941 lines
31 KiB
PHP
941 lines
31 KiB
PHP
<?php
|
|
include "./configuration.php";
|
|
include "./objects/class.database.php";
|
|
include "./objects/class.user.php";
|
|
include "./objects/class.record.php";
|
|
include "./objects/class.recordversion.php";
|
|
include "./objects/class.onetimepassword.php";
|
|
include "./objects/class.onetimepasswordstatus.php";
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
if ( !function_exists('json_decode') ) {
|
|
function json_decode($content, $assoc=false) {
|
|
require_once 'json/JSON.php';
|
|
if ( $assoc ) {
|
|
$json = new Services_JSON(SERVICES_JSON_LOOSE_TYPE);
|
|
} else {
|
|
$json = new Services_JSON;
|
|
}
|
|
|
|
return $json->decode($content);
|
|
}
|
|
}
|
|
|
|
if ( !function_exists('json_encode') ) {
|
|
function json_encode($content) {
|
|
require_once 'json/JSON.php';
|
|
$json = new Services_JSON;
|
|
|
|
return $json->encode($content);
|
|
}
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
// 'dec2base', 'base2dec' and 'digits' are functions found on the following
|
|
// PHP manual page: http://ch2.php.net/manual/en/ref.bc.php
|
|
//
|
|
|
|
function dec2base($dec, $base, $digits=FALSE) {
|
|
if ($base<2 or $base>256) {
|
|
die("Invalid Base: ".$base);
|
|
}
|
|
|
|
bcscale(0);
|
|
$value="";
|
|
if (!$digits) {
|
|
$digits = digits($base);
|
|
}
|
|
|
|
while ($dec > $base-1) {
|
|
$rest = bcmod($dec, $base);
|
|
$dec = bcdiv($dec, $base);
|
|
$value = $digits[$rest].$value;
|
|
}
|
|
|
|
$value=$digits[intval($dec)].$value;
|
|
|
|
return (string)$value;
|
|
}
|
|
|
|
//.............................................................................
|
|
|
|
// convert another base value to its decimal value
|
|
function base2dec($value, $base, $digits=FALSE) {
|
|
if ($base<2 or $base>256) {
|
|
die("Invalid Base: ".$base);
|
|
}
|
|
|
|
bcscale(0);
|
|
if ($base<37) {
|
|
$value=strtolower($value);
|
|
}
|
|
|
|
if (!$digits) {
|
|
$digits=digits($base);
|
|
}
|
|
|
|
$size = strlen($value);
|
|
$dec="0";
|
|
for ($loop=0; $loop<$size; $loop++) {
|
|
$element = strpos($digits, $value[$loop]);
|
|
$power = bcpow($base, $size-$loop-1);
|
|
$dec = bcadd($dec, bcmul($element,$power));
|
|
}
|
|
|
|
return (string)$dec;
|
|
}
|
|
|
|
//.............................................................................
|
|
|
|
function digits($base) {
|
|
if ($base>64) {
|
|
$digits="";
|
|
for ($loop=0; $loop<256; $loop++) {
|
|
$digits.=chr($loop);
|
|
}
|
|
} else {
|
|
$digits ="0123456789abcdefghijklmnopqrstuvwxyz";
|
|
$digits.="ABCDEFGHIJKLMNOPQRSTUVWXYZ-_";
|
|
}
|
|
|
|
$digits=substr($digits,0,$base);
|
|
|
|
return (string)$digits;
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
function clipperz_hash($value) {
|
|
//return hash("sha256", hash("sha256", $value, true));
|
|
return hash("sha256", $value, false);
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
function clipperz_randomSeed() {
|
|
$result;
|
|
|
|
srand((double) microtime()*1000000);
|
|
$result = "";
|
|
|
|
while(strlen($result) < 64) {
|
|
$result = $result.dec2base(rand(), 16);
|
|
}
|
|
|
|
$result = substr($result, 0, 64);
|
|
|
|
return $result;
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
function updateUserCredentials($parameters, &$user) {
|
|
$user->username = $parameters["C"];
|
|
$user->srp_s = $parameters["s"];
|
|
$user->srp_v = $parameters["v"];
|
|
$user->auth_version = $parameters["version"];
|
|
}
|
|
|
|
function updateUserData($parameters, &$user) {
|
|
$user->header = $parameters["header"];
|
|
$user->statistics = $parameters["statistics"];
|
|
$user->version = $parameters["version"];
|
|
if (array_key_exists("lock", $parameters)) {
|
|
$user->lock = $parameters["lock"];
|
|
}
|
|
}
|
|
|
|
function updateRecordData($parameters, &$record, &$recordVersion) {
|
|
$recordData = $parameters["record"];
|
|
$record->reference = $recordData["reference"];
|
|
$record->data = $recordData["data"];
|
|
$record->version = $recordData["version"];
|
|
|
|
$recordVersionData = $parameters["currentRecordVersion"];
|
|
$recordVersion->reference = $recordVersionData ["reference"];
|
|
$recordVersion->data = $recordVersionData ["data"];
|
|
$recordVersion->version = $recordVersionData ["version"];
|
|
if (array_key_exists("previousVersion", $recordVersionData)) {
|
|
$recordVersion->previous_version_id = $recordVersionData ["previousVersion"];
|
|
}
|
|
$recordVersion->previous_version_key = $recordVersionData ["previousVersionKey"];
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
function updateOTPStatus(&$otp, $status) {
|
|
$otpStatus = new onetimepasswordstatus();
|
|
$selectedStatuses = $otpStatus->GetList(array(array("code", "=", $status)));
|
|
$otpStatus = $selectedStatuses[0];
|
|
$otp->SetOnetimepasswordstatus($otpStatus);
|
|
}
|
|
|
|
function updateOTP($parameters, &$otp, $status) {
|
|
$otp->reference = $parameters["reference"];
|
|
$otp->key = $parameters["key"];
|
|
$otp->key_checksum = $parameters["keyChecksum"];
|
|
$otp->data = $parameters["data"];
|
|
$otp->version = $parameters["version"];
|
|
|
|
updateOTPStatus($otp, $status);
|
|
}
|
|
|
|
function resetOTP(&$otp, $status) {
|
|
$otp->data = "";
|
|
updateOTPStatus($otp, $status);
|
|
$otp->Save();
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
function fixOTPStatusTable() {
|
|
$otpStatus = new onetimepasswordstatus();
|
|
$otpStatusList = $otpStatus->GetList();
|
|
if (count($otpStatusList) != 4) {
|
|
$otpStatus->DeleteList();
|
|
|
|
$otpStatus->code = "ACTIVE"; $otpStatus->name = "Active"; $otpStatus->description = "Active"; $otpStatus->SaveNew();
|
|
$otpStatus->code = "REQUESTED"; $otpStatus->name = "Requested"; $otpStatus->description = "Requested"; $otpStatus->SaveNew();
|
|
$otpStatus->code = "USED"; $otpStatus->name = "Used"; $otpStatus->description = "Used"; $otpStatus->SaveNew();
|
|
$otpStatus->code = "DISABLED"; $otpStatus->name = "Disabled"; $otpStatus->description = "Disabled"; $otpStatus->SaveNew();
|
|
}
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
function arrayContainsValue($array, $value) {
|
|
$object = NULL;
|
|
for ($i=0; $i<count($array); $i++) {
|
|
if ($array[$i] == $value) {
|
|
$object = $value;
|
|
}
|
|
}
|
|
|
|
return !is_null($object);
|
|
}
|
|
|
|
//-----------------------------------------------------------------------------
|
|
|
|
$result = Array();
|
|
|
|
session_start();
|
|
|
|
$method = $_POST['method'];
|
|
|
|
if (get_magic_quotes_gpc()) {
|
|
$parameters = json_decode(stripslashes($_POST['parameters']), true);
|
|
} else {
|
|
$parameters = json_decode($_POST['parameters'], true);
|
|
}
|
|
|
|
$parameters = $parameters["parameters"];
|
|
|
|
switch($method) {
|
|
case "registration":
|
|
error_log("registration");
|
|
$message = $parameters["message"];
|
|
|
|
if ($message == "completeRegistration") {
|
|
$user = new user();
|
|
|
|
updateUserCredentials($parameters["credentials"], $user);
|
|
updateUserData($parameters["user"], $user);
|
|
$user->Save();
|
|
|
|
$result["lock"] = $user->lock;
|
|
$result["result"] = "done";
|
|
}
|
|
break;
|
|
|
|
case "handshake":
|
|
error_log("handshake");
|
|
$srp_g = "2";
|
|
$srp_n = base2dec("115b8b692e0e045692cf280b436735c77a5a9e8a9e7ed56c965f87db5b2a2ece3", 16);
|
|
// Define k: k = H(N, g) in SRP-6a
|
|
$srp_k = base2dec(clipperz_hash($srp_n . $srp_g), 16);
|
|
|
|
$message = $parameters["message"];
|
|
|
|
//=============================================================
|
|
if ($message == "connect") {
|
|
$user= new user();
|
|
$_SESSION["C"] = $parameters["parameters"]["C"];
|
|
$_SESSION["A"] = $parameters["parameters"]["A"];
|
|
|
|
$userList = $user->GetList(array(array("username", "=", $_SESSION["C"])));
|
|
|
|
if (count($userList) == 1) {
|
|
$currentUser = $userList[ 0 ];
|
|
|
|
if (array_key_exists("otpId", $_SESSION)) {
|
|
$otp = new onetimepassword();
|
|
$otp = $otp->Get($_SESSION["otpId"]);
|
|
|
|
if ($otp->GetUser()->userId != $currentUser->userId) {
|
|
throw new Exception("User missmatch between the current session and 'One Time Password' user");
|
|
} else if ($otp->GetOnetimepasswordstatus()->code != "REQUESTED") {
|
|
throw new Exception("Tring to use an 'One Time Password' in the wrong state");
|
|
}
|
|
|
|
resetOTP($otp, "USED");
|
|
$result["oneTimePassword"] = $otp->reference;
|
|
}
|
|
|
|
$_SESSION["s"] = $currentUser->srp_s;
|
|
$_SESSION["v"] = $currentUser->srp_v;
|
|
$_SESSION["userId"] = $currentUser->userId;
|
|
} else {
|
|
$_SESSION["s"] = "112233445566778899aabbccddeeff00112233445566778899aabbccddeeff00";
|
|
$_SESSION["v"] = "112233445566778899aabbccddeeff00112233445566778899aabbccddeeff00";
|
|
}
|
|
|
|
// This should now work with a random seed. Need to check.
|
|
// $_SESSION["b"] = clipperz_randomSeed();
|
|
// $_SESSION["b"] = "5761e6c84d22ea3c5649de01702d60f674ccfe79238540eb34c61cd020230c53";
|
|
$_SESSION["b"] = "23309839184091712110293815740584558132927982490099443826709662564655631314481";
|
|
|
|
$_SESSION["B"] = dec2base(bcmod( bcadd( bcmod( bcmul( $srp_k, base2dec($_SESSION["v"], 16)), $srp_n), bcpowmod( $srp_g, $_SESSION["b"], $srp_n) ), $srp_n), 16);
|
|
|
|
$result["s"] = $_SESSION["s"];
|
|
$result["B"] = $_SESSION["B"];
|
|
|
|
//=============================================================
|
|
} else if ($message == "credentialCheck") {
|
|
error_log("credentialCheck");
|
|
$A = base2dec($_SESSION["A"], 16);
|
|
// u = H(A, B)
|
|
$u = base2dec(clipperz_hash($A . base2dec($_SESSION["B"],16)), 16);
|
|
// S = (Av^u) ^ b
|
|
$S = bcpowmod( bcmul( $A, bcpowmod( base2dec($_SESSION["v"], 16), $u, $srp_n) ), $_SESSION["b"], $srp_n );
|
|
$K = clipperz_hash($S);
|
|
$M1 = clipperz_hash("597626870978286801440197562148588907434001483655788865609375806439877501869636875571920406529" . clipperz_hash($_SESSION['C']) . base2dec($_SESSION["s"],16) . base2dec($_SESSION['A'],16) . base2dec($_SESSION['B'],16) . base2dec($K,16));
|
|
|
|
//$result["B"] = $_SESSION["B"];
|
|
//$result["u"] = $u;
|
|
//$result["A"] = $A;
|
|
//$result["S"] = $S;
|
|
//$result["K"] = $K;
|
|
//$result["M1"] = $M1;
|
|
//$result["_M1"] = $parameters["parameters"]["M1"];
|
|
|
|
// error_log("credentialCheck calculated: ". $M1);
|
|
// error_log("credentialCheck S: ". $S);
|
|
// error_log("credentialCheck A: ". $A);
|
|
// error_log("credentialCheck B: ". $_SESSION["B"]);
|
|
// error_log("credentialCheck base2dec: ". base2dec($_SESSION["B"],16));
|
|
// error_log("credentialCheck K: ". base2dec($K,16));
|
|
// error_log("credentialCheck n: ". $srp_n);
|
|
// error_log("credentialCheck u: ". $u);
|
|
// error_log("credentialCheck v: ". base2dec($_SESSION['v'],16));
|
|
// error_log("credentialCheck expected: ". $parameters["parameters"]["M1"]);
|
|
|
|
|
|
//User -> Host: M = H(H(N) xor H(g), H(I), s, A, B, K)
|
|
|
|
if ($M1 == $parameters["parameters"]["M1"]) {
|
|
$_SESSION["K"] = $K;
|
|
$M2 = clipperz_hash($A.$M1.$K);
|
|
|
|
$result["M2"] = $M2;
|
|
$result["connectionId"] = "";
|
|
$result["loginInfo"] = array();
|
|
$result["loginInfo"]["latest"] = array();
|
|
$result["loginInfo"]["current"] = array();
|
|
$result["offlineCopyNeeded"] = "false";
|
|
$result["lock"] = "----";
|
|
} else {
|
|
$result["error"] = "?";
|
|
}
|
|
//=============================================================
|
|
} else if ($message == "oneTimePassword") {
|
|
error_log("oneTimePassword");
|
|
//{
|
|
// "message":"oneTimePassword",
|
|
// "version":"0.2",
|
|
// "parameters":{
|
|
// "oneTimePasswordKey":"06dfa7f428081f8b2af98b0895e14e18af90b0ef2ff32828e55cc2ac6b24d29b",
|
|
// "oneTimePasswordKeyChecksum":"60bcba3f72e56f6bb3f0ff88509b9a0e5ec730dfa71daa4c1e892dbd1b0c360d"
|
|
// }
|
|
//}
|
|
$otp = new onetimepassword();
|
|
$otpList = $otp->GetList(array(array("key", "=", $parameters["parameters"]["oneTimePasswordKey"])));
|
|
|
|
if (count($otpList) == 1) {
|
|
$currentOtp = $otpList[0];
|
|
|
|
if ($currentOtp->GetOnetimepasswordstatus()->code == "ACTIVE") {
|
|
if ($currentOtp->key_checksum == $parameters["parameters"]["oneTimePasswordKeyChecksum"]) {
|
|
$_SESSION["userId"] = $currentOtp->GetUser()->userId;
|
|
$_SESSION["otpId"] = $currentOtp->onetimepasswordId;
|
|
|
|
$result["data"] = $currentOtp->data;
|
|
$result["version"] = $currentOtp->version;
|
|
|
|
resetOTP($currentOtp, "REQUESTED");
|
|
} else {
|
|
resetOTP($currentOtp, "DISABLED");
|
|
throw new Exception("The requested One Time Password has been disabled, due to a wrong keyChecksum");
|
|
}
|
|
} else {
|
|
throw new Exception("The requested One Time Password was not active");
|
|
}
|
|
} else {
|
|
throw new Exception("The requested One Time Password has not been found");
|
|
}
|
|
|
|
//=============================================================
|
|
}
|
|
|
|
break;
|
|
|
|
case "message":
|
|
error_log("message");
|
|
//error_log("message: ".json_encode($parameters));
|
|
if ($parameters["srpSharedSecret"] == $_SESSION["K"]) {
|
|
$message = $parameters["message"];
|
|
|
|
//=============================================================
|
|
if ($message == "getUserDetails") {
|
|
//{"message":"getUserDetails", "srpSharedSecret":"f18e5cf7c3a83b67d4db9444af813ee48c13daf4f8f6635397d593e52ba89a08", "parameters":{}}
|
|
$user = new user();
|
|
$user = $user->Get($_SESSION["userId"]);
|
|
|
|
$result["header"] = $user->header;
|
|
|
|
$records = $user->GetRecordList();
|
|
foreach ($records as $record) {
|
|
$recordStats["updateDate"] = $record->update_date;
|
|
$recordsStats[$record->reference] = $recordStats;
|
|
}
|
|
$result["recordsStats"] = $recordsStats;
|
|
|
|
$result["statistics"] = $user->statistics;
|
|
$result["version"] = $user->version;
|
|
|
|
//=============================================================
|
|
} else if ($message == "addNewRecords") {
|
|
/*
|
|
//{
|
|
// "message":"addNewRecords",
|
|
// "srpSharedSecret":"b58fdf62acebbcb67f63d28c0437f166069f45690c648cd4376a792ae7a325f7",
|
|
// "parameters":{
|
|
// "records":[
|
|
// {
|
|
// "record":{
|
|
// "reference":"fda703707fee1fff42443124cd0e705f5bea0ac601758d81b2e832705339a610",
|
|
// "data":"OBSGtcb6blXq/xaYG.....4EqlQqgAvITN",
|
|
// "version":"0.3"
|
|
// },
|
|
// "currentRecordVersion":{
|
|
// "reference":"83ad301525c18f2afd72b6ac82c0a713382e1ef70ac69935ca7e2869dd4ff980",
|
|
// "recordReference":"fda703707fee1fff42443124cd0e705f5bea0ac601758d81b2e832705339a610",
|
|
// "data":"NXJ5jiZhkd0CMiwwntAq....1TjjF+SGfE=",
|
|
// "version":"0.3",
|
|
// "previousVersion":"3e174a86afc322271d8af28bc062b0f1bfd7344fad01212cd08b2757c4b199c4",
|
|
// "previousVersionKey":"kozaaGCzXWr71LbOKu6Z3nz520V..5U85tSBvb+u44twttv54Kw=="
|
|
// }
|
|
// }
|
|
// ],
|
|
// "user":{
|
|
// "header":"{\"reco...ersion\":\"0.1\"}",
|
|
// "statistics":"rKI6nR6iqggygQJ3SQ58bFUX",
|
|
// "version":"0.3",
|
|
// "lock":"----"
|
|
// }
|
|
// }
|
|
//}
|
|
*/
|
|
$user = new user();
|
|
$record = new record();
|
|
$recordVersion = new recordversion();
|
|
|
|
$user = $user->Get($_SESSION["userId"]);
|
|
updateUserData($parameters["parameters"]["user"], $user);
|
|
|
|
$recordParameterList = $parameters["parameters"]["records"];
|
|
$c = count($recordParameterList);
|
|
for ($i=0; $i<$c; $i++) {
|
|
updateRecordData($recordParameterList[$i], $record, $recordVersion);
|
|
|
|
$record->SaveNew();
|
|
$recordVersion->SaveNew();
|
|
|
|
$record->AddRecordversion($recordVersion);
|
|
$user->AddRecord($record);
|
|
|
|
$record->Save();
|
|
$recordVersion->Save();
|
|
}
|
|
|
|
$user->Save();
|
|
|
|
$result["lock"] = $user->lock;
|
|
$result["result"] = "done";
|
|
|
|
//=============================================================
|
|
} else if ($message == "saveChanges") {
|
|
|
|
//{
|
|
// "message":"saveChanges",
|
|
// "srpSharedSecret":"edc78508907c942173818f7247fa64869ba80672a7aa8d27b8fa6bfe524fb9c8",
|
|
// "parameters":{
|
|
// "records":{
|
|
// "updated":[
|
|
// {
|
|
// "currentRecordVersion":{
|
|
// "previousVersionKey":"####",
|
|
// "reference":"08c8eb7ec528fbf987bbfb84fe2e960cf9ae937b19fbb5f05d8d90a7039fac6a",
|
|
// "data":"WYQ16AjodjsmyZDXa4MKxOju0F…beD/zXlbVb0Zj0ZI/N55bZ",
|
|
// "version":"0.3"
|
|
// },
|
|
// "record":{
|
|
// "reference":"83de5304f60a808e48a815c6203d7d3f24874d3f40faba420bbc60b376fcc356",
|
|
// "data":"B6uBuBE Aly0knvgrUppodDTGZQC…guizL9QvHCWyM bQQBGBVvHZ6LfA==",
|
|
// "version":"0.3"
|
|
// }
|
|
// }
|
|
// ],
|
|
// "deleted":[
|
|
//
|
|
// ]
|
|
// },
|
|
// "user":{
|
|
// "header":"{\"rec…sion\":\"0.1\"}",
|
|
// "statistics":"e6iXVEM4i8ZatPZFCCads/9F",
|
|
// "version":"0.3"
|
|
// }
|
|
// }
|
|
//}
|
|
$user = new user();
|
|
$user = $user->Get($_SESSION["userId"]);
|
|
updateUserData($parameters["parameters"]["user"], $user);
|
|
|
|
$recordToUpdateParameterList = $parameters["parameters"]["records"]["updated"];
|
|
$c = count($recordToUpdateParameterList);
|
|
for ($i=0; $i<$c; $i++) {
|
|
$recordList = $user->GetRecordList(array(array("reference", "=", $recordToUpdateParameterList [$i]["record"]["reference"])));
|
|
if (count($recordList) == 0) {
|
|
$currentRecord = new record();
|
|
$currentVersion = new recordversion();
|
|
$isNewRecord = true;
|
|
} else {
|
|
$currentRecord = $recordList[0];
|
|
$currentRecordVersions = $currentRecord->GetRecordversionList();
|
|
$currentVersion = $currentRecordVersions[0];
|
|
$isNewRecord = false;
|
|
}
|
|
|
|
updateRecordData($recordToUpdateParameterList[$i], $currentRecord, $currentVersion);
|
|
|
|
if ($isNewRecord == true) {
|
|
$currentRecord->SaveNew();
|
|
$currentVersion->SaveNew();
|
|
|
|
$currentRecord->AddRecordversion($currentVersion);
|
|
$user->AddRecord($currentRecord);
|
|
}
|
|
|
|
$currentRecord->Save();
|
|
$currentVersion->Save();
|
|
}
|
|
|
|
$user->Save();
|
|
|
|
$recordToDeleteReferenceList = $parameters["parameters"]["records"]["deleted"];
|
|
$recordList = array();
|
|
$c = count($recordToDeleteReferenceList);
|
|
for ($i=0; $i<$c; $i++) {
|
|
array_push($recordList, array("reference", "=", $recordToDeleteReferenceList[$i]));
|
|
}
|
|
|
|
$record = new record();
|
|
$record->DeleteList($recordList, true);
|
|
|
|
$result["lock"] = $user->lock;
|
|
$result["result"] = "done";
|
|
|
|
//=============================================================
|
|
} else if ($message == "getRecordDetail") {
|
|
//{
|
|
// "message":"getRecordDetail",
|
|
// "srpSharedSecret":"4c00dcb66a9f2aea41a87e4707c526874e2eb29cc72d2c7086837e53d6bf2dfe",
|
|
// "parameters":{
|
|
// "reference":"740009737139a189cfa2b1019a6271aaa39467b59e259706564b642ff3838d50"
|
|
// }
|
|
//}
|
|
//
|
|
// result = {
|
|
// currentVersion:{
|
|
// reference:"88943d709c3ea2442d4f58eaaec6409276037e5a37e0a6d167b9dad9e947e854",
|
|
// accessDate:"Wed, 13 February 2008 14:25:12 UTC",
|
|
// creationDate:"Tue, 17 April 2007 17:17:52 UTC",
|
|
// version:"0.2",
|
|
// data:"xI3WXddQLFtL......EGyKnnAVik",
|
|
// updateDate:"Tue, 17 April 2007 17:17:52 UTC",
|
|
// header:"####"
|
|
// }
|
|
// reference:"13a5e52976337ab210903cd04872588e1b21fb72bc183e91aa25c494b8138551",
|
|
// oldestUsedEncryptedVersion:"0.2",
|
|
// accessDate:"Wed, 13 February 2008 14:25:12 UTC",
|
|
// creationDate:"Wed, 14 March 2007 13:53:11 UTC",
|
|
// version:"0.2",
|
|
// updatedDate:"Tue, 17 April 2007 17:17:52 UTC",
|
|
// data:"0/BjzyY6jeh71h...pAw2++NEyylGhMC5C5f5m8pBApYziN84s4O3JQ3khW/1UttQl4="
|
|
// }
|
|
|
|
|
|
// # Actual result (causing error in /gamma)
|
|
// {
|
|
// "result" : {
|
|
// "currentVersion" : {
|
|
// "reference" : "cb05177f96a832062c6b936d24323cb74a64e2ef1d97ee026cd1003755af7495",
|
|
// "data" : "RAnoHmikp7RmiZ2WVyEMW+Ia",
|
|
// "header" : "",
|
|
// "version" : "0.3",
|
|
// "creationDate" : "0000-00-00 00:00:00",
|
|
// "updateDate" : "2011-10-09 19:49:11",
|
|
// "accessDate" : "2011-10-09 19:49:11"
|
|
// },
|
|
// "reference" : "b07e2afa2ba782b9f379649b36ded6de0452b43c27e6b887c7ce4f2a93f44346",
|
|
// "data" : "NtK1nkLUabbJQx5uO8ept...ZJ5dkJYYkyh3VQ==",
|
|
// "version" : "0.3",
|
|
// "creationDate" : "2011-10-09 19:49:11",
|
|
// "updateDate" : "Tue, 30 Nov 1999 00:00:00 +0000",
|
|
// "accessDate" : "0000-00-00 00:00:00",
|
|
// "oldestUsedEncryptedVersion" : "---"
|
|
// }
|
|
// }
|
|
|
|
|
|
// # Response from the online /gamma version
|
|
// {
|
|
// "result" : {
|
|
// "versions" : {
|
|
// "e2c193f017ad4f6babf51de59f7550a40596afc0c27373b6a360e426b5bc06de" : {
|
|
// "reference" : "e2c193f017ad4f6babf51de59f7550a40596afc0c27373b6a360e426b5bc06de",
|
|
// "data" : "s\/3ClggH4uCcf+BkIMqQ...+W0PVt\/MJ3t7s1g0g",
|
|
// "creationDate" : "Mon, 10 October 2011 14:42:42 UTC",
|
|
// "header" : "####",
|
|
// "updateDate" : "Mon, 10 October 2011 14:42:42 UTC",
|
|
// "previousVersion" : "a96a6d8b9ac73fcdf874d8a8534ffb2d43da8f5222e96a4a29bd2ae437619463",
|
|
// "version" : "0.3",
|
|
// "accessDate" : "Mon, 10 October 2011 14:42:42 UTC",
|
|
// "previousVersionKey" : "####"
|
|
// },
|
|
// [...]
|
|
// "a96a6d8b9ac73fcdf874d8a8534ffb2d43da8f5222e96a4a29bd2ae437619463" : {
|
|
// "reference" : "a96a6d8b9ac73fcdf874d8a8534ffb2d43da8f5222e96a4a29bd2ae437619463",
|
|
// "accessDate" : "Mon, 10 October 2011 14:41:17 UTC",
|
|
// "creationDate" : "Mon, 27 October 2008 08:16:14 UTC",
|
|
// "version" : "0.3",
|
|
// "data" : "m3yhZu81UAjCY6U2Kn...IUCb9suV0fldGOg=",
|
|
// "updateDate" : "Mon, 27 October 2008 08:16:14 UTC",
|
|
// "header" : "####"
|
|
// }
|
|
// },
|
|
// "oldestUsedEncryptedVersion" : "0.2",
|
|
// "reference" : "36ec1a41118813ced3553534fa2607d781cba687768db305beed368a8e06e113",
|
|
// "data" : "frlUkTbaOWD9j2ROat...ruWioCK0Mss27oHjPg==",
|
|
// "creationDate" : "Wed, 14 March 2007 17:39:35 UTC",
|
|
// "version" : "0.3",
|
|
// "accessDate" : "Mon, 10 October 2011 14:45:12 UTC",
|
|
// "currentVersion" : "e2c193f017ad4f6babf51de59f7550a40596afc0c27373b6a360e426b5bc06de",
|
|
// "updatedDate" : "Mon, 10 October 2011 14:45:12 UTC"
|
|
// },
|
|
// "toll" : {
|
|
// "requestType" : "MESSAGE",
|
|
// "targetValue" : "a516c942a3792cc620775a41f8870a6c7b51796d9a94da978a75da6a52eb1e10",
|
|
// "cost" : 2
|
|
// }
|
|
// }
|
|
|
|
$record = new record();
|
|
|
|
$recordList = $record->GetList(array(array("reference", "=", $parameters["parameters"]["reference"])));
|
|
$currentRecord = $recordList[0];
|
|
$currentRecordVersions = $currentRecord->GetRecordversionList();
|
|
$currentVersion = $currentRecordVersions[0];
|
|
|
|
$result["versions"] = array();
|
|
// foreach ($currentRecordVersions as $currentVersion) {
|
|
$result["versions"][$currentVersion->reference] = array();
|
|
$result["versions"][$currentVersion->reference]["reference"] = $currentVersion->reference;
|
|
$result["versions"][$currentVersion->reference]["data"] = $currentVersion->data;
|
|
$result["versions"][$currentVersion->reference]["header"] = $currentVersion->header;
|
|
$result["versions"][$currentVersion->reference]["version"] = $currentVersion->version;
|
|
$result["versions"][$currentVersion->reference]["creationDate"] = $currentVersion->creation_date;
|
|
$result["versions"][$currentVersion->reference]["updateDate"] = $currentVersion->update_date;
|
|
$result["versions"][$currentVersion->reference]["accessDate"] = $currentVersion->access_date;
|
|
|
|
// }
|
|
$result["currentVersion"] = $currentVersion->reference;
|
|
// $result["currentVersion"] = $currentRecord->currentVersion; // ????
|
|
|
|
$result["reference"] = $currentRecord->reference;
|
|
$result["data"] = $currentRecord->data;
|
|
$result["version"] = $currentRecord->version;
|
|
$result["creationDate"] = $currentRecord->creation_date;
|
|
$result["updateDate"] = $currentRecord->update_date;
|
|
$result["accessDate"] = $currentRecord->access_date;
|
|
$result["oldestUsedEncryptedVersion"] = "---";
|
|
|
|
//=============================================================
|
|
} else if ($message == "updateData") {
|
|
//{
|
|
// "message":"updateData",
|
|
// "srpSharedSecret":"4e4aadb1d64513ec4dd42f5e8d5b2d4363de75e4424b6bcf178c9d6a246356c5",
|
|
// "parameters":{
|
|
// "records":[
|
|
// {
|
|
// "record":{
|
|
// "reference":"740009737139a189cfa2b1019a6271aaa39467b59e259706564b642ff3838d50",
|
|
// "data":"8hgR0Z+JDrUa812polDJ....JnZUKXNEqKI",
|
|
// "version":"0.3"
|
|
// },
|
|
// "currentRecordVersion":{
|
|
// "reference":"b1d82aeb9a0c4f6584bea68ba80839f43dd6ede79791549e29a1860554b144ee",
|
|
// "recordReference":"740009737139a189cfa2b1019a6271aaa39467b59e259706564b642ff3838d50",
|
|
// "data":"2d/UgKxxV+kBPV9GRUE.....VGonDoW0tqefxOJo=",
|
|
// "version":"0.3",
|
|
// "previousVersion":"55904195249037394316d3be3f5e78f08073170103bf0e7ab49a911c159cb0be",
|
|
// "previousVersionKey":"YWiaZeMIVHaIl96OWW+2e8....6d6nHbn6cr2NA/dbQRuC2w=="
|
|
// }
|
|
// }
|
|
// ],
|
|
// "user":{
|
|
// "header":"{\"rec.....sion\":\"0.1\"}",
|
|
// "statistics":"tt3uU9hWBy8rNnMckgCnxMJh",
|
|
// "version":"0.3",
|
|
// "lock":"----"
|
|
// }
|
|
// }
|
|
//}
|
|
|
|
$user = new user();
|
|
$user = $user->Get($_SESSION["userId"]);
|
|
updateUserData($parameters["parameters"]["user"], $user);
|
|
$user->Save();
|
|
|
|
$recordParameterList = $parameters["parameters"]["records"];
|
|
$c = count($recordParameterList);
|
|
for ($i=0; $i<$c; $i++) {
|
|
$recordList = $user->GetRecordList(array(array("reference", "=", $recordParameterList[$i]["record"]["reference"])));
|
|
$currentRecord = $recordList[0];
|
|
$currentRecordVersions = $currentRecord->GetRecordversionList();
|
|
$currentVersion = $currentRecordVersions[0];
|
|
|
|
updateRecordData($recordParameterList[$i], $currentRecord, $currentVersion);
|
|
|
|
|
|
$currentRecord->Save();
|
|
$currentVersion->Save();
|
|
}
|
|
|
|
|
|
$result["lock"] = $user->lock;
|
|
$result["result"] = "done";
|
|
|
|
//=============================================================
|
|
} else if ($message == "deleteRecords") {
|
|
//{
|
|
// "message":"deleteRecords",
|
|
// "srpSharedSecret":"4a64982f7ee366954ec50b9efea62a902a097ef111410c2aa7c4d5343bd1cdd1",
|
|
// "parameters":{
|
|
// "recordReferences":["46494c81d10b80ab190d41e6806ef63869cfcc7a0ab8fe98cc3f93de4729bb9a"],
|
|
// "user":{
|
|
// "header":"{\"rec...rsion\":\"0.1\"}",
|
|
// "statistics":"44kOOda0xYZjbcugJBdagBQx",
|
|
// "version":"0.3",
|
|
// "lock":"----"
|
|
// }
|
|
// }
|
|
//}
|
|
$user = new user();
|
|
$user = $user->Get($_SESSION["userId"]);
|
|
|
|
$recordReferenceList = $parameters["parameters"]["recordReferences"];
|
|
$recordList = array();
|
|
$c = count($recordReferenceList);
|
|
for ($i=0; $i<$c; $i++) {
|
|
array_push($recordList, array("reference", "=", $recordReferenceList[$i]));
|
|
}
|
|
|
|
$record = new record();
|
|
$record->DeleteList($recordList, true);
|
|
|
|
updateUserData($parameters["parameters"]["user"], $user);
|
|
$user->Save();
|
|
|
|
$result["recordList"] = $recordList;
|
|
$result["lock"] = $user->lock;
|
|
$result["result"] = "done";
|
|
|
|
//=============================================================
|
|
} else if ($message == "deleteUser") {
|
|
//{"message":"deleteUser", "srpSharedSecret":"e8e4ca6544dca49c95b3647d8358ad54c317048b74d2ac187ac25f719c9bac58", "parameters":{}}
|
|
$user = new user();
|
|
$user->Get($_SESSION["userId"]);
|
|
$user->Delete(true);
|
|
|
|
$result["result"] = "ok";
|
|
|
|
//=============================================================
|
|
} else if ($message == "addNewOneTimePassword") {
|
|
//{
|
|
// "message":"addNewOneTimePassword",
|
|
// "srpSharedSecret":"96fee4af06c09ce954fe7a9f87970e943449186bebf70bac0af1d6ebb818dabb",
|
|
// "parameters":{
|
|
// "user":{
|
|
// "header":"{\"records\":{\"index\":{\"419ea6....rsion\":\"0.1\"}",
|
|
// "statistics":"rrlwNbDt83rpWT4S72upiVsC",
|
|
// "version":"0.3",
|
|
// "lock":"----"
|
|
// },
|
|
// "oneTimePassword":{
|
|
// "reference":"29e26f3a2aae61fe5cf58c45296c6df4f3dceafe067ea550b455be345f44123c",
|
|
// "key":"afb848208758361a96a298b9db08995cf036011747809357a90645bc93fdfa03",
|
|
// "keyChecksum":"d1599ae443b5a566bfd93c0aeec4c81b42c0506ee09874dae050449580bb3486",
|
|
// "data":"hsyY8DHksgR52x6c4j7XAtIUeY.....dxsr3XWt7CbGg==",
|
|
// "version":"0.3"
|
|
// }
|
|
// }
|
|
//}
|
|
|
|
fixOTPStatusTable();
|
|
|
|
$user = new user();
|
|
$user = $user->Get($_SESSION["userId"]);
|
|
|
|
$otp = new onetimepassword();
|
|
updateOTP($parameters["parameters"]["oneTimePassword"], $otp, "ACTIVE");
|
|
$user->AddOnetimepassword($otp);
|
|
|
|
updateUserData($parameters["parameters"]["user"], $user);
|
|
$user->Save();
|
|
|
|
$result["lock"] = $user->lock;
|
|
$result["result"] = "done";
|
|
|
|
//=============================================================
|
|
} else if ($message == "updateOneTimePasswords") {
|
|
//{
|
|
// "message":"updateOneTimePasswords",
|
|
// "srpSharedSecret":"c78f8ed099ea421f4dd0a4e02dbaf1f7da925f0088188d99399874ff064a3d27",
|
|
// "parameters":{
|
|
// "user":{
|
|
// "header":"{\"reco...sion\":\"0.1\"}",
|
|
// "statistics":"UeRq75RZHzDC7elzrh/+OB5d",
|
|
// "version":"0.3",
|
|
// "lock":"----"
|
|
// },
|
|
// "oneTimePasswords":["f5f44c232f239efe48ab81a6236deea1a840d52946f7d4d782dad52b4c5359ce"]
|
|
// }
|
|
//}
|
|
|
|
$user = new user();
|
|
$user = $user->Get($_SESSION["userId"]);
|
|
|
|
$validOtpReferences = $parameters["parameters"]["oneTimePasswords"];
|
|
|
|
$otpList = $user->GetOnetimepasswordList();
|
|
$c = count($otpList);
|
|
for ($i=0; $i<$c; $i++) {
|
|
$currentOtp = $otpList[$i];
|
|
if (arrayContainsValue($validOtpReferences, $currentOtp->reference) == false) {
|
|
$currentOtp->Delete();
|
|
}
|
|
}
|
|
|
|
updateUserData($parameters["parameters"]["user"], $user);
|
|
$user->Save();
|
|
|
|
$result["result"] = $user->lock;
|
|
|
|
//=============================================================
|
|
} else if ($message == "getOneTimePasswordsDetails") {
|
|
|
|
//=============================================================
|
|
} else if ($message == "getLoginHistory") {
|
|
$result["result"] = array();
|
|
|
|
//=============================================================
|
|
} else if ($message == "upgradeUserCredentials") {
|
|
//{
|
|
// "message":"upgradeUserCredentials",
|
|
// "srpSharedSecret":"f1c25322e1478c8fb26063e9eef2f6fc25e0460065a31cb718f80bcff8f8a735",
|
|
// "parameters":{
|
|
// "user":{
|
|
// "header":"{\"reco...sion\":\"0.1\"}",
|
|
// "statistics":"s72Xva+w7CLgH+ihwqwXUbyu",
|
|
// "version":"0.3",
|
|
// "lock":"----"
|
|
// },
|
|
// "credentials":{
|
|
// "C":"57d15a8afbc1ae08103bd991d387ddfd8d26824276476fe709d754f098b6c26d",
|
|
// "s":"d6735fc0486f391c4f3c947928f9e61a2418e7bed2bc9b25bb43f93acc52f636",
|
|
// "v":"540c2ebbf941a481b6b2c9026c07fb46e8202e4408ed96864a696deb622baece",
|
|
// "version":"0.2"
|
|
// },
|
|
// "oneTimePasswords":{
|
|
// "923cdc61c4b877b263236124c44d69b459d240453a461cce8ddf7518b423ca94": "1HD6Ta0xsifEDhDwE....9WDK6tvrS6w==",
|
|
// "fb1573cb9497652a81688a099a524fb116e604c6fbc191cf33406eb8438efa5f": "CocN0cSxLmMRdgNF9....o3xhGUEY68Q=="
|
|
// }
|
|
// }
|
|
//}
|
|
|
|
$user = new user();
|
|
$user->Get($_SESSION["userId"]);
|
|
|
|
$otp = new onetimepassword();
|
|
|
|
updateUserCredentials($parameters["parameters"]["credentials"], $user);
|
|
updateUserData($parameters["parameters"]["user"], $user);
|
|
|
|
$otpList = $parameters["parameters"]["oneTimePasswords"];
|
|
foreach($otpList as $otpReference=>$otpData) {
|
|
$otpList = $otp->GetList(array(array("reference", "=", $otpReference)));
|
|
$currentOtp = $otpList[0];
|
|
$currentOtp->data = $otpData;
|
|
$currentOtp->Save();
|
|
}
|
|
|
|
$user->Save();
|
|
|
|
$result["lock"] = $user->lock;
|
|
$result["result"] = "done";
|
|
|
|
//=============================================================
|
|
} else if ($message == "echo") {
|
|
$result["result"] = $parameters;
|
|
}
|
|
|
|
//=============================================================
|
|
} else if (isset($_SESSION['K'])) {
|
|
$result["error"] = "Wrong shared secret!";
|
|
} else {
|
|
$result["result"] = "EXCEPTION";
|
|
$result["message"] = "Trying to communicate without an active connection";
|
|
}
|
|
break;
|
|
|
|
case "logout":
|
|
error_log("logout");
|
|
session_destroy();
|
|
break;
|
|
|
|
default:
|
|
error_log("default");
|
|
$result["result"] = $parameters;
|
|
break;
|
|
}
|
|
|
|
session_write_close();
|
|
|
|
$finalResult = Array();
|
|
$finalResult["result"] = $result;
|
|
|
|
echo(json_encode($finalResult));
|
|
error_log("result: ".json_encode($finalResult));
|
|
?>
|