/**
* Checks whether the Install Tool password is set to its default value.
*
* @return \TYPO3\CMS\Reports\Status An object representing the security of the saltedpassswords extension
*/
protected function getSaltedPasswordsStatus()
{
$value = $GLOBALS['LANG']->getLL('status_ok');
$message = '';
$severity = \TYPO3\CMS\Reports\Status::OK;
/** @var \TYPO3\CMS\Saltedpasswords\Utility\ExtensionManagerConfigurationUtility $configCheck */
$configCheck = GeneralUtility::makeInstance('TYPO3\\CMS\\Saltedpasswords\\Utility\\ExtensionManagerConfigurationUtility');
$message = '<p>' . $GLOBALS['LANG']->getLL('status_saltedPasswords_infoText') . '</p>';
$messageDetail = '';
$flashMessage = $configCheck->checkConfigurationBackend(array(), new \TYPO3\CMS\Core\TypoScript\ConfigurationForm());
if (strpos($flashMessage, 'message-error') !== FALSE) {
$value = $GLOBALS['LANG']->getLL('status_insecure');
$severity = \TYPO3\CMS\Reports\Status::ERROR;
$messageDetail .= $flashMessage;
}
if (strpos($flashMessage, 'message-warning') !== FALSE) {
$severity = \TYPO3\CMS\Reports\Status::WARNING;
$messageDetail .= $flashMessage;
}
if (strpos($flashMessage, 'message-information') !== FALSE) {
$messageDetail .= $flashMessage;
}
$unsecureUserCount = \TYPO3\CMS\Saltedpasswords\Utility\SaltedPasswordsUtility::getNumberOfBackendUsersWithInsecurePassword();
if ($unsecureUserCount > 0) {
$value = $GLOBALS['LANG']->getLL('status_insecure');
$severity = \TYPO3\CMS\Reports\Status::ERROR;
$messageDetail .= '<div class="typo3-message message-warning">' . $GLOBALS['LANG']->getLL('status_saltedPasswords_notAllPasswordsHashed') . '</div>';
}
$message .= $messageDetail;
if (empty($messageDetail)) {
$message = '';
}
return GeneralUtility::makeInstance('TYPO3\\CMS\\Reports\\Status', $GLOBALS['LANG']->getLL('status_saltedPasswords'), $value, $message, $severity);
}
/**
* Checks whether salted Passwords are configured or not.
*
* @return \TYPO3\CMS\Reports\Status An object representing the security of the saltedpassswords extension
*/
protected function getSaltedPasswordsStatus()
{
$value = $GLOBALS['LANG']->getLL('status_ok');
$severity = \TYPO3\CMS\Reports\Status::OK;
/** @var \TYPO3\CMS\Saltedpasswords\Utility\ExtensionManagerConfigurationUtility $configCheck */
$configCheck = GeneralUtility::makeInstance(\TYPO3\CMS\Saltedpasswords\Utility\ExtensionManagerConfigurationUtility::class);
$message = '<p>' . $GLOBALS['LANG']->getLL('status_saltedPasswords_infoText') . '</p>';
$messageDetail = '';
$resultCheck = $configCheck->checkConfigurationBackend(array(), new \TYPO3\CMS\Core\TypoScript\ConfigurationForm());
switch ($resultCheck['errorType']) {
case FlashMessage::INFO:
$messageDetail .= $resultCheck['html'];
break;
case FlashMessage::WARNING:
$severity = \TYPO3\CMS\Reports\Status::WARNING;
$messageDetail .= $resultCheck['html'];
break;
case FlashMessage::ERROR:
$value = $GLOBALS['LANG']->getLL('status_insecure');
$severity = \TYPO3\CMS\Reports\Status::ERROR;
$messageDetail .= $resultCheck['html'];
break;
default:
}
$unsecureUserCount = SaltedPasswordsUtility::getNumberOfBackendUsersWithInsecurePassword();
if ($unsecureUserCount > 0) {
$value = $GLOBALS['LANG']->getLL('status_insecure');
$severity = \TYPO3\CMS\Reports\Status::ERROR;
$messageDetail .= '<div class="panel panel-warning">' . '<div class="panel-body">' . $GLOBALS['LANG']->getLL('status_saltedPasswords_notAllPasswordsHashed') . '</div>' . '</div>';
}
$message .= $messageDetail;
if (empty($messageDetail)) {
$message = '';
}
return GeneralUtility::makeInstance(\TYPO3\CMS\Reports\Status::class, $GLOBALS['LANG']->getLL('status_saltedPasswords'), $value, $message, $severity);
}
