123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167 |
- <?php
- include_once("model/meta_model.php");
- /**
- * htpasswd tools for Apache Basic Auth.
- * Uses crypt only!
- *
- */
- class htpasswd {
- var $fp;
- var $metafp;
- var $filename;
- var $metafilename;
- var $use_metadata;
- /* All ht-files. These files are stored within the secured folder. */
- const HTPASSWD_NAME = ".htpasswd";
- const HTACCESS_NAME = ".htaccess";
- const HTMETA_NAME = ".htmeta";
-
- function htpasswd($configpath, $use_metadata = false) {
- $path = realpath($configpath);
- $htaccessfile = $path . "/" . self::HTACCESS_NAME;
- $htpasswdfile = $path . "/" . self::HTPASSWD_NAME;
- @$this->use_metadata = $use_metadata;
-
- if (!file_exists($htaccessfile)) {
- $bdfp = fopen($htaccessfile, 'w');
- $htaccess_content = "AuthType Basic\nAuthName \"Password Protected Area\"\nAuthUserFile \"" . $htpasswdfile .
- "\"\nRequire valid-user" .
- "<Files .ht*>\nOrder deny,allow\nDeny from all\n</Files>";
- fwrite($bdfp,$htaccess_content);
- }
-
- @$this->fp = @$this::open_or_create($htpasswdfile);
-
- if ($use_metadata) {
- $htmetafile = $path . "/" . self::HTMETA_NAME;
- @$this->metafp = @$this::open_or_create($htmetafile);
- }
- $this->filename = $htpasswdfile;
- $this->metafilename = $htmetafile;
- }
-
- function open_or_create($filename) {
- if (!file_exists($filename)) {
- return fopen ( $filename, 'w+' );
- } else {
- return fopen ( $filename, 'r+' );
- }
- }
-
- function user_exists($username) {
- rewind ( $this->fp );
- while ( ! feof ( $this->fp ) && trim ( $lusername = array_shift ( explode ( ":", $line = rtrim ( fgets ( $this->fp ) ) ) ) ) ) {
- if ($lusername == $username)
- return true;
- }
- return false;
- }
-
- function get_metadata() {
- rewind ( $this->metafp );
- $meta_model_map = array();
- $metaarr = array();
- while ( ! feof ( $this->metafp ) && $line = rtrim ( fgets ( $this->metafp ) ) ) {
- $metaarr = explode(":", $line);
- $model = new meta_model();
- $model->user = $metaarr[0];
- $model->email = $metaarr[1];
- $model->name = $metaarr[2];
- $meta_model_map[$model->user] = $model;
- }
- return $meta_model_map;
- }
-
- function get_users() {
- rewind ( $this->fp );
- $users = array();
- $i = 0;
- while ( ! feof ( $this->fp ) && trim ( $lusername = array_shift ( explode ( ":", $line = rtrim ( fgets ( $this->fp ) ) ) ) ) ) {
- $users[$i] = $lusername;
- $i++;
- }
- return $users;
- }
-
- function user_add($username, $password) {
- if ($this->user_exists ( $username ))
- return false;
- fseek ( $this->fp, 0, SEEK_END );
- fwrite ( $this->fp, $username . ':' . self::htcrypt($password) . "\n" );
- return true;
- }
-
- /**
- * Login check
- * first 2 characters of hash is the salt.
- * @param user $username
- * @param pass $password
- * @return boolean true if password is correct!
- */
- function user_check($username, $password) {
- rewind ( $this->fp );
- while ( ! feof ( $this->fp ) && $userpass = explode ( ":", $line = rtrim ( fgets ( $this->fp ) ) ) ) {
- $lusername = trim($userpass[0]);
- $hash = $userpass[1];
- if ($lusername == $username) {
- return (self::check_password_hash($password, $hash));
- }
- }
- return false;
- }
-
- static function check_password_hash($password, $hash) {
- $salt = substr($hash,0,2);
- if (crypt($password,$salt)==$hash) {
- return true;
- } else {
- return false;
- }
- }
-
- static function htcrypt($password) {
- return crypt ( $password, substr ( str_replace ( '+', '.', base64_encode ( pack ( 'N4', mt_rand (), mt_rand (), mt_rand (), mt_rand () ) ) ), 0, 22 ) );
- }
-
-
- function user_delete($username) {
- return self::delete(@$this->fp, $username, @$this->filename);
- }
-
- function meta_delete($username) {
- return self::delete(@$this->metafp, $username, @$this->metafilename);
- }
-
- static function delete($fp, $username, $filename) {
- $data = '';
- rewind ( $fp );
- while ( ! feof ( $fp ) && trim ( $lusername = array_shift ( explode ( ":", $line = rtrim ( fgets ( $fp ) ) ) ) ) ) {
- if (! trim ( $line ))
- break;
- if ($lusername != $username)
- $data .= $line . "\n";
- }
- $fp = fopen ( $filename, 'w' );
- fwrite ( $fp, rtrim ( $data ) . (trim ( $data ) ? "\n" : '') );
- fclose ( $fp );
- $fp = fopen ( $filename, 'r+' );
- return true;
- }
-
-
- function user_update($username, $password) {
- rewind ( $this->fp );
- while ( ! feof ( $this->fp ) && trim ( $lusername = array_shift ( explode ( ":", $line = rtrim ( fgets ( $this->fp ) ) ) ) ) ) {
- if ($lusername == $username) {
- fseek ( $this->fp, (- 15 - strlen ( $username )), SEEK_CUR );
- fwrite ( $this->fp, $username . ':' . self::htcrypt($password) . "\n" );
- return true;
- }
- }
- return false;
- }
- }
- ?>
|