paul999 /
phpbb_2fa
@@ -162,8 +162,7 @@ |
||
| 162 | 162 | // We simply return and continue the login procedure (The normal way :)), |
| 163 | 163 | // and will disable all pages untill he has added a 2FA key. |
| 164 | 164 | return; |
| 165 | - } |
|
| 166 | - else |
|
| 165 | + } else |
|
| 167 | 166 | { |
| 168 | 167 | $redirect = $this->request->variable('redirect', "{$this->root_path}index.{$this->php_ext}"); |
| 169 | 168 | if ($event['admin']) |
@@ -11,12 +11,9 @@ |
||
| 11 | 11 | namespace paul999\tfa\event; |
| 12 | 12 | |
| 13 | 13 | use paul999\tfa\helper\session_helper_interface; |
| 14 | -use paul999\tfa\modules\module_interface; |
|
| 15 | 14 | use phpbb\config\config; |
| 16 | -use phpbb\controller\helper; |
|
| 17 | 15 | use phpbb\db\driver\driver_interface; |
| 18 | 16 | use phpbb\request\request_interface; |
| 19 | -use phpbb\template\template; |
|
| 20 | 17 | use phpbb\user; |
| 21 | 18 | use Symfony\Component\EventDispatcher\EventSubscriberInterface; |
| 22 | 19 | use Symfony\Component\HttpKernel\Exception\BadRequestHttpException; |
@@ -77,13 +77,13 @@ discard block |
||
| 77 | 77 | */ |
| 78 | 78 | public function __construct(session_helper_interface $session_helper, user $user, request_interface $request, driver_interface $db, config $config, $php_ext, $root_path) |
| 79 | 79 | { |
| 80 | - $this->session_helper = $session_helper; |
|
| 81 | - $this->user = $user; |
|
| 80 | + $this->session_helper = $session_helper; |
|
| 81 | + $this->user = $user; |
|
| 82 | 82 | $this->request = $request; |
| 83 | - $this->config = $config; |
|
| 84 | - $this->db = $db; |
|
| 83 | + $this->config = $config; |
|
| 84 | + $this->db = $db; |
|
| 85 | 85 | $this->php_ext = $php_ext; |
| 86 | - $this->root_path = $root_path; |
|
| 86 | + $this->root_path = $root_path; |
|
| 87 | 87 | } |
| 88 | 88 | |
| 89 | 89 | /** |
@@ -122,7 +122,7 @@ discard block |
||
| 122 | 122 | } |
| 123 | 123 | if ($this->user->data['is_bot'] == false && $this->user->data['user_id'] != ANONYMOUS && $this->session_helper->isTfaRequired($this->user->data['user_id'], false, $this->user->data) && !$this->session_helper->isTfaRegistered($this->user->data['user_id'])) |
| 124 | 124 | { |
| 125 | - $sql = 'SELECT module_id FROM ' . MODULES_TABLE . ' WHERE module_langname = \'UCP_TFA\' OR module_langname = \'UCP_TFA_MANAGE\''; |
|
| 125 | + $sql = 'SELECT module_id FROM '.MODULES_TABLE.' WHERE module_langname = \'UCP_TFA\' OR module_langname = \'UCP_TFA_MANAGE\''; |
|
| 126 | 126 | $result = $this->db->sql_query($sql, 3600); |
| 127 | 127 | $allowed_i = array(); |
| 128 | 128 | |
@@ -134,13 +134,13 @@ discard block |
||
| 134 | 134 | $ucp_mode = "-paul999-tfa-ucp-tfa_module"; |
| 135 | 135 | $allowed_i[] = $ucp_mode; |
| 136 | 136 | |
| 137 | - if ($this->user->page['page_name'] == 'ucp.' . $this->php_ext && in_array($this->request->variable('i', ''), $allowed_i)) |
|
| 137 | + if ($this->user->page['page_name'] == 'ucp.'.$this->php_ext && in_array($this->request->variable('i', ''), $allowed_i)) |
|
| 138 | 138 | { |
| 139 | 139 | return; // We are at our UCP page, so skip any other checks. This page is always available |
| 140 | 140 | } |
| 141 | 141 | $this->user->add_lang_ext('paul999/tfa', 'common'); |
| 142 | 142 | $url = append_sid("{$this->root_path}ucp.{$this->php_ext}", "i={$ucp_mode}"); |
| 143 | - trigger_error($this->user->lang('TFA_REQUIRED_KEY_MISSING', '<a href="' . $url . '">', '</a>'), E_USER_WARNING); |
|
| 143 | + trigger_error($this->user->lang('TFA_REQUIRED_KEY_MISSING', '<a href="'.$url.'">', '</a>'), E_USER_WARNING); |
|
| 144 | 144 | |
| 145 | 145 | } |
| 146 | 146 | } |
@@ -42,8 +42,8 @@ |
||
| 42 | 42 | protected function role_exists($role) |
| 43 | 43 | { |
| 44 | 44 | $sql = 'SELECT role_id |
| 45 | - FROM ' . ACL_ROLES_TABLE . " |
|
| 46 | - WHERE role_name = '" . $this->db->sql_escape($role) . "'"; |
|
| 45 | + FROM ' . ACL_ROLES_TABLE." |
|
| 46 | + WHERE role_name = '" . $this->db->sql_escape($role)."'"; |
|
| 47 | 47 | $result = $this->db->sql_query_limit($sql, 1); |
| 48 | 48 | $role_id = $this->db->sql_fetchfield('role_id'); |
| 49 | 49 | $this->db->sql_freeresult($result); |
@@ -16,7 +16,7 @@ discard block |
||
| 16 | 16 | { |
| 17 | 17 | return array( |
| 18 | 18 | 'add_tables' => array( |
| 19 | - $this->table_prefix . 'tfa_registration' => array( |
|
| 19 | + $this->table_prefix.'tfa_registration' => array( |
|
| 20 | 20 | 'COLUMNS' => array( |
| 21 | 21 | 'registration_id' => array('UINT', null, 'auto_increment'), |
| 22 | 22 | 'user_id' => array('UINT', 0), |
@@ -40,7 +40,7 @@ discard block |
||
| 40 | 40 | { |
| 41 | 41 | return array( |
| 42 | 42 | 'drop_tables' => array( |
| 43 | - $this->table_prefix . 'tfa_registration', |
|
| 43 | + $this->table_prefix.'tfa_registration', |
|
| 44 | 44 | ), |
| 45 | 45 | ); |
| 46 | 46 | } |
@@ -24,7 +24,7 @@ discard block |
||
| 24 | 24 | { |
| 25 | 25 | return array( |
| 26 | 26 | 'add_columns' => array( |
| 27 | - $this->table_prefix . 'sessions' => array( |
|
| 27 | + $this->table_prefix.'sessions' => array( |
|
| 28 | 28 | 'u2f_request' => array('TEXT', null), |
| 29 | 29 | ), |
| 30 | 30 | ), |
@@ -35,7 +35,7 @@ discard block |
||
| 35 | 35 | { |
| 36 | 36 | return array( |
| 37 | 37 | 'drop_columns' => array( |
| 38 | - $this->table_prefix . 'sessions' => array( |
|
| 38 | + $this->table_prefix.'sessions' => array( |
|
| 39 | 39 | 'u2f_request', |
| 40 | 40 | ), |
| 41 | 41 | ), |
@@ -102,7 +102,7 @@ discard block |
||
| 102 | 102 | { |
| 103 | 103 | $module->register(); |
| 104 | 104 | meta_refresh(3, $this->u_action); |
| 105 | - $message = $this->user->lang['TFA_KEY_ADDED'] . '<br /><br />' . sprintf($this->user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>'); |
|
| 105 | + $message = $this->user->lang['TFA_KEY_ADDED'].'<br /><br />'.sprintf($this->user->lang['RETURN_UCP'], '<a href="'.$this->u_action.'">', '</a>'); |
|
| 106 | 106 | trigger_error($message); |
| 107 | 107 | } |
| 108 | 108 | if ($module->can_register()) |
@@ -227,7 +227,7 @@ discard block |
||
| 227 | 227 | } |
| 228 | 228 | } |
| 229 | 229 | meta_refresh(3, $this->u_action); |
| 230 | - $message = $this->user->lang['TFA_KEYS_DELETED'] . '<br /><br />' . sprintf($this->user->lang['RETURN_UCP'], '<a href="' . $this->u_action . '">', '</a>'); |
|
| 230 | + $message = $this->user->lang['TFA_KEYS_DELETED'].'<br /><br />'.sprintf($this->user->lang['RETURN_UCP'], '<a href="'.$this->u_action.'">', '</a>'); |
|
| 231 | 231 | trigger_error($message); |
| 232 | 232 | } |
| 233 | 233 | } |
@@ -108,18 +108,15 @@ discard block |
||
| 108 | 108 | if ($module->can_register()) |
| 109 | 109 | { |
| 110 | 110 | $this->tpl_name = $module->register_start(); |
| 111 | - } |
|
| 112 | - else |
|
| 111 | + } else |
|
| 113 | 112 | { |
| 114 | 113 | $error[] = 'TFA_MODULE_NO_REGISTER'; |
| 115 | 114 | } |
| 116 | - } |
|
| 117 | - else |
|
| 115 | + } else |
|
| 118 | 116 | { |
| 119 | 117 | $error[] = $this->user->lang('TFA_MODULE_NOT_FOUND', $class); |
| 120 | 118 | } |
| 121 | - } |
|
| 122 | - catch (\Exception $e) |
|
| 119 | + } catch (\Exception $e) |
|
| 123 | 120 | { |
| 124 | 121 | $error[] = $e->getMessage(); |
| 125 | 122 | } |
@@ -151,8 +148,7 @@ discard block |
||
| 151 | 148 | if (!check_form_key('ucp_tfa_keys')) |
| 152 | 149 | { |
| 153 | 150 | $error[] = 'FORM_INVALID'; |
| 154 | - } |
|
| 155 | - else |
|
| 151 | + } else |
|
| 156 | 152 | { |
| 157 | 153 | if ($this->request->variable('md', false, false, \phpbb\request\request_interface::POST)) |
| 158 | 154 | { |
@@ -152,8 +152,7 @@ discard block |
||
| 152 | 152 | if (!empty($secure)) |
| 153 | 153 | { |
| 154 | 154 | return 'on' == strtolower($secure) || '1' == $secure; |
| 155 | - } |
|
| 156 | - else if ('443' == $this->request->server('SERVER_PORT')) |
|
| 155 | + } else if ('443' == $this->request->server('SERVER_PORT')) |
|
| 157 | 156 | { |
| 158 | 157 | return true; |
| 159 | 158 | } |
@@ -234,10 +233,12 @@ discard block |
||
| 234 | 233 | |
| 235 | 234 | if (property_exists($response, 'errorCode')) |
| 236 | 235 | { |
| 237 | - if ($response->errorCode == 4) // errorCode 4 means that this device wasn't registered |
|
| 236 | + if ($response->errorCode == 4) { |
|
| 237 | + // errorCode 4 means that this device wasn't registered |
|
| 238 | 238 | { |
| 239 | 239 | throw new AccessDeniedHttpException($this->user->lang('TFA_NOT_REGISTERED')); |
| 240 | 240 | } |
| 241 | + } |
|
| 241 | 242 | throw new BadRequestHttpException($this->user->lang('TFA_SOMETHING_WENT_WRONG')); |
| 242 | 243 | } |
| 243 | 244 | $result = new AuthenticationResponse($response->signatureData, $response->clientData, $response->keyHandle); // Do not need to include errorCode, as we already handled it. |
@@ -251,12 +252,10 @@ discard block |
||
| 251 | 252 | |
| 252 | 253 | $sql = 'UPDATE ' . $this->registration_table . ' SET ' . $this->db->sql_build_array('UPDATE', $sql_ary) . ' WHERE registration_id = ' . (int) $reg->getId(); |
| 253 | 254 | $this->db->sql_query($sql); |
| 254 | - } |
|
| 255 | - catch (U2fError $error) |
|
| 255 | + } catch (U2fError $error) |
|
| 256 | 256 | { |
| 257 | 257 | $this->createError($error); |
| 258 | - } |
|
| 259 | - catch (\InvalidArgumentException $invalid) |
|
| 258 | + } catch (\InvalidArgumentException $invalid) |
|
| 260 | 259 | { |
| 261 | 260 | throw new BadRequestHttpException($this->user->lang('TFA_SOMETHING_WENT_WRONG') . '<br />' . $invalid->getMessage(), $invalid); |
| 262 | 261 | } |
@@ -351,8 +350,7 @@ discard block |
||
| 351 | 350 | ); |
| 352 | 351 | |
| 353 | 352 | $this->update_session($sql_ary); |
| 354 | - } |
|
| 355 | - catch (U2fError $err) |
|
| 353 | + } catch (U2fError $err) |
|
| 356 | 354 | { |
| 357 | 355 | $this->createError($err); |
| 358 | 356 | } |
@@ -61,11 +61,11 @@ discard block |
||
| 61 | 61 | $this->user = $user; |
| 62 | 62 | $this->request = $request; |
| 63 | 63 | $this->template = $template; |
| 64 | - $this->root_path= $root_path; |
|
| 64 | + $this->root_path = $root_path; |
|
| 65 | 65 | |
| 66 | - $this->registration_table = $registration_table; |
|
| 66 | + $this->registration_table = $registration_table; |
|
| 67 | 67 | |
| 68 | - $this->u2f = new \paul999\u2f\U2F('https://' . $this->request->server('HTTP_HOST')); |
|
| 68 | + $this->u2f = new \paul999\u2f\U2F('https://'.$this->request->server('HTTP_HOST')); |
|
| 69 | 69 | } |
| 70 | 70 | |
| 71 | 71 | /** |
@@ -111,7 +111,7 @@ discard block |
||
| 111 | 111 | */ |
| 112 | 112 | public function is_potentially_usable($user_id = false) |
| 113 | 113 | { |
| 114 | - $browsercap = new Browscap($this->root_path . 'cache/'); |
|
| 114 | + $browsercap = new Browscap($this->root_path.'cache/'); |
|
| 115 | 115 | $info = $browsercap->getBrowser($this->request->server('HTTP_USER_AGENT')); |
| 116 | 116 | return strtolower($info->Browser) === 'chrome' && $this->is_ssl(); |
| 117 | 117 | } |
@@ -194,9 +194,9 @@ discard block |
||
| 194 | 194 | try |
| 195 | 195 | { |
| 196 | 196 | $sql = 'SELECT u2f_request |
| 197 | - FROM ' . SESSIONS_TABLE . ' |
|
| 197 | + FROM ' . SESSIONS_TABLE.' |
|
| 198 | 198 | WHERE |
| 199 | - session_id = \'' . $this->db->sql_escape($this->user->data['session_id']) . '\' AND |
|
| 199 | + session_id = \'' . $this->db->sql_escape($this->user->data['session_id']).'\' AND |
|
| 200 | 200 | session_user_id = ' . (int) $this->user->data['user_id']; |
| 201 | 201 | $result = $this->db->sql_query($sql); |
| 202 | 202 | $row = $this->db->sql_fetchrow($result); |
@@ -226,7 +226,7 @@ discard block |
||
| 226 | 226 | 'last_used' => time(), |
| 227 | 227 | ); |
| 228 | 228 | |
| 229 | - $sql = 'UPDATE ' . $this->registration_table . ' SET ' . $this->db->sql_build_array('UPDATE', $sql_ary) . ' WHERE registration_id = ' . (int) $reg->getId(); |
|
| 229 | + $sql = 'UPDATE '.$this->registration_table.' SET '.$this->db->sql_build_array('UPDATE', $sql_ary).' WHERE registration_id = '.(int) $reg->getId(); |
|
| 230 | 230 | $this->db->sql_query($sql); |
| 231 | 231 | |
| 232 | 232 | return true; |
@@ -237,7 +237,7 @@ discard block |
||
| 237 | 237 | } |
| 238 | 238 | catch (\InvalidArgumentException $invalid) |
| 239 | 239 | { |
| 240 | - throw new BadRequestHttpException($this->user->lang('TFA_SOMETHING_WENT_WRONG') . '<br />' . $invalid->getMessage(), $invalid); |
|
| 240 | + throw new BadRequestHttpException($this->user->lang('TFA_SOMETHING_WENT_WRONG').'<br />'.$invalid->getMessage(), $invalid); |
|
| 241 | 241 | } |
| 242 | 242 | return false; |
| 243 | 243 | } |
@@ -322,7 +322,7 @@ discard block |
||
| 322 | 322 | 'last_used' => time(), |
| 323 | 323 | ); |
| 324 | 324 | |
| 325 | - $sql = 'INSERT INTO ' . $this->registration_table . ' ' . $this->db->sql_build_array('INSERT', $sql_ary); |
|
| 325 | + $sql = 'INSERT INTO '.$this->registration_table.' '.$this->db->sql_build_array('INSERT', $sql_ary); |
|
| 326 | 326 | $this->db->sql_query($sql); |
| 327 | 327 | |
| 328 | 328 | $sql_ary = array( |
@@ -354,8 +354,8 @@ discard block |
||
| 354 | 354 | */ |
| 355 | 355 | public function delete($key) |
| 356 | 356 | { |
| 357 | - $sql = 'DELETE FROM ' . $this->registration_table . ' |
|
| 358 | - WHERE user_id = ' . (int) $this->user->data['user_id'] . ' |
|
| 357 | + $sql = 'DELETE FROM '.$this->registration_table.' |
|
| 358 | + WHERE user_id = ' . (int) $this->user->data['user_id'].' |
|
| 359 | 359 | AND registration_id =' . (int) $key; |
| 360 | 360 | |
| 361 | 361 | $this->db->sql_query($sql); |
@@ -397,7 +397,7 @@ discard block |
||
| 397 | 397 | */ |
| 398 | 398 | private function getRegistrations($user_id) |
| 399 | 399 | { |
| 400 | - $sql = 'SELECT * FROM ' . $this->registration_table . ' WHERE user_id = ' . (int) $user_id; |
|
| 400 | + $sql = 'SELECT * FROM '.$this->registration_table.' WHERE user_id = '.(int) $user_id; |
|
| 401 | 401 | $result = $this->db->sql_query($sql); |
| 402 | 402 | $rows = array(); |
| 403 | 403 | |
@@ -485,9 +485,9 @@ discard block |
||
| 485 | 485 | */ |
| 486 | 486 | private function update_session($sql_ary) |
| 487 | 487 | { |
| 488 | - $sql = 'UPDATE ' . SESSIONS_TABLE . ' SET ' . $this->db->sql_build_array('UPDATE', $sql_ary) . ' |
|
| 488 | + $sql = 'UPDATE '.SESSIONS_TABLE.' SET '.$this->db->sql_build_array('UPDATE', $sql_ary).' |
|
| 489 | 489 | WHERE |
| 490 | - session_id = \'' . $this->db->sql_escape($this->user->data['session_id']) . '\' AND |
|
| 490 | + session_id = \'' . $this->db->sql_escape($this->user->data['session_id']).'\' AND |
|
| 491 | 491 | session_user_id = ' . (int) $this->user->data['user_id']; |
| 492 | 492 | $this->db->sql_query($sql); |
| 493 | 493 | |
@@ -43,7 +43,7 @@ discard block |
||
| 43 | 43 | 'title' => 'ACP_TFA_SETTINGS', |
| 44 | 44 | 'vars' => array( |
| 45 | 45 | 'legend1' => 'ACP_TFA_SETTINGS', |
| 46 | - 'tfa_mode' => array('lang' => 'TFA_MODE', 'validate' => 'int', 'type' => 'select', 'method' => 'select_tfa_method', 'explain' => true), |
|
| 46 | + 'tfa_mode' => array('lang' => 'TFA_MODE', 'validate' => 'int', 'type' => 'select', 'method' => 'select_tfa_method', 'explain' => true), |
|
| 47 | 47 | |
| 48 | 48 | 'legend4' => 'ACP_SUBMIT_CHANGES', |
| 49 | 49 | ) |
@@ -97,12 +97,12 @@ discard block |
||
| 97 | 97 | |
| 98 | 98 | if ($submit) |
| 99 | 99 | { |
| 100 | - $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_TFA_CONFIG_' . strtoupper($mode)); |
|
| 100 | + $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_TFA_CONFIG_'.strtoupper($mode)); |
|
| 101 | 101 | |
| 102 | 102 | $message = $user->lang('CONFIG_UPDATED'); |
| 103 | 103 | $message_type = E_USER_NOTICE; |
| 104 | 104 | |
| 105 | - trigger_error($message . adm_back_link($this->u_action), $message_type); |
|
| 105 | + trigger_error($message.adm_back_link($this->u_action), $message_type); |
|
| 106 | 106 | } |
| 107 | 107 | |
| 108 | 108 | if (!$request->is_secure()) |
@@ -115,7 +115,7 @@ discard block |
||
| 115 | 115 | |
| 116 | 116 | $template->assign_vars(array( |
| 117 | 117 | 'L_TITLE' => $user->lang[$display_vars['title']], |
| 118 | - 'L_TITLE_EXPLAIN' => $user->lang[$display_vars['title'] . '_EXPLAIN'], |
|
| 118 | + 'L_TITLE_EXPLAIN' => $user->lang[$display_vars['title'].'_EXPLAIN'], |
|
| 119 | 119 | |
| 120 | 120 | 'S_ERROR' => (sizeof($error)) ? true : false, |
| 121 | 121 | 'ERROR_MSG' => implode('<br />', $error), |
@@ -144,9 +144,9 @@ discard block |
||
| 144 | 144 | $type = explode(':', $vars['type']); |
| 145 | 145 | |
| 146 | 146 | $l_explain = ''; |
| 147 | - if ($vars['explain'] && isset($user->lang[$vars['lang'] . '_EXPLAIN'])) |
|
| 147 | + if ($vars['explain'] && isset($user->lang[$vars['lang'].'_EXPLAIN'])) |
|
| 148 | 148 | { |
| 149 | - $l_explain = $user->lang[$vars['lang'] . '_EXPLAIN']; |
|
| 149 | + $l_explain = $user->lang[$vars['lang'].'_EXPLAIN']; |
|
| 150 | 150 | } |
| 151 | 151 | |
| 152 | 152 | $content = build_cfg_template($type, $config_key, $this->new_config, $config_key, $vars); |
@@ -187,7 +187,7 @@ discard block |
||
| 187 | 187 | foreach ($act_ary as $key => $data) |
| 188 | 188 | { |
| 189 | 189 | $selected = ($data == $selected_value) ? ' selected="selected"' : ''; |
| 190 | - $act_options .= '<option value="' . $data . '"' . $selected . '>' . $user->lang($key) . '</option>'; |
|
| 190 | + $act_options .= '<option value="'.$data.'"'.$selected.'>'.$user->lang($key).'</option>'; |
|
| 191 | 191 | } |
| 192 | 192 | return $act_options; |
| 193 | 193 | } |
@@ -24,7 +24,7 @@ discard block |
||
| 24 | 24 | { |
| 25 | 25 | return array( |
| 26 | 26 | 'add_columns' => array( |
| 27 | - $this->table_prefix . 'sessions' => array( |
|
| 27 | + $this->table_prefix.'sessions' => array( |
|
| 28 | 28 | 'u2f_request' => array('TEXT', null), |
| 29 | 29 | ), |
| 30 | 30 | ), |
@@ -35,7 +35,7 @@ discard block |
||
| 35 | 35 | { |
| 36 | 36 | return array( |
| 37 | 37 | 'drop_columns' => array( |
| 38 | - $this->table_prefix . 'sessions' => array( |
|
| 38 | + $this->table_prefix.'sessions' => array( |
|
| 39 | 39 | 'u2f_request', |
| 40 | 40 | ), |
| 41 | 41 | ), |
@@ -177,8 +177,8 @@ discard block |
||
| 177 | 177 | $sql_ary = array( |
| 178 | 178 | 'last_used' => time(), |
| 179 | 179 | ); |
| 180 | - $sql = 'UPDATE ' . $this->otp_registration_table . ' |
|
| 181 | - SET ' . $this->db->sql_build_array('UPDATE', $sql_ary) . ' |
|
| 180 | + $sql = 'UPDATE '.$this->otp_registration_table.' |
|
| 181 | + SET ' . $this->db->sql_build_array('UPDATE', $sql_ary).' |
|
| 182 | 182 | WHERE |
| 183 | 183 | registration_id = ' . (int) $registration['registration_id']; |
| 184 | 184 | $this->db->sql_query($sql); |
@@ -208,9 +208,9 @@ discard block |
||
| 208 | 208 | public function register_start() |
| 209 | 209 | { |
| 210 | 210 | $secret = $this->otp->generateSecret(); |
| 211 | - $QR = $this->otp_helper->generateKeyURI('totp', $secret, generate_board_url(), '',0, 'sha1'); |
|
| 211 | + $QR = $this->otp_helper->generateKeyURI('totp', $secret, generate_board_url(), '', 0, 'sha1'); |
|
| 212 | 212 | $this->template->assign_vars(array( |
| 213 | - 'TFA_QR_CODE' => 'https://chart.googleapis.com/chart?chs=200x200&chld=M|0&cht=qr&chl=' . $QR, |
|
| 213 | + 'TFA_QR_CODE' => 'https://chart.googleapis.com/chart?chs=200x200&chld=M|0&cht=qr&chl='.$QR, |
|
| 214 | 214 | 'TFA_SECRET' => $secret, |
| 215 | 215 | 'L_TFA_ADD_OTP_KEY_EXPLAIN' => $this->user->lang('TFA_ADD_OTP_KEY_EXPLAIN', $secret), |
| 216 | 216 | 'S_HIDDEN_FIELDS_MODULE' => build_hidden_fields(array( |
@@ -230,7 +230,7 @@ discard block |
||
| 230 | 230 | public function register() |
| 231 | 231 | { |
| 232 | 232 | $secret = $this->request->variable('secret', ''); |
| 233 | - $otp = $this->request->variable('register', ''); |
|
| 233 | + $otp = $this->request->variable('register', ''); |
|
| 234 | 234 | |
| 235 | 235 | if (!$this->otp->checkTOTP($secret, $otp, 'sha1')) |
| 236 | 236 | { |
@@ -244,7 +244,7 @@ discard block |
||
| 244 | 244 | 'last_used' => time(), |
| 245 | 245 | ); |
| 246 | 246 | |
| 247 | - $sql = 'INSERT INTO ' . $this->otp_registration_table . ' ' . $this->db->sql_build_array('INSERT', $sql_ary); |
|
| 247 | + $sql = 'INSERT INTO '.$this->otp_registration_table.' '.$this->db->sql_build_array('INSERT', $sql_ary); |
|
| 248 | 248 | $this->db->sql_query($sql); |
| 249 | 249 | } |
| 250 | 250 | |
@@ -267,8 +267,8 @@ discard block |
||
| 267 | 267 | */ |
| 268 | 268 | public function delete($key) |
| 269 | 269 | { |
| 270 | - $sql = 'DELETE FROM ' . $this->otp_registration_table . ' |
|
| 271 | - WHERE user_id = ' . (int) $this->user->data['user_id'] . ' |
|
| 270 | + $sql = 'DELETE FROM '.$this->otp_registration_table.' |
|
| 271 | + WHERE user_id = ' . (int) $this->user->data['user_id'].' |
|
| 272 | 272 | AND registration_id =' . (int) $key; |
| 273 | 273 | |
| 274 | 274 | $this->db->sql_query($sql); |
@@ -281,7 +281,7 @@ discard block |
||
| 281 | 281 | */ |
| 282 | 282 | private function getRegistrations($user_id) |
| 283 | 283 | { |
| 284 | - $sql = 'SELECT * FROM ' . $this->otp_registration_table . ' WHERE user_id = ' . (int) $user_id; |
|
| 284 | + $sql = 'SELECT * FROM '.$this->otp_registration_table.' WHERE user_id = '.(int) $user_id; |
|
| 285 | 285 | $result = $this->db->sql_query($sql); |
| 286 | 286 | $rows = $this->db->sql_fetchrowset($result); |
| 287 | 287 | |
