Trang chủ Khám phá Trợ giúp
Đăng nhập
fusionpbx
/
fusionpbx-framework
mirror of https://github.com/fusionpbx/fusionpbx-framework.git
2
0
Fork 0
Các tập tin Các vấn đề 0 Wiki
Browse Source

Add support for PostgreSQL TLS (#4262)

This commit adds support for PostgreSQL TLS communication. This requires /etc/fusionpbx/config.php to have two parameters added:

$db_secure = true;
$db_cert_authority = "/path/to/ca.crt";
jpattWPC 6 năm trước cách đây
mục cha
28f9d9afd7
commit
6484095a62
4 tập tin đã thay đổi với 40 bổ sung2 xóa
View chưa được định nghĩa Hiển thị tình trạng sai khác
  1. 6 0
      resources/classes/config.php
  2. 14 1
      resources/classes/database.php
  3. 2 0
      resources/classes/domains.php
  4. 18 1
      resources/pdo.php

+ 6 - 0
resources/classes/config.php
Xem Tập Tin 

@@ -19,6 +19,8 @@ class config {
 
 	public $db_host;
 
 	public $db_host;
 
 	public $db_path;
 
 	public $db_path;
 
 	public $db_port;
 
 	public $db_port;
 
+	public $db_secure;
 
+	public $db_cert_authority;
 
 	public $config_path;
 
 	public $config_path;
 
 
 
 	/**
 
 	/**
 
@@ -47,6 +49,8 @@ class config {
 
 	 * @var string $db_host - hostname of the database server
 
 	 * @var string $db_host - hostname of the database server
 
 	 * @var string $db_path - path of the database file
 
 	 * @var string $db_path - path of the database file
 
 	 * @var string $db_port - network port to connect to the database
 
 	 * @var string $db_port - network port to connect to the database
 
+	 * @var bool $db_secure - whether or not to connect with SSL
 
+	 * @var string $db_cert_authority - location of certificate authority
 
 	 */
 
 	 */
 
 	public function get() {
 
 	public function get() {
 
 		$this->find();
 
 		$this->find();
 
@@ -56,6 +60,8 @@ class config {
 
 			$this->db_name = $db_name;
 
 			$this->db_name = $db_name;
 
 			$this->db_username = $db_username;
 
 			$this->db_username = $db_username;
 
 			$this->db_password = $db_password;
 
 			$this->db_password = $db_password;
 
+			$this->db_secure = $db_secure;
 
+			$this->db_cert_authority = $db_cert_authority;
 
 			$this->db_host = $db_host;
 
 			$this->db_host = $db_host;
 
 			$this->db_path = $db_path;
 
 			$this->db_path = $db_path;
 
 			$this->db_port = $db_port;
 
 			$this->db_port = $db_port;

+ 14 - 1
resources/classes/database.php
Xem Tập Tin 

@@ -35,6 +35,8 @@ include "root.php";
 
 			public $host;
 
 			public $host;
 
 			public $port;
 
 			public $port;
 
 			public $db_name;
 
 			public $db_name;
 
+			public $db_secure;
 
+			public $db_cert_authority;
 
 			public $username;
 
 			public $username;
 
 			public $password;
 
 			public $password;
 
 			public $path;
 
 			public $path;
 
@@ -107,6 +109,12 @@ include "root.php";
 
 						if (!isset($this->host) && isset($db_host)) { $this->host = $db_host; }
 
 						if (!isset($this->host) && isset($db_host)) { $this->host = $db_host; }
 
 						if (!isset($this->port) && isset($db_port)) { $this->port = $db_port; }
 
 						if (!isset($this->port) && isset($db_port)) { $this->port = $db_port; }
 
 						if (!isset($this->db_name) && isset($db_name)) { $this->db_name = $db_name; }
 
 						if (!isset($this->db_name) && isset($db_name)) { $this->db_name = $db_name; }
 
+						if (!isset($this->db_secure) && isset($db_secure)) {
 
+							$this->db_secure = $db_secure;
 
+						}
 
+						else {
 
+							$this->db_secure = false;
 
+						}
 
 						if (!isset($this->username) && isset($db_username)) { $this->username = $db_username; }
 
 						if (!isset($this->username) && isset($db_username)) { $this->username = $db_username; }
 
 						if (!isset($this->password) && isset($db_password)) { $this->password = $db_password; }
 
 						if (!isset($this->password) && isset($db_password)) { $this->password = $db_password; }
 
 						if (!isset($this->path) && isset($db_path)) { $this->path = $db_path; }
 
 						if (!isset($this->path) && isset($db_path)) { $this->path = $db_path; }
 
@@ -183,7 +191,12 @@ include "root.php";
 
 					try {
 
 					try {
 
 						if (strlen($this->host) > 0) {
 
 						if (strlen($this->host) > 0) {
 
 							if (strlen($this->port) == 0) { $this->port = "5432"; }
 
 							if (strlen($this->port) == 0) { $this->port = "5432"; }
 
-							$this->db = new PDO("pgsql:host=$this->host port=$this->port dbname=$this->db_name user=$this->username password=$this->password");
 
+							if ($this->db_secure == true) {
 
+								$this->db = new PDO("pgsql:host=$this->host port=$this->port dbname=$this->db_name user=$this->username password=$this->password sslmode=verify-ca sslrootcert=$this->db_cert_authority");
 
+							}
 
+							else {
 
+								$this->db = new PDO("pgsql:host=$this->host port=$this->port dbname=$this->db_name user=$this->username password=$this->password");
 
+							}
 
 						}
 
 						}
 
 						else {
 
 						else {
 
 							$this->db = new PDO("pgsql:dbname=$this->db_name user=$this->username password=$this->password");
 
 							$this->db = new PDO("pgsql:dbname=$this->db_name user=$this->username password=$this->password");

+ 2 - 0
resources/classes/domains.php
Xem Tập Tin 

@@ -222,6 +222,8 @@ if (!class_exists('domains')) {
 
 				$db_name = $config->db_name;
 
 				$db_name = $config->db_name;
 
 				$db_username = $config->db_username;
 
 				$db_username = $config->db_username;
 
 				$db_password = $config->db_password;
 
 				$db_password = $config->db_password;
 
+				$db_secure = $config->db_secure;
 
+				$db_cert_authority = $config->db_cert_authority;
 
 				$db_host = $config->db_host;
 
 				$db_host = $config->db_host;
 
 				$db_path = $config->db_path;
 
 				$db_path = $config->db_path;
 
 				$db_port = $config->db_port;
 
 				$db_port = $config->db_port;

+ 18 - 1
resources/pdo.php
Xem Tập Tin 

@@ -54,6 +54,12 @@
 
 	if (isset($dbfilename)) {
 
 	if (isset($dbfilename)) {
 
 		$db_name = $dbfilename;
 
 		$db_name = $dbfilename;
 
 	}
 
 	}
 
+	if (isset($dbsecure)) {
 
+		$db_secure = $dbsecure;
 
+	}
 
+	if (isset($dbcertauthority)) {
 
+		$db_cert_authority = $dbcertauthority;
 
+	}
 
 
 
 if (!function_exists('get_db_field_names')) {
 
 if (!function_exists('get_db_field_names')) {
 
 	function get_db_field_names($db, $table, $db_name='fusionpbx') {
 
 	function get_db_field_names($db, $table, $db_name='fusionpbx') {
 
@@ -240,9 +246,20 @@ if ($db_type == "mysql") {
 
 if ($db_type == "pgsql") {
 
 if ($db_type == "pgsql") {
 
 	//database connection
 
 	//database connection
 
 	try {
 
 	try {
 
+		if (isset($db_secure)) {
 
+			$dbissecure = $db_secure;
 
+		}
 
+		else {
 
+			$dbissecure = false;
 
+		}
 
 		if (strlen($db_host) > 0) {
 
 		if (strlen($db_host) > 0) {
 
 			if (strlen($db_port) == 0) { $db_port = "5432"; }
 
 			if (strlen($db_port) == 0) { $db_port = "5432"; }
 
-			$db = new PDO("pgsql:host=$db_host port=$db_port dbname=$db_name user=$db_username password=$db_password");
 
+			if ($dbissecure == true) {
 
+				$db = new PDO("pgsql:host=$db_host port=$db_port dbname=$db_name user=$db_username password=$db_password sslmode=verify-ca sslrootcert=$db_cert_authority");
 
+			}
 
+			else {
 
+				$db = new PDO("pgsql:host=$db_host port=$db_port dbname=$db_name user=$db_username password=$db_password");
 
+			}
 
 		}
 
 		}
 
 		else {
 
 		else {
 
 			$db = new PDO("pgsql:dbname=$db_name user=$db_username password=$db_password");
 
 			$db = new PDO("pgsql:dbname=$db_name user=$db_username password=$db_password");