mirror of https://github.com/itflow-org/itflow
add readable password generation
This commit is contained in:
o-psi
parent
f0567c1fb7
commit
ebaa2a084a
|
|
@ -241,12 +241,36 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
|
||||||
</table>
|
</table>
|
||||||
</div>
|
</div>
|
||||||
<?php require_once "pagination.php";
|
<?php require_once "pagination.php";
|
||||||
?>
|
?>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
|
|
||||||
<!-- JavaScript to Show/Hide Password Form Group -->
|
<!-- JavaScript to Show/Hide Password Form Group -->
|
||||||
<script>
|
<script>
|
||||||
|
|
||||||
|
function generatePassword(type, id) {
|
||||||
|
var url = '/ajax.php?get_readable_pass=true';
|
||||||
|
|
||||||
|
// Make an AJAX request to the server
|
||||||
|
var xhr = new XMLHttpRequest();
|
||||||
|
xhr.open('GET', url, true);
|
||||||
|
|
||||||
|
xhr.onreadystatechange = function () {
|
||||||
|
if (xhr.readyState == 4 && xhr.status == 200) {
|
||||||
|
var password = xhr.responseText;
|
||||||
|
|
||||||
|
// Set the password value based on the type
|
||||||
|
if (type == "add") {
|
||||||
|
document.getElementById("password-add").value = password;
|
||||||
|
} else if (type == "edit") {
|
||||||
|
console.log("password-edit-"+id.toString());
|
||||||
|
document.getElementById("password-edit-"+id.toString()).value = password;
|
||||||
|
}
|
||||||
|
}
|
||||||
|
};
|
||||||
|
xhr.send();
|
||||||
|
}
|
||||||
|
|
||||||
$(document).ready(function() {
|
$(document).ready(function() {
|
||||||
$('.authMethod').on('change', function() {
|
$('.authMethod').on('change', function() {
|
||||||
var $form = $(this).closest('.authForm');
|
var $form = $(this).closest('.authForm');
|
||||||
|
|
@ -257,6 +281,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
|
||||||
}
|
}
|
||||||
});
|
});
|
||||||
$('.authMethod').trigger('change');
|
$('.authMethod').trigger('change');
|
||||||
|
|
||||||
});
|
});
|
||||||
</script>
|
</script>
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -50,7 +50,9 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
|
||||||
|
|
||||||
<div class="col-md-4">
|
<div class="col-md-4">
|
||||||
<div class="input-group mb-3 mb-md-0">
|
<div class="input-group mb-3 mb-md-0">
|
||||||
<input type="search" class="form-control" name="q" value="<?php if (isset($q)) { echo stripslashes(nullable_htmlentities($q)); } ?>" placeholder="Search Logins">
|
<input type="search" class="form-control" name="q" value="<?php if (isset($q)) {
|
||||||
|
echo stripslashes(nullable_htmlentities($q));
|
||||||
|
} ?>" placeholder="Search Logins">
|
||||||
<div class="input-group-append">
|
<div class="input-group-append">
|
||||||
<button class="btn btn-dark"><i class="fa fa-search"></i></button>
|
<button class="btn btn-dark"><i class="fa fa-search"></i></button>
|
||||||
</div>
|
</div>
|
||||||
|
|
@ -67,107 +69,110 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
|
||||||
<hr>
|
<hr>
|
||||||
<div class="table-responsive-sm">
|
<div class="table-responsive-sm">
|
||||||
<table class="table table-striped table-borderless table-hover">
|
<table class="table table-striped table-borderless table-hover">
|
||||||
<thead class="text-dark <?php if ($num_rows[0] == 0) { echo "d-none"; } ?>">
|
<thead class="text-dark <?php if ($num_rows[0] == 0) {
|
||||||
<tr>
|
echo "d-none";
|
||||||
<th><a class="text-secondary" href="?<?php echo $url_query_strings_sort; ?>&sort=login_name&order=<?php echo $disp; ?>">Name</a></th>
|
} ?>">
|
||||||
<th><a class="text-secondary" href="?<?php echo $url_query_strings_sort; ?>&sort=login_description&order=<?php echo $disp; ?>">Description</a></th>
|
<tr>
|
||||||
<th>Username</th>
|
<th><a class="text-secondary" href="?<?php echo $url_query_strings_sort; ?>&sort=login_name&order=<?php echo $disp; ?>">Name</a></th>
|
||||||
<th>Password</th>
|
<th><a class="text-secondary" href="?<?php echo $url_query_strings_sort; ?>&sort=login_description&order=<?php echo $disp; ?>">Description</a></th>
|
||||||
<th>OTP</th>
|
<th>Username</th>
|
||||||
<th><a class="text-secondary" href="?<?php echo $url_query_strings_sort; ?>&sort=login_uri&order=<?php echo $disp; ?>">URI</a></th>
|
<th>Password</th>
|
||||||
<th class="text-center">Action</th>
|
<th>OTP</th>
|
||||||
</tr>
|
<th><a class="text-secondary" href="?<?php echo $url_query_strings_sort; ?>&sort=login_uri&order=<?php echo $disp; ?>">URI</a></th>
|
||||||
|
<th class="text-center">Action</th>
|
||||||
|
</tr>
|
||||||
</thead>
|
</thead>
|
||||||
<tbody>
|
<tbody>
|
||||||
<?php
|
<?php
|
||||||
|
|
||||||
while ($row = mysqli_fetch_array($sql)) {
|
while ($row = mysqli_fetch_array($sql)) {
|
||||||
$login_id = intval($row['login_id']);
|
$login_id = intval($row['login_id']);
|
||||||
$login_name = nullable_htmlentities($row['login_name']);
|
$login_name = nullable_htmlentities($row['login_name']);
|
||||||
$login_description = nullable_htmlentities($row['login_description']);
|
$login_description = nullable_htmlentities($row['login_description']);
|
||||||
if (empty($login_description)) {
|
if (empty($login_description)) {
|
||||||
$login_description_display = "-";
|
$login_description_display = "-";
|
||||||
} else {
|
} else {
|
||||||
$login_description_display = $login_description;
|
$login_description_display = $login_description;
|
||||||
}
|
}
|
||||||
$login_uri = nullable_htmlentities($row['login_uri']);
|
$login_uri = nullable_htmlentities($row['login_uri']);
|
||||||
if (empty($login_uri)) {
|
if (empty($login_uri)) {
|
||||||
$login_uri_display = "-";
|
$login_uri_display = "-";
|
||||||
} else {
|
} else {
|
||||||
$login_uri_display = "$login_uri<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_uri'><i class='far fa-copy text-secondary'></i></button><a href='$login_uri' target='_blank'><i class='fa fa-external-link-alt text-secondary'></i></a>";
|
$login_uri_display = "$login_uri<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_uri'><i class='far fa-copy text-secondary'></i></button><a href='$login_uri' target='_blank'><i class='fa fa-external-link-alt text-secondary'></i></a>";
|
||||||
}
|
}
|
||||||
$login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
|
$login_username = nullable_htmlentities(decryptLoginEntry($row['login_username']));
|
||||||
if (empty($login_username)) {
|
if (empty($login_username)) {
|
||||||
$login_username_display = "-";
|
$login_username_display = "-";
|
||||||
} else {
|
} else {
|
||||||
$login_username_display = "$login_username<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_username'><i class='far fa-copy text-secondary'></i></button>";
|
$login_username_display = "$login_username<button class='btn btn-sm clipboardjs' data-clipboard-text='$login_username'><i class='far fa-copy text-secondary'></i></button>";
|
||||||
}
|
}
|
||||||
$login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
|
$login_password = nullable_htmlentities(decryptLoginEntry($row['login_password']));
|
||||||
$login_otp_secret = nullable_htmlentities($row['login_otp_secret']);
|
$login_otp_secret = nullable_htmlentities($row['login_otp_secret']);
|
||||||
$login_id_with_secret = '"' . $row['login_id'] . '","' . $row['login_otp_secret'] . '"';
|
$login_id_with_secret = '"' . $row['login_id'] . '","' . $row['login_otp_secret'] . '"';
|
||||||
if (empty($login_otp_secret)) {
|
if (empty($login_otp_secret)) {
|
||||||
$otp_display = "-";
|
$otp_display = "-";
|
||||||
} else {
|
} else {
|
||||||
$otp_display = "<span onmouseenter='showOTPViaLoginID($login_id)'><i class='far fa-clock'></i> <span id='otp_$login_id'><i>Hover..</i></span></span>";
|
$otp_display = "<span onmouseenter='showOTPViaLoginID($login_id)'><i class='far fa-clock'></i> <span id='otp_$login_id'><i>Hover..</i></span></span>";
|
||||||
}
|
}
|
||||||
$login_note = nullable_htmlentities($row['login_note']);
|
$login_note = nullable_htmlentities($row['login_note']);
|
||||||
$login_important = intval($row['login_important']);
|
$login_important = intval($row['login_important']);
|
||||||
$login_contact_id = intval($row['login_contact_id']);
|
$login_contact_id = intval($row['login_contact_id']);
|
||||||
$login_vendor_id = intval($row['login_vendor_id']);
|
$login_vendor_id = intval($row['login_vendor_id']);
|
||||||
$login_asset_id = intval($row['login_asset_id']);
|
$login_asset_id = intval($row['login_asset_id']);
|
||||||
$login_software_id = intval($row['login_software_id']);
|
$login_software_id = intval($row['login_software_id']);
|
||||||
|
|
||||||
?>
|
?>
|
||||||
<tr class="<?php if(!empty($login_important)) { echo "text-bold"; }?>">
|
<tr class="<?php if (!empty($login_important)) {
|
||||||
<td>
|
echo "text-bold";
|
||||||
<i class="fa fa-fw fa-key text-secondary"></i>
|
} ?>">
|
||||||
<a class="text-dark" href="#" data-toggle="modal" data-target="#editLoginModal<?php echo $login_id; ?>">
|
<td>
|
||||||
<?php echo $login_name; ?>
|
<i class="fa fa-fw fa-key text-secondary"></i>
|
||||||
</a>
|
<a class="text-dark" href="#" data-toggle="modal" data-target="#editLoginModal<?php echo $login_id; ?>">
|
||||||
</td>
|
<?php echo $login_name; ?>
|
||||||
<td><?php echo $login_description_display; ?></td>
|
</a>
|
||||||
<td><?php echo $login_username_display; ?></td>
|
</td>
|
||||||
<td>
|
<td><?php echo $login_description_display; ?></td>
|
||||||
<a tabindex="0" href="#" data-toggle="popover" data-trigger="focus" data-placement="top" data-content="<?php echo $login_password; ?>"><i class="fas fa-2x fa-ellipsis-h text-secondary"></i><i class="fas fa-2x fa-ellipsis-h text-secondary"></i></a><button class="btn btn-sm clipboardjs" data-clipboard-text="<?php echo $login_password; ?>"><i class="far fa-copy text-secondary"></i></button>
|
<td><?php echo $login_username_display; ?></td>
|
||||||
</td>
|
<td>
|
||||||
<td><?php echo $otp_display; ?></td>
|
<a tabindex="0" href="#" data-toggle="popover" data-trigger="focus" data-placement="top" data-content="<?php echo $login_password; ?>"><i class="fas fa-2x fa-ellipsis-h text-secondary"></i><i class="fas fa-2x fa-ellipsis-h text-secondary"></i></a><button class="btn btn-sm clipboardjs" data-clipboard-text="<?php echo $login_password; ?>"><i class="far fa-copy text-secondary"></i></button>
|
||||||
<td><?php echo $login_uri_display; ?></td>
|
</td>
|
||||||
<td>
|
<td><?php echo $otp_display; ?></td>
|
||||||
<div class="dropdown dropleft text-center">
|
<td><?php echo $login_uri_display; ?></td>
|
||||||
<button class="btn btn-secondary btn-sm" type="button" data-toggle="dropdown">
|
<td>
|
||||||
<i class="fas fa-ellipsis-h"></i>
|
<div class="dropdown dropleft text-center">
|
||||||
</button>
|
<button class="btn btn-secondary btn-sm" type="button" data-toggle="dropdown">
|
||||||
<div class="dropdown-menu">
|
<i class="fas fa-ellipsis-h"></i>
|
||||||
<a class="dropdown-item" href="#" data-toggle="modal" data-target="#editLoginModal<?php echo $login_id; ?>">
|
</button>
|
||||||
<i class="fas fa-fw fa-edit mr-2"></i>Edit
|
<div class="dropdown-menu">
|
||||||
</a>
|
<a class="dropdown-item" href="#" data-toggle="modal" data-target="#editLoginModal<?php echo $login_id; ?>">
|
||||||
<a class="dropdown-item" href="#" data-toggle="modal" data-target="#shareModal" onclick="populateShareModal(<?php echo "$client_id, 'Login', $login_id"; ?>)">
|
<i class="fas fa-fw fa-edit mr-2"></i>Edit
|
||||||
<i class="fas fa-fw fa-share mr-2"></i>Share
|
|
||||||
</a>
|
|
||||||
<?php if ($session_user_role == 3) { ?>
|
|
||||||
<div class="dropdown-divider"></div>
|
|
||||||
<a class="dropdown-item text-danger text-bold" href="post.php?delete_login=<?php echo $login_id; ?>">
|
|
||||||
<i class="fas fa-fw fa-trash mr-2"></i>Delete
|
|
||||||
</a>
|
</a>
|
||||||
<?php } ?>
|
<a class="dropdown-item" href="#" data-toggle="modal" data-target="#shareModal" onclick="populateShareModal(<?php echo "$client_id, 'Login', $login_id"; ?>)">
|
||||||
|
<i class="fas fa-fw fa-share mr-2"></i>Share
|
||||||
|
</a>
|
||||||
|
<?php if ($session_user_role == 3) { ?>
|
||||||
|
<div class="dropdown-divider"></div>
|
||||||
|
<a class="dropdown-item text-danger text-bold" href="post.php?delete_login=<?php echo $login_id; ?>">
|
||||||
|
<i class="fas fa-fw fa-trash mr-2"></i>Delete
|
||||||
|
</a>
|
||||||
|
<?php } ?>
|
||||||
|
</div>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</td>
|
||||||
</td>
|
</tr>
|
||||||
</tr>
|
|
||||||
|
|
||||||
<?php
|
<?php
|
||||||
|
|
||||||
require "client_login_edit_modal.php";
|
require "client_login_edit_modal.php";
|
||||||
|
}
|
||||||
|
|
||||||
}
|
?>
|
||||||
|
|
||||||
?>
|
|
||||||
|
|
||||||
</tbody>
|
</tbody>
|
||||||
</table>
|
</table>
|
||||||
</div>
|
</div>
|
||||||
<?php require_once "pagination.php";
|
<?php require_once "pagination.php";
|
||||||
?>
|
?>
|
||||||
</div>
|
</div>
|
||||||
</div>
|
</div>
|
||||||
|
|
||||||
|
|
@ -176,8 +181,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
|
||||||
function showOTP(id, secret) {
|
function showOTP(id, secret) {
|
||||||
//Send a GET request to ajax.php as ajax.php?get_totp_token=true&totp_secret=SECRET
|
//Send a GET request to ajax.php as ajax.php?get_totp_token=true&totp_secret=SECRET
|
||||||
jQuery.get(
|
jQuery.get(
|
||||||
"ajax.php",
|
"ajax.php", {
|
||||||
{get_totp_token: 'true', totp_secret: secret},
|
get_totp_token: 'true',
|
||||||
|
totp_secret: secret
|
||||||
|
},
|
||||||
function(data) {
|
function(data) {
|
||||||
//If we get a response from post.php, parse it as JSON
|
//If we get a response from post.php, parse it as JSON
|
||||||
const token = JSON.parse(data);
|
const token = JSON.parse(data);
|
||||||
|
|
@ -191,8 +198,10 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
|
||||||
function showOTPViaLoginID(login_id) {
|
function showOTPViaLoginID(login_id) {
|
||||||
// Send a GET request to ajax.php as ajax.php?get_totp_token_via_id=true&login_id=ID
|
// Send a GET request to ajax.php as ajax.php?get_totp_token_via_id=true&login_id=ID
|
||||||
jQuery.get(
|
jQuery.get(
|
||||||
"ajax.php",
|
"ajax.php", {
|
||||||
{get_totp_token_via_id: 'true', login_id: login_id},
|
get_totp_token_via_id: 'true',
|
||||||
|
login_id: login_id
|
||||||
|
},
|
||||||
function(data) {
|
function(data) {
|
||||||
//If we get a response from post.php, parse it as JSON
|
//If we get a response from post.php, parse it as JSON
|
||||||
const token = JSON.parse(data);
|
const token = JSON.parse(data);
|
||||||
|
|
@ -204,7 +213,24 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli, "SELECT FOUND_ROWS()"));
|
||||||
}
|
}
|
||||||
|
|
||||||
function generatePassword() {
|
function generatePassword() {
|
||||||
document.getElementById("password").value = "<?php echo randomString(); ?>"
|
document.getElementById("password").value = "<?php echo generateReadablePassword(3); ?>"
|
||||||
|
}
|
||||||
|
|
||||||
|
function generatePassword() {
|
||||||
|
var url = '/ajax.php?get_readable_pass=true';
|
||||||
|
|
||||||
|
// Make an AJAX request to the server
|
||||||
|
var xhr = new XMLHttpRequest();
|
||||||
|
xhr.open('GET', url, true);
|
||||||
|
|
||||||
|
xhr.onreadystatechange = function() {
|
||||||
|
if (xhr.readyState == 4 && xhr.status == 200) {
|
||||||
|
var password = xhr.responseText;
|
||||||
|
|
||||||
|
document.getElementById("password").value = password;
|
||||||
|
}
|
||||||
|
};
|
||||||
|
xhr.send();
|
||||||
}
|
}
|
||||||
</script>
|
</script>
|
||||||
|
|
||||||
|
|
@ -219,4 +245,3 @@ require_once "client_login_import_modal.php";
|
||||||
require_once "client_login_export_modal.php";
|
require_once "client_login_export_modal.php";
|
||||||
|
|
||||||
require_once "footer.php";
|
require_once "footer.php";
|
||||||
|
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue