WordPress password validation in alt_auth

2025-01-17 20:58:30 +01:00 · 2009-07-21 19:21:27 +00:00 · 2009-07-21 19:21:27 +00:00 · 0fc7cffa66
commit 0fc7cffa66
parent fe1c87165c
5 changed files with 195 additions and 179 deletions
--- a/e107_plugins/alt_auth/alt_auth_login_class.php
+++ b/e107_plugins/alt_auth/alt_auth_login_class.php
@ -11,8 +11,8 @@
 |     GNU General Public License (http://gnu.org).
 |
 |     $Source: /cvs_backup/e107_0.8/e107_plugins/alt_auth/alt_auth_login_class.php,v $
-|     $Revision: 1.8 $
+|     $Revision: 1.9 $
-|     $Date: 2009-07-05 18:47:52 $
+|     $Date: 2009-07-21 19:21:26 $
 |     $Author: e107steved $
 +----------------------------------------------------------------------------+
 */
@ -105,10 +105,10 @@ class alt_login
 				{
 					$newUser = array();
 					$newUser['data'] = $db_vals;
-					validatorClass::addFieldTypes($userMethods->userVettingInfo,$allData);
+					validatorClass::addFieldTypes($userMethods->userVettingInfo,$newUser);
 					$newUser['WHERE'] = '`user_id`='.$row['user_id'];
-					$aa_sql->db_Update('user',$db_vals);
+					$aa_sql->db_Update('user',$newUser);
-					if (AA_DEBUG1) $admin_log->e_log_event(10,debug_backtrace(),"DEBUG","Alt auth login","User data update: ".print_r($db_vals,TRUE),FALSE,LOG_TO_ROLLING);
+					if (AA_DEBUG1) $admin_log->e_log_event(10,debug_backtrace(),"DEBUG","Alt auth login","User data update: ".print_r($newUser,TRUE),FALSE,LOG_TO_ROLLING);
 				}
 				foreach ($xFields as $k => $v)
 				{
--- a/e107_plugins/alt_auth/extended_password_handler.php
+++ b/e107_plugins/alt_auth/extended_password_handler.php
@ -11,8 +11,8 @@
 |     GNU General Public License (http://gnu.org).
 |
 |     $Source: /cvs_backup/e107_0.8/e107_plugins/alt_auth/extended_password_handler.php,v $
-|     $Revision: 1.1 $
+|     $Revision: 1.2 $
-|     $Date: 2008-07-25 19:33:03 $
+|     $Date: 2009-07-21 19:21:27 $
 |     $Author: e107steved $
 +----------------------------------------------------------------------------+
 */
@ -46,10 +46,12 @@ require_once(e_HANDLER.'user_handler.php');
  define('PASSWORD_GENERAL_MD5',5);
  define('PASSWORD_PLAINTEXT',6);
  define('PASSWORD_GENERAL_SHA1',7);
  define('PASSWORD_WORDPRESS_SALT', 8);
  // Supported formats:
  define('PASSWORD_PHPBB_ID','$H$');			// PHPBB salted
  define('PASSWORD_ORIG_ID','$P$');				// 'Original' code
  define('PASSWORD_WORDPRESS_ID', '$P$');		// WordPress 2.8
 class ExtendedPasswordHandler extends UserHandler
@ -111,33 +113,48 @@ class ExtendedPasswordHandler extends UserHandler
-  // Method for PHPBB3-style salted passwords, which begin '$H$'
+  // Method for PHPBB3-style salted passwords, which begin '$H$', and WordPress-style salted passwords, which begin '$P$'
  // Given a plaintext password and the complete password/hash function (which includes any salt), calculate hash
  // Returns FALSE on error
-  function crypt_private($password, $stored_password)
+	function crypt_private($password, $stored_password, $password_type = PASSWORD_PHPBB_SALT)
 	{
 		$output = '*0';
 		if (substr($stored_password, 0, 2) == $output)
 			$output = '*1';
 	  switch (substr($stored_password, 0, 3))
 		{
-		case PASSWORD_PHPBB_ID :		// PHPBB3 encoding
+			$output = '*1';
-		case PASSWORD_ORIG_ID :			// Original algorithm's encoding
+		}
 		$prefix = '';
 		switch ($password_type)
 		{
 			case PASSWORD_PHPBB_SALT :
 				$prefix = PASSWORD_PHPBB_ID;
 				break;
 			case PASSWORD_WORDPRESS_SALT :
 				$prefix = PASSWORD_WORDPRESS_ID;
 				break;
 			default :
 				$prefix = '';
 		}
 		if ($prefix != substr($stored_password, 0, 3))
 		{
 			return $output;
 		}
 		$count_log2 = strpos($this->itoa64, $stored_password[3]);			// 4th character indicates hash depth count
 		if ($count_log2 < 7 || $count_log2 > 30)
 		{
 			return $output;
 		}
 		$count = 1 << $count_log2;
 		$salt = substr($stored_password, 4, 8);						// Salt is characters 5..12
 		if (strlen($salt) != 8)
 		{
 			return $output;
 		}
 		# We're kind of forced to use MD5 here since it's the only
 		# cryptographic primitive available in all versions of PHP
@ -145,22 +162,12 @@ class ExtendedPasswordHandler extends UserHandler
 		# in PHP would result in much worse performance and
 		# consequently in lower iteration counts and hashes that are
 		# quicker to crack (by non-PHP code).
-		if (PHP_VERSION >= '5') 
+		// Get raw binary output (always 16 bytes) - we assume PHP5 here
 		{ // Get raw binary output (always 16 bytes)
 		$hash = md5($salt.$password, TRUE);
 		do 
 		{
 			$hash = md5($hash.$password, TRUE);
 		} while (--$count);
 		} 
 		else 
 		{  // Use 'pack' to create 16 bytes from the hex string
 		  $hash = pack('H*', md5($salt . $password));
 		  do 
 		  {
 			$hash = pack('H*', md5($hash . $password));
 		  } while (--$count);
 		}
 		$output = substr($setting, 0, 12);		// Identifier, shift count and salt - total 12 chars
 		$output .= $this->encode64($hash, 16);	// Returns 22-character string
@ -185,7 +192,8 @@ class ExtendedPasswordHandler extends UserHandler
 			'mambo_salt'	=> IMPORTDB_LAN_4,
 			'smf_sha1'		=> IMPORTDB_LAN_5,
 			'sha1'			=> IMPORTDB_LAN_6,
-		'phpbb3_salt'	=> IMPORTDB_LAN_12
+			'phpbb3_salt'	=> IMPORTDB_LAN_12,
 			'wordpress_salt'	=> IMPORTDB_LAN_13
 			));
 		}
 		return $vals;
@ -206,7 +214,9 @@ class ExtendedPasswordHandler extends UserHandler
 				'e107'			=> PASSWORD_GENERAL_MD5,
 				'md5'			=> PASSWORD_GENERAL_MD5,
 				'e107_salt'		=> PASSWORD_E107_SALT,
-			'phpbb2_salt'	=> PASSWORD_PHPBB_SALT
+				'phpbb2_salt'	=> PASSWORD_PHPBB_SALT,
 				'phpbb3_salt'	=> PASSWORD_PHPBB_SALT,
 				'wordpress_salt'	=> PASSWORD_WORDPRESS_SALT
 				);
 		if (isset($maps[$ptype])) return $maps[$ptype];
 		return FALSE;
@ -245,8 +255,14 @@ class ExtendedPasswordHandler extends UserHandler
 				break;
 			case PASSWORD_PHPBB_SALT :
 			case PASSWORD_WORDPRESS_SALT :
 				if (strlen($stored_hash) != 34) return PASSWORD_INVALID;
-		$pwHash = $this->HashPassword($pword, PASSWORD_PHPBB_SALT);
+				$pwHash = $this->crypt_private($pword, $stored_hash, $password_type);
 				if ($pwHash[0] == '*')
 				{
 					return PASSWORD_INVALID;
 				}
 				$stored_hash = substr($stored_hash,12);
 				break;
 			case PASSWORD_PLAINTEXT :
--- a/e107_plugins/alt_auth/importdb_auth.php
+++ b/e107_plugins/alt_auth/importdb_auth.php
@ -11,8 +11,8 @@
 |     GNU General Public License (http://gnu.org).
 |
 |     $Source: /cvs_backup/e107_0.8/e107_plugins/alt_auth/importdb_auth.php,v $
-|     $Revision: 1.2 $
+|     $Revision: 1.3 $
-|     $Date: 2008-09-02 19:39:12 $
+|     $Date: 2009-07-21 19:21:27 $
 |     $Author: e107steved $
 +----------------------------------------------------------------------------+
 */
@ -58,7 +58,7 @@ class auth_login
 		// See if the user's in the E107 database - otherwise they can go away
 		global $sql, $tp;
-	  if (!$sql->db_Select("user", "user_loginname, user_password", "user_loginname = '".$tp -> toDB($uname)."'")) 
+		if (!$sql->db_Select('user', 'user_loginname, user_password', "user_loginname = '".$tp -> toDB($uname)."'")) 
 		{	// Invalid user
 			$this->makeErrorText('User not found');
 			return AUTH_NOUSER;
@ -86,7 +86,7 @@ class auth_login
 		if ($pass_check->checkPassword($pword, $uname, $pwFromDB, $passMethod) !== PASSWORD_VALID)
 		{
 			$this->makeErrorText('Password incorrect');
-		return AUTH_BADPASSWORD;
+			return LOGIN_CONTINUE;		// Could have already changed password to E107 format
 		}
 		$this->makeErrorText('');
 		return AUTH_SUCCESS;
--- a/e107_plugins/alt_auth/languages/English/admin_importdb_conf.php
+++ b/e107_plugins/alt_auth/languages/English/admin_importdb_conf.php
@ -1,18 +1,19 @@
 <?php
-define("IMPORTDB_LAN_1", 'Database type');
+define('IMPORTDB_LAN_1', 'Database type');
-define("IMPORTDB_LAN_2", 'Plain Text');
+define('IMPORTDB_LAN_2', 'Plain Text');
-define("IMPORTDB_LAN_3", 'Joomla salted');
+define('IMPORTDB_LAN_3', 'Joomla salted');
-define("IMPORTDB_LAN_4", 'Mambo salted');
+define('IMPORTDB_LAN_4', 'Mambo salted');
-define("IMPORTDB_LAN_5", 'SMF (SHA1)');
+define('IMPORTDB_LAN_5', 'SMF (SHA1)');
-define("IMPORTDB_LAN_6", 'Generic SHA1');
+define('IMPORTDB_LAN_6', 'Generic SHA1');
-define("IMPORTDB_LAN_7", 'MD5 (E107 original)');
+define('IMPORTDB_LAN_7', 'MD5 (E107 original)');
-define("IMPORTDB_LAN_8", 'E107 salted (option 0.8 on)');
+define('IMPORTDB_LAN_8', 'E107 salted (option 0.8 on)');
-define("IMPORTDB_LAN_9", 'Password Method:');
+define('IMPORTDB_LAN_9', 'Password Method:');
-define("IMPORTDB_LAN_10", 'Configure imported database password type');
+define('IMPORTDB_LAN_10', 'Configure imported database password type');
-define("IMPORTDB_LAN_11", 'This option is to be used when you have imported some other user-based system into E107. 
+define('IMPORTDB_LAN_11', 'This option is to be used when you have imported some other user-based system into E107. 
 							It allows you to accept passwords encoded in the selected non-standard format. 
 							Each user\'s password is converted to E107 format when they log in.');
-define("IMPORTDB_LAN_12", 'PHPBB2/PHPBB3 salted');
+define('IMPORTDB_LAN_12', 'PHPBB2/PHPBB3 salted');
 define('IMPORTDB_LAN_13', 'WordPress salted');
 define('LAN_AUTHENTICATE_HELP','This authentication method is to be used <i>only</i> when you have imported a user database into E107, and the password is in an incompatible format. The
  original password is read from the local database, and validated against the storage format of the original system. If it verifies, its converted to the current E107-compatible format and
--- a/usersettings.php
+++ b/usersettings.php
@ -9,8 +9,8 @@
 * User settings modify
 *
 * $Source: /cvs_backup/e107_0.8/usersettings.php,v $
- * $Revision: 1.35 $
+ * $Revision: 1.36 $
- * $Date: 2009-06-12 20:41:35 $
+ * $Date: 2009-07-21 19:21:27 $
 * $Author: e107steved $
 *
 */
@ -398,7 +398,6 @@ if ($dataToSave && !$promptPassword)
 		}
 	}
 		print_a($changedEUFData);
 	// Save extended field values
 	if (isset($changedEUFData['data']) && count($changedEUFData['data']))