mirror of
https://github.com/FreshRSS/FreshRSS.git
synced 2026-01-07 12:57:54 -05:00
a80a5f48a1
* Pass PHPStan level 8 And prepare for PHPStan level 9 https://phpstan.org/user-guide/rule-levels * Revert wrong replace in comment * Fix PHPStan level 8 * Update PHPStan and other dev dependencies * Remove obsolete comment * noVariableVariables and towards bleedingEdge https://github.com/phpstan/phpstan-strict-rules https://phpstan.org/blog/what-is-bleeding-edge * More bleedingEdge * A bit more PHPStan level 9 * More PHPStan level 9 * Prepare for booleansInConditions Ignore int and null * Revert wrong line * More fixes * Fix keep_max_n_unread * Stricter attribute functions * Stricter callHooks and more PHPStan level 9 * More typing * A tiny more
66 lines
1.6 KiB
PHP
66 lines
1.6 KiB
PHP
<?php
|
|
declare(strict_types=1);
|
|
|
|
/**
|
|
* This controller manage API-related features.
|
|
*/
|
|
class FreshRSS_api_Controller extends FreshRSS_ActionController {
|
|
|
|
/**
|
|
* Update the user API password.
|
|
* Return an error message, or `false` if no error.
|
|
* @return false|string
|
|
*/
|
|
public static function updatePassword(string $apiPasswordPlain) {
|
|
$username = Minz_User::name();
|
|
if ($username == null) {
|
|
return _t('feedback.api.password.failed');
|
|
}
|
|
|
|
$apiPasswordHash = FreshRSS_password_Util::hash($apiPasswordPlain);
|
|
FreshRSS_Context::userConf()->apiPasswordHash = $apiPasswordHash;
|
|
|
|
$feverKey = FreshRSS_fever_Util::updateKey($username, $apiPasswordPlain);
|
|
if (!$feverKey) {
|
|
return _t('feedback.api.password.failed');
|
|
}
|
|
|
|
FreshRSS_Context::userConf()->feverKey = $feverKey;
|
|
if (FreshRSS_Context::userConf()->save()) {
|
|
return false;
|
|
} else {
|
|
return _t('feedback.api.password.failed');
|
|
}
|
|
}
|
|
|
|
/**
|
|
* This action updates the user API password.
|
|
*
|
|
* Parameter is:
|
|
* - apiPasswordPlain: the new user password
|
|
*/
|
|
public function updatePasswordAction(): void {
|
|
if (!FreshRSS_Auth::hasAccess()) {
|
|
Minz_Error::error(403);
|
|
}
|
|
|
|
$return_url = ['c' => 'user', 'a' => 'profile'];
|
|
|
|
if (!Minz_Request::isPost()) {
|
|
Minz_Request::forward($return_url, true);
|
|
}
|
|
|
|
$apiPasswordPlain = Minz_Request::paramString('apiPasswordPlain', true);
|
|
if ($apiPasswordPlain == '') {
|
|
Minz_Request::forward($return_url, true);
|
|
}
|
|
|
|
$error = self::updatePassword($apiPasswordPlain);
|
|
if ($error) {
|
|
Minz_Request::bad($error, $return_url);
|
|
} else {
|
|
Minz_Request::good(_t('feedback.api.password.updated'), $return_url);
|
|
}
|
|
}
|
|
}
|