19 Sep 2023

code-boxx · code-boxx · commit 013d73fa7166 · 2023-09-19T19:10:31.000+08:00
Small fix to "suspended" user level. Alternate login methods will also reject suspended users now.
diff --git a/login with google/lib/LIB-GOOIN.php b/login with google/lib/LIB-GOOIN.php
@@ -54,12 +54,22 @@ function go () {
 
     // (C4) USER HAS ALREADY TIED GOOGLE TO ACCOUNT - LOGIN
     $user = $this->get($guser["id"]);
-    if (is_array($user)) { $this->login($user); }
+    if (is_array($user)) {
+      if ($user["user_level"]=="S") {
+        $this->error = "Invalid user";
+        return;
+      }
+      $this->login($user);
+    }
 
     // (C5) HAS EXISTING ACCOUNT (EMAIL) - TIE TO ACCOUNT & LOGIN
     $this->Core->load("Users");
     $user = $this->Users->get($guser["email"]);
     if (is_array($user)) {
+      if ($user["user_level"]=="S") {
+        $this->error = "Invalid user";
+        return;
+      }
       $this->Users->hashAdd($user["user_id"], "GOO", $guser["id"]);
       $this->login($user);
     }
diff --git a/login with nfc/lib/LIB-NFCIN.php b/login with nfc/lib/LIB-NFCIN.php
@@ -45,7 +45,7 @@ function login ($token) {
     // (D2) VERIFY TOKEN
     if ($valid) {
       $user = $this->Users->get($token[0], "NFC");
-      $valid = (is_array($user) && password_verify($token[1], $user["hash_code"]));
+      $valid = (is_array($user) && $user["user_level"]!="S" && password_verify($token[1], $user["hash_code"]));
     }
 
     // (D3) SESSION START
diff --git a/login with webauthn/lib/LIB-WAIN.php b/login with webauthn/lib/LIB-WAIN.php
@@ -43,6 +43,10 @@ function getUser ($email) {
       $this->error = "Please register for passwordless login first.";
       return false;
     }
+    if ($user["user_level"]=="S") {
+      $this->error = "Invalid user or password.";
+      return false;
+    }
     $user["hash_code"] = json_decode($user["hash_code"]);
     $user["hash_code"]->credentialId = hex2bin($user["hash_code"]->credentialId);
     $user["hash_code"]->AAGUID = hex2bin($user["hash_code"]->AAGUID);
diff --git a/users/lib/LIB-Users.php b/users/lib/LIB-Users.php
@@ -95,7 +95,7 @@ function del ($id) {
   //  $id : user id
   function suspend ($id) {
     $this->DB->update("users",
-      ["`user_level`=?"], "`user_id`=?",
+      ["user_level"], "`user_id`=?",
       ["S", $id]
     );
   }

Original file line number	Diff line number	Diff line change
`@@ -45,7 +45,7 @@ function login ($token) {`
`45`	`45`	`// (D2) VERIFY TOKEN`
`46`	`46`	`if ($valid) {`
`47`	`47`	`$user = $this->Users->get($token[0], "NFC");`
`48`		`- $valid = (is_array($user) && password_verify($token[1], $user["hash_code"]));`
	`48`	`+ $valid = (is_array($user) && $user["user_level"]!="S" && password_verify($token[1], $user["hash_code"]));`
`49`	`49`	`}`
`50`	`50`
`51`	`51`	`// (D3) SESSION START`
Original file line number	Diff line number	Diff line change
`@@ -95,7 +95,7 @@ function del ($id) {`
`95`	`95`	`// $id : user id`
`96`	`96`	`function suspend ($id) {`
`97`	`97`	`$this->DB->update("users",`
`98`		- ["`user_level`=?"], "`user_id`=?",
	`98`	+ ["user_level"], "`user_id`=?",
`99`	`99`	`["S", $id]`
`100`	`100`	`);`
`101`	`101`	`}`