Файловый менеджер

Файловый менеджер - Редактировать - /home/harasnat/www/mf/basic.tar

Назад
basic.xml��0000644��00000001625�15062130056�0006351 0��ustar�00��<?xml version="1.0" encoding="UTF-8"?> <extension type="plugin" group="api-authentication" method="upgrade"> <name>plg_api-authentication_basic</name> <author>Joomla! Project</author> <creationDate>2005-11</creationDate> <copyright>(C) 2019 Open Source Matters, Inc.</copyright> <license>GNU General Public License version 2 or later; see LICENSE.txt</license> <authorEmail>admin@joomla.org</authorEmail> <authorUrl>www.joomla.org</authorUrl> <version>4.0.0</version> <description>PLG_API-AUTHENTICATION_BASIC_XML_DESCRIPTION</description> <namespace path="src">Joomla\Plugin\ApiAuthentication\Basic</namespace> <files> <folder plugin="basic">services</folder> <folder>src</folder> </files> <languages> <language tag="en-GB">language/en-GB/plg_api-authentication_basic.ini</language> <language tag="en-GB">language/en-GB/plg_api-authentication_basic.sys.ini</language> </languages> </extension> ��services/provider.php��0000644��00000003066�15062130056�0010735 0��ustar�00��<?php /** * @package Joomla.Plugin * @subpackage Apiauthentication.basic * * @copyright (C) 2022 Open Source Matters, Inc. <https://www.joomla.org> * @license GNU General Public License version 2 or later; see LICENSE.txt / defined('_JEXEC') or die; use Joomla\CMS\Extension\PluginInterface; use Joomla\CMS\Factory; use Joomla\CMS\Plugin\PluginHelper; use Joomla\CMS\User\UserFactoryInterface; use Joomla\Database\DatabaseInterface; use Joomla\DI\Container; use Joomla\DI\ServiceProviderInterface; use Joomla\Event\DispatcherInterface; use Joomla\Plugin\ApiAuthentication\Basic\Extension\Basic; return new class () implements ServiceProviderInterface { /* * Registers the service provider with a DI container. * * @param Container $container The DI container. * * @return void * * @since 4.2.0 / public function register(Container $container) { $container->set( PluginInterface::class, function (Container $container) { $dispatcher = $container->get(DispatcherInterface::class); $plugin = new Basic( $dispatcher, (array) PluginHelper::getPlugin('api-authentication', 'basic'), ); $plugin->setApplication(Factory::getApplication()); $plugin->setDatabase($container->get(DatabaseInterface::class)); $plugin->setUserFactory($container->get(UserFactoryInterface::class)); return $plugin; } ); } }; ��src/Extension/Basic.php��0000644��00000007105�15062130056�0011042 0��ustar�00��<?php /* * @package Joomla.Plugin * @subpackage Apiauthentication.basic * * @copyright (C) 2019 Open Source Matters, Inc. <https://www.joomla.org> * @license GNU General Public License version 2 or later; see LICENSE.txt / namespace Joomla\Plugin\ApiAuthentication\Basic\Extension; use Joomla\CMS\Authentication\Authentication; use Joomla\CMS\Plugin\CMSPlugin; use Joomla\CMS\User\UserFactoryAwareTrait; use Joomla\CMS\User\UserHelper; use Joomla\Database\DatabaseAwareTrait; // phpcs:disable PSR1.Files.SideEffects \defined('_JEXEC') or die; // phpcs:enable PSR1.Files.SideEffects /* * Joomla Authentication plugin * * @since 4.0.0 / final class Basic extends CMSPlugin { use DatabaseAwareTrait; use UserFactoryAwareTrait; /* * This method should handle any authentication and report back to the subject * * @param array $credentials Array holding the user credentials * @param array $options Array of extra options * @param object &$response Authentication response object * * @return void * * @since 4.0.0 */ public function onUserAuthenticate($credentials, $options, &$response) { $response->type = 'Basic'; $username = $this->getApplication()->getInput()->server->get('PHP_AUTH_USER', '', 'USERNAME'); $password = $this->getApplication()->getInput()->server->get('PHP_AUTH_PW', '', 'RAW'); if ($password === '') { $response->status = Authentication::STATUS_FAILURE; $response->error_message = $this->getApplication()->getLanguage()->_('JGLOBAL_AUTH_EMPTY_PASS_NOT_ALLOWED'); return; } $db = $this->getDatabase(); $query = $db->getQuery(true) ->select($db->quoteName(['id', 'password'])) ->from($db->quoteName('#__users')) ->where($db->quoteName('username') . ' = :username') ->bind(':username', $username); $db->setQuery($query); $result = $db->loadObject(); if ($result) { $match = UserHelper::verifyPassword($password, $result->password, $result->id); if ($match === true) { // Bring this in line with the rest of the system $user = $this->getUserFactory()->loadUserById($result->id); $response->email = $user->email; $response->fullname = $user->name; $response->username = $username; if ($this->getApplication()->isClient('administrator')) { $response->language = $user->getParam('admin_language'); } else { $response->language = $user->getParam('language'); } $response->status = Authentication::STATUS_SUCCESS; $response->error_message = ''; } else { // Invalid password $response->status = Authentication::STATUS_FAILURE; $response->error_message = $this->getApplication()->getLanguage()->_('JGLOBAL_AUTH_INVALID_PASS'); } } else { // Let's hash the entered password even if we don't have a matching user for some extra response time // By doing so, we mitigate side channel user enumeration attacks UserHelper::hashPassword($password); // Invalid user $response->status = Authentication::STATUS_FAILURE; $response->error_message = $this->getApplication()->getLanguage()->_('JGLOBAL_AUTH_NO_USER'); } } } ��

| ver. 1.4 | Github | .