Restore checkPassword() function

Signed-off-by: Git'Fellow <[email protected]>
nextcloud · Apr 2, 2024 · ec78c92 · ec78c92
1 parent 5c6d982
commit ec78c92
Showing 1 changed file with 28 additions and 0 deletions.
diff --git a/lib/UserBackend.php b/lib/UserBackend.php
@@ -187,6 +187,34 @@ public function implementsActions($actions) {
 		return (bool)($availableActions & $actions);
 	}
 
+	/**
+	 * Check if the provided token is correct
+	 * @param string $uid The username
+	 * @param string $password The password
+	 * @return string
+	 *
+	 * Check if the password is correct without logging in the user
+	 * returns the user id or false
+	 */
+	public function checkPassword($uid, $password) {
+		$qb = $this->db->getQueryBuilder();
+		$qb->select('token')
+			->from('user_saml_auth_token')
+			->where($qb->expr()->eq('uid', $qb->createNamedParameter($uid)))
+			->setMaxResults(1000);
+		$result = $qb->execute();
+		$data = $result->fetchAll();
+		$result->closeCursor();
+
+		foreach ($data as $passwords) {
+			if (password_verify($password, $passwords['token'])) {
+				return $uid;
+			}
+		}
+
+		return false;
+	}
+
 	/**
 	 * delete a user
 	 * @param string $uid The username of the user to delete