PasswordService_8php_source.html

 <?php

 namespace Elgg;

 use Elgg\Exceptions\RuntimeException;

 final class PasswordService {

     public function __construct() {
         if (!function_exists('password_hash')) {
             throw new RuntimeException('password_hash and associated functions are required.');
         }
     }

     public function needsRehash(string $hash): bool {
         return password_needs_rehash($hash, PASSWORD_DEFAULT);
     }

     public function verify(string $password, string $hash): bool {
         return password_verify($password, $hash);
     }

     public function generateHash(string $password) {
         return password_hash($password, PASSWORD_DEFAULT);
     }

     public function requestNewPassword(\ElggUser $user): void {
         // generate code
         $code = elgg_generate_password();
         $user->passwd_conf_code = $code;
         $user->passwd_conf_time = time();

         // generate link
         $link = elgg_generate_url('account:password:change', [
             'u' => $user->guid,
             'c' => $code,
         ]);
         $link = _elgg_services()->urlSigner->sign($link, '+1 day');

         // generate email
         $ip_address = _elgg_services()->request->getClientIp();
         $message = _elgg_services()->translator->translate('email:changereq:body', [
             $ip_address,
             $link,
         ], $user->getLanguage());

         $subject = _elgg_services()->translator->translate('email:changereq:subject', [], $user->getLanguage());

         $params = [
             'action' => 'requestnewpassword',
             'object' => $user,
             'ip_address' => $ip_address,
             'link' => $link,
             'apply_muting' => false,
             'add_mute_link' => false,
         ];

         notify_user($user->guid, elgg_get_site_entity()->guid, $subject, $message, $params, 'email');
     }

     public function saveNewPassword(\ElggUser $user, string $conf_code, string $password = null): bool {
         if ($password === null) {
             $password = elgg_generate_password();
             $reset = true;
         } else {
             $reset = false;
         }

         $saved_code = $user->passwd_conf_code;
         $code_time = (int) $user->passwd_conf_time;
         $codes_match = _elgg_services()->crypto->areEqual($saved_code, $conf_code);

         if (!$saved_code || !$codes_match) {
             return false;
         }

         // Discard for security if it is 24h old
         if (!$code_time || $code_time < time() - 24 * 60 * 60) {
             return false;
         }

         $user->setPassword($password);

         unset($user->passwd_conf_code);
         unset($user->passwd_conf_time);

         // reset the logins failures
         elgg_reset_authentication_failures($user);

         $action = $reset ? 'resetpassword' : 'changepassword';

         $message = _elgg_services()->translator->translate("email:{$action}:body", [$user->username, $password], $user->getLanguage());
         $subject = _elgg_services()->translator->translate("email:{$action}:subject", [], $user->getLanguage());

         $params = [
             'action' => $action,
             'object' => $user,
             'password' => $password,
             'apply_muting' => false,
         ];

         notify_user($user->guid, elgg_get_site_entity()->guid, $subject, $message, $params, 'email');

         return true;
     }
 }
$params
$params
Saves global plugin settings.
Definition: save.php:13

Elgg\Exceptions\RuntimeException
Exception thrown if an error which can only be found on runtime occurs.
Definition: RuntimeException.php:11

Elgg\PasswordService\needsRehash
needsRehash(string $hash)
Determine if the password hash needs to be rehashed.
Definition: PasswordService.php:35

elgg_generate_password
elgg_generate_password()
Generate a random 12 character clear text password.
Definition: users.php:134

$message
$message
Definition: set_maintenance_mode.php:7

void
c Accompany it with the information you received as to the offer to distribute corresponding source complete source code means all the source code for all modules it plus any associated interface definition plus the scripts used to control compilation and installation of the executable as a special the source code distributed need not include anything that is normally and so on of the operating system on which the executable unless that component itself accompanies the executable If distribution of executable or object code is made by offering access to copy from a designated then offering equivalent access to copy the source code from the same place counts as distribution of the source even though third parties are not compelled to copy the source along with the object code You may not or distribute the Program except as expressly provided under this License Any attempt otherwise to sublicense or distribute the Program is void
Definition: LICENSE.txt:215

Elgg\PasswordService\generateHash
generateHash(string $password)
Hash a password for storage using password_hash()
Definition: PasswordService.php:58

Elgg\PasswordService\__construct
__construct()
Constructor.
Definition: PasswordService.php:20

Elgg\PasswordService
Password service.
Definition: PasswordService.php:13

Elgg\PasswordService\requestNewPassword
requestNewPassword(\ElggUser $user)
Generate and send a password request email to a given user&#39;s registered email address.
Definition: PasswordService.php:69

$link
if(!$item instanceof ElggEntity) $link
Definition: container.php:16

elgg_reset_authentication_failures
elgg_reset_authentication_failures(\ElggUser $user)
Clears all authentication failures for a give user.
Definition: sessions.php:115

Elgg\PasswordService\saveNewPassword
saveNewPassword(\ElggUser $user, string $conf_code, string $password=null)
Validate and change password for a user.
Definition: PasswordService.php:114

$code
$code
Definition: changepassword.php:12

Elgg
Definition: ActionsService.php:3

$password
if(!$user||!$user->canEdit()) $password
Definition: resetpassword.php:21

ElggUser\getLanguage
getLanguage(string $fallback=null)
Get user language or default to site language.
Definition: ElggUser.php:66

$user
$user
Definition: ban.php:7

elgg_get_site_entity
elgg_get_site_entity()
Get the current site entity.
Definition: entities.php:101

$action
$action
Definition: subscribe.php:11

RuntimeException

Elgg\PasswordService\verify
verify(string $password, string $hash)
Verify a password against a hash using a timing attack resistant approach.
Definition: PasswordService.php:47

notify_user
notify_user(int|array $to, int $from=0, string $subject= '', string $message= '', array $params=[], $methods_override=null)
Notify a user via their preferences.
Definition: notification.php:201

ElggUser\setPassword
setPassword(string $password)
Set the necessary metadata to store a hash of the user&#39;s password.
Definition: ElggUser.php:383

elgg_generate_url
elgg_generate_url(string $name, array $parameters=[])
Generate a URL for named route.
Definition: pagehandler.php:133

_elgg_services
_elgg_services()
Get the global service provider.
Definition: elgglib.php:353

$subject
$subject
Definition: useradd.php:54

ElggUser
Definition: ElggUser.php:28