andre/scripts
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
88f55d9c57dde914a29ad08cd00bed6d121e1d7c
scripts/Perl OTRS/Kernel/Output/HTML/Preferences/Password.pm
Andre Geißler 1462d52e13 init III
2024-10-14 00:08:40 +02:00

240 lines
6.7 KiB
Perl
Raw Blame History

# --
# Copyright (C) 2001-2019 OTRS AG, https://otrs.com/
# --
# This software comes with ABSOLUTELY NO WARRANTY. For details, see
# the enclosed file COPYING for license information (GPL). If you
# did not receive this file, see https://www.gnu.org/licenses/gpl-3.0.txt.
# --
package Kernel::Output::HTML::Preferences::Password;
use strict;
use warnings;
use Kernel::Language qw(Translatable);
our $ObjectManagerDisabled = 1;
sub new {
my ( $Type, %Param ) = @_;
# allocate new hash for object
my $Self = {%Param};
bless( $Self, $Type );
for my $Needed (qw(UserID UserObject ConfigItem)) {
die "Got no $Needed!" if !$Self->{$Needed};
}
return $Self;
}
sub Param {
my ( $Self, %Param ) = @_;
# check if we need to show password change option
# define AuthModule for frontend
my $AuthModule = $Self->{ConfigItem}->{Area} eq 'Agent'
? 'AuthModule'
: 'Customer::AuthModule';
# get config object
my $ConfigObject = $Kernel::OM->Get('Kernel::Config');
# get auth module
my $Module = $ConfigObject->Get($AuthModule);
my $AuthBackend = $Param{UserData}->{UserAuthBackend};
if ($AuthBackend) {
$Module = $ConfigObject->Get( $AuthModule . $AuthBackend );
}
# return on no pw reset backends
return if $Module =~ /(LDAP|HTTPBasicAuth|Radius)/i;
my @Params;
push(
@Params,
{
%Param,
Key => Translatable('Current password'),
Name => 'CurPw',
Raw => 1,
Block => 'Password',
Autocomplete => 'current-password',
},
{
%Param,
Key => Translatable('New password'),
Name => 'NewPw',
Raw => 1,
Block => 'Password',
Autocomplete => 'new-password',
},
{
%Param,
Key => Translatable('Verify password'),
Name => 'NewPw1',
Raw => 1,
Block => 'Password',
Autocomplete => 'current-password',
},
);
# set the TwoFactorModue setting name depending on the interface
my $AuthTwoFactorModule = $Self->{ConfigItem}->{Area} eq 'Agent'
? 'AuthTwoFactorModule'
: 'Customer::AuthTwoFactorModule';
# show 2 factor password input if we have at least one backend enabled
COUNT:
for my $Count ( '', 1 .. 10 ) {
next COUNT if !$ConfigObject->Get( $AuthTwoFactorModule . $Count );
push @Params, {
%Param,
Key => '2 Factor Token',
Name => 'TwoFactorToken',
Raw => 1,
Block => 'Input',
};
last COUNT;
}
return @Params;
}
sub Run {
my ( $Self, %Param ) = @_;
my $ConfigObject = $Kernel::OM->Get('Kernel::Config');
my $LanguageObject = $Kernel::OM->Get('Kernel::Language');
# pref update db
return 1 if $ConfigObject->Get('DemoSystem');
# get password from form
my $CurPw;
if ( $Param{GetParam}->{CurPw} && $Param{GetParam}->{CurPw}->[0] ) {
$CurPw = $Param{GetParam}->{CurPw}->[0];
}
my $Pw;
if ( $Param{GetParam}->{NewPw} && $Param{GetParam}->{NewPw}->[0] ) {
$Pw = $Param{GetParam}->{NewPw}->[0];
}
my $Pw1;
if ( $Param{GetParam}->{NewPw1} && $Param{GetParam}->{NewPw1}->[0] ) {
$Pw1 = $Param{GetParam}->{NewPw1}->[0];
}
# get the two factor token from form
my $TwoFactorToken;
if ( $Param{GetParam}->{TwoFactorToken} && $Param{GetParam}->{TwoFactorToken}->[0] ) {
$TwoFactorToken = $Param{GetParam}->{TwoFactorToken}->[0];
}
# define AuthModule for frontend
my $AuthModule = $Self->{ConfigItem}->{Area} eq 'Agent'
? 'Auth'
: 'CustomerAuth';
my $AuthObject = $Kernel::OM->Get( 'Kernel::System::' . $AuthModule );
return 1 if !$AuthObject;
# validate current password
if (
!$AuthObject->Auth(
User => $Param{UserData}->{UserLogin},
Pw => $CurPw,
TwoFactorToken => $TwoFactorToken || '',
)
)
{
$Self->{Error} = $LanguageObject->Translate('The current password is not correct. Please try again!');
return;
}
# check if pw is true
if ( !$Pw || !$Pw1 ) {
$Self->{Error} = $LanguageObject->Translate('Please supply your new password!');
return;
}
# compare pws
if ( $Pw ne $Pw1 ) {
$Self->{Error}
= $LanguageObject->Translate('Can\'t update password, your new passwords do not match. Please try again!');
return;
}
# check pw
my $Config = $Self->{ConfigItem};
# check if password is not matching PasswordRegExp
if ( $Config->{PasswordRegExp} && $Pw !~ /$Config->{PasswordRegExp}/ ) {
$Self->{Error} = $LanguageObject->Translate(
'This password is forbidden by the current system configuration. Please contact the administrator if you have additional questions.'
);
return;
}
# check min size of password
if ( $Config->{PasswordMinSize} && length $Pw < $Config->{PasswordMinSize} ) {
$Self->{Error} = $LanguageObject->Translate(
'Can\'t update password, it must be at least %s characters long!',
$Config->{PasswordMinSize}
);
return;
}
# check min 2 lower and 2 upper char
if (
$Config->{PasswordMin2Lower2UpperCharacters}
&& ( $Pw !~ /[A-Z].*[A-Z]/ || $Pw !~ /[a-z].*[a-z]/ )
)
{
$Self->{Error} = $LanguageObject->Translate(
'Can\'t update password, it must contain at least 2 lowercase and 2 uppercase letter characters!'
);
return;
}
# check min 1 digit password
if ( $Config->{PasswordNeedDigit} && $Pw !~ /\d/ ) {
$Self->{Error} = $LanguageObject->Translate('Can\'t update password, it must contain at least 1 digit!');
return;
}
# check min 2 char password
if ( $Config->{PasswordMin2Characters} && $Pw !~ /[A-z][A-z]/ ) {
$Self->{Error}
= $LanguageObject->Translate('Can\'t update password, it must contain at least 2 letter characters!');
return;
}
# set new password
my $Success = $Self->{UserObject}->SetPassword(
UserLogin => $Param{UserData}->{UserLogin},
PW => $Pw,
);
return if !$Success;
$Self->{Message} = $LanguageObject->Translate('Preferences updated successfully!');
return 1;
}
sub Error {
my ( $Self, %Param ) = @_;
return $Self->{Error} || '';
}
sub Message {
my ( $Self, %Param ) = @_;
return $Self->{Message} || '';
}
1;
Reference in New Issue View Git Blame Copy Permalink