Server : LiteSpeed System : Linux server 3.10.0-1160.90.1.el7.x86_64 #1 SMP Thu May 4 15:21:22 UTC 2023 x86_64 User : alsaif ( 1057) PHP Version : 7.4.33 Disable Function : show_source,posix_kill,posix_mkfifo,posix_getpwuid,posix_setpgid,posix_setsid,posix_setuid,posix_setgid,posix_seteuid,posix_setegid,posix_uname Directory : /home/alsaif/public_html/plugins/system/nrframework/NRFramework/Assignments/ |
<?php
/**
* @author Tassos.gr <info@tassos.gr>
* @link http://www.tassos.gr
* @copyright Copyright © 2018 Tassos Marinos All Rights Reserved
* @license GNU GPLv3 <http://www.gnu.org/licenses/gpl.html> or later
*/
namespace NRFramework\Assignments;
defined('_JEXEC') or die;
use NRFramework\Assignment;
class IP extends Assignment
{
/**
* Checks if the user's ip address is within the specified ranges
*
* @return bool
*/
public function pass()
{
// get the user's ip address
$user_ip = $this->value();
// get the supplied ip addresses/ranges as an array
$ip_ranges = $this->prepareRanges($this->selection);
foreach ($ip_ranges as $range)
{
if ($this->isInRange($user_ip, $range))
{
return true;
}
}
return false;
}
/**
* Returns the assignment's value
*
* @return string User IP
*/
public function value()
{
return $this->app->input->server->get('REMOTE_ADDR');
}
/**
* Prepare an array of IP addresses/ranges
* from a a list(string) of IPs
*
* @param string $ip_list
* @return array
*/
protected function prepareRanges($ip_list)
{
if (is_array($ip_list))
{
$ip_list = implode(',', $ip_list);
}
// replace newlines with commas
$ip_list = preg_replace('/\s+/',',',trim($ip_list));
// strip out empty values, reorder array keys and return ip ranges as an array
return array_values(array_filter(explode(',', $ip_list)));
}
/**
* Checks if an IP address falls within an IP range
* Todo: factor out common logic...
* @param string $user_ip
* @param string $range
* @return boolean
*/
protected function isInRange($user_ip, $range)
{
if (empty($user_ip) || empty($range))
{
return false;
}
// break ip addresses/ranges into parts
$user_ip_parts = explode('.', $user_ip);
$ip_range_parts = explode('.', $range);
for ($i = 0; $i < count($ip_range_parts); $i++)
{
$r = $ip_range_parts[$i];
// parse and check range
if (strpos($r, '-') !== FALSE)
{
list($range_start, $range_end) = explode('-', $r);
// format checks...
if (!is_numeric($range_start) || !is_numeric($range_end))
{
return false;
}
// cast strings to integers
$range_start = (int) $range_start;
$range_end = (int) $range_end;
if ($range_start > $range_end || $range_start < 0 || $range_end > 255)
{
return false;
}
if ((int)$user_ip_parts[$i] < $range_start || (int)$user_ip_parts[$i] > $range_end)
{
return false;
}
}
else
{
// format checks...
if (!is_numeric($r))
{
return false;
}
$r = (int)$r;
if ($r < 0 || $r > 255)
{
return false;
}
if ((int)$user_ip_parts[$i] !== $r)
{
return false;
}
}
} //for loop
return true;
}
}