security_2classes_2general_2tests_2user_8php_source.html

<?


class CSecurityUserTest

    extends CSecurityBaseTest

{

    protected $internalName = 'UsersTest';

    protected $sessionData = null;

    protected $maximumExecutionTime = 0.0;

    protected $savedMaxExecutionTime = 0.0;


    public function __construct()

    {

        IncludeModuleLangFile(__FILE__);

        $this->savedMaxExecutionTime = ini_get("max_execution_time");

        if ($this->savedMaxExecutionTime <= 0)

        {

            $phpMaxExecutionTime = 30;

        }

        else

        {

            $phpMaxExecutionTime = $this->savedMaxExecutionTime - 2;

        }

        $this->maximumExecutionTime = time() + $phpMaxExecutionTime;

        set_time_limit(0);

    }


    public function __destruct()

    {

        set_time_limit($this->savedMaxExecutionTime);

    }


    public function check(array $params = [])

    {

        if (count($this->tests))

        {

            return parent::check($params);

        }


        $this->initializeParams($params);

        $testID = $this->getParam('TEST_ID', $this->internalName);

        $sessionData = new CSecurityTemporaryStorage($testID);


        if (!$sessionData->isExists('current_user'))

        {

            $user = static::getNextUser(0);

            $passwordId = 0;

        }

        else

        {

            $user = static::getNextUser($sessionData->getInt('current_user'));

            $passwordId = $sessionData->getInt('current_password');

        }


        if ($user && (int)$user['ID'] > 0)

        {

            $userChecked = true;

            $passwordDictionary = static::getPasswordDictionary();

            $hash = $user['PASSWORD'];

            for ($i = $passwordId, $max = count($passwordDictionary); $i < $max; $i++)

            {

                if ($this->isTimeOut())

                {

                    $sessionData->setData('current_password', $i);

                    $userChecked = false;

                    break;

                }

                if (\Bitrix\Main\Security\Password::equals($hash, $passwordDictionary[$i]))

                {

                    $sessionData->pushToArray('weak_users', (int)$user['ID']);

                    break;

                }

            }


            if ($userChecked)

            {

                $sessionData->setData('current_user', (int)$user['ID']);

            }

            else

            {

                $sessionData->setData('current_user', (int)$user['ID'] - 1);

            }


            $result = [

                'name' => $this->getName(),

                'timeout' => 1,

                'in_progress' => true,

            ];

        }

        else

        {

            $weakUsers = $sessionData->getArray('weak_users');

            $sessionData->flushData();

            $result = [

                'name' => $this->getName(),

                'problem_count' => !empty($weakUsers) ? 1 : 0,

                'errors' => [

                    [

                        'title' => GetMessage('SECURITY_SITE_CHECKER_ADMIN_WEAK_PASSWORD'),

                        'critical' => CSecurityCriticalLevel::HIGHT,

                        'detail' => GetMessage('SECURITY_SITE_CHECKER_ADMIN_WEAK_PASSWORD_DETAIL'),

                        'recommendation' => $result = GetMessage('SECURITY_SITE_CHECKER_ADMIN_WEAK_PASSWORD_RECOMMENDATIONS'),

                        'additional_info' => !empty($weakUsers) ? static::formatRecommendation($weakUsers) : '',

                    ],

                ],

                'status' => empty($weakUsers),

            ];

        }


        return $result;

    }


    protected static function formatRecommendation(array $weakUsers)

    {

        $result = getMessage('SECURITY_SITE_CHECKER_ADMIN_WEAK_PASSWORD_USER_LIST');

        foreach (static::getUsersLogins($weakUsers) as $id => $login)

        {

            $result .= sprintf(

                '<br><a href="/bitrix/admin/user_edit.php?ID=%d" target="_blank">%s<a/>',

                $id, htmlspecialcharsbx($login)

            );

        }


        return $result;

    }


    protected static function getNextUser($id)

    {

        $result = null;

        $users = static::getAdminUserList(1, $id);

        if ($user = $users->fetch())

        {

            $result = $user;

        }


        return $result;

    }


    protected static function getUsersLogins(array $ids)

    {

        if (empty($ids))

        {

            return [];

        }


        $dbUser = CUser::GetList(

            'ID',

            'ASC',

            [

                'ID' => implode('|', $ids),

                'ACTIVE' => 'Y',

            ],

            [

                'FIELDS' => 'LOGIN',

            ]

        );


        $result = [];

        if ($dbUser)

        {

            while ($user = $dbUser->fetch())

            {

                $result[$user['ID']] = $user['LOGIN'];

            }

        }


        return $result;

    }


    protected static function getPasswordDictionary()

    {

        static $passwords = null;


        if (is_null($passwords))

        {

            $passwords = file($_SERVER['DOCUMENT_ROOT'] . '/bitrix/modules/security/data/passwordlist.txt',

                FILE_IGNORE_NEW_LINES | FILE_SKIP_EMPTY_LINES);

        }


        return $passwords;

    }


    protected static function getAdminUserList($limit = 0, $minId = 0)

    {

        $dbUser = CUser::GetList(

            'ID',

            'ASC',

            [

                'GROUPS_ID' => 1,

                '>ID' => $minId,

                'ACTIVE' => 'Y',

            ],

            [

                'FIELDS' => 'ID',

                'NAV_PARAMS' => [

                    'nTopCount' => $limit,

                ],

            ]

        );


        if ($dbUser)

        {

            return $dbUser;

        }

        else

        {

            return new CDBResult([]);

        }

    }


    protected function isTimeOut()

    {

        return (time() >= $this->maximumExecutionTime);

    }


}


$hash
$hash
Определения ajax_redirector.php:8

$login
$login
Определения change_password.php:8

CSecurityBaseTest
Определения base_test.php:14

CSecurityBaseTest\getName
getName()
Определения base_test.php:28

CSecurityBaseTest\initializeParams
initializeParams(array $params=array())
Определения base_test.php:115

CSecurityBaseTest\getParam
getParam($name, $defaultValue="")
Определения base_test.php:182

CSecurityBaseTest\$params
$params
Определения base_test.php:20

CSecurityCriticalLevel\HIGHT
const HIGHT
Определения critical_level.php:17

CSecurityTemporaryStorage
Определения temporary_storage.php:4

CSecurityUserTest
Определения user.php:15

CSecurityUserTest\check
check(array $params=[])
Определения user.php:47

CSecurityUserTest\$savedMaxExecutionTime
$savedMaxExecutionTime
Определения user.php:20

CSecurityUserTest\__construct
__construct()
Определения user.php:22

CSecurityUserTest\isTimeOut
isTimeOut()
Определения user.php:245

CSecurityUserTest\$maximumExecutionTime
$maximumExecutionTime
Определения user.php:19

CSecurityUserTest\__destruct
__destruct()
Определения user.php:38

CSecurityUserTest\getNextUser
static getNextUser($id)
Определения user.php:149

CSecurityUserTest\getPasswordDictionary
static getPasswordDictionary()
Определения user.php:196

CSecurityUserTest\$internalName
$internalName
Определения user.php:16

CSecurityUserTest\getAdminUserList
static getAdminUserList($limit=0, $minId=0)
Определения user.php:214

CSecurityUserTest\$sessionData
$sessionData
Определения user.php:18

CSecurityUserTest\getUsersLogins
static getUsersLogins(array $ids)
Определения user.php:165

CSecurityUserTest\formatRecommendation
static formatRecommendation(array $weakUsers)
Определения user.php:131

array
</td ></tr ></table ></td ></tr >< tr >< td class="bx-popup-label bx-width30"><?=GetMessage("PAGE_NEW_TAGS")?> array( $site)
Определения file_new.php:804

$result
$result
Определения get_property_values.php:14

$_SERVER
$_SERVER["DOCUMENT_ROOT"]
Определения cron_frame.php:9

htmlspecialcharsbx
htmlspecialcharsbx($string, $flags=ENT_COMPAT, $doubleEncode=true)
Определения tools.php:2701

IncludeModuleLangFile
IncludeModuleLangFile($filepath, $lang=false, $bReturnArray=false)
Определения tools.php:3778

GetMessage
GetMessage($name, $aReplace=null)
Определения tools.php:3397

Bitrix

$i
$i
Определения factura.php:643

count
</p ></td >< td valign=top style='border-top:none;border-left:none;border-bottom:solid windowtext 1.0pt;border-right:solid windowtext 1.0pt;padding:0cm 2.0pt 0cm 2.0pt;height:9.0pt'>< p class=Normal align=center style='margin:0cm;margin-bottom:.0001pt;text-align:center;line-height:normal'>< a name=ТекстовоеПоле54 ></a ><?=($taxRate > count( $arTaxList) > 0) ? $taxRate."%"
Определения waybill.php:936

$max
$max
Определения template_copy.php:262