for testing and deploying your application
for finding and fixing issues
for empowering human code reviews
<?php
/**
* sysPass
*
* @author nuxsmin
* @link https://syspass.org
* @copyright 2012-2019, Rubén Domínguez nuxsmin@$syspass.org
* This file is part of sysPass.
* sysPass is free software: you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation, either version 3 of the License, or
* (at your option) any later version.
* sysPass is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
* You should have received a copy of the GNU General Public License
* along with sysPass. If not, see <http://www.gnu.org/licenses/>.
*/
namespace SP\Modules\Api\Controllers;
use DI\DependencyException;
use DI\NotFoundException;
use Exception;
use SP\Core\Acl\ActionsInterface;
use SP\Core\Crypt\Crypt;
use SP\Core\Events\Event;
use SP\Core\Events\EventMessage;
use SP\Core\Exceptions\InvalidClassException;
use SP\Modules\Api\Controllers\Help\AccountHelp;
use SP\Mvc\Model\QueryCondition;
use SP\Services\Account\AccountPresetService;
use SP\Services\Account\AccountRequest;
use SP\Services\Account\AccountSearchFilter;
use SP\Services\Account\AccountService;
use SP\Services\Api\ApiResponse;
* Class AccountController
* @package SP\Modules\Api\Controllers
final class AccountController extends ControllerBase
{
* @var AccountPresetService
private $accountPresetService;
* @var AccountService
private $accountService;
* viewAction
public function viewAction()
try {
$this->setupApi(ActionsInterface::ACCOUNT_VIEW);
$id = $this->apiService->getParamInt('id', true);
$accountDetails = $this->accountService->getById($id)->getAccountVData();
$this->accountService->incrementViewCounter($id);
$this->eventDispatcher->notifyEvent('show.account',
new Event($this, EventMessage::factory()
->addDescription(__u('Account displayed'))
->addDetail(__u('Name'), $accountDetails->getName())
->addDetail(__u('Client'), $accountDetails->getClientName())
->addDetail('ID', $id))
);
$this->returnResponse(ApiResponse::makeSuccess($accountDetails, $id));
} catch (Exception $e) {
$this->returnResponseException($e);
processException($e);
}
* viewPassAction
public function viewPassAction()
$this->setupApi(ActionsInterface::ACCOUNT_VIEW_PASS);
$accountPassData = $this->accountService->getPasswordForId($id);
$password = Crypt::decrypt($accountPassData->getPass(), $accountPassData->getKey(), $this->apiService->getMasterPass());
$this->accountService->incrementDecryptCounter($id);
$this->eventDispatcher->notifyEvent('show.account.pass',
->addDescription(__u('Password viewed'))
$this->returnResponse(ApiResponse::makeSuccess(["password" => $password], $id));
public function editPassAction()
$this->setupApi(ActionsInterface::ACCOUNT_EDIT_PASS);
$accountRequest = new AccountRequest();
$accountRequest->id = $this->apiService->getParamInt('id', true);
$accountRequest->pass = $this->apiService->getParamString('pass', true);
$accountRequest->passDateChange = $this->apiService->getParamInt('expireDate');
$accountRequest->userEditId = $this->context->getUserData()->getId();
$this->accountPresetService->checkPasswordPreset($accountRequest);
$this->accountService->editPassword($accountRequest);
$accountDetails = $this->accountService->getById($accountRequest->id)->getAccountVData();
$this->eventDispatcher->notifyEvent('edit.account.pass',
->addDescription(__u('Password updated'))
->addDetail('ID', $accountDetails->getId()))
$this->returnResponse(ApiResponse::makeSuccess($accountDetails, $accountRequest->id, __('Password updated')));
* createAction
public function createAction()
$this->setupApi(ActionsInterface::ACCOUNT_CREATE);
$accountRequest->name = $this->apiService->getParamString('name', true);
$accountRequest->clientId = $this->apiService->getParamInt('clientId', true);
$accountRequest->categoryId = $this->apiService->getParamInt('categoryId', true);
$accountRequest->login = $this->apiService->getParamString('login');
$accountRequest->url = $this->apiService->getParamString('url');
$accountRequest->notes = $this->apiService->getParamString('notes');
$accountRequest->isPrivate = $this->apiService->getParamInt('private');
$accountRequest->isPrivateGroup = $this->apiService->getParamInt('privateGroup');
$accountRequest->parentId = $this->apiService->getParamInt('parentId');
$userData = $this->context->getUserData();
$accountRequest->userId = $this->apiService->getParamInt('userId', false, $userData->getId());
$accountRequest->userGroupId = $this->apiService->getParamInt('userGroupId', false, $userData->getUserGroupId());
$accountRequest->tags = array_map('intval', $this->apiService->getParamArray('tagsId', false, []));
$accountRequest->pass = $this->apiService->getParamRaw('pass', true);
$accountId = $this->accountService->create($accountRequest);
$accountDetails = $this->accountService->getById($accountId)->getAccountVData();
$this->eventDispatcher->notifyEvent('create.account',
->addDescription(__u('Account created'))
$this->returnResponse(ApiResponse::makeSuccess($accountDetails, $accountId, __('Account created')));
* editAction
public function editAction()
$this->setupApi(ActionsInterface::ACCOUNT_EDIT);
$accountRequest->userId = $this->apiService->getParamInt('userId', false);
$accountRequest->userGroupId = $this->apiService->getParamInt('userGroupId', false);
$tagsId = array_map('intval', $this->apiService->getParamArray('tagsId', false, []));
if (!empty($tagsId)) {
$accountRequest->updateTags = true;
$accountRequest->tags = $tagsId;
$this->accountService->update($accountRequest);
$this->eventDispatcher->notifyEvent('edit.account',
->addDescription(__u('Account updated'))
$this->returnResponse(ApiResponse::makeSuccess($accountDetails, $accountRequest->id, __('Account updated')));
* searchAction
public function searchAction()
$this->setupApi(ActionsInterface::ACCOUNT_SEARCH);
$accountSearchFilter = new AccountSearchFilter();
$accountSearchFilter->setCleanTxtSearch($this->apiService->getParamString('text'));
$accountSearchFilter->setCategoryId($this->apiService->getParamInt('categoryId'));
$accountSearchFilter->setClientId($this->apiService->getParamInt('clientId'));
$accountSearchFilter->setTagsId($tagsId);
$op = $this->apiService->getParamString('op');
if ($op !== null) {
$op !== null
true
switch ($op) {
case 'and':
$accountSearchFilter->setFilterOperator(QueryCondition::CONDITION_AND);
break;
case 'or':
$accountSearchFilter->setFilterOperator(QueryCondition::CONDITION_OR);
$accountSearchFilter->setLimitCount($this->apiService->getParamInt('count', false, 50));
$accountSearchFilter->setSortOrder($this->apiService->getParamInt('order', false, AccountSearchFilter::SORT_DEFAULT));
$this->returnResponse(
ApiResponse::makeSuccess(
$this->accountService->getByFilter($accountSearchFilter)->getDataAsArray()));
* deleteAction
public function deleteAction()
$this->setupApi(ActionsInterface::ACCOUNT_DELETE);
$this->accountService->delete($id);
$this->eventDispatcher->notifyEvent('delete.account',
->addDescription(__u('Account removed'))
$this->returnResponse(ApiResponse::makeSuccess($accountDetails, $id, __('Account removed')));
* @throws DependencyException
* @throws NotFoundException
* @throws InvalidClassException
protected function initialize()
$this->accountService = $this->dic->get(AccountService::class);
$this->accountPresetService = $this->dic->get(AccountPresetService::class);
$this->apiService->setHelpClass(AccountHelp::class);
nuxsmin /
sysPass
nuxsmin
Loading history...