Skip to content
GitLab
Select Git revision
  • 6378-orcid-test-method-is-wrong-and-break-orcid-saving
  • dev default
  • core-php8
  • master
  • 6342-update-the-locales-for-1-5
  • 6344-template-issue-when-creating-a-template-with-empty-password-error-message-should-not-be-seen
  • 6365-core-locking-mechanism-is-not-changing-the-mail-ressource-it-does-lock-the-mail-account
  • 6365-core-when-lock-mechanism-is-trigger-the-user-should-not-be-editable-if-not-unlock
  • fusiondirectory-1.5
  • fusiondirectory-1.4
  • fusiondirectory-1.3.1
  • fusiondirectory-1.3
  • fusiondirectory-1.2.3
  • fusiondirectory-1.2.2
  • fusiondirectory-1.2.1
  • fusiondirectory-1.2
  • fusiondirectory-1.1.1
  • fusiondirectory-1.1
  • fusiondirectory-1.0.20
  • fusiondirectory-1.0.19
  • fusiondirectory-1.0.18
  • fusiondirectory-1.0.17
  • fusiondirectory-1.0.16
  • fusiondirectory-1.0.15
  • fusiondirectory-1.0.14
  • fusiondirectory-1.0.13
  • fusiondirectory-1.0.12
  • fusiondirectory-1.0.11
Find file BlameHistoryPermalink
class_CSRFProtection.inc 2.37 KiB
1 
<?php
2 
/*
3 
  This code is part of FusionDirectory (http://www.fusiondirectory.org/)
4 
  Copyright (C) 2017-2019 FusionDirectory
5
6 
  This program is free software; you can redistribute it and/or modify
7 
  it under the terms of the GNU General Public License as published by
8 
  the Free Software Foundation; either version 2 of the License, or
9 
  (at your option) any later version.
10
11 
  This program is distributed in the hope that it will be useful,
12 
  but WITHOUT ANY WARRANTY; without even the implied warranty of
13 
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
14 
  GNU General Public License for more details.
15
16 
  You should have received a copy of the GNU General Public License
17 
  along with this program; if not, write to the Free Software
18 
  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA.
19 
*/
20
21 
class CSRFProtection
22 
{
23 
  public static function check ()
24 
  {
25 
    if (empty($_POST)) {
26 
      return;
27 
    }
28 
    if (empty($_POST['CSRFtoken'])) {
29 
      throw new FusionDirectoryException('CSRF protection token missing');
30 
    }
31
32 
    static::checkHeaders();
33
34 
    if (!session::is_set('CSRFtoken')) {
35 
      throw new FusionDirectoryException('Unexpected CSRF protection token');
36 
    }
37
38 
    if ($_POST['CSRFtoken'] !== static::getToken()) {
39 
      throw new FusionDirectoryException('CSRF protection token invalid');
40 
    }
41 
  }
42
43 
  public static function getToken ()
44 
  {
45 
    if (!session::is_set('CSRFtoken')) {
46 
      session::set('CSRFtoken', standAlonePage::generateRandomHash());
47 
    }
48 
    return session::get('CSRFtoken');
49 
  }
50
51 
  public static function checkHeaders ()
52 
  {
53 
    $origin = FALSE;
54 
    if (!empty($_SERVER['HTTP_ORIGIN'])) {
55 
      $origin = $_SERVER['HTTP_ORIGIN'];
56 
    } elseif (!empty($_SERVER['HTTP_REFERER'])) {
57 
      $origin = $_SERVER['HTTP_REFERER'];
58 
    }
59 
    if ($origin) {
60 
      $origin = preg_replace('|^[^/]+://([^/]+)(/.*)?$|', '\1', $origin);
61 
      $target = FALSE;
62 
      if (!empty($_SERVER['HTTP_X_FORWARDED_HOST'])) {
63 
        /* Only take the first value, there may be several separated by commas */
64 
        list($target) = explode(',', $_SERVER['HTTP_X_FORWARDED_HOST'], 2);
65 
      } elseif (!empty($_SERVER['HTTP_HOST'])) {
66 
        $target = $_SERVER['HTTP_HOST'];
67 
      }
68 
      if ($target && !hash_equals($origin, $target)) {
69 
        throw new FusionDirectoryException('CSRF detected: origin and target are not matching ('.$origin.' != '.$target.')');
70 
      }
71727374
} } }