blob: d096ba83f171139a4ab1637c46293fc6eb8df517 (
plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
|
<?php
/**
* This controller manage API-related features.
*/
class FreshRSS_api_Controller extends Minz_ActionController {
/**
* This action updates the user API password.
*
* Parameter is:
* - apiPasswordPlain: the new user password
*/
public function updatePasswordAction() {
if (!FreshRSS_Auth::hasAccess()) {
Minz_Error::error(403);
}
$return_url = array('c' => 'user', 'a' => 'profile');
if (!Minz_Request::isPost()) {
Minz_Request::forward($return_url, true);
}
$apiPasswordPlain = Minz_Request::param('apiPasswordPlain', '', true);
if ($apiPasswordPlain == '') {
Minz_Request::forward($return_url, true);
}
$username = Minz_Session::param('currentUser');
$userConfig = FreshRSS_Context::$user_conf;
$apiPasswordHash = FreshRSS_password_Util::hash($apiPasswordPlain);
$userConfig->apiPasswordHash = $apiPasswordHash;
$feverKey = FreshRSS_fever_Util::updateKey($username, $apiPasswordPlain);
if (!$feverKey) {
Minz_Request::bad(_t('feedback.api.password.failed'), $return_url);
}
$userConfig->feverKey = $feverKey;
if ($userConfig->save()) {
Minz_Request::good(_t('feedback.api.password.updated'), $return_url);
} else {
Minz_Request::bad(_t('feedback.api.password.failed'), $return_url);
}
}
}
|
