mirror of https://github.com/itflow-org/itflow
251 lines
9.9 KiB
PHP
251 lines
9.9 KiB
PHP
<?php
|
|
|
|
/*
|
|
* ITFlow - GET/POST request handler for user profiles (tech/agent)
|
|
*/
|
|
|
|
if (isset($_POST['edit_your_user_details'])) {
|
|
|
|
// CSRF Check
|
|
validateCSRFToken($_POST['csrf_token']);
|
|
|
|
$name = sanitizeInput($_POST['name']);
|
|
$email = sanitizeInput($_POST['email']);
|
|
|
|
$sql = mysqli_query($mysqli,"SELECT user_avatar FROM users WHERE user_id = $session_user_id");
|
|
$row = mysqli_fetch_array($sql);
|
|
$existing_file_name = sanitizeInput($row['user_avatar']);
|
|
|
|
$logout = false;
|
|
$extended_log_description = '';
|
|
|
|
// Email notification when password or email is changed
|
|
$user_old_email_sql = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT user_email FROM users WHERE user_id = $session_user_id"));
|
|
$user_old_email = sanitizeInput($user_old_email_sql['user_email']);
|
|
|
|
if (!empty($config_smtp_host) && ($user_old_email !== $email)) {
|
|
|
|
$details = "Your email address was changed. New email: $email.";
|
|
|
|
$subject = "$config_app_name account update confirmation for $name";
|
|
$body = "Hi $name, <br><br>Your $config_app_name account has been updated, details below: <br><br> <b>$details</b> <br><br> If you did not perform this change, contact your $config_app_name administrator immediately. <br><br>Thanks, <br>ITFlow<br>$session_company_name";
|
|
|
|
$data = [
|
|
[
|
|
'from' => $config_mail_from_email,
|
|
'from_name' => $config_mail_from_name,
|
|
'recipient' => $user_old_email,
|
|
'recipient_name' => $name,
|
|
'subject' => $subject,
|
|
'body' => $body
|
|
]
|
|
];
|
|
$mail = addToMailQueue($mysqli, $data);
|
|
}
|
|
|
|
// Check to see if a file is attached
|
|
if ($_FILES['file']['tmp_name'] != '') {
|
|
if ($new_file_name = checkFileUpload($_FILES['file'], array('jpg', 'jpeg', 'gif', 'png'))) {
|
|
|
|
$file_tmp_path = $_FILES['file']['tmp_name'];
|
|
|
|
// directory in which the uploaded file will be moved
|
|
$upload_file_dir = "uploads/users/$session_user_id/";
|
|
$dest_path = $upload_file_dir . $new_file_name;
|
|
move_uploaded_file($file_tmp_path, $dest_path);
|
|
|
|
// Delete old file
|
|
unlink("uploads/users/$session_user_id/$existing_file_name");
|
|
|
|
// Set Avatar
|
|
mysqli_query($mysqli,"UPDATE users SET user_avatar = '$new_file_name' WHERE user_id = $session_user_id");
|
|
|
|
// Extended Logging
|
|
$extended_log_description .= ", profile picture updated";
|
|
|
|
$_SESSION['alert_message'] = 'File successfully uploaded.';
|
|
}else{
|
|
$_SESSION['alert_type'] = "error";
|
|
$_SESSION['alert_message'] = 'There was an error moving the file to upload directory. Please make sure the upload directory is writable by web server.';
|
|
}
|
|
}
|
|
|
|
mysqli_query($mysqli,"UPDATE users SET user_name = '$name', user_email = '$email' WHERE user_id = $session_user_id");
|
|
|
|
//Logging
|
|
mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'User Details', log_action = 'Modify', log_description = '$session_name modified their details $extended_log_description', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
|
|
|
|
$_SESSION['alert_message'] = "User details updated";
|
|
|
|
if ($logout) {
|
|
header('Location: post.php?logout');
|
|
}
|
|
else{
|
|
header("Location: " . $_SERVER["HTTP_REFERER"]);
|
|
}
|
|
}
|
|
|
|
if (isset($_POST['edit_your_user_password'])) {
|
|
|
|
// CSRF Check
|
|
validateCSRFToken($_POST['csrf_token']);
|
|
|
|
$new_password = trim($_POST['new_password']);
|
|
|
|
// Email notification when password or email is changed
|
|
$user_sql = mysqli_fetch_assoc(mysqli_query($mysqli, "SELECT user_name, user_email FROM users WHERE user_id = $session_user_id"));
|
|
$name = sanitizeInput($user_sql['user_name']);
|
|
$user_email = sanitizeInput($user_sql['user_email']);
|
|
|
|
if (!empty($config_smtp_host)){
|
|
|
|
$details = "Your password was changed.";
|
|
|
|
$subject = "$config_app_name account update confirmation for $name";
|
|
$body = "Hi $name, <br><br>Your $config_app_name account has been updated, details below: <br><br> <b>$details</b> <br><br> If you did not perform this change, contact your $config_app_name administrator immediately. <br><br>Thanks, <br>ITFlow<br>$session_company_name";
|
|
|
|
$data = [
|
|
[
|
|
'from' => $config_mail_from_email,
|
|
'from_name' => $config_mail_from_name,
|
|
'recipient' => $user_email,
|
|
'recipient_name' => $name,
|
|
'subject' => $subject,
|
|
'body' => $body
|
|
]
|
|
];
|
|
$mail = addToMailQueue($mysqli, $data);
|
|
}
|
|
|
|
$new_password = password_hash($new_password, PASSWORD_DEFAULT);
|
|
$user_specific_encryption_ciphertext = encryptUserSpecificKey($_POST['new_password']);
|
|
mysqli_query($mysqli,"UPDATE users SET user_password = '$new_password', user_specific_encryption_ciphertext = '$user_specific_encryption_ciphertext' WHERE user_id = $session_user_id");
|
|
|
|
//Logging
|
|
mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'User Preferences', log_action = 'Modify', log_description = '$session_name changed their password', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
|
|
|
|
$_SESSION['alert_message'] = "Your password was updated";
|
|
|
|
header('Location: post.php?logout');
|
|
}
|
|
|
|
if (isset($_POST['edit_your_user_browser_extention'])) {
|
|
|
|
// CSRF Check
|
|
validateCSRFToken($_POST['csrf_token']);
|
|
|
|
// Enable extension access, only if it isn't already setup (user doesn't have cookie)
|
|
if (isset($_POST['extension']) && $_POST['extension'] == 'Yes') {
|
|
if (!isset($_COOKIE['user_extension_key'])) {
|
|
$extension_key = randomString(156);
|
|
mysqli_query($mysqli, "UPDATE users SET user_extension_key = '$extension_key' WHERE user_id = $session_user_id");
|
|
|
|
$extended_log_description .= "enabled browser extension access";
|
|
$logout = true;
|
|
}
|
|
}
|
|
|
|
// Disable extension access
|
|
if (!isset($_POST['extension'])) {
|
|
mysqli_query($mysqli, "UPDATE users SET user_extension_key = '' WHERE user_id = $session_user_id");
|
|
$extended_log_description .= "disabled browser extension access";
|
|
}
|
|
|
|
//Logging
|
|
mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'User Preferences', log_action = 'Modify', log_description = '$session_name $extended_log_description', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
|
|
|
|
$_SESSION['alert_message'] = "User preferences updated";
|
|
|
|
header("Location: " . $_SERVER["HTTP_REFERER"]);
|
|
}
|
|
|
|
|
|
if (isset($_POST['verify'])) {
|
|
|
|
require_once "rfc6238.php";
|
|
|
|
$currentcode = intval($_POST['code']); //code to validate, for example received from device
|
|
|
|
if (TokenAuth6238::verify($session_token, $currentcode)) {
|
|
$_SESSION['alert_message'] = "VALID!";
|
|
}else{
|
|
$_SESSION['alert_type'] = "error";
|
|
$_SESSION['alert_message'] = "IN-VALID!";
|
|
}
|
|
|
|
header("Location: " . $_SERVER["HTTP_REFERER"]);
|
|
|
|
}
|
|
|
|
if(isset($_POST['enable_2fa'])){
|
|
|
|
// CSRF Check
|
|
validateCSRFToken($_POST['csrf_token']);
|
|
|
|
$token = sanitizeInput($_POST['token']);
|
|
|
|
mysqli_query($mysqli,"UPDATE users SET user_token = '$token' WHERE user_id = $session_user_id");
|
|
|
|
//Logging
|
|
mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'User Settings', log_action = 'Modify', log_description = '$session_name enabled 2FA on their account', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
|
|
|
|
$_SESSION['alert_message'] = "Two-factor authentication enabled";
|
|
|
|
header("Location: " . $_SERVER["HTTP_REFERER"]);
|
|
|
|
}
|
|
|
|
if(isset($_POST['disable_2fa'])){
|
|
|
|
// CSRF Check
|
|
validateCSRFToken($_POST['csrf_token']);
|
|
|
|
mysqli_query($mysqli,"UPDATE users SET user_token = '' WHERE user_id = $session_user_id");
|
|
|
|
//Logging
|
|
mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'User Settings', log_action = 'Modify', log_description = '$session_name disabled 2FA on their account', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
|
|
|
|
// Email notification
|
|
if (!empty($config_smtp_host)) {
|
|
$subject = "$config_app_name account update confirmation for $session_name";
|
|
$body = "Hi $session_name, <br><br>Your $config_app_name account has been updated, details below: <br><br> <b>2FA was disabled.</b> <br><br> If you did not perform this change, contact your $config_app_name administrator immediately. <br><br>Thanks, <br>ITFlow<br>$session_company_name";
|
|
|
|
$data = [
|
|
[
|
|
'from' => $config_mail_from_email,
|
|
'from_name' => $config_mail_from_name,
|
|
'recipient' => $session_email,
|
|
'recipient_name' => $session_name,
|
|
'subject' => $subject,
|
|
'body' => $body
|
|
]
|
|
];
|
|
$mail = addToMailQueue($mysqli, $data);
|
|
}
|
|
|
|
$_SESSION['alert_type'] = "error";
|
|
$_SESSION['alert_message'] = "Two-factor authentication disabled";
|
|
|
|
header("Location: " . $_SERVER["HTTP_REFERER"]);
|
|
|
|
}
|
|
|
|
if (isset($_GET['logout'])) {
|
|
mysqli_query($mysqli,"INSERT INTO logs SET log_type = 'Logout', log_action = 'Success', log_description = '$session_name logged out', log_ip = '$session_ip', log_user_agent = '$session_user_agent', log_user_id = $session_user_id");
|
|
mysqli_query($mysqli, "UPDATE users SET user_php_session = '' WHERE user_id = $session_user_id");
|
|
|
|
setcookie("PHPSESSID", '', time() - 3600, "/");
|
|
unset($_COOKIE['PHPSESSID']);
|
|
|
|
setcookie("user_encryption_session_key", '', time() - 3600, "/");
|
|
unset($_COOKIE['user_encryption_session_key']);
|
|
|
|
setcookie("user_extension_key", '', time() - 3600, "/");
|
|
unset($_COOKIE['user_extension_key']);
|
|
|
|
session_unset();
|
|
session_destroy();
|
|
|
|
header('Location: login.php?key=' . $config_login_key_secret);
|
|
}
|