mirror/librenms-librenms
1
0
Fork 0
mirror of https://github.com/librenms/librenms.git synced 2024-10-07 16:52:45 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity
librenms-librenms/html/includes/authentication/mysql.inc.php

107 lines
2.7 KiB
PHP
Raw Normal View History

auth modules! please test http-auth again, i haven't, but i think i got it right... git-svn-id: http://www.observium.org/svn/observer/trunk@973 61d68cd4-352d-0410-923a-c4978735b2b8
2010-02-28 13:04:07 +00:00
<?php
function authenticate($username,$password)
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
$encrypted_old = md5($password);
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
$row = dbFetchRow("SELECT username,password FROM `users` WHERE `username`= ?", array($username));
just another cleanup commit, don't mind me... git-svn-id: http://www.observium.org/svn/observer/trunk@1885 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-16 18:28:52 +00:00
if ($row['username'] && $row['username'] == $username)
auth modules! please test http-auth again, i haven't, but i think i got it right... git-svn-id: http://www.observium.org/svn/observer/trunk@973 61d68cd4-352d-0410-923a-c4978735b2b8
2010-02-28 13:04:07 +00:00
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
// Migrate from old, unhashed password
if ($row['password'] == $encrypted_old)
{
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
$row = dbFetchRow("DESCRIBE users password");
only update password to salted if database field is long enough git-svn-id: http://www.observium.org/svn/observer/trunk@1939 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-20 21:13:59 +00:00
if ($row['Type'] == 'varchar(34)')
{
changepassword($username,$password);
}
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
return 1;
}
if ($row['password'] == crypt($password,$row['password']))
{
return 1;
}
auth modules! please test http-auth again, i haven't, but i think i got it right... git-svn-id: http://www.observium.org/svn/observer/trunk@973 61d68cd4-352d-0410-923a-c4978735b2b8
2010-02-28 13:04:07 +00:00
}
return 0;
}
- Added support in MySQL auth to prohibit users from modifying their password. git-svn-id: http://www.observium.org/svn/observer/trunk@2252 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-05 14:54:12 +00:00
function passwordscanchange($username="")
change password option in the auth modules, not used in the webinterface yet git-svn-id: http://www.observium.org/svn/observer/trunk@990 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 00:00:05 +00:00
{
- Added support in MySQL auth to prohibit users from modifying their password. git-svn-id: http://www.observium.org/svn/observer/trunk@2252 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-05 14:54:12 +00:00
/*
* By default allow the password to be modified, unless the existing
* user is explicitly prohibited to do so.
*/
if (empty($username) || !user_exists($username)) {
return 1;
} else {
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
return dbFetchCell("SELECT can_modify_passwd FROM users WHERE username = ?", array($username));
- Added support in MySQL auth to prohibit users from modifying their password. git-svn-id: http://www.observium.org/svn/observer/trunk@2252 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-05 14:54:12 +00:00
}
change password option in the auth modules, not used in the webinterface yet git-svn-id: http://www.observium.org/svn/observer/trunk@990 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 00:00:05 +00:00
}
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
/**
* From: http://code.activestate.com/recipes/576894-generate-a-salt/
* This function generates a password salt as a string of x (default = 15) characters
* ranging from a-zA-Z0-9.
* @param $max integer The number of characters in the string
* @author AfroSoft <scripts@afrosoft.co.cc>
*/
function generateSalt($max = 15)
{
$characterList = "abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
$i = 0;
$salt = "";
do
{
$salt .= $characterList{mt_rand(0,strlen($characterList))};
$i++;
} while ($i <= $max);
return $salt;
}
fix password change for mysql auth git-svn-id: http://www.observium.org/svn/observer/trunk@1232 61d68cd4-352d-0410-923a-c4978735b2b8
2010-06-21 15:39:43 +00:00
function changepassword($username,$password)
change password option in the auth modules, not used in the webinterface yet git-svn-id: http://www.observium.org/svn/observer/trunk@990 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 00:00:05 +00:00
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
$encrypted = crypt($password,'$1$' . generateSalt(8).'$');
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
return dbUpdate(array('password' => $encrypted), 'users', '`username` = ?', array($username));
change password option in the auth modules, not used in the webinterface yet git-svn-id: http://www.observium.org/svn/observer/trunk@990 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 00:00:05 +00:00
}
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
function auth_usermanagement()
{
return 1;
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
- Added support in MySQL auth to prohibit users from modifying their password. git-svn-id: http://www.observium.org/svn/observer/trunk@2252 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-05 14:54:12 +00:00
function adduser($username, $password, $level, $email = "", $realname = "", $can_modify_passwd='1')
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
{
check for existing user in adduser git-svn-id: http://www.observium.org/svn/observer/trunk@1930 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-18 16:56:02 +00:00
if (!user_exists($username))
{
change from unsalted md5 to salted md5 passwords, migrating passwords as authentication succeeds git-svn-id: http://www.observium.org/svn/observer/trunk@1936 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-19 20:23:23 +00:00
$encrypted = crypt($password,'$1$' . generateSalt(8).'$');
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
return dbInsert(array('username' => $username, 'password' => $encrypted, 'level' => $level, 'email' => $email, 'realname' => $realname, 'can_modify_passwd' => $can_modify_passwd), 'users');
} else {
return FALSE;
check for existing user in adduser git-svn-id: http://www.observium.org/svn/observer/trunk@1930 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-18 16:56:02 +00:00
}
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
}
function user_exists($username)
{
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
return @dbFetchCell("SELECT * FROM users WHERE username = ?", array($username));
MOAR AUTHMODULE, with some parts left to do... git-svn-id: http://www.observium.org/svn/observer/trunk@991 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:10:05 +00:00
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
userlevel via authmodule git-svn-id: http://www.observium.org/svn/observer/trunk@992 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:15:52 +00:00
function get_userlevel($username)
{
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
return dbFetchRow("SELECT `level` FROM `users` WHERE `username` = ?", array($username));
userlevel via authmodule git-svn-id: http://www.observium.org/svn/observer/trunk@992 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:15:52 +00:00
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
more working less sucking git-svn-id: http://www.observium.org/svn/observer/trunk@994 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:22:09 +00:00
function get_userid($username)
{
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
return dbFetchRow("SELECT `user_id` FROM `users` WHERE `username` = ?", array($username));
more working less sucking git-svn-id: http://www.observium.org/svn/observer/trunk@994 61d68cd4-352d-0410-923a-c4978735b2b8
2010-03-06 01:22:09 +00:00
}
remove dead map.php code, rename some .inc to .inc.php files, general trailing space cleanup part 1, some reindent. No expected functionality change whatsoever ;) git-svn-id: http://www.observium.org/svn/observer/trunk@1824 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-12 08:50:47 +00:00
r1984: BIG BROTHER RELEASE // Move user deletion code into authentication module git-svn-id: http://www.observium.org/svn/observer/trunk@1984 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-28 10:48:43 +00:00
function deluser($username)
{
fix some stuff, break some stuff (ports disaply is missing some stuff atm) git-svn-id: http://www.observium.org/svn/observer/trunk@2290 61d68cd4-352d-0410-923a-c4978735b2b8
2011-05-12 22:14:56 +00:00
return dbDelete('users', "`username` = ?", array($username));
r1984: BIG BROTHER RELEASE // Move user deletion code into authentication module git-svn-id: http://www.observium.org/svn/observer/trunk@1984 61d68cd4-352d-0410-923a-c4978735b2b8
2011-03-28 10:48:43 +00:00
}
fix password change for mysql auth git-svn-id: http://www.observium.org/svn/observer/trunk@1232 61d68cd4-352d-0410-923a-c4978735b2b8
2010-06-21 15:39:43 +00:00
?>
Reference in New Issue Copy Permalink