nilsteampassnet /
TeamPass
@@ -222,8 +222,7 @@ |
||
| 222 | 222 | </div> |
| 223 | 223 | <?php |
| 224 | 224 | } |
| 225 | -} |
|
| 226 | -catch (Exception $e) { |
|
| 225 | +} catch (Exception $e) { |
|
| 227 | 226 | if (defined('LOG_TO_SERVER') && LOG_TO_SERVER === true) { |
| 228 | 227 | error_log('TEAMPASS Error - admin page - '.$e->getMessage()); |
| 229 | 228 | } |
@@ -68,7 +68,7 @@ discard block |
||
| 68 | 68 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('admin') === false) { |
| 69 | 69 | // Not allowed page |
| 70 | 70 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 71 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 71 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 72 | 72 | exit; |
| 73 | 73 | } |
| 74 | 74 | |
@@ -199,7 +199,7 @@ discard block |
||
| 199 | 199 | // Get last cron execution timestamp |
| 200 | 200 | DB::query( |
| 201 | 201 | 'SELECT valeur |
| 202 | - FROM ' . prefixTable('misc') . ' |
|
| 202 | + FROM ' . prefixTable('misc').' |
|
| 203 | 203 | WHERE type = %s AND intitule = %s and valeur >= %d', |
| 204 | 204 | 'admin', |
| 205 | 205 | 'last_cron_exec', |
@@ -253,7 +253,7 @@ discard block |
||
| 253 | 253 | |
| 254 | 254 | // Has the transparent recovery migration been done? |
| 255 | 255 | DB::query( |
| 256 | - "SELECT id FROM " . prefixTable('users') . " |
|
| 256 | + "SELECT id FROM ".prefixTable('users')." |
|
| 257 | 257 | WHERE (user_derivation_seed IS NULL |
| 258 | 258 | OR private_key_backup IS NULL) |
| 259 | 259 | AND disabled = 0" |
@@ -307,7 +307,7 @@ discard block |
||
| 307 | 307 | <div class="card-body"> |
| 308 | 308 | <?php |
| 309 | 309 | // Display information about server |
| 310 | - $dbSize = DB::queryFirstRow("SELECT ROUND(SUM(data_length + index_length) / 1024 / 1024, 2) AS 'size' FROM information_schema.TABLES WHERE table_schema = '" . DB_NAME . "'"); |
|
| 310 | + $dbSize = DB::queryFirstRow("SELECT ROUND(SUM(data_length + index_length) / 1024 / 1024, 2) AS 'size' FROM information_schema.TABLES WHERE table_schema = '".DB_NAME."'"); |
|
| 311 | 311 | |
| 312 | 312 | // Get OS |
| 313 | 313 | $uname = php_uname('s'); |
@@ -363,17 +363,17 @@ discard block |
||
| 363 | 363 | } |
| 364 | 364 | |
| 365 | 365 | echo |
| 366 | - '<p>' . $os. |
|
| 366 | + '<p>'.$os. |
|
| 367 | 367 | '<br><span class="ml-4"></span>'. |
| 368 | 368 | '</p>'. |
| 369 | 369 | $internetAccess. |
| 370 | - '<p><i class="fa-brands fa-php mr-2"></i>PHP version: ' . phpversion(). |
|
| 370 | + '<p><i class="fa-brands fa-php mr-2"></i>PHP version: '.phpversion(). |
|
| 371 | 371 | '<br><span class="ml-4">Memory limit: '.(ini_get('memory_limit')).'</span>'. |
| 372 | 372 | '<br><span class="ml-4">Memory usage: '.formatSizeUnits(memory_get_usage()).'</span>'. |
| 373 | 373 | '<br><span class="ml-4">Maximum time execution: '.ini_get('max_execution_time').'</span>'. |
| 374 | 374 | '<br><span class="ml-4">Maximum file size upload: '.ini_get('upload_max_filesize').'</span>'. |
| 375 | 375 | '</p>'. |
| 376 | - '<p><i class="fa-solid fa-server mr-2"></i>Server version: ' . DB::serverVersion(). |
|
| 376 | + '<p><i class="fa-solid fa-server mr-2"></i>Server version: '.DB::serverVersion(). |
|
| 377 | 377 | '<br><span class="ml-4">Database size: '.($dbSize['size']).'MB</span>'. |
| 378 | 378 | '</p>'; |
| 379 | 379 | |
@@ -381,11 +381,11 @@ discard block |
||
| 381 | 381 | $serverTime = localtime(time(), true); |
| 382 | 382 | echo '<div class="row">'. |
| 383 | 383 | '<div class="col-6"><i class="fa-solid fa-clock mr-2"></i>Server time:</div>'. |
| 384 | - '<div class="col-6"><span class="badge badge-info">' . |
|
| 385 | - str_pad(strval($serverTime['tm_hour']), 2, "0", STR_PAD_LEFT) . ':' . |
|
| 386 | - str_pad(strval($serverTime['tm_min']), 2, "0", STR_PAD_LEFT) . ':' . |
|
| 387 | - str_pad(strval($serverTime['tm_sec']), 2, "0", STR_PAD_LEFT) . |
|
| 388 | - '</span></div>' . |
|
| 384 | + '<div class="col-6"><span class="badge badge-info">'. |
|
| 385 | + str_pad(strval($serverTime['tm_hour']), 2, "0", STR_PAD_LEFT).':'. |
|
| 386 | + str_pad(strval($serverTime['tm_min']), 2, "0", STR_PAD_LEFT).':'. |
|
| 387 | + str_pad(strval($serverTime['tm_sec']), 2, "0", STR_PAD_LEFT). |
|
| 388 | + '</span></div>'. |
|
| 389 | 389 | '</div>'. |
| 390 | 390 | '<div class="row">'. |
| 391 | 391 | '<div class="col-6"><span class="ml-4">Timezone:</span></div>'. |
@@ -2,7 +2,7 @@ |
||
| 2 | 2 | use TeampassClasses\OAuth2Controller\OAuth2Controller; |
| 3 | 3 | use TeampassClasses\SessionManager\SessionManager; |
| 4 | 4 | |
| 5 | -require_once __DIR__. '/../includes/config/include.php'; |
|
| 5 | +require_once __DIR__.'/../includes/config/include.php'; |
|
| 6 | 6 | require_once __DIR__.'/../sources/main.functions.php'; |
| 7 | 7 | |
| 8 | 8 | // init |
@@ -830,7 +830,7 @@ |
||
| 830 | 830 | 'encode' |
| 831 | 831 | ); |
| 832 | 832 | |
| 833 | - /* |
|
| 833 | + /* |
|
| 834 | 834 | * Generate BUG report |
| 835 | 835 | */ |
| 836 | 836 | case 'generate_bug_report'://action_system |
@@ -79,7 +79,7 @@ discard block |
||
| 79 | 79 | ) { |
| 80 | 80 | // Not allowed page |
| 81 | 81 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 82 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 82 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 83 | 83 | exit; |
| 84 | 84 | } |
| 85 | 85 | |
@@ -207,7 +207,7 @@ discard block |
||
| 207 | 207 | * @param array $SETTINGS |
| 208 | 208 | * @return string |
| 209 | 209 | */ |
| 210 | -function passwordHandler(string $post_type, array|null|string $dataReceived, array $SETTINGS): string |
|
| 210 | +function passwordHandler(string $post_type, array | null | string $dataReceived, array $SETTINGS): string |
|
| 211 | 211 | { |
| 212 | 212 | $session = SessionManager::getSession(); |
| 213 | 213 | $lang = new Language($session->get('user-language') ?? 'english'); |
@@ -275,7 +275,7 @@ discard block |
||
| 275 | 275 | |
| 276 | 276 | // Get current user hash |
| 277 | 277 | $userHash = DB::queryFirstRow( |
| 278 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %d;", |
|
| 278 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %d;", |
|
| 279 | 279 | $session->get('user-id') |
| 280 | 280 | )['pw']; |
| 281 | 281 | |
@@ -330,7 +330,7 @@ discard block |
||
| 330 | 330 | * @param string $post_key |
| 331 | 331 | * @return string |
| 332 | 332 | */ |
| 333 | -function userHandler(string $post_type, array|null|string $dataReceived, array $SETTINGS, string $post_key): string |
|
| 333 | +function userHandler(string $post_type, array | null | string $dataReceived, array $SETTINGS, string $post_key): string |
|
| 334 | 334 | { |
| 335 | 335 | $session = SessionManager::getSession(); |
| 336 | 336 | |
@@ -365,7 +365,7 @@ discard block |
||
| 365 | 365 | if (isset($dataReceived['user_id'])) { |
| 366 | 366 | // Get info about user to modify |
| 367 | 367 | $targetUserInfos = DB::queryFirstRow( |
| 368 | - 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 368 | + 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 369 | 369 | WHERE id = %i', |
| 370 | 370 | $dataReceived['user_id'] |
| 371 | 371 | ); |
@@ -514,7 +514,7 @@ discard block |
||
| 514 | 514 | case 'mail_me'://action_mail |
| 515 | 515 | // Get info about user to send email |
| 516 | 516 | $data_user = DB::queryFirstRow( |
| 517 | - 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 517 | + 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 518 | 518 | WHERE email = %s', |
| 519 | 519 | filter_var($dataReceived['receipt'], FILTER_SANITIZE_FULL_SPECIAL_CHARS) |
| 520 | 520 | ); |
@@ -634,7 +634,7 @@ discard block |
||
| 634 | 634 | if (isset($dataReceived['user_id'])) { |
| 635 | 635 | // Get info about user to modify |
| 636 | 636 | $targetUserInfos = DB::queryFirstRow( |
| 637 | - 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM ' . prefixTable('users') . ' |
|
| 637 | + 'SELECT admin, gestionnaire, can_manage_all_users, isAdministratedByRole FROM '.prefixTable('users').' |
|
| 638 | 638 | WHERE id = %i', |
| 639 | 639 | $dataReceived['user_id'] |
| 640 | 640 | ); |
@@ -718,7 +718,7 @@ discard block |
||
| 718 | 718 | |
| 719 | 719 | // Get current user hash |
| 720 | 720 | $userHash = DB::queryFirstRow( |
| 721 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %d;", |
|
| 721 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %d;", |
|
| 722 | 722 | $session->get('user-id') |
| 723 | 723 | )['pw']; |
| 724 | 724 | |
@@ -756,7 +756,7 @@ discard block |
||
| 756 | 756 | |
| 757 | 757 | // Get current user hash |
| 758 | 758 | $userHash = DB::queryFirstRow( |
| 759 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %d;", |
|
| 759 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %d;", |
|
| 760 | 760 | $session->get('user-id') |
| 761 | 761 | )['pw']; |
| 762 | 762 | |
@@ -801,7 +801,7 @@ discard block |
||
| 801 | 801 | |
| 802 | 802 | // Get current user hash |
| 803 | 803 | $userHash = DB::queryFirstRow( |
| 804 | - "SELECT pw FROM " . prefixtable('users') . " WHERE id = %i;", |
|
| 804 | + "SELECT pw FROM ".prefixtable('users')." WHERE id = %i;", |
|
| 805 | 805 | $session->get('user-id') |
| 806 | 806 | )['pw']; |
| 807 | 807 | |
@@ -853,7 +853,7 @@ discard block |
||
| 853 | 853 | * @param array $SETTINGS |
| 854 | 854 | * @return string |
| 855 | 855 | */ |
| 856 | -function systemHandler(string $post_type, array|null|string $dataReceived, array $SETTINGS): string |
|
| 856 | +function systemHandler(string $post_type, array | null | string $dataReceived, array $SETTINGS): string |
|
| 857 | 857 | { |
| 858 | 858 | $session = SessionManager::getSession(); |
| 859 | 859 | switch ($post_type) { |
@@ -954,7 +954,7 @@ discard block |
||
| 954 | 954 | ) |
| 955 | 955 | ); |
| 956 | 956 | |
| 957 | - return '[{"token" : "' . $token . '"}]'; |
|
| 957 | + return '[{"token" : "'.$token.'"}]'; |
|
| 958 | 958 | |
| 959 | 959 | /* |
| 960 | 960 | * Default case |
@@ -970,7 +970,7 @@ discard block |
||
| 970 | 970 | } |
| 971 | 971 | |
| 972 | 972 | |
| 973 | -function utilsHandler(string $post_type, array|null|string $dataReceived, array $SETTINGS): string |
|
| 973 | +function utilsHandler(string $post_type, array | null | string $dataReceived, array $SETTINGS): string |
|
| 974 | 974 | { |
| 975 | 975 | switch ($post_type) { |
| 976 | 976 | /* |
@@ -1039,7 +1039,7 @@ discard block |
||
| 1039 | 1039 | array( |
| 1040 | 1040 | 'error' => false, |
| 1041 | 1041 | 'timestamp' => $session->get('user-session_duration'), |
| 1042 | - 'max_time_to_add' => intdiv((($maximum_session_expiration_time*60) - ((int) $session->get('user-session_duration') - time())), 60), |
|
| 1042 | + 'max_time_to_add' => intdiv((($maximum_session_expiration_time * 60) - ((int) $session->get('user-session_duration') - time())), 60), |
|
| 1043 | 1043 | 'max_session_duration' => $maximum_session_expiration_time, |
| 1044 | 1044 | ), |
| 1045 | 1045 | 'encode' |
@@ -1091,7 +1091,7 @@ discard block |
||
| 1091 | 1091 | // get number of items |
| 1092 | 1092 | DB::queryFirstRow( |
| 1093 | 1093 | 'SELECT increment_id |
| 1094 | - FROM ' . prefixTable('sharekeys_items') . |
|
| 1094 | + FROM ' . prefixTable('sharekeys_items'). |
|
| 1095 | 1095 | ' WHERE user_id = %i', |
| 1096 | 1096 | $userId |
| 1097 | 1097 | ); |
@@ -1146,7 +1146,7 @@ discard block |
||
| 1146 | 1146 | // check if expected security level is reached |
| 1147 | 1147 | $dataUser = DB::queryFirstRow( |
| 1148 | 1148 | 'SELECT * |
| 1149 | - FROM ' . prefixTable('users') . ' WHERE id = %i', |
|
| 1149 | + FROM ' . prefixTable('users').' WHERE id = %i', |
|
| 1150 | 1150 | $post_user_id |
| 1151 | 1151 | ); |
| 1152 | 1152 | |
@@ -1167,8 +1167,8 @@ discard block |
||
| 1167 | 1167 | if (empty($dataUser['fonction_id']) === false) { |
| 1168 | 1168 | $data = DB::queryFirstRow( |
| 1169 | 1169 | 'SELECT complexity |
| 1170 | - FROM ' . prefixTable('roles_title') . ' |
|
| 1171 | - WHERE id IN (' . $dataUser['fonction_id'] . ') |
|
| 1170 | + FROM ' . prefixTable('roles_title').' |
|
| 1171 | + WHERE id IN (' . $dataUser['fonction_id'].') |
|
| 1172 | 1172 | ORDER BY complexity DESC' |
| 1173 | 1173 | ); |
| 1174 | 1174 | } else { |
@@ -1181,8 +1181,8 @@ discard block |
||
| 1181 | 1181 | return prepareExchangedData( |
| 1182 | 1182 | array( |
| 1183 | 1183 | 'error' => true, |
| 1184 | - 'message' => '<div style="margin:10px 0 10px 15px;">' . $lang->get('complexity_level_not_reached') . '.<br>' . |
|
| 1185 | - $lang->get('expected_complexity_level') . ': <b>' . TP_PW_COMPLEXITY[$data['complexity']][1] . '</b></div>', |
|
| 1184 | + 'message' => '<div style="margin:10px 0 10px 15px;">'.$lang->get('complexity_level_not_reached').'.<br>'. |
|
| 1185 | + $lang->get('expected_complexity_level').': <b>'.TP_PW_COMPLEXITY[$data['complexity']][1].'</b></div>', |
|
| 1186 | 1186 | ), |
| 1187 | 1187 | 'encode' |
| 1188 | 1188 | ); |
@@ -1286,14 +1286,14 @@ discard block |
||
| 1286 | 1286 | // Get data about user |
| 1287 | 1287 | $dataUser = DB::queryFirstRow( |
| 1288 | 1288 | 'SELECT id, email, pw |
| 1289 | - FROM ' . prefixTable('users') . ' |
|
| 1289 | + FROM ' . prefixTable('users').' |
|
| 1290 | 1290 | WHERE login = %s', |
| 1291 | 1291 | $post_login |
| 1292 | 1292 | ); |
| 1293 | 1293 | } else { |
| 1294 | 1294 | $dataUser = DB::queryFirstRow( |
| 1295 | 1295 | 'SELECT id, login, email, pw |
| 1296 | - FROM ' . prefixTable('users') . ' |
|
| 1296 | + FROM ' . prefixTable('users').' |
|
| 1297 | 1297 | WHERE id = %i', |
| 1298 | 1298 | $post_id |
| 1299 | 1299 | ); |
@@ -1347,7 +1347,7 @@ discard block |
||
| 1347 | 1347 | // Check if token already used |
| 1348 | 1348 | $dataToken = DB::queryFirstRow( |
| 1349 | 1349 | 'SELECT end_timestamp, reason |
| 1350 | - FROM ' . prefixTable('tokens') . ' |
|
| 1350 | + FROM ' . prefixTable('tokens').' |
|
| 1351 | 1351 | WHERE token = %s AND user_id = %i', |
| 1352 | 1352 | $post_token, |
| 1353 | 1353 | $dataUser['id'] |
@@ -1358,11 +1358,11 @@ discard block |
||
| 1358 | 1358 | return prepareExchangedData( |
| 1359 | 1359 | array( |
| 1360 | 1360 | 'error' => true, |
| 1361 | - 'message' => 'TOKEN already used',//$lang->get('no_email_set'), |
|
| 1361 | + 'message' => 'TOKEN already used', //$lang->get('no_email_set'), |
|
| 1362 | 1362 | ), |
| 1363 | 1363 | 'encode' |
| 1364 | 1364 | ); |
| 1365 | - } elseif(DB::count() === 0) { |
|
| 1365 | + } elseif (DB::count() === 0) { |
|
| 1366 | 1366 | // Store token for this action |
| 1367 | 1367 | DB::insert( |
| 1368 | 1368 | prefixTable('tokens'), |
@@ -1424,7 +1424,7 @@ discard block |
||
| 1424 | 1424 | 'email' => $dataUser['email'], |
| 1425 | 1425 | 'email_result' => str_replace( |
| 1426 | 1426 | '#email#', |
| 1427 | - '<b>' . obfuscateEmail($dataUser['email']) . '</b>', |
|
| 1427 | + '<b>'.obfuscateEmail($dataUser['email']).'</b>', |
|
| 1428 | 1428 | addslashes($lang->get('admin_email_result_ok')) |
| 1429 | 1429 | ), |
| 1430 | 1430 | ), |
@@ -1440,7 +1440,7 @@ discard block |
||
| 1440 | 1440 | 'email' => $dataUser['email'], |
| 1441 | 1441 | 'email_result' => str_replace( |
| 1442 | 1442 | '#email#', |
| 1443 | - '<b>' . obfuscateEmail($dataUser['email']) . '</b>', |
|
| 1443 | + '<b>'.obfuscateEmail($dataUser['email']).'</b>', |
|
| 1444 | 1444 | addslashes($lang->get('admin_email_result_ok')) |
| 1445 | 1445 | ), |
| 1446 | 1446 | ), |
@@ -1457,7 +1457,7 @@ discard block |
||
| 1457 | 1457 | |
| 1458 | 1458 | if (isKeyExistingAndEqual('enable_send_email_on_user_login', 1, $SETTINGS) === true) { |
| 1459 | 1459 | $row = DB::queryFirstRow( |
| 1460 | - 'SELECT valeur FROM ' . prefixTable('misc') . ' WHERE type = %s AND intitule = %s', |
|
| 1460 | + 'SELECT valeur FROM '.prefixTable('misc').' WHERE type = %s AND intitule = %s', |
|
| 1461 | 1461 | 'cron', |
| 1462 | 1462 | 'sending_emails' |
| 1463 | 1463 | ); |
@@ -1465,7 +1465,7 @@ discard block |
||
| 1465 | 1465 | if ((int) (time() - $row['valeur']) >= 300 || (int) $row['valeur'] === 0) { |
| 1466 | 1466 | $rows = DB::query( |
| 1467 | 1467 | 'SELECT * |
| 1468 | - FROM ' . prefixTable('emails') . |
|
| 1468 | + FROM ' . prefixTable('emails'). |
|
| 1469 | 1469 | ' WHERE status != %s', |
| 1470 | 1470 | 'sent' |
| 1471 | 1471 | ); |
@@ -1517,8 +1517,8 @@ discard block |
||
| 1517 | 1517 | $arr_html = array(); |
| 1518 | 1518 | $rows = DB::query( |
| 1519 | 1519 | 'SELECT i.id AS id, i.label AS label, i.id_tree AS id_tree, l.date, i.perso AS perso, i.restricted_to AS restricted |
| 1520 | - FROM ' . prefixTable('log_items') . ' AS l |
|
| 1521 | - RIGHT JOIN ' . prefixTable('items') . ' AS i ON (l.id_item = i.id) |
|
| 1520 | + FROM ' . prefixTable('log_items').' AS l |
|
| 1521 | + RIGHT JOIN ' . prefixTable('items').' AS i ON (l.id_item = i.id) |
|
| 1522 | 1522 | WHERE l.action = %s AND l.id_user = %i |
| 1523 | 1523 | ORDER BY l.date DESC |
| 1524 | 1524 | LIMIT 0, 100', |
@@ -1550,7 +1550,7 @@ discard block |
||
| 1550 | 1550 | if (isKeyExistingAndEqual('enable_suggestion', 1, $SETTINGS) === true |
| 1551 | 1551 | && ((int) $session->get('user-admin') === 1 || (int) $session->get('user-manager') === 1) |
| 1552 | 1552 | ) { |
| 1553 | - DB::query('SELECT * FROM ' . prefixTable('suggestion')); |
|
| 1553 | + DB::query('SELECT * FROM '.prefixTable('suggestion')); |
|
| 1554 | 1554 | $nb_suggestions_waiting = DB::count(); |
| 1555 | 1555 | } |
| 1556 | 1556 | |
@@ -1585,13 +1585,13 @@ discard block |
||
| 1585 | 1585 | if ($data === 'stat_languages') { |
| 1586 | 1586 | $tmp = ''; |
| 1587 | 1587 | foreach ($stats_data[$data] as $key => $value) { |
| 1588 | - $tmp .= $tmp === '' ? $key . '-' . $value : ',' . $key . '-' . $value; |
|
| 1588 | + $tmp .= $tmp === '' ? $key.'-'.$value : ','.$key.'-'.$value; |
|
| 1589 | 1589 | } |
| 1590 | 1590 | $statsToSend[$data] = $tmp; |
| 1591 | 1591 | } elseif ($data === 'stat_country') { |
| 1592 | 1592 | $tmp = ''; |
| 1593 | 1593 | foreach ($stats_data[$data] as $key => $value) { |
| 1594 | - $tmp .= $tmp === '' ? $key . '-' . $value : ',' . $key . '-' . $value; |
|
| 1594 | + $tmp .= $tmp === '' ? $key.'-'.$value : ','.$key.'-'.$value; |
|
| 1595 | 1595 | } |
| 1596 | 1596 | $statsToSend[$data] = $tmp; |
| 1597 | 1597 | } else { |
@@ -1678,7 +1678,7 @@ discard block |
||
| 1678 | 1678 | $url_found = $value; |
| 1679 | 1679 | if (empty($url_found) === false) { |
| 1680 | 1680 | $tmp = parse_url($url_found); |
| 1681 | - $anonym_url = $tmp['scheme'] . '://<anonym_url>' . (isset($tmp['path']) === true ? $tmp['path'] : ''); |
|
| 1681 | + $anonym_url = $tmp['scheme'].'://<anonym_url>'.(isset($tmp['path']) === true ? $tmp['path'] : ''); |
|
| 1682 | 1682 | $value = $anonym_url; |
| 1683 | 1683 | } else { |
| 1684 | 1684 | $value = ''; |
@@ -1708,7 +1708,7 @@ discard block |
||
| 1708 | 1708 | $teampass_errors = ''; |
| 1709 | 1709 | $rows = DB::query( |
| 1710 | 1710 | 'SELECT label, date AS error_date |
| 1711 | - FROM ' . prefixTable('log_system') . " |
|
| 1711 | + FROM ' . prefixTable('log_system')." |
|
| 1712 | 1712 | WHERE `type` LIKE 'error' |
| 1713 | 1713 | ORDER BY `date` DESC |
| 1714 | 1714 | LIMIT 0, 10" |
@@ -1716,9 +1716,9 @@ discard block |
||
| 1716 | 1716 | if (DB::count() > 0) { |
| 1717 | 1717 | foreach ($rows as $record) { |
| 1718 | 1718 | if (empty($teampass_errors) === true) { |
| 1719 | - $teampass_errors = ' * ' . date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['error_date']) . ' - ' . $record['label']; |
|
| 1719 | + $teampass_errors = ' * '.date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['error_date']).' - '.$record['label']; |
|
| 1720 | 1720 | } else { |
| 1721 | - $teampass_errors .= ' * ' . date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['error_date']) . ' - ' . $record['label']; |
|
| 1721 | + $teampass_errors .= ' * '.date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['error_date']).' - '.$record['label']; |
|
| 1722 | 1722 | } |
| 1723 | 1723 | } |
| 1724 | 1724 | } |
@@ -1730,7 +1730,7 @@ discard block |
||
| 1730 | 1730 | |
| 1731 | 1731 | // Now prepare text |
| 1732 | 1732 | $txt = '### Page on which it happened |
| 1733 | -' . $data['current_page'] . ' |
|
| 1733 | +' . $data['current_page'].' |
|
| 1734 | 1734 | |
| 1735 | 1735 | ### Steps to reproduce |
| 1736 | 1736 | 1. |
@@ -1745,39 +1745,39 @@ discard block |
||
| 1745 | 1745 | Tell us what happens instead |
| 1746 | 1746 | |
| 1747 | 1747 | ### Server configuration |
| 1748 | -**Operating system**: ' . php_uname() . ' |
|
| 1748 | +**Operating system**: ' . php_uname().' |
|
| 1749 | 1749 | |
| 1750 | -**Web server:** ' . $_SERVER['SERVER_SOFTWARE'] . ' |
|
| 1750 | +**Web server:** ' . $_SERVER['SERVER_SOFTWARE'].' |
|
| 1751 | 1751 | |
| 1752 | -**Database:** ' . ($link === false ? $lang->get('undefined') : mysqli_get_server_info($link)) . ' |
|
| 1752 | +**Database:** ' . ($link === false ? $lang->get('undefined') : mysqli_get_server_info($link)).' |
|
| 1753 | 1753 | |
| 1754 | -**PHP version:** ' . PHP_VERSION . ' |
|
| 1754 | +**PHP version:** ' . PHP_VERSION.' |
|
| 1755 | 1755 | |
| 1756 | -**Teampass version:** ' . TP_VERSION . '.' . TP_VERSION_MINOR . ' |
|
| 1756 | +**Teampass version:** ' . TP_VERSION.'.'.TP_VERSION_MINOR.' |
|
| 1757 | 1757 | |
| 1758 | 1758 | **Teampass configuration variables:** |
| 1759 | 1759 | ``` |
| 1760 | -' . $list_of_options . ' |
|
| 1760 | +' . $list_of_options.' |
|
| 1761 | 1761 | ``` |
| 1762 | 1762 | |
| 1763 | 1763 | **Updated from an older Teampass or fresh install:** |
| 1764 | 1764 | |
| 1765 | 1765 | ### Client configuration |
| 1766 | 1766 | |
| 1767 | -**Browser:** ' . $data['browser_name'] . ' - ' . $data['browser_version'] . ' |
|
| 1767 | +**Browser:** ' . $data['browser_name'].' - '.$data['browser_version'].' |
|
| 1768 | 1768 | |
| 1769 | -**Operating system:** ' . $data['os'] . ' - ' . $data['os_archi'] . 'bits |
|
| 1769 | +**Operating system:** ' . $data['os'].' - '.$data['os_archi'].'bits |
|
| 1770 | 1770 | |
| 1771 | 1771 | ### Logs |
| 1772 | 1772 | |
| 1773 | 1773 | #### Web server error log |
| 1774 | 1774 | ``` |
| 1775 | -' . $err['message'] . ' - ' . $err['file'] . ' (' . $err['line'] . ') |
|
| 1775 | +' . $err['message'].' - '.$err['file'].' ('.$err['line'].') |
|
| 1776 | 1776 | ``` |
| 1777 | 1777 | |
| 1778 | 1778 | #### Teampass 10 last system errors |
| 1779 | 1779 | ``` |
| 1780 | -' . $teampass_errors . ' |
|
| 1780 | +' . $teampass_errors.' |
|
| 1781 | 1781 | ``` |
| 1782 | 1782 | |
| 1783 | 1783 | #### Log from the web-browser developer console (CTRL + SHIFT + i) |
@@ -1819,7 +1819,7 @@ discard block |
||
| 1819 | 1819 | // Check if user exists |
| 1820 | 1820 | $userInfo = DB::queryFirstRow( |
| 1821 | 1821 | 'SELECT public_key, private_key, pw, auth_type |
| 1822 | - FROM ' . prefixTable('users') . ' |
|
| 1822 | + FROM ' . prefixTable('users').' |
|
| 1823 | 1823 | WHERE id = %i', |
| 1824 | 1824 | $post_user_id |
| 1825 | 1825 | ); |
@@ -1828,9 +1828,9 @@ discard block |
||
| 1828 | 1828 | // Get one item |
| 1829 | 1829 | $currentUserKey = DB::queryFirstRow( |
| 1830 | 1830 | 'SELECT object_id, share_key, increment_id |
| 1831 | - FROM ' . prefixTable('sharekeys_items') . ' AS si |
|
| 1832 | - INNER JOIN ' . prefixTable('items') . ' AS i ON (i.id = si.object_id) |
|
| 1833 | - INNER JOIN ' . prefixTable('nested_tree') . ' AS nt ON (i.id_tree = nt.id) |
|
| 1831 | + FROM ' . prefixTable('sharekeys_items').' AS si |
|
| 1832 | + INNER JOIN ' . prefixTable('items').' AS i ON (i.id = si.object_id) |
|
| 1833 | + INNER JOIN ' . prefixTable('nested_tree').' AS nt ON (i.id_tree = nt.id) |
|
| 1834 | 1834 | WHERE user_id = %i AND nt.personal_folder = %i', |
| 1835 | 1835 | $post_user_id, |
| 1836 | 1836 | 0 |
@@ -1949,7 +1949,7 @@ discard block |
||
| 1949 | 1949 | // Get user info |
| 1950 | 1950 | $userData = DB::queryFirstRow( |
| 1951 | 1951 | 'SELECT private_key |
| 1952 | - FROM ' . prefixTable('users') . ' |
|
| 1952 | + FROM ' . prefixTable('users').' |
|
| 1953 | 1953 | WHERE id = %i', |
| 1954 | 1954 | $post_user_id |
| 1955 | 1955 | ); |
@@ -2030,7 +2030,7 @@ discard block |
||
| 2030 | 2030 | // Get user info |
| 2031 | 2031 | $userData = DB::queryFirstRow( |
| 2032 | 2032 | 'SELECT email, auth_type, login |
| 2033 | - FROM ' . prefixTable('users') . ' |
|
| 2033 | + FROM ' . prefixTable('users').' |
|
| 2034 | 2034 | WHERE id = %i', |
| 2035 | 2035 | $post_user_id |
| 2036 | 2036 | ); |
@@ -2128,7 +2128,7 @@ discard block |
||
| 2128 | 2128 | // Get user info |
| 2129 | 2129 | $userData = DB::queryFirstRow( |
| 2130 | 2130 | 'SELECT email, auth_type, login |
| 2131 | - FROM ' . prefixTable('users') . ' |
|
| 2131 | + FROM ' . prefixTable('users').' |
|
| 2132 | 2132 | WHERE id = %i', |
| 2133 | 2133 | $userId |
| 2134 | 2134 | ); |
@@ -2194,7 +2194,7 @@ discard block |
||
| 2194 | 2194 | // Check if user exists |
| 2195 | 2195 | DB::queryFirstRow( |
| 2196 | 2196 | 'SELECT * |
| 2197 | - FROM ' . prefixTable('users') . ' |
|
| 2197 | + FROM ' . prefixTable('users').' |
|
| 2198 | 2198 | WHERE id = %i', |
| 2199 | 2199 | $post_user_id |
| 2200 | 2200 | ); |
@@ -2264,7 +2264,7 @@ discard block |
||
| 2264 | 2264 | // Check if user exists |
| 2265 | 2265 | $userInfo = DB::queryFirstRow( |
| 2266 | 2266 | 'SELECT public_key |
| 2267 | - FROM ' . prefixTable('users') . ' |
|
| 2267 | + FROM ' . prefixTable('users').' |
|
| 2268 | 2268 | WHERE id = %i', |
| 2269 | 2269 | $post_user_id |
| 2270 | 2270 | ); |
@@ -2412,15 +2412,15 @@ discard block |
||
| 2412 | 2412 | // Loop on items |
| 2413 | 2413 | $rows = DB::query( |
| 2414 | 2414 | 'SELECT id, pw |
| 2415 | - FROM ' . prefixTable('items') . ' |
|
| 2415 | + FROM ' . prefixTable('items').' |
|
| 2416 | 2416 | WHERE perso = 0 |
| 2417 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2417 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2418 | 2418 | ); |
| 2419 | 2419 | foreach ($rows as $record) { |
| 2420 | 2420 | // Get itemKey from current user |
| 2421 | 2421 | $currentUserKey = DB::queryFirstRow( |
| 2422 | 2422 | 'SELECT share_key, increment_id |
| 2423 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2423 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2424 | 2424 | WHERE object_id = %i AND user_id = %i', |
| 2425 | 2425 | $record['id'], |
| 2426 | 2426 | $session->get('user-id') |
@@ -2452,7 +2452,7 @@ discard block |
||
| 2452 | 2452 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2453 | 2453 | $currentUserKey = DB::queryFirstRow( |
| 2454 | 2454 | 'SELECT increment_id |
| 2455 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2455 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2456 | 2456 | WHERE object_id = %i AND user_id = %i', |
| 2457 | 2457 | $record['id'], |
| 2458 | 2458 | $post_user_id |
@@ -2485,7 +2485,7 @@ discard block |
||
| 2485 | 2485 | // SHould we change step? |
| 2486 | 2486 | DB::query( |
| 2487 | 2487 | 'SELECT * |
| 2488 | - FROM ' . prefixTable('items') . ' |
|
| 2488 | + FROM ' . prefixTable('items').' |
|
| 2489 | 2489 | WHERE perso = 0' |
| 2490 | 2490 | ); |
| 2491 | 2491 | |
@@ -2510,15 +2510,15 @@ discard block |
||
| 2510 | 2510 | // Loop on logs |
| 2511 | 2511 | $rows = DB::query( |
| 2512 | 2512 | 'SELECT increment_id |
| 2513 | - FROM ' . prefixTable('log_items') . ' |
|
| 2513 | + FROM ' . prefixTable('log_items').' |
|
| 2514 | 2514 | WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes" |
| 2515 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2515 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2516 | 2516 | ); |
| 2517 | 2517 | foreach ($rows as $record) { |
| 2518 | 2518 | // Get itemKey from current user |
| 2519 | 2519 | $currentUserKey = DB::queryFirstRow( |
| 2520 | 2520 | 'SELECT share_key |
| 2521 | - FROM ' . prefixTable('sharekeys_logs') . ' |
|
| 2521 | + FROM ' . prefixTable('sharekeys_logs').' |
|
| 2522 | 2522 | WHERE object_id = %i AND user_id = %i', |
| 2523 | 2523 | $record['increment_id'], |
| 2524 | 2524 | $session->get('user-id') |
@@ -2550,7 +2550,7 @@ discard block |
||
| 2550 | 2550 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2551 | 2551 | $currentUserKey = DB::queryFirstRow( |
| 2552 | 2552 | 'SELECT increment_id |
| 2553 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2553 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2554 | 2554 | WHERE object_id = %i AND user_id = %i', |
| 2555 | 2555 | $record['id'], |
| 2556 | 2556 | $post_user_id |
@@ -2572,7 +2572,7 @@ discard block |
||
| 2572 | 2572 | // SHould we change step? |
| 2573 | 2573 | DB::query( |
| 2574 | 2574 | 'SELECT increment_id |
| 2575 | - FROM ' . prefixTable('log_items') . ' |
|
| 2575 | + FROM ' . prefixTable('log_items').' |
|
| 2576 | 2576 | WHERE raison LIKE "at_pw :%" AND encryption_type = "teampass_aes"' |
| 2577 | 2577 | ); |
| 2578 | 2578 | |
@@ -2597,15 +2597,15 @@ discard block |
||
| 2597 | 2597 | // Loop on fields |
| 2598 | 2598 | $rows = DB::query( |
| 2599 | 2599 | 'SELECT id |
| 2600 | - FROM ' . prefixTable('categories_items') . ' |
|
| 2600 | + FROM ' . prefixTable('categories_items').' |
|
| 2601 | 2601 | WHERE encryption_type = "teampass_aes" |
| 2602 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2602 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2603 | 2603 | ); |
| 2604 | 2604 | foreach ($rows as $record) { |
| 2605 | 2605 | // Get itemKey from current user |
| 2606 | 2606 | $currentUserKey = DB::queryFirstRow( |
| 2607 | 2607 | 'SELECT share_key |
| 2608 | - FROM ' . prefixTable('sharekeys_fields') . ' |
|
| 2608 | + FROM ' . prefixTable('sharekeys_fields').' |
|
| 2609 | 2609 | WHERE object_id = %i AND user_id = %i', |
| 2610 | 2610 | $record['id'], |
| 2611 | 2611 | $session->get('user-id') |
@@ -2637,7 +2637,7 @@ discard block |
||
| 2637 | 2637 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2638 | 2638 | $currentUserKey = DB::queryFirstRow( |
| 2639 | 2639 | 'SELECT increment_id |
| 2640 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2640 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2641 | 2641 | WHERE object_id = %i AND user_id = %i', |
| 2642 | 2642 | $record['id'], |
| 2643 | 2643 | $post_user_id |
@@ -2659,7 +2659,7 @@ discard block |
||
| 2659 | 2659 | // SHould we change step? |
| 2660 | 2660 | DB::query( |
| 2661 | 2661 | 'SELECT * |
| 2662 | - FROM ' . prefixTable('categories_items') . ' |
|
| 2662 | + FROM ' . prefixTable('categories_items').' |
|
| 2663 | 2663 | WHERE encryption_type = "teampass_aes"' |
| 2664 | 2664 | ); |
| 2665 | 2665 | |
@@ -2684,14 +2684,14 @@ discard block |
||
| 2684 | 2684 | // Loop on suggestions |
| 2685 | 2685 | $rows = DB::query( |
| 2686 | 2686 | 'SELECT id |
| 2687 | - FROM ' . prefixTable('suggestion') . ' |
|
| 2688 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2687 | + FROM ' . prefixTable('suggestion').' |
|
| 2688 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2689 | 2689 | ); |
| 2690 | 2690 | foreach ($rows as $record) { |
| 2691 | 2691 | // Get itemKey from current user |
| 2692 | 2692 | $currentUserKey = DB::queryFirstRow( |
| 2693 | 2693 | 'SELECT share_key |
| 2694 | - FROM ' . prefixTable('sharekeys_suggestions') . ' |
|
| 2694 | + FROM ' . prefixTable('sharekeys_suggestions').' |
|
| 2695 | 2695 | WHERE object_id = %i AND user_id = %i', |
| 2696 | 2696 | $record['id'], |
| 2697 | 2697 | $session->get('user-id') |
@@ -2723,7 +2723,7 @@ discard block |
||
| 2723 | 2723 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2724 | 2724 | $currentUserKey = DB::queryFirstRow( |
| 2725 | 2725 | 'SELECT increment_id |
| 2726 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2726 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2727 | 2727 | WHERE object_id = %i AND user_id = %i', |
| 2728 | 2728 | $record['id'], |
| 2729 | 2729 | $post_user_id |
@@ -2769,15 +2769,15 @@ discard block |
||
| 2769 | 2769 | // Loop on files |
| 2770 | 2770 | $rows = DB::query( |
| 2771 | 2771 | 'SELECT id |
| 2772 | - FROM ' . prefixTable('files') . ' |
|
| 2773 | - WHERE status = "' . TP_ENCRYPTION_NAME . '" |
|
| 2774 | - LIMIT ' . $post_start . ', ' . $post_length |
|
| 2772 | + FROM ' . prefixTable('files').' |
|
| 2773 | + WHERE status = "' . TP_ENCRYPTION_NAME.'" |
|
| 2774 | + LIMIT ' . $post_start.', '.$post_length |
|
| 2775 | 2775 | ); //aes_encryption |
| 2776 | 2776 | foreach ($rows as $record) { |
| 2777 | 2777 | // Get itemKey from current user |
| 2778 | 2778 | $currentUserKey = DB::queryFirstRow( |
| 2779 | 2779 | 'SELECT share_key |
| 2780 | - FROM ' . prefixTable('sharekeys_files') . ' |
|
| 2780 | + FROM ' . prefixTable('sharekeys_files').' |
|
| 2781 | 2781 | WHERE object_id = %i AND user_id = %i', |
| 2782 | 2782 | $record['id'], |
| 2783 | 2783 | $session->get('user-id') |
@@ -2809,7 +2809,7 @@ discard block |
||
| 2809 | 2809 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2810 | 2810 | $currentUserKey = DB::queryFirstRow( |
| 2811 | 2811 | 'SELECT increment_id |
| 2812 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2812 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2813 | 2813 | WHERE object_id = %i AND user_id = %i', |
| 2814 | 2814 | $record['id'], |
| 2815 | 2815 | $post_user_id |
@@ -2831,8 +2831,8 @@ discard block |
||
| 2831 | 2831 | // SHould we change step? |
| 2832 | 2832 | DB::query( |
| 2833 | 2833 | 'SELECT * |
| 2834 | - FROM ' . prefixTable('files') . ' |
|
| 2835 | - WHERE status = "' . TP_ENCRYPTION_NAME . '"' |
|
| 2834 | + FROM ' . prefixTable('files').' |
|
| 2835 | + WHERE status = "' . TP_ENCRYPTION_NAME.'"' |
|
| 2836 | 2836 | ); |
| 2837 | 2837 | |
| 2838 | 2838 | $next_start = (int) $post_start + (int) $post_length; |
@@ -2865,9 +2865,9 @@ discard block |
||
| 2865 | 2865 | if (count($session->get('user-personal_folders')) > 0) { |
| 2866 | 2866 | $rows = DB::query( |
| 2867 | 2867 | 'SELECT id, pw |
| 2868 | - FROM ' . prefixTable('items') . ' |
|
| 2868 | + FROM ' . prefixTable('items').' |
|
| 2869 | 2869 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type = %s |
| 2870 | - LIMIT ' . $post_start . ', ' . $post_length, |
|
| 2870 | + LIMIT ' . $post_start.', '.$post_length, |
|
| 2871 | 2871 | $session->get('user-personal_folders'), |
| 2872 | 2872 | "defuse" |
| 2873 | 2873 | ); |
@@ -2875,7 +2875,7 @@ discard block |
||
| 2875 | 2875 | // Get itemKey from current user |
| 2876 | 2876 | $currentUserKey = DB::queryFirstRow( |
| 2877 | 2877 | 'SELECT share_key, increment_id |
| 2878 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2878 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2879 | 2879 | WHERE object_id = %i AND user_id = %i', |
| 2880 | 2880 | $record['id'], |
| 2881 | 2881 | $session->get('user-id') |
@@ -2902,7 +2902,7 @@ discard block |
||
| 2902 | 2902 | if ((int) $post_user_id !== (int) $session->get('user-id')) { |
| 2903 | 2903 | $currentUserKey = DB::queryFirstRow( |
| 2904 | 2904 | 'SELECT increment_id |
| 2905 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 2905 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 2906 | 2906 | WHERE object_id = %i AND user_id = %i', |
| 2907 | 2907 | $record['id'], |
| 2908 | 2908 | $post_user_id |
@@ -2925,7 +2925,7 @@ discard block |
||
| 2925 | 2925 | // SHould we change step? |
| 2926 | 2926 | DB::query( |
| 2927 | 2927 | 'SELECT * |
| 2928 | - FROM ' . prefixTable('items') . ' |
|
| 2928 | + FROM ' . prefixTable('items').' |
|
| 2929 | 2929 | WHERE perso = 0' |
| 2930 | 2930 | ); |
| 2931 | 2931 | |
@@ -2953,7 +2953,7 @@ discard block |
||
| 2953 | 2953 | // Check if user exists |
| 2954 | 2954 | $userInfo = DB::queryFirstRow( |
| 2955 | 2955 | 'SELECT public_key, encrypted_psk |
| 2956 | - FROM ' . prefixTable('users') . ' |
|
| 2956 | + FROM ' . prefixTable('users').' |
|
| 2957 | 2957 | WHERE id = %i', |
| 2958 | 2958 | $post_user_id |
| 2959 | 2959 | ); |
@@ -2979,7 +2979,7 @@ discard block |
||
| 2979 | 2979 | if ($post_counterItemsToTreat === -1) { |
| 2980 | 2980 | DB::query( |
| 2981 | 2981 | 'SELECT id |
| 2982 | - FROM ' . prefixTable('items') . ' |
|
| 2982 | + FROM ' . prefixTable('items').' |
|
| 2983 | 2983 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type != %s', |
| 2984 | 2984 | $session->get('user-personal_folders'), |
| 2985 | 2985 | 'teampass_aes' |
@@ -2992,7 +2992,7 @@ discard block |
||
| 2992 | 2992 | // Loop on persoanl items |
| 2993 | 2993 | $rows = DB::query( |
| 2994 | 2994 | 'SELECT id, pw |
| 2995 | - FROM ' . prefixTable('items') . ' |
|
| 2995 | + FROM ' . prefixTable('items').' |
|
| 2996 | 2996 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type != %s |
| 2997 | 2997 | LIMIT ' . $post_length, |
| 2998 | 2998 | $session->get('user-personal_folders'), |
@@ -3036,7 +3036,7 @@ discard block |
||
| 3036 | 3036 | // Loop on files |
| 3037 | 3037 | $rows = DB::query( |
| 3038 | 3038 | 'SELECT id, file |
| 3039 | - FROM ' . prefixTable('files') . ' |
|
| 3039 | + FROM ' . prefixTable('files').' |
|
| 3040 | 3040 | WHERE status != %s |
| 3041 | 3041 | AND id_item = %i', |
| 3042 | 3042 | TP_ENCRYPTION_NAME, |
@@ -3047,13 +3047,13 @@ discard block |
||
| 3047 | 3047 | // Now decrypt the file |
| 3048 | 3048 | prepareFileWithDefuse( |
| 3049 | 3049 | 'decrypt', |
| 3050 | - $SETTINGS['path_to_upload_folder'] . '/' . $record2['file'], |
|
| 3051 | - $SETTINGS['path_to_upload_folder'] . '/' . $record2['file'] . '.delete', |
|
| 3050 | + $SETTINGS['path_to_upload_folder'].'/'.$record2['file'], |
|
| 3051 | + $SETTINGS['path_to_upload_folder'].'/'.$record2['file'].'.delete', |
|
| 3052 | 3052 | $post_user_psk |
| 3053 | 3053 | ); |
| 3054 | 3054 | |
| 3055 | 3055 | // Encrypt the file |
| 3056 | - $encryptedFile = encryptFile($record2['file'] . '.delete', $SETTINGS['path_to_upload_folder']); |
|
| 3056 | + $encryptedFile = encryptFile($record2['file'].'.delete', $SETTINGS['path_to_upload_folder']); |
|
| 3057 | 3057 | |
| 3058 | 3058 | DB::update( |
| 3059 | 3059 | prefixTable('files'), |
@@ -3076,7 +3076,7 @@ discard block |
||
| 3076 | 3076 | ); |
| 3077 | 3077 | |
| 3078 | 3078 | // Unlink original file |
| 3079 | - unlink($SETTINGS['path_to_upload_folder'] . '/' . $record2['file']); |
|
| 3079 | + unlink($SETTINGS['path_to_upload_folder'].'/'.$record2['file']); |
|
| 3080 | 3080 | } |
| 3081 | 3081 | } |
| 3082 | 3082 | |
@@ -3084,7 +3084,7 @@ discard block |
||
| 3084 | 3084 | $next_start = (int) $post_start + (int) $post_length; |
| 3085 | 3085 | DB::query( |
| 3086 | 3086 | 'SELECT id |
| 3087 | - FROM ' . prefixTable('items') . ' |
|
| 3087 | + FROM ' . prefixTable('items').' |
|
| 3088 | 3088 | WHERE perso = 1 AND id_tree IN %ls AND encryption_type != %s', |
| 3089 | 3089 | $session->get('user-personal_folders'), |
| 3090 | 3090 | 'teampass_aes' |
@@ -3154,7 +3154,7 @@ discard block |
||
| 3154 | 3154 | // Get user info |
| 3155 | 3155 | $userData = DB::queryFirstRow( |
| 3156 | 3156 | 'SELECT special, auth_type, is_ready_for_usage, ongoing_process_id, otp_provided, keys_recovery_time |
| 3157 | - FROM ' . prefixTable('users') . ' |
|
| 3157 | + FROM ' . prefixTable('users').' |
|
| 3158 | 3158 | WHERE id = %i', |
| 3159 | 3159 | $post_user_id |
| 3160 | 3160 | ); |
@@ -3201,7 +3201,7 @@ discard block |
||
| 3201 | 3201 | // Get user info |
| 3202 | 3202 | $userData = DB::queryFirstRow( |
| 3203 | 3203 | 'SELECT auth_type, login, private_key |
| 3204 | - FROM ' . prefixTable('users') . ' |
|
| 3204 | + FROM ' . prefixTable('users').' |
|
| 3205 | 3205 | WHERE id = %i', |
| 3206 | 3206 | $post_user_id |
| 3207 | 3207 | ); |
@@ -3251,7 +3251,7 @@ discard block |
||
| 3251 | 3251 | return prepareExchangedData( |
| 3252 | 3252 | array( |
| 3253 | 3253 | 'error' => false, |
| 3254 | - 'message' => $lang->get('done'),'', |
|
| 3254 | + 'message' => $lang->get('done'), '', |
|
| 3255 | 3255 | ), |
| 3256 | 3256 | 'encode' |
| 3257 | 3257 | ); |
@@ -3300,7 +3300,7 @@ discard block |
||
| 3300 | 3300 | // Get user info |
| 3301 | 3301 | $userData = DB::queryFirstRow( |
| 3302 | 3302 | 'SELECT u.auth_type, u.login, u.private_key, u.special |
| 3303 | - FROM ' . prefixTable('users') . ' AS u |
|
| 3303 | + FROM ' . prefixTable('users').' AS u |
|
| 3304 | 3304 | WHERE u.id = %i', |
| 3305 | 3305 | $post_user_id |
| 3306 | 3306 | ); |
@@ -3336,7 +3336,7 @@ discard block |
||
| 3336 | 3336 | return prepareExchangedData( |
| 3337 | 3337 | array( |
| 3338 | 3338 | 'error' => false, |
| 3339 | - 'message' => $lang->get('done'),'', |
|
| 3339 | + 'message' => $lang->get('done'), '', |
|
| 3340 | 3340 | ), |
| 3341 | 3341 | 'encode' |
| 3342 | 3342 | ); |
@@ -3358,8 +3358,8 @@ discard block |
||
| 3358 | 3358 | // Get one itemKey from current user |
| 3359 | 3359 | $currentUserKey = DB::queryFirstRow( |
| 3360 | 3360 | 'SELECT ski.share_key, ski.increment_id, l.id_user |
| 3361 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 3362 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 3361 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 3362 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 3363 | 3363 | WHERE ski.user_id = %i |
| 3364 | 3364 | ORDER BY RAND() |
| 3365 | 3365 | LIMIT 1', |
@@ -3426,8 +3426,8 @@ discard block |
||
| 3426 | 3426 | 'process_type' => 'create_user_keys', |
| 3427 | 3427 | 'arguments' => json_encode([ |
| 3428 | 3428 | 'new_user_id' => (int) $post_user_id, |
| 3429 | - 'new_user_pwd' => cryption($post_previous_pwd, '','encrypt')['string'], |
|
| 3430 | - 'new_user_private_key' => cryption($validPreviousKey['private_key'], '','encrypt')['string'], |
|
| 3429 | + 'new_user_pwd' => cryption($post_previous_pwd, '', 'encrypt')['string'], |
|
| 3430 | + 'new_user_private_key' => cryption($validPreviousKey['private_key'], '', 'encrypt')['string'], |
|
| 3431 | 3431 | 'send_email' => 0, |
| 3432 | 3432 | 'otp_provided_new_value' => 0, |
| 3433 | 3433 | 'user_self_change' => 1, |
@@ -3496,7 +3496,7 @@ discard block |
||
| 3496 | 3496 | id, |
| 3497 | 3497 | private_key, |
| 3498 | 3498 | created_at |
| 3499 | - FROM " . prefixTable('user_private_keys') . " |
|
| 3499 | + FROM " . prefixTable('user_private_keys')." |
|
| 3500 | 3500 | WHERE user_id = %i |
| 3501 | 3501 | ORDER BY created_at DESC, id DESC", |
| 3502 | 3502 | $userId |
@@ -3518,9 +3518,9 @@ discard block |
||
| 3518 | 3518 | // Select one personal item share_key to test decryption |
| 3519 | 3519 | $currentUserItemKey = DB::queryFirstRow( |
| 3520 | 3520 | 'SELECT si.share_key, si.increment_id, l.id_user, i.perso |
| 3521 | - FROM ' . prefixTable('sharekeys_items') . ' AS si |
|
| 3522 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON si.object_id = l.id_item |
|
| 3523 | - INNER JOIN ' . prefixTable('items') . ' AS i ON i.id = l.id_item |
|
| 3521 | + FROM ' . prefixTable('sharekeys_items').' AS si |
|
| 3522 | + INNER JOIN ' . prefixTable('log_items').' AS l ON si.object_id = l.id_item |
|
| 3523 | + INNER JOIN ' . prefixTable('items').' AS i ON i.id = l.id_item |
|
| 3524 | 3524 | WHERE si.user_id = %i AND i.perso = 1 AND si.share_key != "" |
| 3525 | 3525 | ORDER BY RAND() |
| 3526 | 3526 | LIMIT 1', |
@@ -3571,7 +3571,7 @@ discard block |
||
| 3571 | 3571 | $session->get('user-id') |
| 3572 | 3572 | ); |
| 3573 | 3573 | // Return data |
| 3574 | - return '[{"new_value":"' . $session->get('user-session_duration') . '"}]'; |
|
| 3574 | + return '[{"new_value":"'.$session->get('user-session_duration').'"}]'; |
|
| 3575 | 3575 | } |
| 3576 | 3576 | |
| 3577 | 3577 | return '[{"new_value":"expired"}]'; |
@@ -3621,8 +3621,8 @@ discard block |
||
| 3621 | 3621 | { |
| 3622 | 3622 | $personalItems = DB::query( |
| 3623 | 3623 | 'SELECT i.id, i.pw, s.share_key, s.increment_id |
| 3624 | - FROM ' . prefixTable('items') . ' i |
|
| 3625 | - INNER JOIN ' . prefixTable('sharekeys_items') . ' s ON i.id = s.object_id |
|
| 3624 | + FROM ' . prefixTable('items').' i |
|
| 3625 | + INNER JOIN ' . prefixTable('sharekeys_items').' s ON i.id = s.object_id |
|
| 3626 | 3626 | WHERE i.perso = %i |
| 3627 | 3627 | AND s.user_id = %i', |
| 3628 | 3628 | 1, |
@@ -3677,8 +3677,8 @@ discard block |
||
| 3677 | 3677 | if ($skipPasswordChange === true) { |
| 3678 | 3678 | // Remove all sharekeys for personal items |
| 3679 | 3679 | DB::query( |
| 3680 | - 'UPDATE ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 3681 | - INNER JOIN ' . prefixTable('items') . ' AS i ON ski.object_id = i.id |
|
| 3680 | + 'UPDATE '.prefixTable('sharekeys_items').' AS ski |
|
| 3681 | + INNER JOIN ' . prefixTable('items').' AS i ON ski.object_id = i.id |
|
| 3682 | 3682 | SET ski.share_key = "" |
| 3683 | 3683 | WHERE i.perso = 1 |
| 3684 | 3684 | AND ski.user_id = %i', |
@@ -3687,8 +3687,8 @@ discard block |
||
| 3687 | 3687 | |
| 3688 | 3688 | // Remove all sharekeys for personal files |
| 3689 | 3689 | DB::query( |
| 3690 | - 'UPDATE ' . prefixTable('sharekeys_files') . ' AS skf |
|
| 3691 | - INNER JOIN ' . prefixTable('items') . ' AS i ON skf.object_id = i.id |
|
| 3690 | + 'UPDATE '.prefixTable('sharekeys_files').' AS skf |
|
| 3691 | + INNER JOIN ' . prefixTable('items').' AS i ON skf.object_id = i.id |
|
| 3692 | 3692 | SET skf.share_key = "" |
| 3693 | 3693 | WHERE i.perso = 1 |
| 3694 | 3694 | AND skf.user_id = %i', |
@@ -3697,8 +3697,8 @@ discard block |
||
| 3697 | 3697 | |
| 3698 | 3698 | // Remove all sharekeys for personal fields |
| 3699 | 3699 | DB::query( |
| 3700 | - 'UPDATE ' . prefixTable('sharekeys_fields') . ' AS skf |
|
| 3701 | - INNER JOIN ' . prefixTable('items') . ' AS i ON skf.object_id = i.id |
|
| 3700 | + 'UPDATE '.prefixTable('sharekeys_fields').' AS skf |
|
| 3701 | + INNER JOIN ' . prefixTable('items').' AS i ON skf.object_id = i.id |
|
| 3702 | 3702 | SET skf.share_key = "" |
| 3703 | 3703 | WHERE i.perso = 1 |
| 3704 | 3704 | AND skf.user_id = %i', |
@@ -3742,8 +3742,8 @@ discard block |
||
| 3742 | 3742 | 'process_type' => 'create_user_keys', |
| 3743 | 3743 | 'arguments' => json_encode([ |
| 3744 | 3744 | 'new_user_id' => (int) $userId, |
| 3745 | - 'new_user_pwd' => cryption($userCurrentPwd, '','encrypt')['string'], |
|
| 3746 | - 'new_user_private_key' => cryption($validPreviousKey['private_key'], '','encrypt')['string'], |
|
| 3745 | + 'new_user_pwd' => cryption($userCurrentPwd, '', 'encrypt')['string'], |
|
| 3746 | + 'new_user_private_key' => cryption($validPreviousKey['private_key'], '', 'encrypt')['string'], |
|
| 3747 | 3747 | 'send_email' => 0, |
| 3748 | 3748 | 'otp_provided_new_value' => 0, |
| 3749 | 3749 | 'user_self_change' => 1, |
@@ -69,7 +69,7 @@ discard block |
||
| 69 | 69 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('mfa') === false) { |
| 70 | 70 | // Not allowed page |
| 71 | 71 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 72 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 72 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 73 | 73 | exit; |
| 74 | 74 | } |
| 75 | 75 | |
@@ -141,7 +141,7 @@ discard block |
||
| 141 | 141 | $roles = getRolesTitles(); |
| 142 | 142 | foreach ($roles as $role) { |
| 143 | 143 | echo ' |
| 144 | - <option value="' . $role['id'] . '"', in_array($role['id'], $arrRolesMFA) === true ? ' selected' : '', '>' . addslashes($role['title']) . '</option>'; |
|
| 144 | + <option value="' . $role['id'].'"', in_array($role['id'], $arrRolesMFA) === true ? ' selected' : '', '>'.addslashes($role['title']).'</option>'; |
|
| 145 | 145 | } |
| 146 | 146 | ?> |
| 147 | 147 | </select> |
@@ -33,7 +33,7 @@ discard block |
||
| 33 | 33 | use Symfony\Component\HttpFoundation\Request as SymfonyRequest; |
| 34 | 34 | |
| 35 | 35 | // Load functions |
| 36 | -require_once __DIR__. '/includes/config/include.php'; |
|
| 36 | +require_once __DIR__.'/includes/config/include.php'; |
|
| 37 | 37 | require_once __DIR__.'/sources/main.functions.php'; |
| 38 | 38 | |
| 39 | 39 | // init |
@@ -53,10 +53,10 @@ discard block |
||
| 53 | 53 | // Check for existing lock |
| 54 | 54 | $result = DB::queryFirstField( |
| 55 | 55 | 'SELECT 1 |
| 56 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 56 | + FROM ' . prefixTable('auth_failures').' |
|
| 57 | 57 | WHERE unlock_at = ( |
| 58 | 58 | SELECT MAX(unlock_at) |
| 59 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 59 | + FROM ' . prefixTable('auth_failures').' |
|
| 60 | 60 | WHERE unlock_at > %s |
| 61 | 61 | AND source = %s AND value = %s) |
| 62 | 62 | AND unlock_code = %s', |
@@ -2663,7 +2663,7 @@ |
||
| 2663 | 2663 | 'SELECT email, name |
| 2664 | 2664 | FROM '.prefixTable('users').' |
| 2665 | 2665 | WHERE login = %s', |
| 2666 | - $value |
|
| 2666 | + $value |
|
| 2667 | 2667 | ); |
| 2668 | 2668 | |
| 2669 | 2669 | // No valid email address for user |
@@ -2401,7 +2401,9 @@ discard block |
||
| 2401 | 2401 | // Complete $userInfo |
| 2402 | 2402 | $userInfo['has_been_created'] = 1; |
| 2403 | 2403 | |
| 2404 | - if (WIP === true) error_log("--- USER CREATED ---"); |
|
| 2404 | + if (WIP === true) { |
|
| 2405 | + error_log("--- USER CREATED ---"); |
|
| 2406 | + } |
|
| 2405 | 2407 | |
| 2406 | 2408 | return [ |
| 2407 | 2409 | 'error' => false, |
@@ -2437,7 +2439,9 @@ discard block |
||
| 2437 | 2439 | } |
| 2438 | 2440 | |
| 2439 | 2441 | // Oauth2 user already exists and authenticated |
| 2440 | - if (WIP === true) error_log("--- USER AUTHENTICATED ---"); |
|
| 2442 | + if (WIP === true) { |
|
| 2443 | + error_log("--- USER AUTHENTICATED ---"); |
|
| 2444 | + } |
|
| 2441 | 2445 | $userInfo['has_been_created'] = 0; |
| 2442 | 2446 | |
| 2443 | 2447 | $passwordManager = new PasswordManager(); |
@@ -2667,8 +2671,9 @@ discard block |
||
| 2667 | 2671 | ); |
| 2668 | 2672 | |
| 2669 | 2673 | // No valid email address for user |
| 2670 | - if (!$userInfos || !filter_var($userInfos['email'], FILTER_VALIDATE_EMAIL)) |
|
| 2671 | - return; |
|
| 2674 | + if (!$userInfos || !filter_var($userInfos['email'], FILTER_VALIDATE_EMAIL)) { |
|
| 2675 | + return; |
|
| 2676 | + } |
|
| 2672 | 2677 | |
| 2673 | 2678 | $unlock_url = $SETTINGS['cpassman_url'].'/self-unlock.php?login='.$value.'&otp='.$unlock_code; |
| 2674 | 2679 | |
@@ -147,7 +147,7 @@ discard block |
||
| 147 | 147 | $sessionPwdAttempts = $session->get('pwd_attempts'); |
| 148 | 148 | $sessionUrl = $session->get('user-initial_url'); |
| 149 | 149 | $server = []; |
| 150 | - $server['PHP_AUTH_USER'] = $request->getUser(); |
|
| 150 | + $server['PHP_AUTH_USER'] = $request->getUser(); |
|
| 151 | 151 | $server['PHP_AUTH_PW'] = $request->getPassword(); |
| 152 | 152 | |
| 153 | 153 | // decrypt and retreive data in JSON format |
@@ -167,18 +167,18 @@ discard block |
||
| 167 | 167 | } |
| 168 | 168 | |
| 169 | 169 | // Check if Duo auth is in progress and pass the pw and login back to the standard login process |
| 170 | - if( |
|
| 170 | + if ( |
|
| 171 | 171 | isKeyExistingAndEqual('duo', 1, $SETTINGS) === true |
| 172 | 172 | && $dataReceived['user_2fa_selection'] === 'duo' |
| 173 | 173 | && $session->get('user-duo_status') === 'IN_PROGRESS' |
| 174 | 174 | && !empty($dataReceived['duo_state']) |
| 175 | - ){ |
|
| 175 | + ) { |
|
| 176 | 176 | $key = hash('sha256', $dataReceived['duo_state']); |
| 177 | 177 | $iv = substr(hash('sha256', $dataReceived['duo_state']), 0, 16); |
| 178 | 178 | $duo_data_dec = openssl_decrypt(base64_decode($session->get('user-duo_data')), 'AES-256-CBC', $key, 0, $iv); |
| 179 | 179 | // Clear the data from the Duo process to continue clean with the standard login process |
| 180 | - $session->set('user-duo_data',''); |
|
| 181 | - if($duo_data_dec === false) { |
|
| 180 | + $session->set('user-duo_data', ''); |
|
| 181 | + if ($duo_data_dec === false) { |
|
| 182 | 182 | // Add failed authentication log |
| 183 | 183 | addFailedAuthentication(filter_var($dataReceived['login'], FILTER_SANITIZE_FULL_SPECIAL_CHARS), getClientIpServer()); |
| 184 | 184 | |
@@ -196,7 +196,7 @@ discard block |
||
| 196 | 196 | $dataReceived['login'] = $duo_data['duo_login']; |
| 197 | 197 | } |
| 198 | 198 | |
| 199 | - if(isset($dataReceived['pw']) === false || isset($dataReceived['login']) === false) { |
|
| 199 | + if (isset($dataReceived['pw']) === false || isset($dataReceived['login']) === false) { |
|
| 200 | 200 | echo json_encode([ |
| 201 | 201 | 'data' => prepareExchangedData( |
| 202 | 202 | [ |
@@ -559,7 +559,7 @@ discard block |
||
| 559 | 559 | } |
| 560 | 560 | // Append with roles from AD groups |
| 561 | 561 | if (is_null($userInfo['roles_from_ad_groups']) === false) { |
| 562 | - $userInfo['fonction_id'] = empty($userInfo['fonction_id']) === true ? $userInfo['roles_from_ad_groups'] : $userInfo['fonction_id']. ';' . $userInfo['roles_from_ad_groups']; |
|
| 562 | + $userInfo['fonction_id'] = empty($userInfo['fonction_id']) === true ? $userInfo['roles_from_ad_groups'] : $userInfo['fonction_id'].';'.$userInfo['roles_from_ad_groups']; |
|
| 563 | 563 | } |
| 564 | 564 | // store |
| 565 | 565 | $session->set('user-roles', $userInfo['fonction_id']); |
@@ -571,7 +571,7 @@ discard block |
||
| 571 | 571 | if (count($session->get('user-roles_array')) > 0) { |
| 572 | 572 | $rolesList = DB::query( |
| 573 | 573 | 'SELECT id, title, complexity |
| 574 | - FROM ' . prefixTable('roles_title') . ' |
|
| 574 | + FROM ' . prefixTable('roles_title').' |
|
| 575 | 575 | WHERE id IN %li', |
| 576 | 576 | $session->get('user-roles_array') |
| 577 | 577 | ); |
@@ -617,7 +617,7 @@ discard block |
||
| 617 | 617 | if ($adjustPermissions) { |
| 618 | 618 | $session->set('user-admin', (int) $userInfo['admin']); |
| 619 | 619 | $session->set('user-manager', (int) $userInfo['gestionnaire']); |
| 620 | - $session->set('user-can_manage_all_users',(int) $userInfo['can_manage_all_users']); |
|
| 620 | + $session->set('user-can_manage_all_users', (int) $userInfo['can_manage_all_users']); |
|
| 621 | 621 | $session->set('user-read_only', (int) $userInfo['read_only']); |
| 622 | 622 | DB::update( |
| 623 | 623 | prefixTable('users'), |
@@ -686,10 +686,10 @@ discard block |
||
| 686 | 686 | // Get last seen items |
| 687 | 687 | $session->set('user-nb_roles', 0); |
| 688 | 688 | foreach ($session->get('user-latest_items') as $item) { |
| 689 | - if (! empty($item)) { |
|
| 689 | + if (!empty($item)) { |
|
| 690 | 690 | $dataLastItems = DB::queryFirstRow( |
| 691 | 691 | 'SELECT id,label,id_tree |
| 692 | - FROM ' . prefixTable('items') . ' |
|
| 692 | + FROM ' . prefixTable('items').' |
|
| 693 | 693 | WHERE id=%i', |
| 694 | 694 | $item |
| 695 | 695 | ); |
@@ -699,7 +699,7 @@ discard block |
||
| 699 | 699 | // Get cahce tree info |
| 700 | 700 | $cacheTreeData = DB::queryFirstRow( |
| 701 | 701 | 'SELECT visible_folders |
| 702 | - FROM ' . prefixTable('cache_tree') . ' |
|
| 702 | + FROM ' . prefixTable('cache_tree').' |
|
| 703 | 703 | WHERE user_id=%i', |
| 704 | 704 | (int) $session->get('user-id') |
| 705 | 705 | ); |
@@ -731,7 +731,7 @@ discard block |
||
| 731 | 731 | && (int) $sessionAdmin !== 1 |
| 732 | 732 | ) { |
| 733 | 733 | // get all Admin users |
| 734 | - $val = DB::queryFirstRow('SELECT email FROM ' . prefixTable('users') . " WHERE admin = %i and email != ''", 1); |
|
| 734 | + $val = DB::queryFirstRow('SELECT email FROM '.prefixTable('users')." WHERE admin = %i and email != ''", 1); |
|
| 735 | 735 | if (DB::count() > 0) { |
| 736 | 736 | // Add email to table |
| 737 | 737 | prepareSendingEmail( |
@@ -743,7 +743,7 @@ discard block |
||
| 743 | 743 | '#tp_time#', |
| 744 | 744 | ], |
| 745 | 745 | [ |
| 746 | - ' ' . $session->get('user-login') . ' (IP: ' . getClientIpServer() . ')', |
|
| 746 | + ' '.$session->get('user-login').' (IP: '.getClientIpServer().')', |
|
| 747 | 747 | date($SETTINGS['date_format'], (int) $session->get('user-last_connection')), |
| 748 | 748 | date($SETTINGS['time_format'], (int) $session->get('user-last_connection')), |
| 749 | 749 | ], |
@@ -855,7 +855,7 @@ discard block |
||
| 855 | 855 | { |
| 856 | 856 | $rows = DB::query( |
| 857 | 857 | 'SELECT date |
| 858 | - FROM ' . prefixTable('log_system') . " |
|
| 858 | + FROM ' . prefixTable('log_system')." |
|
| 859 | 859 | WHERE field_1 = %s |
| 860 | 860 | AND type = 'failed_auth' |
| 861 | 861 | AND label = 'password_is_not_correct' |
@@ -869,7 +869,7 @@ discard block |
||
| 869 | 869 | foreach ($rows as $record) { |
| 870 | 870 | array_push( |
| 871 | 871 | $arrAttempts, |
| 872 | - date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $record['date']) |
|
| 872 | + date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $record['date']) |
|
| 873 | 873 | ); |
| 874 | 874 | } |
| 875 | 875 | } |
@@ -904,7 +904,7 @@ discard block |
||
| 904 | 904 | $ldapConnection |
| 905 | 905 | ) : bool |
| 906 | 906 | { |
| 907 | - include_once $SETTINGS['cpassman_dir'] . '/sources/main.functions.php'; |
|
| 907 | + include_once $SETTINGS['cpassman_dir'].'/sources/main.functions.php'; |
|
| 908 | 908 | |
| 909 | 909 | if ((int) $userInfoDisabled === 1) { |
| 910 | 910 | return false; |
@@ -992,7 +992,7 @@ discard block |
||
| 992 | 992 | // If user has seed but no backup, create it on first successful login |
| 993 | 993 | if (!empty($userInfo['user_derivation_seed']) && empty($userInfo['private_key_backup'])) { |
| 994 | 994 | if (defined('LOG_TO_SERVER') && LOG_TO_SERVER === true) { |
| 995 | - error_log('TEAMPASS Transparent Recovery - Creating backup for user ' . ($userInfo['login'] ?? 'unknown')); |
|
| 995 | + error_log('TEAMPASS Transparent Recovery - Creating backup for user '.($userInfo['login'] ?? 'unknown')); |
|
| 996 | 996 | } |
| 997 | 997 | |
| 998 | 998 | $derivedKey = deriveBackupKey($userInfo['user_derivation_seed'], $userInfo['public_key'], $SETTINGS); |
@@ -1163,7 +1163,7 @@ discard block |
||
| 1163 | 1163 | } catch (Exception $e) { |
| 1164 | 1164 | return [ |
| 1165 | 1165 | 'error' => true, |
| 1166 | - 'message' => "Error: " . $e->getMessage(), |
|
| 1166 | + 'message' => "Error: ".$e->getMessage(), |
|
| 1167 | 1167 | ]; |
| 1168 | 1168 | } |
| 1169 | 1169 | } |
@@ -1194,7 +1194,7 @@ discard block |
||
| 1194 | 1194 | 'type' => 'OpenLDAP' |
| 1195 | 1195 | ]; |
| 1196 | 1196 | default: |
| 1197 | - throw new Exception("Unsupported LDAP type: " . $SETTINGS['ldap_type']); |
|
| 1197 | + throw new Exception("Unsupported LDAP type: ".$SETTINGS['ldap_type']); |
|
| 1198 | 1198 | } |
| 1199 | 1199 | } |
| 1200 | 1200 | |
@@ -1331,7 +1331,7 @@ discard block |
||
| 1331 | 1331 | ); |
| 1332 | 1332 | } |
| 1333 | 1333 | |
| 1334 | - throw new Exception("Unsupported LDAP type: " . $ldapHandler['type']); |
|
| 1334 | + throw new Exception("Unsupported LDAP type: ".$ldapHandler['type']); |
|
| 1335 | 1335 | } |
| 1336 | 1336 | |
| 1337 | 1337 | /** |
@@ -1348,12 +1348,12 @@ discard block |
||
| 1348 | 1348 | if (isset($SETTINGS['enable_ad_users_with_ad_groups']) === true && (int) $SETTINGS['enable_ad_users_with_ad_groups'] === 1) { |
| 1349 | 1349 | // Get user groups from AD |
| 1350 | 1350 | $user_ad_groups = []; |
| 1351 | - foreach($groups as $group) { |
|
| 1351 | + foreach ($groups as $group) { |
|
| 1352 | 1352 | //print_r($group); |
| 1353 | 1353 | // get relation role id for AD group |
| 1354 | 1354 | $role = DB::queryFirstRow( |
| 1355 | 1355 | 'SELECT lgr.role_id |
| 1356 | - FROM ' . prefixTable('ldap_groups_roles') . ' AS lgr |
|
| 1356 | + FROM ' . prefixTable('ldap_groups_roles').' AS lgr |
|
| 1357 | 1357 | WHERE lgr.ldap_group_id = %s', |
| 1358 | 1358 | $group |
| 1359 | 1359 | ); |
@@ -1416,7 +1416,7 @@ discard block |
||
| 1416 | 1416 | $passwordManager = new PasswordManager(); |
| 1417 | 1417 | |
| 1418 | 1418 | // Migrate password if needed |
| 1419 | - $result = $passwordManager->migratePassword( |
|
| 1419 | + $result = $passwordManager->migratePassword( |
|
| 1420 | 1420 | $userInfo['pw'], |
| 1421 | 1421 | $passwordClear, |
| 1422 | 1422 | (int) $userInfo['id'] |
@@ -1490,7 +1490,7 @@ discard block |
||
| 1490 | 1490 | // Check if exists in DB |
| 1491 | 1491 | $groupData = DB::queryFirstRow( |
| 1492 | 1492 | 'SELECT id |
| 1493 | - FROM ' . prefixTable('roles_title') . ' |
|
| 1493 | + FROM ' . prefixTable('roles_title').' |
|
| 1494 | 1494 | WHERE title = %s', |
| 1495 | 1495 | $group["displayName"] |
| 1496 | 1496 | ); |
@@ -1639,7 +1639,7 @@ discard block |
||
| 1639 | 1639 | |
| 1640 | 1640 | // generate new QR |
| 1641 | 1641 | $new_2fa_qr = $tfa->getQRCodeImageAsDataUri( |
| 1642 | - 'Teampass - ' . $username, |
|
| 1642 | + 'Teampass - '.$username, |
|
| 1643 | 1643 | $userInfo['ga'] |
| 1644 | 1644 | ); |
| 1645 | 1645 | // clear temporary code from DB |
@@ -1652,7 +1652,7 @@ discard block |
||
| 1652 | 1652 | $userInfo['id'] |
| 1653 | 1653 | ); |
| 1654 | 1654 | $firstTime = [ |
| 1655 | - 'value' => '<img src="' . $new_2fa_qr . '">', |
|
| 1655 | + 'value' => '<img src="'.$new_2fa_qr.'">', |
|
| 1656 | 1656 | 'user_admin' => isset($sessionAdmin) ? (int) $sessionAdmin : '', |
| 1657 | 1657 | 'initial_url' => isset($sessionUrl) === true ? $sessionUrl : '', |
| 1658 | 1658 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
@@ -1808,7 +1808,7 @@ discard block |
||
| 1808 | 1808 | }*/ |
| 1809 | 1809 | return [ |
| 1810 | 1810 | 'error' => true, |
| 1811 | - 'message' => $duo_error . $lang->get('duo_error_check_config'), |
|
| 1811 | + 'message' => $duo_error.$lang->get('duo_error_check_config'), |
|
| 1812 | 1812 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
| 1813 | 1813 | 'debug_message' => $e->getMessage(), |
| 1814 | 1814 | 'proceedIdentification' => false, |
@@ -1824,7 +1824,7 @@ discard block |
||
| 1824 | 1824 | } catch (DuoException $e) { |
| 1825 | 1825 | return [ |
| 1826 | 1826 | 'error' => true, |
| 1827 | - 'message' => $duo_error . $lang->get('duo_error_url'), |
|
| 1827 | + 'message' => $duo_error.$lang->get('duo_error_url'), |
|
| 1828 | 1828 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
| 1829 | 1829 | 'debug_message' => $e->getMessage(), |
| 1830 | 1830 | 'proceedIdentification' => false, |
@@ -1832,7 +1832,7 @@ discard block |
||
| 1832 | 1832 | } |
| 1833 | 1833 | |
| 1834 | 1834 | // Somethimes Duo return success but fail to return a URL, double check if the URL has been created |
| 1835 | - if (!empty($duo_redirect_url) && filter_var($duo_redirect_url,FILTER_SANITIZE_URL)) { |
|
| 1835 | + if (!empty($duo_redirect_url) && filter_var($duo_redirect_url, FILTER_SANITIZE_URL)) { |
|
| 1836 | 1836 | // Since Duo Universal requires a redirect, let's store some info when the user get's back after completing the Duo prompt |
| 1837 | 1837 | $key = hash('sha256', $duo_state); |
| 1838 | 1838 | $iv = substr(hash('sha256', $duo_state), 0, 16); |
@@ -1860,7 +1860,7 @@ discard block |
||
| 1860 | 1860 | } else { |
| 1861 | 1861 | return [ |
| 1862 | 1862 | 'error' => true, |
| 1863 | - 'message' => $duo_error . $lang->get('duo_error_url'), |
|
| 1863 | + 'message' => $duo_error.$lang->get('duo_error_url'), |
|
| 1864 | 1864 | 'pwd_attempts' => (int) $sessionPwdAttempts, |
| 1865 | 1865 | 'proceedIdentification' => false, |
| 1866 | 1866 | ]; |
@@ -1881,8 +1881,8 @@ discard block |
||
| 1881 | 1881 | // return the response (which should be the user name) |
| 1882 | 1882 | if ($decoded_token['preferred_username'] === $username) { |
| 1883 | 1883 | $session->set('user-duo_status', 'COMPLET'); |
| 1884 | - $session->set('user-duo_state',''); |
|
| 1885 | - $session->set('user-duo_data',''); |
|
| 1884 | + $session->set('user-duo_state', ''); |
|
| 1885 | + $session->set('user-duo_data', ''); |
|
| 1886 | 1886 | $session->set('user-login', $username); |
| 1887 | 1887 | |
| 1888 | 1888 | return [ |
@@ -1893,9 +1893,9 @@ discard block |
||
| 1893 | 1893 | ]; |
| 1894 | 1894 | } else { |
| 1895 | 1895 | // Something wrong, username from the original Duo request is different than the one received now |
| 1896 | - $session->set('user-duo_status',''); |
|
| 1897 | - $session->set('user-duo_state',''); |
|
| 1898 | - $session->set('user-duo_data',''); |
|
| 1896 | + $session->set('user-duo_status', ''); |
|
| 1897 | + $session->set('user-duo_state', ''); |
|
| 1898 | + $session->set('user-duo_data', ''); |
|
| 1899 | 1899 | |
| 1900 | 1900 | return [ |
| 1901 | 1901 | 'error' => true, |
@@ -1906,9 +1906,9 @@ discard block |
||
| 1906 | 1906 | } |
| 1907 | 1907 | } |
| 1908 | 1908 | // If we are here something wrong |
| 1909 | - $session->set('user-duo_status',''); |
|
| 1910 | - $session->set('user-duo_state',''); |
|
| 1911 | - $session->set('user-duo_data',''); |
|
| 1909 | + $session->set('user-duo_status', ''); |
|
| 1910 | + $session->set('user-duo_state', ''); |
|
| 1911 | + $session->set('user-duo_data', ''); |
|
| 1912 | 1912 | return [ |
| 1913 | 1913 | 'error' => true, |
| 1914 | 1914 | 'message' => $lang->get('duo_login_mismatch'), |
@@ -2027,7 +2027,7 @@ discard block |
||
| 2027 | 2027 | // Check for existing lock |
| 2028 | 2028 | $unlock_at = DB::queryFirstField( |
| 2029 | 2029 | 'SELECT MAX(unlock_at) |
| 2030 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 2030 | + FROM ' . prefixTable('auth_failures').' |
|
| 2031 | 2031 | WHERE unlock_at > %s |
| 2032 | 2032 | AND ((source = %s AND value = %s) OR (source = %s AND value = %s))', |
| 2033 | 2033 | date('Y-m-d H:i:s', time()), |
@@ -2049,8 +2049,8 @@ discard block |
||
| 2049 | 2049 | // Get user info from DB |
| 2050 | 2050 | $data = DB::queryFirstRow( |
| 2051 | 2051 | 'SELECT u.*, a.value AS api_key |
| 2052 | - FROM ' . prefixTable('users') . ' AS u |
|
| 2053 | - LEFT JOIN ' . prefixTable('api') . ' AS a ON (u.id = a.user_id) |
|
| 2052 | + FROM ' . prefixTable('users').' AS u |
|
| 2053 | + LEFT JOIN ' . prefixTable('api').' AS a ON (u.id = a.user_id) |
|
| 2054 | 2054 | WHERE login = %s AND deleted_at IS NULL', |
| 2055 | 2055 | $login |
| 2056 | 2056 | ); |
@@ -2168,7 +2168,7 @@ discard block |
||
| 2168 | 2168 | 'array' => [ |
| 2169 | 2169 | 'value' => 'bruteforce_wait', |
| 2170 | 2170 | 'error' => true, |
| 2171 | - 'message' => $lang->get('bruteforce_wait') . (string) $e->getMessage(), |
|
| 2171 | + 'message' => $lang->get('bruteforce_wait').(string) $e->getMessage(), |
|
| 2172 | 2172 | ] |
| 2173 | 2173 | ]; |
| 2174 | 2174 | } |
@@ -2273,7 +2273,7 @@ discard block |
||
| 2273 | 2273 | // Clean previous failed attempts |
| 2274 | 2274 | $failedTasks = DB::query( |
| 2275 | 2275 | 'SELECT increment_id |
| 2276 | - FROM ' . prefixTable('background_tasks') . ' |
|
| 2276 | + FROM ' . prefixTable('background_tasks').' |
|
| 2277 | 2277 | WHERE process_type = %s |
| 2278 | 2278 | AND JSON_EXTRACT(arguments, "$.new_user_id") = %i |
| 2279 | 2279 | AND status = %s', |
@@ -2390,7 +2390,7 @@ discard block |
||
| 2390 | 2390 | $userKeys['public_key'] |
| 2391 | 2391 | ); |
| 2392 | 2392 | }*/ |
| 2393 | - error_log('Switch user ' . $username . ' auth_type to oauth2'); |
|
| 2393 | + error_log('Switch user '.$username.' auth_type to oauth2'); |
|
| 2394 | 2394 | // Update user in database: |
| 2395 | 2395 | DB::update( |
| 2396 | 2396 | prefixTable('users'), |
@@ -2614,12 +2614,12 @@ discard block |
||
| 2614 | 2614 | { |
| 2615 | 2615 | // Find the latest "create_user_keys" task for the given user_id |
| 2616 | 2616 | $latestTask = DB::queryFirstRow( |
| 2617 | - 'SELECT arguments, status FROM ' . prefixTable('background_tasks') . ' |
|
| 2617 | + 'SELECT arguments, status FROM '.prefixTable('background_tasks').' |
|
| 2618 | 2618 | WHERE process_type = %s |
| 2619 | 2619 | AND arguments LIKE %s |
| 2620 | 2620 | ORDER BY increment_id DESC |
| 2621 | 2621 | LIMIT 1', |
| 2622 | - 'create_user_keys', '%"new_user_id":' . $userId . '%' |
|
| 2622 | + 'create_user_keys', '%"new_user_id":'.$userId.'%' |
|
| 2623 | 2623 | ); |
| 2624 | 2624 | |
| 2625 | 2625 | // If a failed task is found, return an error message |
@@ -2831,15 +2831,15 @@ discard block |
||
| 2831 | 2831 | |
| 2832 | 2832 | if ($ret['error'] !== false) { |
| 2833 | 2833 | logEvents($SETTINGS, 'failed_auth', 'bad_duo_mfa', '', stripslashes($username), stripslashes($username)); |
| 2834 | - $session->set('user-duo_status',''); |
|
| 2835 | - $session->set('user-duo_state',''); |
|
| 2836 | - $session->set('user-duo_data',''); |
|
| 2834 | + $session->set('user-duo_status', ''); |
|
| 2835 | + $session->set('user-duo_state', ''); |
|
| 2836 | + $session->set('user-duo_data', ''); |
|
| 2837 | 2837 | return [ |
| 2838 | 2838 | 'error' => true, |
| 2839 | 2839 | 'mfaData' => $ret, |
| 2840 | 2840 | 'mfaQRCodeInfos' => false, |
| 2841 | 2841 | ]; |
| 2842 | - } else if ($ret['duo_url_ready'] === true){ |
|
| 2842 | + } else if ($ret['duo_url_ready'] === true) { |
|
| 2843 | 2843 | return [ |
| 2844 | 2844 | 'error' => false, |
| 2845 | 2845 | 'mfaData' => $ret, |
@@ -2903,7 +2903,7 @@ discard block |
||
| 2903 | 2903 | // Count failed attempts from this source |
| 2904 | 2904 | $count = DB::queryFirstField( |
| 2905 | 2905 | 'SELECT COUNT(*) |
| 2906 | - FROM ' . prefixTable('auth_failures') . ' |
|
| 2906 | + FROM ' . prefixTable('auth_failures').' |
|
| 2907 | 2907 | WHERE source = %s AND value = %s', |
| 2908 | 2908 | $source, |
| 2909 | 2909 | $value |
@@ -73,7 +73,7 @@ discard block |
||
| 73 | 73 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('profile') === false) { |
| 74 | 74 | // Not allowed page |
| 75 | 75 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 76 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 76 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 77 | 77 | exit; |
| 78 | 78 | } |
| 79 | 79 | ?> |
@@ -97,7 +97,7 @@ discard block |
||
| 97 | 97 | }) |
| 98 | 98 | |
| 99 | 99 | // Select user properties |
| 100 | - $('#profile-user-language option[value=<?php echo $session->get('user-language');?>').attr('selected','selected'); |
|
| 100 | + $('#profile-user-language option[value=<?php echo $session->get('user-language'); ?>').attr('selected','selected'); |
|
| 101 | 101 | |
| 102 | 102 | |
| 103 | 103 | // AVATAR IMPORT |
@@ -295,7 +295,7 @@ discard block |
||
| 295 | 295 | |
| 296 | 296 | // reload page in case of language change |
| 297 | 297 | if ($('#profile-user-language').val() |
| 298 | - && $('#profile-user-language').val().toLowerCase() !== '<?php echo $session->get('user-language');?>') { |
|
| 298 | + && $('#profile-user-language').val().toLowerCase() !== '<?php echo $session->get('user-language'); ?>') { |
|
| 299 | 299 | // prepare reload |
| 300 | 300 | $(this).delay(3000).queue(function() { |
| 301 | 301 | document.location.href = "index.php?page=profile"; |
@@ -306,7 +306,7 @@ discard block |
||
| 306 | 306 | // Inform user |
| 307 | 307 | toastr.remove(); |
| 308 | 308 | toastr.info( |
| 309 | - '<?php echo $lang->get('alert_page_will_reload') . ' ... ' . $lang->get('please_wait'); ?>', |
|
| 309 | + '<?php echo $lang->get('alert_page_will_reload').' ... '.$lang->get('please_wait'); ?>', |
|
| 310 | 310 | '', { |
| 311 | 311 | timeOut: 3000, |
| 312 | 312 | progressBar: true |
@@ -410,27 +410,27 @@ discard block |
||
| 410 | 410 | "defaultText": "<?php echo $lang->get('index_pw_level_txt'); ?>", |
| 411 | 411 | "ratings": [ |
| 412 | 412 | { |
| 413 | - "minScore": <?php echo TP_PW_STRENGTH_1;?>, |
|
| 413 | + "minScore": <?php echo TP_PW_STRENGTH_1; ?>, |
|
| 414 | 414 | "className": "meterWarn", |
| 415 | 415 | "text": "<?php echo $lang->get('complex_level1'); ?>" |
| 416 | 416 | }, |
| 417 | 417 | { |
| 418 | - "minScore": <?php echo TP_PW_STRENGTH_2;?>, |
|
| 418 | + "minScore": <?php echo TP_PW_STRENGTH_2; ?>, |
|
| 419 | 419 | "className": "meterWarn", |
| 420 | 420 | "text": "<?php echo $lang->get('complex_level2'); ?>" |
| 421 | 421 | }, |
| 422 | 422 | { |
| 423 | - "minScore": <?php echo TP_PW_STRENGTH_3;?>, |
|
| 423 | + "minScore": <?php echo TP_PW_STRENGTH_3; ?>, |
|
| 424 | 424 | "className": "meterGood", |
| 425 | 425 | "text": "<?php echo $lang->get('complex_level3'); ?>" |
| 426 | 426 | }, |
| 427 | 427 | { |
| 428 | - "minScore": <?php echo TP_PW_STRENGTH_4;?>, |
|
| 428 | + "minScore": <?php echo TP_PW_STRENGTH_4; ?>, |
|
| 429 | 429 | "className": "meterGood", |
| 430 | 430 | "text": "<?php echo $lang->get('complex_level4'); ?>" |
| 431 | 431 | }, |
| 432 | 432 | { |
| 433 | - "minScore": <?php echo TP_PW_STRENGTH_5;?>, |
|
| 433 | + "minScore": <?php echo TP_PW_STRENGTH_5; ?>, |
|
| 434 | 434 | "className": "meterExcel", |
| 435 | 435 | "text": "<?php echo $lang->get('complex_level5'); ?>" |
| 436 | 436 | } |
@@ -523,27 +523,27 @@ discard block |
||
| 523 | 523 | "defaultText": "<?php echo $lang->get('index_pw_level_txt'); ?>", |
| 524 | 524 | "ratings": [ |
| 525 | 525 | { |
| 526 | - "minScore": <?php echo TP_PW_STRENGTH_1;?>, |
|
| 526 | + "minScore": <?php echo TP_PW_STRENGTH_1; ?>, |
|
| 527 | 527 | "className": "meterWarn", |
| 528 | 528 | "text": "<?php echo $lang->get('complex_level1'); ?>" |
| 529 | 529 | }, |
| 530 | 530 | { |
| 531 | - "minScore": <?php echo TP_PW_STRENGTH_2;?>, |
|
| 531 | + "minScore": <?php echo TP_PW_STRENGTH_2; ?>, |
|
| 532 | 532 | "className": "meterWarn", |
| 533 | 533 | "text": "<?php echo $lang->get('complex_level2'); ?>" |
| 534 | 534 | }, |
| 535 | 535 | { |
| 536 | - "minScore": <?php echo TP_PW_STRENGTH_3;?>, |
|
| 536 | + "minScore": <?php echo TP_PW_STRENGTH_3; ?>, |
|
| 537 | 537 | "className": "meterGood", |
| 538 | 538 | "text": "<?php echo $lang->get('complex_level3'); ?>" |
| 539 | 539 | }, |
| 540 | 540 | { |
| 541 | - "minScore": <?php echo TP_PW_STRENGTH_4;?>, |
|
| 541 | + "minScore": <?php echo TP_PW_STRENGTH_4; ?>, |
|
| 542 | 542 | "className": "meterGood", |
| 543 | 543 | "text": "<?php echo $lang->get('complex_level4'); ?>" |
| 544 | 544 | }, |
| 545 | 545 | { |
| 546 | - "minScore": <?php echo TP_PW_STRENGTH_5;?>, |
|
| 546 | + "minScore": <?php echo TP_PW_STRENGTH_5; ?>, |
|
| 547 | 547 | "className": "meterExcel", |
| 548 | 548 | "text": "<?php echo $lang->get('complex_level5'); ?>" |
| 549 | 549 | } |
@@ -559,7 +559,7 @@ discard block |
||
| 559 | 559 | } |
| 560 | 560 | }); |
| 561 | 561 | |
| 562 | - $('#profile-keys_download-date').text('<?php echo null === $session->get('user-keys_recovery_time') ? $lang->get('none') : date($SETTINGS['date_format'] . ' ' . $SETTINGS['time_format'], (int) $session->get('user-keys_recovery_time')); ?>'); |
|
| 562 | + $('#profile-keys_download-date').text('<?php echo null === $session->get('user-keys_recovery_time') ? $lang->get('none') : date($SETTINGS['date_format'].' '.$SETTINGS['time_format'], (int) $session->get('user-keys_recovery_time')); ?>'); |
|
| 563 | 563 | |
| 564 | 564 | $("#open-dialog-keys-download").on('click', function(event) { |
| 565 | 565 | event.preventDefault(); |
@@ -69,7 +69,7 @@ discard block |
||
| 69 | 69 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('items') === false) { |
| 70 | 70 | // Not allowed page |
| 71 | 71 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 72 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 72 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 73 | 73 | exit; |
| 74 | 74 | } |
| 75 | 75 | // Define Timezone |
@@ -90,7 +90,7 @@ discard block |
||
| 90 | 90 | |
| 91 | 91 | // Get list of users |
| 92 | 92 | $usersList = []; |
| 93 | -$rows = DB::query('SELECT id,login,email FROM ' . prefixTable('users') . ' ORDER BY login ASC'); |
|
| 93 | +$rows = DB::query('SELECT id,login,email FROM '.prefixTable('users').' ORDER BY login ASC'); |
|
| 94 | 94 | foreach ($rows as $record) { |
| 95 | 95 | $usersList[$record['login']] = [ |
| 96 | 96 | 'id' => $record['id'], |
@@ -101,16 +101,16 @@ discard block |
||
| 101 | 101 | // Get list of roles |
| 102 | 102 | $arrRoles = []; |
| 103 | 103 | $listRoles = ''; |
| 104 | -$rows = DB::query('SELECT id,title FROM ' . prefixTable('roles_title') . ' ORDER BY title ASC'); |
|
| 104 | +$rows = DB::query('SELECT id,title FROM '.prefixTable('roles_title').' ORDER BY title ASC'); |
|
| 105 | 105 | foreach ($rows as $reccord) { |
| 106 | 106 | $arrRoles[$reccord['title']] = [ |
| 107 | 107 | 'id' => $reccord['id'], |
| 108 | 108 | 'title' => $reccord['title'], |
| 109 | 109 | ]; |
| 110 | 110 | if (empty($listRoles)) { |
| 111 | - $listRoles = $reccord['id'] . '#' . $reccord['title']; |
|
| 111 | + $listRoles = $reccord['id'].'#'.$reccord['title']; |
|
| 112 | 112 | } else { |
| 113 | - $listRoles .= ';' . $reccord['id'] . '#' . $reccord['title']; |
|
| 113 | + $listRoles .= ';'.$reccord['id'].'#'.$reccord['title']; |
|
| 114 | 114 | } |
| 115 | 115 | } |
| 116 | 116 | |
@@ -185,7 +185,7 @@ discard block |
||
| 185 | 185 | <li class="nav-item"><a class="nav-link" href="#tab_3" data-toggle="tab"><i class="fa-solid fa-archive mr-2"></i><?php echo $lang->get('attachments'); ?></a></li> |
| 186 | 186 | <?php |
| 187 | 187 | echo isset($SETTINGS['item_extra_fields']) === true && (int) $SETTINGS['item_extra_fields'] === 1 ? ' |
| 188 | - <li class="nav-item"><a class="nav-link" href="#tab_4" data-toggle="tab"><i class="fa-solid fa-cubes mr-2"></i>' . $lang->get('fields') . '</a></li>' : ''; |
|
| 188 | + <li class="nav-item"><a class="nav-link" href="#tab_4" data-toggle="tab"><i class="fa-solid fa-cubes mr-2"></i>' . $lang->get('fields').'</a></li>' : ''; |
|
| 189 | 189 | ?> |
| 190 | 190 | </ul> |
| 191 | 191 | </div><!-- /.card-header --> |
@@ -254,7 +254,7 @@ discard block |
||
| 254 | 254 | <?php |
| 255 | 255 | for ($i = 4; $i <= $SETTINGS['pwd_maximum_length']; ++$i) { |
| 256 | 256 | echo ' |
| 257 | - <option>' . $i . '</option>'; |
|
| 257 | + <option>' . $i.'</option>'; |
|
| 258 | 258 | } |
| 259 | 259 | ?> |
| 260 | 260 | </select> |
@@ -284,7 +284,7 @@ discard block |
||
| 284 | 284 | <span class="ml-2 col-md-1 clear-me-html" id="form-item-icon-show"></span> |
| 285 | 285 | </div> |
| 286 | 286 | <small class='form-text text-muted'> |
| 287 | - <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL;?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 287 | + <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL; ?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 288 | 288 | </small> |
| 289 | 289 | </div> |
| 290 | 290 | |
@@ -472,39 +472,39 @@ discard block |
||
| 472 | 472 | <div class="tab-pane" id="tab_4"> |
| 473 | 473 | <div id="form-item-field" class="hidden"> |
| 474 | 474 | <?php |
| 475 | - $session_item_fields = $session->get('system-item_fields');//print_r($session_item_fields); |
|
| 475 | + $session_item_fields = $session->get('system-item_fields'); //print_r($session_item_fields); |
|
| 476 | 476 | if (isset($session_item_fields) === true) { |
| 477 | 477 | foreach ($session_item_fields as $category) { |
| 478 | 478 | //print_r($category); |
| 479 | 479 | echo ' |
| 480 | - <div class="callout callout-info form-item-category hidden" id="form-item-category-' . $category['id'] . '"> |
|
| 481 | - <h5>' . $category['title'] . '</h5> |
|
| 480 | + <div class="callout callout-info form-item-category hidden" id="form-item-category-' . $category['id'].'"> |
|
| 481 | + <h5>' . $category['title'].'</h5> |
|
| 482 | 482 | <p>'; |
| 483 | 483 | foreach ($category['fields'] as $field) { |
| 484 | 484 | if ($field['type'] === 'textarea') { |
| 485 | 485 | echo ' |
| 486 | - <div class="form-group mb-3 form-item-field" id="form-item-field-' . $field['id'] . '" data-field-id="' . $field['id'] . '"> |
|
| 486 | + <div class="form-group mb-3 form-item-field" id="form-item-field-' . $field['id'].'" data-field-id="'.$field['id'].'"> |
|
| 487 | 487 | <label>' . $field['title'], |
| 488 | 488 | $field['is_mandatory'] === '1' ? |
| 489 | - '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="' . $lang->get('is_mandatory') . '"></span>' : '', |
|
| 489 | + '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="'.$lang->get('is_mandatory').'"></span>' : '', |
|
| 490 | 490 | '</label> |
| 491 | - <textarea class="form-control form-item-control form-item-field-custom" rows="2" data-field-name="' . $field['id'] . '" data-field-mandatory="' . $field['is_mandatory'] . '" data-field-regex="' . $field['regex'] . '" data-change-ongoing="0"></textarea> |
|
| 491 | + <textarea class="form-control form-item-control form-item-field-custom" rows="2" data-field-name="' . $field['id'].'" data-field-mandatory="'.$field['is_mandatory'].'" data-field-regex="'.$field['regex'].'" data-change-ongoing="0"></textarea> |
|
| 492 | 492 | </div>'; |
| 493 | 493 | } else { |
| 494 | 494 | echo ' |
| 495 | - <div class="input-group mb-3 form-item-field" id="form-item-field-' . $field['id'] . '" data-field-id="' . $field['id'] . '"> |
|
| 495 | + <div class="input-group mb-3 form-item-field" id="form-item-field-' . $field['id'].'" data-field-id="'.$field['id'].'"> |
|
| 496 | 496 | <div class="input-group-prepend"> |
| 497 | 497 | <span class="input-group-text">' . $field['title'], |
| 498 | 498 | $field['is_mandatory'] === '1' ? |
| 499 | - '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="' . $lang->get('is_mandatory') . '"></span>' : '', |
|
| 499 | + '<span class="fa-solid fa-fire text-danger ml-1 infotip" title="'.$lang->get('is_mandatory').'"></span>' : '', |
|
| 500 | 500 | '</span> |
| 501 | 501 | </div> |
| 502 | - <input type="' . $field['type'] . '" class="form-control form-item-control form-item-field-custom" data-field-name="' . $field['id'] . '" data-field-mandatory="' . $field['is_mandatory'] . '" data-field-regex="' . $field['regex'] . '" data-change-ongoing="0"> |
|
| 502 | + <input type="' . $field['type'].'" class="form-control form-item-control form-item-field-custom" data-field-name="'.$field['id'].'" data-field-mandatory="'.$field['is_mandatory'].'" data-field-regex="'.$field['regex'].'" data-change-ongoing="0"> |
|
| 503 | 503 | </div>'; |
| 504 | 504 | } |
| 505 | 505 | if (!empty($field['regex'])) { |
| 506 | 506 | echo ' |
| 507 | - <div>Regex: '. $field['regex'] .'</div> |
|
| 507 | + <div>Regex: '. $field['regex'].'</div> |
|
| 508 | 508 | '; |
| 509 | 509 | } |
| 510 | 510 | } |
@@ -515,8 +515,8 @@ discard block |
||
| 515 | 515 | ) { |
| 516 | 516 | echo ' |
| 517 | 517 | <div class="form-check icheck-blue"> |
| 518 | - <input type="checkbox" class="form-check-input form-check-input-template form-item-control flat-blue" data-category-id="' . $category['id'] . '" data-change-ongoing="0" data-field-name="template" id="template_' . $category['id'] . '"> |
|
| 519 | - <label class="form-check-label ml-3" for="template_' . $category['id'] . '">' . $lang->get('main_template') . '</label> |
|
| 518 | + <input type="checkbox" class="form-check-input form-check-input-template form-item-control flat-blue" data-category-id="' . $category['id'].'" data-change-ongoing="0" data-field-name="template" id="template_'.$category['id'].'"> |
|
| 519 | + <label class="form-check-label ml-3" for="template_' . $category['id'].'">'.$lang->get('main_template').'</label> |
|
| 520 | 520 | </div>'; |
| 521 | 521 | } |
| 522 | 522 | echo ' |
@@ -526,8 +526,8 @@ discard block |
||
| 526 | 526 | } else { |
| 527 | 527 | echo |
| 528 | 528 | '<div class="alert alert-info"> |
| 529 | - <h5><i class="icon fa fa-info mr-3"></i>' . $lang->get('information') . '</h5> |
|
| 530 | - ' . $lang->get('no_fields') . ' |
|
| 529 | + <h5><i class="icon fa fa-info mr-3"></i>' . $lang->get('information').'</h5> |
|
| 530 | + ' . $lang->get('no_fields').' |
|
| 531 | 531 | </div>'; |
| 532 | 532 | } ?> |
| 533 | 533 | </div> |
@@ -668,7 +668,7 @@ discard block |
||
| 668 | 668 | <p><?php |
| 669 | 669 | echo str_replace( |
| 670 | 670 | ['##otv_expiration_period##', '. '], |
| 671 | - ['<span class="text-bold text-primary">' . $SETTINGS['otv_expiration_period'] . '</span>', '<br>'], |
|
| 671 | + ['<span class="text-bold text-primary">'.$SETTINGS['otv_expiration_period'].'</span>', '<br>'], |
|
| 672 | 672 | $lang->get('otv_message') |
| 673 | 673 | ); |
| 674 | 674 | ?></p> |
@@ -686,9 +686,9 @@ discard block |
||
| 686 | 686 | |
| 687 | 687 | <div class="row"> |
| 688 | 688 | <div class="form-group col-4"> |
| 689 | - <label for="form-item-otv-days"><i class="fa-regular fa-calendar-days mr-2"></i><?php echo $lang->get('number_of_days'); ?> (<?php echo $lang->get('maximum').': '.$SETTINGS['otv_expiration_period'];?>)</label> |
|
| 689 | + <label for="form-item-otv-days"><i class="fa-regular fa-calendar-days mr-2"></i><?php echo $lang->get('number_of_days'); ?> (<?php echo $lang->get('maximum').': '.$SETTINGS['otv_expiration_period']; ?>)</label> |
|
| 690 | 690 | <div class="input-group mb-3"> |
| 691 | - <input type="number" class="form-control clear-me-val" id="form-item-otv-days" min="0" max="<?php echo $SETTINGS['otv_expiration_period'];?>" value="<?php echo $SETTINGS['otv_expiration_period'];?>"> |
|
| 691 | + <input type="number" class="form-control clear-me-val" id="form-item-otv-days" min="0" max="<?php echo $SETTINGS['otv_expiration_period']; ?>" value="<?php echo $SETTINGS['otv_expiration_period']; ?>"> |
|
| 692 | 692 | </div> |
| 693 | 693 | </div> |
| 694 | 694 | |
@@ -776,7 +776,7 @@ discard block |
||
| 776 | 776 | <select class="form-control form-folder-control select2" style="width:100%;" id="form-folder-add-complexicity" required> |
| 777 | 777 | <?php |
| 778 | 778 | foreach (TP_PW_COMPLEXITY as $key => $value) { |
| 779 | - echo '<option value="' . $key . '">' . $value[1] . '</option>'; |
|
| 779 | + echo '<option value="'.$key.'">'.$value[1].'</option>'; |
|
| 780 | 780 | } |
| 781 | 781 | ?> |
| 782 | 782 | </select> |
@@ -794,14 +794,14 @@ discard block |
||
| 794 | 794 | <label><?php echo $lang->get('icon'); ?></label> |
| 795 | 795 | <input type="text" class="form-control form-folder-control" id="form-folder-add-icon"> |
| 796 | 796 | <small class='form-text text-muted'> |
| 797 | - <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL;?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 797 | + <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL; ?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 798 | 798 | </small> |
| 799 | 799 | </div> |
| 800 | 800 | <div class="form-group"> |
| 801 | 801 | <label><?php echo $lang->get('icon_on_selection'); ?></label> |
| 802 | 802 | <input type="text" class="form-control form-folder-control" id="form-folder-add-icon-selected"> |
| 803 | 803 | <small class='form-text text-muted'> |
| 804 | - <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL;?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 804 | + <?php echo $lang->get('fontawesome_icon_tip'); ?><a href="<?php echo FONTAWESOME_URL; ?>" target="_blank"><i class="fa-solid fa-external-link-alt ml-1"></i></a> |
|
| 805 | 805 | </small> |
| 806 | 806 | </div> |
| 807 | 807 | </div> |
@@ -1212,18 +1212,18 @@ discard block |
||
| 1212 | 1212 | <?php |
| 1213 | 1213 | foreach ($session_item_fields as $elem) { |
| 1214 | 1214 | echo ' |
| 1215 | - <div class="callout callout-info card-item-category hidden" id="card-item-category-' . $elem['id'] . '"> |
|
| 1216 | - <h5>' . $elem['title'] . '</h5> |
|
| 1215 | + <div class="callout callout-info card-item-category hidden" id="card-item-category-' . $elem['id'].'"> |
|
| 1216 | + <h5>' . $elem['title'].'</h5> |
|
| 1217 | 1217 | <p> |
| 1218 | 1218 | <ul class="list-group list-group-unbordered mb-3">'; |
| 1219 | 1219 | foreach ($elem['fields'] as $field) { |
| 1220 | 1220 | echo ' |
| 1221 | - <li class="list-group-item card-item-field hidden" id="card-item-field-' . $field['id'] . '"> |
|
| 1222 | - <span id="card-item-field-title-' . $field['id'] . '"><b>' . $field['title'] . '</b></span> |
|
| 1223 | - <button type="button" class="float-right btn btn-secondary btn-sm ml-1 btn-copy-clipboard-clear" data-clipboard-target="card-item-field-value-' . $field['id'] . '"> |
|
| 1221 | + <li class="list-group-item card-item-field hidden" id="card-item-field-' . $field['id'].'"> |
|
| 1222 | + <span id="card-item-field-title-' . $field['id'].'"><b>'.$field['title'].'</b></span> |
|
| 1223 | + <button type="button" class="float-right btn btn-secondary btn-sm ml-1 btn-copy-clipboard-clear" data-clipboard-target="card-item-field-value-' . $field['id'].'"> |
|
| 1224 | 1224 | <i class="fa-solid fa-copy"></i> |
| 1225 | 1225 | </button> |
| 1226 | - <span class="card-item-field-value float-right ml-1" id="card-item-field-value-' . $field['id'] . '"></span> |
|
| 1226 | + <span class="card-item-field-value float-right ml-1" id="card-item-field-value-' . $field['id'].'"></span> |
|
| 1227 | 1227 | </li>'; |
| 1228 | 1228 | } |
| 1229 | 1229 | echo ' |
@@ -91,215 +91,215 @@ |
||
| 91 | 91 | switch ($post_type) { |
| 92 | 92 | //########################################################## |
| 93 | 93 | //CASE for creating a DB backup |
| 94 | -case 'perform_fix_pf_items-step1': |
|
| 95 | - // Check KEY |
|
| 96 | - if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 97 | - echo prepareExchangedData( |
|
| 98 | - array( |
|
| 99 | - 'error' => true, |
|
| 100 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 101 | - ), |
|
| 102 | - 'encode' |
|
| 103 | - ); |
|
| 104 | - break; |
|
| 105 | - } |
|
| 106 | - // Is admin? |
|
| 107 | - if ((int) $session->get('user-admin') !== 1) { |
|
| 108 | - echo prepareExchangedData( |
|
| 109 | - array( |
|
| 110 | - 'error' => true, |
|
| 111 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 112 | - ), |
|
| 113 | - 'encode' |
|
| 114 | - ); |
|
| 115 | - break; |
|
| 116 | - } |
|
| 94 | + case 'perform_fix_pf_items-step1': |
|
| 95 | + // Check KEY |
|
| 96 | + if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 97 | + echo prepareExchangedData( |
|
| 98 | + array( |
|
| 99 | + 'error' => true, |
|
| 100 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 101 | + ), |
|
| 102 | + 'encode' |
|
| 103 | + ); |
|
| 104 | + break; |
|
| 105 | + } |
|
| 106 | + // Is admin? |
|
| 107 | + if ((int) $session->get('user-admin') !== 1) { |
|
| 108 | + echo prepareExchangedData( |
|
| 109 | + array( |
|
| 110 | + 'error' => true, |
|
| 111 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 112 | + ), |
|
| 113 | + 'encode' |
|
| 114 | + ); |
|
| 115 | + break; |
|
| 116 | + } |
|
| 117 | 117 | |
| 118 | - // decrypt and retrieve data in JSON format |
|
| 119 | - $dataReceived = prepareExchangedData( |
|
| 120 | - $post_data, |
|
| 121 | - 'decode' |
|
| 122 | - ); |
|
| 118 | + // decrypt and retrieve data in JSON format |
|
| 119 | + $dataReceived = prepareExchangedData( |
|
| 120 | + $post_data, |
|
| 121 | + 'decode' |
|
| 122 | + ); |
|
| 123 | 123 | |
| 124 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 124 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 125 | 125 | |
| 126 | - // Get user info |
|
| 127 | - $userInfo = DB::queryFirstRow( |
|
| 128 | - 'SELECT private_key, public_key, psk, encrypted_psk |
|
| 126 | + // Get user info |
|
| 127 | + $userInfo = DB::queryFirstRow( |
|
| 128 | + 'SELECT private_key, public_key, psk, encrypted_psk |
|
| 129 | 129 | FROM teampass_users |
| 130 | 130 | WHERE id = %i', |
| 131 | - $userId |
|
| 132 | - ); |
|
| 131 | + $userId |
|
| 132 | + ); |
|
| 133 | 133 | |
| 134 | - // Get user's private folders |
|
| 135 | - $userPFRoot = DB::queryFirstRow( |
|
| 136 | - 'SELECT id |
|
| 134 | + // Get user's private folders |
|
| 135 | + $userPFRoot = DB::queryFirstRow( |
|
| 136 | + 'SELECT id |
|
| 137 | 137 | FROM teampass_nested_tree |
| 138 | 138 | WHERE title = %i', |
| 139 | - $userId |
|
| 140 | - ); |
|
| 141 | - if (DB::count() === 0) { |
|
| 142 | - echo prepareExchangedData( |
|
| 143 | - array( |
|
| 144 | - 'error' => true, |
|
| 145 | - 'message' => 'User has no personal folders', |
|
| 146 | - ), |
|
| 147 | - 'encode' |
|
| 148 | - ); |
|
| 149 | - break; |
|
| 150 | - } |
|
| 151 | - $personalFolders = []; |
|
| 152 | - $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title'); |
|
| 153 | - $tree->rebuild(); |
|
| 154 | - $folders = $tree->getDescendants($userPFRoot['id'], true); |
|
| 155 | - foreach ($folders as $folder) { |
|
| 156 | - array_push($personalFolders, $folder->id); |
|
| 157 | - } |
|
| 158 | - |
|
| 159 | - //Show done |
|
| 160 | - echo prepareExchangedData( |
|
| 161 | - array( |
|
| 162 | - 'error' => false, |
|
| 163 | - 'message' => 'Personal Folders found: ', |
|
| 164 | - 'personalFolders' => json_encode($personalFolders), |
|
| 165 | - ), |
|
| 166 | - 'encode' |
|
| 167 | - ); |
|
| 168 | - break; |
|
| 169 | - |
|
| 170 | -case 'perform_fix_pf_items-step2': |
|
| 171 | - // Check KEY |
|
| 172 | - if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 173 | - echo prepareExchangedData( |
|
| 174 | - array( |
|
| 175 | - 'error' => true, |
|
| 176 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 177 | - ), |
|
| 178 | - 'encode' |
|
| 139 | + $userId |
|
| 179 | 140 | ); |
| 180 | - break; |
|
| 181 | - } |
|
| 182 | - // Is admin? |
|
| 183 | - if ((int) $session->get('user-admin') !== 1) { |
|
| 141 | + if (DB::count() === 0) { |
|
| 142 | + echo prepareExchangedData( |
|
| 143 | + array( |
|
| 144 | + 'error' => true, |
|
| 145 | + 'message' => 'User has no personal folders', |
|
| 146 | + ), |
|
| 147 | + 'encode' |
|
| 148 | + ); |
|
| 149 | + break; |
|
| 150 | + } |
|
| 151 | + $personalFolders = []; |
|
| 152 | + $tree = new NestedTree(prefixTable('nested_tree'), 'id', 'parent_id', 'title'); |
|
| 153 | + $tree->rebuild(); |
|
| 154 | + $folders = $tree->getDescendants($userPFRoot['id'], true); |
|
| 155 | + foreach ($folders as $folder) { |
|
| 156 | + array_push($personalFolders, $folder->id); |
|
| 157 | + } |
|
| 158 | + |
|
| 159 | + //Show done |
|
| 184 | 160 | echo prepareExchangedData( |
| 185 | 161 | array( |
| 186 | - 'error' => true, |
|
| 187 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 162 | + 'error' => false, |
|
| 163 | + 'message' => 'Personal Folders found: ', |
|
| 164 | + 'personalFolders' => json_encode($personalFolders), |
|
| 188 | 165 | ), |
| 189 | 166 | 'encode' |
| 190 | 167 | ); |
| 191 | 168 | break; |
| 192 | - } |
|
| 193 | 169 | |
| 194 | - // decrypt and retrieve data in JSON format |
|
| 195 | - $dataReceived = prepareExchangedData( |
|
| 196 | - $post_data, |
|
| 197 | - 'decode' |
|
| 198 | - ); |
|
| 170 | + case 'perform_fix_pf_items-step2': |
|
| 171 | + // Check KEY |
|
| 172 | + if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 173 | + echo prepareExchangedData( |
|
| 174 | + array( |
|
| 175 | + 'error' => true, |
|
| 176 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 177 | + ), |
|
| 178 | + 'encode' |
|
| 179 | + ); |
|
| 180 | + break; |
|
| 181 | + } |
|
| 182 | + // Is admin? |
|
| 183 | + if ((int) $session->get('user-admin') !== 1) { |
|
| 184 | + echo prepareExchangedData( |
|
| 185 | + array( |
|
| 186 | + 'error' => true, |
|
| 187 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 188 | + ), |
|
| 189 | + 'encode' |
|
| 190 | + ); |
|
| 191 | + break; |
|
| 192 | + } |
|
| 199 | 193 | |
| 200 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 201 | - $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 194 | + // decrypt and retrieve data in JSON format |
|
| 195 | + $dataReceived = prepareExchangedData( |
|
| 196 | + $post_data, |
|
| 197 | + 'decode' |
|
| 198 | + ); |
|
| 199 | + |
|
| 200 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 201 | + $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 202 | 202 | |
| 203 | - // Delete all private items with sharekeys |
|
| 204 | - $pfiSharekeys = DB::queryFirstColumn( |
|
| 205 | - 'select s.increment_id |
|
| 203 | + // Delete all private items with sharekeys |
|
| 204 | + $pfiSharekeys = DB::queryFirstColumn( |
|
| 205 | + 'select s.increment_id |
|
| 206 | 206 | from teampass_sharekeys_items as s |
| 207 | 207 | INNER JOIN teampass_items AS i ON (i.id = s.object_id) |
| 208 | 208 | WHERE s.user_id = %i AND i.perso = 1 AND i.id_tree IN %ls', |
| 209 | - $userId, |
|
| 210 | - $personalFolders |
|
| 211 | - ); |
|
| 212 | - $pfiSharekeysCount = DB::count(); |
|
| 213 | - if ($pfiSharekeysCount > 0) { |
|
| 214 | - DB::delete( |
|
| 215 | - "teampass_sharekeys_items", |
|
| 216 | - "increment_id IN %ls", |
|
| 217 | - $pfiSharekeys |
|
| 209 | + $userId, |
|
| 210 | + $personalFolders |
|
| 218 | 211 | ); |
| 219 | - } |
|
| 212 | + $pfiSharekeysCount = DB::count(); |
|
| 213 | + if ($pfiSharekeysCount > 0) { |
|
| 214 | + DB::delete( |
|
| 215 | + "teampass_sharekeys_items", |
|
| 216 | + "increment_id IN %ls", |
|
| 217 | + $pfiSharekeys |
|
| 218 | + ); |
|
| 219 | + } |
|
| 220 | 220 | |
| 221 | 221 | |
| 222 | - //Show done |
|
| 223 | - echo prepareExchangedData( |
|
| 224 | - array( |
|
| 225 | - 'error' => false, |
|
| 226 | - 'message' => '<br>Number of Sharekeys for private items DELETED: ', |
|
| 227 | - 'nbDeleted' => $pfiSharekeysCount, |
|
| 228 | - 'personalFolders' => json_encode($personalFolders), |
|
| 229 | - ), |
|
| 230 | - 'encode' |
|
| 231 | - ); |
|
| 232 | - break; |
|
| 233 | - |
|
| 234 | -case 'perform_fix_pf_items-step3': |
|
| 235 | - // Check KEY |
|
| 236 | - if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 237 | - echo prepareExchangedData( |
|
| 238 | - array( |
|
| 239 | - 'error' => true, |
|
| 240 | - 'message' => $lang->get('key_is_not_correct'), |
|
| 241 | - ), |
|
| 242 | - 'encode' |
|
| 243 | - ); |
|
| 244 | - break; |
|
| 245 | - } |
|
| 246 | - // Is admin? |
|
| 247 | - if ((int) $session->get('user-admin') !== 1) { |
|
| 222 | + //Show done |
|
| 248 | 223 | echo prepareExchangedData( |
| 249 | 224 | array( |
| 250 | - 'error' => true, |
|
| 251 | - 'message' => $lang->get('error_not_allowed_to'), |
|
| 225 | + 'error' => false, |
|
| 226 | + 'message' => '<br>Number of Sharekeys for private items DELETED: ', |
|
| 227 | + 'nbDeleted' => $pfiSharekeysCount, |
|
| 228 | + 'personalFolders' => json_encode($personalFolders), |
|
| 252 | 229 | ), |
| 253 | 230 | 'encode' |
| 254 | 231 | ); |
| 255 | 232 | break; |
| 256 | - } |
|
| 257 | 233 | |
| 258 | - // decrypt and retrieve data in JSON format |
|
| 259 | - $dataReceived = prepareExchangedData( |
|
| 260 | - $post_data, |
|
| 261 | - 'decode' |
|
| 262 | - ); |
|
| 234 | + case 'perform_fix_pf_items-step3': |
|
| 235 | + // Check KEY |
|
| 236 | + if (!hash_equals((string) $session->get('key'), (string) $post_key)) { |
|
| 237 | + echo prepareExchangedData( |
|
| 238 | + array( |
|
| 239 | + 'error' => true, |
|
| 240 | + 'message' => $lang->get('key_is_not_correct'), |
|
| 241 | + ), |
|
| 242 | + 'encode' |
|
| 243 | + ); |
|
| 244 | + break; |
|
| 245 | + } |
|
| 246 | + // Is admin? |
|
| 247 | + if ((int) $session->get('user-admin') !== 1) { |
|
| 248 | + echo prepareExchangedData( |
|
| 249 | + array( |
|
| 250 | + 'error' => true, |
|
| 251 | + 'message' => $lang->get('error_not_allowed_to'), |
|
| 252 | + ), |
|
| 253 | + 'encode' |
|
| 254 | + ); |
|
| 255 | + break; |
|
| 256 | + } |
|
| 257 | + |
|
| 258 | + // decrypt and retrieve data in JSON format |
|
| 259 | + $dataReceived = prepareExchangedData( |
|
| 260 | + $post_data, |
|
| 261 | + 'decode' |
|
| 262 | + ); |
|
| 263 | 263 | |
| 264 | - $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 265 | - $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 264 | + $userId = filter_var($dataReceived['userId'], FILTER_SANITIZE_NUMBER_INT); |
|
| 265 | + $personalFolders = filter_var($dataReceived['personalFolders'], FILTER_SANITIZE_FULL_SPECIAL_CHARS); |
|
| 266 | 266 | |
| 267 | - // Update from items_old to items all the private itemsitems that have been converted to teampass_aes |
|
| 268 | - // Get all key back |
|
| 269 | - $items = DB::query( |
|
| 270 | - "SELECT id |
|
| 267 | + // Update from items_old to items all the private itemsitems that have been converted to teampass_aes |
|
| 268 | + // Get all key back |
|
| 269 | + $items = DB::query( |
|
| 270 | + "SELECT id |
|
| 271 | 271 | FROM teampass_items |
| 272 | 272 | WHERE id_tree IN %ls AND encryption_type = %s", |
| 273 | - $personalFolders, |
|
| 274 | - "teampass_aes" |
|
| 275 | - ); |
|
| 276 | - //DB::debugMode(false); |
|
| 277 | - $nbItems = DB::count(); |
|
| 278 | - foreach ($items as $item) { |
|
| 279 | - $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']); |
|
| 280 | - DB::update( |
|
| 281 | - "teampass_items", |
|
| 282 | - ['pw' => $defusePwd, "encryption_type" => "defuse"], |
|
| 283 | - "id = %i", |
|
| 284 | - $item['id'] |
|
| 273 | + $personalFolders, |
|
| 274 | + "teampass_aes" |
|
| 285 | 275 | ); |
| 286 | - } |
|
| 276 | + //DB::debugMode(false); |
|
| 277 | + $nbItems = DB::count(); |
|
| 278 | + foreach ($items as $item) { |
|
| 279 | + $defusePwd = DB::queryFirstField("SELECT pw FROM teampass_items_old WHERE id = %i", $item['id']); |
|
| 280 | + DB::update( |
|
| 281 | + "teampass_items", |
|
| 282 | + ['pw' => $defusePwd, "encryption_type" => "defuse"], |
|
| 283 | + "id = %i", |
|
| 284 | + $item['id'] |
|
| 285 | + ); |
|
| 286 | + } |
|
| 287 | 287 | |
| 288 | 288 | |
| 289 | - //Show done |
|
| 290 | - echo prepareExchangedData( |
|
| 291 | - array( |
|
| 292 | - 'error' => false, |
|
| 293 | - 'message' => '<br>Number of items reseted to Defuse: ', |
|
| 294 | - 'nbItems' => $nbItems, |
|
| 295 | - 'personalFolders' => json_encode($personalFolders), |
|
| 296 | - ), |
|
| 297 | - 'encode' |
|
| 298 | - ); |
|
| 299 | - break; |
|
| 300 | - |
|
| 301 | - /* TOOL #2 - Fixing items master keys */ |
|
| 302 | - /* |
|
| 289 | + //Show done |
|
| 290 | + echo prepareExchangedData( |
|
| 291 | + array( |
|
| 292 | + 'error' => false, |
|
| 293 | + 'message' => '<br>Number of items reseted to Defuse: ', |
|
| 294 | + 'nbItems' => $nbItems, |
|
| 295 | + 'personalFolders' => json_encode($personalFolders), |
|
| 296 | + ), |
|
| 297 | + 'encode' |
|
| 298 | + ); |
|
| 299 | + break; |
|
| 300 | + |
|
| 301 | + /* TOOL #2 - Fixing items master keys */ |
|
| 302 | + /* |
|
| 303 | 303 | * STEP 1 - Check if we have the correct pwd for TP_USER |
| 304 | 304 | */ |
| 305 | 305 | case 'perform_fix_items_master_keys-step1': |
@@ -70,7 +70,7 @@ discard block |
||
| 70 | 70 | if ($checkUserAccess->checkSession() === false || $checkUserAccess->userAccessPage('tools') === false) { |
| 71 | 71 | // Not allowed page |
| 72 | 72 | $session->set('system-error_code', ERR_NOT_ALLOWED); |
| 73 | - include $SETTINGS['cpassman_dir'] . '/error.php'; |
|
| 73 | + include $SETTINGS['cpassman_dir'].'/error.php'; |
|
| 74 | 74 | exit; |
| 75 | 75 | } |
| 76 | 76 | |
@@ -335,7 +335,7 @@ discard block |
||
| 335 | 335 | // Get TP_USER info |
| 336 | 336 | $userInfo = DB::queryFirstRow( |
| 337 | 337 | 'SELECT pw, public_key, private_key, login, name |
| 338 | - FROM ' . prefixTable('users') . ' |
|
| 338 | + FROM ' . prefixTable('users').' |
|
| 339 | 339 | WHERE id = %i', |
| 340 | 340 | TP_USER_ID |
| 341 | 341 | ); |
@@ -372,8 +372,8 @@ discard block |
||
| 372 | 372 | // Get one itemKey from current user |
| 373 | 373 | $currentUserKey = DB::queryFirstRow( |
| 374 | 374 | 'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user |
| 375 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 376 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 375 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 376 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 377 | 377 | WHERE ski.user_id = %i |
| 378 | 378 | ORDER BY RAND() |
| 379 | 379 | LIMIT 1', |
@@ -392,7 +392,7 @@ discard block |
||
| 392 | 392 | echo prepareExchangedData( |
| 393 | 393 | array( |
| 394 | 394 | 'error' => true, |
| 395 | - 'message' => 'No issue found, normal process should work. This process is now finished. (item id : ' . $currentUserKey['increment_id'] . ')', |
|
| 395 | + 'message' => 'No issue found, normal process should work. This process is now finished. (item id : '.$currentUserKey['increment_id'].')', |
|
| 396 | 396 | ), |
| 397 | 397 | 'encode' |
| 398 | 398 | ); |
@@ -452,7 +452,7 @@ discard block |
||
| 452 | 452 | // Get user info |
| 453 | 453 | $userInfo = DB::queryFirstRow( |
| 454 | 454 | 'SELECT public_key, private_key |
| 455 | - FROM ' . prefixTable('users') . ' |
|
| 455 | + FROM ' . prefixTable('users').' |
|
| 456 | 456 | WHERE id = %i', |
| 457 | 457 | $userId |
| 458 | 458 | ); |
@@ -475,8 +475,8 @@ discard block |
||
| 475 | 475 | // Get one itemKey from current user |
| 476 | 476 | $currentUserKey = DB::queryFirstRow( |
| 477 | 477 | 'SELECT ski.share_key, ski.increment_id AS increment_id, l.id_user |
| 478 | - FROM ' . prefixTable('sharekeys_items') . ' AS ski |
|
| 479 | - INNER JOIN ' . prefixTable('log_items') . ' AS l ON ski.object_id = l.id_item |
|
| 478 | + FROM ' . prefixTable('sharekeys_items').' AS ski |
|
| 479 | + INNER JOIN ' . prefixTable('log_items').' AS l ON ski.object_id = l.id_item |
|
| 480 | 480 | WHERE ski.user_id = %i |
| 481 | 481 | ORDER BY RAND() |
| 482 | 482 | LIMIT 1', |
@@ -514,8 +514,8 @@ discard block |
||
| 514 | 514 | // Get number of users to treat |
| 515 | 515 | DB::query( |
| 516 | 516 | 'SELECT i.id |
| 517 | - FROM ' . prefixTable('items') . ' AS i |
|
| 518 | - INNER JOIN ' . prefixTable('sharekeys_items') . ' AS si ON i.id = si.object_id |
|
| 517 | + FROM ' . prefixTable('items').' AS i |
|
| 518 | + INNER JOIN ' . prefixTable('sharekeys_items').' AS si ON i.id = si.object_id |
|
| 519 | 519 | WHERE i.perso = %i AND si.user_id = %i;', |
| 520 | 520 | 0, |
| 521 | 521 | $userId |
@@ -597,11 +597,11 @@ discard block |
||
| 597 | 597 | // Loop on items |
| 598 | 598 | $rows = DB::query( |
| 599 | 599 | 'SELECT si.object_id AS object_id, si.share_key AS share_key, i.pw AS pw, si.increment_id as increment_id |
| 600 | - FROM ' . prefixTable('sharekeys_items') . ' AS si |
|
| 601 | - INNER JOIN ' . prefixTable('items') . ' AS i ON (i.id = si.object_id) |
|
| 600 | + FROM ' . prefixTable('sharekeys_items').' AS si |
|
| 601 | + INNER JOIN ' . prefixTable('items').' AS i ON (i.id = si.object_id) |
|
| 602 | 602 | WHERE si.user_id = %i |
| 603 | 603 | ORDER BY si.increment_id ASC |
| 604 | - LIMIT ' . $startIndex . ', ' . $limit, |
|
| 604 | + LIMIT ' . $startIndex.', '.$limit, |
|
| 605 | 605 | $userId |
| 606 | 606 | ); |
| 607 | 607 | |
@@ -625,7 +625,7 @@ discard block |
||
| 625 | 625 | // It will be updated if already exists |
| 626 | 626 | $currentTPUserKey = DB::queryFirstRow( |
| 627 | 627 | 'SELECT increment_id, user_id, share_key |
| 628 | - FROM ' . prefixTable('sharekeys_items') . ' |
|
| 628 | + FROM ' . prefixTable('sharekeys_items').' |
|
| 629 | 629 | WHERE object_id = %i AND user_id = %i', |
| 630 | 630 | $record['object_id'], |
| 631 | 631 | TP_USER_ID |
@@ -661,7 +661,7 @@ discard block |
||
| 661 | 661 | DB::commit(); |
| 662 | 662 | } catch (Exception $e) { |
| 663 | 663 | DB::rollback(); |
| 664 | - error_log("Teampass - Error: Keys treatment: " . $e->getMessage()); |
|
| 664 | + error_log("Teampass - Error: Keys treatment: ".$e->getMessage()); |
|
| 665 | 665 | } |
| 666 | 666 | |
| 667 | 667 | $nextIndex = (int) $startIndex + (int) $limit; |
@@ -717,7 +717,7 @@ discard block |
||
| 717 | 717 | // Get PT_USER info |
| 718 | 718 | DB::queryFirstRow( |
| 719 | 719 | 'SELECT operation_code |
| 720 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 720 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 721 | 721 | WHERE operation_code = %s', |
| 722 | 722 | $operationCode |
| 723 | 723 | ); |
@@ -727,7 +727,7 @@ discard block |
||
| 727 | 727 | // using increment_id_value in order to update the correct record |
| 728 | 728 | $rows = DB::query( |
| 729 | 729 | 'SELECT * |
| 730 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 730 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 731 | 731 | WHERE operation_code = %s', |
| 732 | 732 | $operationCode |
| 733 | 733 | ); |
@@ -746,7 +746,7 @@ discard block |
||
| 746 | 746 | |
| 747 | 747 | // Delete all sharekeys for this operation |
| 748 | 748 | DB::query( |
| 749 | - 'DELETE FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 749 | + 'DELETE FROM '.prefixTable('sharekeys_backup').' |
|
| 750 | 750 | WHERE operation_code = %i', |
| 751 | 751 | $operationCode |
| 752 | 752 | ); |
@@ -809,7 +809,7 @@ discard block |
||
| 809 | 809 | // Get operation info |
| 810 | 810 | DB::query( |
| 811 | 811 | 'SELECT operation_code |
| 812 | - FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 812 | + FROM ' . prefixTable('sharekeys_backup').' |
|
| 813 | 813 | WHERE operation_code = %s', |
| 814 | 814 | $operationCode |
| 815 | 815 | ); |
@@ -818,7 +818,7 @@ discard block |
||
| 818 | 818 | if ($nbKeys > 0) { |
| 819 | 819 | // Delete all sharekeys for this operation |
| 820 | 820 | DB::query( |
| 821 | - 'DELETE FROM ' . prefixTable('sharekeys_backup') . ' |
|
| 821 | + 'DELETE FROM '.prefixTable('sharekeys_backup').' |
|
| 822 | 822 | WHERE operation_code = %s', |
| 823 | 823 | $operationCode |
| 824 | 824 | ); |
