 1742 | +**Operating system:** ' . $data['os'].' - '.$data['os_archi'].'bits |
|
| 1743 | 1743 | |
| 1744 | 1744 | ### Logs |
| 1745 | 1745 | |
| 1746 | 1746 | #### Web server error log |
| 1747 | 1747 | ``` |
| 1748 | -' . $err['message'] . ' - ' . $err['file'] . ' (' . $err['line'] . ') |
|
| 1748 | +' . $err['message'].' - '.$err['file'].' ('.$err['line'].') |
|
| 1749 | 1749 | ``` |
| 1750 | 1750 | |
| 1751 | 1751 | #### Teampass 10 last system errors |
| 1752 | 1752 | ``` |
| 1753 | -' . $teampass_errors . ' |
|
| 1753 | +' . $teampass_errors.' |
|
| 1754 | 1754 | ``` |
| 1755 | 1755 | |
| 1756 | 1756 | #### Log from the web-browser developer console (CTRL + SHIFT + i) |
@@ -1790,7 +1790,7 @@ discard block |
||
| 1790 | 1790 | // Check if user exists |
| 1791 | 1791 | $userInfo = DB::queryFirstRow( |
| 1792 | 1792 | 'SELECT public_key, private_key, pw, auth_type |
| 1793 | - FROM ' . prefixTable('users') . ' |
|
| 1793 | + FROM ' . prefixTable('users').' |
|
| 1794 | 1794 | WHERE id = %i', |
| 1795 | 1795 | $post_user_id |
| 1796 | 1796 | ); |
@@ -1799,9 +1799,9 @@ discard block |
||
| 1799 | 1799 | // Get one item |
| 1800 | 1800 | $currentUserKey = DB::queryFirstRow( |
| 1801 | 1801 | 'SELECT object_id, share_key, increment_id |
| 1802 | - FROM ' . prefixTable('sharekeys_items') . ' AS si |
|
| 1803 | - INNER JOIN ' . prefixTable('items') . ' AS i ON (i.id = si.object_id) |
|
| 1804 | - INNER JOIN ' . prefixTable('nested_tree') . ' AS nt ON (i.id_tree = nt.id) |
|
| 1802 | + FROM ' . prefixTable('sharekeys_items').' AS si |
|
| 1803 | + INNER JOIN ' . prefixTable('items').' AS i ON (i.id = si.object_id) |
|
| 1804 | + INNER JOIN ' . prefixTable('nested_tree').' AS nt ON (i.id_tree = nt.id) |
|
| 1805 | 1805 | WHERE user_id = %i AND nt.personal_folder = %i', |
| 1806 | 1806 | $post_user_id, |
| 1807 | 1807 | 0 |
@@ -1895,7 +1895,7 @@ discard block |
||
| 1895 | 1895 | // Get user info |
| 1896 | 1896 | $userData = DB::queryFirstRow( |
| 1897 | 1897 | 'SELECT private_key |
| 1898 | - FROM ' . prefixTable('users') . ' |
|
| 1898 | + FROM ' . prefixTable('users').' |
|
| 1899 | 1899 | WHERE id = %i', |
| 1900 | 1900 | $post_user_id |
| 1901 | 1901 | ); |
@@ -1976,7 +1976,7 @@ discard block |
||
| 1976 | 1976 | // Get user info |
| 1977 | 1977 | $userData = DB::queryFirstRow( |
| 1978 | 1978 | 'SELECT email, auth_type, login |
| 1979 | - FROM ' . prefixTable('users') . ' |
|
| 1979 | + FROM ' . prefixTable('users').' |
|
| 1980 | 1980 | WHERE id = %i', |
| 1981 | 1981 | $post_user_id |
| 1982 | 1982 | ); |
@@ -2074,7 +2074,7 @@ discard block |
||
| 2074 | 2074 | // Get user info |
| 2075 | 2075 | $userData = DB::queryFirstRow( |
| 2076 | 2076 | 'SELECT email, auth_type, login |
| 2077 | - FROM ' . prefixTable('users') . ' |
|
| 2077 | + FROM ' . prefixTable('users').' |
|
| 2078 | 2078 | WHERE id = %i', |
| 2079 | 2079 | $post_user_id |
| 2080 | 2080 | ); |
@@ -2140,7 +2140,7 @@ discard block |
||
| 2140 | 2140 | // Check if user exists |
| 2141 | 2141 | DB::queryFirstRow( |
| 2142 | 2142 | 'SELECT * |
| 2143 | - FROM ' . prefixTable('users') . ' |
|
| 2143 | + FROM ' . prefixTable('users').' |
|
| 2144 | 2144 | WHERE id = %i', |
| 2145 | 2145 | $post_user_id |
| 2146 | 2146 | ); |
@@ -2210,7 +2210,7 @@ discard block |
||
| 2210 | 2210 | // Check if user exists |
| 2211 | 2211 | $userInfo = DB::queryFirstRow( |
| 2212 | 2212 | 'SELECT public_key |
| 2213 | - FROM ' . prefixTable('users') . ' |
|
| 2213 | + FROM ' . prefixTable('users').' |
|
| 2214 | 2214 | WHERE id = %i', |
| 2215 | 2215 | $post_user_id |
| 2216 | 2216 | ); |
@@ -2358,15 +2358,15 @@ discard block |
||
| 2358 | 2358 | // Loop on items |
| 2359 | 2359 | $rows = DB::query( |
| 2360 | 2360 | 'SELECT id, pw |
| 2361 | - FROM ' . prefixTable('items') . ' |
|
| 2361 | + FROM ' . prefixTable('items').' |
|
| 2362 | 2362 | WHERE perso = 0 |
| 2363 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2363 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2364 | 2364 | ); |
| 2365 | 2365 | foreach ($rows as $record) { |
| 2366 | 2366 | // Get itemKey from current user |
| 2367 | 2367 | $currentUserKey = DB::queryFirstRow( |
| 2368 | 2368 | 'SELECT share_key, increment_id |
| 2369 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2369 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2370 | 2370 | WHERE object_id = %i AND user_id = %i', |
| 2371 | 2371 | $record['id'], |
| 2372 | 2372 | $session->get('user-id') |
@@ -2398,7 +2398,7 @@ discard block |
||
| 2398 | 2398 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2399 | 2399 | $currentUserKey = DB::queryFirstRow( |
| 2400 | 2400 | 'SELECT increment_id |
| 2401 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2401 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2402 | 2402 | WHERE object_id = %i AND user_id = %i', |
| 2403 | 2403 | $record['id'], |
| 2404 | 2404 | $post_user_id |
@@ -2431,7 +2431,7 @@ discard block |
||
| 2431 | 2431 | // SHould we change step? |
| 2432 | 2432 | DB::query( |
| 2433 | 2433 | 'SELECT * |
| 2434 | - FROM ' . prefixTable('items') . ' |
|
| 2434 | + FROM ' . prefixTable('items').' |
|
| 2435 | 2435 | WHERE perso = 0' |
| 2436 | 2436 | ); |
| 2437 | 2437 | |
@@ -2456,15 +2456,15 @@ discard block |
||
| 2456 | 2456 | // Loop on logs |
| 2457 | 2457 | $rows = DB::query( |
| 2458 | 2458 | 'SELECT increment_id |
| 2459 | - FROM ' . prefixTable('log_items') . ' |
|
| 2459 | + FROM ' . prefixTable('log_items').' |
|
| 2460 | 2460 | WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes" |
| 2461 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2461 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2462 | 2462 | ); |
| 2463 | 2463 | foreach ($rows as $record) { |
| 2464 | 2464 | // Get itemKey from current user |
| 2465 | 2465 | $currentUserKey = DB::queryFirstRow( |
| 2466 | 2466 | 'SELECT share_key |
| 2467 | - FROM ' . prefixTable('sharekeys_logs') . ' |
|
| 2467 | + FROM ' . prefixTable('sharekeys_logs').' |
|
| 2468 | 2468 | WHERE object_id = %i AND user_id = %i', |
| 2469 | 2469 | $record['increment_id'], |
| 2470 | 2470 | $session->get('user-id') |
@@ -2496,7 +2496,7 @@ discard block |
||
| 2496 | 2496 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2497 | 2497 | $currentUserKey = DB::queryFirstRow( |
| 2498 | 2498 | 'SELECT increment_id |
| 2499 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2499 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2500 | 2500 | WHERE object_id = %i AND user_id = %i', |
| 2501 | 2501 | $record['id'], |
| 2502 | 2502 | $post_user_id |
@@ -2518,7 +2518,7 @@ discard block |
||
| 2518 | 2518 | // SHould we change step? |
| 2519 | 2519 | DB::query( |
| 2520 | 2520 | 'SELECT increment_id |
| 2521 | - FROM ' . prefixTable('log_items') . ' |
|
| 2521 | + FROM ' . prefixTable('log_items').' |
|
| 2522 | 2522 | WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"' |
| 2523 | 2523 | ); |
| 2524 | 2524 | |
@@ -2543,15 +2543,15 @@ discard block |
||
| 2543 | 2543 | // Loop on fields |
| 2544 | 2544 | $rows = DB::query( |
| 2545 | 2545 | 'SELECT id |
| 2546 | - FROM ' . prefixTable('categories_items') . ' |
|
| 2546 | + FROM ' . prefixTable('categories_items').' |
|
| 2547 | 2547 | WHERE encryption_type = "teampass_aes" |
| 2548 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2548 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2549 | 2549 | ); |
| 2550 | 2550 | foreach ($rows as $record) { |
| 2551 | 2551 | // Get itemKey from current user |
| 2552 | 2552 | $currentUserKey = DB::queryFirstRow( |
| 2553 | 2553 | 'SELECT share_key |
| 2554 | - FROM ' . prefixTable('sharekeys_fields') . ' |
|
| 2554 | + FROM ' . prefixTable('sharekeys_fields').' |
|
| 2555 | 2555 | WHERE object_id = %i AND user_id = %i', |
| 2556 | 2556 | $record['id'], |
| 2557 | 2557 | $session->get('user-id') |
@@ -2583,7 +2583,7 @@ discard block |
||
| 2583 | 2583 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2584 | 2584 | $currentUserKey = DB::queryFirstRow( |
| 2585 | 2585 | 'SELECT increment_id |
| 2586 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2586 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2587 | 2587 | WHERE object_id = %i AND user_id = %i', |
| 2588 | 2588 | $record['id'], |
| 2589 | 2589 | $post_user_id |
@@ -2605,7 +2605,7 @@ discard block |
||
| 2605 | 2605 | // SHould we change step? |
| 2606 | 2606 | DB::query( |
| 2607 | 2607 | 'SELECT * |
| 2608 | - FROM ' . prefixTable('categories_items') . ' |
|
| 2608 | + FROM ' . prefixTable('categories_items').' |
|
| 2609 | 2609 | WHERE encryption_type = "teampass_aes"' |
| 2610 | 2610 | ); |
| 2611 | 2611 | |
@@ -2630,14 +2630,14 @@ discard block |
||
| 2630 | 2630 | // Loop on suggestions |
| 2631 | 2631 | $rows = DB::query( |
| 2632 | 2632 | 'SELECT id |
| 2633 | - FROM ' . prefixTable('suggestion') . ' |
|
| 2634 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2633 | + FROM ' . prefixTable('suggestion').' |
|
| 2634 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2635 | 2635 | ); |
| 2636 | 2636 | foreach ($rows as $record) { |
| 2637 | 2637 | // Get itemKey from current user |
| 2638 | 2638 | $currentUserKey = DB::queryFirstRow( |
| 2639 | 2639 | 'SELECT share_key |
| 2640 | - FROM ' . prefixTable('sharekeys_suggestions') . ' |
|
| 2640 | + FROM ' . prefixTable('sharekeys_suggestions').' |
|
| 2641 | 2641 | WHERE object_id = %i AND user_id = %i', |
| 2642 | 2642 | $record['id'], |
| 2643 | 2643 | $session->get('user-id') |
@@ -2669,7 +2669,7 @@ discard block |
||
| 2669 | 2669 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2670 | 2670 | $currentUserKey = DB::queryFirstRow( |
| 2671 | 2671 | 'SELECT increment_id |
| 2672 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2672 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2673 | 2673 | WHERE object_id = %i AND user_id = %i', |
| 2674 | 2674 | $record['id'], |
| 2675 | 2675 | $post_user_id |
@@ -2715,15 +2715,15 @@ discard block |
||
| 2715 | 2715 | // Loop on files |
| 2716 | 2716 | $rows = DB::query( |
| 2717 | 2717 | 'SELECT id |
| 2718 | - FROM ' . prefixTable('files') . ' |
|
| 2719 | - WHERE status = "' . TP_ENCRYPTION_NAME . '" |
|
| 2720 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2718 | + FROM ' . prefixTable('files').' |
|
| 2719 | + WHERE status = "' . TP_ENCRYPTION_NAME.'" |
|
| 2720 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2721 | 2721 | ); //aes_encryption |
| 2722 | 2722 | foreach ($rows as $record) { |
| 2723 | 2723 | // Get itemKey from current user |
| 2724 | 2724 | $currentUserKey = DB::queryFirstRow( |
| 2725 | 2725 | 'SELECT share_key |
| 2726 | - FROM ' . prefixTable('sharekeys_files') . ' |
|
| 2726 | + FROM ' . prefixTable('sharekeys_files').' |
|
| 2727 | 2727 | WHERE object_id = %i AND user_id = %i', |
| 2728 | 2728 | $record['id'], |
| 2729 | 2729 | $session->get('user-id') |
@@ -2755,7 +2755,7 @@ discard block |
||
| 2755 | 2755 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2756 | 2756 | $currentUserKey = DB::queryFirstRow( |
| 2757 | 2757 | 'SELECT increment_id |
| 2758 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2758 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2759 | 2759 | WHERE object_id = %i AND user_id = %i', |
| 2760 | 2760 | $record['id'], |
| 2761 | 2761 | $post_user_id |
@@ -2777,8 +2777,8 @@ discard block |
||
| 2777 | 2777 | // SHould we change step? |
| 2778 | 2778 | DB::query( |
| 2779 | 2779 | 'SELECT * |
| 2780 | - FROM ' . prefixTable('files') . ' |
|
| 2781 | - WHERE status = "' . TP_ENCRYPTION_NAME . '"' |
|
| 2780 | + FROM ' . prefixTable('files').' |
|
| 2781 | + WHERE status = "' . TP_ENCRYPTION_NAME.'"' |
|
| 2782 | 2782 | ); |
| 2783 | 2783 | |
| 2784 | 2784 | $next_start = (int) $post_start + (int) $post_length; |
@@ -2811,9 +2811,9 @@ discard block |
||
| 2811 | 2811 | if (count($session->get('user-personal_folders')) > 0) { |
| 2812 | 2812 | $rows = DB::query( |
| 2813 | 2813 | 'SELECT id, pw |
| 2814 | - FROM ' . prefixTable('items') . ' |
|
| 2814 | + FROM ' . prefixTable('items').' |
|
| 2815 | 2815 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type = %s |
| 2816 | - LIMIT ' . $post_start . ', ' . $post_length, |
|
| 2816 | + LIMIT ' . $post_start.', '.$post_length, |
|
| 2817 | 2817 | $session->get('user-personal_folders'), |
| 2818 | 2818 | "defuse" |
| 2819 | 2819 | ); |
@@ -2821,7 +2821,7 @@ discard block |
||
| 2821 | 2821 | // Get itemKey from current user |
| 2822 | 2822 | $currentUserKey = DB::queryFirstRow( |
| 2823 | 2823 | 'SELECT share_key, increment_id |
| 2824 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2824 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2825 | 2825 | WHERE object_id = %i AND user_id = %i', |
| 2826 | 2826 | $record['id'], |
| 2827 | 2827 | $session->get('user-id') |
@@ -2848,7 +2848,7 @@ discard block |
||
| 2848 | 2848 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2849 | 2849 | $currentUserKey = DB::queryFirstRow( |
| 2850 | 2850 | 'SELECT increment_id |
| 2851 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2851 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2852 | 2852 | WHERE object_id = %i AND user_id = %i', |
| 2853 | 2853 | $record['id'], |
| 2854 | 2854 | $post_user_id |
@@ -2871,7 +2871,7 @@ discard block |
||
| 2871 | 2871 | // SHould we change step? |
| 2872 | 2872 | DB::query( |
| 2873 | 2873 | 'SELECT * |
| 2874 | - FROM ' . prefixTable('items') . ' |
|
| 2874 | + FROM ' . prefixTable('items').' |
|
| 2875 | 2875 | WHERE perso = 0' |
| 2876 | 2876 | ); |
| 2877 | 2877 | |
@@ -2899,7 +2899,7 @@ discard block |
||
| 2899 | 2899 | // Check if user exists |
| 2900 | 2900 | $userInfo = DB::queryFirstRow( |
| 2901 | 2901 | 'SELECT public_key, encrypted_psk |
| 2902 | - FROM ' . prefixTable('users') . ' |
|
| 2902 | + FROM ' . prefixTable('users').' |
|
| 2903 | 2903 | WHERE id = %i', |
| 2904 | 2904 | $post_user_id |
| 2905 | 2905 | ); |
@@ -2925,7 +2925,7 @@ discard block |
||
| 2925 | 2925 | if ($post_counterItemsToTreat === -1) { |
| 2926 | 2926 | DB::query( |
| 2927 | 2927 | 'SELECT id |
| 2928 | - FROM ' . prefixTable('items') . ' |
|
| 2928 | + FROM ' . prefixTable('items').' |
|
| 2929 | 2929 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type != %s', |
| 2930 | 2930 | $session->get('user-personal_folders'), |
| 2931 | 2931 | 'teampass_aes' |
@@ -2938,7 +2938,7 @@ discard block |
||
| 2938 | 2938 | // Loop on persoanl items |
| 2939 | 2939 | $rows = DB::query( |
| 2940 | 2940 | 'SELECT id, pw |
| 2941 | - FROM ' . prefixTable('items') . ' |
|
| 2941 | + FROM ' . prefixTable('items').' |
|
| 2942 | 2942 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type != %s |
| 2943 | 2943 | LIMIT ' . $post_length, |
| 2944 | 2944 | $session->get('user-personal_folders'), |
@@ -2982,7 +2982,7 @@ discard block |
||
| 2982 | 2982 | // Loop on files |
| 2983 | 2983 | $rows = DB::query( |
| 2984 | 2984 | 'SELECT id, file |
| 2985 | - FROM ' . prefixTable('files') . ' |
|
| 2985 | + FROM ' . prefixTable('files').' |
|
| 2986 | 2986 | WHERE status != %s |
| 2987 | 2987 | AND id_item = %i', |
| 2988 | 2988 | TP_ENCRYPTION_NAME, |
@@ -2993,13 +2993,13 @@ discard block |
||
| 2993 | 2993 | // Now decrypt the file |
| 2994 | 2994 | prepareFileWithDefuse( |
| 2995 | 2995 | 'decrypt', |
| 2996 | - $SETTINGS['path_to_upload_folder'] . '/' . $record2['file'], |
|
| 2997 | - $SETTINGS['path_to_upload_folder'] . '/' . $record2['file'] . '.delete', |
|
| 2996 | + $SETTINGS['path_to_upload_folder'].'/'.$record2['file'], |
|
| 2997 | + $SETTINGS['path_to_upload_folder'].'/'.$record2['file'].'.delete', |
|
| 2998 | 2998 | $post_user_psk |
| 2999 | 2999 | ); |
| 3000 | 3000 | |
| 3001 | 3001 | // Encrypt the file |
| 3002 | - $encryptedFile = encryptFile($record2['file'] . '.delete', $SETTINGS['path_to_upload_folder']); |
|
| 3002 | + $encryptedFile = encryptFile($record2['file'].'.delete', $SETTINGS['path_to_upload_folder']); |
|
| 3003 | 3003 | |
| 3004 | 3004 | DB::update( |
| 3005 | 3005 | prefixTable('files'), |
@@ -3022,7 +3022,7 @@ discard block |
||
| 3022 | 3022 | ); |
| 3023 | 3023 | |
| 3024 | 3024 | // Unlink original file |
| 3025 | - unlink($SETTINGS['path_to_upload_folder'] . '/' . $record2['file']); |
|
| 3025 | + unlink($SETTINGS['path_to_upload_folder'].'/'.$record2['file']); |
|
| 3026 | 3026 | } |
| 3027 | 3027 | } |
| 3028 | 3028 | |
@@ -3030,7 +3030,7 @@ discard block |
||
| 3030 | 3030 | $next_start = (int) $post_start + (int) $post_length; |
| 3031 | 3031 | DB::query( |
| 3032 | 3032 | 'SELECT id |
| 3033 | - FROM ' . prefixTable('items') . ' |
|
| 3033 | + FROM ' . prefixTable('items').' |
|
| 3034 | 3034 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type != %s', |
| 3035 | 3035 | $session->get('user-personal_folders'), |
| 3036 | 3036 | 'teampass_aes' |
@@ -3100,7 +3100,7 @@ discard block |
||
| 3100 | 3100 | // Get user info |
| 3101 | 3101 | $userData = DB::queryFirstRow( |
| 3102 | 3102 | 'SELECT special, auth_type, is_ready_for_usage, ongoing_process_id, otp_provided, keys_recovery_time |
| 3103 | - FROM ' . prefixTable('users') . ' |
|
| 3103 | + FROM ' . prefixTable('users').' |
|
| 3104 | 3104 | WHERE id = %i', |
| 3105 | 3105 | $post_user_id |
| 3106 | 3106 | ); |
@@ -3147,7 +3147,7 @@ discard block |
||
| 3147 | 3147 | // Get user info |
| 3148 | 3148 | $userData = DB::queryFirstRow( |
| 3149 | 3149 | 'SELECT auth_type, login, private_key |
| 3150 | - FROM ' . prefixTable('users') . ' |
|
| 3150 | + FROM ' . prefixTable('users').' |
|
| 3151 | 3151 | WHERE id = %i', |
| 3152 | 3152 | $post_user_id |
| 3153 | 3153 | ); |
@@ -3197,7 +3197,7 @@ discard block |
||
| 3197 | 3197 | return prepareExchangedData( |
| 3198 | 3198 | array( |
| 3199 | 3199 | 'error' => false, |
| 3200 | - 'message' => $lang->get('done'),'', |
|
| 3200 | + 'message' => $lang->get('done'), '', |
|
| 3201 | 3201 | ), |
| 3202 | 3202 | 'encode' |
| 3203 | 3203 | ); |
@@ -3245,7 +3245,7 @@ discard block |
||
| 3245 | 3245 | // Get user info |
| 3246 | 3246 | $userData = DB::queryFirstRow( |
| 3247 | 3247 | 'SELECT auth_type, login, private_key, special |
| 3248 | - FROM ' . prefixTable('users') . ' |
|
| 3248 | + FROM ' . prefixTable('users').' |
|
| 3249 | 3249 | WHERE id = %i', |
| 3250 | 3250 | $post_user_id |
| 3251 | 3251 | ); |
@@ -3279,7 +3279,7 @@ discard block |
||
| 3279 | 3279 | return prepareExchangedData( |
| 3280 | 3280 | array( |
| 3281 | 3281 | 'error' => false, |
| 3282 | - 'message' => $lang->get('done'),'', |
|
| 3282 | + 'message' => $lang->get('done'), '', |
|
| 3283 | 3283 | ), |
| 3284 | 3284 | 'encode' |
| 3285 | 3285 | ); |
@@ -3301,8 +3301,8 @@ discard block |
||
| 3301 | 3301 | // Get one itemKey from current user |
| 3302 | 3302 | $currentUserKey = DB::queryFirstRow( |
| 3303 | 3303 | 'SELECT ski.share_key, ski.increment_id, l.id_user |
| 3304 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 3305 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 3304 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 3305 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 3306 | 3306 | WHERE ski.user_id = %i |
| 3307 | 3307 | ORDER BY RAND() |
| 3308 | 3308 | LIMIT 1', |
@@ -3392,7 +3392,7 @@ discard block |
||
| 3392 | 3392 | $session->get('user-id') |
| 3393 | 3393 | ); |
| 3394 | 3394 | // Return data |
| 3395 | - return '[{"new_value":"' . $session->get('user-session_duration') . '"}]'; |
|
| 3395 | + return '[{"new_value":"'.$session->get('user-session_duration').'"}]'; |
|
| 3396 | 3396 | } |
| 3397 | 3397 | |
| 3398 | 3398 | return '[{"new_value":"expired"}]'; |
@@ -69,7 +69,7 @@ discard block |
||
| 69 | 69 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('mfa') === false) { |
| 70 | 70 | // Not allowed page |
| 71 | 71 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 72 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 72 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 73 | 73 | exit; |
| 74 | 74 | } |
| 75 | 75 | |
@@ -141,7 +141,7 @@ discard block |
||
| 141 | 141 | $roles = getRolesTitles(); |
| 142 | 142 | foreach ($roles as $role) { |
| 143 | 143 | echo ' |
| 144 | - <option value="' . $role['id'] . '"', in_array($role['id'], $arrRolesMFA) === true ? ' selected' : '', '>' . addslashes($role['title']) . '</option>'; |
|
| 144 | + <option value="' . $role['id'].'"', in_array($role['id'], $arrRolesMFA) === true ? ' selected' : '', '>'.addslashes($role['title']).'</option>'; |
|
| 145 | 145 | } |
| 146 | 146 | ?> |
| 147 | 147 | </select> |
@@ -33,7 +33,7 @@ discard block |
||
| 33 | 33 | use Symfony\Component\HttpFoundation\Request as SymfonyRequest; |
| 34 | 34 | |
| 35 | 35 | // Load functions |
| 36 | -require_once __DIR__. '/includes/config/include.php'; |
|
| 36 | +require_once __DIR__.'/includes/config/include.php'; |
|
| 37 | 37 | require_once __DIR__.'/sources/main.functions.php'; |
| 38 | 38 | |
| 39 | 39 | // init |
@@ -53,10 +53,10 @@ discard block |
||
| 53 | 53 | // Check for existing lock |
| 54 | 54 | $result = DB::queryFirstField( |
| 55 | 55 | 'SELECT 1 |
| 56 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 56 | + FROM ' . prefixTable('auth_failures').' |
|
| 57 | 57 | WHERE unlock_at = ( |
| 58 | 58 | SELECT MAX(unlock_at) |
| 59 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 59 | + FROM ' . prefixTable('auth_failures').' |
|
| 60 | 60 | WHERE unlock_at > %s |
| 61 | 61 | AND source = %s AND value = %s) |
| 62 | 62 | AND unlock_code = %s', |
@@ -2663,7 +2663,7 @@ |
||
| 2663 | 2663 | 'SELECT email, name |
| 2664 | 2664 | FROM '.prefixTable('users').' |
| 2665 | 2665 | WHERE login = %s', |
| 2666 | - $value |
|
| 2666 | + $value |
|
| 2667 | 2667 | ); |
| 2668 | 2668 | |
| 2669 | 2669 | // No valid email address for user |
@@ -2401,7 +2401,9 @@ discard block |
||
| 2401 | 2401 | // Complete $userInfo |
| 2402 | 2402 | $userInfo['has_been_created'] = 1; |
| 2403 | 2403 | |
| 2404 | - if (WIP === true) error_log("--- USER CREATED ---"); |
|
| 2404 | + if (WIP === true) { |
|
| 2405 | + error_log("--- USER CREATED ---"); |
|
| 2406 | + } |
|
| 2405 | 2407 | |
| 2406 | 2408 | return [ |
| 2407 | 2409 | 'error' => false, |
@@ -2437,7 +2439,9 @@ discard block |
||
| 2437 | 2439 | } |
| 2438 | 2440 | |
| 2439 | 2441 | // Oauth2 user already exists and authenticated |
| 2440 | - if (WIP === true) error_log("--- USER AUTHENTICATED ---"); |
|
| 2442 | + if (WIP === true) { |
|
| 2443 | + error_log("--- USER AUTHENTICATED ---"); |
|
| 2444 | + } |
|
| 2441 | 2445 | $userInfo['has_been_created'] = 0; |
| 2442 | 2446 | |
| 2443 | 2447 | $passwordManager = new PasswordManager(); |
@@ -2667,8 +2671,9 @@ discard block |
||
| 2667 | 2671 | ); |
| 2668 | 2672 | |
| 2669 | 2673 | // No valid email address for user |
| 2670 | - if (!$userInfos || !filter_var($userInfos['email'], FILTER_VALIDATE_EMAIL)) |
|
| 2671 | - return; |
|
| 2674 | + if (!$userInfos || !filter_var($userInfos['email'], FILTER_VALIDATE_EMAIL)) { |
|
| 2675 | + return; |
|
| 2676 | + } |
|
| 2672 | 2677 | |
| 2673 | 2678 | $unlock_url = $SETTINGS['cpassman_url'].'/self-unlock.php?login='.$value.'&otp='.$unlock_code; |
| 2674 | 2679 | |
@@ -147,7 +147,7 @@ discard block |
||
| 147 | 147 | $sessionPwdAttempts = $session->get('pwd_attempts'); |
| 148 | 148 | $sessionUrl = $session->get('user-initial_url'); |
| 149 | 149 | $server = []; |
| 150 | - $server['PHP_AUTH_USER'] = $request->getUser(); |
|
| 150 | + $server['PHP_AUTH_USER'] = $request->getUser(); |
|
| 151 | 151 | $server['PHP_AUTH_PW'] = $request->getPassword(); |
| 152 | 152 | |
| 153 | 153 | // decrypt and retreive data in JSON format |
@@ -162,18 +162,18 @@ discard block |
||
| 162 | 162 | } |
| 163 | 163 | |
| 164 | 164 | // Check if Duo auth is in progress and pass the pw and login back to the standard login process |
| 165 | - if( |
|
| 165 | + if ( |
|
| 166 | 166 | isKeyExistingAndEqual('duo', 1, $SETTINGS) === true |
| 167 | 167 | && $dataReceived['user_2fa_selection'] === 'duo' |
| 168 | 168 | && $session->get('user-duo_status') === 'IN_PROGRESS' |
| 169 | 169 | && !empty($dataReceived['duo_state']) |
| 170 | - ){ |
|
| 170 | + ) { |
|
| 171 | 171 | $key = hash('sha256', $dataReceived['duo_state']); |
| 172 | 172 | $iv = substr(hash('sha256', $dataReceived['duo_state']), 0, 16); |
| 173 | 173 | $duo_data_dec = openssl_decrypt(base64_decode($session->get('user-duo_data')), 'AES-256-CBC', $key, 0, $iv); |
| 174 | 174 | // Clear the data from the Duo process to continue clean with the standard login process |
| 175 | - $session->set('user-duo_data',''); |
|
| 176 | - if($duo_data_dec === false) { |
|
| 175 | + $session->set('user-duo_data', ''); |
|
| 176 | + if ($duo_data_dec === false) { |
|
| 177 | 177 | // Add failed authentication log |
| 178 | 178 | addFailedAuthentication(filter_var($dataReceived['login'], FILTER_SANITIZE_FULL_SPECIAL_CHARS), getClientIpServer()); |
| 179 | 179 | |
@@ -191,7 +191,7 @@ discard block |
||
| 191 | 191 | $dataReceived['login'] = $duo_data['duo_login']; |
| 192 | 192 | } |
| 193 | 193 | |
| 194 | - if(isset($dataReceived['pw']) === false || isset($dataReceived['login']) === false) { |
|
| 194 | + if (isset($dataReceived['pw']) === false || isset($dataReceived['login']) === false) { |
|
| 195 | 195 | echo json_encode([ |
| 196 | 196 | 'data' => prepareExchangedData( |
| 197 | 197 | [ |
@@ -536,7 +536,7 @@ discard block |
||
| 536 | 536 | } |
| 537 | 537 | // Append with roles from AD groups |
| 538 | 538 | if (is_null($userInfo['roles_from_ad_groups']) === false) { |
| 539 | - $userInfo['fonction_id'] = empty($userInfo['fonction_id']) === true ? $userInfo['roles_from_ad_groups'] : $userInfo['fonction_id']. ';' . $userInfo['roles_from_ad_groups']; |
|
| 539 | + $userInfo['fonction_id'] = empty($userInfo['fonction_id']) === true ? $userInfo['roles_from_ad_groups'] : $userInfo['fonction_id'].';'.$userInfo['roles_from_ad_groups']; |
|
| 540 | 540 | } |
| 541 | 541 | // store |
| 542 | 542 | $session->set('user-roles', $userInfo['fonction_id']); |
@@ -548,7 +548,7 @@ discard block |
||
| 548 | 548 | if (count($session->get('user-roles_array')) > 0) { |
| 549 | 549 | $rolesList = DB::query( |
| 550 | 550 | 'SELECT id, title, complexity |
| 551 | - FROM ' . prefixTable('roles_title') . ' |
|
| 551 | + FROM ' . prefixTable('roles_title').' |
|
| 552 | 552 | WHERE id IN %li', |
| 553 | 553 | $session->get('user-roles_array') |
| 554 | 554 | ); |
@@ -594,7 +594,7 @@ discard block |
||
| 594 | 594 | if ($adjustPermissions) { |
| 595 | 595 | $session->set('user-admin', (int) $userInfo['admin']); |
| 596 | 596 | $session->set('user-manager', (int) $userInfo['gestionnaire']); |
| 597 | - $session->set('user-can_manage_all_users',(int) $userInfo['can_manage_all_users']); |
|
| 597 | + $session->set('user-can_manage_all_users', (int) $userInfo['can_manage_all_users']); |
|
| 598 | 598 | $session->set('user-read_only', (int) $userInfo['read_only']); |
| 599 | 599 | DB::update( |
| 600 | 600 | prefixTable('users'), |
@@ -665,10 +665,10 @@ discard block |
||
| 665 | 665 | $session->set('user-latest_items_tab', []); |
| 666 | 666 | $session->set('user-nb_roles', 0); |
| 667 | 667 | foreach ($session->get('user-latest_items') as $item) { |
| 668 | - if (! empty($item)) { |
|
| 668 | + if (!empty($item)) { |
|
| 669 | 669 | $dataLastItems = DB::queryFirstRow( |
| 670 | 670 | 'SELECT id,label,id_tree |
| 671 | - FROM ' . prefixTable('items') . ' |
|
| 671 | + FROM ' . prefixTable('items').' |
|
| 672 | 672 | WHERE id=%i', |
| 673 | 673 | $item |
| 674 | 674 | ); |
@@ -677,7 +677,7 @@ discard block |
||
| 677 | 677 | [ |
| 678 | 678 | 'id' => $item, |
| 679 | 679 | 'label' => $dataLastItems['label'], |
| 680 | - 'url' => 'index.php?page=items&group=' . $dataLastItems['id_tree'] . '&id=' . $item, |
|
| 680 | + 'url' => 'index.php?page=items&group='.$dataLastItems['id_tree'].'&id='.$item, |
|
| 681 | 681 | ], |
| 682 | 682 | 'add' |
| 683 | 683 | ); |
@@ -687,7 +687,7 @@ discard block |
||
| 687 | 687 | // Get cahce tree info |
| 688 | 688 | $cacheTreeData = DB::queryFirstRow( |
| 689 | 689 | 'SELECT visible_folders |
| 690 | - FROM ' . prefixTable('cache_tree') . ' |
|
| 690 | + FROM ' . prefixTable('cache_tree').' |
|
| 691 | 691 | WHERE user_id=%i', |
| 692 | 692 | (int) $session->get('user-id') |
| 693 | 693 | ); |
@@ -719,7 +719,7 @@ discard block |
||
| 719 | 719 | && (int) $sessionAdmin !== 1 |
| 720 | 720 | ) { |
| 721 | 721 | // get all Admin users |
| 722 | - $val = DB::queryFirstRow('SELECT email FROM ' . prefixTable('users') . " WHERE admin = %i and email != ''", 1); |
|
| 722 | + $val = DB::queryFirstRow('SELECT email FROM '.prefixTable('users')." WHERE admin = %i and email != ''", 1); |
|
| 723 | 723 | if (DB::count() > 0) { |
| 724 | 724 | // Add email to table |
| 725 | 725 | prepareSendingEmail( |
@@ -731,7 +731,7 @@ discard block |
||
| 731 | 731 | '#tp_time#', |
| 732 | 732 | ], |
| 733 | 733 | [ |
| 734 | - ' ' . $session->get('user-login') . ' (IP: ' . getClientIpServer() . ')', |
|
| 734 | + ' '.$session->get('user-login').' (IP: '.getClientIpServer().')', |
|
| 735 | 735 | date($SETTINGS['date_format'], (int) $session->get('user-last_connection')), |
| 736 | 736 | date($SETTINGS['time_format'], (int) $session->get('user-last_connection')), |
| 737 | 737 | ], |
@@ -842,7 +842,7 @@ discard block |
||
| 842 | 842 | { |
| 843 | 843 | $rows = DB::query( |
| 844 | 844 | 'SELECT date |
| 845 | - FROM ' . prefixTable('log_system') . " |
|
| 845 | + FROM ' . prefixTable('log_system')." |
|
| 846 | 846 | WHERE field_1 = %s |
| 847 | 847 | AND type = 'failed_auth' |
| 848 | 848 | AND label = 'password_is_not_correct' |
@@ -856,7 +856,7 @@ discard block |
||
| 856 | 856 | foreach ($rows as $record) { |
| 857 | 857 | array_push( |
| 858 | 858 | $arrAttempts, |
| 859 | - date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['date']) |
|
| 859 | + date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['date']) |
|
| 860 | 860 | ); |
| 861 | 861 | } |
| 862 | 862 | } |
@@ -891,7 +891,7 @@ discard block |
||
| 891 | 891 | $ldapConnection |
| 892 | 892 | ) : bool |
| 893 | 893 | { |
| 894 | - include_once $SETTINGS['cpassman_dir'] . '/sources/main.functions.php'; |
|
| 894 | + include_once $SETTINGS['cpassman_dir'].'/sources/main.functions.php'; |
|
| 895 | 895 | |
| 896 | 896 | if ((int) $userInfoDisabled === 1) { |
| 897 | 897 | return false; |
@@ -1086,7 +1086,7 @@ discard block |
||
| 1086 | 1086 | } catch (Exception $e) { |
| 1087 | 1087 | return [ |
| 1088 | 1088 | 'error' => true, |
| 1089 | - 'message' => "Error: " . $e->getMessage(), |
|
| 1089 | + 'message' => "Error: ".$e->getMessage(), |
|
| 1090 | 1090 | ]; |
| 1091 | 1091 | } |
| 1092 | 1092 | } |
@@ -1117,7 +1117,7 @@ discard block |
||
| 1117 | 1117 | 'type' => 'OpenLDAP' |
| 1118 | 1118 | ]; |
| 1119 | 1119 | default: |
| 1120 | - throw new Exception("Unsupported LDAP type: " . $SETTINGS['ldap_type']); |
|
| 1120 | + throw new Exception("Unsupported LDAP type: ".$SETTINGS['ldap_type']); |
|
| 1121 | 1121 | } |
| 1122 | 1122 | } |
| 1123 | 1123 | |
@@ -1254,7 +1254,7 @@ discard block |
||
| 1254 | 1254 | ); |
| 1255 | 1255 | } |
| 1256 | 1256 | |
| 1257 | - throw new Exception("Unsupported LDAP type: " . $ldapHandler['type']); |
|
| 1257 | + throw new Exception("Unsupported LDAP type: ".$ldapHandler['type']); |
|
| 1258 | 1258 | } |
| 1259 | 1259 | |
| 1260 | 1260 | /** |
@@ -1271,12 +1271,12 @@ discard block |
||
| 1271 | 1271 | if (isset($SETTINGS['enable_ad_users_with_ad_groups']) === true && (int) $SETTINGS['enable_ad_users_with_ad_groups'] === 1) { |
| 1272 | 1272 | // Get user groups from AD |
| 1273 | 1273 | $user_ad_groups = []; |
| 1274 | - foreach($groups as $group) { |
|
| 1274 | + foreach ($groups as $group) { |
|
| 1275 | 1275 | //print_r($group); |
| 1276 | 1276 | // get relation role id for AD group |
| 1277 | 1277 | $role = DB::queryFirstRow( |
| 1278 | 1278 | 'SELECT lgr.role_id |
| 1279 | - FROM ' . prefixTable('ldap_groups_roles') . ' AS lgr |
|
| 1279 | + FROM ' . prefixTable('ldap_groups_roles').' AS lgr |
|
| 1280 | 1280 | WHERE lgr.ldap_group_id = %s', |
| 1281 | 1281 | $group |
| 1282 | 1282 | ); |
@@ -1407,7 +1407,7 @@ discard block |
||
| 1407 | 1407 | // Check if exists in DB |
| 1408 | 1408 | $groupData = DB::queryFirstRow( |
| 1409 | 1409 | 'SELECT id |
| 1410 | - FROM ' . prefixTable('roles_title') . ' |
|
| 1410 | + FROM ' . prefixTable('roles_title').' |
|
| 1411 | 1411 | WHERE title = %s', |
| 1412 | 1412 | $group["displayName"] |
| 1413 | 1413 | ); |
@@ -1537,7 +1537,7 @@ discard block |
||
| 1537 | 1537 | |
| 1538 | 1538 | // generate new QR |
| 1539 | 1539 | $new_2fa_qr = $tfa->getQRCodeImageAsDataUri( |
| 1540 | - 'Teampass - ' . $username, |
|
| 1540 | + 'Teampass - '.$username, |
|
| 1541 | 1541 | $userInfo['ga'] |
| 1542 | 1542 | ); |
| 1543 | 1543 | // clear temporary code from DB |
@@ -1550,7 +1550,7 @@ discard block |
||
| 1550 | 1550 | $userInfo['id'] |
| 1551 | 1551 | ); |
| 1552 | 1552 | $firstTime = [ |
| 1553 | - 'value' => '<img src="' . $new_2fa_qr . '">', |
|
| 1553 | + 'value' => '<img src="'.$new_2fa_qr.'">', |
|
| 1554 | 1554 | 'user_admin' => isset($sessionAdmin) ? (int) $sessionAdmin : '', |
| 1555 | 1555 | 'initial_url' => isset($sessionUrl) === true ? $sessionUrl : '', |
| 1556 | 1556 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
@@ -1706,7 +1706,7 @@ discard block |
||
| 1706 | 1706 | }*/ |
| 1707 | 1707 | return [ |
| 1708 | 1708 | 'error' => true, |
| 1709 | - 'message' => $duo_error . $lang->get('duo_error_check_config'), |
|
| 1709 | + 'message' => $duo_error.$lang->get('duo_error_check_config'), |
|
| 1710 | 1710 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
| 1711 | 1711 | 'debug_message' => $e->getMessage(), |
| 1712 | 1712 | 'proceedIdentification' => false, |
@@ -1722,7 +1722,7 @@ discard block |
||
| 1722 | 1722 | } catch (DuoException $e) { |
| 1723 | 1723 | return [ |
| 1724 | 1724 | 'error' => true, |
| 1725 | - 'message' => $duo_error . $lang->get('duo_error_url'), |
|
| 1725 | + 'message' => $duo_error.$lang->get('duo_error_url'), |
|
| 1726 | 1726 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
| 1727 | 1727 | 'debug_message' => $e->getMessage(), |
| 1728 | 1728 | 'proceedIdentification' => false, |
@@ -1730,7 +1730,7 @@ discard block |
||
| 1730 | 1730 | } |
| 1731 | 1731 | |
| 1732 | 1732 | // Somethimes Duo return success but fail to return a URL, double check if the URL has been created |
| 1733 | - if (!empty($duo_redirect_url) && filter_var($duo_redirect_url,FILTER_SANITIZE_URL)) { |
|
| 1733 | + if (!empty($duo_redirect_url) && filter_var($duo_redirect_url, FILTER_SANITIZE_URL)) { |
|
| 1734 | 1734 | // Since Duo Universal requires a redirect, let's store some info when the user get's back after completing the Duo prompt |
| 1735 | 1735 | $key = hash('sha256', $duo_state); |
| 1736 | 1736 | $iv = substr(hash('sha256', $duo_state), 0, 16); |
@@ -1758,7 +1758,7 @@ discard block |
||
| 1758 | 1758 | } else { |
| 1759 | 1759 | return [ |
| 1760 | 1760 | 'error' => true, |
| 1761 | - 'message' => $duo_error . $lang->get('duo_error_url'), |
|
| 1761 | + 'message' => $duo_error.$lang->get('duo_error_url'), |
|
| 1762 | 1762 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
| 1763 | 1763 | 'proceedIdentification' => false, |
| 1764 | 1764 | ]; |
@@ -1779,8 +1779,8 @@ discard block |
||
| 1779 | 1779 | // return the response (which should be the user name) |
| 1780 | 1780 | if ($decoded_token['preferred_username'] === $username) { |
| 1781 | 1781 | $session->set('user-duo_status', 'COMPLET'); |
| 1782 | - $session->set('user-duo_state',''); |
|
| 1783 | - $session->set('user-duo_data',''); |
|
| 1782 | + $session->set('user-duo_state', ''); |
|
| 1783 | + $session->set('user-duo_data', ''); |
|
| 1784 | 1784 | $session->set('user-login', $username); |
| 1785 | 1785 | |
| 1786 | 1786 | return [ |
@@ -1791,9 +1791,9 @@ discard block |
||
| 1791 | 1791 | ]; |
| 1792 | 1792 | } else { |
| 1793 | 1793 | // Something wrong, username from the original Duo request is different than the one received now |
| 1794 | - $session->set('user-duo_status',''); |
|
| 1795 | - $session->set('user-duo_state',''); |
|
| 1796 | - $session->set('user-duo_data',''); |
|
| 1794 | + $session->set('user-duo_status', ''); |
|
| 1795 | + $session->set('user-duo_state', ''); |
|
| 1796 | + $session->set('user-duo_data', ''); |
|
| 1797 | 1797 | |
| 1798 | 1798 | return [ |
| 1799 | 1799 | 'error' => true, |
@@ -1804,9 +1804,9 @@ discard block |
||
| 1804 | 1804 | } |
| 1805 | 1805 | } |
| 1806 | 1806 | // If we are here something wrong |
| 1807 | - $session->set('user-duo_status',''); |
|
| 1808 | - $session->set('user-duo_state',''); |
|
| 1809 | - $session->set('user-duo_data',''); |
|
| 1807 | + $session->set('user-duo_status', ''); |
|
| 1808 | + $session->set('user-duo_state', ''); |
|
| 1809 | + $session->set('user-duo_data', ''); |
|
| 1810 | 1810 | return [ |
| 1811 | 1811 | 'error' => true, |
| 1812 | 1812 | 'message' => $lang->get('duo_login_mismatch'), |
@@ -1918,7 +1918,7 @@ discard block |
||
| 1918 | 1918 | // Check for existing lock |
| 1919 | 1919 | $unlock_at = DB::queryFirstField( |
| 1920 | 1920 | 'SELECT MAX(unlock_at) |
| 1921 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 1921 | + FROM ' . prefixTable('auth_failures').' |
|
| 1922 | 1922 | WHERE unlock_at > %s |
| 1923 | 1923 | AND ((source = %s AND value = %s) OR (source = %s AND value = %s))', |
| 1924 | 1924 | date('Y-m-d H:i:s', time()), |
@@ -1940,8 +1940,8 @@ discard block |
||
| 1940 | 1940 | // Get user info from DB |
| 1941 | 1941 | $data = DB::queryFirstRow( |
| 1942 | 1942 | 'SELECT u.*, a.value AS api_key |
| 1943 | - FROM ' . prefixTable('users') . ' AS u |
|
| 1944 | - LEFT JOIN ' . prefixTable('api') . ' AS a ON (u.id = a.user_id) |
|
| 1943 | + FROM ' . prefixTable('users').' AS u |
|
| 1944 | + LEFT JOIN ' . prefixTable('api').' AS a ON (u.id = a.user_id) |
|
| 1945 | 1945 | WHERE login = %s AND deleted_at IS NULL', |
| 1946 | 1946 | $login |
| 1947 | 1947 | ); |
@@ -2061,7 +2061,7 @@ discard block |
||
| 2061 | 2061 | 'array' => [ |
| 2062 | 2062 | 'value' => 'bruteforce_wait', |
| 2063 | 2063 | 'error' => true, |
| 2064 | - 'message' => $lang->get('bruteforce_wait') . (string) $e->getMessage(), |
|
| 2064 | + 'message' => $lang->get('bruteforce_wait').(string) $e->getMessage(), |
|
| 2065 | 2065 | ] |
| 2066 | 2066 | ]; |
| 2067 | 2067 | } |
@@ -2478,15 +2478,15 @@ discard block |
||
| 2478 | 2478 | |
| 2479 | 2479 | if ($ret['error'] !== false) { |
| 2480 | 2480 | logEvents($SETTINGS, 'failed_auth', 'bad_duo_mfa', '', stripslashes($username), stripslashes($username)); |
| 2481 | - $session->set('user-duo_status',''); |
|
| 2482 | - $session->set('user-duo_state',''); |
|
| 2483 | - $session->set('user-duo_data',''); |
|
| 2481 | + $session->set('user-duo_status', ''); |
|
| 2482 | + $session->set('user-duo_state', ''); |
|
| 2483 | + $session->set('user-duo_data', ''); |
|
| 2484 | 2484 | return [ |
| 2485 | 2485 | 'error' => true, |
| 2486 | 2486 | 'mfaData' => $ret, |
| 2487 | 2487 | 'mfaQRCodeInfos' => false, |
| 2488 | 2488 | ]; |
| 2489 | - } else if ($ret['duo_url_ready'] === true){ |
|
| 2489 | + } else if ($ret['duo_url_ready'] === true) { |
|
| 2490 | 2490 | return [ |
| 2491 | 2491 | 'error' => false, |
| 2492 | 2492 | 'mfaData' => $ret, |
@@ -2550,7 +2550,7 @@ discard block |
||
| 2550 | 2550 | // Count failed attempts from this source |
| 2551 | 2551 | $count = DB::queryFirstField( |
| 2552 | 2552 | 'SELECT COUNT(*) |
| 2553 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 2553 | + FROM ' . prefixTable('auth_failures').' |
|
| 2554 | 2554 | WHERE source = %s AND value = %s', |
| 2555 | 2555 | $source, |
| 2556 | 2556 | $value |
@@ -76,7 +76,7 @@ discard block |
||
| 76 | 76 | ) { |
| 77 | 77 | // Not allowed page |
| 78 | 78 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 79 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 79 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 80 | 80 | exit; |
| 81 | 81 | } |
| 82 | 82 | |
@@ -130,7 +130,7 @@ discard block |
||
| 130 | 130 | } else { |
| 131 | 131 | // check if token is expired |
| 132 | 132 | $data = DB::queryFirstRow( |
| 133 | - 'SELECT end_timestamp FROM ' . prefixTable('tokens') . ' WHERE user_id = %i AND token = %s', |
|
| 133 | + 'SELECT end_timestamp FROM '.prefixTable('tokens').' WHERE user_id = %i AND token = %s', |
|
| 134 | 134 | $session->get('user-id'), |
| 135 | 135 | $post_user_token |
| 136 | 136 | ); |
@@ -154,7 +154,7 @@ discard block |
||
| 154 | 154 | |
| 155 | 155 | // HTTP headers for no cache etc |
| 156 | 156 | header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); |
| 157 | -header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT'); |
|
| 157 | +header('Last-Modified: '.gmdate('D, d M Y H:i:s').' GMT'); |
|
| 158 | 158 | header('Cache-Control: no-store, no-cache, must-revalidate'); |
| 159 | 159 | header('Cache-Control: post-check=0, pre-check=0', false); |
| 160 | 160 | |
@@ -166,7 +166,7 @@ discard block |
||
| 166 | 166 | } |
| 167 | 167 | |
| 168 | 168 | // Set directory used to store file |
| 169 | - $targetDir = realpath($SETTINGS['cpassman_dir'] . '/includes/avatars'); |
|
| 169 | + $targetDir = realpath($SETTINGS['cpassman_dir'].'/includes/avatars'); |
|
| 170 | 170 | } else { |
| 171 | 171 | $targetDir = realpath($SETTINGS['path_to_files_folder']); |
| 172 | 172 | } |
@@ -219,7 +219,7 @@ discard block |
||
| 219 | 219 | $file_name = preg_replace('/[^a-zA-Z0-9-_\.]/', '', strtolower(basename($file->getClientOriginalName()))); |
| 220 | 220 | |
| 221 | 221 | if (strlen($file_name) == 0 || strlen($file_name) > $MAX_FILENAME_LENGTH) { |
| 222 | - error_log('Invalid file name: ' . $file_name . '.'); |
|
| 222 | + error_log('Invalid file name: '.$file_name.'.'); |
|
| 223 | 223 | echo handleUploadError('Invalid file name provided.'); |
| 224 | 224 | return false; |
| 225 | 225 | } |
@@ -233,13 +233,13 @@ discard block |
||
| 233 | 233 | $ext = strtolower($ext); |
| 234 | 234 | } else { |
| 235 | 235 | // Case where the file extension is not a string |
| 236 | - error_log('Invalid file name: ' . $file_name . '.'); |
|
| 236 | + error_log('Invalid file name: '.$file_name.'.'); |
|
| 237 | 237 | echo handleUploadError('Invalid file extension.'); |
| 238 | 238 | return false; |
| 239 | 239 | } |
| 240 | 240 | } else { |
| 241 | 241 | // Case where the file name is not a string |
| 242 | - error_log('Invalid file name: ' . $file_name . '.'); |
|
| 242 | + error_log('Invalid file name: '.$file_name.'.'); |
|
| 243 | 243 | echo handleUploadError('Invalid file.'); |
| 244 | 244 | return false; |
| 245 | 245 | } |
@@ -247,8 +247,8 @@ discard block |
||
| 247 | 247 | // Validate against a list of allowed extensions |
| 248 | 248 | $allowed_extensions = explode( |
| 249 | 249 | ',', |
| 250 | - $SETTINGS['upload_docext'] . ',' . $SETTINGS['upload_imagesext'] . |
|
| 251 | - ',' . $SETTINGS['upload_pkgext'] . ',' . $SETTINGS['upload_otherext'] |
|
| 250 | + $SETTINGS['upload_docext'].','.$SETTINGS['upload_imagesext']. |
|
| 251 | + ','.$SETTINGS['upload_pkgext'].','.$SETTINGS['upload_otherext'] |
|
| 252 | 252 | ); |
| 253 | 253 | if ( |
| 254 | 254 | !in_array($ext, $allowed_extensions) |
@@ -267,25 +267,25 @@ discard block |
||
| 267 | 267 | |
| 268 | 268 | // is destination folder writable |
| 269 | 269 | if (is_writable($SETTINGS['path_to_files_folder']) === false) { |
| 270 | - echo handleUploadError('Not enough permissions on folder ' . $SETTINGS['path_to_files_folder'] . '.'); |
|
| 270 | + echo handleUploadError('Not enough permissions on folder '.$SETTINGS['path_to_files_folder'].'.'); |
|
| 271 | 271 | return false; |
| 272 | 272 | } |
| 273 | 273 | |
| 274 | 274 | // Make sure the fileName is unique but only if chunking is disabled |
| 275 | -if ($chunks < 2 && file_exists($targetDir . DIRECTORY_SEPARATOR . $fileName)) { |
|
| 275 | +if ($chunks < 2 && file_exists($targetDir.DIRECTORY_SEPARATOR.$fileName)) { |
|
| 276 | 276 | // $ext is guaranteed to be a string due to prior checks |
| 277 | 277 | $fileNameA = substr($fileName, 0, strlen(/** @scrutinizer ignore-type */$ext)); |
| 278 | 278 | $fileNameB = substr($fileName, strlen(/** @scrutinizer ignore-type */$ext)); |
| 279 | 279 | |
| 280 | 280 | $count = 1; |
| 281 | - while (file_exists($targetDir . DIRECTORY_SEPARATOR . $fileNameA . '_' . $count . $fileNameB)) { |
|
| 281 | + while (file_exists($targetDir.DIRECTORY_SEPARATOR.$fileNameA.'_'.$count.$fileNameB)) { |
|
| 282 | 282 | ++$count; |
| 283 | 283 | } |
| 284 | 284 | |
| 285 | - $fileName = $fileNameA . '_' . $count . $fileNameB; |
|
| 285 | + $fileName = $fileNameA.'_'.$count.$fileNameB; |
|
| 286 | 286 | } |
| 287 | 287 | |
| 288 | -$filePath = $targetDir . DIRECTORY_SEPARATOR . $fileName; |
|
| 288 | +$filePath = $targetDir.DIRECTORY_SEPARATOR.$fileName; |
|
| 289 | 289 | |
| 290 | 290 | // Create target dir |
| 291 | 291 | if (!file_exists($targetDir)) { |
@@ -299,7 +299,7 @@ discard block |
||
| 299 | 299 | // Remove old temp files |
| 300 | 300 | if ($cleanupTargetDir && is_dir($targetDir) && ($dir = opendir($targetDir))) { |
| 301 | 301 | while (($fileClean = readdir($dir)) !== false) { |
| 302 | - $tmpfilePath = $targetDir . DIRECTORY_SEPARATOR . $fileClean; |
|
| 302 | + $tmpfilePath = $targetDir.DIRECTORY_SEPARATOR.$fileClean; |
|
| 303 | 303 | |
| 304 | 304 | // Remove temp file if it is older than the max age and is not the current file |
| 305 | 305 | if ( |
@@ -313,7 +313,7 @@ discard block |
||
| 313 | 313 | |
| 314 | 314 | closedir($dir); |
| 315 | 315 | } else { |
| 316 | - echo handleUploadError('Not enough permissions on folder ' . $SETTINGS['path_to_files_folder'] . '.'); |
|
| 316 | + echo handleUploadError('Not enough permissions on folder '.$SETTINGS['path_to_files_folder'].'.'); |
|
| 317 | 317 | return false; |
| 318 | 318 | } |
| 319 | 319 | |
@@ -353,7 +353,7 @@ discard block |
||
| 353 | 353 | |
| 354 | 354 | // Safe destination folder |
| 355 | 355 | $uploadDir = realpath($SETTINGS['path_to_upload_folder']); |
| 356 | - $destinationPath = $uploadDir . DIRECTORY_SEPARATOR . $fileName; |
|
| 356 | + $destinationPath = $uploadDir.DIRECTORY_SEPARATOR.$fileName; |
|
| 357 | 357 | |
| 358 | 358 | if (move_uploaded_file($tmpFilePath, $destinationPath)) { |
| 359 | 359 | // Open the moved file in read mode |
@@ -394,7 +394,7 @@ discard block |
||
| 394 | 394 | return false; |
| 395 | 395 | } |
| 396 | 396 | } else { |
| 397 | - echo handleUploadError('Failed to move uploaded file to ' . $SETTINGS['path_to_files_folder'] . '.'); |
|
| 397 | + echo handleUploadError('Failed to move uploaded file to '.$SETTINGS['path_to_files_folder'].'.'); |
|
| 398 | 398 | return false; |
| 399 | 399 | } |
| 400 | 400 | } else { |
@@ -410,14 +410,14 @@ discard block |
||
| 410 | 410 | fwrite($out, $buff); |
| 411 | 411 | } |
| 412 | 412 | } else { |
| 413 | - echo handleUploadError('Failed to open input stream ' . $SETTINGS['path_to_files_folder'] . '.'); |
|
| 413 | + echo handleUploadError('Failed to open input stream '.$SETTINGS['path_to_files_folder'].'.'); |
|
| 414 | 414 | return false; |
| 415 | 415 | } |
| 416 | 416 | |
| 417 | 417 | fclose($in); |
| 418 | 418 | fclose($out); |
| 419 | 419 | } else { |
| 420 | - echo handleUploadError('Failed to open output stream ' . $SETTINGS['path_to_files_folder'] . '.'); |
|
| 420 | + echo handleUploadError('Failed to open output stream '.$SETTINGS['path_to_files_folder'].'.'); |
|
| 421 | 421 | return false; |
| 422 | 422 | } |
| 423 | 423 | } |
@@ -450,7 +450,7 @@ discard block |
||
| 450 | 450 | ) { |
| 451 | 451 | rename( |
| 452 | 452 | $filePath, |
| 453 | - $targetDir . DIRECTORY_SEPARATOR . $newFileName |
|
| 453 | + $targetDir.DIRECTORY_SEPARATOR.$newFileName |
|
| 454 | 454 | ); |
| 455 | 455 | |
| 456 | 456 | // Add in DB |
@@ -479,7 +479,7 @@ discard block |
||
| 479 | 479 | ) { |
| 480 | 480 | rename( |
| 481 | 481 | $filePath, |
| 482 | - $targetDir . DIRECTORY_SEPARATOR . $newFileName |
|
| 482 | + $targetDir.DIRECTORY_SEPARATOR.$newFileName |
|
| 483 | 483 | ); |
| 484 | 484 | |
| 485 | 485 | // Add in DB |
@@ -512,13 +512,13 @@ discard block |
||
| 512 | 512 | // rename the file |
| 513 | 513 | rename( |
| 514 | 514 | $filePath, |
| 515 | - $targetDir . DIRECTORY_SEPARATOR . $newFileName . '.' . $ext |
|
| 515 | + $targetDir.DIRECTORY_SEPARATOR.$newFileName.'.'.$ext |
|
| 516 | 516 | ); |
| 517 | 517 | |
| 518 | 518 | // make thumbnail |
| 519 | 519 | $ret = makeThumbnail( |
| 520 | - $targetDir . DIRECTORY_SEPARATOR . $newFileName . '.' . $ext, |
|
| 521 | - $targetDir . DIRECTORY_SEPARATOR . $newFileName . '_thumb' . '.' . $ext, |
|
| 520 | + $targetDir.DIRECTORY_SEPARATOR.$newFileName.'.'.$ext, |
|
| 521 | + $targetDir.DIRECTORY_SEPARATOR.$newFileName.'_thumb'.'.'.$ext, |
|
| 522 | 522 | 40 |
| 523 | 523 | ); |
| 524 | 524 | |
@@ -530,21 +530,21 @@ discard block |
||
| 530 | 530 | } |
| 531 | 531 | |
| 532 | 532 | // get current avatar and delete it |
| 533 | - $data = DB::queryFirstRow('SELECT avatar, avatar_thumb FROM ' . prefixTable('users') . ' WHERE id=%i', $session->get('user-id')); |
|
| 534 | - fileDelete($targetDir . DIRECTORY_SEPARATOR . $data['avatar'], $SETTINGS); |
|
| 535 | - fileDelete($targetDir . DIRECTORY_SEPARATOR . $data['avatar_thumb'], $SETTINGS); |
|
| 533 | + $data = DB::queryFirstRow('SELECT avatar, avatar_thumb FROM '.prefixTable('users').' WHERE id=%i', $session->get('user-id')); |
|
| 534 | + fileDelete($targetDir.DIRECTORY_SEPARATOR.$data['avatar'], $SETTINGS); |
|
| 535 | + fileDelete($targetDir.DIRECTORY_SEPARATOR.$data['avatar_thumb'], $SETTINGS); |
|
| 536 | 536 | |
| 537 | 537 | // store in DB the new avatar |
| 538 | 538 | DB::query( |
| 539 | - 'UPDATE ' . prefixTable('users') . " |
|
| 540 | - SET avatar='" . $newFileName . '.' . $ext . "', avatar_thumb='" . $newFileName . '_thumb' . '.' . $ext . "' |
|
| 539 | + 'UPDATE '.prefixTable('users')." |
|
| 540 | + SET avatar='" . $newFileName.'.'.$ext."', avatar_thumb='".$newFileName.'_thumb'.'.'.$ext."' |
|
| 541 | 541 | WHERE id=%i", |
| 542 | 542 | $session->get('user-id') |
| 543 | 543 | ); |
| 544 | 544 | |
| 545 | 545 | // store in session |
| 546 | - $session->set('user-avatar', $newFileName . '.' . $ext); |
|
| 547 | - $session->set('user-avatar_thumb', $newFileName . '_thumb' . '.' . $ext); |
|
| 546 | + $session->set('user-avatar', $newFileName.'.'.$ext); |
|
| 547 | + $session->set('user-avatar_thumb', $newFileName.'_thumb'.'.'.$ext); |
|
| 548 | 548 | |
| 549 | 549 | // return info |
| 550 | 550 | echo prepareExchangedData( |
@@ -563,7 +563,7 @@ discard block |
||
| 563 | 563 | ) { |
| 564 | 564 | rename( |
| 565 | 565 | $filePath, |
| 566 | - $targetDir . DIRECTORY_SEPARATOR . $newFileName |
|
| 566 | + $targetDir.DIRECTORY_SEPARATOR.$newFileName |
|
| 567 | 567 | ); |
| 568 | 568 | |
| 569 | 569 | // Add in DB |
@@ -73,7 +73,7 @@ discard block |
||
| 73 | 73 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('profile') === false) { |
| 74 | 74 | // Not allowed page |
| 75 | 75 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 76 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 76 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 77 | 77 | exit; |
| 78 | 78 | } |
| 79 | 79 | ?> |
@@ -97,7 +97,7 @@ discard block |
||
| 97 | 97 | }) |
| 98 | 98 | |
| 99 | 99 | // Select user properties |
| 100 | - $('#profile-user-language option[value=<?php echo $session->get('user-language');?>').attr('selected','selected'); |
|
| 100 | + $('#profile-user-language option[value=<?php echo $session->get('user-language'); ?>').attr('selected','selected'); |
|
| 101 | 101 | |
| 102 | 102 | |
| 103 | 103 | // AVATAR IMPORT |
@@ -295,7 +295,7 @@ discard block |
||
| 295 | 295 | |
| 296 | 296 | // reload page in case of language change |
| 297 | 297 | if ($('#profile-user-language').val() |
| 298 | - && $('#profile-user-language').val().toLowerCase() !== '<?php echo $session->get('user-language');?>') { |
|
| 298 | + && $('#profile-user-language').val().toLowerCase() !== '<?php echo $session->get('user-language'); ?>') { |
|
| 299 | 299 | // prepare reload |
| 300 | 300 | $(this).delay(3000).queue(function() { |
| 301 | 301 | document.location.href = "index.php?page=profile"; |
@@ -306,7 +306,7 @@ discard block |
||
| 306 | 306 | // Inform user |
| 307 | 307 | toastr.remove(); |
| 308 | 308 | toastr.info( |
| 309 | - '<?php echo $lang->get('alert_page_will_reload') . ' ... ' . $lang->get('please_wait'); ?>', |
|
| 309 | + '<?php echo $lang->get('alert_page_will_reload').' ... '.$lang->get('please_wait'); ?>', |
|
| 310 | 310 | '', { |
| 311 | 311 | timeOut: 3000, |
| 312 | 312 | progressBar: true |
@@ -410,27 +410,27 @@ discard block |
||
| 410 | 410 | "defaultText": "<?php echo $lang->get('index_pw_level_txt'); ?>", |
| 411 | 411 | "ratings": [ |
| 412 | 412 | { |
| 413 | - "minScore": <?php echo TP_PW_STRENGTH_1;?>, |
|
| 413 | + "minScore": <?php echo TP_PW_STRENGTH_1; ?>, |
|
| 414 | 414 | "className": "meterWarn", |
| 415 | 415 | "text": "<?php echo $lang->get('complex_level1'); ?>" |
| 416 | 416 | }, |
| 417 | 417 | { |
| 418 | - "minScore": <?php echo TP_PW_STRENGTH_2;?>, |
|
| 418 | + "minScore": <?php echo TP_PW_STRENGTH_2; ?>, |
|
| 419 | 419 | "className": "meterWarn", |
| 420 | 420 | "text": "<?php echo $lang->get('complex_level2'); ?>" |
| 421 | 421 | }, |
| 422 | 422 | { |
| 423 | - "minScore": <?php echo TP_PW_STRENGTH_3;?>, |
|
| 423 | + "minScore": <?php echo TP_PW_STRENGTH_3; ?>, |
|
| 424 | 424 | "className": "meterGood", |
| 425 | 425 | "text": "<?php echo $lang->get('complex_level3'); ?>" |
| 426 | 426 | }, |
| 427 | 427 | { |
| 428 | - "minScore": <?php echo TP_PW_STRENGTH_4;?>, |
|
| 428 | + "minScore": <?php echo TP_PW_STRENGTH_4; ?>, |
|
| 429 | 429 | "className": "meterGood", |
| 430 | 430 | "text": "<?php echo $lang->get('complex_level4'); ?>" |
| 431 | 431 | }, |
| 432 | 432 | { |
| 433 | - "minScore": <?php echo TP_PW_STRENGTH_5;?>, |
|
| 433 | + "minScore": <?php echo TP_PW_STRENGTH_5; ?>, |
|
| 434 | 434 | "className": "meterExcel", |
| 435 | 435 | "text": "<?php echo $lang->get('complex_level5'); ?>" |
| 436 | 436 | } |
@@ -523,27 +523,27 @@ discard block |
||
| 523 | 523 | "defaultText": "<?php echo $lang->get('index_pw_level_txt'); ?>", |
| 524 | 524 | "ratings": [ |
| 525 | 525 | { |
| 526 | - "minScore": <?php echo TP_PW_STRENGTH_1;?>, |
|
| 526 | + "minScore": <?php echo TP_PW_STRENGTH_1; ?>, |
|
| 527 | 527 | "className": "meterWarn", |
| 528 | 528 | "text": "<?php echo $lang->get('complex_level1'); ?>" |
| 529 | 529 | }, |
| 530 | 530 | { |
| 531 | - "minScore": <?php echo TP_PW_STRENGTH_2;?>, |
|
| 531 | + "minScore": <?php echo TP_PW_STRENGTH_2; ?>, |
|
| 532 | 532 | "className": "meterWarn", |
| 533 | 533 | "text": "<?php echo $lang->get('complex_level2'); ?>" |
| 534 | 534 | }, |
| 535 | 535 | { |
| 536 | - "minScore": <?php echo TP_PW_STRENGTH_3;?>, |
|
| 536 | + "minScore": <?php echo TP_PW_STRENGTH_3; ?>, |
|
| 537 | 537 | "className": "meterGood", |
| 538 | 538 | "text": "<?php echo $lang->get('complex_level3'); ?>" |
| 539 | 539 | }, |
| 540 | 540 | { |
| 541 | - "minScore": <?php echo TP_PW_STRENGTH_4;?>, |
|
| 541 | + "minScore": <?php echo TP_PW_STRENGTH_4; ?>, |
|
| 542 | 542 | "className": "meterGood", |
| 543 | 543 | "text": "<?php echo $lang->get('complex_level4'); ?>" |
| 544 | 544 | }, |
| 545 | 545 | { |
| 546 | - "minScore": <?php echo TP_PW_STRENGTH_5;?>, |
|
| 546 | + "minScore": <?php echo TP_PW_STRENGTH_5; ?>, |
|
| 547 | 547 | "className": "meterExcel", |
| 548 | 548 | "text": "<?php echo $lang->get('complex_level5'); ?>" |
| 549 | 549 | } |
@@ -559,7 +559,7 @@ discard block |
||
| 559 | 559 | } |
| 560 | 560 | }); |
| 561 | 561 | |
| 562 | - $('#profile-keys_download-date').text('<?php echo null === $session->get('user-keys_recovery_time') ? $lang->get('none') : date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $session->get('user-keys_recovery_time')); ?>'); |
|
| 562 | + $('#profile-keys_download-date').text('<?php echo null === $session->get('user-keys_recovery_time') ? $lang->get('none') : date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $session->get('user-keys_recovery_time')); ?>'); |
|
| 563 | 563 | |
| 564 | 564 | $("#open-dialog-keys-download").on('click', function(event) { |
| 565 | 565 | event.preventDefault(); |
@@ -69,7 +69,7 @@ discard block |
||
| 69 | 69 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('items') === false) { |
| 70 | 70 | // Not allowed page |
| 71 | 71 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 72 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 72 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 73 | 73 | exit; |
| 74 | 74 | } |
| 75 | 75 | // Define Timezone |
@@ -90,7 +90,7 @@ discard block |
||
| 90 | 90 | |
| 91 | 91 | // Get list of users |
| 92 | 92 | $usersList = []; |
| 93 | -$rows = DB::query('SELECT id,login,email FROM ' . prefixTable('users') . ' ORDER BY login ASC'); |
|
| 93 | +$rows = DB::query('SELECT id,login,email FROM '.prefixTable('users').' ORDER BY login ASC'); |
|
| 94 | 94 | foreach ($rows as $record) { |
| 95 | 95 | $usersList[$record['login']] = [ |
| 96 | 96 | 'id' => $record['id'], |
@@ -101,16 +101,16 @@ discard block |
||
| 101 | 101 | // Get list of roles |
| 102 | 102 | $arrRoles = []; |
| 103 | 103 | $listRoles = ''; |
| 104 | -$rows = DB::query('SELECT id,title FROM ' . prefixTable('roles_title') . ' ORDER BY title ASC'); |
|
| 104 | +$rows = DB::query('SELECT id,title FROM '.prefixTable('roles_title').' ORDER BY title ASC'); |
|
| 105 | 105 | foreach ($rows as $reccord) { |
| 106 | 106 | $arrRoles[$reccord['title']] = [ |
| 107 | 107 | 'id' => $reccord['id'], |
| 108 | 108 | 'title' => $reccord['title'], |
| 109 | 109 | ]; |
| 110 | 110 | if (empty($listRoles)) { |
| 111 | - $listRoles = $reccord['id'] . '#' . $reccord['title']; |
|
| 111 | + $listRoles = $reccord['id'].'#'.$reccord['title']; |
|
| 112 | 112 | } else { |
| 113 | - $listRoles .= ';' . $reccord['id'] . '#' . $reccord['title']; |
|
| 113 | + $listRoles .= ';'.$reccord['id'].'#'.$reccord['title']; |
|
| 114 | 114 | } |
| 115 | 115 | } |
| 116 | 116 | |
@@ -185,7 +185,7 @@ discard block |
||
| 185 | 185 | <li class="nav-item"><a class="nav-link" href="#tab_3" data-toggle="tab"><i class="fa-solid fa-archive mr-2"></i><?php echo $lang->get('attachments'); ?></a></li> |
| 186 | 186 | <?php |
| 187 | 187 | echo isset($SETTINGS['item_extra_fields']) === true && (int) $SETTINGS['item_extra_fields'] === 1 ? ' |
| 188 | - <li class="nav-item"><a class="nav-link" href="#tab_4" data-toggle="tab"><i class="fa-solid fa-cubes mr-2"></i>' . $lang->get('fields') . '</a></li>' : ''; |
|
| 188 | + <li class="nav-item"><a class="nav-link" href="#tab_4" data-toggle="tab"><i class="fa-solid fa-cubes mr-2"></i>' . $lang->get('fields').'</a></li>' : ''; |
|
| 189 | 189 | ?> |
| 190 | 190 | </ul> |
| 191 | 191 | </div><!-- /.card-header --> |
@@ -254,7 +254,7 @@ discard block |
||
| 254 | 254 | <?php |
| 255 | 255 | for ($i = 4; $i <= $SETTINGS['pwd_maximum_length']; ++$i) { |
| 256 | 256 | echo ' |
| 257 | - <option>' . $i . '</option>'; |
|
| 257 | + <option>' . $i.'</option>'; |
|
| 258 | 258 | } |
| 259 | 259 | ?> |
| 260 | 260 | </select> |
@@ -284,7 +284,7 @@ discard block |
||
| 284 | 284 | <span class="ml-2 col-md-1 clear-me-html" id="form-item-icon-show"></span> |
| 285 | 285 | </div> |
| 286 | 286 | <small class='form-text text-muted'> |
| 287 | - <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL;?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 287 | + <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL; ?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 288 | 288 | </small> |
| 289 | 289 | </div> |
| 290 | 290 | |
@@ -472,39 +472,39 @@ discard block |
||
| 472 | 472 | <div class="tab-pane" id="tab_4"> |
| 473 | 473 | <div id="form-item-field" class="hidden"> |
| 474 | 474 | <?php |
| 475 | - $session_item_fields = $session->get('system-item_fields');//print_r($session_item_fields); |
|
| 475 | + $session_item_fields = $session->get('system-item_fields'); //print_r($session_item_fields); |
|
| 476 | 476 | if (isset($session_item_fields) === true) { |
| 477 | 477 | foreach ($session_item_fields as $category) { |
| 478 | 478 | //print_r($category); |
| 479 | 479 | echo ' |
| 480 | - <div class="callout callout-info form-item-category hidden" id="form-item-category-' . $category['id'] . '"> |
|
| 481 | - <h5>' . $category['title'] . '</h5> |
|
| 480 | + <div class="callout callout-info form-item-category hidden" id="form-item-category-' . $category['id'].'"> |
|
| 481 | + <h5>' . $category['title'].'</h5> |
|
| 482 | 482 | <p>'; |
| 483 | 483 | foreach ($category['fields'] as $field) { |
| 484 | 484 | if ($field['type'] === 'textarea') { |
| 485 | 485 | echo ' |
| 486 | - <div class="form-group mb-3 form-item-field" id="form-item-field-' . $field['id'] . '" data-field-id="' . $field['id'] . '"> |
|
| 486 | + <div class="form-group mb-3 form-item-field" id="form-item-field-' . $field['id'].'" data-field-id="'.$field['id'].'"> |
|
| 487 | 487 | <label>' . $field['title'], |
| 488 | 488 | $field['is_mandatory'] === '1' ? |
| 489 | - '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="' . $lang->get('is_mandatory') . '"></span>' : '', |
|
| 489 | + '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="'.$lang->get('is_mandatory').'"></span>' : '', |
|
| 490 | 490 | '</label> |
| 491 | - <textarea class="form-control form-item-control form-item-field-custom" rows="2" data-field-name="' . $field['id'] . '" data-field-mandatory="' . $field['is_mandatory'] . '" data-field-regex="' . $field['regex'] . '" data-change-ongoing="0"></textarea> |
|
| 491 | + <textarea class="form-control form-item-control form-item-field-custom" rows="2" data-field-name="' . $field['id'].'" data-field-mandatory="'.$field['is_mandatory'].'" data-field-regex="'.$field['regex'].'" data-change-ongoing="0"></textarea> |
|
| 492 | 492 | </div>'; |
| 493 | 493 | } else { |
| 494 | 494 | echo ' |
| 495 | - <div class="input-group mb-3 form-item-field" id="form-item-field-' . $field['id'] . '" data-field-id="' . $field['id'] . '"> |
|
| 495 | + <div class="input-group mb-3 form-item-field" id="form-item-field-' . $field['id'].'" data-field-id="'.$field['id'].'"> |
|
| 496 | 496 | <div class="input-group-prepend"> |
| 497 | 497 | <span class="input-group-text">' . $field['title'], |
| 498 | 498 | $field['is_mandatory'] === '1' ? |
| 499 | - '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="' . $lang->get('is_mandatory') . '"></span>' : '', |
|
| 499 | + '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="'.$lang->get('is_mandatory').'"></span>' : '', |
|
| 500 | 500 | '</span> |
| 501 | 501 | </div> |
| 502 | - <input type="' . $field['type'] . '" class="form-control form-item-control form-item-field-custom" data-field-name="' . $field['id'] . '" data-field-mandatory="' . $field['is_mandatory'] . '" data-field-regex="' . $field['regex'] . '" data-change-ongoing="0"> |
|
| 502 | + <input type="' . $field['type'].'" class="form-control form-item-control form-item-field-custom" data-field-name="'.$field['id'].'" data-field-mandatory="'.$field['is_mandatory'].'" data-field-regex="'.$field['regex'].'" data-change-ongoing="0"> |
|
| 503 | 503 | </div>'; |
| 504 | 504 | } |
| 505 | 505 | if (!empty($field['regex'])) { |
| 506 | 506 | echo ' |
| 507 | - <div>Regex: '. $field['regex'] .'</div> |
|
| 507 | + <div>Regex: '. $field['regex'].'</div> |
|
| 508 | 508 | '; |
| 509 | 509 | } |
| 510 | 510 | } |
@@ -515,8 +515,8 @@ discard block |
||
| 515 | 515 | ) { |
| 516 | 516 | echo ' |
| 517 | 517 | <div class="form-check icheck-blue"> |
| 518 | - <input type="checkbox" class="form-check-input form-check-input-template form-item-control flat-blue" data-category-id="' . $category['id'] . '" data-change-ongoing="0" data-field-name="template" id="template_' . $category['id'] . '"> |
|
| 519 | - <label class="form-check-label ml-3" for="template_' . $category['id'] . '">' . $lang->get('main_template') . '</label> |
|
| 518 | + <input type="checkbox" class="form-check-input form-check-input-template form-item-control flat-blue" data-category-id="' . $category['id'].'" data-change-ongoing="0" data-field-name="template" id="template_'.$category['id'].'"> |
|
| 519 | + <label class="form-check-label ml-3" for="template_' . $category['id'].'">'.$lang->get('main_template').'</label> |
|
| 520 | 520 | </div>'; |
| 521 | 521 | } |
| 522 | 522 | echo ' |
@@ -526,8 +526,8 @@ discard block |
||
| 526 | 526 | } else { |
| 527 | 527 | echo |
| 528 | 528 | '<div class="alert alert-info"> |
| 529 | - <h5><i class="icon fa fa-info mr-3"></i>' . $lang->get('information') . '</h5> |
|
| 530 | - ' . $lang->get('no_fields') . ' |
|
| 529 | + <h5><i class="icon fa fa-info mr-3"></i>' . $lang->get('information').'</h5> |
|
| 530 | + ' . $lang->get('no_fields').' |
|
| 531 | 531 | </div>'; |
| 532 | 532 | } ?> |
| 533 | 533 | </div> |
@@ -668,7 +668,7 @@ discard block |
||
| 668 | 668 | <p><?php |
| 669 | 669 | echo str_replace( |
| 670 | 670 | ['##otv_expiration_period##', '. '], |
| 671 | - ['<span class="text-bold text-primary">' . $SETTINGS['otv_expiration_period'] . '</span>', '<br>'], |
|
| 671 | + ['<span class="text-bold text-primary">'.$SETTINGS['otv_expiration_period'].'</span>', '<br>'], |
|
| 672 | 672 | $lang->get('otv_message') |
| 673 | 673 | ); |
| 674 | 674 | ?></p> |
@@ -686,9 +686,9 @@ discard block |
||
| 686 | 686 | |
| 687 | 687 | <div class="row"> |
| 688 | 688 | <div class="form-group col-4"> |
| 689 | - <label for="form-item-otv-days"><i class="fa-regular fa-calendar-days mr-2"></i><?php echo $lang->get('number_of_days'); ?> (<?php echo $lang->get('maximum').': '.$SETTINGS['otv_expiration_period'];?>)</label> |
|
| 689 | + <label for="form-item-otv-days"><i class="fa-regular fa-calendar-days mr-2"></i><?php echo $lang->get('number_of_days'); ?> (<?php echo $lang->get('maximum').': '.$SETTINGS['otv_expiration_period']; ?>)</label> |
|
| 690 | 690 | <div class="input-group mb-3"> |
| 691 | - <input type="number" class="form-control clear-me-val" id="form-item-otv-days" min="0" max="<?php echo $SETTINGS['otv_expiration_period'];?>" value="<?php echo $SETTINGS['otv_expiration_period'];?>"> |
|
| 691 | + <input type="number" class="form-control clear-me-val" id="form-item-otv-days" min="0" max="<?php echo $SETTINGS['otv_expiration_period']; ?>" value="<?php echo $SETTINGS['otv_expiration_period']; ?>"> |
|
| 692 | 692 | </div> |
| 693 | 693 | </div> |
| 694 | 694 | |
@@ -776,7 +776,7 @@ discard block |
||
| 776 | 776 | <select class="form-control form-folder-control select2" style="width:100%;" id="form-folder-add-complexicity" required> |
| 777 | 777 | <?php |
| 778 | 778 | foreach (TP_PW_COMPLEXITY as $key => $value) { |
| 779 | - echo '<option value="' . $key . '">' . $value[1] . '</option>'; |
|
| 779 | + echo '<option value="'.$key.'">'.$value[1].'</option>'; |
|
| 780 | 780 | } |
| 781 | 781 | ?> |
| 782 | 782 | </select> |
@@ -794,14 +794,14 @@ discard block |
||
| 794 | 794 | <label><?php echo $lang->get('icon'); ?></label> |
| 795 | 795 | <input type="text" class="form-control form-folder-control" id="form-folder-add-icon"> |
| 796 | 796 | <small class='form-text text-muted'> |
| 797 | - <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL;?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 797 | + <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL; ?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 798 | 798 | </small> |
| 799 | 799 | </div> |
| 800 | 800 | <div class="form-group"> |
| 801 | 801 | <label><?php echo $lang->get('icon_on_selection'); ?></label> |
| 802 | 802 | <input type="text" class="form-control form-folder-control" id="form-folder-add-icon-selected"> |
| 803 | 803 | <small class='form-text text-muted'> |
| 804 | - <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL;?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 804 | + <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL; ?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 805 | 805 | </small> |
| 806 | 806 | </div> |
| 807 | 807 | </div> |
@@ -1212,18 +1212,18 @@ discard block |
||
| 1212 | 1212 | <?php |
| 1213 | 1213 | foreach ($session_item_fields as $elem) { |
| 1214 | 1214 | echo ' |
| 1215 | - <div class="callout callout-info card-item-category hidden" id="card-item-category-' . $elem['id'] . '"> |
|
| 1216 | - <h5>' . $elem['title'] . '</h5> |
|
| 1215 | + <div class="callout callout-info card-item-category hidden" id="card-item-category-' . $elem['id'].'"> |
|
| 1216 | + <h5>' . $elem['title'].'</h5> |
|
| 1217 | 1217 | <p> |
| 1218 | 1218 | <ul class="list-group list-group-unbordered mb-3">'; |
| 1219 | 1219 | foreach ($elem['fields'] as $field) { |
| 1220 | 1220 | echo ' |
| 1221 | - <li class="list-group-item card-item-field hidden" id="card-item-field-' . $field['id'] . '"> |
|
| 1222 | - <span id="card-item-field-title-' . $field['id'] . '"><b>' . $field['title'] . '</b></span> |
|
| 1223 | - <button type="button" class="float-right btn btn-secondary btn-sm ml-1 btn-copy-clipboard-clear" data-clipboard-target="card-item-field-value-' . $field['id'] . '"> |
|
| 1221 | + <li class="list-group-item card-item-field hidden" id="card-item-field-' . $field['id'].'"> |
|
| 1222 | + <span id="card-item-field-title-' . $field['id'].'"><b>'.$field['title'].'</b></span> |
|
| 1223 | + <button type="button" class="float-right btn btn-secondary btn-sm ml-1 btn-copy-clipboard-clear" data-clipboard-target="card-item-field-value-' . $field['id'].'"> |
|
| 1224 | 1224 | <i class="fa-solid fa-copy"></i> |
| 1225 | 1225 | </button> |
| 1226 | - <span class="card-item-field-value float-right ml-1" id="card-item-field-value-' . $field['id'] . '"></span> |
|
| 1226 | + <span class="card-item-field-value float-right ml-1" id="card-item-field-value-' . $field['id'].'"></span> |
|
| 1227 | 1227 | </li>'; |
| 1228 | 1228 | } |
| 1229 | 1229 | echo ' |
@@ -91,215 +91,215 @@ |
||
| 91 | 91 | switch ($post_type) { |
| 92 | 92 | //########################################################## |
| 93 | 93 | //CASE for creating a DB backup |
| 94 | -case 'perform_fix_pf_items-step1': |
|
| 95 | - // Check KEY |
|
| 96 | - if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 97 | - echo prepareExchangedData( |
|
| 98 | - array( |
|
| 99 | - 'error' => true, |
|
| 100 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 101 | - ), |
|
| 102 | - 'encode' |
|
| 103 | - ); |
|
| 104 | - break; |
|
| 105 | - } |
|
| 106 | - // Is admin? |
|
| 107 | - if ((int) $session->get('user-admin') !== 1) { |
|
| 108 | - echo prepareExchangedData( |
|
| 109 | - array( |
|
| 110 | - 'error' => true, |
|
| 111 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 112 | - ), |
|
| 113 | - 'encode' |
|
| 114 | - ); |
|
| 115 | - break; |
|
| 116 | - } |
|
| 94 | + case 'perform_fix_pf_items-step1': |
|
| 95 | + // Check KEY |
|
| 96 | + if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 97 | + echo prepareExchangedData( |
|
| 98 | + array( |
|
| 99 | + 'error' => true, |
|
| 100 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 101 | + ), |
|
| 102 | + 'encode' |
|
| 103 | + ); |
|
| 104 | + break; |
|
| 105 | + } |
|
| 106 | + // Is admin? |
|
| 107 | + if ((int) $session->get('user-admin') !== 1) { |
|
| 108 | + echo prepareExchangedData( |
|
| 109 | + array( |
|
| 110 | + 'error' => true, |
|
| 111 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 112 | + ), |
|
| 113 | + 'encode' |
|
| 114 | + ); |
|
| 115 | + break; |
|
| 116 | + } |
|
| 117 | 117 | |
| 118 | - // decrypt and retrieve data in JSON format |
|
| 119 | - $dataReceived = prepareExchangedData( |
|
| 120 | - $post_data, |
|
| 121 | - 'decode' |
|
| 122 | - ); |
|
| 118 | + // decrypt and retrieve data in JSON format |
|
| 119 | + $dataReceived = prepareExchangedData( |
|
| 120 | + $post_data, |
|
| 121 | + 'decode' |
|
| 122 | + ); |
|
| 123 | 123 | |
| 124 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 124 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 125 | 125 | |
| 126 | - // Get user info |
|
| 127 | - $userInfo = DB::queryFirstRow( |
|
| 128 | - 'SELECT private_key, public_key, psk, encrypted_psk |
|
| 126 | + // Get user info |
|
| 127 | + $userInfo = DB::queryFirstRow( |
|
| 128 | + 'SELECT private_key, public_key, psk, encrypted_psk |
|
| 129 | 129 | FROM teampass_users |
| 130 | 130 | WHERE id = %i', |
| 131 | - $userId |
|
| 132 | - ); |
|
| 131 | + $userId |
|
| 132 | + ); |
|
| 133 | 133 | |
| 134 | - // Get user's private folders |
|
| 135 | - $userPFRoot = DB::queryFirstRow( |
|
| 136 | - 'SELECT id |
|
| 134 | + // Get user's private folders |
|
| 135 | + $userPFRoot = DB::queryFirstRow( |
|
| 136 | + 'SELECT id |
|
| 137 | 137 | FROM teampass_nested_tree |
| 138 | 138 | WHERE title = %i', |
| 139 | - $userId |
|
| 140 | - ); |
|
| 141 | - if (DB::count() === 0) { |
|
| 142 | - echo prepareExchangedData( |
|
| 143 | - array( |
|
| 144 | - 'error' => true, |
|
| 145 | - 'message' => 'User has no personal folders', |
|
| 146 | - ), |
|
| 147 | - 'encode' |
|
| 148 | - ); |
|
| 149 | - break; |
|
| 150 | - } |
|
| 151 | - $personalFolders = []; |
|
| 152 | - $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title'); |
|
| 153 | - $tree->rebuild(); |
|
| 154 | - $folders = $tree->getDescendants($userPFRoot['id'], true); |
|
| 155 | - foreach ($folders as $folder) { |
|
| 156 | - array_push($personalFolders, $folder->id); |
|
| 157 | - } |
|
| 158 | - |
|
| 159 | - //Show done |
|
| 160 | - echo prepareExchangedData( |
|
| 161 | - array( |
|
| 162 | - 'error' => false, |
|
| 163 | - 'message' => 'Personal Folders found: ', |
|
| 164 | - 'personalFolders' => json_encode($personalFolders), |
|
| 165 | - ), |
|
| 166 | - 'encode' |
|
| 167 | - ); |
|
| 168 | - break; |
|
| 169 | - |
|
| 170 | -case 'perform_fix_pf_items-step2': |
|
| 171 | - // Check KEY |
|
| 172 | - if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 173 | - echo prepareExchangedData( |
|
| 174 | - array( |
|
| 175 | - 'error' => true, |
|
| 176 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 177 | - ), |
|
| 178 | - 'encode' |
|
| 139 | + $userId |
|
| 179 | 140 | ); |
| 180 | - break; |
|
| 181 | - } |
|
| 182 | - // Is admin? |
|
| 183 | - if ((int) $session->get('user-admin') !== 1) { |
|
| 141 | + if (DB::count() === 0) { |
|
| 142 | + echo prepareExchangedData( |
|
| 143 | + array( |
|
| 144 | + 'error' => true, |
|
| 145 | + 'message' => 'User has no personal folders', |
|
| 146 | + ), |
|
| 147 | + 'encode' |
|
| 148 | + ); |
|
| 149 | + break; |
|
| 150 | + } |
|
| 151 | + $personalFolders = []; |
|
| 152 | + $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title'); |
|
| 153 | + $tree->rebuild(); |
|
| 154 | + $folders = $tree->getDescendants($userPFRoot['id'], true); |
|
| 155 | + foreach ($folders as $folder) { |
|
| 156 | + array_push($personalFolders, $folder->id); |
|
| 157 | + } |
|
| 158 | + |
|
| 159 | + //Show done |
|
| 184 | 160 | echo prepareExchangedData( |
| 185 | 161 | array( |
| 186 | - 'error' => true, |
|
| 187 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 162 | + 'error' => false, |
|
| 163 | + 'message' => 'Personal Folders found: ', |
|
| 164 | + 'personalFolders' => json_encode($personalFolders), |
|
| 188 | 165 | ), |
| 189 | 166 | 'encode' |
| 190 | 167 | ); |
| 191 | 168 | break; |
| 192 | - } |
|
| 193 | 169 | |
| 194 | - // decrypt and retrieve data in JSON format |
|
| 195 | - $dataReceived = prepareExchangedData( |
|
| 196 | - $post_data, |
|
| 197 | - 'decode' |
|
| 198 | - ); |
|
| 170 | + case 'perform_fix_pf_items-step2': |
|
| 171 | + // Check KEY |
|
| 172 | + if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 173 | + echo prepareExchangedData( |
|
| 174 | + array( |
|
| 175 | + 'error' => true, |
|
| 176 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 177 | + ), |
|
| 178 | + 'encode' |
|
| 179 | + ); |
|
| 180 | + break; |
|
| 181 | + } |
|
| 182 | + // Is admin? |
|
| 183 | + if ((int) $session->get('user-admin') !== 1) { |
|
| 184 | + echo prepareExchangedData( |
|
| 185 | + array( |
|
| 186 | + 'error' => true, |
|
| 187 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 188 | + ), |
|
| 189 | + 'encode' |
|
| 190 | + ); |
|
| 191 | + break; |
|
| 192 | + } |
|
| 199 | 193 | |
| 200 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 201 | - $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 194 | + // decrypt and retrieve data in JSON format |
|
| 195 | + $dataReceived = prepareExchangedData( |
|
| 196 | + $post_data, |
|
| 197 | + 'decode' |
|
| 198 | + ); |
|
| 199 | + |
|
| 200 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 201 | + $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 202 | 202 | |
| 203 | - // Delete all private items with sharekeys |
|
| 204 | - $pfiSharekeys = DB::queryFirstColumn( |
|
| 205 | - 'select s.increment_id |
|
| 203 | + // Delete all private items with sharekeys |
|
| 204 | + $pfiSharekeys = DB::queryFirstColumn( |
|
| 205 | + 'select s.increment_id |
|
| 206 | 206 | from teampass_sharekeys_items as s |
| 207 | 207 | INNER JOIN teampass_items AS i ON (i.id = s.object_id) |
| 208 | 208 | WHERE s.user_id = %i AND i.perso = 1 AND i.id_tree IN %ls', |
| 209 | - $userId, |
|
| 210 | - $personalFolders |
|
| 211 | - ); |
|
| 212 | - $pfiSharekeysCount = DB::count(); |
|
| 213 | - if ($pfiSharekeysCount > 0) { |
|
| 214 | - DB::delete( |
|
| 215 | - "teampass_sharekeys_items", |
|
| 216 | - "increment_id IN %ls", |
|
| 217 | - $pfiSharekeys |
|
| 209 | + $userId, |
|
| 210 | + $personalFolders |
|
| 218 | 211 | ); |
| 219 | - } |
|
| 212 | + $pfiSharekeysCount = DB::count(); |
|
| 213 | + if ($pfiSharekeysCount > 0) { |
|
| 214 | + DB::delete( |
|
| 215 | + "teampass_sharekeys_items", |
|
| 216 | + "increment_id IN %ls", |
|
| 217 | + $pfiSharekeys |
|
| 218 | + ); |
|
| 219 | + } |
|
| 220 | 220 | |
| 221 | 221 | |
| 222 | - //Show done |
|
| 223 | - echo prepareExchangedData( |
|
| 224 | - array( |
|
| 225 | - 'error' => false, |
|
| 226 | - 'message' => '<br>Number of Sharekeys for private items DELETED: ', |
|
| 227 | - 'nbDeleted' => $pfiSharekeysCount, |
|
| 228 | - 'personalFolders' => json_encode($personalFolders), |
|
| 229 | - ), |
|
| 230 | - 'encode' |
|
| 231 | - ); |
|
| 232 | - break; |
|
| 233 | - |
|
| 234 | -case 'perform_fix_pf_items-step3': |
|
| 235 | - // Check KEY |
|
| 236 | - if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 237 | - echo prepareExchangedData( |
|
| 238 | - array( |
|
| 239 | - 'error' => true, |
|
| 240 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 241 | - ), |
|
| 242 | - 'encode' |
|
| 243 | - ); |
|
| 244 | - break; |
|
| 245 | - } |
|
| 246 | - // Is admin? |
|
| 247 | - if ((int) $session->get('user-admin') !== 1) { |
|
| 222 | + //Show done |
|
| 248 | 223 | echo prepareExchangedData( |
| 249 | 224 | array( |
| 250 | - 'error' => true, |
|
| 251 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 225 | + 'error' => false, |
|
| 226 | + 'message' => '<br>Number of Sharekeys for private items DELETED: ', |
|
| 227 | + 'nbDeleted' => $pfiSharekeysCount, |
|
| 228 | + 'personalFolders' => json_encode($personalFolders), |
|
| 252 | 229 | ), |
| 253 | 230 | 'encode' |
| 254 | 231 | ); |
| 255 | 232 | break; |
| 256 | - } |
|
| 257 | 233 | |
| 258 | - // decrypt and retrieve data in JSON format |
|
| 259 | - $dataReceived = prepareExchangedData( |
|
| 260 | - $post_data, |
|
| 261 | - 'decode' |
|
| 262 | - ); |
|
| 234 | + case 'perform_fix_pf_items-step3': |
|
| 235 | + // Check KEY |
|
| 236 | + if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 237 | + echo prepareExchangedData( |
|
| 238 | + array( |
|
| 239 | + 'error' => true, |
|
| 240 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 241 | + ), |
|
| 242 | + 'encode' |
|
| 243 | + ); |
|
| 244 | + break; |
|
| 245 | + } |
|
| 246 | + // Is admin? |
|
| 247 | + if ((int) $session->get('user-admin') !== 1) { |
|
| 248 | + echo prepareExchangedData( |
|
| 249 | + array( |
|
| 250 | + 'error' => true, |
|
| 251 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 252 | + ), |
|
| 253 | + 'encode' |
|
| 254 | + ); |
|
| 255 | + break; |
|
| 256 | + } |
|
| 257 | + |
|
| 258 | + // decrypt and retrieve data in JSON format |
|
| 259 | + $dataReceived = prepareExchangedData( |
|
| 260 | + $post_data, |
|
| 261 | + 'decode' |
|
| 262 | + ); |
|
| 263 | 263 | |
| 264 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 265 | - $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 264 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 265 | + $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 266 | 266 | |
| 267 | - // Update from items_old to items all the private itemsitems that have been converted to teampass_aes |
|
| 268 | - // Get all key back |
|
| 269 | - $items = DB::query( |
|
| 270 | - "SELECT id |
|
| 267 | + // Update from items_old to items all the private itemsitems that have been converted to teampass_aes |
|
| 268 | + // Get all key back |
|
| 269 | + $items = DB::query( |
|
| 270 | + "SELECT id |
|
| 271 | 271 | FROM teampass_items |
| 272 | 272 | WHERE id_tree IN %ls AND encryption_type = %s", |
| 273 | - $personalFolders, |
|
| 274 | - "teampass_aes" |
|
| 275 | - ); |
|
| 276 | - //DB::debugMode(false); |
|
| 277 | - $nbItems = DB::count(); |
|
| 278 | - foreach ($items as $item) { |
|
| 279 | - $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']); |
|
| 280 | - DB::update( |
|
| 281 | - "teampass_items", |
|
| 282 | - ['pw' => $defusePwd, "encryption_type" => "defuse"], |
|
| 283 | - "id = %i", |
|
| 284 | - $item['id'] |
|
| 273 | + $personalFolders, |
|
| 274 | + "teampass_aes" |
|
| 285 | 275 | ); |
| 286 | - } |
|
| 276 | + //DB::debugMode(false); |
|
| 277 | + $nbItems = DB::count(); |
|
| 278 | + foreach ($items as $item) { |
|
| 279 | + $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']); |
|
| 280 | + DB::update( |
|
| 281 | + "teampass_items", |
|
| 282 | + ['pw' => $defusePwd, "encryption_type" => "defuse"], |
|
| 283 | + "id = %i", |
|
| 284 | + $item['id'] |
|
| 285 | + ); |
|
| 286 | + } |
|
| 287 | 287 | |
| 288 | 288 | |
| 289 | - //Show done |
|
| 290 | - echo prepareExchangedData( |
|
| 291 | - array( |
|
| 292 | - 'error' => false, |
|
| 293 | - 'message' => '<br>Number of items reseted to Defuse: ', |
|
| 294 | - 'nbItems' => $nbItems, |
|
| 295 | - 'personalFolders' => json_encode($personalFolders), |
|
| 296 | - ), |
|
| 297 | - 'encode' |
|
| 298 | - ); |
|
| 299 | - break; |
|
| 300 | - |
|
| 301 | - /* TOOL #2 - Fixing items master keys */ |
|
| 302 | - /* |
|
| 289 | + //Show done |
|
| 290 | + echo prepareExchangedData( |
|
| 291 | + array( |
|
| 292 | + 'error' => false, |
|
| 293 | + 'message' => '<br>Number of items reseted to Defuse: ', |
|
| 294 | + 'nbItems' => $nbItems, |
|
| 295 | + 'personalFolders' => json_encode($personalFolders), |
|
| 296 | + ), |
|
| 297 | + 'encode' |
|
| 298 | + ); |
|
| 299 | + break; |
|
| 300 | + |
|
| 301 | + /* TOOL #2 - Fixing items master keys */ |
|
| 302 | + /* |
|
| 303 | 303 | * STEP 1 - Check if we have the correct pwd for TP_USER |
| 304 | 304 | */ |
| 305 | 305 | case 'perform_fix_items_master_keys-step1': |
@@ -70,7 +70,7 @@ discard block |
||
| 70 | 70 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('tools') === false) { |
| 71 | 71 | // Not allowed page |
| 72 | 72 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 73 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 73 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 74 | 74 | exit; |
| 75 | 75 | } |
| 76 | 76 | |
@@ -335,7 +335,7 @@ discard block |
||
| 335 | 335 | // Get PT_USER info |
| 336 | 336 | $userInfo = DB::queryFirstRow( |
| 337 | 337 | 'SELECT pw, public_key, private_key, login, name |
| 338 | - FROM ' . prefixTable('users') . ' |
|
| 338 | + FROM ' . prefixTable('users').' |
|
| 339 | 339 | WHERE id = %i', |
| 340 | 340 | TP_USER_ID |
| 341 | 341 | ); |
@@ -372,8 +372,8 @@ discard block |
||
| 372 | 372 | // Get one itemKey from current user |
| 373 | 373 | $currentUserKey = DB::queryFirstRow( |
| 374 | 374 | 'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user |
| 375 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 376 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 375 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 376 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 377 | 377 | WHERE ski.user_id = %i |
| 378 | 378 | ORDER BY RAND() |
| 379 | 379 | LIMIT 1', |
@@ -392,7 +392,7 @@ discard block |
||
| 392 | 392 | echo prepareExchangedData( |
| 393 | 393 | array( |
| 394 | 394 | 'error' => true, |
| 395 | - 'message' => 'No issue found, normal process should work. This process is now finished. (item id : ' . $currentUserKey['increment_id'] . ')', |
|
| 395 | + 'message' => 'No issue found, normal process should work. This process is now finished. (item id : '.$currentUserKey['increment_id'].')', |
|
| 396 | 396 | ), |
| 397 | 397 | 'encode' |
| 398 | 398 | ); |
@@ -452,7 +452,7 @@ discard block |
||
| 452 | 452 | // Get user info |
| 453 | 453 | $userInfo = DB::queryFirstRow( |
| 454 | 454 | 'SELECT public_key, private_key |
| 455 | - FROM ' . prefixTable('users') . ' |
|
| 455 | + FROM ' . prefixTable('users').' |
|
| 456 | 456 | WHERE id = %i', |
| 457 | 457 | $userId |
| 458 | 458 | ); |
@@ -475,8 +475,8 @@ discard block |
||
| 475 | 475 | // Get one itemKey from current user |
| 476 | 476 | $currentUserKey = DB::queryFirstRow( |
| 477 | 477 | 'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user |
| 478 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 479 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 478 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 479 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 480 | 480 | WHERE ski.user_id = %i |
| 481 | 481 | ORDER BY RAND() |
| 482 | 482 | LIMIT 1', |
@@ -514,8 +514,8 @@ discard block |
||
| 514 | 514 | // Get number of users to treat |
| 515 | 515 | DB::query( |
| 516 | 516 | 'SELECT i.id |
| 517 | - FROM ' . prefixTable('items') . ' AS i |
|
| 518 | - INNER JOIN ' . prefixTable('sharekeys_items') . ' AS si ON i.id = si.object_id |
|
| 517 | + FROM ' . prefixTable('items').' AS i |
|
| 518 | + INNER JOIN ' . prefixTable('sharekeys_items').' AS si ON i.id = si.object_id |
|
| 519 | 519 | WHERE i.perso = %i AND si.user_id = %i;', |
| 520 | 520 | 0, |
| 521 | 521 | $userId |
@@ -597,11 +597,11 @@ discard block |
||
| 597 | 597 | // Loop on items |
| 598 | 598 | $rows = DB::query( |
| 599 | 599 | 'SELECT si.object_id AS object_id, si.share_key AS share_key, i.pw AS pw, si.increment_id as increment_id |
| 600 | - FROM ' . prefixTable('sharekeys_items') . ' AS si |
|
| 601 | - INNER JOIN ' . prefixTable('items') . ' AS i ON (i.id = si.object_id) |
|
| 600 | + FROM ' . prefixTable('sharekeys_items').' AS si |
|
| 601 | + INNER JOIN ' . prefixTable('items').' AS i ON (i.id = si.object_id) |
|
| 602 | 602 | WHERE si.user_id = %i |
| 603 | 603 | ORDER BY si.increment_id ASC |
| 604 | - LIMIT ' . $startIndex . ', ' . $limit, |
|
| 604 | + LIMIT ' . $startIndex.', '.$limit, |
|
| 605 | 605 | $userId |
| 606 | 606 | ); |
| 607 | 607 | |
@@ -625,7 +625,7 @@ discard block |
||
| 625 | 625 | // It will be updated if already exists |
| 626 | 626 | $currentTPUserKey = DB::queryFirstRow( |
| 627 | 627 | 'SELECT increment_id, user_id, share_key |
| 628 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 628 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 629 | 629 | WHERE object_id = %i AND user_id = %i', |
| 630 | 630 | $record['object_id'], |
| 631 | 631 | TP_USER_ID |
@@ -661,7 +661,7 @@ discard block |
||
| 661 | 661 | DB::commit(); |
| 662 | 662 | } catch (Exception $e) { |
| 663 | 663 | DB::rollback(); |
| 664 | - error_log("Teampass - Error: Keys treatment: " . $e->getMessage()); |
|
| 664 | + error_log("Teampass - Error: Keys treatment: ".$e->getMessage()); |
|
| 665 | 665 | } |
| 666 | 666 | |
| 667 | 667 | $nextIndex = (int) $startIndex + (int) $limit; |
@@ -717,7 +717,7 @@ discard block |
||
| 717 | 717 | // Get PT_USER info |
| 718 | 718 | DB::queryFirstRow( |
| 719 | 719 | 'SELECT operation_code |
| 720 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 720 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 721 | 721 | WHERE operation_code = %s', |
| 722 | 722 | $operationCode |
| 723 | 723 | ); |
@@ -727,7 +727,7 @@ discard block |
||
| 727 | 727 | // using increment_id_value in order to update the correct record |
| 728 | 728 | $rows = DB::query( |
| 729 | 729 | 'SELECT * |
| 730 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 730 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 731 | 731 | WHERE operation_code = %s', |
| 732 | 732 | $operationCode |
| 733 | 733 | ); |
@@ -746,7 +746,7 @@ discard block |
||
| 746 | 746 | |
| 747 | 747 | // Delete all sharekeys for this operation |
| 748 | 748 | DB::query( |
| 749 | - 'DELETE FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 749 | + 'DELETE FROM '.prefixTable('sharekeys_backup').' |
|
| 750 | 750 | WHERE operation_code = %i', |
| 751 | 751 | $operationCode |
| 752 | 752 | ); |
@@ -809,7 +809,7 @@ discard block |
||
| 809 | 809 | // Get operation info |
| 810 | 810 | DB::query( |
| 811 | 811 | 'SELECT operation_code |
| 812 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 812 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 813 | 813 | WHERE operation_code = %s', |
| 814 | 814 | $operationCode |
| 815 | 815 | ); |
@@ -818,7 +818,7 @@ discard block |
||
| 818 | 818 | if ($nbKeys > 0) { |
| 819 | 819 | // Delete all sharekeys for this operation |
| 820 | 820 | DB::query( |
| 821 | - 'DELETE FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 821 | + 'DELETE FROM '.prefixTable('sharekeys_backup').' |
|
| 822 | 822 | WHERE operation_code = %s', |
| 823 | 823 | $operationCode |
| 824 | 824 | ); |
@@ -75,7 +75,7 @@ discard block |
||
| 75 | 75 | ) { |
| 76 | 76 | // Not allowed page |
| 77 | 77 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 78 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 78 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 79 | 79 | exit; |
| 80 | 80 | } |
| 81 | 81 | |
@@ -145,7 +145,7 @@ discard block |
||
| 145 | 145 | if (isset($order['column']) && preg_match('#^(asc|desc)$#i', $order['dir'])) { |
| 146 | 146 | $columnIndex = $order['column']; |
| 147 | 147 | $dir = $inputData['dir']; |
| 148 | - $sOrder .= $aColumns[$columnIndex] . ' ' . $dir . ', '; |
|
| 148 | + $sOrder .= $aColumns[$columnIndex].' '.$dir.', '; |
|
| 149 | 149 | } |
| 150 | 150 | |
| 151 | 151 | $sOrder = substr_replace($sOrder, '', -2); |
