bashclub/piler
1
0
Fork 0
mirror of https://bitbucket.org/jsuto/piler.git synced 2025-06-13 01:37:02 +02:00
Code Issues Packages Projects Releases Wiki Activity

added 4eyes feature for auditors

Browse Source
This commit is contained in:
SJ
2015-02-20 12:58:36 +01:00
parent bc8d264778
commit 4356a91b59
8 changed files with 287 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

123
webui/controller/login/foureyes.php Normal file
View File

@ -0,0 +1,123 @@
<?php
class ControllerLoginFoureyes extends Controller {
private $error = array();
public function index(){
$this->id = "content";
$this->template = "login/foureyes.tpl";
$this->layout = "common/layout-empty";
if(Registry::get('username')) {
header("Location: search.php");
exit;
}
$request = Registry::get('request');
$session = Registry::get('session');
$db = Registry::get('db');
$this->load->model('user/auth');
$this->load->model('user/user');
$this->load->model('user/prefs');
$this->load->model('domain/domain');
$this->load->model('folder/folder');
if(ENABLE_SAAS == 1) {
$this->load->model('saas/ldap');
$this->load->model('saas/customer');
}
$this->data['title'] = $this->data['text_login'];
$this->data['title_prefix'] = TITLE_PREFIX;
$this->data['failed_login_count'] = $this->model_user_auth->get_failed_login_count();
$data = $session->get("auth_data");
if($this->request->server['REQUEST_METHOD'] == 'POST' && $this->validate() == true) {
if($this->model_user_auth->checkLogin($this->request->post['username'], $_POST['password']) == 1) {
$session->remove("four_eyes");
$this->model_user_auth->apply_user_auth_session($data);
$session->remove("auth_data");
$this->model_user_prefs->get_user_preferences($session->get('username'));
if(ENABLE_SAAS == 1) {
$this->model_saas_customer->online($session->get('email'));
}
LOGGER('logged in');
if(isAdminUser() == 1) {
header("Location: " . SITE_URL . "index.php?route=health/health");
exit;
}
header("Location: " . SITE_URL . "search.php");
exit;
}
else {
$this->model_user_auth->increment_failed_login_count($this->data['failed_login_count']);
$this->data['failed_login_count']++;
}
$this->data['x'] = $this->data['text_invalid_email_or_password'];
}
$this->render();
}
private function check_admin_account() {
if($this->model_user_auth->checkLogin($this->request->post['username2'], $_POST['password2']) != 1 || isAdminUser() != 1) {
$this->error['username'] = 'failed admin login';
return 0;
}
else {
$this->model_user_auth->reset_user_auth_session();
return 1;
}
}
private function validate() {
if(strlen($this->request->post['username']) < 2){
$this->error['username'] = $this->data['text_invalid_username'];
}
if(CAPTCHA_FAILED_LOGIN_COUNT > 0 && $this->data['failed_login_count'] > CAPTCHA_FAILED_LOGIN_COUNT) {
require_once $_SERVER['DOCUMENT_ROOT'] . '/securimage/securimage.php';
$image = new Securimage();
if($image->check($this->request->post['captcha']) != true) {
$this->error['captcha'] = 'captcha error';
}
}
if (!$this->error) {
return true;
} else {
return false;
}
}
}
?>

5
webui/controller/login/ga.php
View File

@ -52,6 +52,11 @@ class ControllerLoginGA extends Controller {
$session->set("ga_block", "");
if($session->get("four_eyes") == 1) {
header("Location: " . SITE_URL . "index.php?route=login/foureyes");
exit;
}
$this->model_user_auth->apply_user_auth_session($data);
$session->remove("auth_data");

6
webui/controller/login/login.php
View File

@ -47,6 +47,12 @@ class ControllerLoginLogin extends Controller {
header("Location: " . SITE_URL . "index.php?route=login/ga");
exit;
}
else if($session->get("four_eyes") == 1) {
header("Location: " . SITE_URL . "index.php?route=login/foureyes");
exit;
}
else {
$data = $session->get("auth_data");
$this->model_user_auth->apply_user_auth_session($data);