snappymail/plugins/recaptcha/index.php

151 lines
4.3 KiB
PHP
Raw Normal View History

2022-02-11 21:21:41 +08:00
<?php
class RecaptchaPlugin extends \RainLoop\Plugins\AbstractPlugin
{
const
NAME = 'reCaptcha',
AUTHOR = 'SnappyMail',
URL = 'https://snappymail.eu/',
VERSION = '2.13',
RELEASE = '2022-12-08',
REQUIRED = '2.23',
2022-02-11 21:21:41 +08:00
CATEGORY = 'General',
LICENSE = 'MIT',
DESCRIPTION = 'A CAPTCHA (v2) is a program that can generate and grade tests that humans can pass but current computer programs cannot. For example, humans can read distorted text as the one shown below, but current computer programs can\'t. More info at https://developers.google.com/recaptcha';
/**
* @return void
*/
public function Init() : void
{
$this->UseLangs(true);
$this->addJs('js/recaptcha.js');
$this->addHook('json.before-login', 'BeforeLogin');
$this->addHook('json.after-login', 'AfterLogin');
$this->addHook('main.content-security-policy', 'ContentSecurityPolicy');
2022-02-11 21:21:41 +08:00
}
protected function configMapping() : array
{
return array(
\RainLoop\Plugins\Property::NewInstance('public_key')->SetLabel('Site key')
->SetAllowedInJs(true)
->SetDefaultValue(''),
\RainLoop\Plugins\Property::NewInstance('private_key')->SetLabel('Secret key')
->SetDefaultValue(''),
\RainLoop\Plugins\Property::NewInstance('theme')->SetLabel('Theme')
->SetAllowedInJs(true)
->SetType(\RainLoop\Enumerations\PluginPropertyType::SELECTION)
->SetDefaultValue(array('light', 'dark')),
\RainLoop\Plugins\Property::NewInstance('error_limit')->SetLabel('Limit')
->SetType(\RainLoop\Enumerations\PluginPropertyType::SELECTION)
->SetDefaultValue(array('0', 1, 2, 3, 4, 5))
->SetDescription('')
);
}
/**
* @return string
*/
private function getCaptchaCacherKey()
{
return 'CaptchaNew/Login/'.\RainLoop\Utils::GetConnectionToken();
}
/**
* @return int
*/
private function getLimit()
{
$iConfigLimit = $this->Config()->Get('plugin', 'error_limit', 0);
if (0 < $iConfigLimit) {
$oCacher = $this->Manager()->Actions()->Cacher();
$sLimit = $oCacher && $oCacher->IsInited() ? $oCacher->Get($this->getCaptchaCacherKey()) : '0';
if (\strlen($sLimit) && \is_numeric($sLimit)) {
$iConfigLimit -= (int) $sLimit;
}
}
return $iConfigLimit;
}
/**
* @return void
*/
public function FilterAppDataPluginSection(bool $bAdmin, bool $bAuth, array &$aConfig) : void
{
if (!$bAdmin && !$bAuth) {
$aConfig['show_captcha_on_login'] = 1 > $this->getLimit();;
2022-02-11 21:21:41 +08:00
}
}
public function BeforeLogin()
2022-02-11 21:21:41 +08:00
{
if (0 >= $this->getLimit()) {
2022-02-11 21:21:41 +08:00
$bResult = false;
$HTTP = \SnappyMail\HTTP\Request::factory();
$oResponse = $HTTP->doRequest('POST', 'https://www.google.com/recaptcha/api/siteverify', array(
'secret' => $this->Config()->Get('plugin', 'private_key', ''),
'response' => $this->Manager()->Actions()->GetActionParam('RecaptchaResponse', '')
));
if ($oResponse) {
$aResp = \json_decode($oResponse->body, true);
if (\is_array($aResp) && isset($aResp['success']) && $aResp['success']) {
$bResult = true;
}
}
if (!$bResult) {
$this->Manager()->Actions()->Logger()->Write('RecaptchaResponse:'.$sResult);
throw new \RainLoop\Exceptions\ClientException(105);
}
}
}
/**
* @param string $sAction
* @param array $aResponse
2022-02-11 21:21:41 +08:00
*/
public function AfterLogin(array &$aResponse)
2022-02-11 21:21:41 +08:00
{
if (isset($aResponse['Result'])) {
2022-02-11 21:21:41 +08:00
$oCacher = $this->Manager()->Actions()->Cacher();
$iConfigLimit = (int) $this->Config()->Get('plugin', 'error_limit', 0);
$sKey = $this->getCaptchaCacherKey();
if (0 < $iConfigLimit && $oCacher && $oCacher->IsInited()) {
if (false === $aResponse['Result']) {
2022-02-11 21:21:41 +08:00
$iLimit = 0;
$sLimut = $oCacher->Get($sKey);
if (\strlen($sLimut) && \is_numeric($sLimut)) {
$iLimit = (int) $sLimut;
}
$oCacher->Set($sKey, ++$iLimit);
if ($iConfigLimit <= $iLimit) {
$aResponse['Captcha'] = true;
2022-02-11 21:21:41 +08:00
}
} else {
$oCacher->Delete($sKey);
}
}
}
}
public function ContentSecurityPolicy(\SnappyMail\HTTP\CSP $CSP)
{
$CSP->script[] = 'https://www.google.com/recaptcha/';
$CSP->script[] = 'https://www.gstatic.com/recaptcha/';
$CSP->frame[] = 'https://www.google.com/recaptcha/';
$CSP->frame[] = 'https://recaptcha.google.com/recaptcha/';
}
2022-02-11 21:21:41 +08:00
}