httpPassword/inc/class.httppassword.php

<?php
/**
 * @brief httpPassword, a plugin for Dotclear 2
 *
 * @package Dotclear
 * @subpackage Plugin
 *
 * @author Frederic PLE and contributors
 *
 * @copyright Jean-Christian Denis
 * @copyright GPL-2.0 https://www.gnu.org/licenses/gpl-2.0.html
 */
if (!defined('DC_RC_PATH')) {
    return null;
}

class httpPassword
{
    public static function id(): string
    {
        return basename(dirname(__DIR__));
    }

    public static function crypt(?string $secret): string
    {
        switch (dcCore::app()->blog->settings->get(self::id())->get('crypt')) {
            case 'plaintext':
                $saltlen = -1;
                $salt    = '';

                break;
            case 'crypt_std_des':
                $saltlen = 2;
                $salt    = '';

                break;
            case 'crypt_ext_des':
                $saltlen = 9;
                $salt    = '';

                break;
            case 'crypt_md5':
                $saltlen = 12;
                $salt    = '$1$';

                break;
            case 'crypt_blowfish':
                $saltlen = 16;
                $salt    = '$2$';

                break;
            case 'crypt_sha256':
                $saltlen = 16;
                $salt    = '$5$';

                break;
            case 'crypt_sha512':
                $saltlen = 16;
                $salt    = '$6$';

                break;
            default:
                return '';
        }

        if ($saltlen > 0) {
            $salt .= substr(
                sha1(dcCore::app()->getNonce() . date('U')),
                2,
                $saltlen - strlen($salt)
            );
            $secret = crypt($secret, $salt);
        }

        return($secret);
    }

    public static function isWritable(): bool
    {
        if (false === ($fp = fopen(dcCore::app()->blog->public_path . DIRECTORY_SEPARATOR . initHttpPassword::FILE_PASSWORD, 'a+'))) {
            return false;
        }
        fclose($fp);

        return true;
    }

    public static function getCryptCombo(): array
    {
        return [
            __('No encryption')      => 'plaintext',
            __('Crypt DES standard') => 'crypt_std_des',
            __('Crypt DES étendu')   => 'crypt_ext_des',
            __('Crypt MD5')          => 'crypt_md5',
            __('Crypt Blowfish')     => 'crypt_blowfish',
            __('Crypt SHA256')       => 'crypt_sha256',
            __('Crypt SHA512')       => 'crypt_sha512',
        ];
    }

    public static function sendHttp401(): void
    {
        header('HTTP/1.1 401 Unauthorized');
        header('WWW-Authenticate: Basic realm="' . utf8_decode(htmlspecialchars_decode(dcCore::app()->blog->settings->get(self::id())->get('message'))) . '"');
        exit(0);
    }
}
full rewrite for dotclear 2.24 2022-12-31 00:48:40 +00:00			`<?php`
			`/**`
			`* @brief httpPassword, a plugin for Dotclear 2`
			`*`
			`* @package Dotclear`
			`* @subpackage Plugin`
			`*`
			`* @author Frederic PLE and contributors`
			`*`
			`* @copyright Jean-Christian Denis`
			`* @copyright GPL-2.0 https://www.gnu.org/licenses/gpl-2.0.html`
			`*/`
			`if (!defined('DC_RC_PATH')) {`
			`return null;`
			`}`

			`class httpPassword`
			`{`
			`public static function id(): string`
			`{`
			`return basename(dirname(__DIR__));`
			`}`

			`public static function crypt(?string $secret): string`
			`{`
			`switch (dcCore::app()->blog->settings->get(self::id())->get('crypt')) {`
			`case 'plaintext':`
			`$saltlen = -1;`
			`$salt = '';`

			`break;`
			`case 'crypt_std_des':`
			`$saltlen = 2;`
			`$salt = '';`

			`break;`
			`case 'crypt_ext_des':`
			`$saltlen = 9;`
			`$salt = '';`

			`break;`
			`case 'crypt_md5':`
			`$saltlen = 12;`
			`$salt = '$1$';`

			`break;`
			`case 'crypt_blowfish':`
			`$saltlen = 16;`
			`$salt = '$2$';`

			`break;`
			`case 'crypt_sha256':`
			`$saltlen = 16;`
			`$salt = '$5$';`

			`break;`
			`case 'crypt_sha512':`
			`$saltlen = 16;`
			`$salt = '$6$';`

			`break;`
			`default:`
			`return '';`
			`}`

			`if ($saltlen > 0) {`
			`$salt .= substr(`
			`sha1(dcCore::app()->getNonce() . date('U')),`
			`2,`
			`$saltlen - strlen($salt)`
			`);`
			`$secret = crypt($secret, $salt);`
			`}`

			`return($secret);`
			`}`

			`public static function isWritable(): bool`
			`{`
			`if (false === ($fp = fopen(dcCore::app()->blog->public_path . DIRECTORY_SEPARATOR . initHttpPassword::FILE_PASSWORD, 'a+'))) {`
			`return false;`
			`}`
			`fclose($fp);`

			`return true;`
			`}`

			`public static function getCryptCombo(): array`
			`{`
			`return [`
			`__('No encryption') => 'plaintext',`
			`__('Crypt DES standard') => 'crypt_std_des',`
			`__('Crypt DES étendu') => 'crypt_ext_des',`
			`__('Crypt MD5') => 'crypt_md5',`
			`__('Crypt Blowfish') => 'crypt_blowfish',`
			`__('Crypt SHA256') => 'crypt_sha256',`
			`__('Crypt SHA512') => 'crypt_sha512',`
			`];`
			`}`

			`public static function sendHttp401(): void`
			`{`
			`header('HTTP/1.1 401 Unauthorized');`
			`header('WWW-Authenticate: Basic realm="' . utf8_decode(htmlspecialchars_decode(dcCore::app()->blog->settings->get(self::id())->get('message'))) . '"');`
			`exit(0);`
			`}`
			`}`