David A. Windham
david
/
lychee
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 36d01240d6
Branches Tags
lychee
/
php
/
modules
/
Session.php

Session.php 3.1 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147 
  1. <?php
    2. 

  2. 

  3. ###
    4. 

  4. # @name			Session Module
    5. 

  5. # @copyright	2015 by Tobias Reich
    6. 

  6. ###
    7. 

  7. 

  8. if (!defined('LYCHEE')) exit('Error: Direct access is not allowed!');
    9. 

  9. 

  10. class Session extends Module {
    11. 

  11. 

  12. 	private $settings = null;
    13. 

  13. 

  14. 	public function __construct($plugins, $settings) {
    15. 

  15. 

  16. 		# Init vars
    17. 

  17. 		$this->plugins	= $plugins;
    18. 

  18. 		$this->settings	= $settings;
    19. 

  19. 

  20. 		return true;
    21. 

  21. 

  22. 	}
    23. 

  23. 

  24. 	public function init($database, $dbName, $public, $version) {
    25. 

  25. 

  26. 		# Check dependencies
    27. 

  27. 		self::dependencies(isset($this->settings, $public, $version));
    28. 

  28. 

  29. 		# Call plugins
    30. 

  30. 		$this->plugins(__METHOD__, 0, func_get_args());
    31. 

  31. 

  32. 		# Update
    33. 

  33. 		if (!isset($this->settings['version'])||$this->settings['version']!==$version) {
    34. 

  34. 			if (!Database::update($database, $dbName, @$this->settings['version'])) {
    35. 

  35. 				Log::error($database, __METHOD__, __LINE__, 'Updating the database failed');
    36. 

  36. 				exit('Error: Updating the database failed!');
    37. 

  37. 			}
    38. 

  38. 		}
    39. 

  39. 

  40. 		# Return settings
    41. 

  41. 		$return['config'] = $this->settings;
    42. 

  42. 		unset($return['config']['password']);
    43. 

  43. 

  44. 		# Path to Lychee for the server-import dialog
    45. 

  45. 		$return['config']['location'] = LYCHEE;
    46. 

  46. 

  47. 		# Check if login credentials exist and login if they don't
    48. 

  48. 		if ($this->noLogin()===true) {
    49. 

  49. 			$public = false;
    50. 

  50. 			$return['config']['login'] = false;
    51. 

  51. 		} else {
    52. 

  52. 			$return['config']['login'] = true;
    53. 

  53. 		}
    54. 

  54. 

  55. 		if ($public===false) {
    56. 

  56. 

  57. 			# Logged in
    58. 

  58. 			$return['loggedIn'] = true;
    59. 

  59. 

  60. 		} else {
    61. 

  61. 

  62. 			# Unset unused vars
    63. 

  63. 			unset($return['config']['username']);
    64. 

  64. 			unset($return['config']['thumbQuality']);
    65. 

  65. 			unset($return['config']['sorting']);
    66. 

  66. 			unset($return['config']['dropboxKey']);
    67. 

  67. 			unset($return['config']['login']);
    68. 

  68. 			unset($return['config']['location']);
    69. 

  69. 			unset($return['config']['plugins']);
    70. 

  70. 

  71. 			# Logged out
    72. 

  72. 			$return['loggedIn'] = false;
    73. 

  73. 

  74. 		}
    75. 

  75. 

  76. 		# Call plugins
    77. 

  77. 		$this->plugins(__METHOD__, 1, func_get_args());
    78. 

  78. 

  79. 		return $return;
    80. 

  80. 

  81. 	}
    82. 

  82. 

  83. 	public function login($username, $password) {
    84. 

  84. 

  85. 		# Check dependencies
    86. 

  86. 		self::dependencies(isset($this->settings, $username, $password));
    87. 

  87. 

  88. 		# Call plugins
    89. 

  89. 		$this->plugins(__METHOD__, 0, func_get_args());
    90. 

  90. 

  91. 		# Check login with MD5 hash
    92. 

  92. 		if ($username===$this->settings['username']&&$password===$this->settings['password']) {
    93. 

  93. 			$_SESSION['login'] = true;
    94. 

  94. 			return true;
    95. 

  95. 		}
    96. 

  96. 

  97. 		# Check login with crypted hash
    98. 

  98. 		if ($username===$this->settings['username']&&$this->settings['password']===crypt($password, $this->settings['password'])) {
    99. 

  99. 			$_SESSION['login'] = true;
    100. 

  100. 			return true;
    101. 

  101. 		}
    102. 

  102. 

  103. 		# No login
    104. 

  104. 		if ($this->settings['username']===''&&$this->settings['password']==='') {
    105. 

  105. 			$_SESSION['login'] = true;
    106. 

  106. 			return true;
    107. 

  107. 		}
    108. 

  108. 

  109. 		# Call plugins
    110. 

  110. 		$this->plugins(__METHOD__, 1, func_get_args());
    111. 

  111. 

  112. 		return false;
    113. 

  113. 

  114. 	}
    115. 

  115. 

  116. 	private function noLogin() {
    117. 

  117. 

  118. 		# Check dependencies
    119. 

  119. 		self::dependencies(isset($this->settings));
    120. 

  120. 

  121. 		# Check if login credentials exist and login if they don't
    122. 

  122. 		if ($this->settings['username']===''&&$this->settings['password']==='') {
    123. 

  123. 			$_SESSION['login'] = true;
    124. 

  124. 			return true;
    125. 

  125. 		}
    126. 

  126. 

  127. 		return false;
    128. 

  128. 

  129. 	}
    130. 

  130. 

  131. 	public function logout() {
    132. 

  132. 

  133. 		# Call plugins
    134. 

  134. 		$this->plugins(__METHOD__, 0, func_get_args());
    135. 

  135. 

  136. 		session_destroy();
    137. 

  137. 

  138. 		# Call plugins
    139. 

  139. 		$this->plugins(__METHOD__, 1, func_get_args());
    140. 

  140. 

  141. 		return true;
    142. 

  142. 

  143. 	}
    144. 

  144. 

  145. }
    146. 

  146. 

  147. ?>
    148.