1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
|
<?php
/**
* @version $Header$
* @package users
* @subpackage functions
*/
/**
* users_admin_email_user
*
* @param array $pParamHash
* @access public
* @return bool true on success, false on failure - mErrors will contain reason for failure
*/
namespace Bitweaver\Users;
use Bitweaver\KernelTools;
function users_admin_email_user( &$pParamHash ) {
global $gBitSmarty, $gBitSystem;
$ret = false;
$siteName = $gBitSystem->getConfig('site_title', $_SERVER['HTTP_HOST'] );
$gBitSmarty->assign( 'siteName', $_SERVER["SERVER_NAME"] );
$gBitSmarty->assign( 'mail_site', $_SERVER["SERVER_NAME"] );
$gBitSmarty->assign( 'mail_user', $pParamHash['login'] );
if( !empty( $_REQUEST['admin_verify_user'] ) && !empty( $pParamHash['user_store']['provpass'] )) {
$apass = addslashes( substr( md5( $gBitSystem->genPass() ), 0, 25 ));
$apass = $pParamHash['user_store']['provpass'];
$machine = KernelTools::httpPrefix().USERS_PKG_URL.'confirm.php';
// Send the mail
$gBitSmarty->assign( 'mail_machine', $machine );
$gBitSmarty->assign( 'mailUserId', $pParamHash['user_store']['user_id'] );
$gBitSmarty->assign( 'mailProvPass', $apass );
$mail_data = $gBitSmarty->fetch( 'bitpackage:users/admin_validation_mail.tpl' );
mail( $pParamHash['email'], $siteName.' - '.KernelTools::tra( 'Your registration information' ),$mail_data,"From: ".$gBitSystem->getConfig( 'site_sender_email' )."\r\nContent-type: text/plain;charset=utf-8\r\n" );
$gBitSmarty->assign( 'showmsg', 'n' );
$ret = [
'confirm' => 'Validation email sent to '.$pParamHash['email'].'.',
];
} elseif( !empty( $pParamHash['password'] )) {
// Send the welcome mail
$gBitSmarty->assign( 'mailPassword',$pParamHash['password'] );
$gBitSmarty->assign( 'mailEmail',$pParamHash['email'] );
$mail_data = $gBitSmarty->fetch( 'bitpackage:users/admin_welcome_mail.tpl' );
mail( $pParamHash["email"], KernelTools::tra( 'Welcome to' ).' '.$siteName,$mail_data,"From: ".$gBitSystem->getConfig('site_sender_email')."\r\nContent-type: text/plain;charset=utf-8\r\n" );
$ret = [
'welcome' => 'Welcome email sent to ' . $pParamHash['email'] . '.',
];
}
return $ret;
}
/**
* scramble_email
*
* @param string $email
* @param string $method
* @access public
* @return bool true on success, false on failure - mErrors will contain reason for failure
*/
function scramble_email( $email, $method = 'unicode' ) {
switch( $method ) {
case 'strtr':
$trans = [ "@" => KernelTools::tra(" AT "),
"." => KernelTools::tra(" DOT "),
];
$ret = strtr($email, $trans);
break;
case 'x' :
$encoded = $email;
for ($i = strpos($email, "@") + 1; $i < strlen($email); $i++) {
if ($encoded[$i] != ".") $encoded[$i] = 'x';
}
$ret = $encoded;
break;
// for legacy code
case 'y':
case 'unicode':
$encoded = '';
for( $i = 0; $i < strlen( $email ); $i++) {
$encoded .= '&#' . ord( $email[$i] ). ';';
}
$ret = $encoded;
break;
default:
$ret = false;
break;
}
return $ret;
}
function users_httpauth(){
global $gBitSystem, $gBitUser;
// require ssl
$https_mode = !empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] != 'off';
// no https redirect
if( !$https_mode ){
$url = $gBitSystem->getConfig( 'site_https_domain' );
$site_https_port = $gBitSystem->getConfig('site_https_port', 443);
if ($site_https_port != 443)
$url .= ':' . $site_https_port;
$url .= $gBitSystem->getConfig( 'site_https_prefix' ) . $_SERVER['REQUEST_URI'];
if (SID)
$url .= (!empty( $_SERVER['QUERY_STRING'] )?'&':'?') . SID;
$url = preg_replace('/\/+/', '/', $url);
header("Location: https://$url");
exit;
}
$user = $_SERVER['PHP_AUTH_USER'] ?? false;
$pass = $_SERVER['PHP_AUTH_PW'] ?? false;
$challenge = false;
$response = false;
// verify the user is valid first
if( $gBitUser->validate( $user, $pass, $challenge, $response ) ){
// log in user - returns a url so can't use it for validation check
$gBitUser->login( $user, $pass, $challenge, $response );
return true;
}
// require http auth
header('WWW-Authenticate: Basic realm="Test"');
header('HTTP/1.0 401 Unauthorized');
$gBitSystem->fatalError( KernelTools::tra('HTTP Authentication Canceled') );
exit;
}
|
