Server IP : 85.214.239.14 / Your IP : 18.191.147.146 Web Server : Apache/2.4.62 (Debian) System : Linux h2886529.stratoserver.net 4.9.0 #1 SMP Tue Jan 9 19:45:01 MSK 2024 x86_64 User : www-data ( 33) PHP Version : 7.4.18 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wifcontinued,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_get_handler,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,pcntl_async_signals,pcntl_unshare, MySQL : OFF | cURL : OFF | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : OFF Directory : /var/www/wordpress/phpMyAdmin/libraries/classes/ |
Upload File : |
<?php /* vim: set expandtab sw=4 ts=4 sts=4: */ /** * Two authentication factor handling * * @package PhpMyAdmin */ declare(strict_types=1); namespace PhpMyAdmin; use PhpMyAdmin\Message; use PhpMyAdmin\Plugins\TwoFactor\Application; use PhpMyAdmin\Plugins\TwoFactor\Invalid; use PhpMyAdmin\Plugins\TwoFactor\Key; use PhpMyAdmin\Plugins\TwoFactorPlugin; use PhpMyAdmin\UserPreferences; use PragmaRX\Google2FAQRCode\Google2FA; use Samyoul\U2F\U2FServer\U2FServer; /** * Two factor authentication wrapper class * * @package PhpMyAdmin */ class TwoFactor { /** * @var string */ public $user; /** * @var array */ public $config; /** * @var boolean */ protected $_writable; /** * @var TwoFactorPlugin */ protected $_backend; /** * @var array */ protected $_available; /** * @var UserPreferences */ private $userPreferences; /** * Creates new TwoFactor object * * @param string $user User name */ public function __construct($user) { /** @var DatabaseInterface $dbi */ global $dbi; $dbi->initRelationParamsCache(); $this->userPreferences = new UserPreferences(); $this->user = $user; $this->_available = $this->getAvailable(); $this->config = $this->readConfig(); $this->_writable = ($this->config['type'] == 'db'); $this->_backend = $this->getBackend(); } /** * Reads the configuration * * @return array */ public function readConfig() { $result = []; $config = $this->userPreferences->load(); if (isset($config['config_data']['2fa'])) { $result = $config['config_data']['2fa']; } $result['type'] = $config['type']; if (! isset($result['backend'])) { $result['backend'] = ''; } if (! isset($result['settings'])) { $result['settings'] = []; } return $result; } /** * Get any property of this class * * @param string $property name of the property * * @return mixed|void if property exist, value of the relevant property */ public function __get($property) { switch ($property) { case 'backend': return $this->_backend; case 'available': return $this->_available; case 'writable': return $this->_writable; case 'showSubmit': $backend = $this->_backend; return $backend::$showSubmit; } } /** * Returns list of available backends * * @return array */ public function getAvailable() { $result = []; if ($GLOBALS['cfg']['DBG']['simple2fa']) { $result[] = 'simple'; } if (class_exists(Google2FA::class)) { $result[] = 'application'; } if (class_exists(U2FServer::class)) { $result[] = 'key'; } return $result; } /** * Returns list of missing dependencies * * @return array */ public function getMissingDeps() { $result = []; if (! class_exists(Google2FA::class)) { $result[] = [ 'class' => Application::getName(), 'dep' => 'pragmarx/google2fa-qrcode', ]; } if (! class_exists('BaconQrCode\Renderer\Image\Png')) { $result[] = [ 'class' => Application::getName(), 'dep' => 'bacon/bacon-qr-code', ]; } if (! class_exists(U2FServer::class)) { $result[] = [ 'class' => Key::getName(), 'dep' => 'samyoul/u2f-php-server', ]; } return $result; } /** * Returns class name for given name * * @param string $name Backend name * * @return string */ public function getBackendClass($name) { $result = TwoFactorPlugin::class; if (in_array($name, $this->_available)) { $result = 'PhpMyAdmin\\Plugins\\TwoFactor\\' . ucfirst($name); } elseif (! empty($name)) { $result = Invalid::class; } return $result; } /** * Returns backend for current user * * @return TwoFactorPlugin */ public function getBackend() { $name = $this->getBackendClass($this->config['backend']); return new $name($this); } /** * Checks authentication, returns true on success * * @param boolean $skip_session Skip session cache * * @return boolean */ public function check($skip_session = false) { if ($skip_session) { return $this->_backend->check(); } if (empty($_SESSION['two_factor_check'])) { $_SESSION['two_factor_check'] = $this->_backend->check(); } return $_SESSION['two_factor_check']; } /** * Renders user interface to enter two-factor authentication * * @return string HTML code */ public function render() { return $this->_backend->getError() . $this->_backend->render(); } /** * Renders user interface to configure two-factor authentication * * @return string HTML code */ public function setup() { return $this->_backend->getError() . $this->_backend->setup(); } /** * Saves current configuration. * * @return true|Message */ public function save() { return $this->userPreferences->persistOption('2fa', $this->config, null); } /** * Changes two-factor authentication settings * * The object might stay in partialy changed setup * if configuration fails. * * @param string $name Backend name * * @return boolean */ public function configure($name) { $this->config = [ 'backend' => $name, ]; if ($name === '') { $cls = $this->getBackendClass($name); $this->config['settings'] = []; $this->_backend = new $cls($this); } else { if (! in_array($name, $this->_available)) { return false; } $cls = $this->getBackendClass($name); $this->config['settings'] = []; $this->_backend = new $cls($this); if (! $this->_backend->configure()) { return false; } } $result = $this->save(); if ($result !== true) { $result->display(); } return true; } /** * Returns array with all available backends * * @return array */ public function getAllBackends() { $all = array_merge([''], $this->available); $backends = []; foreach ($all as $name) { $cls = $this->getBackendClass($name); $backends[] = [ 'id' => $cls::$id, 'name' => $cls::getName(), 'description' => $cls::getDescription(), ]; } return $backends; } }