Halaman utama Jelajahi Bantuan
Masuk
mirrors
/
mailcow-dockerized
cermin dari https://github.com/mailcow/mailcow-dockerized
2
0
Fork 0
Berkas Masalah 0 Wiki
Pohon: 2ba64e93f9
Ranting Tag
mailcow-dockeri...
/
data
/
conf
/
dovecot
/
auth
/
mailcowauth.php

mailcowauth.php 2.5 KB
Riwayat Mentahan

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. <?php
    2. 

  2. ini_set('error_reporting', 0);
    3. 

  3. header('Content-Type: application/json');
    4. 

  4. 

  5. $post = trim(file_get_contents('php://input'));
    6. 

  6. if ($post) {
    7. 

  7.   $post = json_decode($post, true);
    8. 

  8. }
    9. 

  9. 

  10. 

  11. $return = array("success" => false);
    12. 

  12. if(!isset($post['username']) || !isset($post['password']) || !isset($post['real_rip'])){
    13. 

  13.   error_log("MAILCOWAUTH: Bad Request");
    14. 

  14.   http_response_code(400); // Bad Request
    15. 

  15.   echo json_encode($return); 
    16. 

  16.   exit();
    17. 

  17. }
    18. 

  18. 

  19. require_once('../../../web/inc/vars.inc.php');
    20. 

  20. if (file_exists('../../../web/inc/vars.local.inc.php')) {
    21. 

  21.   include_once('../../../web/inc/vars.local.inc.php');
    22. 

  22. }
    23. 

  23. require_once '../../../web/inc/lib/vendor/autoload.php';
    24. 

  24. 

  25. // Init database
    26. 

  26. $dsn = $database_type . ":unix_socket=" . $database_sock . ";dbname=" . $database_name;
    27. 

  27. $opt = [
    28. 

  28.     PDO::ATTR_ERRMODE            => PDO::ERRMODE_EXCEPTION,
    29. 

  29.     PDO::ATTR_DEFAULT_FETCH_MODE => PDO::FETCH_ASSOC,
    30. 

  30.     PDO::ATTR_EMULATE_PREPARES   => false,
    31. 

  31. ];
    32. 

  32. try {
    33. 

  33.   $pdo = new PDO($dsn, $database_user, $database_pass, $opt);
    34. 

  34. }
    35. 

  35. catch (PDOException $e) {
    36. 

  36.   error_log("MAILCOWAUTH: " . $e . PHP_EOL);
    37. 

  37.   http_response_code(500); // Internal Server Error
    38. 

  38.   echo json_encode($return); 
    39. 

  39.   exit;
    40. 

  40. }
    41. 

  41. 

  42. // Load core functions first
    43. 

  43. require_once 'functions.inc.php';
    44. 

  44. require_once 'functions.auth.inc.php';
    45. 

  45. require_once 'sessions.inc.php';
    46. 

  46. require_once 'functions.mailbox.inc.php';
    47. 

  47. 

  48. 

  49. $isSOGoRequest = $post['real_rip'] == getenv('IPV4_NETWORK') . '.248';
    50. 

  50. $result = false;
    51. 

  51. $protocol = $post['protocol'];
    52. 

  52. if ($isSOGoRequest) {
    53. 

  53.   $protocol = null;
    54. 

  54.   // This is a SOGo Auth request. First check for SSO password.
    55. 

  55.   $sogo_sso_pass = file_get_contents("/etc/sogo-sso/sogo-sso.pass");
    56. 

  56.   if ($sogo_sso_pass === $post['password']){
    57. 

  57.     error_log('MAILCOWAUTH: SOGo SSO auth for user ' . $post['username']);
    58. 

  58.     $result = true;
    59. 

  59.   }
    60. 

  60.   
    61. 

  61. }
    62. 

  62. if ($result === false){
    63. 

  63.   $result = apppass_login($post['username'], $post['password'], $protocol, array(
    64. 

  64.     'is_internal' => true,
    65. 

  65.     'remote_addr' => $post['real_rip']
    66. 

  66.   ));
    67. 

  67.   if ($result) error_log('MAILCOWAUTH: App auth for user ' . $post['username']);
    68. 

  68. }
    69. 

  69. if ($result === false){
    70. 

  70.   $result = user_login($post['username'], $post['password'], $protocol, array('is_internal' => true));
    71. 

  71.   if ($result) error_log('MAILCOWAUTH: User auth for user ' . $post['username']);
    72. 

  72. }
    73. 

  73. 

  74. if ($result) {
    75. 

  75.   http_response_code(200); // OK
    76. 

  76.   $return['success'] = true;
    77. 

  77. } else {
    78. 

  78.   error_log("MAILCOWAUTH: Login failed for user " . $post['username']);
    79. 

  79.   http_response_code(401); // Unauthorized
    80. 

  80. }
    81. 

  81. 

  82. 

  83. echo json_encode($return); 
    84. 

  84. session_destroy();
    85. 

  85. exit;
    86.