diff options
| author | kondou <kondou@ts.unde.re> | 2013-09-06 08:05:07 +0200 |
|---|---|---|
| committer | kondou <kondou@ts.unde.re> | 2013-09-06 08:05:07 +0200 |
| commit | a21376480df10fdb96685d0eb2e663d494aed16f (patch) | |
| tree | 942dd1b8d9928828337d982e051b5c7e9e746e21 /settings/ajax | |
| parent | ea6e74ca9546ca95b3a6372c6106cd8ab2ea2ee9 (diff) | |
| download | nextcloud-server-a21376480df10fdb96685d0eb2e663d494aed16f.tar.gz nextcloud-server-a21376480df10fdb96685d0eb2e663d494aed16f.zip | |
Split personal and user-mgmt password change logic
Diffstat (limited to 'settings/ajax')
| -rw-r--r-- | settings/ajax/changepassword.php | 36 | ||||
| -rw-r--r-- | settings/ajax/changepersonalpassword.php | 24 |
2 files changed, 42 insertions, 18 deletions
diff --git a/settings/ajax/changepassword.php b/settings/ajax/changepassword.php index 47ceb5ab873..41f0fa2f2fd 100644 --- a/settings/ajax/changepassword.php +++ b/settings/ajax/changepassword.php @@ -1,34 +1,34 @@ <?php -// Check if we are a user -OCP\JSON::callCheck(); +// Check if we are an user +OC_JSON::callCheck(); OC_JSON::checkLoggedIn(); // Manually load apps to ensure hooks work correctly (workaround for issue 1503) -OC_APP::loadApps(); +OC_App::loadApps(); -$username = isset($_POST['username']) ? $_POST['username'] : OC_User::getUser(); -$password = isset($_POST['personal-password']) ? $_POST['personal-password'] : null; -$oldPassword = isset($_POST['oldpassword']) ? $_POST['oldpassword'] : ''; +if (isset($_POST['username'])) { + $username = $_POST['username']; +} else { + $l = new \OC_L10n('settings'); + OC_JSON::error(array('data' => array('message' => $l->t('No user supplied')) )); + exit(); +} + +$password = isset($_POST['password']) ? $_POST['password'] : null; $recoveryPassword = isset($_POST['recoveryPassword']) ? $_POST['recoveryPassword'] : null; -$userstatus = null; if (OC_User::isAdminUser(OC_User::getUser())) { $userstatus = 'admin'; -} -if (OC_SubAdmin::isUserAccessible(OC_User::getUser(), $username)) { +} elseif (OC_SubAdmin::isUserAccessible(OC_User::getUser(), $username)) { $userstatus = 'subadmin'; -} -if (OC_User::getUser() === $username && OC_User::checkPassword($username, $oldPassword)) { - $userstatus = 'user'; -} - -if (is_null($userstatus)) { - OC_JSON::error(array('data' => array('message' => 'Authentication error'))); +} else { + $l = new \OC_L10n('settings'); + OC_JSON::error(array('data' => array('message' => $l->t('Authentication error')) )); exit(); } -if (\OCP\App::isEnabled('files_encryption') && $userstatus !== 'user') { +if (\OC_App::isEnabled('files_encryption')) { //handle the recovery case $util = new \OCA\Encryption\Util(new \OC_FilesystemView('/'), $username); $recoveryAdminEnabled = OC_Appconfig::getValue('files_encryption', 'recoveryAdminEnabled'); @@ -55,7 +55,7 @@ if (\OCP\App::isEnabled('files_encryption') && $userstatus !== 'user') { } } -} else { // if user changes his own password or if encryption is disabled, proceed +} else { // if encryption is disabled, proceed if (!is_null($password) && OC_User::setPassword($username, $password)) { OC_JSON::success(array('data' => array('username' => $username))); } else { diff --git a/settings/ajax/changepersonalpassword.php b/settings/ajax/changepersonalpassword.php new file mode 100644 index 00000000000..6c3f5d599ac --- /dev/null +++ b/settings/ajax/changepersonalpassword.php @@ -0,0 +1,24 @@ +<?php + +// Check if we are an user +OC_JSON::callCheck(); +OC_JSON::checkLoggedIn(); + +// Manually load apps to ensure hooks work correctly (workaround for issue 1503) +OC_App::loadApps(); + +$username = OC_User::getUser(); +$password = isset($_POST['personal-password']) ? $_POST['personal-password'] : null; +$oldPassword = isset($_POST['oldpassword']) ? $_POST['oldpassword'] : ''; +$recoveryPassword = isset($_POST['recoveryPassword']) ? $_POST['recoveryPassword'] : null; + +if (!OC_User::checkPassword($username, $oldPassword)) { + $l = new \OC_L10n('settings'); + OC_JSON::error(array("data" => array("message" => $l->t("Wrong password")) )); + exit(); +} +if (!is_null($password) && OC_User::setPassword($username, $password)) { + OC_JSON::success(); +} else { + OC_JSON::error(); +} |