ttrss/classes/auth/base.php

<?php
abstract class Auth_Base extends Plugin implements IAuthModule {
	protected $pdo;

	const AUTH_SERVICE_API = '_api';

	function __construct() {
		$this->pdo = Db::pdo();
	}

	// compatibility wrapper, because of how pluginhost works (hook name == method name)
	function hook_auth_user(...$args) {
		return $this->authenticate(...$args);
	}

	// Auto-creates specified user if allowed by system configuration
	// Can be used instead of find_user_by_login() by external auth modules
	function auto_create_user($login, $password = false) {
		if ($login && defined('AUTH_AUTO_CREATE') && AUTH_AUTO_CREATE) {
			$user_id = $this->find_user_by_login($login);

			if (!$password) $password = make_password();

			if (!$user_id) {
				$salt = substr(bin2hex(get_random_bytes(125)), 0, 250);
				$pwd_hash = encrypt_password($password, $salt, true);

				$sth = $this->pdo->prepare("INSERT INTO ttrss_users
						(login,access_level,last_login,created,pwd_hash,salt)
						VALUES (?, 0, null, NOW(), ?,?)");
				$sth->execute([$login, $pwd_hash, $salt]);

				return $this->find_user_by_login($login);

			} else {
				return $user_id;
			}
		}

		return $this->find_user_by_login($login);
	}

	function find_user_by_login($login) {
		$sth = $this->pdo->prepare("SELECT id FROM ttrss_users WHERE
			login = ?");
		$sth->execute([$login]);

		if ($row = $sth->fetch()) {
			return $row["id"];
		} else {
			return false;
		}

	}
}
split authentication to separate modules 2012-08-16 11:30:35 +00:00			`<?php`
fix hierarchy of authentication modules, make everything extend Auth_Base and implement hook_auth_user() for pluginhost 2021-02-08 16:11:31 +00:00			`abstract class Auth_Base extends Plugin implements IAuthModule {`
			`protected $pdo;`
fix auth_base referencing dbh which was not present 2013-04-18 11:36:54 +00:00
add placeholder authentication via app passwords if service is passed forbid logins via regular passwords for services remove AUTH_DISABLE_OTP 2019-11-01 10:03:06 +00:00			`const AUTH_SERVICE_API = '_api';`

fix auth_base referencing dbh which was not present 2013-04-18 11:36:54 +00:00			`function __construct() {`
auth/base: PDO functions: fix small pdo-related bug 2017-12-01 14:40:53 +00:00			`$this->pdo = Db::pdo();`
fix auth_base referencing dbh which was not present 2013-04-18 11:36:54 +00:00			`}`

fix hierarchy of authentication modules, make everything extend Auth_Base and implement hook_auth_user() for pluginhost 2021-02-08 16:11:31 +00:00			`// compatibility wrapper, because of how pluginhost works (hook name == method name)`
			`function hook_auth_user(...$args) {`
			`return $this->authenticate(...$args);`
split authentication to separate modules 2012-08-16 11:30:35 +00:00			`}`

			`// Auto-creates specified user if allowed by system configuration`
			`// Can be used instead of find_user_by_login() by external auth modules`
auth_base: choose random password if not supplied by auth module 2013-05-07 08:36:09 +00:00			`function auto_create_user($login, $password = false) {`
split authentication to separate modules 2012-08-16 11:30:35 +00:00			`if ($login && defined('AUTH_AUTO_CREATE') && AUTH_AUTO_CREATE) {`
			`$user_id = $this->find_user_by_login($login);`

auth_base: choose random password if not supplied by auth module 2013-05-07 08:36:09 +00:00			`if (!$password) $password = make_password();`

split authentication to separate modules 2012-08-16 11:30:35 +00:00			`if (!$user_id) {`
			`$salt = substr(bin2hex(get_random_bytes(125)), 0, 250);`
			`$pwd_hash = encrypt_password($password, $salt, true);`

auth/base: PDO functions: fix small pdo-related bug 2017-12-01 14:40:53 +00:00			`$sth = $this->pdo->prepare("INSERT INTO ttrss_users`
split authentication to separate modules 2012-08-16 11:30:35 +00:00			`(login,access_level,last_login,created,pwd_hash,salt)`
auth/base: PDO functions: fix small pdo-related bug 2017-12-01 14:40:53 +00:00			`VALUES (?, 0, null, NOW(), ?,?)");`
			`$sth->execute([$login, $pwd_hash, $salt]);`
split authentication to separate modules 2012-08-16 11:30:35 +00:00
			`return $this->find_user_by_login($login);`

			`} else {`
			`return $user_id;`
			`}`
			`}`

allow auto_create_user() to be used instead of find_user_by_login() when auto creating is off 2012-08-16 11:38:33 +00:00			`return $this->find_user_by_login($login);`
split authentication to separate modules 2012-08-16 11:30:35 +00:00			`}`

			`function find_user_by_login($login) {`
auth/base: PDO functions: fix small pdo-related bug 2017-12-01 14:40:53 +00:00			`$sth = $this->pdo->prepare("SELECT id FROM ttrss_users WHERE`
			`login = ?");`
			`$sth->execute([$login]);`
split authentication to separate modules 2012-08-16 11:30:35 +00:00
auth/base: PDO functions: fix small pdo-related bug 2017-12-01 14:40:53 +00:00			`if ($row = $sth->fetch()) {`
			`return $row["id"];`
split authentication to separate modules 2012-08-16 11:30:35 +00:00			`} else {`
			`return false;`
			`}`

			`}`
			`}`