Add a getOptionAsBool() function abstractAuthDriver and use everywhere we use TRANSMIT_CLEAR_PASS. Handle all possible values (true, "true", 1, etc...).

Author: cdujeu

core/src/core/classes/class.AuthService.php

@@ -517,7 +517,7 @@ public static function bootSequence(&$START_PARAMETERS)
         if ($adminCount == 0) {
             $authDriver = ConfService::getAuthDriverImpl();
             $adminPass = ADMIN_PASSWORD;
-            if ($authDriver->getOption("TRANSMIT_CLEAR_PASS") !== true) {
+            if (!$authDriver->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
                 $adminPass = md5(ADMIN_PASSWORD);
             }
              self::createUser("admin", $adminPass, true);
@@ -730,7 +730,7 @@ public static function checkPassword($userId, $userPass, $cookieString = false,
             $res = $userObject->checkCookieString($userPass);
             return $res;
         }
-        if($authDriver->getOption("TRANSMIT_CLEAR_PASS") !== true){
+        if(!$authDriver->getOptionAsBool("TRANSMIT_CLEAR_PASS")){
             if($authDriver->getSeed(false) != $returnSeed) return false;
         }
         return $authDriver->checkPassword($userId, $userPass, $returnSeed);
@@ -754,7 +754,7 @@ public static function updatePassword($userId, $userPass)
         AJXP_Controller::applyHook("user.before_password_change", array($userId));
         $authDriver->changePassword($userId, $userPass);
         AJXP_Controller::applyHook("user.after_password_change", array($userId));
-        if ($authDriver->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($authDriver->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             // We can directly update the HA1 version of the WEBDAV Digest
             $realm = ConfService::getCoreConf("WEBDAV_DIGESTREALM");
             $ha1 = md5("{$userId}:{$realm}:{$userPass}");
@@ -800,7 +800,7 @@ public static function createUser($userId, $userPass, $isAdmin=false)
             $user->setAdmin(true);
             $user->save("superuser");
         }
-        if ($authDriver->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($authDriver->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             $realm = ConfService::getCoreConf("WEBDAV_DIGESTREALM");
             $ha1 = md5("{$userId}:{$realm}:{$userPass}");
             if (!isSet($user)) {

core/src/dav.php

@@ -103,7 +103,7 @@ function AJXP_Sabre_autoload($className)
 }
 
 if((AJXP_Sabre_AuthBackendBasic::detectBasicHeader() || ConfService::getCoreConf("WEBDAV_FORCE_BASIC"))
-    && ConfService::getAuthDriverImpl()->getOption("TRANSMIT_CLEAR_PASS")){
+    && ConfService::getAuthDriverImpl()->getOptionAsBool("TRANSMIT_CLEAR_PASS")){
     $authBackend = new AJXP_Sabre_AuthBackendBasic($rId);
 } else {
     $authBackend = new AJXP_Sabre_AuthBackendDigest($rId);

core/src/plugins/action.share/class.ShareCenter.php

@@ -1909,7 +1909,7 @@ public function createSharedRepository($httpVars, $repository, $accessDriver, $u
                 // check that it's a child user
                 $userObject = $confDriver->createUserObject($userName);
             } else {
-                if (ConfService::getAuthDriverImpl()->getOption("TRANSMIT_CLEAR_PASS")) {
+                if (ConfService::getAuthDriverImpl()->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
                     $pass = $uPasses[$userName];
                 } else {
                     $pass = md5($uPasses[$userName]);

core/src/plugins/auth.remote/class.remoteAuthDriver.php

@@ -250,7 +250,7 @@ public function createUser($login, $passwd)
         $users = $this->listUsers();
         if(!is_array($users)) $users = array();
         if(array_key_exists($login, $users)) return "exists";
-        if ($this->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             $users[$login] = AJXP_Utils::pbkdf2_create_hash($passwd);
         } else {
             $users[$login] = $passwd;
@@ -262,7 +262,7 @@ public function changePassword($login, $newPass)
         if(AuthService::ignoreUserCase()) $login = strtolower($login);
         $users = $this->listUsers();
         if(!is_array($users) || !array_key_exists($login, $users)) return ;
-        if ($this->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             $users[$login] = AJXP_Utils::pbkdf2_create_hash($newPass);
         } else {
             $users[$login] = $newPass;

core/src/plugins/auth.serial/class.serialAuthDriver.php

@@ -138,7 +138,7 @@ public function createUser($login, $passwd)
         $users = $this->_listAllUsers();
         if(!is_array($users)) $users = array();
         if(array_key_exists($login, $users)) return "exists";
-        if ($this->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             $users[$login] = AJXP_Utils::pbkdf2_create_hash($passwd);//md5($passwd);
         } else {
             $users[$login] = $passwd;
@@ -150,7 +150,7 @@ public function changePassword($login, $newPass)
         if(AuthService::ignoreUserCase()) $login = strtolower($login);
         $users = $this->_listAllUsers();
         if(!is_array($users) || !array_key_exists($login, $users)) return ;
-        if ($this->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             $users[$login] = AJXP_Utils::pbkdf2_create_hash($newPass);//md5($newPass);
         } else {
             $users[$login] = $newPass;

core/src/plugins/auth.sql/class.sqlAuthDriver.php

@@ -154,7 +154,7 @@ public function checkPassword($login, $pass, $seed)
         $userStoredPass = $this->getUserPass($login);
         if(!$userStoredPass) return false;
 
-        if ($this->getOption("TRANSMIT_CLEAR_PASS") === true) { // Seed = -1 means that password is not encoded.
+        if ($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) { // Seed = -1 means that password is not encoded.
             return AJXP_Utils::pbkdf2_validate_password($pass, $userStoredPass); //($userStoredPass == md5($pass));
         } else {
             return (md5($userStoredPass.$seed) == $pass);
@@ -174,7 +174,7 @@ public function createUser($login, $passwd)
     {
         if($this->userExists($login)) return "exists";
         $userData = array("login" => $login);
-        if ($this->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             $userData["password"] = AJXP_Utils::pbkdf2_create_hash($passwd); //md5($passwd);
         } else {
             $userData["password"] = $passwd;
@@ -186,7 +186,7 @@ public function changePassword($login, $newPass)
     {
         if(!$this->userExists($login)) throw new Exception("User does not exists!");
         $userData = array("login" => $login);
-        if ($this->getOption("TRANSMIT_CLEAR_PASS") === true) {
+        if ($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) {
             $userData["password"] = AJXP_Utils::pbkdf2_create_hash($newPass); //md5($newPass);
         } else {
             $userData["password"] = $newPass;

core/src/plugins/core.auth/class.AbstractAuthDriver.php

@@ -268,6 +268,18 @@ public function getOption($optionName)
         return (isSet($this->options[$optionName])?$this->options[$optionName]:"");
     }
 
+    /**
+     * @param $optionName
+     * @return bool
+     */
+    public function getOptionAsBool($optionName)
+    {
+        return (isSet($this->options[$optionName]) &&
+            ($this->options[$optionName] === true || $this->options[$optionName] === 1
+                || $this->options[$optionName] === "true" || $this->options[$optionName] === "1")
+        );
+    }
+
     public function isAjxpAdmin($login)
     {
         return ($this->getOption("AJXP_ADMIN_LOGIN") === $login);
@@ -282,7 +294,7 @@ public function autoCreateUser()
 
     public function getSeed($new=true)
     {
-        if($this->getOption("TRANSMIT_CLEAR_PASS") === true) return -1;
+        if($this->getOptionAsBool("TRANSMIT_CLEAR_PASS")) return -1;
         if ($new) {
             $seed = md5(time());
             $_SESSION["AJXP_CURRENT_SEED"] = $seed;