Permalink
Show file tree
Hide file tree
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Browse files
Browse the repository at this point in the history
Merge pull request from GHSA-ccvh-jh5x-mpg4
Improper authentication
- Loading branch information
Showing
11 changed files
with
404 additions
and
6 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,89 @@ | ||
| <?php | ||
| /** | ||
| * 2007-2020 PrestaShop SA and Contributors | ||
| * | ||
| * NOTICE OF LICENSE | ||
| * | ||
| * This source file is subject to the Open Software License (OSL 3.0) | ||
| * that is bundled with this package in the file LICENSE.txt. | ||
| * It is also available through the world-wide-web at this URL: | ||
| * https://opensource.org/licenses/OSL-3.0 | ||
| * If you did not receive a copy of the license and are unable to | ||
| * obtain it through the world-wide-web, please send an email | ||
| * to license@prestashop.com so we can send you a copy immediately. | ||
| * | ||
| * DISCLAIMER | ||
| * | ||
| * Do not edit or add to this file if you wish to upgrade PrestaShop to newer | ||
| * versions in the future. If you wish to customize PrestaShop for your | ||
| * needs please refer to https://www.prestashop.com for more information. | ||
| * | ||
| * @author PrestaShop SA <contact@prestashop.com> | ||
| * @copyright 2007-2020 PrestaShop SA and Contributors | ||
| * @license https://opensource.org/licenses/OSL-3.0 Open Software License (OSL 3.0) | ||
| * International Registered Trademark & Property of PrestaShop SA | ||
| */ | ||
| use PrestaShop\PrestaShop\Core\Session\SessionInterface; | ||
|
|
||
| class CustomerSessionCore extends ObjectModel implements SessionInterface | ||
| { | ||
| public $id; | ||
|
|
||
| /** @var Id Customer */ | ||
| public $id_customer; | ||
|
|
||
| /** @var string Token */ | ||
| public $token; | ||
|
|
||
| /** | ||
| * @see ObjectModel::$definition | ||
| */ | ||
| public static $definition = [ | ||
| 'table' => 'customer_session', | ||
| 'primary' => 'id_customer_session', | ||
| 'fields' => [ | ||
| 'id_customer' => ['type' => self::TYPE_INT, 'validate' => 'isUnsignedId', 'required' => true], | ||
| 'token' => ['type' => self::TYPE_STRING, 'validate' => 'isSha1', 'size' => 40, 'copy_post' => false], | ||
| ], | ||
| ]; | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function getId() | ||
| { | ||
| return $this->id; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function setUserId($idCustomer) | ||
| { | ||
| $this->id_customer = (int) $idCustomer; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function getUserId() | ||
| { | ||
| return (int) $this->id_customer; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function setToken($token) | ||
| { | ||
| $this->token = (string) $token; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function getToken() | ||
| { | ||
| return $this->token; | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,89 @@ | ||
| <?php | ||
| /** | ||
| * 2007-2020 PrestaShop SA and Contributors | ||
| * | ||
| * NOTICE OF LICENSE | ||
| * | ||
| * This source file is subject to the Open Software License (OSL 3.0) | ||
| * that is bundled with this package in the file LICENSE.txt. | ||
| * It is also available through the world-wide-web at this URL: | ||
| * https://opensource.org/licenses/OSL-3.0 | ||
| * If you did not receive a copy of the license and are unable to | ||
| * obtain it through the world-wide-web, please send an email | ||
| * to license@prestashop.com so we can send you a copy immediately. | ||
| * | ||
| * DISCLAIMER | ||
| * | ||
| * Do not edit or add to this file if you wish to upgrade PrestaShop to newer | ||
| * versions in the future. If you wish to customize PrestaShop for your | ||
| * needs please refer to https://www.prestashop.com for more information. | ||
| * | ||
| * @author PrestaShop SA <contact@prestashop.com> | ||
| * @copyright 2007-2020 PrestaShop SA and Contributors | ||
| * @license https://opensource.org/licenses/OSL-3.0 Open Software License (OSL 3.0) | ||
| * International Registered Trademark & Property of PrestaShop SA | ||
| */ | ||
| use PrestaShop\PrestaShop\Core\Session\SessionInterface; | ||
|
|
||
| class EmployeeSessionCore extends ObjectModel implements SessionInterface | ||
| { | ||
| public $id; | ||
|
|
||
| /** @var int Id Employee */ | ||
| public $id_employee; | ||
|
|
||
| /** @var string Token */ | ||
| public $token; | ||
|
|
||
| /** | ||
| * @see ObjectModel::$definition | ||
| */ | ||
| public static $definition = [ | ||
| 'table' => 'employee_session', | ||
| 'primary' => 'id_employee_session', | ||
| 'fields' => [ | ||
| 'id_employee' => ['type' => self::TYPE_INT, 'validate' => 'isUnsignedId', 'required' => true], | ||
| 'token' => ['type' => self::TYPE_STRING, 'validate' => 'isSha1', 'size' => 40, 'copy_post' => false], | ||
| ], | ||
| ]; | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function getId() | ||
| { | ||
| return $this->id; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function setUserId($idEmployee) | ||
| { | ||
| $this->id_employee = (int) $idEmployee; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function getUserId() | ||
| { | ||
| return (int) $this->id_employee; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function setToken($token) | ||
| { | ||
| $this->token = (string) $token; | ||
| } | ||
|
|
||
| /** | ||
| * {@inheritdoc} | ||
| */ | ||
| public function getToken() | ||
| { | ||
| return $this->token; | ||
| } | ||
| } |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
| @@ -0,0 +1,16 @@ | ||
| SET SESSION sql_mode=''; | ||
| SET NAMES 'utf8'; | ||
|
|
||
| CREATE TABLE `PREFIX_employee_session` ( | ||
| `id_employee_session` int(11) unsigned NOT NULL auto_increment, | ||
| `id_employee` int(10) unsigned DEFAULT NULL, | ||
| `token` varchar(40) DEFAULT NULL, | ||
| PRIMARY KEY `id_employee_session` (`id_employee_session`) | ||
| ) ENGINE=ENGINE_TYPE DEFAULT CHARSET=utf8 COLLATION; | ||
|
|
||
| CREATE TABLE `PREFIX_customer_session` ( | ||
| `id_customer_session` int(11) unsigned NOT NULL auto_increment, | ||
| `id_customer` int(10) unsigned DEFAULT NULL, | ||
| `token` varchar(40) DEFAULT NULL, | ||
| PRIMARY KEY `id_customer_session` (`id_customer_session`) | ||
| ) ENGINE=ENGINE_TYPE DEFAULT CHARSET=utf8 COLLATION; |
Oops, something went wrong.