function initKeys()
{
+ // return false when fail
$dir = $this->getKeyDirectory();
+ if(!$dir) {
+ return false; // only fail case?
+ }
+
if(
file_exists("{$dir}/pub.key") ||
file_exists("{$dir}/pri.key")
){
- return;
+ return true;
}
$ssl = openssl_pkey_new(array(
file_put_contents("{$dir}/pub.key",$pub_key);
file_put_contents("{$dir}/pri.key",$pri_key);
+
+ return true;
}
function lookup($m,$n)
'module' => $m,
'name' => $n
));
+
if($s->find(true)) {
return $s;
}
+
return false;
}
function beforeInsert($q, $roo)
{
- exit;
+ if (isset($q['is_encrypt'])) {
+ $roo->jerr("no direct access for setting encrypted data at present?");
+ }
+ // we store column data in here now - so it has to be insertable.
+ //exit;
}
function getKeyDirectory()
{
$client_dir = HTML_FlexyFramework::get()->Pman['storedir'];
+
$key_dir = $client_dir.'/keys';
- if(!file_exists($key_dir)) {
- $this->checkWritable(get_class($this),__FUNCTION__,$client_dir);
- exec("mkdir -m775 {$key_dir}");
+
+ if(file_exists($key_dir)) {
+ return $key_dir;
}
+
+ if(!is_writable($key_dir)) {
+ return false;
+ }
+
+ mkdir($key_dir, 0755, true);
+
return $key_dir;
}
// should not be sending this the values..
function initSetting($a)
{
- $dir = $this->getKeyDirectory();
-
if(empty($a)) {
return;
}
+ $this->initKeys();
+
$c = $this->lookup($a['module'], $a['name']);
- if($c) {
- return;
- }
- $this->initKeys();
+ $o = $c ? clone($c) : false;
- $s = DB_DataObject::factory('core_setting');
+ $c = $c ? $c : DB_DataObject::factory('core_setting');
- $s->setFrom(array(
+ $c->setFrom(array(
'module' => $a['module'],
'name' => $a['name'],
'description' => $a['description'],
'val' => (!isset($a['is_encrypt']) || $a['is_encrypt'] == 1) ?
$this->encrypt($a['val']) : $a['val'],
- 'is_encrypt' => isset($a['is_encrypt']) ? $a['is_encrypt'] : 1
+ 'is_encrypt' => isset($a['is_encrypt']) ? $a['is_encrypt'] : 1,
+ 'is_valid' => 1
));
- $s->insert();
+ $o ? $c->update($o) : $c->insert();
}
//one key for encrypting all the settings
$key_dir = "{$this->getKeyDirectory()}/pub.key";
if(!file_exists($key_dir)) {
- print_r("Cannot find {$key_dir}");
- exit;
+ return false;
}
$pub_key = file_get_contents($key_dir);
if(!$pub_key) {
- return;
+ return false;
}
- openssl_public_encrypt($v, $cipher, $pub_key);
- return $cipher;
+ openssl_public_encrypt($v, $ciphertext, $pub_key);
+ return $ciphertext;
}
- function checkWritable($cls_name,$func_name,$dir)
+ function decrypt($v)
{
- if(!is_writable($dir)) {
- print_r("Cannot run {$cls_name} :: {$func_name}\n");
- print_r("Directory: {$dir} is not writable by current user\n");
- exit;
+ $key_dir = "{$this->getKeyDirectory()}/pri.key";
+
+ if(!file_exists($key_dir)) {
+ return false;
}
- return true;
+ $pri_key = file_get_contents($key_dir);
+
+ if(!$pri_key) {
+ return false;
+ }
+
+ openssl_private_decrypt($v, $plaintext, $pri_key);
+
+ return $plaintext;
+ }
+
+ function getDecryptVal()
+ {
+
+ if(empty($this->val)) {
+ return false;
+ }
+
+ if(empty($this->is_encrypt)) {
+ return $this->val;
+ }
+
+ return $this->decrypt($this->val);
}
+
}
projects / Pman.Core / blobdiff