Add AdminerLoginIp

2019-07-19 14:35:20 +02:00 · 2019-07-19 14:35:20 +02:00 · 92d443dac0
parent d71cb127cf
commit 92d443dac0
1 changed files with 42 additions and 0 deletions
--- a/plugins/login-ip.php
+++ b/plugins/login-ip.php
@ -0,0 +1,42 @@
+<?php
+
+/** Check IP address and allow empty password
+* @link https://www.adminer.org/plugins/#use
+* @author Jakub Vrana, https://www.vrana.cz/
+* @license https://www.apache.org/licenses/LICENSE-2.0 Apache License, Version 2.0
+* @license https://www.gnu.org/licenses/gpl-2.0.html GNU General Public License, version 2 (one or other)
+*/
+class AdminerLoginIp {
+	/** @access protected */
+	var $ips;
+	/** @access protected */
+	var $forwarded_for;
+	
+	/** Set allowed IP addresses
+	* @param array IP address prefixes
+	* @param array X-Forwarded-For prefixes if IP address matches, empty array means anything
+	*/
+	function __construct($ips, $forwarded_for = array()) {
+		$this->ips = $ips;
+		$this->forwarded_for= $forwarded_for;
+	}
+
+	function login($login, $password) {
+		foreach ($this->ips as $ip) {
+			if (strncasecmp($_SERVER["REMOTE_ADDR"], $ip, strlen($ip))) {
+				if (!$this->forwarded_for) {
+					return true;
+				}
+				if ($_SERVER["HTTP_X_FORWARDED_FOR"]) {
+					foreach ($this->forwarded_for as $forwarded_for) {
+						if (strncasecmp(preg_replace('~.*, *~', '', $_SERVER["HTTP_X_FORWARDED_FOR"]), $forwarded_for, strlen($forwarded_for))) {
+							return true;
+						}
+					}
+				}
+			}
+		}
+		return false;
+	}
+
+}