Accueil Explorer contacts
Connexion
dyokunev
/
nextcloud-mephi
Suivre 1
Voter 0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: f35eae6442
Branches Tags
nextcloud-me...
/
settings
/
changepassword
/
controller.php

controller.php 3.6 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102 
  1. <?php
    2. 

  2. 

  3. namespace OC\Settings\ChangePassword;
    4. 

  4. 

  5. class Controller {
    6. 

  6. 	public static function changePersonalPassword($args) {
    7. 

  7. 		// Check if we are an user
    8. 

  8. 		\OC_JSON::callCheck();
    9. 

  9. 		\OC_JSON::checkLoggedIn();
    10. 

  10. 

  11. 		$username = \OC_User::getUser();
    12. 

  12. 		$password = isset($_POST['personal-password']) ? $_POST['personal-password'] : null;
    13. 

  13. 		$oldPassword = isset($_POST['oldpassword']) ? $_POST['oldpassword'] : '';
    14. 

  14. 

  15. 		if (!\OC_User::checkPassword($username, $oldPassword)) {
    16. 

  16. 			$l = new \OC_L10n('settings');
    17. 

  17. 			\OC_JSON::error(array("data" => array("message" => $l->t("Wrong password")) ));
    18. 

  18. 			exit();
    19. 

  19. 		}
    20. 

  20. 		if (!is_null($password) && \OC_User::setPassword($username, $password)) {
    21. 

  21. 			\OC_JSON::success();
    22. 

  22. 		} else {
    23. 

  23. 			\OC_JSON::error();
    24. 

  24. 		}
    25. 

  25. 	}
    26. 

  26. 

  27. 	public static function changeUserPassword($args) {
    28. 

  28. 		// Check if we are an user
    29. 

  29. 		\OC_JSON::callCheck();
    30. 

  30. 		\OC_JSON::checkLoggedIn();
    31. 

  31. 

  32. 		if (isset($_POST['username'])) {
    33. 

  33. 			$username = $_POST['username'];
    34. 

  34. 		} else {
    35. 

  35. 			$l = new \OC_L10n('settings');
    36. 

  36. 			\OC_JSON::error(array('data' => array('message' => $l->t('No user supplied')) ));
    37. 

  37. 			exit();
    38. 

  38. 		}
    39. 

  39. 

  40. 		$password = isset($_POST['password']) ? $_POST['password'] : null;
    41. 

  41. 		$recoveryPassword = isset($_POST['recoveryPassword']) ? $_POST['recoveryPassword'] : null;
    42. 

  42. 

  43. 		if (\OC_User::isAdminUser(\OC_User::getUser())) {
    44. 

  44. 			$userstatus = 'admin';
    45. 

  45. 		} elseif (\OC_SubAdmin::isUserAccessible(\OC_User::getUser(), $username)) {
    46. 

  46. 			$userstatus = 'subadmin';
    47. 

  47. 		} else {
    48. 

  48. 			$l = new \OC_L10n('settings');
    49. 

  49. 			\OC_JSON::error(array('data' => array('message' => $l->t('Authentication error')) ));
    50. 

  50. 			exit();
    51. 

  51. 		}
    52. 

  52. 

  53. 		if (\OC_App::isEnabled('files_encryption')) {
    54. 

  54. 			//handle the recovery case
    55. 

  55. 			$util = new \OCA\Encryption\Util(new \OC_FilesystemView('/'), $username);
    56. 

  56. 			$recoveryAdminEnabled = \OC_Appconfig::getValue('files_encryption', 'recoveryAdminEnabled');
    57. 

  57. 

  58. 			$validRecoveryPassword = false;
    59. 

  59. 			$recoveryPasswordSupported = false;
    60. 

  60. 			if ($recoveryAdminEnabled) {
    61. 

  61. 				$validRecoveryPassword = $util->checkRecoveryPassword($recoveryPassword);
    62. 

  62. 				$recoveryEnabledForUser = $util->recoveryEnabledForUser();
    63. 

  63. 			}
    64. 

  64. 

  65. 			if ($recoveryEnabledForUser && $recoveryPassword === '') {
    66. 

  66. 				$l = new \OC_L10n('settings');
    67. 

  67. 				\OC_JSON::error(array('data' => array(
    68. 

  68. 					'message' => $l->t('Please provide an admin recovery password, otherwise all user data will be lost')
    69. 

  69. 				)));
    70. 

  70. 			} elseif ($recoveryEnabledForUser && ! $validRecoveryPassword) {
    71. 

  71. 				$l = new \OC_L10n('settings');
    72. 

  72. 				\OC_JSON::error(array('data' => array(
    73. 

  73. 					'message' => $l->t('Wrong admin recovery password. Please check the password and try again.')
    74. 

  74. 				)));
    75. 

  75. 			} else { // now we know that everything is fine regarding the recovery password, let's try to change the password
    76. 

  76. 				$result = \OC_User::setPassword($username, $password, $recoveryPassword);
    77. 

  77. 				if (!$result && $recoveryPasswordSupported) {
    78. 

  78. 					$l = new \OC_L10n('settings');
    79. 

  79. 					\OC_JSON::error(array(
    80. 

  80. 						"data" => array(
    81. 

  81. 							"message" => $l->t("Back-end doesn't support password change, but the users encryption key was successfully updated.")
    82. 

  82. 						)
    83. 

  83. 					));
    84. 

  84. 				} elseif (!$result && !$recoveryPasswordSupported) {
    85. 

  85. 					$l = new \OC_L10n('settings');
    86. 

  86. 					\OC_JSON::error(array("data" => array( "message" => $l->t("Unable to change password" ) )));
    87. 

  87. 				} else {
    88. 

  88. 					\OC_JSON::success(array("data" => array( "username" => $username )));
    89. 

  89. 				}
    90. 

  90. 

  91. 			}
    92. 

  92. 		} else { // if encryption is disabled, proceed
    93. 

  93. 			if (!is_null($password) && \OC_User::setPassword($username, $password)) {
    94. 

  94. 				\OC_JSON::success(array('data' => array('username' => $username)));
    95. 

  95. 			} else {
    96. 

  96. 				$l = new \OC_L10n('settings');
    97. 

  97. 				\OC_JSON::error(array('data' => array('message' => $l->t('Unable to change password'))));
    98. 

  98. 			}
    99. 

  99. 		}
    100. 

  100. 	}
    101. 

  101. }
    102. 

  102.