/usr/share/php/Horde/Auth/Login.php is in php-horde-auth 2.2.2-1ubuntu1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 | <?php
/**
* Copyright 2004-2017 Horde LLC (http://www.horde.org/)
*
* See the enclosed file COPYING for license information (LGPL). If you did
* not receive this file, see http://www.horde.org/licenses/lgpl21.
*
* @author Jan Schneider <jan@horde.org>
* @category Horde
* @license http://www.horde.org/licenses/lgpl21 LGPL-2.1
* @package Auth
*/
/**
* The Horde_Auth_login:: class provides a system login implementation of
* the Horde authentication system.
*
* This Auth driver is useful if you have a shadow password system
* where the Horde_Auth_Passwd driver doesn't work.
*
* @author Jan Schneider <jan@horde.org>
* @category Horde
* @copyright 2004-2017 Horde LLC
* @license http://www.horde.org/licenses/lgpl21 LGPL-2.1
* @package Auth
*/
class Horde_Auth_Login extends Horde_Auth_Base
{
/**
* List of users that should be excluded from being listed/handled
* in any way by this driver.
*
* @var array
*/
protected $_exclude = array(
'root', 'daemon', 'bin', 'sys', 'sync', 'games', 'man', 'lp', 'mail',
'news', 'uucp', 'proxy', 'postgres', 'www-data', 'backup', 'operator',
'list', 'irc', 'gnats', 'nobody', 'identd', 'sshd', 'gdm', 'postfix',
'mysql', 'cyrus', 'ftp'
);
/**
* Constructs a new Login authentication object.
*
* @param array $params Optional parameters:
* <pre>
* 'location' - (string) Location of the su binary.
* DEFAULT: /bin/su
* </pre>
*/
public function __construct(array $params = array())
{
if (empty($params['location'])) {
$params['location'] = '/bin/su';
}
parent::__construct($params);
}
/**
* Find out if a set of login credentials are valid.
*
* @param string $userId The userId to check.
* @param array $credentials An array of login credentials.
*
* @return boolean Whether or not the credentials are valid.
*/
protected function _authenticate($userId, $credentials)
{
if (empty($credentials['password'])) {
throw new Horde_Auth_Exception('', Horde_Auth::REASON_BADLOGIN);
}
$proc = @popen($this->_location . ' -c /bin/true ' . $userId, 'w');
if (!is_resource($proc)) {
throw new Horde_Auth_Exception('', Horde_Auth::REASON_FAILED);
}
fwrite($proc, $credentials['password']);
if (@pclose($proc) !== 0) {
throw new Horde_Auth_Exception('', Horde_Auth::REASON_FAILED);
}
}
}
|