paul999 /
phpbb_2fa
@@ -199,8 +199,7 @@ |
||
| 199 | 199 | // We simply return and continue the login procedure (The normal way :)), |
| 200 | 200 | // and will disable all pages until he has added a 2FA key. |
| 201 | 201 | return $event; |
| 202 | - } |
|
| 203 | - else |
|
| 202 | + } else |
|
| 204 | 203 | { |
| 205 | 204 | $this->session_helper->generate_page($event['login']['user_row']['user_id'], $event['admin'], $event['autologin'], !$this->request->is_set_post('viewonline'), $this->request->variable('redirect', '')); |
| 206 | 205 | } |
@@ -79,13 +79,13 @@ discard block |
||
| 79 | 79 | */ |
| 80 | 80 | public function __construct(session_helper_interface $session_helper, user $user, request_interface $request, driver_interface $db, template $template, config $config, $php_ext, $root_path) |
| 81 | 81 | { |
| 82 | - $this->session_helper = $session_helper; |
|
| 83 | - $this->user = $user; |
|
| 84 | - $this->request = $request; |
|
| 85 | - $this->config = $config; |
|
| 86 | - $this->db = $db; |
|
| 82 | + $this->session_helper = $session_helper; |
|
| 83 | + $this->user = $user; |
|
| 84 | + $this->request = $request; |
|
| 85 | + $this->config = $config; |
|
| 86 | + $this->db = $db; |
|
| 87 | 87 | $this->template = $template; |
| 88 | - $this->php_ext = $php_ext; |
|
| 88 | + $this->php_ext = $php_ext; |
|
| 89 | 89 | $this->root_path = $root_path; |
| 90 | 90 | } |
| 91 | 91 | |
@@ -136,7 +136,7 @@ discard block |
||
| 136 | 136 | if ($this->user->data['is_bot'] == false && $this->user->data['user_id'] != ANONYMOUS && $this->session_helper->isTfaRequired($this->user->data['user_id'], false, $this->user->data) && !$this->session_helper->isTfaRegistered($this->user->data['user_id'])) |
| 137 | 137 | { |
| 138 | 138 | @define('SKIP_CHECK_DISABLED', true); |
| 139 | - if ($this->user->page['page_name'] === 'memberlist.' . $this->php_ext && $this->request->variable('mode', '') == 'contactadmin') |
|
| 139 | + if ($this->user->page['page_name'] === 'memberlist.'.$this->php_ext && $this->request->variable('mode', '') == 'contactadmin') |
|
| 140 | 140 | { |
| 141 | 141 | // We are at the contact admin page. We will allow this in all cases. |
| 142 | 142 | return; |
@@ -144,19 +144,19 @@ discard block |
||
| 144 | 144 | |
| 145 | 145 | $this->user->set_cookie('rn', $this->user->data['session_id'], time() + 3600 * 24, true); |
| 146 | 146 | |
| 147 | - $msg_title = $this->user->lang['INFORMATION']; |
|
| 147 | + $msg_title = $this->user->lang['INFORMATION']; |
|
| 148 | 148 | if ($this->session_helper->isTfaKeyRegistred($this->user->data['user_id'])) |
| 149 | 149 | { |
| 150 | 150 | // the user has keys registered, but they are not usable (Might be due to browser requirements, or others) |
| 151 | 151 | // We will not allow them to register a new key. They will need to contact the admin instead unfortunately. |
| 152 | 152 | $this->user->add_lang_ext('paul999/tfa', 'common'); |
| 153 | 153 | $url = phpbb_get_board_contact_link($this->config, $this->root_path, $this->php_ext); |
| 154 | - $msg_text = $this->user->lang('TFA_REQUIRED_KEY_AVAILABLE_BUT_UNUSABLE', '<a href="' . $url . '">', '</a>'); |
|
| 154 | + $msg_text = $this->user->lang('TFA_REQUIRED_KEY_AVAILABLE_BUT_UNUSABLE', '<a href="'.$url.'">', '</a>'); |
|
| 155 | 155 | $this->user->session_kill(); |
| 156 | 156 | $this->generate_fatal_error($msg_title, $msg_text); |
| 157 | 157 | } |
| 158 | 158 | |
| 159 | - $sql = 'SELECT module_id FROM ' . MODULES_TABLE . " WHERE module_langname = 'UCP_TFA' OR module_langname = 'UCP_TFA_MANAGE'"; |
|
| 159 | + $sql = 'SELECT module_id FROM '.MODULES_TABLE." WHERE module_langname = 'UCP_TFA' OR module_langname = 'UCP_TFA_MANAGE'"; |
|
| 160 | 160 | $result = $this->db->sql_query($sql, 3600); |
| 161 | 161 | $allowed_i = array(); |
| 162 | 162 | |
@@ -168,19 +168,19 @@ discard block |
||
| 168 | 168 | $ucp_mode = '-paul999-tfa-ucp-tfa_module'; |
| 169 | 169 | $allowed_i[] = $ucp_mode; |
| 170 | 170 | |
| 171 | - if ($this->user->page['page_name'] === 'ucp.' . $this->php_ext && in_array($this->request->variable('i', ''), $allowed_i)) |
|
| 171 | + if ($this->user->page['page_name'] === 'ucp.'.$this->php_ext && in_array($this->request->variable('i', ''), $allowed_i)) |
|
| 172 | 172 | { |
| 173 | 173 | return; // We are at our UCP page, so skip any other checks. This page is always available |
| 174 | 174 | } |
| 175 | 175 | $this->user->add_lang_ext('paul999/tfa', 'common'); |
| 176 | 176 | $url = append_sid("{$this->root_path}ucp.{$this->php_ext}", "i={$ucp_mode}"); |
| 177 | - $msg_text = $this->user->lang('TFA_REQUIRED_KEY_MISSING', '<a href="' . $url . '">', '</a>'); |
|
| 177 | + $msg_text = $this->user->lang('TFA_REQUIRED_KEY_MISSING', '<a href="'.$url.'">', '</a>'); |
|
| 178 | 178 | |
| 179 | 179 | $this->generate_fatal_error($msg_title, $msg_text); |
| 180 | 180 | } |
| 181 | 181 | |
| 182 | 182 | // If the user had no key when logged in, but now has a key, we will force him to use the key. |
| 183 | - if ($this->user->data['is_bot'] == false && $this->user->data['user_id'] != ANONYMOUS && $this->request->variable($this->config['cookie_name'] . '_rn', '', false, request_interface::COOKIE) !== '' && $this->session_helper->isTfaRequired($this->user->data['user_id'], false, $this->user->data)) |
|
| 183 | + if ($this->user->data['is_bot'] == false && $this->user->data['user_id'] != ANONYMOUS && $this->request->variable($this->config['cookie_name'].'_rn', '', false, request_interface::COOKIE) !== '' && $this->session_helper->isTfaRequired($this->user->data['user_id'], false, $this->user->data)) |
|
| 184 | 184 | { |
| 185 | 185 | $this->session_helper->generate_page($this->user->data['user_id'], false, $this->user->data['session_autologin'], $this->user->data['session_viewonline'], $this->user->page['page'], true); |
| 186 | 186 | } |
@@ -162,8 +162,7 @@ discard block |
||
| 162 | 162 | $this->template->assign_var('S_ERROR', $this->user->lang('TFA_INCORRECT_KEY')); |
| 163 | 163 | $this->session_helper->generate_page($user_id, $admin, $auto_login, $viewonline, $redirect); |
| 164 | 164 | } |
| 165 | - } |
|
| 166 | - catch (http_exception $ex) // @TODO: Replace exception with own exception |
|
| 165 | + } catch (http_exception $ex) // @TODO: Replace exception with own exception |
|
| 167 | 166 | { |
| 168 | 167 | |
| 169 | 168 | $this->log->add('critical', $this->user->data['user_id'], $this->user->ip, 'LOG_TFA_EXCEPTION', false, [$ex->getMessage()]); |
@@ -177,8 +176,7 @@ discard block |
||
| 177 | 176 | { |
| 178 | 177 | $this->template->assign_var('S_ERROR', $this->user->lang($ex->getMessage())); |
| 179 | 178 | $this->session_helper->generate_page($user_id, $admin, $auto_login, $viewonline, $redirect); |
| 180 | - } |
|
| 181 | - else |
|
| 179 | + } else |
|
| 182 | 180 | { |
| 183 | 181 | throw $ex; |
| 184 | 182 | } |
@@ -91,16 +91,16 @@ discard block |
||
| 91 | 91 | */ |
| 92 | 92 | public function __construct(helper $controller_helper, driver_interface $db, template $template, user $user, request_interface $request, config $config, log $log, session_helper_interface $session_helper, $root_path, $php_ext) |
| 93 | 93 | { |
| 94 | - $this->controller_helper = $controller_helper; |
|
| 95 | - $this->template = $template; |
|
| 96 | - $this->db = $db; |
|
| 97 | - $this->user = $user; |
|
| 98 | - $this->request = $request; |
|
| 99 | - $this->config = $config; |
|
| 100 | - $this->session_helper = $session_helper; |
|
| 101 | - $this->root_path = $root_path; |
|
| 102 | - $this->php_ext = $php_ext; |
|
| 103 | - $this->log = $log; |
|
| 94 | + $this->controller_helper = $controller_helper; |
|
| 95 | + $this->template = $template; |
|
| 96 | + $this->db = $db; |
|
| 97 | + $this->user = $user; |
|
| 98 | + $this->request = $request; |
|
| 99 | + $this->config = $config; |
|
| 100 | + $this->session_helper = $session_helper; |
|
| 101 | + $this->root_path = $root_path; |
|
| 102 | + $this->php_ext = $php_ext; |
|
| 103 | + $this->log = $log; |
|
| 104 | 104 | } |
| 105 | 105 | |
| 106 | 106 | /** |
@@ -135,9 +135,9 @@ discard block |
||
| 135 | 135 | 'tfa_random' => '', |
| 136 | 136 | 'tfa_uid' => 0, |
| 137 | 137 | ); |
| 138 | - $sql = 'UPDATE ' . SESSIONS_TABLE . ' SET ' . $this->db->sql_build_array('UPDATE', $sql_ary) . " |
|
| 138 | + $sql = 'UPDATE '.SESSIONS_TABLE.' SET '.$this->db->sql_build_array('UPDATE', $sql_ary)." |
|
| 139 | 139 | WHERE |
| 140 | - session_id = '" . $this->db->sql_escape($this->user->data['session_id']) . "' AND |
|
| 140 | + session_id = '" . $this->db->sql_escape($this->user->data['session_id'])."' AND |
|
| 141 | 141 | session_user_id = " . (int) $this->user->data['user_id']; |
| 142 | 142 | $this->db->sql_query($sql); |
| 143 | 143 | |
@@ -158,7 +158,7 @@ discard block |
||
| 158 | 158 | { |
| 159 | 159 | if (!$module->login($user_id)) |
| 160 | 160 | { |
| 161 | - $this->log->add('critical', $this->user->data['user_id'], $this->user->ip, 'LOG_TFA_EXCEPTION',false, ['TFA_INCORRECT_KEY']); |
|
| 161 | + $this->log->add('critical', $this->user->data['user_id'], $this->user->ip, 'LOG_TFA_EXCEPTION', false, ['TFA_INCORRECT_KEY']); |
|
| 162 | 162 | $this->template->assign_var('S_ERROR', $this->user->lang('TFA_INCORRECT_KEY')); |
| 163 | 163 | $this->session_helper->generate_page($user_id, $admin, $auto_login, $viewonline, $redirect); |
| 164 | 164 | } |
@@ -202,8 +202,8 @@ discard block |
||
| 202 | 202 | if ($admin) |
| 203 | 203 | { |
| 204 | 204 | // the login array is used because the user ids do not differ for re-authentication |
| 205 | - $sql = 'DELETE FROM ' . SESSIONS_TABLE . " |
|
| 206 | - WHERE session_id = '" . $this->db->sql_escape($old_session_id) . "' |
|
| 205 | + $sql = 'DELETE FROM '.SESSIONS_TABLE." |
|
| 206 | + WHERE session_id = '" . $this->db->sql_escape($old_session_id)."' |
|
| 207 | 207 | AND session_user_id = " . (int) $user_id; |
| 208 | 208 | $this->db->sql_query($sql); |
| 209 | 209 | |
@@ -43,8 +43,8 @@ discard block |
||
| 43 | 43 | 'title' => 'ACP_TFA_SETTINGS', |
| 44 | 44 | 'vars' => array( |
| 45 | 45 | 'legend1' => 'ACP_TFA_SETTINGS', |
| 46 | - 'tfa_mode' => array('lang' => 'TFA_MODE', 'validate' => 'int', 'type' => 'select', 'method' => 'select_tfa_method', 'explain' => true), |
|
| 47 | - 'tfa_acp' => array('lang' => 'TFA_ACP', 'validate' => 'int', 'type' => 'radio', 'explain' => true), |
|
| 46 | + 'tfa_mode' => array('lang' => 'TFA_MODE', 'validate' => 'int', 'type' => 'select', 'method' => 'select_tfa_method', 'explain' => true), |
|
| 47 | + 'tfa_acp' => array('lang' => 'TFA_ACP', 'validate' => 'int', 'type' => 'radio', 'explain' => true), |
|
| 48 | 48 | |
| 49 | 49 | 'legend4' => 'ACP_SUBMIT_CHANGES', |
| 50 | 50 | ) |
@@ -98,12 +98,12 @@ discard block |
||
| 98 | 98 | |
| 99 | 99 | if ($submit) |
| 100 | 100 | { |
| 101 | - $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_TFA_CONFIG_' . strtoupper($mode)); |
|
| 101 | + $phpbb_log->add('admin', $user->data['user_id'], $user->ip, 'LOG_TFA_CONFIG_'.strtoupper($mode)); |
|
| 102 | 102 | |
| 103 | 103 | $message = $user->lang('CONFIG_UPDATED'); |
| 104 | 104 | $message_type = E_USER_NOTICE; |
| 105 | 105 | |
| 106 | - trigger_error($message . adm_back_link($this->u_action), $message_type); |
|
| 106 | + trigger_error($message.adm_back_link($this->u_action), $message_type); |
|
| 107 | 107 | } |
| 108 | 108 | |
| 109 | 109 | if (!$request->is_secure()) |
@@ -116,7 +116,7 @@ discard block |
||
| 116 | 116 | |
| 117 | 117 | $template->assign_vars(array( |
| 118 | 118 | 'L_TITLE' => $user->lang($display_vars['title']), |
| 119 | - 'L_TITLE_EXPLAIN' => $user->lang($display_vars['title'] . '_EXPLAIN'), |
|
| 119 | + 'L_TITLE_EXPLAIN' => $user->lang($display_vars['title'].'_EXPLAIN'), |
|
| 120 | 120 | |
| 121 | 121 | 'S_ERROR' => (sizeof($error)) ? true : false, |
| 122 | 122 | 'ERROR_MSG' => implode('<br />', $error), |
@@ -145,9 +145,9 @@ discard block |
||
| 145 | 145 | $type = explode(':', $vars['type']); |
| 146 | 146 | |
| 147 | 147 | $l_explain = ''; |
| 148 | - if ($vars['explain'] && array_key_exists($vars['lang'] . '_EXPLAIN', $user->lang)) |
|
| 148 | + if ($vars['explain'] && array_key_exists($vars['lang'].'_EXPLAIN', $user->lang)) |
|
| 149 | 149 | { |
| 150 | - $l_explain = $user->lang($vars['lang'] . '_EXPLAIN'); |
|
| 150 | + $l_explain = $user->lang($vars['lang'].'_EXPLAIN'); |
|
| 151 | 151 | } |
| 152 | 152 | |
| 153 | 153 | $content = build_cfg_template($type, $config_key, $this->new_config, $config_key, $vars); |
@@ -187,7 +187,7 @@ discard block |
||
| 187 | 187 | foreach ($act_ary as $key => $data) |
| 188 | 188 | { |
| 189 | 189 | $selected = ($data == $selected_value) ? ' selected="selected"' : ''; |
| 190 | - $act_options .= '<option value="' . $data . '"' . $selected . '>' . $user->lang($key) . '</option>'; |
|
| 190 | + $act_options .= '<option value="'.$data.'"'.$selected.'>'.$user->lang($key).'</option>'; |
|
| 191 | 191 | } |
| 192 | 192 | return $act_options; |
| 193 | 193 | } |
