applicationpassword_8php_source.html

<?php

namespace Bitrix\Main\Authentication;


use Bitrix\Main;

use Bitrix\Main\ORM;

use Bitrix\Main\ORM\Data;

use Bitrix\Main\ORM\Fields;


class ApplicationPasswordTable extends Data\DataManager

{

    use Data\Internal\DeleteByFilterTrait;


    protected const PASSWORD_ALPHABET = "qwertyuiopasdfghjklzxcvbnm";

    protected const PASSWORD_LENGTH = 16;


    public static function getTableName()

    {

        return "b_app_password";

    }


    public static function getMap()

    {

        return array(

            new Fields\IntegerField('ID', array(

                'primary' => true,

                'autocomplete' => true

            )),

            new Fields\IntegerField('USER_ID', array(

                'required' => true,

                'validation' => '\Bitrix\Main\Authentication\ApplicationPasswordTable::getUserValidators',

            )),

            new Fields\StringField('APPLICATION_ID', array(

                'required' => true,

            )),

            new Fields\StringField('PASSWORD', array(

                'required' => true,

            )),

            new Fields\StringField('DIGEST_PASSWORD'),

            new Fields\DatetimeField('DATE_CREATE'),

            new Fields\DatetimeField('DATE_LOGIN'),

            new Fields\StringField('LAST_IP'),

            new Fields\StringField('COMMENT'),

            new Fields\StringField('SYSCOMMENT'),

            new Fields\StringField('CODE'),

            new Fields\Relations\Reference(

                'USER',

                'Bitrix\Main\User',

                array('=this.USER_ID' => 'ref.ID'),

                array('join_type' => 'INNER')

            ),

        );

    }


    public static function getUserValidators()

    {

        return array(

            new Fields\Validators\ForeignValidator(Main\UserTable::getEntity()->getField('ID')),

        );

    }


    public static function onBeforeAdd(ORM\Event $event)

    {

        $result = new ORM\EventResult;

        $data = $event->getParameter("fields");


        if(isset($data["USER_ID"]) && isset($data['PASSWORD']))

        {

            $modified = [

                'PASSWORD' => Main\Security\Password::hash($data['PASSWORD']),

            ];


            $user = Main\UserTable::getRowById($data["USER_ID"]);

            if($user !== null)

            {

                $realm = (defined('BX_HTTP_AUTH_REALM')? BX_HTTP_AUTH_REALM : "Bitrix Site Manager");

                $digest = md5($user["LOGIN"].':'.$realm.':'.$data['PASSWORD']);

                $modified['DIGEST_PASSWORD'] = $digest;

            }


            $result->modifyFields($modified);

        }

        return $result;

    }


    public static function onDelete(ORM\Event $event)

    {

        $id = $event->getParameter("id");


        $row = static::getRowById($id);

        if($row)

        {

            Main\UserAuthActionTable::addLogoutAction($row["USER_ID"], $row["APPLICATION_ID"]);

        }

    }


    public static function generatePassword()

    {

        return Main\Security\Random::getStringByCharsets(static::PASSWORD_LENGTH, static::PASSWORD_ALPHABET);

    }


    public static function isPassword($password)

    {

        if (is_string($password))

        {

            $password = str_replace(' ', '', $password);


            if(strlen($password) === static::PASSWORD_LENGTH)

            {

                return (!preg_match("/[^".static::PASSWORD_ALPHABET."]/", $password));

            }

        }

        return false;

    }


    public static function findPassword($userId, $password, $passwordOriginal = true)

    {

        if($passwordOriginal)

        {

            $password = str_replace(' ', '', $password);

        }


        $appPasswords = static::getList(array(

            'select' => array('ID', 'PASSWORD', 'APPLICATION_ID'),

            'filter' => array('=USER_ID' => $userId),

        ));

        while(($appPassword = $appPasswords->fetch()))

        {

            if(Main\Security\Password::equals($appPassword["PASSWORD"], $password, $passwordOriginal))

            {

                //bingo, application password

                return $appPassword;

            }

        }

        return false;

    }


    public static function findDigestPassword($userId, array $digest)

    {

        $appPasswords = static::getList(array(

            'select' => array('PASSWORD', 'DIGEST_PASSWORD', 'APPLICATION_ID'),

            'filter' => array('=USER_ID' => $userId),

        ));


        $server = Main\Context::getCurrent()->getServer();

        $method = ($server['REDIRECT_REQUEST_METHOD'] !== null? $server['REDIRECT_REQUEST_METHOD'] : $server['REQUEST_METHOD']);

        $HA2 = md5($method.':'.$digest['uri']);


        while(($appPassword = $appPasswords->fetch()))

        {

            $HA1 = $appPassword["DIGEST_PASSWORD"];

            $valid_response = md5($HA1.':'.$digest['nonce'].':'.$HA2);


            if($digest["response"] === $valid_response)

            {

                //application password

                return $appPassword;

            }

        }

        return false;

    }


}


Bitrix\Main\Authentication\ApplicationPasswordTable
Definition applicationpassword.php:32

Bitrix\Main\Authentication\ApplicationPasswordTable\isPassword
static isPassword($password)
Definition applicationpassword.php:132

Bitrix\Main\Authentication\ApplicationPasswordTable\getUserValidators
static getUserValidators()
Definition applicationpassword.php:76

Bitrix\Main\Authentication\ApplicationPasswordTable\onDelete
static onDelete(ORM\Event $event)
Definition applicationpassword.php:107

Bitrix\Main\Authentication\ApplicationPasswordTable\findPassword
static findPassword($userId, $password, $passwordOriginal=true)
Definition applicationpassword.php:154

Bitrix\Main\Authentication\ApplicationPasswordTable\getMap
static getMap()
Definition applicationpassword.php:43

Bitrix\Main\Authentication\ApplicationPasswordTable\onBeforeAdd
static onBeforeAdd(ORM\Event $event)
Definition applicationpassword.php:83

Bitrix\Main\Authentication\ApplicationPasswordTable\findDigestPassword
static findDigestPassword($userId, array $digest)
Definition applicationpassword.php:183

Bitrix\Main\Authentication\ApplicationPasswordTable\generatePassword
static generatePassword()
Definition applicationpassword.php:122

Bitrix\Main\Authentication\ApplicationPasswordTable\PASSWORD_ALPHABET
const PASSWORD_ALPHABET
Definition applicationpassword.php:35

Bitrix\Main\Authentication\ApplicationPasswordTable\PASSWORD_LENGTH
const PASSWORD_LENGTH
Definition applicationpassword.php:36

Bitrix\Main\Authentication\ApplicationPasswordTable\getTableName
static getTableName()
Definition applicationpassword.php:38

Bitrix\Main\Event
Definition event.php:5

Bitrix\Main\EventResult
Definition eventresult.php:5

Bitrix\Main\ORM\Data\DataManager
Definition datamanager.php:33

Bitrix\Main\ORM\Data\DataManager\getEntity
static getEntity()
Definition datamanager.php:78

Bitrix\Main\ORM\Fields\DatetimeField
Definition datetimefield.php:22

Bitrix\Main\ORM\Fields\IntegerField
Definition integerfield.php:20

Bitrix\Main\ORM\Fields\Relations\Reference
Definition reference.php:26

Bitrix\Main\ORM\Fields\StringField
Definition stringfield.php:20

Bitrix\Main\Security\Password\equals
static equals($hash, $password, $original=true)
Definition password.php:20

Bitrix\Main\Authentication
Definition application.php:9

Bitrix\Main\ORM\Data
Definition addresult.php:9

Bitrix\Main\ORM\Fields
Definition arrayfield.php:9

Bitrix\Main\ORM

Bitrix\Main