mirror of https://github.com/jumpserver/jumpserver
Merge pull request #34 from t57root/forget_password_vul
当有用户uuid 或账号姓名电邮地址信息时,可以修改任意账号的密码pull/36/head
commit
38b0f2f5f9
|
@ -12,6 +12,8 @@ import socket
|
||||||
import fcntl
|
import fcntl
|
||||||
import struct
|
import struct
|
||||||
import readline
|
import readline
|
||||||
|
import random
|
||||||
|
import string
|
||||||
|
|
||||||
jms_dir = os.path.dirname(os.path.abspath(os.path.dirname(__file__)))
|
jms_dir = os.path.dirname(os.path.abspath(os.path.dirname(__file__)))
|
||||||
sys.path.append(jms_dir)
|
sys.path.append(jms_dir)
|
||||||
|
@ -71,12 +73,15 @@ class PreSetup(object):
|
||||||
self.mail_addr = 'hello@jumpserver.org'
|
self.mail_addr = 'hello@jumpserver.org'
|
||||||
self.mail_pass = ''
|
self.mail_pass = ''
|
||||||
self.ip = ''
|
self.ip = ''
|
||||||
|
self.key = ''.join(random.choice(string.ascii_lowercase + string.digits) \
|
||||||
|
for _ in range(16))
|
||||||
|
|
||||||
def write_conf(self, conf_file=os.path.join(jms_dir, 'jumpserver.conf')):
|
def write_conf(self, conf_file=os.path.join(jms_dir, 'jumpserver.conf')):
|
||||||
color_print('开始写入配置文件', 'green')
|
color_print('开始写入配置文件', 'green')
|
||||||
conf = ConfigParser.ConfigParser()
|
conf = ConfigParser.ConfigParser()
|
||||||
conf.read(conf_file)
|
conf.read(conf_file)
|
||||||
conf.set('base', 'url', 'http://%s' % self.ip)
|
conf.set('base', 'url', 'http://%s' % self.ip)
|
||||||
|
conf.set('base', 'key', self.key)
|
||||||
conf.set('db', 'host', self.db_host)
|
conf.set('db', 'host', self.db_host)
|
||||||
conf.set('db', 'port', self.db_port)
|
conf.set('db', 'port', self.db_port)
|
||||||
conf.set('db', 'user', self.db_user)
|
conf.set('db', 'user', self.db_user)
|
||||||
|
|
|
@ -313,6 +313,12 @@ def reset_password(request):
|
||||||
hash_encode = request.GET.get('hash', '')
|
hash_encode = request.GET.get('hash', '')
|
||||||
action = '/juser/password/reset/?uuid=%s×tamp=%s&hash=%s' % (uuid_r, timestamp, hash_encode)
|
action = '/juser/password/reset/?uuid=%s×tamp=%s&hash=%s' % (uuid_r, timestamp, hash_encode)
|
||||||
|
|
||||||
|
if hash_encode == PyCrypt.md5_crypt(uuid_r + timestamp + KEY):
|
||||||
|
if int(time.time()) - int(timestamp) > 600:
|
||||||
|
return http_error(request, u'链接已超时')
|
||||||
|
else:
|
||||||
|
return HttpResponse('hash校验失败')
|
||||||
|
|
||||||
if request.method == 'POST':
|
if request.method == 'POST':
|
||||||
password = request.POST.get('password')
|
password = request.POST.get('password')
|
||||||
password_confirm = request.POST.get('password_confirm')
|
password_confirm = request.POST.get('password_confirm')
|
||||||
|
@ -328,11 +334,8 @@ def reset_password(request):
|
||||||
else:
|
else:
|
||||||
return HttpResponse('用户不存在')
|
return HttpResponse('用户不存在')
|
||||||
|
|
||||||
if hash_encode == PyCrypt.md5_crypt(uuid_r + timestamp + KEY):
|
else:
|
||||||
if int(time.time()) - int(timestamp) > 600:
|
return render_to_response('juser/reset_password.html', locals())
|
||||||
return http_error(request, u'链接已超时')
|
|
||||||
else:
|
|
||||||
return render_to_response('juser/reset_password.html', locals())
|
|
||||||
|
|
||||||
return http_error(request, u'错误请求')
|
return http_error(request, u'错误请求')
|
||||||
|
|
||||||
|
|
Loading…
Reference in New Issue