diff --git a/security/Security.php b/security/Security.php index 64f1595e9..b8f7fb9f0 100644 --- a/security/Security.php +++ b/security/Security.php @@ -882,70 +882,6 @@ class Security extends Controller { 'salt' => $salt, 'algorithm' => $algorithm); } - - - /** - * Encrypt all passwords - * - * Action to encrypt all *clear text* passwords in the database according - * to the current settings. - * If the current settings are so that passwords shouldn't be encrypted, - * an explanation will be printed out. - * - * To run this action, the user needs to have administrator rights! - */ - public function encryptallpasswords() { - // Only administrators can run this method - if(!Permission::check("ADMIN")) { - Security::permissionFailure($this, - _t('Security.PERMFAILURE',' This page is secured and you need administrator rights to access it. - Enter your credentials below and we will send you right along.')); - return; - } - - - if(self::$encryptPasswords == false) { - print '
'._t('Security.ENCDISABLED2', 'To encrypt your passwords change your password settings by adding')."\n"; - print "
Security::encrypt_passwords(true);\n"._t('Security.ENCDISABLED3', 'to mysite/_config.php').""; - - return; - } - - - // Are there members with a clear text password? - $members = DataObject::get("Member", - "\"PasswordEncryption\" = 'none' AND \"Password\" IS NOT NULL"); - - if(!$members) { - print '
'._t('Security.NOTHINGTOENCRYPT2', 'There are no members with a clear text password that could be encrypted!')."
\n"; - - return; - } - - // Encrypt the passwords... - print ''.sprintf(_t('Security.ENCRYPTWITH', 'The passwords will be encrypted using the "%s" algorithm'), htmlentities(self::$encryptionAlgorithm)); - - print (self::$useSalt) - ? _t('Security.ENCRYPTWITHSALT', 'with a salt to increase the security.')."
\n" - : _t('Security.ENCRYPTWITHOUTSALT', 'without using a salt to increase the security.')."\n";
-
- foreach($members as $member) {
- // Force the update of the member record, as new passwords get
- // automatically encrypted according to the settings, this will do all
- // the work for us
- $member->forceChange();
- $member->write();
-
- print ' '._t('Security.ENCRYPTEDMEMBERS', 'Encrypted credentials for member "');
- print htmlentities($member->getTitle()) . '" ('._t('Security.ID', 'ID:').' ' . $member->ID .
- '; '._t('Security.EMAIL', 'E-Mail:').' ' . htmlentities($member->Email) . ")
\n";
- }
-
- print '