Trang chủ Khám phá Trợ giúp
Đăng nhập
iProspective
/
dolibarr
3
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Branch: mmidocuments-pdf-filename
Branches Tags
dolibarr
/
htdocs
/
core
/
ajax
/
security.php

security.php 2.0 KB
Permalink Lịch sử Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. <?php
    2. 

  2. /* Copyright (C) 2011-2015 Regis Houssin  <regis.houssin@inodbox.com>
    3. 

  3.  *
    4. 

  4.  * This program is free software; you can redistribute it and/or modify
    5. 

  5.  * it under the terms of the GNU General Public License as published by
    6. 

  6.  * the Free Software Foundation; either version 3 of the License, or
    7. 

  7.  * (at your option) any later version.
    8. 

  8.  *
    9. 

  9.  * This program is distributed in the hope that it will be useful,
    10. 

  10.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    11. 

  11.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
    12. 

  12.  * GNU General Public License for more details.
    13. 

  13.  *
    14. 

  14.  * You should have received a copy of the GNU General Public License
    15. 

  15.  * along with this program. If not, see <https://www.gnu.org/licenses/>.
    16. 

  16.  */
    17. 

  17. 

  18. /**
    19. 

  19.  *       \file       htdocs/core/ajax/security.php
    20. 

  20.  *       \brief      This ajax component is used to generated hash keys for security purposes
    21. 

  21.  *                   like key to use into URL to protect them.
    22. 

  22.  */
    23. 

  23. 

  24. if (!defined('NOTOKENRENEWAL')) {
    25. 

  25. 	define('NOTOKENRENEWAL', '1'); // Disables token renewal
    26. 

  26. }
    27. 

  27. if (!defined('NOREQUIREMENU')) {
    28. 

  28. 	define('NOREQUIREMENU', '1');
    29. 

  29. }
    30. 

  30. if (!defined('NOREQUIREHTML')) {
    31. 

  31. 	define('NOREQUIREHTML', '1');
    32. 

  32. }
    33. 

  33. if (!defined('NOREQUIREAJAX')) {
    34. 

  34. 	define('NOREQUIREAJAX', '1');
    35. 

  35. }
    36. 

  36. if (!defined('NOREQUIRESOC')) {
    37. 

  37. 	define('NOREQUIRESOC', '1');
    38. 

  38. }
    39. 

  39. if (!defined('NOREQUIRETRAN')) {
    40. 

  40. 	define('NOREQUIRETRAN', '1');
    41. 

  41. }
    42. 

  42. 

  43. require '../../main.inc.php';
    44. 

  44. 

  45. /*
    46. 

  46.  * View
    47. 

  47.  */
    48. 

  48. 

  49. //top_htmlhead("", "", 1);  // Replaced with top_httphead. An ajax page does not need html header.
    50. 

  50. top_httphead();
    51. 

  51. 

  52. //print '<!-- Ajax page called with url '.dol_escape_htmltag($_SERVER["PHP_SELF"]).'?'.dol_escape_htmltag($_SERVER["QUERY_STRING"]).' -->'."\n";
    53. 

  53. 

  54. // Registering the location of boxes
    55. 

  55. if (isset($_GET['action']) && !empty($_GET['action'])) {
    56. 

  56. 	if ($_GET['action'] == 'getrandompassword' && ($user->admin || $user->rights->api->apikey->generate)) {
    57. 

  57. 		require_once DOL_DOCUMENT_ROOT.'/core/lib/security2.lib.php';
    58. 

  58. 		$generic = $_GET['generic'] ? true : false;
    59. 

  59. 		echo getRandomPassword($generic);
    60. 

  60. 	}
    61. 

  61. }
    62.