chanserv/authcmds/newpass.c

   1 /* Automatically generated by refactor.pl.
   2  *
   3  *
   4  * CMDNAME: newpass
   5  * CMDLEVEL: QCMD_SECURE | QCMD_AUTHED
   6  * CMDARGS: 3
   7  * CMDDESC: Change your password.
   8  * CMDFUNC: csa_donewpw
   9  * CMDPROTO: int csa_donewpw(void *source, int cargc, char **cargv);
  10  * CMDHELP: Usage: NEWPASS <oldpassword> <newpassword> <newpassword>
  11  * CMDHELP: Changes your account password.  Your new password must be at least 6 characters
  12  * CMDHELP: long, contain at least one number and one letter, and may not contain sequences
  13  * CMDHELP: of letters or numbers.  Your new password will be sent to your registered email
  14  * CMDHELP: address.  Where:
  15  * CMDHELP: oldpassword - your existing account password
  16  * CMDHELP: newpassword - your desired new password.  Must be entered the same both times.
  17  * CMDHELP: Note: due to the sensitive nature of this command, you must send the message to
  18  * CMDHELP: Q@CServe.quakenet.org when using it.
  19  */
  20
  21 #include "../chanserv.h"
  22 #include "../authlib.h"
  23 #include "../../lib/irc_string.h"
  24 #include <stdio.h>
  25 #include <string.h>
  26 #include <ctype.h>
  27
  28 int csa_donewpw(void *source, int cargc, char **cargv) {
  29   reguser *rup;
  30   nick *sender=source;
  31   int i, cntweak = 0, cntdigits = 0, cntletters = 0;
  32
  33   if (cargc<3) {
  34     chanservstdmessage(sender, QM_NOTENOUGHPARAMS, "newpass");
  35     return CMD_ERROR;
  36   }
  37
  38   if (!(rup=getreguserfromnick(sender)))
  39     return CMD_ERROR;
  40
  41   if (!checkpassword(rup, cargv[0])) {
  42     chanservstdmessage(sender, QM_AUTHFAIL);
  43     cs_log(sender,"NEWPASS FAIL username %s bad password %s",rup->username,cargv[0]);
  44     return CMD_ERROR;
  45   }
  46
  47   if (strcmp(cargv[1],cargv[2])) {
  48     chanservstdmessage(sender, QM_PWDONTMATCH); /* Sorry, passwords do not match */
  49     cs_log(sender,"NEWPASS FAIL username %s new passwords don't match (%s vs %s)",rup->username,cargv[1],cargv[2]);
  50     return CMD_ERROR;
  51   }
  52
  53   if (strlen(cargv[1]) < 6) {
  54     chanservstdmessage(sender, QM_PWTOSHORT); /* new password to short */
  55     cs_log(sender,"NEWPASS FAIL username %s password to short %s (%d characters)",rup->username,cargv[1],strlen(cargv[1]));
  56     return CMD_ERROR;
  57   }
  58
  59   for ( i = 0; cargv[1][i] && i < PASSLEN; i++ ) {
  60     if ( cargv[1][i] == cargv[1][i+1] || cargv[1][i] + 1 == cargv[1][i+1] || cargv[1][i] - 1 == cargv[1][i+1] )
  61       cntweak++;
  62     if(isdigit(cargv[1][i]))
  63       cntdigits++;
  64     if(islower(cargv[1][i]) || isupper(cargv[1][i]))
  65       cntletters++;
  66   }
  67
  68   if( cntweak > 3 || !cntdigits || !cntletters) {
  69     chanservstdmessage(sender, QM_PWTOWEAK); /* new password is weak */
  70     cs_log(sender,"NEWPASS FAIL username %s password to weak %s",rup->username,cargv[1]);
  71     return CMD_ERROR;
  72   }
  73
  74   setpassword(rup, cargv[1]);
  75   rup->lastauth=time(NULL);
  76   chanservstdmessage(sender, QM_PWCHANGED);
  77   cs_log(sender,"NEWPASS OK username %s", rup->username);
  78   csdb_updateuser(rup);
  79   csdb_createmail(rup, QMAIL_NEWPW);
  80
  81   return CMD_OK;
  82 }