Mirrors/Hauk
1
0
Fork 0
mirror of https://github.com/bilde2910/Hauk.git synced 2026-01-23 18:36:09 +00:00
Code Issues Projects Releases Wiki Activity
Hauk/backend-php/api/create.php
Marius Lindvall 975ec8c2f9 Finish support for E2E encryption
2019-11-28 00:12:39 +01:00

146 lines
4.4 KiB
PHP
Raw Blame History

<?php
// This script handles session initiation for Hauk clients. It creates a session
// ID and associated share URL, and return these to the client.
include("../include/inc.php");
header("X-Hauk-Version: ".BACKEND_VERSION);
requirePOST(
"dur", // Duration in seconds.
"int" // Interval in seconds.
);
// Verify that the client is authorized to connect.
if (!authenticated()) die($LANG['incorrect_password']."\n");
// Perform input validation.
$d = intval($_POST["dur"]);
$i = floatval($_POST["int"]);
$mod = isset($_POST["mod"]) ? intval($_POST["mod"]) : SHARE_MODE_CREATE_ALONE;
if ($d > getConfig("max_duration")) die($LANG['share_too_long']."\n");
if ($i > getConfig("max_duration")) die($LANG['interval_too_long']."\n");
if ($i < getConfig("min_interval")) die($LANG['interval_too_short']."\n");
// Adopting a share means incorporating it into another group share. It is
// enabled by default in the app, but users are free to change this.
$adoptable = isset($_POST["ado"]) ? intval($_POST["ado"]) : 0;
$expire = time() + $d;
$encrypted = isset($_POST["e2e"]) ? intval($_POST["e2e"]) : 0;
// Require additional arguments depending on the given sharing mode.
switch ($mod) {
case SHARE_MODE_CREATE_GROUP:
// End-to-end encryption is not supported for group shares.
if ($encrypted > 0) die($LANG['group_e2e_unsupported']."\n");
requirePOST(
"nic" // Nickname to join the group share with.
);
break;
case SHARE_MODE_JOIN_GROUP:
// End-to-end encryption is not supported for group shares.
if ($encrypted > 0) die($LANG['group_e2e_unsupported']."\n");
requirePOST(
"nic", // Nickname to join the group share with.
"pin" // Group PIN for the group to attach to.
);
break;
}
// Also require salt when creating encrypted shares.
if ($encrypted) {
requirePOST(
"salt" // Salt used to derive the key in PBKDF2.
);
}
// If a custom link is requested, validate the ID.
$custom = filter_input(INPUT_POST, "lid", FILTER_VALIDATE_REGEXP, array("options" => array("regexp" => "/^[\w-]+$/")));
if ($custom === false) $custom = null;
$memcache = memConnect();
// Create a new client session.
$host = new Client($memcache);
$host
->setExpirationTime($expire)
->setInterval($i)
->save();
// This is the default output.
$output = array($LANG['share_mode_unsupported']);
switch ($mod) {
case SHARE_MODE_CREATE_ALONE:
// Create a new solo share and set its arguments.
$share = new SoloShare($memcache);
if ($custom !== null) $share->requestCustomLink($custom);
$share
->setAdoptable($adoptable)
->setHost($host)
->setExpirationTime($expire)
->save();
// Tell the session that it is posting to this share.
$host
->addTarget($share)
->setEncrypted($encrypted, $_POST["salt"])
->save();
$output = array(
"OK",
$host->getSessionID(),
$share->getViewLink(),
$share->getShareID()
);
break;
case SHARE_MODE_CREATE_GROUP:
$nickname = $_POST["nic"];
// Create a new group share and set its arguments.
$share = new GroupShare($memcache);
if ($custom !== null) $share->requestCustomLink($custom);
$share
->addHost($nickname, $host)
->setExpirationTime($expire)
->save();
// Tell the session that it is posting to this share.
$host->addTarget($share)->save();
$output = array(
"OK",
$host->getSessionID(),
$share->getViewLink(),
$share->getGroupPIN(),
$share->getShareID()
);
break;
case SHARE_MODE_JOIN_GROUP:
$nickname = $_POST["nic"];
$pin = $_POST["pin"];
// Fetch an existing group share by its group PIN and add the new host.
$share = Share::fromGroupPIN($memcache, $pin);
if (!$share->exists()) die($LANG['group_pin_invalid']."\n");
$share
->addHost($nickname, $host)
->save();
// Tell the session that it is posting to this share.
$host->addTarget($share)->save();
$output = array(
"OK",
$host->getSessionID(),
$share->getViewLink(),
$share->getShareID()
);
break;
}
foreach ($output as $line) {
echo $line."\n";
}
Reference in a new issue View git blame Copy permalink