ReachableCEO
91d52d2de5
- Add CloudronStack/output/CloudronPackages-Artifacts/tirreno/ directory and its contents - Includes package manifest, Dockerfile, source code, documentation, and build artifacts - Add tirreno-1761840148.tar.gz as a build artifact - Add tirreno-cloudron-package-1761841304.tar.gz as the Cloudron package - Include all necessary files for the tirreno Cloudron package This adds the complete tirreno Cloudron package artifacts to the repository.
111 lines
3.6 KiB
PHP
111 lines
3.6 KiB
PHP
<?php
|
|
|
|
/**
|
|
* Tirreno ~ Open source user analytics
|
|
* Copyright (c) Tirreno Technologies Sàrl (https://www.tirreno.com)
|
|
*
|
|
* Licensed under GNU Affero General Public License version 3 of the or any later version.
|
|
* For full copyright and license information, please see the LICENSE
|
|
* Redistributions of files must retain the above copyright notice.
|
|
*
|
|
* @copyright Copyright (c) Tirreno Technologies Sàrl (https://www.tirreno.com)
|
|
* @license https://opensource.org/licenses/AGPL-3.0 AGPL License
|
|
* @link https://www.tirreno.com Tirreno(tm)
|
|
*/
|
|
|
|
namespace Controllers\Pages;
|
|
|
|
class PasswordRecovering extends Base {
|
|
public $page = 'PasswordRecovering';
|
|
|
|
public function getPageParams(): array {
|
|
$pageParams = [
|
|
'HTML_FILE' => 'passwordRecovering.html',
|
|
];
|
|
|
|
$renewKey = $this->f3->get('PARAMS.renewKey');
|
|
$errorCode = $this->validate($renewKey);
|
|
$pageParams['SUCCESS_CODE'] = $errorCode;
|
|
|
|
if ($this->isPostRequest()) {
|
|
$params = $this->f3->get('POST');
|
|
$errorCode = $this->validatePost($params);
|
|
|
|
$pageParams['SUCCESS_CODE'] = 0;
|
|
$pageParams['ERROR_CODE'] = $errorCode;
|
|
|
|
if (!$errorCode) {
|
|
$forgotPasswordModel = new \Models\ForgotPassword();
|
|
$forgotPasswordModel->getUnusedByRenewKey($renewKey);
|
|
$operatorId = $forgotPasswordModel->operator_id;
|
|
|
|
$forgotPasswordModel->deactivate();
|
|
|
|
$params = [
|
|
'id' => $operatorId,
|
|
'new-password' => $params['new-password'],
|
|
];
|
|
|
|
$operatorModel = new \Models\Operator();
|
|
$operatorModel->updatePassword($params);
|
|
$operatorModel->activateByOperator($operatorId);
|
|
|
|
$pageParams['SUCCESS_CODE'] = \Utils\ErrorCodes::ACCOUNT_ACTIVATED;
|
|
}
|
|
}
|
|
|
|
return parent::applyPageParams($pageParams);
|
|
}
|
|
|
|
private function validate(string $renewKey): int|false {
|
|
if (!$renewKey) {
|
|
return \Utils\ErrorCodes::RENEW_KEY_DOES_NOT_EXIST;
|
|
}
|
|
|
|
$forgotPasswordModel = new \Models\ForgotPassword();
|
|
$forgotPasswordModel->getUnusedByRenewKey($renewKey);
|
|
if (!$forgotPasswordModel->loaded()) {
|
|
return \Utils\ErrorCodes::RENEW_KEY_IS_NOT_CORRECT;
|
|
}
|
|
|
|
$currentTime = time();
|
|
$linkTime = strtotime($forgotPasswordModel->created_at);
|
|
$lifeTime = $this->f3->get('RENEW_PASSWORD_LINK_TIME');
|
|
|
|
if ($currentTime > $linkTime + $lifeTime) {
|
|
return \Utils\ErrorCodes::RENEW_KEY_WAS_EXPIRED;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
|
|
private function validatePost(array $params): int|false {
|
|
$errorCode = \Utils\Access::CSRFTokenValid($params, $this->f3);
|
|
if ($errorCode) {
|
|
return $errorCode;
|
|
}
|
|
|
|
$newPassword = $params['new-password'];
|
|
if (!$newPassword) {
|
|
return \Utils\ErrorCodes::NEW_PASSWORD_DOES_NOT_EXIST;
|
|
}
|
|
|
|
$newPasswordLegth = strlen($newPassword);
|
|
$minPasswordLegth = $this->f3->get('MIN_PASSWORD_LENGTH');
|
|
if ($newPasswordLegth < $minPasswordLegth) {
|
|
return \Utils\ErrorCodes::PASSWORD_IS_TO_SHORT;
|
|
}
|
|
|
|
$passwordConfirmation = $params['password-confirmation'];
|
|
if (!$passwordConfirmation) {
|
|
return \Utils\ErrorCodes::PASSWORD_CONFIRMATION_DOES_NOT_EXIST;
|
|
}
|
|
|
|
if ($newPassword !== $passwordConfirmation) {
|
|
return \Utils\ErrorCodes::PASSWORDS_ARE_NOT_EQUAL;
|
|
}
|
|
|
|
return false;
|
|
}
|
|
}
|