robin.thoni
/
docker-phpvirtualbox


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115
							<?php
/*
 * $Id: OpenMediaVault.php 470 2012-10-24 21:43:25Z imooreyahoo@gmail.com $
*/

/*
 * OMV Specific
*/
try {

	// Must be made global or OMV breaks 
	global $xmlConfig, $OMV_DEFAULT_FILE;

	require_once("openmediavault/globals.inc");
	require_once("openmediavault/session.inc");
	require_once("rpc/authentication.inc");

} catch(Exception $e) {

	header("Content-Type: text/html");
	die("Error #".$e->getCode().":<br/>". str_replace("\n", "<br/>",$e->__toString()));
}

class phpvbAuthOpenMediaVault implements phpvbAuth {

	static $session = null;
	
	var $capabilities = array(
		'canChangePassword' => false,
		'sessionStart' => 'sessionStart',
		'canLogout' => true
	);

	var $config = array(
		'allowNonAdmin' => false
	);

	function __construct($userConfig = null) {
		if($userConfig) $this->config = array_merge($this->config,$userConfig);
	}

	function login($username, $password)
	{
		# Try / catch so that we don't expose
		# usernames / passwords
		require_once("rpc/authentication.inc");
		$a = new AuthenticationRpc();
		try {
			
			$auth = $a->login(array('username'=>$username,'password'=>$password));
			
			self::$session = &OMVSession::getInstance();
			
			if(@$auth["authenticated"] &&
			(self::$session->getRole() !== OMV_ROLE_USER || $this->config['allowNonAdmin'])) {
				$_SESSION['admin'] = (self::$session->getRole() !== OMV_ROLE_USER);
				$_SESSION['user'] = $_SESSION['username'];
				$_SESSION['valid'] = ($_SESSION['admin'] || $this->config['allowNonAdmin']);
				$_SESSION['authCheckHeartbeat'] = time();
	
			}
	
			if(!@$_SESSION['valid']) {
				return false;
			}
			return true;
	
		} catch (Exception $e) {
			return false;
		}
		return false;
	}
	
	function sessionStart($keepopen) {
		
		self::$session = &OMVSession::getInstance();
		self::$session->start();
		

		if (self::$session->isAuthenticated() && !self::$session->isTimeout()) {
			
			self::$session->validate();
			self::$session->updateLastAccess();
			
			$_SESSION['admin'] = (self::$session->getRole() !== OMV_ROLE_USER);
			$_SESSION['user'] = $_SESSION['username'];
			$_SESSION['valid'] = (self::$session->getRole() !== OMV_ROLE_USER || $this->config['allowNonAdmin']);
			
		} else {
			
			$_SESSION['admin'] = $_SESSION['user'] = $_SESSION['valid'] = null;
			
		}

		if(!$keepopen)
			session_write_close();

	}


	function logout(&$response)
	{
		require_once("rpc/authentication.inc");
		$a = new AuthenticationRpc();
		$a->logout();
		$response['data']['result'] = 1;
	}

	/* Defined for compatibility with implemented interface */
	function heartbeat($vbox){}
	function changePassword($old, $new){}
	function listUsers(){}
	function updateUser($vboxRequest, $skipExistCheck){}
	function deleteUser($user){}
}