قرینه از
https://github.com/matomo-org/matomo.git
synced 2025-08-21 22:47:43 +00:00
9a3ef94df6
* [Coding Style] Enable rule PSR12.Files.FileHeader * Apply CS * Replace Piwik with Matomo in file headers * Unify file headers (position, no. of lines, https links) * Rebuild dist files * Apply CS * Fix system test that relies on line numbers in a file that had the file header updated --------- Co-authored-by: Stefan Giehl <stefan@matomo.org>
96 خطوط
2.3 KiB
PHP
96 خطوط
2.3 KiB
PHP
<?php
|
|
|
|
/**
|
|
* Matomo - free/libre analytics platform
|
|
*
|
|
* @link https://matomo.org
|
|
* @license https://www.gnu.org/licenses/gpl-3.0.html GPL v3 or later
|
|
*/
|
|
|
|
namespace Piwik\Plugins\TwoFactorAuth;
|
|
|
|
use Piwik\Common;
|
|
use Piwik\Exception\NotYetInstalledException;
|
|
use Piwik\Piwik;
|
|
use Piwik\Session\SessionFingerprint;
|
|
use Exception;
|
|
use Piwik\SettingsPiwik;
|
|
|
|
class Validator
|
|
{
|
|
/**
|
|
* @var TwoFactorAuthentication
|
|
*/
|
|
private $twoFa;
|
|
|
|
public function __construct(TwoFactorAuthentication $twoFactorAuthentication)
|
|
{
|
|
$this->twoFa = $twoFactorAuthentication;
|
|
}
|
|
|
|
public function canUseTwoFa()
|
|
{
|
|
if (Common::isPhpCliMode() && (!defined('PIWIK_TEST_MODE') || !PIWIK_TEST_MODE)) {
|
|
// eg when archiving or executing other commands
|
|
return false;
|
|
}
|
|
|
|
if (!SettingsPiwik::isMatomoInstalled()) {
|
|
return false;
|
|
}
|
|
|
|
return !Piwik::isUserIsAnonymous();
|
|
}
|
|
|
|
public function checkCanUseTwoFa()
|
|
{
|
|
Piwik::checkUserIsNotAnonymous();
|
|
|
|
if (!SettingsPiwik::isMatomoInstalled()) {
|
|
throw new NotYetInstalledException('Matomo is not set up yet');
|
|
}
|
|
}
|
|
|
|
public function check2FaIsRequired()
|
|
{
|
|
if (!$this->twoFa->isUserRequiredToHaveTwoFactorEnabled()) {
|
|
throw new Exception('not available');
|
|
}
|
|
}
|
|
|
|
public function check2FaEnabled()
|
|
{
|
|
if (!TwoFactorAuthentication::isUserUsingTwoFactorAuthentication(Piwik::getCurrentUserLogin())) {
|
|
throw new Exception('not available');
|
|
}
|
|
}
|
|
|
|
public function check2FaNotEnabled()
|
|
{
|
|
if (TwoFactorAuthentication::isUserUsingTwoFactorAuthentication(Piwik::getCurrentUserLogin())) {
|
|
throw new Exception('not available');
|
|
}
|
|
}
|
|
|
|
public function checkVerified2FA()
|
|
{
|
|
$sessionFingerprint = $this->getSessionFingerPrint();
|
|
if (!$sessionFingerprint->hasVerifiedTwoFactor()) {
|
|
throw new Exception('not available');
|
|
}
|
|
}
|
|
|
|
public function checkNotVerified2FAYet()
|
|
{
|
|
$sessionFingerprint = $this->getSessionFingerPrint();
|
|
if ($sessionFingerprint->hasVerifiedTwoFactor()) {
|
|
throw new Exception('not available');
|
|
}
|
|
}
|
|
|
|
private function getSessionFingerPrint()
|
|
{
|
|
return new SessionFingerprint();
|
|
}
|
|
}
|