PageRenderTime 47ms CodeModel.GetById 21ms RepoModel.GetById 0ms app.codeStats 0ms

/code/classes/Daemon/PMaild/MTA/Auth.class.php

https://github.com/blekkzor/pinetd2
PHP | 97 lines | 76 code | 18 blank | 3 comment | 13 complexity | 781402f7a0ceb1cf676e92454e0a430a MD5 | raw file
Possible License(s): GPL-2.0 
    

  1. <?php
    2. 

  2. 

  3. namespace Daemon\PMaild\MTA;
    4. 

  4. 

  5. use pinetd\Logger;
    6. 

  6. use pinetd\SQL;
    7. 

  7. 

  8. class Auth {
    9. 

  9. 	private $login = null;
    10. 

  10. 	private $info = null;
    11. 

  11. 	private $SQL;
    12. 

  12. 

  13. 	public function __construct($localConfig) {
    14. 

  14. 		$this->SQL = SQL::Factory($localConfig['Storage']);
    15. 

  15. 	}
    16. 

  16. 

  17. 	public function getLogin() {
    18. 

  18. 		return $this->login;
    19. 

  19. 	}
    20. 

  20. 

  21. 	public function getInfo() {
    22. 

  22. 		return $this->info;
    23. 

  23. 	}
    24. 

  24. 

  25. 	public function login($login, $pass, $mode = null) {
    26. 

  26. 		$pos = strrpos($login, '@');
    27. 

  27. 		if ($pos === false) $pos = strrpos($login, '+'); // compatibility with old-style stuff
    28. 

  28. 		if ($pos === false) return false;
    29. 

  29. 		$domain = substr($login, $pos+1);
    30. 

  30. 		$user = substr($login, 0, $pos);
    31. 

  31. 		$info = array(
    32. 

  32. 			'domain' => $domain,
    33. 

  33. 			'user' => $user,
    34. 

  34. 		);
    35. 

  35. 

  36. 		// load domain
    37. 

  37. 		$DAO_domains = $this->SQL->DAO('domains', 'domainid');
    38. 

  38. 		$domain = $DAO_domains->loadByField(array('domain' => $domain));
    39. 

  39. 

  40. 		if (!$domain) return false;
    41. 

  41. 		$domain = $domain[0];
    42. 

  42. 

  43. 		$info['domainid'] = $domain->domainid;
    44. 

  44. 

  45. 		if(!is_null($mode)) {
    46. 

  46. 			// check if domain has required protocol
    47. 

  47. 			$proto = array_flip(explode(',', $domain->protocol));
    48. 

  48. 			if (!isset($proto[$mode])) {
    49. 

  49. 				Logger::log(Logger::LOG_INFO, strtoupper($mode).' login denied to user '.$login.': '.strtoupper($mode).' disabled');
    50. 

  50. 				return false;
    51. 

  51. 			}
    52. 

  52. 		}
    53. 

  53. 		
    54. 

  54. 		$DAO_accounts = $this->SQL->DAO('z'.$domain->domainid.'_accounts', 'id');
    55. 

  55. 		$account = $DAO_accounts->loadByField(array('user'=>$user));
    56. 

  56. 

  57. 		if (!$account) return false;
    58. 

  58. 		$account = $account[0];
    59. 

  59. 

  60. 		if (is_null($account->password)) {
    61. 

  61. 			if (strlen($pass) < 4) return false;
    62. 

  62. 			$account->password = crypt($pass);
    63. 

  63. 			$account->commit();
    64. 

  64. 			Logger::log(Logger::LOG_INFO, 'Recording new password for user '.$login);
    65. 

  65. 		}
    66. 

  66. 

  67. 		// check password
    68. 

  68. 		if ($account->password[0] == '$') {
    69. 

  69. 			$pass = crypt($pass, $account->password);
    70. 

  70. 		} else {
    71. 

  71. 			switch(strlen($account->password)) {
    72. 

  72. 				case 13: // old-style unix passwords, limited to 8 chars, highly discouraged
    73. 

  73. 					$pass = crypt($pass, $account->password);
    74. 

  74. 					break;
    75. 

  75. 				case 32:
    76. 

  76. 					$pass = md5($pass);
    77. 

  77. 					break;
    78. 

  78. 				case 40:
    79. 

  79. 					$pass = sha1($pass);
    80. 

  80. 					break;
    81. 

  81. 				default:
    82. 

  82. 					return false; // password disabled?
    83. 

  83. 			}
    84. 

  84. 		}
    85. 

  85. 		if ($account->password != $pass) return false; // auth failed
    86. 

  86. 		Logger::log(Logger::LOG_DEBUG, get_class($this).': User '.$login.' logged in successfully'.(is_null($mode)?'':' on '.$mode));
    87. 

  87. 		$account->last_login = $this->SQL->now();
    88. 

  88. 		$account->commit(); // will also commit password if set
    89. 

  89. 

  90. 		$info['account'] = $account;
    91. 

  91. 

  92. 		$this->info = $info;
    93. 

  93. 		$this->login = $account->user . '@' . $domain->domain;
    94. 

  94. 		return true;
    95. 

  95. 	}
    96. 

  96. }
    97. 

  97. 

  98.