XMPP User and domain changes and Metronome SQL Auth scripts

Author: qroac

install/apps/metronome_libs/mod_auth_external/authenticate_isp.php

@@ -12,7 +12,7 @@ while read ACTION USER HOST PASS ; do
 
     case $ACTION in
         "auth")
-            if [ `/usr/bin/php /usr/lib/metronome/spicy-modules/mod_auth_external/authenticate_isp.php $USER $HOST $PASS` == 1 ] ; then
+            if [ `/usr/bin/php /usr/lib/metronome/isp-modules/mod_auth_external/db_auth.php $USER $HOST $PASS 2>/dev/null` == 1 ] ; then
                 echo $AUTH_OK
                 [ $USELOG == true ] && { echo "AUTH OK" >> $LOGFILE; }
             else
@@ -21,17 +21,17 @@ while read ACTION USER HOST PASS ; do
             fi
         ;;
         "isuser")
-             if [ `/usr/bin/php /usr/lib/metronome/spicy-modules/mod_auth_external/isuser_isp.php $USER $HOST` == 1 ] ; then
+             if [ `/usr/bin/php /usr/lib/metronome/isp-modules/mod_auth_external/db_isuser.php $USER $HOST 2>/dev/null` == 1 ] ; then
                 echo $AUTH_OK
-                [ $USELOG == true ] && { echo "AUTH OK" >> $LOGFILE; }
+                [ $USELOG == true ] && { echo "ISUSER OK" >> $LOGFILE; }
             else
                 echo $AUTH_FAILED
-                [ $USELOG == true ] && { echo "AUTH FAILED" >> $LOGFILE; }
+                [ $USELOG == true ] && { echo "ISUSER FAILED" >> $LOGFILE; }
             fi
         ;;
         *)
             echo $AUTH_FAILED
-            [ $USELOG == true ] && { echo "NO ACTION GIVEN" >> $LOGFILE; }
+            [ $USELOG == true ] && { echo "UNKNOWN ACTION GIVEN: $ACTION" >> $LOGFILE; }
         ;;
     esac
 

install/apps/metronome_libs/mod_auth_external/authenticate_isp.sh

@@ -0,0 +1,58 @@
+<?php
+ini_set('display_errors', false);
+require_once('db_conf.inc.php');
+
+try{
+    // Connect database
+    $db = new mysqli($db_host, $db_user, $db_pass, $db_name);
+    result_false(mysqli_connect_errno());
+
+    // Get arguments
+    $arg_email = '';
+    $arg_password = '';
+
+    result_false(count($argv) != 4);
+    $arg_email = $argv[1].'@'.$argv[2];
+    $arg_password = $argv[3];
+
+    // check for existing user
+    $dbmail = $db->real_escape_string($arg_email);
+    $result = $db->query("SELECT jid, password FROM xmpp_user WHERE jid LIKE '".$dbmail."' AND active='y' AND server_id='".$isp_server_id."'");
+    result_false($result->num_rows != 1);
+
+    $user = $result->fetch_object();
+
+    // check for domain autologin api key
+    $domain_key = 'f47kmm5Yh5hJzSws2KTS';
+
+    checkAuth($argv[1], $argv[2], $arg_password, $user->password, $domain_key);
+}catch(Exception $ex){
+    echo 0;
+    exit();
+}
+
+function result_false($cond = true){
+    if(!$cond) return;
+    echo 0;
+    exit();
+}
+function result_true(){
+    echo 1;
+    exit();
+}
+function checkAuth($user, $domain, $pw_arg, $pw_db, $domain_key){
+    if(crypt($pw_arg, $pw_db) == $pw_db)
+        result_true();
+
+    if($domain_key){
+        $datetime = new DateTime();
+        $datetime->setTimezone(new DateTimeZone("UTC"));
+        for($t = $datetime->getTimestamp(); $t >= $datetime->getTimestamp()-30; $t--){
+            $pw_api = md5($domain.'@'.$domain_key.'@'.$user.'@'.$t);
+            if($pw_api == $pw_arg)
+                result_true();
+        }
+    }
+    result_false();
+}
+?>

install/apps/metronome_libs/mod_auth_external/db_auth.php

@@ -0,0 +1,6 @@
+<?php
+$db_user = '{mysql_server_ispconfig_user}';
+$db_pass = '{mysql_server_ispconfig_password}';
+$db_name = '{mysql_server_database}';
+$db_host = '{mysql_server_ip}';
+$isp_server_id = '{server_id}';

install/apps/metronome_libs/mod_auth_external/db_conf.inc.php

@@ -0,0 +1,37 @@
+<?php
+ini_set('display_errors', false);
+require_once('db_conf.inc.php');
+
+try{
+    // Connect database
+    $db = new mysqli($db_host, $db_user, $db_pass, $db_name);
+    result_false(mysqli_connect_errno());
+
+    // Get arguments
+    $arg_email = '';
+
+    result_false(count($argv) != 3);
+    $arg_email = $argv[1].'@'.$argv[2];
+
+    // check for existing user
+    $dbmail = $db->real_escape_string($arg_email);
+    $result = $db->query("SELECT jid, password FROM xmpp_user WHERE jid LIKE '".$dbmail."' AND active='y' AND server_id='".$isp_server_id."'");
+    result_false($result->num_rows != 1);
+    result_true();
+
+}catch(Exception $ex){
+    echo 0;
+    exit();
+}
+
+function result_false($cond = true){
+    if(!$cond) return;
+    echo 0;
+    exit();
+}
+function result_true(){
+    echo 1;
+    exit();
+}
+
+?>

install/apps/metronome_libs/mod_auth_external/db_isuser.php

@@ -1339,6 +1339,16 @@ public function configure_xmpp() {
         // Copy isp libs
         if(!@is_dir('/usr/lib/metronome/isp-modules')) mkdir('/usr/lib/metronome/isp-modules', 0755, true);
         caselog('cp -rf apps/metronome_libs/* /usr/lib/metronome/isp-modules/', __FILE__, __LINE__);
+        // Process db config
+        $full_file_name = '/usr/lib/metronome/isp-modules/mod_auth_external/db_conf.inc.php';
+        $content = rf($full_file_name);
+        $content = str_replace('{mysql_server_ispconfig_user}', $conf['mysql']['ispconfig_user'], $content);
+        $content = str_replace('{mysql_server_ispconfig_password}', $conf['mysql']['ispconfig_password'], $content);
+        $content = str_replace('{mysql_server_database}', $conf['mysql']['database'], $content);
+        $content = str_replace('{mysql_server_ip}', $conf['mysql']['ip'], $content);
+        $content = str_replace('{server_id}', $conf['server_id'], $content);
+        wf($full_file_name, $content);
+
 
         // Copy init script
         caselog('cp -f apps/metronome-init /etc/init.d/metronome', __FILE__, __LINE__);

install/apps/metronome_libs/mod_auth_external/isuser_isp.php

@@ -23,7 +23,7 @@ CREATE TABLE `xmpp_domain` (
   `server_id` int(11) unsigned NOT NULL default '0',
   `domain` varchar(255) NOT NULL default '',
 
-  `auth_method` ENUM( 'isp', 'plain', 'hashed' ) NOT NULL default 'hashed',
+  `management_method` ENUM( 'normal', 'maildomain' ) NOT NULL default 'normal',
   `public_registration` ENUM( 'n', 'y' ) NOT NULL default 'n',
   `registration_url` varchar(255) NOT NULL DEFAULT '',
   `registration_message` varchar(255) NOT NULL DEFAULT '',
@@ -66,12 +66,8 @@ CREATE TABLE `xmpp_user` (
   `sys_perm_group` varchar(5) NOT NULL default '',
   `sys_perm_other` varchar(5) NOT NULL default '',
   `server_id` int(11) unsigned NOT NULL default '0',
-  `xmpp_domain_id` int(11) unsigned NOT NULL default '0',
-  `login` varchar(255) NOT NULL default '',
   `jid` varchar(255) NOT NULL default '',
   `password` varchar(255) NOT NULL default '',
-  `is_domain_admin` enum('n','y') NOT NULL default 'n',
-  `is_muc_admin` enum('n','y') NOT NULL default 'n',
   `active` enum('n','y') NOT NULL DEFAULT 'n',
   PRIMARY KEY  (`xmppuser_id`),
   KEY `server_id` (`server_id`,`jid`),

install/lib/installer_base.lib.php

@@ -1977,7 +1977,7 @@ CREATE TABLE `xmpp_domain` (
   `server_id` int(11) unsigned NOT NULL default '0',
   `domain` varchar(255) NOT NULL default '',
 
-  `auth_method` ENUM( 'isp', 'plain', 'hashed' ) NOT NULL default 'hashed',
+  `management_method` ENUM( 'normal', 'maildomain' ) NOT NULL default 'normal',
   `public_registration` ENUM( 'n', 'y' ) NOT NULL default 'n',
   `registration_url` varchar(255) NOT NULL DEFAULT '',
   `registration_message` varchar(255) NOT NULL DEFAULT '',
@@ -2022,12 +2022,8 @@ CREATE TABLE `xmpp_user` (
   `sys_perm_group` varchar(5) NOT NULL default '',
   `sys_perm_other` varchar(5) NOT NULL default '',
   `server_id` int(11) unsigned NOT NULL default '0',
-  `xmpp_domain_id` int(11) unsigned NOT NULL default '0',
-  `login` varchar(255) NOT NULL default '',
   `jid` varchar(255) NOT NULL default '',
   `password` varchar(255) NOT NULL default '',
-  `is_domain_admin` enum('n','y') NOT NULL default 'n',
-  `is_muc_admin` enum('n','y') NOT NULL default 'n',
   `active` enum('n','y') NOT NULL DEFAULT 'n',
   PRIMARY KEY  (`xmppuser_id`),
   KEY `server_id` (`server_id`,`jid`),

install/sql/incremental/upd_0081.sql

@@ -98,11 +98,11 @@
 			'maxlength' => '255',
 			'searchable' => 1
 		),
-		'auth_method' => array (
+		'management_method' => array (
 			'datatype'      => 'VARCHAR',
 			'formtype'      => 'SELECT',
-			'default'       => '1',
-			'value'         => array(0 => 'Plain', 1 => 'Hashed', 2 => 'By Email Mailbox')
+			'default'       => '0',
+			'value'         => array(0 => 'Normal', 1 => 'By Mail Domain')
 		),
         'public_registration' => array (
             'datatype' => 'VARCHAR',