nilsteampassnet /
TeamPass
@@ -39,13 +39,13 @@ discard block |
||
| 39 | 39 | header("Access-Control-Allow-Methods: POST, GET"); |
| 40 | 40 | header("Access-Control-Max-Age: 3600"); |
| 41 | 41 | header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With"); |
| 42 | -require __DIR__ . "/inc/bootstrap.php"; |
|
| 42 | +require __DIR__."/inc/bootstrap.php"; |
|
| 43 | 43 | |
| 44 | 44 | // sanitize url segments |
| 45 | 45 | $base = new BaseController(); |
| 46 | 46 | $uri = $base->getUriSegments(); |
| 47 | 47 | if (!is_array($uri)) { |
| 48 | - $uri = [$uri]; // ensure $uril is table |
|
| 48 | + $uri = [$uri]; // ensure $uril is table |
|
| 49 | 49 | } |
| 50 | 50 | |
| 51 | 51 | // Prepare DB password |
@@ -61,9 +61,9 @@ discard block |
||
| 61 | 61 | if (isset($uri[0]) && $uri[0] === 'authorize') { |
| 62 | 62 | // Is API enabled in Teampass settings |
| 63 | 63 | if ($apiStatus['error'] === false) { |
| 64 | - require API_ROOT_PATH . "/Controller/Api/AuthController.php"; |
|
| 64 | + require API_ROOT_PATH."/Controller/Api/AuthController.php"; |
|
| 65 | 65 | $objFeedController = new AuthController(); |
| 66 | - $strMethodName = $uri[0] . 'Action'; |
|
| 66 | + $strMethodName = $uri[0].'Action'; |
|
| 67 | 67 | $objFeedController->{$strMethodName}(); |
| 68 | 68 | } else { |
| 69 | 69 | // Error management |
@@ -89,9 +89,9 @@ discard block |
||
| 89 | 89 | |
| 90 | 90 | // action related to USER |
| 91 | 91 | } elseif ($controller === 'user') { |
| 92 | - require API_ROOT_PATH . "/Controller/Api/UserController.php"; |
|
| 92 | + require API_ROOT_PATH."/Controller/Api/UserController.php"; |
|
| 93 | 93 | $objFeedController = new UserController(); |
| 94 | - $strMethodName = (string) $action . 'Action'; |
|
| 94 | + $strMethodName = (string) $action.'Action'; |
|
| 95 | 95 | $objFeedController->{$strMethodName}(); |
| 96 | 96 | |
| 97 | 97 | // action related to ITEM |
@@ -40,11 +40,11 @@ discard block |
||
| 40 | 40 | */ |
| 41 | 41 | private function getUserPrivateKey(array $userData): ?string |
| 42 | 42 | { |
| 43 | - include_once API_ROOT_PATH . '/inc/jwt_utils.php'; |
|
| 43 | + include_once API_ROOT_PATH.'/inc/jwt_utils.php'; |
|
| 44 | 44 | |
| 45 | 45 | // Verify session_key exists in JWT payload |
| 46 | 46 | if (!isset($userData['session_key']) || empty($userData['session_key'])) { |
| 47 | - error_log('getUserPrivateKey: Missing session_key in JWT token for user ID ' . $userData['id']); |
|
| 47 | + error_log('getUserPrivateKey: Missing session_key in JWT token for user ID '.$userData['id']); |
|
| 48 | 48 | return null; |
| 49 | 49 | } |
| 50 | 50 | |
@@ -88,7 +88,7 @@ discard block |
||
| 88 | 88 | // SQL where clause with folders list |
| 89 | 89 | if (isset($arrQueryStringParams['folders']) === true) { |
| 90 | 90 | // convert the folders to an array |
| 91 | - $arrQueryStringParams['folders'] = explode(',', str_replace( array('[',']') , '' , $arrQueryStringParams['folders'])); |
|
| 91 | + $arrQueryStringParams['folders'] = explode(',', str_replace(array('[', ']'), '', $arrQueryStringParams['folders'])); |
|
| 92 | 92 | |
| 93 | 93 | // ensure to only use the intersection |
| 94 | 94 | $foldersList = implode(',', array_intersect($arrQueryStringParams['folders'], $userData['folders_list'])); |
@@ -256,7 +256,7 @@ discard block |
||
| 256 | 256 | } else { |
| 257 | 257 | // Gérer le cas où les paramètres ne sont pas un tableau |
| 258 | 258 | $strErrorDesc = 'Data not consistent'; |
| 259 | - $strErrorHeader = 'Expected array, received ' . gettype($arrQueryStringParams); |
|
| 259 | + $strErrorHeader = 'Expected array, received '.gettype($arrQueryStringParams); |
|
| 260 | 260 | } |
| 261 | 261 | } |
| 262 | 262 | } else { |
@@ -307,10 +307,10 @@ discard block |
||
| 307 | 307 | // SQL where clause with item id |
| 308 | 308 | if (isset($arrQueryStringParams['id']) === true) { |
| 309 | 309 | // build sql where clause by ID |
| 310 | - $sqlExtra = ' WHERE i.id = '.$arrQueryStringParams['id'] . $sql_constraint; |
|
| 310 | + $sqlExtra = ' WHERE i.id = '.$arrQueryStringParams['id'].$sql_constraint; |
|
| 311 | 311 | } else if (isset($arrQueryStringParams['label']) === true) { |
| 312 | 312 | // build sql where clause by LABEL |
| 313 | - $sqlExtra = ' WHERE i.label '.(isset($arrQueryStringParams['like']) === true && (int) $arrQueryStringParams['like'] === 1 ? ' LIKE '.$arrQueryStringParams['label'] : ' = '.$arrQueryStringParams['label']) . $sql_constraint; |
|
| 313 | + $sqlExtra = ' WHERE i.label '.(isset($arrQueryStringParams['like']) === true && (int) $arrQueryStringParams['like'] === 1 ? ' LIKE '.$arrQueryStringParams['label'] : ' = '.$arrQueryStringParams['label']).$sql_constraint; |
|
| 314 | 314 | } else if (isset($arrQueryStringParams['description']) === true) { |
| 315 | 315 | // build sql where clause by LABEL |
| 316 | 316 | $sqlExtra = ' WHERE i.description '.(isset($arrQueryStringParams['like']) === true && (int) $arrQueryStringParams['like'] === 1 ? ' LIKE '.$arrQueryStringParams['description'] : ' = '.$arrQueryStringParams['description']).$sql_constraint; |
@@ -393,9 +393,9 @@ discard block |
||
| 393 | 393 | }*/ |
| 394 | 394 | |
| 395 | 395 | // Build SQL constraint for accessible folders |
| 396 | - $sql_constraint = ' AND (i.id_tree IN (' . $userData['folders_list'] . ')'; |
|
| 396 | + $sql_constraint = ' AND (i.id_tree IN ('.$userData['folders_list'].')'; |
|
| 397 | 397 | if (!empty($userData['restricted_items_list'])) { |
| 398 | - $sql_constraint .= ' OR i.id IN (' . $userData['restricted_items_list'] . ')'; |
|
| 398 | + $sql_constraint .= ' OR i.id IN ('.$userData['restricted_items_list'].')'; |
|
| 399 | 399 | } |
| 400 | 400 | $sql_constraint .= ')'; |
| 401 | 401 | |
@@ -413,9 +413,9 @@ discard block |
||
| 413 | 413 | $rows = DB::query( |
| 414 | 414 | "SELECT i.id, i.label, i.login, i.url, i.id_tree, |
| 415 | 415 | CASE WHEN o.enabled = 1 THEN 1 ELSE 0 END AS has_otp |
| 416 | - FROM " . prefixTable('items') . " AS i |
|
| 417 | - LEFT JOIN " . prefixTable('items_otp') . " AS o ON (o.item_id = i.id) |
|
| 418 | - WHERE i.url LIKE %s" . $sql_constraint . " |
|
| 416 | + FROM " . prefixTable('items')." AS i |
|
| 417 | + LEFT JOIN " . prefixTable('items_otp')." AS o ON (o.item_id = i.id) |
|
| 418 | + WHERE i.url LIKE %s" . $sql_constraint." |
|
| 419 | 419 | ORDER BY i.label ASC", |
| 420 | 420 | "%".$searchUrl."%" |
| 421 | 421 | ); |
@@ -425,7 +425,7 @@ discard block |
||
| 425 | 425 | // Get user's sharekey for this item |
| 426 | 426 | $shareKey = DB::queryfirstrow( |
| 427 | 427 | 'SELECT share_key |
| 428 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 428 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 429 | 429 | WHERE user_id = %i AND object_id = %i', |
| 430 | 430 | $userData['id'], |
| 431 | 431 | $row['id'] |
@@ -458,7 +458,7 @@ discard block |
||
| 458 | 458 | } |
| 459 | 459 | } |
| 460 | 460 | } catch (Error $e) { |
| 461 | - $strErrorDesc = $e->getMessage() . '. Something went wrong! Please contact support.'; |
|
| 461 | + $strErrorDesc = $e->getMessage().'. Something went wrong! Please contact support.'; |
|
| 462 | 462 | $strErrorHeader = 'HTTP/1.1 500 Internal Server Error'; |
| 463 | 463 | } |
| 464 | 464 | } else { |
@@ -518,7 +518,7 @@ discard block |
||
| 518 | 518 | |
| 519 | 519 | // Load item basic info to check folder access |
| 520 | 520 | $itemInfo = DB::queryFirstRow( |
| 521 | - 'SELECT id_tree FROM ' . prefixTable('items') . ' WHERE id = %i', |
|
| 521 | + 'SELECT id_tree FROM '.prefixTable('items').' WHERE id = %i', |
|
| 522 | 522 | $itemId |
| 523 | 523 | ); |
| 524 | 524 | |
@@ -542,7 +542,7 @@ discard block |
||
| 542 | 542 | } else { |
| 543 | 543 | // Load OTP data |
| 544 | 544 | $otpData = DB::queryFirstRow( |
| 545 | - 'SELECT secret, enabled FROM ' . prefixTable('items_otp') . ' WHERE item_id = %i', |
|
| 545 | + 'SELECT secret, enabled FROM '.prefixTable('items_otp').' WHERE item_id = %i', |
|
| 546 | 546 | $itemId |
| 547 | 547 | ); |
| 548 | 548 | |
@@ -573,7 +573,7 @@ discard block |
||
| 573 | 573 | 'item_id' => $itemId |
| 574 | 574 | ]); |
| 575 | 575 | } catch (\RuntimeException $e) { |
| 576 | - $strErrorDesc = 'Failed to generate OTP code: ' . $e->getMessage(); |
|
| 576 | + $strErrorDesc = 'Failed to generate OTP code: '.$e->getMessage(); |
|
| 577 | 577 | $strErrorHeader = 'HTTP/1.1 500 Internal Server Error'; |
| 578 | 578 | } |
| 579 | 579 | } else { |
@@ -584,7 +584,7 @@ discard block |
||
| 584 | 584 | } |
| 585 | 585 | } |
| 586 | 586 | } catch (\Error $e) { |
| 587 | - $strErrorDesc = $e->getMessage() . '. Something went wrong! Please contact support.'; |
|
| 587 | + $strErrorDesc = $e->getMessage().'. Something went wrong! Please contact support.'; |
|
| 588 | 588 | $strErrorHeader = 'HTTP/1.1 500 Internal Server Error'; |
| 589 | 589 | } |
| 590 | 590 | } else { |
@@ -70,7 +70,7 @@ discard block |
||
| 70 | 70 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('tools') === false) { |
| 71 | 71 | // Not allowed page |
| 72 | 72 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 73 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 73 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 74 | 74 | exit; |
| 75 | 75 | } |
| 76 | 76 | |
@@ -335,7 +335,7 @@ discard block |
||
| 335 | 335 | // Get TP_USER info |
| 336 | 336 | $userInfo = DB::queryFirstRow( |
| 337 | 337 | 'SELECT pw, public_key, private_key, login, name |
| 338 | - FROM ' . prefixTable('users') . ' |
|
| 338 | + FROM ' . prefixTable('users').' |
|
| 339 | 339 | WHERE id = %i', |
| 340 | 340 | TP_USER_ID |
| 341 | 341 | ); |
@@ -372,8 +372,8 @@ discard block |
||
| 372 | 372 | // Get one itemKey from current user |
| 373 | 373 | $currentUserKey = DB::queryFirstRow( |
| 374 | 374 | 'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user |
| 375 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 376 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 375 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 376 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 377 | 377 | WHERE ski.user_id = %i |
| 378 | 378 | ORDER BY RAND() |
| 379 | 379 | LIMIT 1', |
@@ -454,7 +454,7 @@ discard block |
||
| 454 | 454 | // Get user info |
| 455 | 455 | $userInfo = DB::queryFirstRow( |
| 456 | 456 | 'SELECT public_key, private_key |
| 457 | - FROM ' . prefixTable('users') . ' |
|
| 457 | + FROM ' . prefixTable('users').' |
|
| 458 | 458 | WHERE id = %i', |
| 459 | 459 | $userId |
| 460 | 460 | ); |
@@ -477,8 +477,8 @@ discard block |
||
| 477 | 477 | // Get one itemKey from current user |
| 478 | 478 | $currentUserKey = DB::queryFirstRow( |
| 479 | 479 | 'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user |
| 480 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 481 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 480 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 481 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 482 | 482 | WHERE ski.user_id = %i |
| 483 | 483 | ORDER BY RAND() |
| 484 | 484 | LIMIT 1', |
@@ -516,8 +516,8 @@ discard block |
||
| 516 | 516 | // Get number of users to treat |
| 517 | 517 | DB::query( |
| 518 | 518 | 'SELECT i.id |
| 519 | - FROM ' . prefixTable('items') . ' AS i |
|
| 520 | - INNER JOIN ' . prefixTable('sharekeys_items') . ' AS si ON i.id = si.object_id |
|
| 519 | + FROM ' . prefixTable('items').' AS i |
|
| 520 | + INNER JOIN ' . prefixTable('sharekeys_items').' AS si ON i.id = si.object_id |
|
| 521 | 521 | WHERE i.perso = %i AND si.user_id = %i;', |
| 522 | 522 | 0, |
| 523 | 523 | $userId |
@@ -599,11 +599,11 @@ discard block |
||
| 599 | 599 | // Loop on items |
| 600 | 600 | $rows = DB::query( |
| 601 | 601 | 'SELECT si.object_id AS object_id, si.share_key AS share_key, i.pw AS pw, si.increment_id as increment_id |
| 602 | - FROM ' . prefixTable('sharekeys_items') . ' AS si |
|
| 603 | - INNER JOIN ' . prefixTable('items') . ' AS i ON (i.id = si.object_id) |
|
| 602 | + FROM ' . prefixTable('sharekeys_items').' AS si |
|
| 603 | + INNER JOIN ' . prefixTable('items').' AS i ON (i.id = si.object_id) |
|
| 604 | 604 | WHERE si.user_id = %i |
| 605 | 605 | ORDER BY si.increment_id ASC |
| 606 | - LIMIT ' . $startIndex . ', ' . $limit, |
|
| 606 | + LIMIT ' . $startIndex.', '.$limit, |
|
| 607 | 607 | $userId |
| 608 | 608 | ); |
| 609 | 609 | |
@@ -627,7 +627,7 @@ discard block |
||
| 627 | 627 | // It will be updated if already exists |
| 628 | 628 | $currentTPUserKey = DB::queryFirstRow( |
| 629 | 629 | 'SELECT increment_id, user_id, share_key |
| 630 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 630 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 631 | 631 | WHERE object_id = %i AND user_id = %i', |
| 632 | 632 | $record['object_id'], |
| 633 | 633 | TP_USER_ID |
@@ -663,7 +663,7 @@ discard block |
||
| 663 | 663 | DB::commit(); |
| 664 | 664 | } catch (Exception $e) { |
| 665 | 665 | DB::rollback(); |
| 666 | - error_log("Teampass - Error: Keys treatment: " . $e->getMessage()); |
|
| 666 | + error_log("Teampass - Error: Keys treatment: ".$e->getMessage()); |
|
| 667 | 667 | } |
| 668 | 668 | |
| 669 | 669 | $nextIndex = (int) $startIndex + (int) $limit; |
@@ -719,7 +719,7 @@ discard block |
||
| 719 | 719 | // Get PT_USER info |
| 720 | 720 | DB::queryFirstRow( |
| 721 | 721 | 'SELECT operation_code |
| 722 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 722 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 723 | 723 | WHERE operation_code = %s', |
| 724 | 724 | $operationCode |
| 725 | 725 | ); |
@@ -729,7 +729,7 @@ discard block |
||
| 729 | 729 | // using increment_id_value in order to update the correct record |
| 730 | 730 | $rows = DB::query( |
| 731 | 731 | 'SELECT * |
| 732 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 732 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 733 | 733 | WHERE operation_code = %s', |
| 734 | 734 | $operationCode |
| 735 | 735 | ); |
@@ -748,7 +748,7 @@ discard block |
||
| 748 | 748 | |
| 749 | 749 | // Delete all sharekeys for this operation |
| 750 | 750 | DB::query( |
| 751 | - 'DELETE FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 751 | + 'DELETE FROM '.prefixTable('sharekeys_backup').' |
|
| 752 | 752 | WHERE operation_code = %i', |
| 753 | 753 | $operationCode |
| 754 | 754 | ); |
@@ -811,7 +811,7 @@ discard block |
||
| 811 | 811 | // Get operation info |
| 812 | 812 | DB::query( |
| 813 | 813 | 'SELECT operation_code |
| 814 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 814 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 815 | 815 | WHERE operation_code = %s', |
| 816 | 816 | $operationCode |
| 817 | 817 | ); |
@@ -820,7 +820,7 @@ discard block |
||
| 820 | 820 | if ($nbKeys > 0) { |
| 821 | 821 | // Delete all sharekeys for this operation |
| 822 | 822 | DB::query( |
| 823 | - 'DELETE FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 823 | + 'DELETE FROM '.prefixTable('sharekeys_backup').' |
|
| 824 | 824 | WHERE operation_code = %s', |
| 825 | 825 | $operationCode |
| 826 | 826 | ); |
@@ -74,7 +74,7 @@ discard block |
||
| 74 | 74 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('profile') === false) { |
| 75 | 75 | // Not allowed page |
| 76 | 76 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 77 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 77 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 78 | 78 | exit; |
| 79 | 79 | } |
| 80 | 80 | |
@@ -145,7 +145,7 @@ discard block |
||
| 145 | 145 | |
| 146 | 146 | // Get info about user to modify |
| 147 | 147 | $targetUserInfos = DB::queryFirstRow( |
| 148 | - 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 148 | + 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 149 | 149 | WHERE id = %i', |
| 150 | 150 | (int) $dataReceived['user_id'] |
| 151 | 151 | ); |
@@ -277,11 +277,11 @@ discard block |
||
| 277 | 277 | // Check if user exists (active or soft-deleted) |
| 278 | 278 | $existingUser = DB::queryFirstRow( |
| 279 | 279 | 'SELECT id, login, deleted_at |
| 280 | - FROM ' . prefixTable('users') . ' |
|
| 280 | + FROM ' . prefixTable('users').' |
|
| 281 | 281 | WHERE (login = %s AND deleted_at IS NULL) |
| 282 | 282 | OR (login LIKE %s AND deleted_at IS NOT NULL)', |
| 283 | 283 | $login, |
| 284 | - $login . '_deleted_%' |
|
| 284 | + $login.'_deleted_%' |
|
| 285 | 285 | ); |
| 286 | 286 | |
| 287 | 287 | if (is_null($existingUser)) { |
@@ -464,7 +464,7 @@ discard block |
||
| 464 | 464 | // Check if it's a soft-deleted user |
| 465 | 465 | $errorMessage = $lang->get('error_user_exists'); |
| 466 | 466 | if (empty($deletedUser) === false) { |
| 467 | - $errorMessage = 'A deleted user with this login already exists (ID: ' . $deletedUser['id'] . '). Please restore the user instead of creating a new one.'; |
|
| 467 | + $errorMessage = 'A deleted user with this login already exists (ID: '.$deletedUser['id'].'). Please restore the user instead of creating a new one.'; |
|
| 468 | 468 | } |
| 469 | 469 | |
| 470 | 470 | echo prepareExchangedData( |
@@ -503,7 +503,7 @@ discard block |
||
| 503 | 503 | } |
| 504 | 504 | |
| 505 | 505 | // Prepare variables |
| 506 | - $userId = filter_var($dataReceived['user_id'], FILTER_SANITIZE_NUMBER_INT); |
|
| 506 | + $userId = filter_var($dataReceived['user_id'], FILTER_SANITIZE_NUMBER_INT); |
|
| 507 | 507 | |
| 508 | 508 | if (empty($userId)) { |
| 509 | 509 | echo prepareExchangedData( |
@@ -518,7 +518,7 @@ discard block |
||
| 518 | 518 | |
| 519 | 519 | // Get info about user to delete |
| 520 | 520 | $data_user = DB::queryFirstRow( |
| 521 | - 'SELECT login, admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 521 | + 'SELECT login, admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 522 | 522 | WHERE id = %i', |
| 523 | 523 | $userId |
| 524 | 524 | ); |
@@ -535,7 +535,7 @@ discard block |
||
| 535 | 535 | || ((int) $session->get('user-can_manage_all_users') === 1 && (int) $data_user['admin'] !== 1) |
| 536 | 536 | ) { |
| 537 | 537 | $timestamp = time(); |
| 538 | - $deletedSuffix = '_deleted_' . $timestamp; |
|
| 538 | + $deletedSuffix = '_deleted_'.$timestamp; |
|
| 539 | 539 | |
| 540 | 540 | // delete user in database |
| 541 | 541 | DB::update( |
@@ -555,7 +555,7 @@ discard block |
||
| 555 | 555 | logEvents($SETTINGS, 'user_mngt', 'at_user_deleted', (string) $session->get('user-id'), $session->get('user-login'), $userId); |
| 556 | 556 | |
| 557 | 557 | // Count deleted users |
| 558 | - $deletedAccountsCount = (int) DB::queryFirstField("SELECT COUNT(id) FROM " . prefixTable('users') . " WHERE deleted_at IS NOT NULL"); |
|
| 558 | + $deletedAccountsCount = (int) DB::queryFirstField("SELECT COUNT(id) FROM ".prefixTable('users')." WHERE deleted_at IS NOT NULL"); |
|
| 559 | 559 | |
| 560 | 560 | DB::commit(); |
| 561 | 561 | |
@@ -584,7 +584,7 @@ discard block |
||
| 584 | 584 | echo prepareExchangedData( |
| 585 | 585 | [ |
| 586 | 586 | 'error' => true, |
| 587 | - 'message' => $lang->get('error') . ': ' . $e->getMessage(), |
|
| 587 | + 'message' => $lang->get('error').': '.$e->getMessage(), |
|
| 588 | 588 | ], |
| 589 | 589 | 'encode' |
| 590 | 590 | ); |
@@ -598,7 +598,7 @@ discard block |
||
| 598 | 598 | $return = array(); |
| 599 | 599 | // Check if folder exists |
| 600 | 600 | $data = DB::query( |
| 601 | - 'SELECT * FROM ' . prefixTable('nested_tree') . ' |
|
| 601 | + 'SELECT * FROM '.prefixTable('nested_tree').' |
|
| 602 | 602 | WHERE title = %s AND parent_id = %i', |
| 603 | 603 | filter_input(INPUT_POST, 'domain', FILTER_SANITIZE_FULL_SPECIAL_CHARS), |
| 604 | 604 | '0' |
@@ -611,7 +611,7 @@ discard block |
||
| 611 | 611 | } |
| 612 | 612 | // Check if role exists |
| 613 | 613 | $data = DB::query( |
| 614 | - 'SELECT * FROM ' . prefixTable('roles_title') . ' |
|
| 614 | + 'SELECT * FROM '.prefixTable('roles_title').' |
|
| 615 | 615 | WHERE title = %s', |
| 616 | 616 | filter_input(INPUT_POST, 'domain', FILTER_SANITIZE_FULL_SPECIAL_CHARS) |
| 617 | 617 | ); |
@@ -640,7 +640,7 @@ discard block |
||
| 640 | 640 | // Get info about user to delete |
| 641 | 641 | $data_user = DB::queryFirstRow( |
| 642 | 642 | 'SELECT admin, isAdministratedByRole, gestionnaire |
| 643 | - FROM ' . prefixTable('users') . ' |
|
| 643 | + FROM ' . prefixTable('users').' |
|
| 644 | 644 | WHERE id = %i', |
| 645 | 645 | $post_user_id |
| 646 | 646 | ); |
@@ -719,7 +719,7 @@ discard block |
||
| 719 | 719 | $session->set('user-roles_array', explode(';', $session->get('user-roles'))); |
| 720 | 720 | $rows = DB::query(' |
| 721 | 721 | SELECT id,title,creator_id |
| 722 | - FROM ' . prefixTable('roles_title') .' |
|
| 722 | + FROM ' . prefixTable('roles_title').' |
|
| 723 | 723 | WHERE id IN %li', |
| 724 | 724 | $session->get('user-roles_array') |
| 725 | 725 | ); |
@@ -757,7 +757,7 @@ discard block |
||
| 757 | 757 | $rolesList = array(); |
| 758 | 758 | $managedBy = array(); |
| 759 | 759 | $selected = ''; |
| 760 | - $rows = DB::query('SELECT id,title FROM ' . prefixTable('roles_title') . ' ORDER BY title ASC'); |
|
| 760 | + $rows = DB::query('SELECT id,title FROM '.prefixTable('roles_title').' ORDER BY title ASC'); |
|
| 761 | 761 | foreach ($rows as $reccord) { |
| 762 | 762 | $rolesList[$reccord['id']] = array('id' => $reccord['id'], 'title' => $reccord['title']); |
| 763 | 763 | } |
@@ -788,7 +788,7 @@ discard block |
||
| 788 | 788 | array_push( |
| 789 | 789 | $managedBy, |
| 790 | 790 | array( |
| 791 | - 'title' => $lang->get('managers_of') . ' ' . $fonction['title'], |
|
| 791 | + 'title' => $lang->get('managers_of').' '.$fonction['title'], |
|
| 792 | 792 | 'id' => $fonction['id'], |
| 793 | 793 | 'selected' => $selected, |
| 794 | 794 | ) |
@@ -870,9 +870,9 @@ discard block |
||
| 870 | 870 | |
| 871 | 871 | // get USER STATUS |
| 872 | 872 | if ($rowUser['disabled'] == 1) { |
| 873 | - $arrData['info'] = $lang->get('user_info_locked') . '<br><input type="checkbox" value="unlock" name="1" class="chk"> <label for="1">' . $lang->get('user_info_unlock_question') . '</label><br><input type="checkbox" value="delete" id="account_delete" class="chk mr-2" name="2" onclick="confirmDeletion()">label for="2">' . $lang->get('user_info_delete_question') . '</label>'; |
|
| 873 | + $arrData['info'] = $lang->get('user_info_locked').'<br><input type="checkbox" value="unlock" name="1" class="chk"> <label for="1">'.$lang->get('user_info_unlock_question').'</label><br><input type="checkbox" value="delete" id="account_delete" class="chk mr-2" name="2" onclick="confirmDeletion()">label for="2">'.$lang->get('user_info_delete_question').'</label>'; |
|
| 874 | 874 | } else { |
| 875 | - $arrData['info'] = $lang->get('user_info_active') . '<br><input type="checkbox" value="lock" class="chk"> ' . $lang->get('user_info_lock_question'); |
|
| 875 | + $arrData['info'] = $lang->get('user_info_active').'<br><input type="checkbox" value="lock" class="chk"> '.$lang->get('user_info_lock_question'); |
|
| 876 | 876 | } |
| 877 | 877 | |
| 878 | 878 | $arrData['error'] = false; |
@@ -960,7 +960,7 @@ discard block |
||
| 960 | 960 | // Get info about user to modify |
| 961 | 961 | $data_user = DB::queryFirstRow( |
| 962 | 962 | 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole |
| 963 | - FROM ' . prefixTable('users') . ' |
|
| 963 | + FROM ' . prefixTable('users').' |
|
| 964 | 964 | WHERE id = %i', |
| 965 | 965 | $post_id |
| 966 | 966 | ); |
@@ -971,7 +971,7 @@ discard block |
||
| 971 | 971 | // count number of admins |
| 972 | 972 | $users = DB::query( |
| 973 | 973 | 'SELECT id |
| 974 | - FROM ' . prefixTable('users') . ' |
|
| 974 | + FROM ' . prefixTable('users').' |
|
| 975 | 975 | WHERE admin = 1 AND email != "" AND pw != "" AND id != %i', |
| 976 | 976 | $post_id |
| 977 | 977 | ); |
@@ -994,7 +994,7 @@ discard block |
||
| 994 | 994 | // Exclude roles from AD - PR #3635 |
| 995 | 995 | $adRolesResult = DB::query( |
| 996 | 996 | 'SELECT role_id |
| 997 | - FROM ' . prefixTable('users_roles') . ' |
|
| 997 | + FROM ' . prefixTable('users_roles').' |
|
| 998 | 998 | WHERE user_id = %i AND source = %s', |
| 999 | 999 | $post_id, |
| 1000 | 1000 | 'ad' |
@@ -1097,7 +1097,7 @@ discard block |
||
| 1097 | 1097 | ); |
| 1098 | 1098 | // delete personal folder and subfolders |
| 1099 | 1099 | $data = DB::queryFirstRow( |
| 1100 | - 'SELECT id FROM ' . prefixTable('nested_tree') . ' |
|
| 1100 | + 'SELECT id FROM '.prefixTable('nested_tree').' |
|
| 1101 | 1101 | WHERE title = %s AND personal_folder = %i', |
| 1102 | 1102 | $post_id, |
| 1103 | 1103 | '1' |
@@ -1110,7 +1110,7 @@ discard block |
||
| 1110 | 1110 | DB::delete(prefixTable('nested_tree'), 'id = %i AND personal_folder = %i', $folder->id, '1'); |
| 1111 | 1111 | // delete items & logs |
| 1112 | 1112 | $items = DB::query( |
| 1113 | - 'SELECT id FROM ' . prefixTable('items') . ' |
|
| 1113 | + 'SELECT id FROM '.prefixTable('items').' |
|
| 1114 | 1114 | WHERE id_tree=%i AND perso = %i', |
| 1115 | 1115 | $folder->id, |
| 1116 | 1116 | '1' |
@@ -1204,7 +1204,7 @@ discard block |
||
| 1204 | 1204 | |
| 1205 | 1205 | // update LOG |
| 1206 | 1206 | if ($oldData['email'] !== $post_email) { |
| 1207 | - logEvents($SETTINGS, 'user_mngt', 'at_user_email_changed:' . $oldData['email'], (string) $session->get('user-id'), $session->get('user-login'), $post_id); |
|
| 1207 | + logEvents($SETTINGS, 'user_mngt', 'at_user_email_changed:'.$oldData['email'], (string) $session->get('user-id'), $session->get('user-login'), $post_id); |
|
| 1208 | 1208 | } |
| 1209 | 1209 | } |
| 1210 | 1210 | echo prepareExchangedData( |
@@ -1253,7 +1253,7 @@ discard block |
||
| 1253 | 1253 | |
| 1254 | 1254 | $login = (string) filter_input(INPUT_POST, 'login', FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
| 1255 | 1255 | DB::queryFirstRow( |
| 1256 | - 'SELECT * FROM ' . prefixTable('users') . ' |
|
| 1256 | + 'SELECT * FROM '.prefixTable('users').' |
|
| 1257 | 1257 | WHERE (login = %s AND deleted_at IS NULL) |
| 1258 | 1258 | OR login LIKE %s', |
| 1259 | 1259 | $login, |
@@ -1312,7 +1312,7 @@ discard block |
||
| 1312 | 1312 | $html = ''; |
| 1313 | 1313 | |
| 1314 | 1314 | if (isset($SETTINGS['ldap_mode']) === true && (int) $SETTINGS['ldap_mode'] === 1 && isset($SETTINGS['enable_ad_users_with_ad_groups']) === true && (int) $SETTINGS['enable_ad_users_with_ad_groups'] === 1) { |
| 1315 | - $rowUser['fonction_id'] = empty($rowUser['fonction_id']) === true ? $rowUser['roles_from_ad_groups'] : $rowUser['fonction_id']. ';' . $rowUser['roles_from_ad_groups']; |
|
| 1315 | + $rowUser['fonction_id'] = empty($rowUser['fonction_id']) === true ? $rowUser['roles_from_ad_groups'] : $rowUser['fonction_id'].';'.$rowUser['roles_from_ad_groups']; |
|
| 1316 | 1316 | } |
| 1317 | 1317 | $arrData['functions'] = array_filter(explode(';', $rowUser['fonction_id'])); |
| 1318 | 1318 | $arrData['allowed_folders'] = array_filter(explode(';', $rowUser['groupes_visibles'])); |
@@ -1323,8 +1323,8 @@ discard block |
||
| 1323 | 1323 | // refine folders based upon roles |
| 1324 | 1324 | $rows = DB::query( |
| 1325 | 1325 | 'SELECT rv.folder_id, rv.type |
| 1326 | - FROM ' . prefixTable('roles_values') . ' as rv |
|
| 1327 | - INNER JOIN ' . prefixTable('nested_tree') . ' as nt ON rv.folder_id = nt.id |
|
| 1326 | + FROM ' . prefixTable('roles_values').' as rv |
|
| 1327 | + INNER JOIN ' . prefixTable('nested_tree').' as nt ON rv.folder_id = nt.id |
|
| 1328 | 1328 | WHERE rv.role_id IN %ls AND nt.personal_folder = 0 |
| 1329 | 1329 | ORDER BY rv.folder_id ASC', |
| 1330 | 1330 | $arrData['functions'] |
@@ -1347,7 +1347,7 @@ discard block |
||
| 1347 | 1347 | } |
| 1348 | 1348 | |
| 1349 | 1349 | // add allowed folders |
| 1350 | - foreach($arrData['allowed_folders'] as $Fld) { |
|
| 1350 | + foreach ($arrData['allowed_folders'] as $Fld) { |
|
| 1351 | 1351 | array_push($arrFolders, array('id' => $Fld, 'type' => 'W', 'special' => true)); |
| 1352 | 1352 | } |
| 1353 | 1353 | |
@@ -1362,7 +1362,7 @@ discard block |
||
| 1362 | 1362 | // get folder name |
| 1363 | 1363 | $row = DB::queryFirstRow( |
| 1364 | 1364 | 'SELECT title, nlevel, id |
| 1365 | - FROM ' . prefixTable('nested_tree') . ' |
|
| 1365 | + FROM ' . prefixTable('nested_tree').' |
|
| 1366 | 1366 | WHERE id = %i', |
| 1367 | 1367 | $fld['id'] |
| 1368 | 1368 | ); |
@@ -1380,8 +1380,8 @@ discard block |
||
| 1380 | 1380 | } |
| 1381 | 1381 | } |
| 1382 | 1382 | |
| 1383 | - $html_full = '<table id="table-folders" class="table table-bordered table-striped dt-responsive nowrap" style="width:100%"><tbody>' . |
|
| 1384 | - $html . '</tbody></table>'; |
|
| 1383 | + $html_full = '<table id="table-folders" class="table table-bordered table-striped dt-responsive nowrap" style="width:100%"><tbody>'. |
|
| 1384 | + $html.'</tbody></table>'; |
|
| 1385 | 1385 | } else { |
| 1386 | 1386 | $html_full = ''; |
| 1387 | 1387 | } |
@@ -1435,10 +1435,10 @@ discard block |
||
| 1435 | 1435 | GROUP_CONCAT(DISTINCT CASE WHEN ur.source = "manual" THEN ur.role_id END ORDER BY ur.role_id SEPARATOR ";") AS fonction_id, |
| 1436 | 1436 | GROUP_CONCAT(DISTINCT ug.group_id ORDER BY ug.group_id SEPARATOR ";") AS groupes_visibles, |
| 1437 | 1437 | GROUP_CONCAT(DISTINCT ugf.group_id ORDER BY ugf.group_id SEPARATOR ";") AS groupes_interdits |
| 1438 | - FROM ' . prefixTable('users') . ' AS u |
|
| 1439 | - LEFT JOIN ' . prefixTable('users_roles') . ' AS ur ON (u.id = ur.user_id) |
|
| 1440 | - LEFT JOIN ' . prefixTable('users_groups') . ' AS ug ON (u.id = ug.user_id) |
|
| 1441 | - LEFT JOIN ' . prefixTable('users_groups_forbidden') . ' AS ugf ON (u.id = ugf.user_id) |
|
| 1438 | + FROM ' . prefixTable('users').' AS u |
|
| 1439 | + LEFT JOIN ' . prefixTable('users_roles').' AS ur ON (u.id = ur.user_id) |
|
| 1440 | + LEFT JOIN ' . prefixTable('users_groups').' AS ug ON (u.id = ug.user_id) |
|
| 1441 | + LEFT JOIN ' . prefixTable('users_groups_forbidden').' AS ugf ON (u.id = ugf.user_id) |
|
| 1442 | 1442 | WHERE u.admin = %i AND u.isAdministratedByRole IN %ls AND u.deleted_at IS NULL AND u.disabled = %i |
| 1443 | 1443 | GROUP BY u.id', |
| 1444 | 1444 | 0, |
@@ -1451,10 +1451,10 @@ discard block |
||
| 1451 | 1451 | GROUP_CONCAT(DISTINCT CASE WHEN ur.source = "manual" THEN ur.role_id END ORDER BY ur.role_id SEPARATOR ";") AS fonction_id, |
| 1452 | 1452 | GROUP_CONCAT(DISTINCT ug.group_id ORDER BY ug.group_id SEPARATOR ";") AS groupes_visibles, |
| 1453 | 1453 | GROUP_CONCAT(DISTINCT ugf.group_id ORDER BY ugf.group_id SEPARATOR ";") AS groupes_interdits |
| 1454 | - FROM ' . prefixTable('users') . ' AS u |
|
| 1455 | - LEFT JOIN ' . prefixTable('users_roles') . ' AS ur ON (u.id = ur.user_id) |
|
| 1456 | - LEFT JOIN ' . prefixTable('users_groups') . ' AS ug ON (u.id = ug.user_id) |
|
| 1457 | - LEFT JOIN ' . prefixTable('users_groups_forbidden') . ' AS ugf ON (u.id = ugf.user_id) |
|
| 1454 | + FROM ' . prefixTable('users').' AS u |
|
| 1455 | + LEFT JOIN ' . prefixTable('users_roles').' AS ur ON (u.id = ur.user_id) |
|
| 1456 | + LEFT JOIN ' . prefixTable('users_groups').' AS ug ON (u.id = ug.user_id) |
|
| 1457 | + LEFT JOIN ' . prefixTable('users_groups_forbidden').' AS ugf ON (u.id = ugf.user_id) |
|
| 1458 | 1458 | WHERE u.admin = %i AND u.deleted_at IS NULL AND u.disabled = %i |
| 1459 | 1459 | GROUP BY u.id', |
| 1460 | 1460 | 0, |
@@ -1475,7 +1475,7 @@ discard block |
||
| 1475 | 1475 | foreach (explode(';', $record['fonction_id']) as $group) { |
| 1476 | 1476 | if (!empty($group)) { |
| 1477 | 1477 | $tmp = DB::queryFirstRow( |
| 1478 | - 'SELECT id, title FROM ' . prefixTable('roles_title') . ' |
|
| 1478 | + 'SELECT id, title FROM '.prefixTable('roles_title').' |
|
| 1479 | 1479 | WHERE id = %i', |
| 1480 | 1480 | $group |
| 1481 | 1481 | ); |
@@ -1489,7 +1489,7 @@ discard block |
||
| 1489 | 1489 | |
| 1490 | 1490 | // Get managed_by |
| 1491 | 1491 | $managedBy = DB::queryFirstRow( |
| 1492 | - 'SELECT id, title FROM ' . prefixTable('roles_title') . ' |
|
| 1492 | + 'SELECT id, title FROM '.prefixTable('roles_title').' |
|
| 1493 | 1493 | WHERE id = %i', |
| 1494 | 1494 | $record['isAdministratedByRole'] |
| 1495 | 1495 | ); |
@@ -1501,7 +1501,7 @@ discard block |
||
| 1501 | 1501 | foreach (explode(';', $record['groupes_visibles']) as $role) { |
| 1502 | 1502 | if (!empty($role)) { |
| 1503 | 1503 | $tmp = DB::queryFirstRow( |
| 1504 | - 'SELECT id, title FROM ' . prefixTable('nested_tree') . ' |
|
| 1504 | + 'SELECT id, title FROM '.prefixTable('nested_tree').' |
|
| 1505 | 1505 | WHERE id = %i', |
| 1506 | 1506 | $role |
| 1507 | 1507 | ); |
@@ -1518,7 +1518,7 @@ discard block |
||
| 1518 | 1518 | foreach (explode(';', $record['groupes_interdits']) as $role) { |
| 1519 | 1519 | if (!empty($role)) { |
| 1520 | 1520 | $tmp = DB::queryFirstRow( |
| 1521 | - 'SELECT id, title FROM ' . prefixTable('nested_tree') . ' |
|
| 1521 | + 'SELECT id, title FROM '.prefixTable('nested_tree').' |
|
| 1522 | 1522 | WHERE id = %i', |
| 1523 | 1523 | $role |
| 1524 | 1524 | ); |
@@ -1640,7 +1640,7 @@ discard block |
||
| 1640 | 1640 | |
| 1641 | 1641 | // Get info about user |
| 1642 | 1642 | $data_user = DB::queryFirstRow( |
| 1643 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 1643 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 1644 | 1644 | WHERE id = %i', |
| 1645 | 1645 | $inputData['source_id'] |
| 1646 | 1646 | ); |
@@ -1888,14 +1888,14 @@ discard block |
||
| 1888 | 1888 | if (empty($post_context) === false && $post_context === 'add_one_role_to_user') { |
| 1889 | 1889 | $data_user = DB::queryFirstRow( |
| 1890 | 1890 | 'SELECT fonction_id, public_key |
| 1891 | - FROM ' . prefixTable('users') . ' |
|
| 1891 | + FROM ' . prefixTable('users').' |
|
| 1892 | 1892 | WHERE id = %i', |
| 1893 | 1893 | $post_user_id |
| 1894 | 1894 | ); |
| 1895 | 1895 | |
| 1896 | 1896 | if ($data_user) { |
| 1897 | 1897 | // Ensure array is unique |
| 1898 | - $post_new_value = str_replace(',', ';', $data_user['fonction_id']) . ';' . $post_new_value; |
|
| 1898 | + $post_new_value = str_replace(',', ';', $data_user['fonction_id']).';'.$post_new_value; |
|
| 1899 | 1899 | $post_new_value = implode(';', array_unique(explode(';', $post_new_value))); |
| 1900 | 1900 | } else { |
| 1901 | 1901 | // User not found |
@@ -1911,14 +1911,14 @@ discard block |
||
| 1911 | 1911 | } |
| 1912 | 1912 | |
| 1913 | 1913 | // Manage specific case of api key |
| 1914 | - if($post_field === 'user_api_key') { |
|
| 1914 | + if ($post_field === 'user_api_key') { |
|
| 1915 | 1915 | $encrypted_key = encryptUserObjectKey(base64_encode($post_new_value), $session->get('user-public_key')); |
| 1916 | 1916 | $session->set('user-api_key', $post_new_value); |
| 1917 | 1917 | |
| 1918 | 1918 | // test if user has an api key |
| 1919 | 1919 | $data_user = DB::queryFirstRow( |
| 1920 | 1920 | 'SELECT value |
| 1921 | - FROM ' . prefixTable('api') . ' |
|
| 1921 | + FROM ' . prefixTable('api').' |
|
| 1922 | 1922 | WHERE user_id = %i', |
| 1923 | 1923 | $post_user_id |
| 1924 | 1924 | ); |
@@ -2038,7 +2038,7 @@ discard block |
||
| 2038 | 2038 | } catch (\LdapRecord\Auth\BindException $e) { |
| 2039 | 2039 | $error = $e->getDetailedError(); |
| 2040 | 2040 | if ($error && defined('LOG_TO_SERVER') && LOG_TO_SERVER === true) { |
| 2041 | - error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage(). " - ".$error->getDiagnosticMessage()); |
|
| 2041 | + error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage()." - ".$error->getDiagnosticMessage()); |
|
| 2042 | 2042 | } |
| 2043 | 2043 | // deepcode ignore ServerLeak: No important data is sent and it is encrypted before sending |
| 2044 | 2044 | echo prepareExchangedData( |
@@ -2068,7 +2068,7 @@ discard block |
||
| 2068 | 2068 | } catch (\LdapRecord\Auth\BindException $e) { |
| 2069 | 2069 | $error = $e->getDetailedError(); |
| 2070 | 2070 | if ($error && defined('LOG_TO_SERVER') && LOG_TO_SERVER === true) { |
| 2071 | - error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage(). " - ".$error->getDiagnosticMessage()); |
|
| 2071 | + error_log('TEAMPASS Error - LDAP - '.$error->getErrorCode()." - ".$error->getErrorMessage()." - ".$error->getDiagnosticMessage()); |
|
| 2072 | 2072 | } |
| 2073 | 2073 | // deepcode ignore ServerLeak: No important data is sent and it is encrypted before sending |
| 2074 | 2074 | echo prepareExchangedData( |
@@ -2085,7 +2085,7 @@ discard block |
||
| 2085 | 2085 | if (isset($adUser[$SETTINGS['ldap_user_attribute']][0]) === false) continue; |
| 2086 | 2086 | // Build the list of all groups in AD |
| 2087 | 2087 | if (isset($adUser['memberof']) === true) { |
| 2088 | - foreach($adUser['memberof'] as $j => $adUserGroup) { |
|
| 2088 | + foreach ($adUser['memberof'] as $j => $adUserGroup) { |
|
| 2089 | 2089 | if (empty($adUserGroup) === false && $j !== "count") { |
| 2090 | 2090 | $adGroup = substr($adUserGroup, 3, strpos($adUserGroup, ',') - 3); |
| 2091 | 2091 | if (in_array($adGroup, $adRoles) === false && empty($adGroup) === false) { |
@@ -2133,7 +2133,7 @@ discard block |
||
| 2133 | 2133 | |
| 2134 | 2134 | // Get all groups in Teampass |
| 2135 | 2135 | $teampassRoles = array(); |
| 2136 | - $rows = DB::query('SELECT id,title FROM ' . prefixTable('roles_title')); |
|
| 2136 | + $rows = DB::query('SELECT id,title FROM '.prefixTable('roles_title')); |
|
| 2137 | 2137 | foreach ($rows as $record) { |
| 2138 | 2138 | array_push( |
| 2139 | 2139 | $teampassRoles, |
@@ -2198,7 +2198,7 @@ discard block |
||
| 2198 | 2198 | // Check if user already exists |
| 2199 | 2199 | $data = DB::query( |
| 2200 | 2200 | 'SELECT id |
| 2201 | - FROM ' . prefixTable('users') . ' |
|
| 2201 | + FROM ' . prefixTable('users').' |
|
| 2202 | 2202 | WHERE login = %s', |
| 2203 | 2203 | $post_login |
| 2204 | 2204 | ); |
@@ -2392,7 +2392,7 @@ discard block |
||
| 2392 | 2392 | // Check if user already exists |
| 2393 | 2393 | DB::query( |
| 2394 | 2394 | 'SELECT id |
| 2395 | - FROM ' . prefixTable('users') . ' |
|
| 2395 | + FROM ' . prefixTable('users').' |
|
| 2396 | 2396 | WHERE id = %i', |
| 2397 | 2397 | $post_id |
| 2398 | 2398 | ); |
@@ -2454,7 +2454,7 @@ discard block |
||
| 2454 | 2454 | // Get all groups in Teampass |
| 2455 | 2455 | $teampassRoles = array(); |
| 2456 | 2456 | $titleToIdMap = []; |
| 2457 | - $rows = DB::query('SELECT id,title FROM ' . prefixTable('roles_title')); |
|
| 2457 | + $rows = DB::query('SELECT id,title FROM '.prefixTable('roles_title')); |
|
| 2458 | 2458 | foreach ($rows as $record) { |
| 2459 | 2459 | array_push( |
| 2460 | 2460 | $teampassRoles, |
@@ -2500,7 +2500,7 @@ discard block |
||
| 2500 | 2500 | // Get his ID and auth type |
| 2501 | 2501 | $userInfo = DB::queryFirstRow( |
| 2502 | 2502 | 'SELECT id, login, auth_type |
| 2503 | - FROM ' . prefixTable('users') . ' |
|
| 2503 | + FROM ' . prefixTable('users').' |
|
| 2504 | 2504 | WHERE login = %s', |
| 2505 | 2505 | $userLogin |
| 2506 | 2506 | ); |
@@ -2509,7 +2509,7 @@ discard block |
||
| 2509 | 2509 | $userGroupsInTeampass = []; |
| 2510 | 2510 | if ($userInfo !== null) { |
| 2511 | 2511 | $userRoles = DB::query( |
| 2512 | - 'SELECT role_id FROM ' . prefixTable('users_roles') . ' |
|
| 2512 | + 'SELECT role_id FROM '.prefixTable('users_roles').' |
|
| 2513 | 2513 | WHERE user_id = %i', |
| 2514 | 2514 | $userInfo['id'] |
| 2515 | 2515 | ); |
@@ -2618,7 +2618,7 @@ discard block |
||
| 2618 | 2618 | // Check if user already exists |
| 2619 | 2619 | DB::query( |
| 2620 | 2620 | 'SELECT id |
| 2621 | - FROM ' . prefixTable('users') . ' |
|
| 2621 | + FROM ' . prefixTable('users').' |
|
| 2622 | 2622 | WHERE id = %i', |
| 2623 | 2623 | $post_id |
| 2624 | 2624 | ); |
@@ -2684,7 +2684,7 @@ discard block |
||
| 2684 | 2684 | // Search TP_USER in db |
| 2685 | 2685 | $userTP = DB::queryFirstRow( |
| 2686 | 2686 | 'SELECT pw |
| 2687 | - FROM ' . prefixTable('users') . ' |
|
| 2687 | + FROM ' . prefixTable('users').' |
|
| 2688 | 2688 | WHERE id = %i', |
| 2689 | 2689 | TP_USER_ID |
| 2690 | 2690 | ); |
@@ -2707,7 +2707,7 @@ discard block |
||
| 2707 | 2707 | 'arguments' => json_encode([ |
| 2708 | 2708 | 'new_user_id' => (int) $post_user_id, |
| 2709 | 2709 | 'new_user_pwd' => '', |
| 2710 | - 'new_user_code' => cryption($post_user_code, '','encrypt', $SETTINGS)['string'], |
|
| 2710 | + 'new_user_code' => cryption($post_user_code, '', 'encrypt', $SETTINGS)['string'], |
|
| 2711 | 2711 | 'owner_id' => (int) TP_USER_ID, |
| 2712 | 2712 | 'creator_pwd' => $userTP['pw'], |
| 2713 | 2713 | 'email_body' => $lang->get('email_body_user_config_5'), |
@@ -2814,17 +2814,17 @@ discard block |
||
| 2814 | 2814 | // get user info |
| 2815 | 2815 | $processesProgress = DB::query( |
| 2816 | 2816 | 'SELECT u.ongoing_process_id, pt.task, pt.updated_at, pt.finished_at, pt.is_in_progress |
| 2817 | - FROM ' . prefixTable('users') . ' AS u |
|
| 2818 | - INNER JOIN ' . prefixTable('background_subtasks') . ' AS pt ON (pt.task_id = u.ongoing_process_id) |
|
| 2817 | + FROM ' . prefixTable('users').' AS u |
|
| 2818 | + INNER JOIN ' . prefixTable('background_subtasks').' AS pt ON (pt.task_id = u.ongoing_process_id) |
|
| 2819 | 2819 | WHERE u.id = %i', |
| 2820 | 2820 | $user_id |
| 2821 | 2821 | ); |
| 2822 | 2822 | |
| 2823 | 2823 | $finished_steps = 0; |
| 2824 | 2824 | $nb_steps = count($processesProgress); |
| 2825 | - foreach($processesProgress as $process) { |
|
| 2825 | + foreach ($processesProgress as $process) { |
|
| 2826 | 2826 | if ((int) $process['is_in_progress'] === -1) { |
| 2827 | - $finished_steps ++; |
|
| 2827 | + $finished_steps++; |
|
| 2828 | 2828 | } |
| 2829 | 2829 | } |
| 2830 | 2830 | |
@@ -2833,7 +2833,7 @@ discard block |
||
| 2833 | 2833 | 'error' => false, |
| 2834 | 2834 | 'message' => '', |
| 2835 | 2835 | 'user_id' => $user_id, |
| 2836 | - 'status' => $finished_steps === $nb_steps ? 'finished' : number_format($finished_steps/$nb_steps*100, 0).'%', |
|
| 2836 | + 'status' => $finished_steps === $nb_steps ? 'finished' : number_format($finished_steps / $nb_steps * 100, 0).'%', |
|
| 2837 | 2837 | 'debug' => $finished_steps.",".$nb_steps, |
| 2838 | 2838 | ), |
| 2839 | 2839 | 'encode' |
@@ -2966,7 +2966,7 @@ discard block |
||
| 2966 | 2966 | } |
| 2967 | 2967 | |
| 2968 | 2968 | $result = purgeDeletedUserById($userId); |
| 2969 | - $deletedAccountsCount = (int) DB::queryFirstField("SELECT COUNT(id) FROM " . prefixTable('users') . " WHERE deleted_at IS NOT NULL"); |
|
| 2969 | + $deletedAccountsCount = (int) DB::queryFirstField("SELECT COUNT(id) FROM ".prefixTable('users')." WHERE deleted_at IS NOT NULL"); |
|
| 2970 | 2970 | |
| 2971 | 2971 | echo prepareExchangedData( |
| 2972 | 2972 | [ |
@@ -3006,13 +3006,13 @@ discard block |
||
| 3006 | 3006 | |
| 3007 | 3007 | // Prepare variables |
| 3008 | 3008 | $daysRetention = filter_var($dataReceived['days_retention'], FILTER_SANITIZE_NUMBER_INT); |
| 3009 | - $daysRetention = empty($daysRetention) ? 90 : (int)$daysRetention; |
|
| 3009 | + $daysRetention = empty($daysRetention) ? 90 : (int) $daysRetention; |
|
| 3010 | 3010 | $cutoffTimestamp = time() - ($daysRetention * 86400); |
| 3011 | 3011 | |
| 3012 | 3012 | try { |
| 3013 | 3013 | // Get list of users to delete |
| 3014 | 3014 | $users = DB::query( |
| 3015 | - "SELECT id FROM " . prefixTable("users") . " |
|
| 3015 | + "SELECT id FROM ".prefixTable("users")." |
|
| 3016 | 3016 | WHERE deleted_at IS NOT NULL |
| 3017 | 3017 | AND deleted_at > 0 |
| 3018 | 3018 | AND deleted_at < %i |
@@ -3036,7 +3036,7 @@ discard block |
||
| 3036 | 3036 | echo prepareExchangedData( |
| 3037 | 3037 | [ |
| 3038 | 3038 | 'error' => true, |
| 3039 | - 'message' => $lang->get('error') . ': ' . $e->getMessage(), |
|
| 3039 | + 'message' => $lang->get('error').': '.$e->getMessage(), |
|
| 3040 | 3040 | ], |
| 3041 | 3041 | 'encode' |
| 3042 | 3042 | ); |
@@ -3090,10 +3090,10 @@ discard block |
||
| 3090 | 3090 | |
| 3091 | 3091 | $purgedCount = 0; |
| 3092 | 3092 | $errors = []; |
| 3093 | - $cutoffTimestamp = time() - ((int)$daysRetention * 86400); |
|
| 3093 | + $cutoffTimestamp = time() - ((int) $daysRetention * 86400); |
|
| 3094 | 3094 | |
| 3095 | 3095 | foreach ($userIds as $userId) { |
| 3096 | - $userId = (int)$userId; |
|
| 3096 | + $userId = (int) $userId; |
|
| 3097 | 3097 | |
| 3098 | 3098 | try { |
| 3099 | 3099 | $result = purgeDeletedUserById($userId); |
@@ -3101,11 +3101,11 @@ discard block |
||
| 3101 | 3101 | |
| 3102 | 3102 | } catch (Exception $e) { |
| 3103 | 3103 | DB::rollback(); |
| 3104 | - $errors[] = "User ID $userId: " . $e->getMessage(); |
|
| 3104 | + $errors[] = "User ID $userId: ".$e->getMessage(); |
|
| 3105 | 3105 | } |
| 3106 | 3106 | } |
| 3107 | 3107 | |
| 3108 | - $deletedAccountsCount = (int) DB::queryFirstField("SELECT COUNT(id) FROM " . prefixTable('users') . " WHERE deleted_at IS NOT NULL"); |
|
| 3108 | + $deletedAccountsCount = (int) DB::queryFirstField("SELECT COUNT(id) FROM ".prefixTable('users')." WHERE deleted_at IS NOT NULL"); |
|
| 3109 | 3109 | |
| 3110 | 3110 | echo prepareExchangedData( |
| 3111 | 3111 | [ |
@@ -3113,7 +3113,7 @@ discard block |
||
| 3113 | 3113 | 'purged_count' => $purgedCount, |
| 3114 | 3114 | 'total_in_batch' => count($userIds), |
| 3115 | 3115 | 'errors' => $errors, |
| 3116 | - 'message' => $purgedCount . ' user(s) purged in this batch', |
|
| 3116 | + 'message' => $purgedCount.' user(s) purged in this batch', |
|
| 3117 | 3117 | 'deletedAccountsCount' => $deletedAccountsCount, |
| 3118 | 3118 | ], |
| 3119 | 3119 | 'encode' |
@@ -3148,7 +3148,7 @@ discard block |
||
| 3148 | 3148 | |
| 3149 | 3149 | // Get info about user |
| 3150 | 3150 | $data_user = DB::queryFirstRow( |
| 3151 | - 'SELECT login FROM ' . prefixTable('users') . ' WHERE id = %i', |
|
| 3151 | + 'SELECT login FROM '.prefixTable('users').' WHERE id = %i', |
|
| 3152 | 3152 | $userId |
| 3153 | 3153 | ); |
| 3154 | 3154 | |
@@ -3161,12 +3161,12 @@ discard block |
||
| 3161 | 3161 | } |
| 3162 | 3162 | |
| 3163 | 3163 | // Remove user suffix "_deleted_timestamp" |
| 3164 | - $deletedSuffix = '_deleted_' . substr($data_user['login'], strrpos($data_user['login'], '_deleted_') + 9); |
|
| 3164 | + $deletedSuffix = '_deleted_'.substr($data_user['login'], strrpos($data_user['login'], '_deleted_') + 9); |
|
| 3165 | 3165 | $originalLogin = str_replace($deletedSuffix, '', $data_user['login']); |
| 3166 | 3166 | |
| 3167 | 3167 | // Check if an active user with the original login already exists |
| 3168 | 3168 | $existingUser = DB::queryFirstRow( |
| 3169 | - 'SELECT id FROM ' . prefixTable('users') . ' |
|
| 3169 | + 'SELECT id FROM '.prefixTable('users').' |
|
| 3170 | 3170 | WHERE login = %s AND deleted_at IS NULL AND id != %i', |
| 3171 | 3171 | $originalLogin, |
| 3172 | 3172 | $userId |
@@ -3176,7 +3176,7 @@ discard block |
||
| 3176 | 3176 | echo prepareExchangedData( |
| 3177 | 3177 | array( |
| 3178 | 3178 | 'error' => true, |
| 3179 | - 'message' => 'Cannot restore user: an active user with login "' . $originalLogin . '" already exists (ID: ' . $existingUser['id'] . ')' |
|
| 3179 | + 'message' => 'Cannot restore user: an active user with login "'.$originalLogin.'" already exists (ID: '.$existingUser['id'].')' |
|
| 3180 | 3180 | ), |
| 3181 | 3181 | 'encode' |
| 3182 | 3182 | ); |
@@ -3209,7 +3209,7 @@ discard block |
||
| 3209 | 3209 | |
| 3210 | 3210 | // Get info about user |
| 3211 | 3211 | $data_user = DB::queryFirstRow( |
| 3212 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 3212 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 3213 | 3213 | WHERE id = %i', |
| 3214 | 3214 | $value[1] |
| 3215 | 3215 | ); |
@@ -3243,7 +3243,7 @@ discard block |
||
| 3243 | 3243 | logEvents( |
| 3244 | 3244 | $SETTINGS, |
| 3245 | 3245 | 'user_mngt', |
| 3246 | - 'at_user_new_' . $value[0] . ':' . $value[1], |
|
| 3246 | + 'at_user_new_'.$value[0].':'.$value[1], |
|
| 3247 | 3247 | (string) $session->get('user-id'), |
| 3248 | 3248 | $session->get('user-login'), |
| 3249 | 3249 | filter_input(INPUT_POST, 'id', FILTER_SANITIZE_FULL_SPECIAL_CHARS) |
@@ -3278,7 +3278,7 @@ discard block |
||
| 3278 | 3278 | |
| 3279 | 3279 | // Get info about user |
| 3280 | 3280 | $data_user = DB::queryFirstRow( |
| 3281 | - 'SELECT admin, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 3281 | + 'SELECT admin, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 3282 | 3282 | WHERE id = %i', |
| 3283 | 3283 | $id[1] |
| 3284 | 3284 | ); |
@@ -3317,7 +3317,7 @@ discard block |
||
| 3317 | 3317 | $users = DB::query( |
| 3318 | 3318 | "SELECT id, login, email, deleted_at, |
| 3319 | 3319 | DATEDIFF(NOW(), FROM_UNIXTIME(deleted_at)) as days_since_deletion |
| 3320 | - FROM " . prefixTable("users") . " |
|
| 3320 | + FROM " . prefixTable("users")." |
|
| 3321 | 3321 | WHERE deleted_at IS NOT NULL |
| 3322 | 3322 | AND deleted_at > 0 |
| 3323 | 3323 | ORDER BY deleted_at DESC" |
@@ -3343,7 +3343,7 @@ discard block |
||
| 3343 | 3343 | |
| 3344 | 3344 | // Vérifier que l'utilisateur est bien marqué deleted |
| 3345 | 3345 | $user = DB::queryFirstRow( |
| 3346 | - "SELECT id, login, deleted_at FROM " . prefixTable("users") . " |
|
| 3346 | + "SELECT id, login, deleted_at FROM ".prefixTable("users")." |
|
| 3347 | 3347 | WHERE id = %i |
| 3348 | 3348 | AND deleted_at IS NOT NULL |
| 3349 | 3349 | AND deleted_at > 0", |
@@ -3383,7 +3383,7 @@ discard block |
||
| 3383 | 3383 | |
| 3384 | 3384 | // delete personal folder and subfolders |
| 3385 | 3385 | $data = DB::queryFirstRow( |
| 3386 | - 'SELECT id FROM ' . prefixTable('nested_tree') . ' |
|
| 3386 | + 'SELECT id FROM '.prefixTable('nested_tree').' |
|
| 3387 | 3387 | WHERE title = %s AND personal_folder = %i', |
| 3388 | 3388 | $userId, |
| 3389 | 3389 | '1' |
@@ -3405,7 +3405,7 @@ discard block |
||
| 3405 | 3405 | DB::delete(prefixTable('nested_tree'), 'id = %i AND personal_folder = %i', $folder->id, '1'); |
| 3406 | 3406 | // delete items & logs |
| 3407 | 3407 | $items = DB::query( |
| 3408 | - 'SELECT id FROM ' . prefixTable('items') . ' |
|
| 3408 | + 'SELECT id FROM '.prefixTable('items').' |
|
| 3409 | 3409 | WHERE id_tree=%i AND perso = %i', |
| 3410 | 3410 | $folder->id, |
| 3411 | 3411 | '1' |
@@ -3435,7 +3435,7 @@ discard block |
||
| 3435 | 3435 | // Delete any process related to user |
| 3436 | 3436 | $processes = DB::query( |
| 3437 | 3437 | 'SELECT increment_id |
| 3438 | - FROM ' . prefixTable('background_tasks') . ' |
|
| 3438 | + FROM ' . prefixTable('background_tasks').' |
|
| 3439 | 3439 | WHERE JSON_EXTRACT(arguments, "$.new_user_id") = %i', |
| 3440 | 3440 | $userId |
| 3441 | 3441 | ); |
