PasswordService_8php_source.html

 <?php


 namespace Elgg;


 use Elgg\Exceptions\RuntimeException;


 final class PasswordService {


     public function __construct() {

         if (!function_exists('password_hash')) {

             throw new RuntimeException('password_hash and associated functions are required.');

         }

     }


     public function needsRehash(string $hash): bool {

         return password_needs_rehash($hash, PASSWORD_DEFAULT);

     }


     public function verify(string $password, string $hash): bool {

         return password_verify($password, $hash);

     }


     public function generateHash(string $password) {

         return password_hash($password, PASSWORD_DEFAULT);

     }


     public function requestNewPassword(\ElggUser $user): void {

         // generate code

         $user->passwd_conf_code = elgg_generate_password();

         $user->passwd_conf_time = time();


         $user->notify('requestnewpassword', $user, [

             'ip_address' => _elgg_services()->request->getClientIp(),

         ]);

     }


     public function saveNewPassword(\ElggUser $user, string $conf_code, ?string $password = null): bool {

         if ($password === null) {

             $password = elgg_generate_password();

             $reset = true;

         } else {

             $reset = false;

         }


         $saved_code = $user->passwd_conf_code;

         $code_time = (int) $user->passwd_conf_time;

         $codes_match = _elgg_services()->crypto->areEqual($saved_code, $conf_code);


         if (!$saved_code || !$codes_match) {

             return false;

         }


         // Discard for security if it is 24h old

         if (!$code_time || $code_time < time() - 24 * 60 * 60) {

             return false;

         }


         $user->setPassword($password);


         unset($user->passwd_conf_code);

         unset($user->passwd_conf_time);


         // reset the logins failures

         elgg_reset_authentication_failures($user);


         $user->notify($reset ? 'resetpassword' : 'changepassword', $user, [

             'password' => $password,

         ]);


         return true;

     }

 }

return
return[ 'admin/delete_admin_notices'=>['access'=> 'admin'], 'admin/menu/save'=>['access'=> 'admin'], 'admin/plugins/activate'=>['access'=> 'admin'], 'admin/plugins/activate_all'=>['access'=> 'admin'], 'admin/plugins/deactivate'=>['access'=> 'admin'], 'admin/plugins/deactivate_all'=>['access'=> 'admin'], 'admin/plugins/set_priority'=>['access'=> 'admin'], 'admin/security/security_txt'=>['access'=> 'admin'], 'admin/security/settings'=>['access'=> 'admin'], 'admin/security/regenerate_site_secret'=>['access'=> 'admin'], 'admin/site/cache/invalidate'=>['access'=> 'admin'], 'admin/site/flush_cache'=>['access'=> 'admin'], 'admin/site/icons'=>['access'=> 'admin'], 'admin/site/set_maintenance_mode'=>['access'=> 'admin'], 'admin/site/set_robots'=>['access'=> 'admin'], 'admin/site/theme'=>['access'=> 'admin'], 'admin/site/unlock_upgrade'=>['access'=> 'admin'], 'admin/site/settings'=>['access'=> 'admin'], 'admin/upgrade'=>['access'=> 'admin'], 'admin/upgrade/reset'=>['access'=> 'admin'], 'admin/user/ban'=>['access'=> 'admin'], 'admin/user/bulk/ban'=>['access'=> 'admin'], 'admin/user/bulk/delete'=>['access'=> 'admin'], 'admin/user/bulk/unban'=>['access'=> 'admin'], 'admin/user/bulk/validate'=>['access'=> 'admin'], 'admin/user/change_email'=>['access'=> 'admin'], 'admin/user/delete'=>['access'=> 'admin'], 'admin/user/login_as'=>['access'=> 'admin'], 'admin/user/logout_as'=>[], 'admin/user/makeadmin'=>['access'=> 'admin'], 'admin/user/resetpassword'=>['access'=> 'admin'], 'admin/user/removeadmin'=>['access'=> 'admin'], 'admin/user/unban'=>['access'=> 'admin'], 'admin/user/validate'=>['access'=> 'admin'], 'annotation/delete'=>[], 'avatar/upload'=>[], 'comment/save'=>[], 'diagnostics/download'=>['access'=> 'admin'], 'entity/chooserestoredestination'=>[], 'entity/delete'=>[], 'entity/mute'=>[], 'entity/restore'=>[], 'entity/subscribe'=>[], 'entity/trash'=>[], 'entity/unmute'=>[], 'entity/unsubscribe'=>[], 'login'=>['access'=> 'logged_out'], 'logout'=>[], 'notifications/mute'=>['access'=> 'public'], 'plugins/settings/remove'=>['access'=> 'admin'], 'plugins/settings/save'=>['access'=> 'admin'], 'plugins/usersettings/save'=>[], 'register'=>['access'=> 'logged_out', 'middleware'=>[\Elgg\Router\Middleware\RegistrationAllowedGatekeeper::class,],], 'river/delete'=>[], 'settings/notifications'=>[], 'settings/notifications/subscriptions'=>[], 'user/changepassword'=>['access'=> 'public'], 'user/requestnewpassword'=>['access'=> 'public'], 'useradd'=>['access'=> 'admin'], 'usersettings/save'=>[], 'widgets/add'=>[], 'widgets/delete'=>[], 'widgets/move'=>[], 'widgets/save'=>[],]
Definition: actions.php:73

$user
$user
Definition: ban.php:7

ElggUser
Definition: ElggUser.php:28

Elgg\Exceptions\RuntimeException
Exception thrown if an error which can only be found on runtime occurs.
Definition: RuntimeException.php:11

Elgg\PasswordService
Password service.
Definition: PasswordService.php:13

Elgg\PasswordService\__construct
__construct()
Constructor.
Definition: PasswordService.php:20

Elgg\PasswordService\needsRehash
needsRehash(string $hash)
Determine if the password hash needs to be rehashed.
Definition: PasswordService.php:35

Elgg\PasswordService\verify
verify(string $password, string $hash)
Verify a password against a hash using a timing attack resistant approach.
Definition: PasswordService.php:47

Elgg\PasswordService\generateHash
generateHash(string $password)
Hash a password for storage using password_hash()
Definition: PasswordService.php:58

Elgg\PasswordService\saveNewPassword
saveNewPassword(\ElggUser $user, string $conf_code, ?string $password=null)
Validate and change password for a user.
Definition: PasswordService.php:90

Elgg\PasswordService\requestNewPassword
requestNewPassword(\ElggUser $user)
Generate and send a password request email to a given user's registered email address.
Definition: PasswordService.php:69

_elgg_services
_elgg_services()
Get the global service provider.
Definition: elgglib.php:337

elgg_generate_password
elgg_generate_password()
Generate a random 12 character clear text password.
Definition: users.php:134

Elgg
Definition: ActionsService.php:3

$password
if(! $user||! $user->canEdit()) $password
Definition: resetpassword.php:21

if
if(parse_url(elgg_get_site_url(), PHP_URL_PATH) !=='/') if(file_exists(elgg_get_root_path() . 'robots.txt'))
Set robots.txt.
Definition: robots.php:10

elgg_reset_authentication_failures
elgg_reset_authentication_failures(\ElggUser $user)
Clears all authentication failures for a give user.
Definition: sessions.php:115