Merge pull request hestiacp#2899 from jaapmarcus/fix/add-yescrypt-support-api

Add support for yesscrypt api

Author: ScIT-Raphael

web/api/index.php

@@ -1,5 +1,15 @@
 <?php
 use function Hestiacp\quoteshellarg\quoteshellarg;
+
+try {
+    require_once '../inc/vendor/autoload.php';
+} catch (Throwable $ex) {
+    $errstr = 'Unable able to load required libraries. Please run v-add-sys-phpmailer in command line. Error: ' . $ex->getMessage();
+    trigger_error($errstr);
+    echo $errstr;
+    exit(1);
+}
+
 //die("Error: Disabled");
 define('HESTIA_DIR_BIN', '/usr/local/hestia/bin/');
 define('HESTIA_CMD', '/usr/bin/sudo /usr/local/hestia/bin/');
@@ -71,7 +81,7 @@ function api_legacy(array $request_data) {
             exit;
         }
         $v_ip = quoteshellarg(get_real_user_ip());
-        $output = '';
+        unset($output);
         exec(HESTIA_CMD."v-get-user-salt admin ".$v_ip." json", $output, $return_var);
         $pam = json_decode(implode('', $output), true);
         $salt = $pam['admin']['SALT'];
@@ -84,6 +94,16 @@ function api_legacy(array $request_data) {
             $hash = crypt($password, '$6$rounds=5000$'.$salt.'$');
             $hash = str_replace('$rounds=5000', '', $hash);
         }
+        if ($method == 'yescrypt') {
+            $v_password = tempnam("/tmp", "vst");
+            $fp = fopen($v_password, "w");
+            fwrite($fp, $password."\n");
+            fclose($fp);
+            unset($output);
+            exec(HESTIA_CMD . 'v-check-user-password "admin" '. $password. ' '.$v_ip.' yes', $output, $return_var);
+            $hash = $output[0];
+            unset($output);
+        }
         if ($method == 'des') {
             $hash = crypt($password, $salt);
         }