Update Kirby and add password guard

2026-02-09 17:05:41 +01:00 · 2026-02-09 17:05:41 +01:00 · 55d4e45891
commit 55d4e45891
parent aaf1aa7890
987 changed files with 160116 additions and 66454 deletions
--- a/private/site/plugins/kirby-password-guard/index.php
+++ b/private/site/plugins/kirby-password-guard/index.php
@ -0,0 +1,73 @@
+<?php
+
+use Kirby\Cms\Page;
+
+Kirby::plugin('pechente/kirby-password-guard', [
+    'templates' => [
+        'password-guard' => __DIR__ . '/templates/password-guard.php',
+    ],
+    'snippets' => [
+        'panel-icon' => __DIR__ . '/snippets/panel-icon.php',
+    ],
+    'routes' => [
+        [
+            'pattern' => 'password-guard',
+            'language' => '*',
+            'method' => 'POST',
+            'action' => function () {
+                $password = get('password');
+                $hashedPassword = password_hash($password, PASSWORD_BCRYPT);
+
+                $session = kirby()->session();
+                $session->set('kirby-password-guard.password-hash', $hashedPassword);
+
+                $redirect = get('redirect');
+
+                kirby()->response()->redirect($redirect);
+            }
+        ],
+        [
+            'pattern' => option('pechente.kirby-password-guard.pattern', '(:all)'),
+            'method' => 'GET',
+            'action' => function (string $uid) {
+                $query = get();
+                $redirectUrl = $uid . (empty($query) ? '' : '?' . http_build_query($query));
+                if (
+                    option('pechente.kirby-password-guard.enabled') === false ||
+                    !option('pechente.kirby-password-guard.password') ||
+                    kirby()->user()
+                ) {
+                    $this->next();
+                }
+                $passwordIncorrect = false;
+                // check session for password
+                $session = kirby()->session();
+                $hash = $session->get('kirby-password-guard.password-hash');
+                $password = option('pechente.kirby-password-guard.password');
+
+                // Display the page if the password is correct
+                if ($hash) {
+                    if (password_verify($password, $hash)) {
+                        $this->next();
+                    } else {
+                        $passwordIncorrect = true;
+                        kirby()->session()->remove('kirby-password-guard.password-hash');
+                    }
+                }
+
+                // Render the Password Entry Page if it's not correct
+                $passwordPage = new Page([
+                    'slug' => 'password-guard',
+                    'template' => 'password-guard',
+                    'content' => [
+                        'title' => 'Password Guard',
+                        'redirect' => url($redirectUrl),
+                        'passwordIncorrect' => $passwordIncorrect
+                    ]
+                ]);
+
+                return $passwordPage->render();
+            }
+        ]
+    ],
+]);