servnest/sftpgo-auth.php

<?php

const DEBUG = false;
!DEBUG or ob_start();

require 'init.php';

function deny($reason) {
	!DEBUG or file_put_contents(ROOT_PATH . '/db/debug.txt', ob_get_contents() . $reason . LF);
	http_response_code(403);
	exit();
}

if (CONF['common']['services']['ht'] !== 'enabled')
	deny('Service not enabled.');

$auth_data = json_decode(file_get_contents('php://input'), true, flags: JSON_THROW_ON_ERROR);

$username = hashUsername($auth_data['username']);

if (usernameExists($username) !== true)
	deny('This username doesn\'t exist.');

if (!in_array('ht', explode(',', query('select', 'users', ['username' => $username], 'services')[0]), true))
	deny('Service not enabled for this user.');

$id = query('select', 'users', ['username' => $username], 'id')[0];

if (checkPassword($id, $auth_data['password']) !== true)
	deny('Wrong password.');

echo '
{
	"status": 1,
	"username": ' . json_encode($auth_data['username']) . ',
	"home_dir": "' . CONF['ht']['ht_path'] . '/fs/' . $id . '",
	"quota_size": ' . ((query('select', 'users', ['id' => $id], 'type')[0] === 'approved') ? CONF['ht']['user_quota_approved'] : CONF['ht']['user_quota_testing']) . ',
	"permissions": {
		"/": [
			"*"
		]
	}
}
';

!DEBUG or file_put_contents(ROOT_PATH . '/db/debug.txt', ob_get_contents());
http_response_code(200);
SFTPGo authentication 2022-05-19 16:59:32 +02:00			`<?php`

Add debug option in SFTPGo authenticator 2023-04-15 18:01:19 +02:00			`const DEBUG = false;`
			`!DEBUG or ob_start();`

init.php + jobs + job to delete old testing accounts 2023-06-08 17:36:44 +02:00			`require 'init.php';`
SFTPGo authentication 2022-05-19 16:59:32 +02:00
Add debug message when denying SFTP login 2023-06-03 18:44:48 +02:00			`function deny($reason) {`
			`!DEBUG or file_put_contents(ROOT_PATH . '/db/debug.txt', ob_get_contents() . $reason . LF);`
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00			`http_response_code(403);`
			`exit();`
			`}`

			`if (CONF['common']['services']['ht'] !== 'enabled')`
Add debug message when denying SFTP login 2023-06-03 18:44:48 +02:00			`deny('Service not enabled.');`
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00
Use Apache - Allows customization through .htaccess - No need to configure or reload a server when adding a site - Content negotiation 2023-04-10 00:50:42 +02:00			`$auth_data = json_decode(file_get_contents('php://input'), true, flags: JSON_THROW_ON_ERROR);`
SFTPGo authentication 2022-05-19 16:59:32 +02:00
Internal ID, Argon2 for usernames, username changes 2022-11-30 23:12:42 +01:00			`$username = hashUsername($auth_data['username']);`
Use a hash as internal username 2022-11-26 21:45:48 +01:00
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00			`if (usernameExists($username) !== true)`
Add debug message when denying SFTP login 2023-06-03 18:44:48 +02:00			`deny('This username doesn\'t exist.');`
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00
Minor fixes 2023-03-18 18:38:27 +01:00			`if (!in_array('ht', explode(',', query('select', 'users', ['username' => $username], 'services')[0]), true))`
Add debug message when denying SFTP login 2023-06-03 18:44:48 +02:00			`deny('Service not enabled for this user.');`
Minor fixes 2023-03-18 18:38:27 +01:00
Internal ID, Argon2 for usernames, username changes 2022-11-30 23:12:42 +01:00			`$id = query('select', 'users', ['username' => $username], 'id')[0];`

Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00			`if (checkPassword($id, $auth_data['password']) !== true)`
Add debug message when denying SFTP login 2023-06-03 18:44:48 +02:00			`deny('Wrong password.');`
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00
			`echo '`
			`{`
			`"status": 1,`
			`"username": ' . json_encode($auth_data['username']) . ',`
Use Apache - Allows customization through .htaccess - No need to configure or reload a server when adding a site - Content negotiation 2023-04-10 00:50:42 +02:00			`"home_dir": "' . CONF['ht']['ht_path'] . '/fs/' . $id . '",`
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00			`"quota_size": ' . ((query('select', 'users', ['id' => $id], 'type')[0] === 'approved') ? CONF['ht']['user_quota_approved'] : CONF['ht']['user_quota_testing']) . ',`
			`"permissions": {`
			`"/": [`
			`"*"`
			`]`
Set user's quota_files in SFTPGo 2022-06-28 22:08:34 +02:00			`}`
SFTPGo authentication 2022-05-19 16:59:32 +02:00			`}`
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00			`';`
Add debug option in SFTPGo authenticator 2023-04-15 18:01:19 +02:00
			`!DEBUG or file_put_contents(ROOT_PATH . '/db/debug.txt', ob_get_contents());`
Fix sftpgo-auth.php 2023-03-09 14:40:26 +01:00			`http_response_code(200);`