Browse code

Created repository.

DoubleBastionAdmin authored on 26/01/2022 20:32:42
Showing 1 changed files
get-sippass.php
History View file @ 06fbd76
1 1 
new file mode 100644
... ... 
@@ -0,0 +1,46 @@
1 
+<?php
2 
+/**
3 
+ *  Copyright (C) 2021  Double Bastion LLC
4 
+ *
5 
+ *  This file is part of Roundpin, which is licensed under the
6 
+ *  GNU Affero General Public License Version 3.0. The license terms
7 
+ *  are detailed in the "LICENSE.txt" file located in the root directory.
8 
+ */
9 
+
10 
+session_start();
11 
+
12 
+if (isset($_POST['s_ajax_call']) && ($_POST['s_ajax_call'] == $_SESSION['validate_s_access'])) {
13 
+
14 
+ define('ACCESSCONST', TRUE);
15 
+
16 
+ require('db-connect.php');
17 
+
18 
+    $username = $_POST['username'];
19 
+
20 
+    // Get the SIP password for the current user from the 'app_users' table
21 
+    $querysel = $mysqli->query("SELECT username, sip_password, enabled FROM app_users WHERE BINARY username = '$username' AND enabled = 1");
22 
+    $confdatafromdb = $querysel->fetch_assoc();
23 
+
24 
+    // Decrypt the SIP password fetched from the database
25 
+    if ($confdatafromdb['sip_password'] != '' && $confdatafromdb['sip_password'] != null && $confdatafromdb['sip_password'] != 'undefined') {
26 
+
27 
+        $psswdaddedkey = file_get_contents('restr/'.$username.'/pwdkey');
28 
+
29 
+        $componentsippsswd = explode(':', $confdatafromdb['sip_password']);
30 
+
31 
+	$encpwdin = $componentsippsswd[0];
32 
+	$ivkey = $componentsippsswd[1];
33 
+
34 
+	$sippassworddec = openssl_decrypt($encpwdin, 'AES-256-CBC', $psswdaddedkey, false, $ivkey);
35 
+
36 
+        $sipdatafromdb = $sippassworddec;
37 
+
38 
+    } else { $sipdatafromdb = ''; }
39 
+
40 
+    echo json_encode($sipdatafromdb);
41 
+
42 
+} else {
43 
+    header("Location: roundpin-login.php");
44 
+}
45 
+
46 
+?>