| Server IP : 85.214.239.14 / Your IP : 18.117.192.192 Web Server : Apache/2.4.62 (Debian) System : Linux h2886529.stratoserver.net 4.9.0 #1 SMP Tue Jan 9 19:45:01 MSK 2024 x86_64 User : www-data ( 33) PHP Version : 7.4.18 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : OFF Directory : /var/www/wordpress/phpMyAdmin/libraries/classes/ |
Upload File : |
<?php
/* vim: set expandtab sw=4 ts=4 sts=4: */
/**
* Two authentication factor handling
*
* @package PhpMyAdmin
*/
declare(strict_types=1);
namespace PhpMyAdmin;
use PhpMyAdmin\Message;
use PhpMyAdmin\Plugins\TwoFactor\Application;
use PhpMyAdmin\Plugins\TwoFactor\Invalid;
use PhpMyAdmin\Plugins\TwoFactor\Key;
use PhpMyAdmin\Plugins\TwoFactorPlugin;
use PhpMyAdmin\UserPreferences;
use PragmaRX\Google2FAQRCode\Google2FA;
use Samyoul\U2F\U2FServer\U2FServer;
/**
* Two factor authentication wrapper class
*
* @package PhpMyAdmin
*/
class TwoFactor
{
/**
* @var string
*/
public $user;
/**
* @var array
*/
public $config;
/**
* @var boolean
*/
protected $_writable;
/**
* @var TwoFactorPlugin
*/
protected $_backend;
/**
* @var array
*/
protected $_available;
/**
* @var UserPreferences
*/
private $userPreferences;
/**
* Creates new TwoFactor object
*
* @param string $user User name
*/
public function __construct($user)
{
/** @var DatabaseInterface $dbi */
global $dbi;
$dbi->initRelationParamsCache();
$this->userPreferences = new UserPreferences();
$this->user = $user;
$this->_available = $this->getAvailable();
$this->config = $this->readConfig();
$this->_writable = ($this->config['type'] == 'db');
$this->_backend = $this->getBackend();
}
/**
* Reads the configuration
*
* @return array
*/
public function readConfig()
{
$result = [];
$config = $this->userPreferences->load();
if (isset($config['config_data']['2fa'])) {
$result = $config['config_data']['2fa'];
}
$result['type'] = $config['type'];
if (! isset($result['backend'])) {
$result['backend'] = '';
}
if (! isset($result['settings'])) {
$result['settings'] = [];
}
return $result;
}
/**
* Get any property of this class
*
* @param string $property name of the property
*
* @return mixed|void if property exist, value of the relevant property
*/
public function __get($property)
{
switch ($property) {
case 'backend':
return $this->_backend;
case 'available':
return $this->_available;
case 'writable':
return $this->_writable;
case 'showSubmit':
$backend = $this->_backend;
return $backend::$showSubmit;
}
}
/**
* Returns list of available backends
*
* @return array
*/
public function getAvailable()
{
$result = [];
if ($GLOBALS['cfg']['DBG']['simple2fa']) {
$result[] = 'simple';
}
if (class_exists(Google2FA::class)) {
$result[] = 'application';
}
if (class_exists(U2FServer::class)) {
$result[] = 'key';
}
return $result;
}
/**
* Returns list of missing dependencies
*
* @return array
*/
public function getMissingDeps()
{
$result = [];
if (! class_exists(Google2FA::class)) {
$result[] = [
'class' => Application::getName(),
'dep' => 'pragmarx/google2fa-qrcode',
];
}
if (! class_exists('BaconQrCode\Renderer\Image\Png')) {
$result[] = [
'class' => Application::getName(),
'dep' => 'bacon/bacon-qr-code',
];
}
if (! class_exists(U2FServer::class)) {
$result[] = [
'class' => Key::getName(),
'dep' => 'samyoul/u2f-php-server',
];
}
return $result;
}
/**
* Returns class name for given name
*
* @param string $name Backend name
*
* @return string
*/
public function getBackendClass($name)
{
$result = TwoFactorPlugin::class;
if (in_array($name, $this->_available)) {
$result = 'PhpMyAdmin\\Plugins\\TwoFactor\\' . ucfirst($name);
} elseif (! empty($name)) {
$result = Invalid::class;
}
return $result;
}
/**
* Returns backend for current user
*
* @return TwoFactorPlugin
*/
public function getBackend()
{
$name = $this->getBackendClass($this->config['backend']);
return new $name($this);
}
/**
* Checks authentication, returns true on success
*
* @param boolean $skip_session Skip session cache
*
* @return boolean
*/
public function check($skip_session = false)
{
if ($skip_session) {
return $this->_backend->check();
}
if (empty($_SESSION['two_factor_check'])) {
$_SESSION['two_factor_check'] = $this->_backend->check();
}
return $_SESSION['two_factor_check'];
}
/**
* Renders user interface to enter two-factor authentication
*
* @return string HTML code
*/
public function render()
{
return $this->_backend->getError() . $this->_backend->render();
}
/**
* Renders user interface to configure two-factor authentication
*
* @return string HTML code
*/
public function setup()
{
return $this->_backend->getError() . $this->_backend->setup();
}
/**
* Saves current configuration.
*
* @return true|Message
*/
public function save()
{
return $this->userPreferences->persistOption('2fa', $this->config, null);
}
/**
* Changes two-factor authentication settings
*
* The object might stay in partialy changed setup
* if configuration fails.
*
* @param string $name Backend name
*
* @return boolean
*/
public function configure($name)
{
$this->config = [
'backend' => $name,
];
if ($name === '') {
$cls = $this->getBackendClass($name);
$this->config['settings'] = [];
$this->_backend = new $cls($this);
} else {
if (! in_array($name, $this->_available)) {
return false;
}
$cls = $this->getBackendClass($name);
$this->config['settings'] = [];
$this->_backend = new $cls($this);
if (! $this->_backend->configure()) {
return false;
}
}
$result = $this->save();
if ($result !== true) {
$result->display();
}
return true;
}
/**
* Returns array with all available backends
*
* @return array
*/
public function getAllBackends()
{
$all = array_merge([''], $this->available);
$backends = [];
foreach ($all as $name) {
$cls = $this->getBackendClass($name);
$backends[] = [
'id' => $cls::$id,
'name' => $cls::getName(),
'description' => $cls::getDescription(),
];
}
return $backends;
}
}