Home Explore Help
Sign In
LBP
/
Organizr
mirror of https://github.com/causefx/Organizr.git
4
0
Fork 0
Files Issues 0 Wiki
Tree: 61737601c5
Branches Tags
Organizr
/
api
/
functions
/
auth-functions.php

auth-functions.php 6.0 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174 
  1. <?php
    2. 

  2. function authRegister($username,$password,$defaults,$email){
    3. 

  3. 	$defaults = defaultUserGroup();
    4. 

  4. 	if(createUser($username,$password,$defaults,$email)){
    5. 

  5. 		writeLog('success', 'Registration Function - A User has registered', $username);
    6. 

  6. 		if(createToken($username,$email,gravatar($email),$defaults['group'],$defaults['group_id'],$GLOBALS['organizrHash'],7)){
    7. 

  7. 			writeLoginLog($username, 'success');
    8. 

  8. 			writeLog('success', 'Login Function - A User has logged in', $username);
    9. 

  9. 			return true;
    10. 

  10. 		}
    11. 

  11. 	}else{
    12. 

  12. 		writeLog('error', 'Registration Function - An error occured', $username);
    13. 

  13. 		return 'username taken';
    14. 

  14. 	}
    15. 

  15. }
    16. 

  16. function checkPlexUser($username){
    17. 

  17. 	try{
    18. 

  18. 		if(!empty($GLOBALS['plexToken'])){
    19. 

  19. 			$url = 'https://plex.tv/pms/friends/all';
    20. 

  20. 			$headers = array(
    21. 

  21. 				'X-Plex-Token' => $GLOBALS['plexToken'],
    22. 

  22. 			);
    23. 

  23. 			$response = Requests::get($url, $headers);
    24. 

  24. 			if($response->success){
    25. 

  25. 				libxml_use_internal_errors(true);
    26. 

  26. 				$userXML = simplexml_load_string($response->body);
    27. 

  27. 				if (is_array($userXML) || is_object($userXML)) {
    28. 

  28. 					$usernameLower = strtolower($username);
    29. 

  29. 					foreach($userXML AS $child) {
    30. 

  30. 						if(isset($child['username']) && strtolower($child['username']) == $usernameLower || isset($child['email']) && strtolower($child['email']) == $usernameLower) {
    31. 

  31. 							return true;
    32. 

  32. 						}
    33. 

  33. 					}
    34. 

  34. 				}
    35. 

  35. 			}
    36. 

  36. 		}
    37. 

  37. 		return false;
    38. 

  38. 	}catch( Requests_Exception $e ) {
    39. 

  39. 		writeLog('success', 'Plex User Check Function - Error: '.$e->getMessage(), $username);
    40. 

  40. 	};
    41. 

  41. }
    42. 

  42. function plugin_auth_plex($username, $password) {
    43. 

  43. 	try{
    44. 

  44. 		$usernameLower = strtolower($username);
    45. 

  45. 		if(checkPlexUser($username)){
    46. 

  46. 			//Login User
    47. 

  47. 			$url = 'https://plex.tv/users/sign_in.json';
    48. 

  48. 			$headers = array(
    49. 

  49. 				'Accept'=> 'application/json',
    50. 

  50. 				'Content-Type' => 'application/x-www-form-urlencoded',
    51. 

  51. 				'X-Plex-Product' => 'Organizr',
    52. 

  52. 				'X-Plex-Version' => '2.0',
    53. 

  53. 				'X-Plex-Client-Identifier' => '01010101-10101010',
    54. 

  54. 			);
    55. 

  55. 			$data = array(
    56. 

  56. 				'user[login]' => $username,
    57. 

  57. 				'user[password]' => $password,
    58. 

  58. 			);
    59. 

  59. 			$response = Requests::post($url, $headers, $data);
    60. 

  60. 			if($response->success){
    61. 

  61. 				$json = json_decode($response->body, true);
    62. 

  62. 				if ((is_array($json) && isset($json['user']) && isset($json['user']['username'])) && strtolower($json['user']['username']) == $usernameLower || strtolower($json['user']['email']) == $usernameLower) {
    63. 

  63. 					//writeLog("success", $json['user']['username']." was logged into organizr using plex credentials");
    64. 

  64. 	                return array(
    65. 

  65. 						'username' => $json['user']['username'],
    66. 

  66. 						'email' => $json['user']['email'],
    67. 

  67. 						'image' => $json['user']['thumb'],
    68. 

  68. 						'token' => $json['user']['authToken']
    69. 

  69. 					);
    70. 

  70. 				}
    71. 

  71. 			}
    72. 

  72. 		}
    73. 

  73. 		return false;
    74. 

  74. 	}catch( Requests_Exception $e ) {
    75. 

  75. 		writeLog('success', 'Plex Auth Function - Error: '.$e->getMessage(), $username);
    76. 

  76. 	};
    77. 

  77. }
    78. 

  78. if (function_exists('ldap_connect')){
    79. 

  79. 	// Pass credentials to LDAP backend
    80. 

  80. 	function plugin_auth_ldap($username, $password) {
    81. 

  81. 		if(!empty($GLOBALS['authBaseDN']) && !empty($GLOBALS['authBackendHost'])){
    82. 

  82. 			$ldapServers = explode(',',$GLOBALS['authBackendHost']);
    83. 

  83. 			foreach($ldapServers as $key => $value) {
    84. 

  84. 				// Calculate parts
    85. 

  85. 				$digest = parse_url(trim($value));
    86. 

  86. 				$scheme = strtolower((isset($digest['scheme'])?$digest['scheme']:'ldap'));
    87. 

  87. 				$host = (isset($digest['host'])?$digest['host']:(isset($digest['path'])?$digest['path']:''));
    88. 

  88. 				$port = (isset($digest['port'])?$digest['port']:(strtolower($scheme)=='ldap'?389:636));
    89. 

  89. 				// Reassign
    90. 

  90. 				$ldapServers[$key] = $scheme.'://'.$host.':'.$port;
    91. 

  91. 			}
    92. 

  92. 			$ldap = ldap_connect(implode(' ',$ldapServers));
    93. 

  93. 			ldap_set_option($ldap, LDAP_OPT_PROTOCOL_VERSION, 3);
    94. 

  94. 			ldap_set_option($ldap, LDAP_OPT_REFERRALS, 0);
    95. 

  95. 			$bind = @ldap_bind($ldap, sprintf($GLOBALS['authBaseDN'], $username), $password);
    96. 

  96. 			return ($bind) ? true : false;
    97. 

  97. 		}
    98. 

  98. 		return false;
    99. 

  99. 	}
    100. 

  100. }else{
    101. 

  101. 	// Ldap Auth Missing Dependancy
    102. 

  102. 	function plugin_auth_ldap_disabled() {
    103. 

  103. 		return 'LDAP - Disabled (Dependancy: php-ldap missing!)';
    104. 

  104. 	}
    105. 

  105. }
    106. 

  106. 

  107. // Pass credentials to FTP backend
    108. 

  108. function plugin_auth_ftp($username, $password) {
    109. 

  109. 	// Calculate parts
    110. 

  110. 	$digest = parse_url(AUTHBACKENDHOST);
    111. 

  111. 	$scheme = strtolower((isset($digest['scheme'])?$digest['scheme']:(function_exists('ftp_ssl_connect')?'ftps':'ftp')));
    112. 

  112. 	$host = (isset($digest['host'])?$digest['host']:(isset($digest['path'])?$digest['path']:''));
    113. 

  113. 	$port = (isset($digest['port'])?$digest['port']:21);
    114. 

  114. 

  115. 	// Determine Connection Type
    116. 

  116. 	if ($scheme == 'ftps') {
    117. 

  117. 		$conn_id = ftp_ssl_connect($host, $port, 20);
    118. 

  118. 	} elseif ($scheme == 'ftp') {
    119. 

  119. 		$conn_id = ftp_connect($host, $port, 20);
    120. 

  120. 	} else {
    121. 

  121. 		debug_out('Invalid FTP scheme. Use ftp or ftps');
    122. 

  122.   		writeLog("error", "invalid FTP scheme");
    123. 

  123. 		return false;
    124. 

  124. 	}
    125. 

  125. 

  126. 	// Check if valid FTP connection
    127. 

  127. 	if ($conn_id) {
    128. 

  128. 		// Attempt login
    129. 

  129. 		@$login_result = ftp_login($conn_id, $username, $password);
    130. 

  130. 		ftp_close($conn_id);
    131. 

  131. 

  132. 		// Return Result
    133. 

  133. 		if ($login_result) {
    134. 

  134.    			writeLog("success", "$username authenticated");
    135. 

  135. 			return true;
    136. 

  136. 		} else {
    137. 

  137.    			writeLog("error", "$username could not authenticate");
    138. 

  138. 			return false;
    139. 

  139. 		}
    140. 

  140. 	} else {
    141. 

  141. 		return false;
    142. 

  142. 	}
    143. 

  143. 	return false;
    144. 

  144. }
    145. 

  145. 

  146. // Pass credentials to Emby Backend
    147. 

  147. function plugin_auth_emby_local($username, $password) {
    148. 

  148. 	$embyAddress = qualifyURL(EMBYURL);
    149. 

  149. 

  150. 	$headers = array(
    151. 

  151. 		'Authorization'=> 'MediaBrowser UserId="e8837bc1-ad67-520e-8cd2-f629e3155721", Client="None", Device="Organizr", DeviceId="xxx", Version="1.0.0.0"',
    152. 

  152. 		'Content-Type' => 'application/json',
    153. 

  153. 	);
    154. 

  154. 	$body = array(
    155. 

  155. 		'Username' => $username,
    156. 

  156. 		'Password' => sha1($password),
    157. 

  157. 		'PasswordMd5' => md5($password),
    158. 

  158. 	);
    159. 

  159. 

  160. 	$response = post_router($embyAddress.'/Users/AuthenticateByName', $body, $headers);
    161. 

  161. 

  162. 	if (isset($response['content'])) {
    163. 

  163. 		$json = json_decode($response['content'], true);
    164. 

  164. 		if (is_array($json) && isset($json['SessionInfo']) && isset($json['User']) && $json['User']['HasPassword'] == true) {
    165. 

  165. 			// Login Success - Now Logout Emby Session As We No Longer Need It
    166. 

  166. 			$headers = array(
    167. 

  167. 				'X-Mediabrowser-Token' => $json['AccessToken'],
    168. 

  168. 			);
    169. 

  169. 			$response = post_router($embyAddress.'/Sessions/Logout', array(), $headers);
    170. 

  170. 			return true;
    171. 

  171. 		}
    172. 

  172. 	}
    173. 

  173. 	return false;
    174. 

  174. }
    175.