shimmie2/core/user.php

<?php

function _new_user(array $row): User {
	return new User($row);
}


/**
 * Class User
 *
 * An object representing a row in the "users" table.
 *
 * The currently logged in user will always be accessible via the global variable $user.
 */
class User {
	/** @var int */
	public $id;

	/** @var string */
	public $name;

	/** @var string */
	public $email;

	public $join_date;

	/** @var string */
	public $passhash;

	/** @var UserClass */
	public $class;

	/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *
	* Initialisation                                               *
	*                                                              *
	* User objects shouldn't be created directly, they should be   *
	* fetched from the database like so:                           *
	*                                                              *
	*    $user = User::by_name("bob");                             *
	* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */

	/**
	 * One will very rarely construct a user directly, more common
	 * would be to use User::by_id, User::by_session, etc.
	 *
	 * @throws SCoreException
	 */
	public function __construct(array $row) {
		global $_shm_user_classes;

		$this->id = int_escape($row['id']);
		$this->name = $row['name'];
		$this->email = $row['email'];
		$this->join_date = $row['joindate'];
		$this->passhash = $row['pass'];

		if(array_key_exists($row["class"], $_shm_user_classes)) {
			$this->class = $_shm_user_classes[$row["class"]];
		}
		else {
			throw new SCoreException("User '{$this->name}' has invalid class '{$row["class"]}'");
		}
	}

	public static function by_session(string $name, string $session) {
		global $config, $database;
		$row = $database->cache->get("user-session:$name-$session");
		if(!$row) {
			if($database->get_driver_name() === "mysql") {
				$query = "SELECT * FROM users WHERE name = :name AND md5(concat(pass, :ip)) = :sess";
			}
			else {
				$query = "SELECT * FROM users WHERE name = :name AND md5(pass || :ip) = :sess";
			}
			$row = $database->get_row($query, array("name"=>$name, "ip"=>get_session_ip($config), "sess"=>$session));
			$database->cache->set("user-session:$name-$session", $row, 600);
		}
		return is_null($row) ? null : new User($row);
	}

	public static function by_id(int $id) {
		global $database;
		if($id === 1) {
			$cached = $database->cache->get('user-id:'.$id);
			if($cached) return new User($cached);
		}
		$row = $database->get_row("SELECT * FROM users WHERE id = :id", array("id"=>$id));
		if($id === 1) $database->cache->set('user-id:'.$id, $row, 600);
		return is_null($row) ? null : new User($row);
	}

	public static function by_name(string $name) {
		global $database;
		$row = $database->get_row($database->scoreql_to_sql("SELECT * FROM users WHERE SCORE_STRNORM(name) = SCORE_STRNORM(:name)"), array("name"=>$name));
		return is_null($row) ? null : new User($row);
	}

	public static function by_name_and_pass(string $name, string $pass) {
		$user = User::by_name($name);
		if($user) {
			if($user->passhash == md5(strtolower($name) . $pass)) {
				log_info("core-user", "Migrating from md5 to bcrypt for ".html_escape($name));
				$user->set_password($pass);
			}
			if(password_verify($pass, $user->passhash)) {
				log_info("core-user", "Logged in as ".html_escape($name)." ({$user->class->name})");
				return $user;
			}
			else {
				log_warning("core-user", "Failed to log in as ".html_escape($name)." (Invalid password)");
			}
		}
		else {
			log_warning("core-user", "Failed to log in as ".html_escape($name)." (Invalid username)");
		}
		return null;
	}


	/* useful user object functions start here */

	public function can(string $ability): bool {
		return $this->class->can($ability);
	}


	public function is_anonymous(): bool {
		global $config;
		return ($this->id === $config->get_int('anon_id'));
	}

	public function is_logged_in(): bool {
		global $config;
		return ($this->id !== $config->get_int('anon_id'));
	}

	public function is_admin(): bool {
		return ($this->class->name === "admin");
	}

	public function set_class(string $class) {
		global $database;
		$database->Execute("UPDATE users SET class=:class WHERE id=:id", array("class"=>$class, "id"=>$this->id));
		log_info("core-user", 'Set class for '.$this->name.' to '.$class);
	}

	public function set_name(string $name) {
		global $database;
		if(User::by_name($name)) {
			throw new Exception("Desired username is already in use");
		}
		$old_name = $this->name;
		$this->name = $name;
		$database->Execute("UPDATE users SET name=:name WHERE id=:id", array("name"=>$this->name, "id"=>$this->id));
		log_info("core-user", "Changed username for {$old_name} to {$this->name}");
	}

	public function set_password(string $password) {
		global $database;
		$hash = password_hash($password, PASSWORD_BCRYPT);
		if(is_string($hash)) {
			$this->passhash = $hash;
			$database->Execute("UPDATE users SET pass=:hash WHERE id=:id", array("hash"=>$this->passhash, "id"=>$this->id));
			log_info("core-user", 'Set password for '.$this->name);
		}
		else {
			throw new SCoreException("Failed to hash password");
		}
	}

	public function set_email(string $address) {
		global $database;
		$database->Execute("UPDATE users SET email=:email WHERE id=:id", array("email"=>$address, "id"=>$this->id));
		log_info("core-user", 'Set email for '.$this->name);
	}

	/**
	 * Get a snippet of HTML which will render the user's avatar, be that
	 * a local file, a remote file, a gravatar, a something else, etc.
	 */
	public function get_avatar_html(): string {
		// FIXME: configurable
		global $config;
		if($config->get_string("avatar_host") === "gravatar") {
			if(!empty($this->email)) {
				$hash = md5(strtolower($this->email));
				$s = $config->get_string("avatar_gravatar_size");
				$d = urlencode($config->get_string("avatar_gravatar_default"));
				$r = $config->get_string("avatar_gravatar_rating");
				$cb = date("Y-m-d");
				return "<img class=\"avatar gravatar\" src=\"https://www.gravatar.com/avatar/$hash.jpg?s=$s&d=$d&r=$r&cacheBreak=$cb\">";
			}
		}
		return "";
	}

	/**
	 * Get an auth token to be used in POST forms
	 *
	 * password = secret, avoid storing directly
	 * passhash = bcrypt(password), so someone who gets to the database can't get passwords
	 * sesskey  = md5(passhash . IP), so if it gets sniffed it can't be used from another IP,
	 *            and it can't be used to get the passhash to generate new sesskeys
	 * authtok  = md5(sesskey, salt), presented to the user in web forms, to make sure that
	 *            the form was generated within the session. Salted and re-hashed so that
	 *            reading a web page from the user's cache doesn't give access to the session key
	 */
	public function get_auth_token(): string {
		global $config;
		$salt = DATABASE_DSN;
		$addr = get_session_ip($config);
		return md5(md5($this->passhash . $addr) . "salty-csrf-" . $salt);
	}

	public function get_auth_html(): string {
		$at = $this->get_auth_token();
		return '<input type="hidden" name="auth_token" value="'.$at.'">';
	}

	public function check_auth_token(): bool {
		return (isset($_POST["auth_token"]) && $_POST["auth_token"] == $this->get_auth_token());
	}
}
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`<?php`
migrate to bcrypt for password storage 2014-05-23 23:28:57 +00:00
php7.1 all the things 2019-05-28 16:31:20 +00:00			`function _new_user(array $row): User {`
fetch a block of users 2009-05-30 13:47:35 +00:00			`return new User($row);`
			`}`

start of fine-grained permissions 2012-02-07 13:44:54 +00:00
lots of docs 2009-07-19 07:38:13 +00:00			`/**`
More PHP Doc comments. 2014-04-29 05:33:03 +00:00			`* Class User`
			`*`
more documentation for code in core git-svn-id: file:///home/shish/svn/shimmie2/trunk@629 7f39781d-f577-437e-ae19-be835c7a54ca 2007-12-06 11:01:18 +00:00			`* An object representing a row in the "users" table.`
lots of docs 2009-07-19 07:38:13 +00:00			`*`
More PHP Doc comments. 2014-04-29 05:33:03 +00:00			`* The currently logged in user will always be accessible via the global variable $user.`
more documentation for code in core git-svn-id: file:///home/shish/svn/shimmie2/trunk@629 7f39781d-f577-437e-ae19-be835c7a54ca 2007-12-06 11:01:18 +00:00			`*/`
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`class User {`
Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00			`/** @var int */`
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $id;`
Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00
			`/** @var string */`
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $name;`
Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00
			`/** @var string */`
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $email;`
Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $join_date;`
Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`/** @var string */`
From stack-overflow: The 'var' keyword is for declaring class variables in PHP4. It works in PHP5 but can raise an E_STRICT warning in from version 5.0.0 up to version 5.1.2, as it has been deprecated. Changing to public as that is really what these variables are anyways. 2014-04-24 08:36:05 +00:00			`public $passhash;`
A bunch of small changes from scrutinizer-ci; some tidying, some actual bug fixes 2014-03-30 12:26:48 +00:00
Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00			`/** @var UserClass */`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`public $class;`
merge some useful parts of SCore git-svn-id: file:///home/shish/svn/shimmie2/trunk@1002 7f39781d-f577-437e-ae19-be835c7a54ca 2008-08-23 12:05:24 +00:00
			`/* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * *`
			`* Initialisation *`
			`* *`
			`* User objects shouldn't be created directly, they should be *`
			`* fetched from the database like so: *`
			`* *`
fetch a block of users 2009-05-30 13:47:35 +00:00			`* $user = User::by_name("bob"); *`
merge some useful parts of SCore git-svn-id: file:///home/shish/svn/shimmie2/trunk@1002 7f39781d-f577-437e-ae19-be835c7a54ca 2008-08-23 12:05:24 +00:00			`* * * * * * * * * * * * * * * * * * * * * * * * * * * * * * * */`

lots of docs 2009-07-19 07:38:13 +00:00			`/**`
			`* One will very rarely construct a user directly, more common`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`* would be to use User::by_id, User::by_session, etc.`
			`*`
Some minor linting. 2014-12-15 00:06:31 +00:00			`* @throws SCoreException`
lots of docs 2009-07-19 07:38:13 +00:00			`*/`
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function __construct(array $row) {`
more global removal 2015-08-02 19:39:41 +00:00			`global $_shm_user_classes;`
user classes 2012-02-14 20:38:19 +00:00
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`$this->id = int_escape($row['id']);`
			`$this->name = $row['name'];`
			`$this->email = $row['email'];`
			`$this->join_date = $row['joindate'];`
csrf functions 2010-05-28 12:04:57 +00:00			`$this->passhash = $row['pass'];`
Give a better error if User::class has been screwed up somehow 2014-12-07 03:44:03 +00:00
more global removal 2015-08-02 19:39:41 +00:00			`if(array_key_exists($row["class"], $_shm_user_classes)) {`
			`$this->class = $_shm_user_classes[$row["class"]];`
Give a better error if User::class has been screwed up somehow 2014-12-07 03:44:03 +00:00			`}`
			`else {`
throw Ex() -> throw new Ex(); 2014-12-07 13:20:36 +00:00			`throw new SCoreException("User '{$this->name}' has invalid class '{$row["class"]}'");`
Give a better error if User::class has been screwed up somehow 2014-12-07 03:44:03 +00:00			`}`
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public static function by_session(string $name, string $session) {`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`global $config, $database;`
a little extra consistency in cache variable names 2014-11-26 13:09:49 +00:00			`$row = $database->cache->get("user-session:$name-$session");`
cache user sessions 2012-06-23 22:38:28 +00:00			`if(!$row) {`
get rid of direct references to Database's engine 2012-06-23 23:57:55 +00:00			`if($database->get_driver_name() === "mysql") {`
checking the engine can trigger a database init... 2012-06-23 23:25:47 +00:00			`$query = "SELECT * FROM users WHERE name = :name AND md5(concat(pass, :ip)) = :sess";`
			`}`
			`else {`
			`$query = "SELECT * FROM users WHERE name = :name AND md5(pass \|\| :ip) = :sess";`
			`}`
cache user sessions 2012-06-23 22:38:28 +00:00			`$row = $database->get_row($query, array("name"=>$name, "ip"=>get_session_ip($config), "sess"=>$session));`
a little extra consistency in cache variable names 2014-11-26 13:09:49 +00:00			`$database->cache->set("user-session:$name-$session", $row, 600);`
cache user sessions 2012-06-23 22:38:28 +00:00			`}`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`return is_null($row) ? null : new User($row);`
merge some useful parts of SCore git-svn-id: file:///home/shish/svn/shimmie2/trunk@1002 7f39781d-f577-437e-ae19-be835c7a54ca 2008-08-23 12:05:24 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public static function by_id(int $id) {`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`global $database;`
More small changes for speed. 2012-01-11 20:57:00 +00:00			`if($id === 1) {`
			`$cached = $database->cache->get('user-id:'.$id);`
cache anon, it gets looked up a lot 2011-03-23 11:26:11 +00:00			`if($cached) return new User($cached);`
			`}`
more pdo compat 2011-01-01 15:58:09 +00:00			`$row = $database->get_row("SELECT * FROM users WHERE id = :id", array("id"=>$id));`
longer cache timings, with better invalidation 2012-06-24 00:57:06 +00:00			`if($id === 1) $database->cache->set('user-id:'.$id, $row, 600);`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`return is_null($row) ? null : new User($row);`
merge some useful parts of SCore git-svn-id: file:///home/shish/svn/shimmie2/trunk@1002 7f39781d-f577-437e-ae19-be835c7a54ca 2008-08-23 12:05:24 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public static function by_name(string $name) {`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`global $database;`
normalise usernames 2012-12-10 21:28:41 +00:00			`$row = $database->get_row($database->scoreql_to_sql("SELECT * FROM users WHERE SCORE_STRNORM(name) = SCORE_STRNORM(:name)"), array("name"=>$name));`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`return is_null($row) ? null : new User($row);`
merge some useful parts of SCore git-svn-id: file:///home/shish/svn/shimmie2/trunk@1002 7f39781d-f577-437e-ae19-be835c7a54ca 2008-08-23 12:05:24 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public static function by_name_and_pass(string $name, string $pass) {`
migrate to bcrypt for password storage 2014-05-23 23:28:57 +00:00			`$user = User::by_name($name);`
			`if($user) {`
			`if($user->passhash == md5(strtolower($name) . $pass)) {`
More detailed login logging 2019-04-26 09:13:31 +00:00			`log_info("core-user", "Migrating from md5 to bcrypt for ".html_escape($name));`
migrate to bcrypt for password storage 2014-05-23 23:28:57 +00:00			`$user->set_password($pass);`
			`}`
			`if(password_verify($pass, $user->passhash)) {`
More detailed login logging 2019-04-26 09:13:31 +00:00			`log_info("core-user", "Logged in as ".html_escape($name)." ({$user->class->name})");`
migrate to bcrypt for password storage 2014-05-23 23:28:57 +00:00			`return $user;`
			`}`
More detailed login logging 2019-04-26 09:13:31 +00:00			`else {`
			`log_warning("core-user", "Failed to log in as ".html_escape($name)." (Invalid password)");`
			`}`
			`}`
			`else {`
			`log_warning("core-user", "Failed to log in as ".html_escape($name)." (Invalid username)");`
migrate to bcrypt for password storage 2014-05-23 23:28:57 +00:00			`}`
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`return null;`
merge some useful parts of SCore git-svn-id: file:///home/shish/svn/shimmie2/trunk@1002 7f39781d-f577-437e-ae19-be835c7a54ca 2008-08-23 12:05:24 +00:00			`}`


Fixing/adding/cleaning up the PHP Doc comments. 2014-04-26 09:01:49 +00:00			`/* useful user object functions start here */`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function can(string $ability): bool {`
user classes 2012-02-14 20:38:19 +00:00			`return $this->class->can($ability);`
start of fine-grained permissions 2012-02-07 13:44:54 +00:00			`}`

merge some useful parts of SCore git-svn-id: file:///home/shish/svn/shimmie2/trunk@1002 7f39781d-f577-437e-ae19-be835c7a54ca 2008-08-23 12:05:24 +00:00
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function is_anonymous(): bool {`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`global $config;`
A few more small changes for speed. 2012-01-12 19:46:58 +00:00			`return ($this->id === $config->get_int('anon_id'));`
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function is_logged_in(): bool {`
documentation updates 2010-01-12 15:01:34 +00:00			`global $config;`
A few more small changes for speed. 2012-01-12 19:46:58 +00:00			`return ($this->id !== $config->get_int('anon_id'));`
documentation updates 2010-01-12 15:01:34 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function is_admin(): bool {`
check against the class /name/... 2012-02-14 21:15:19 +00:00			`return ($this->class->name === "admin");`
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function set_class(string $class) {`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`global $database;`
user classes 2012-02-14 20:38:19 +00:00			`$database->Execute("UPDATE users SET class=:class WHERE id=:id", array("class"=>$class, "id"=>$this->id));`
			`log_info("core-user", 'Set class for '.$this->name.' to '.$class);`
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function set_name(string $name) {`
support for changing usernames 2015-07-12 21:14:57 +00:00			`global $database;`
			`if(User::by_name($name)) {`
			`throw new Exception("Desired username is already in use");`
			`}`
			`$old_name = $this->name;`
			`$this->name = $name;`
			`$database->Execute("UPDATE users SET name=:name WHERE id=:id", array("name"=>$this->name, "id"=>$this->id));`
			`log_info("core-user", "Changed username for {$old_name} to {$this->name}");`
			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function set_password(string $password) {`
requestcontext stuff is messy, go back to globals :( 2009-05-11 14:04:33 +00:00			`global $database;`
lint fixes 2016-06-18 18:00:26 +00:00			`$hash = password_hash($password, PASSWORD_BCRYPT);`
			`if(is_string($hash)) {`
			`$this->passhash = $hash;`
			`$database->Execute("UPDATE users SET pass=:hash WHERE id=:id", array("hash"=>$this->passhash, "id"=>$this->id));`
			`log_info("core-user", 'Set password for '.$this->name);`
			`}`
			`else {`
			`throw new SCoreException("Failed to hash password");`
			`}`
massive user management cleanup, part 1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@610 7f39781d-f577-437e-ae19-be835c7a54ca 2007-11-04 03:51:41 +00:00			`}`
settable email field 2009-08-11 16:07:03 +00:00
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function set_email(string $address) {`
settable email field 2009-08-11 16:07:03 +00:00			`global $database;`
more pdo compat 2011-01-01 15:58:09 +00:00			`$database->Execute("UPDATE users SET email=:email WHERE id=:id", array("email"=>$address, "id"=>$this->id));`
A few more small changes for speed. 2012-01-12 19:46:58 +00:00			`log_info("core-user", 'Set email for '.$this->name);`
settable email field 2009-08-11 16:07:03 +00:00			`}`
User::get_avatar_html() 2009-10-08 01:57:28 +00:00
			`/**`
			`* Get a snippet of HTML which will render the user's avatar, be that`
Updating/Fixing/Adding more comments with the PHP Doc style. 2014-04-27 19:33:57 +00:00			`* a local file, a remote file, a gravatar, a something else, etc.`
User::get_avatar_html() 2009-10-08 01:57:28 +00:00			`*/`
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function get_avatar_html(): string {`
User::get_avatar_html() 2009-10-08 01:57:28 +00:00			`// FIXME: configurable`
configurability for avatars 2009-10-08 11:40:52 +00:00			`global $config;`
More small changes for speed. 2012-01-11 20:57:00 +00:00			`if($config->get_string("avatar_host") === "gravatar") {`
configurability for avatars 2009-10-08 11:40:52 +00:00			`if(!empty($this->email)) {`
			`$hash = md5(strtolower($this->email));`
avatar options 2010-04-21 16:56:01 +00:00			`$s = $config->get_string("avatar_gravatar_size");`
default gravatar url needs urlencoding 2012-02-09 17:37:41 +00:00			`$d = urlencode($config->get_string("avatar_gravatar_default"));`
avatar options 2010-04-21 16:56:01 +00:00			`$r = $config->get_string("avatar_gravatar_rating");`
add daily cache breakage to gravatars 2012-12-30 18:08:58 +00:00			`$cb = date("Y-m-d");`
https for gravatars 2018-07-17 00:15:20 +00:00			`return "<img class=\"avatar gravatar\" src=\"https://www.gravatar.com/avatar/$hash.jpg?s=$s&d=$d&r=$r&cacheBreak=$cb\">";`
configurability for avatars 2009-10-08 11:40:52 +00:00			`}`
User::get_avatar_html() 2009-10-08 01:57:28 +00:00			`}`
			`return "";`
			`}`
csrf functions 2010-05-28 12:04:57 +00:00
			`/**`
			`* Get an auth token to be used in POST forms`
			`*`
			`* password = secret, avoid storing directly`
migrate to bcrypt for password storage 2014-05-23 23:28:57 +00:00			`* passhash = bcrypt(password), so someone who gets to the database can't get passwords`
csrf functions 2010-05-28 12:04:57 +00:00			`* sesskey = md5(passhash . IP), so if it gets sniffed it can't be used from another IP,`
			`* and it can't be used to get the passhash to generate new sesskeys`
			`* authtok = md5(sesskey, salt), presented to the user in web forms, to make sure that`
			`* the form was generated within the session. Salted and re-hashed so that`
			`* reading a web page from the user's cache doesn't give access to the session key`
			`*/`
PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function get_auth_token(): string {`
csrf functions 2010-05-28 12:04:57 +00:00			`global $config;`
config.php might not exist, eg in monolith mode 2012-02-02 03:53:18 +00:00			`$salt = DATABASE_DSN;`
csrf functions 2010-05-28 12:04:57 +00:00			`$addr = get_session_ip($config);`
use config.php as CSRF salt 2010-09-22 12:20:08 +00:00			`return md5(md5($this->passhash . $addr) . "salty-csrf-" . $salt);`
csrf functions 2010-05-28 12:04:57 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function get_auth_html(): string {`
csrf functions 2010-05-28 12:04:57 +00:00			`$at = $this->get_auth_token();`
More small changes for speed. 2012-01-11 20:57:00 +00:00			`return '<input type="hidden" name="auth_token" value="'.$at.'">';`
csrf functions 2010-05-28 12:04:57 +00:00			`}`

PHP7 type annotations 2017-09-19 17:55:43 +00:00			`public function check_auth_token(): bool {`
sometimes, there is no token :O 2012-01-26 17:36:22 +00:00			`return (isset($_POST["auth_token"]) && $_POST["auth_token"] == $this->get_auth_token());`
csrf functions 2010-05-28 12:04:57 +00:00			`}`
Initial import, 2.0rc1 git-svn-id: file:///home/shish/svn/shimmie2/trunk@1 7f39781d-f577-437e-ae19-be835c7a54ca 2007-04-16 11:58:25 +00:00			`}`