mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
librenms-librenms/html/includes/authentication/mysql.inc.php

99 lines
2.5 KiB
PHP
Raw Normal View History

auth modules! please test http-auth again, i haven't, but i think i got it right... git-svn-id: http://www.observium.org/svn/observer/trunk@973 61d68cd4-352d-0410-923a-c4978735b2b8
2010-02-28 13:04:07 +00:00
<?php
function authenticate($username,$password)
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
$encrypted_old = md5($password);
$sql = "SELECT username,password FROM `users` WHERE `username`='".$username."'";
auth modules! please test http-auth again, i haven't, but i think i got it right... git-svn-id: http://www.observium.org/svn/observer/trunk@973 61d68cd4-352d-0410-923a-c4978735b2b8
2010-02-28 13:04:07 +00:00
$query = mysql_query($sql);
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
$row = @mysql_fetch_assoc($query);
just another cleanup commit, don't mind me... git-svn-id: http://www.observium.org/svn/observer/trunk@1885 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-16 18:28:52 +00:00
if ($row['username'] && $row['username'] == $username)
auth modules! please test http-auth again, i haven't, but i think i got it right... git-svn-id: http://www.observium.org/svn/observer/trunk@973 61d68cd4-352d-0410-923a-c4978735b2b8
2010-02-28 13:04:07 +00:00
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
// Migrate from old, unhashed password
if ($row['password'] == $encrypted_old)
{
only update password to salted if database field is long enough git-svn-id: http://www.observium.org/svn/observer/trunk@1939 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-20 21:13:59 +00:00
$query = mysql_query("DESCRIBE users password");
$row = mysql_fetch_assoc($query);
if ($row['Type'] == 'varchar(34)')
{
changepassword($username,$password);
}
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
return 1;
}
if ($row['password'] == crypt($password,$row['password']))
{
return 1;
}
auth modules! please test http-auth again, i haven't, but i think i got it right... git-svn-id: http://www.observium.org/svn/observer/trunk@973 61d68cd4-352d-0410-923a-c4978735b2b8
2010-02-28 13:04:07 +00:00
}
return 0;
}
change password option in the auth modules, not used in the webinterface yet git-svn-id: http://www.observium.org/svn/observer/trunk@990 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 00:00:05 +00:00
function passwordscanchange()
{
return 1;
}
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
/**
* From: http://code.activestate.com/recipes/576894-generate-a-salt/
* This function generates a password salt as a string of x (default = 15) characters
* ranging from a-zA-Z0-9.
* @param $max integer The number of characters in the string
* @author AfroSoft <scripts@afrosoft.co.cc>
*/
function generateSalt($max = 15)
{
$characterList = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
$i = 0;
$salt = "";
do
{
$salt .= $characterList{mt_rand(0,strlen($characterList))};
$i++;
} while ($i <= $max);
return $salt;
}
fix password change for mysql auth git-svn-id: http://www.observium.org/svn/observer/trunk@1232 61d68cd4-352d-0410-923a-c4978735b2b8
2010-06-21 15:39:43 +00:00
function changepassword($username,$password)
change password option in the auth modules, not used in the webinterface yet git-svn-id: http://www.observium.org/svn/observer/trunk@990 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 00:00:05 +00:00
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
$encrypted = crypt($password,'$1$' . generateSalt(8).'$');
fix password change for mysql auth git-svn-id: http://www.observium.org/svn/observer/trunk@1232 61d68cd4-352d-0410-923a-c4978735b2b8
2010-06-21 15:39:43 +00:00
$sql = "UPDATE `users` SET `password` = '$encrypted' WHERE `username`='".$username."'";
change password option in the auth modules, not used in the webinterface yet git-svn-id: http://www.observium.org/svn/observer/trunk@990 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 00:00:05 +00:00
$query = mysql_query($sql);
}
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
function auth_usermanagement()
{
return 1;
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
function adduser($username, $password, $level, $email = "", $realname = "")
{
check for existing user in adduser git-svn-id: http://www.observium.org/svn/observer/trunk@1930 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-18 16:56:02 +00:00
if (!user_exists($username))
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
$encrypted = crypt($password,'$1$' . generateSalt(8).'$');
mysql_query("INSERT INTO `users` (`username`,`password`,`level`, `email`, `realname`) VALUES ('".mres($username)."','".mres($encrypted)."','".mres($level)."','".mres($email)."','".mres($realname)."')");
check for existing user in adduser git-svn-id: http://www.observium.org/svn/observer/trunk@1930 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-18 16:56:02 +00:00
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
return mysql_affected_rows();
}
function user_exists($username)
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
return @mysql_result(mysql_query("SELECT * FROM users WHERE username = '".mres($username)."'"),0);
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
userlevel via authmodule git-svn-id: http://www.observium.org/svn/observer/trunk@992 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:15:52 +00:00
function get_userlevel($username)
{
$sql = "SELECT level FROM `users` WHERE `username`='".mres($username)."'";
can has working pages? NO CAN HAS :( git-svn-id: http://www.observium.org/svn/observer/trunk@993 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:19:06 +00:00
$row = mysql_fetch_array(mysql_query($sql));
userlevel via authmodule git-svn-id: http://www.observium.org/svn/observer/trunk@992 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:15:52 +00:00
return $row['level'];
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
more working less sucking git-svn-id: http://www.observium.org/svn/observer/trunk@994 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:22:09 +00:00
function get_userid($username)
{
$sql = "SELECT user_id FROM `users` WHERE `username`='".mres($username)."'";
$row = mysql_fetch_array(mysql_query($sql));
return $row['user_id'];
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
fix password change for mysql auth git-svn-id: http://www.observium.org/svn/observer/trunk@1232 61d68cd4-352d-0410-923a-c4978735b2b8
2010-06-21 15:39:43 +00:00
?>
Reference in New Issue Copy Permalink