Your IP : 216.73.216.55
<?php
/**
* @package admintools
* @copyright Copyright (c)2010-2021 Nicholas K. Dionysopoulos / Akeeba Ltd
* @license GNU General Public License version 3, or later
*/
use Joomla\CMS\Application\CliApplication;
use Joomla\CMS\Environment\Browser;
use Joomla\CMS\Factory;
use Joomla\CMS\Language\Text;
use Joomla\CMS\Plugin\PluginHelper;
use Joomla\CMS\Uri\Uri;
use Joomla\CMS\User\User;
use Joomla\CMS\User\UserHelper;
use Joomla\Registry\Registry;
defined('_JEXEC') || die;
/**
* Implements the Rescue URL feature. This feature lets a Super User suspend the backend protection of Admin Tools for
* their IP address and for a short period of time only so that they have the chance to log in to the site and unblock
* themselves / fix the Admin Tools configuration which is blocking their access to their site.
*
* @since 4.3.0
*/
abstract class AtsystemUtilRescueurl
{
/**
* This string is used in the 'series' column of #__user_keys to signify an Admin Tools Rescue URL token.
*/
public const series = 'com_admintools_rescue';
/**
* Is this a CLI application?
*
* @var bool
*/
protected static $isCLI = null;
/**
* Is this an administrator application?
*
* @var bool
*/
protected static $isAdmin = null;
/**
* Caches the results of isRescueMode() for faster reference during the same page load.
*
* @var null|bool
*/
private static $isRescueMode = null;
/**
* Checks if the current request is trying to enable Rescue Mode. If so, we will create a new rescue token and
* store
* the relevant information in the database.
*
* This feature is only available on the backend of the site. The reasoning is that if you can access the backend
* of
* your site you can unblock yourself and fix whatever was blocking you in the first place.
*
* @param AtsystemUtilExceptionshandler $exceptionsHandler The Admin Tools exceptions handler, used to find
* email templates
*
* @return void
*/
public static function processRescueURL(AtsystemUtilExceptionshandler $exceptionsHandler)
{
// Is the feature enabled?
if (!self::isFeatureEnabled())
{
return;
}
// Is this the backend of the site (we do NOT have FOF 3 yet)?
[$isCli, $isAdmin] = self::isCliAdmin();
if (!$isAdmin)
{
return;
}
// Do I have an email address?
$app = Factory::getApplication();
$input = $app->input;
$email = $input->get('admintools_rescue', '', 'raw');
$email = empty($email) ? '' : trim($email);
if (empty($email))
{
return;
}
if ($email == 'you@example.com')
{
echo Text::sprintf('ADMINTOOLS_RESCUEURL_ERR_INVALIDADDRESS', $email);
$app->close(0);
}
// Does the email belong to a Super User?
$userId = self::isSuperUserByEmail($email);
if (!$userId)
{
return;
}
// Create a new random token, 96 characters long (that's about 160 bits of randomness)
$token = UserHelper::genRandomPassword(96);
// Check if #__user_keys has another token with series == 'com_admintools_rescue' and delete it
self::removeOldTokens();
// Save new #__user_keys record with invalid = 0 (unused; we'll change that to -1 when we use it)
$browser = Browser::getInstance();
$user = Factory::getUser($userId);
$ip = AtsystemUtilFilter::getIp();
self::saveToken($user->username, $token, 0, time(), $browser->getAgentString(), $ip);
// Send email
self::sendRescueURLEmail($user, $token, $exceptionsHandler);
// Close application with a message that the email has been sent
echo Text::_('ADMINTOOLS_RESCUEURL_SENTMSG');
$app->close(0);
}
/**
* Are we in Rescue Mode?
*
* @return bool
*/
public static function isRescueMode()
{
// Check the static cache first
if (is_bool(self::$isRescueMode))
{
return self::$isRescueMode;
}
self::$isRescueMode = false;
// Is the feature enabled?
if (!self::isFeatureEnabled())
{
return false;
}
// Is this the backend of the site? (Rescue mode is only valid in the backend)
[$isCli, $isAdmin] = self::isCliAdmin();
if (!$isAdmin)
{
return false;
}
// Remove all expired tokens
self::removeExpiredTokens();
// If the token is present AND it's not marked as used, process it
$app = Factory::getApplication();
$token = $app->input->getCmd('admintools_rescue_token', '');
$username = empty($token) ? null : self::getUsernameFromToken($token);
// In case of a valid token I have to set a few things in the session
if (!empty($username))
{
self::setSessionVar('rescue_timestamp', time(), 'com_admintools');
self::setSessionVar('rescue_username', $username, 'com_admintools');
}
// Is the timestamp saved in the session within the time limit?
$expiresOn = (int) self::getSessionVar('rescue_timestamp', 0, 'com_admintools')
+ (self::getTimeout() * 60);
if (time() > $expiresOn)
{
return false;
}
// We must be guest OR the username must match the one in the token.
$currentUser = method_exists($app, 'getIdentity') ? $app->getIdentity() : Factory::getUser();
$username = self::getSessionVar('rescue_username', '', 'com_admintools');
if (!empty($currentUser) && !$currentUser->guest && ($currentUser->username != $username))
{
return false;
}
// All checks passed, this is Rescue Mode
self::$isRescueMode = true;
return true;
}
public static function processBlockMessage($message, $email = 'you@example.com')
{
// Nothing to replace? Don't bother proceeding.
if (strpos($message, '[RESCUEINFO]') === false)
{
return $message;
}
// Default replacements text for Rescue Info
$info = Text::sprintf('ADMINTOOLS_BLOCKED_MESSAGE_RESCUEINFO', $email);
// If the feature is disabled we will not show any rescue information
if (!self::isFeatureEnabled())
{
$info = '';
}
// Step 1. Replace [RESCUEINFO] with the language string.
$message = str_replace('[RESCUEINFO]', $info, $message);
// Step 2. Replace [RESCUE_TRIGGER_URL] with the trigger URL for rescue mode
if (strpos($message, '[RESCUE_TRIGGER_URL]') !== false)
{
[$isCli, $isAdmin] = self::isCliAdmin();
$baseURL = Uri::base();
$url = $isAdmin ? str_replace('/administrator', '', $baseURL) : $baseURL;
$url = rtrim($url, '/') . '/administrator/index.php?admintools_rescue=';
$message = str_replace('[RESCUE_TRIGGER_URL]', $url, $message);
}
return $message;
}
/**
* Main function to detect if we're running in a CLI environment and we're admin.
*
* Copied from FOF 3. We need it here since FOF has not been loaded yet when we need this information.
*
* @return array isCLI and isAdmin. It's not an associative array, so we can use list.
*/
protected static function isCliAdmin()
{
if (is_null(static::$isCLI) && is_null(static::$isAdmin))
{
try
{
if (is_null(Factory::$application))
{
static::$isCLI = true;
}
else
{
$app = Factory::getApplication();
static::$isCLI =
$app instanceof Exception ||
(
version_compare(JVERSION, '3.99999.99999', 'gt')
? ($app instanceof CliApplication)
: ($app instanceof CliApplication)
);
}
}
catch (Exception $e)
{
static::$isCLI = true;
}
if (static::$isCLI)
{
static::$isAdmin = false;
}
else
{
$app = Factory::$application;
if (!$app)
{
static::$isAdmin = false;
}
elseif (method_exists($app, 'isClient'))
{
static::$isAdmin = $app->isClient('administrator');
}
elseif (method_exists($app, 'isAdmin'))
{
static::$isAdmin = $app->isAdmin();
}
}
}
return [static::$isCLI, static::$isAdmin];
}
/**
* Is the Rescue Mode feature enabled in the plugin?
*
* @return bool
*/
private static function isFeatureEnabled()
{
$params = self::getPluginParams();
return (bool) $params->get('rescueurl', 1);
}
/**
* Get the rescue mode timeout in minutes. Must be at least one minute.
*
* @return int
*/
private static function getTimeout()
{
$params = self::getPluginParams();
$timeout = (int) $params->get('rescueduration', 15);
if ($timeout <= 0)
{
$timeout = 15;
}
return $timeout;
}
/**
* Get the plugin parameters.
*
* @return Registry
*/
private static function getPluginParams()
{
$plugin = PluginHelper::getPlugin('system', 'admintools');
return new Registry($plugin->params);
}
/**
* Does the user exist, not blocked and have the core.admin (Super User) privilege?
*
* @param string $email The email to check for
*
* @return bool|int
*/
private static function isSuperUserByEmail($email)
{
$db = Factory::getDbo();
$query = $db->getQuery(true)
->select($db->qn('id'))
->from($db->qn('#__users'))
->where($db->qn('email') . ' = ' . $db->q($email))
->where($db->qn('block') . ' = ' . $db->q(0));
$userID = $db->setQuery($query)->loadResult();
if (empty($userID))
{
return false;
}
$user = Factory::getUser($userID);
if (!$user->authorise('core.admin'))
{
return false;
}
return $userID;
}
/**
* Check if #__user_keys has another token with series == 'com_admintools_rescue' and delete it
*
* @return void
*/
private static function removeOldTokens()
{
$db = Factory::getDbo();
$query = $db->getQuery(true)
->delete('#__user_keys')
->where($db->qn('series') . ' = ' . $db->q(self::series));
$db->setQuery($query)->execute();
}
/**
* Save a login token
*
* @param string $username The username this cookie belongs to.
* @param string $token The token to assign to this cookie. The token is stored hashed to prevent
* side-channel attacks.
* @param int $invalid We use this as a status flag. 0 when the token is unused, 1 after it's been used.
* @param string $time The timestamp this cookie was created on.
* @param string $user_agent The user agent of the user's browser.
* @param string $ip The IP address of the user
*
* @return void
*/
private static function saveToken($username, $token, $invalid, $time, $user_agent, $ip)
{
// Create a combined entry for the User Agent string and IP address
$combined = json_encode([
'ua' => $user_agent,
'ip' => $ip,
]);
$db = Factory::getDbo();
$o = (object) [
'id' => null,
'user_id' => $username,
'token' => UserHelper::hashPassword($token),
'series' => self::series,
'invalid' => $invalid,
'time' => $time,
'uastring' => $combined,
];
if (!$db->insertObject('#__user_keys', $o, 'id'))
{
throw new RuntimeException('Could not save token');
}
}
private static function getUsernameFromToken($token, $ua = null, $ip = null)
{
// Make sure we have a UA string and an IP address
if (is_null($ua))
{
$browser = Browser::getInstance();
$ua = $browser->getAgentString();
}
if (is_null($ip))
{
$ip = AtsystemUtilFilter::getIp();
}
// Create a combined entry for the User Agent string and IP address
$combined = json_encode([
'ua' => $ua,
'ip' => $ip,
]);
// Get the cutoff time for tokens
$rescueDuration = self::getTimeout() * 60;
$now = time();
$nowMinusDuration = $now - $rescueDuration;
// Load all non-expired Admin Tools tokens
$db = Factory::getDbo();
$query = $db->getQuery(true)
->select('*')
->from($db->qn('#__user_keys'))
->where($db->qn('series') . ' = ' . $db->q(self::series))
->where($db->qn('time') . ' > ' . $db->q($nowMinusDuration))
->where($db->qn('uastring') . ' = ' . $db->q($combined));
if (version_compare(JVERSION, '3.999.999', 'le'))
{
$query->where($db->qn('invalid') . ' = ' . $db->q(0));
}
$entries = $db->setQuery($query)->loadObjectList();
// No entry? No user.
if (empty($entries))
{
return null;
}
// Loop all entries until we find a matching token
foreach ($entries as $entry)
{
// FYI: Clean text passwords are always truncated to 72 chars. So shorten tokens will always validate
// https://stackoverflow.com/a/28951717/485241
if (!UserHelper::verifyPassword($token, $entry->token))
{
continue;
}
// Mark token as used
$entry->invalid = 1;
$db->updateObject('#__user_keys', $entry, 'id');
return $entry->user_id;
}
// If we're here there was no matching token.
return null;
}
/**
* Removes all expired Admin Tools tokens
*
* @return void
*/
private static function removeExpiredTokens()
{
$db = Factory::getDbo();
$expiration = time() - 60 * self::getTimeout();
$query = $db->getQuery(true)
->delete('#__user_keys')
->where($db->qn('series') . ' = ' . $db->q(self::series))
->where($db->quoteName('time') . ' < ' . $db->quote($expiration));
$db->setQuery($query)->execute();
}
/**
* Send an email with the Rescue URL to the user
*
* @param User $user The user requesting the Rescue URL
* @param string $token The Rescue URL token already saved in the database
* @param AtsystemUtilExceptionshandler $exceptionsHandler The exceptions handler, used to fetch email templates
*
* @return void
*/
private static function sendRescueURLEmail(User $user, $token, AtsystemUtilExceptionshandler $exceptionsHandler)
{
// Load the component's administrator translation files
$jlang = Factory::getLanguage();
$jlang->load('com_admintools', JPATH_ADMINISTRATOR, 'en-GB', true);
$jlang->load('com_admintools', JPATH_ADMINISTRATOR, $jlang->getDefault(), true);
$jlang->load('com_admintools', JPATH_ADMINISTRATOR, null, true);
$config = Factory::getConfig();
// Get the reason in human readable format
$txtReason = Text::_('ADMINTOOLS_RESCUEURL');
// Get the backend Rescue URL
[$isCli, $isAdmin] = self::isCliAdmin();
$baseURL = Uri::base();
$url = $isAdmin ? str_replace('/administrator', '', $baseURL) : $baseURL;
$url = rtrim($url, '/') . '/administrator/index.php?admintools_rescue_token=' . $token;
try
{
$mailer = Factory::getMailer();
$mailfrom = $config->get('mailfrom');
$fromname = $config->get('fromname');
// Let's get the most suitable email template
$template = $exceptionsHandler->getEmailTemplate('rescueurl', true);
// Got no template, the user didn't published any email template, or the template doesn't want us to
// send a notification email. Anyway, let's stop here
if (!$template)
{
return;
}
$subject = $template[0];
$body = $template[1];
$tokens = $exceptionsHandler->getEmailVariables($txtReason, [
'[RESCUEURL]' => $url,
'[USER]' => $user->username,
]);
$subject = str_replace(array_keys($tokens), array_values($tokens), $subject);
$body = str_replace(array_keys($tokens), array_values($tokens), $body);
// This line is required because SpamAssassin is BROKEN
$mailer->Priority = 3;
$mailer->isHtml(true);
$mailer->setSender([$mailfrom, $fromname]);
// Resets the recipients, otherwise they will pile up
$mailer->clearAllRecipients();
if ($mailer->addRecipient($user->email) === false)
{
return;
}
$mailer->setSubject($subject);
$mailer->setBody($body);
$mailer->Send();
}
catch (Exception $e)
{
}
}
/**
* @return \Joomla\CMS\Session\Session
* @throws Exception
*/
private static function getSession()
{
if (version_compare(JVERSION, '3.999.999', 'le'))
{
return Factory::getSession();
}
return Factory::getApplication()->getSession();
}
/**
* Get a variable from the user session
*
* @param string $name The name of the variable to set
* @param string $default (optional) The default value to return if the variable does not exit, default: null
* @param string $namespace (optional) The variable's namespace e.g. the component name. Default: 'default'
*
* @return mixed
*/
private static function getSessionVar($name, $default = null, $namespace = 'default')
{
$session = self::getSession();
// Joomla 3
if (version_compare(JVERSION, '3.9999.9999', 'le'))
{
return $session->get($name, $default, $namespace);
}
// Joomla 4
if (empty($namespace))
{
return $session->get($name, $default);
}
$registry = $session->get('registry');
if (is_null($registry))
{
$registry = new Registry();
$session->set('registry', $registry);
}
return $registry->get($namespace . '.' . $name, $default);
}
/**
* Set a variable in the user session
*
* @param string $name The name of the variable to set
* @param string $value (optional) The value to set it to, default is null
* @param string $namespace (optional) The variable's namespace e.g. the component name. Default: 'default'
*
* @return void
*/
private static function setSessionVar($name, $value = null, $namespace = 'default')
{
$session = self::getSession();
// Joomla 3
if (version_compare(JVERSION, '3.9999.9999', 'le'))
{
$session->set($name, $value, $namespace);
}
// Joomla 4
if (empty($namespace))
{
$session->set($name, $value);
return;
}
$registry = $session->get('registry');
if (is_null($registry))
{
$registry = new Registry();
$session->set('registry', $registry);
}
$registry->set($namespace . '.' . $name, $value);
}
}