hestiacp/bin/v-get-user-salt

#!/bin/bash
# info: get user salt
# options: USER [IP] [FORMAT]
#
# example: v-get-user-salt admin
#
# This function provides users salt

#----------------------------------------------------------#
#                Variables & Functions                     #
#----------------------------------------------------------#

# Argument definition
user=$1
ip46=${2-127.0.0.1}
format=${3-shell}

# Includes
# shellcheck source=/etc/hestiacp/hestia.conf
source /etc/hestiacp/hestia.conf
# shellcheck source=/usr/local/hestia/func/main.sh
source $HESTIA/func/main.sh
# shellcheck source=/usr/local/hestia/conf/hestia.conf
source $HESTIA/conf/hestia.conf
# load config file
source_conf "$HESTIA/conf/hestia.conf"

time_n_date=$(date +'%T %F')
time=$(echo "$time_n_date" | cut -f 1 -d \ )
date=$(echo "$time_n_date" | cut -f 2 -d \ )

# JSON list function
json_list() {
	echo '{'
	echo '    "'$user'": {
        "METHOD": "'$method'",
        "SALT": "'$salt'",
        "TIME": "'$time'",
        "DATE": "'$date'",
        "ROUND":"'$round'"
        }'
	echo '}'
}

# SHELL list function
shell_list() {
	echo "METHOD:         $method"
	echo "SALT:           $salt"
	echo "ROUND:          $round"
}

# PLAIN list function
plain_list() {
	echo -e "$method\t$salt\t$round"
}

# CSV list function
csv_list() {
	echo "METHOD,SALT,ROUND"
	echo "$method, $salt, $round"
}

#----------------------------------------------------------#
#                    Verifications                         #
#----------------------------------------------------------#

check_args '1' "$#" 'USER [IP] [FORMAT]'
is_format_valid 'user' 'ip46'

# Checking user
if [ ! -d "$HESTIA/data/users/$user" ]; then
	echo "Error: password missmatch"
	echo "$date $time $user $ip46 failed to login" >> $HESTIA/log/auth.log
	exit 9
fi

#----------------------------------------------------------#
#                       Action                             #
#----------------------------------------------------------#

# Parsing user's salt
shadow=$(grep "^$user:" /etc/shadow | cut -f 2 -d :)

if echo "$shadow" | grep -qE '^\$[0-9a-z]+\$[^\$]+\$'; then
	salt=$(echo "$shadow" | cut -f 3 -d \$)
	round=""
	if [[ "$salt" =~ ^rounds= ]]; then
		round=$salt
		salt=$(echo "$shadow" | cut -f 4 -d \$)
	fi
	method=$(echo "$shadow" | cut -f 2 -d \$)
	if [ "$method" = "y" ]; then
		method='yescrypt'
		salt=$(echo "$shadow" | cut -f 4 -d \$)
	elif [ "$method" -eq '1' ]; then
		method='md5'
	elif [ "$method" -eq '6' ]; then
		method='sha-512'
	else
		echo "Error: password missmatch"
		echo "$date $time $user $ip46 failed to login" >> $HESTIA/log/auth.log
		exit 9
	fi
elif [[ "$shadow" =~ ! ]]; then
	echo "Error: Account has been suspended"
	echo "$date $time $user $ip46 has been suspended" >> $HESTIA/log/auth.log
	exit 5
else
	salt=${shadow:0:2}
	method='des'
fi

if [ -z "$salt" ]; then
	echo "Error: password missmatch"
	echo "$date $time $user $ip46 failed to login" >> $HESTIA/log/auth.log
	exit 9
fi

# Listing data
case $format in
	json) json_list ;;
	plain) plain_list ;;
	csv) csv_list ;;
	shell) shell_list ;;
esac

#----------------------------------------------------------#
#                       Hestia                             #
#----------------------------------------------------------#

exit
Initial 2 years ago			`#!/bin/bash`
			`# info: get user salt`
			`# options: USER [IP] [FORMAT]`
			`#`
			`# example: v-get-user-salt admin`
			`#`
			`# This function provides users salt`

			`#----------------------------------------------------------#`
			`# Variables & Functions #`
			`#----------------------------------------------------------#`

			`# Argument definition`
			`user=$1`
			`ip46=${2-127.0.0.1}`
			`format=${3-shell}`

			`# Includes`
			`# shellcheck source=/etc/hestiacp/hestia.conf`
			`source /etc/hestiacp/hestia.conf`
			`# shellcheck source=/usr/local/hestia/func/main.sh`
			`source $HESTIA/func/main.sh`
			`# shellcheck source=/usr/local/hestia/conf/hestia.conf`
			`source $HESTIA/conf/hestia.conf`
			`# load config file`
			`source_conf "$HESTIA/conf/hestia.conf"`

			`time_n_date=$(date +'%T %F')`
			`time=$(echo "$time_n_date" \| cut -f 1 -d \ )`
			`date=$(echo "$time_n_date" \| cut -f 2 -d \ )`

			`# JSON list function`
			`json_list() {`
			`echo '{'`
			`echo ' "'$user'": {`
			`"METHOD": "'$method'",`
			`"SALT": "'$salt'",`
			`"TIME": "'$time'",`
Added sha-512 authorization fix 10 months ago			`"DATE": "'$date'",`
			`"ROUND":"'$round'"`
Initial 2 years ago			`}'`
			`echo '}'`
			`}`

			`# SHELL list function`
			`shell_list() {`
			`echo "METHOD: $method"`
			`echo "SALT: $salt"`
Added sha-512 authorization fix 10 months ago			`echo "ROUND: $round"`
Initial 2 years ago			`}`

			`# PLAIN list function`
			`plain_list() {`
Added sha-512 authorization fix 10 months ago			`echo -e "$method\t$salt\t$round"`
Initial 2 years ago			`}`

			`# CSV list function`
			`csv_list() {`
Added sha-512 authorization fix 10 months ago			`echo "METHOD,SALT,ROUND"`
			`echo "$method, $salt, $round"`
Initial 2 years ago			`}`

			`#----------------------------------------------------------#`
			`# Verifications #`
			`#----------------------------------------------------------#`

			`check_args '1' "$#" 'USER [IP] [FORMAT]'`
			`is_format_valid 'user' 'ip46'`

			`# Checking user`
			`if [ ! -d "$HESTIA/data/users/$user" ]; then`
			`echo "Error: password missmatch"`
			`echo "$date $time $user $ip46 failed to login" >> $HESTIA/log/auth.log`
			`exit 9`
			`fi`

			`#----------------------------------------------------------#`
			`# Action #`
			`#----------------------------------------------------------#`

			`# Parsing user's salt`
			`shadow=$(grep "^$user:" /etc/shadow \| cut -f 2 -d :)`

			`if echo "$shadow" \| grep -qE '^\$[0-9a-z]+\$[^\$]+\$'; then`
			`salt=$(echo "$shadow" \| cut -f 3 -d \$)`
Added sha-512 authorization fix 10 months ago			`round=""`
			`if [[ "$salt" =~ ^rounds= ]]; then`
			`round=$salt`
			`salt=$(echo "$shadow" \| cut -f 4 -d \$)`
			`fi`
Initial 2 years ago			`method=$(echo "$shadow" \| cut -f 2 -d \$)`
			`if [ "$method" = "y" ]; then`
			`method='yescrypt'`
			`salt=$(echo "$shadow" \| cut -f 4 -d \$)`
			`elif [ "$method" -eq '1' ]; then`
			`method='md5'`
			`elif [ "$method" -eq '6' ]; then`
			`method='sha-512'`
			`else`
			`echo "Error: password missmatch"`
			`echo "$date $time $user $ip46 failed to login" >> $HESTIA/log/auth.log`
			`exit 9`
			`fi`
			`elif [[ "$shadow" =~ ! ]]; then`
			`echo "Error: Account has been suspended"`
			`echo "$date $time $user $ip46 has been suspended" >> $HESTIA/log/auth.log`
			`exit 5`
			`else`
			`salt=${shadow:0:2}`
			`method='des'`
			`fi`

			`if [ -z "$salt" ]; then`
			`echo "Error: password missmatch"`
			`echo "$date $time $user $ip46 failed to login" >> $HESTIA/log/auth.log`
			`exit 9`
			`fi`

			`# Listing data`
			`case $format in`
			`json) json_list ;;`
			`plain) plain_list ;;`
			`csv) csv_list ;;`
			`shell) shell_list ;;`
			`esac`

			`#----------------------------------------------------------#`
			`# Hestia #`
			`#----------------------------------------------------------#`

			`exit`