d4/d4a/_ldap_8php_source.html

 <?php

 /*

  You may not change or alter any portion of this comment or credits

  of supporting developers from this source code or any supporting source code

  which is considered copyrighted (c) material of the original comment or credit authors.


  This program is distributed in the hope that it will be useful,

  but WITHOUT ANY WARRANTY; without even the implied warranty of

  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.

 */


 namespace Xoops\Auth;


 use Xoops\Core\Database\Connection;


 class Ldap extends AuthAbstract

 {


     public $ldap_server;


     public $ldap_port = '389';

     public $ldap_version = '3';


     public $ldap_base_dn;


     public $ldap_loginname_asdn;


     public $ldap_loginldap_attr;


     public $ldap_mail_attr;


     public $ldap_name_attr;


     public $ldap_surname_attr;


     public $ldap_givenname_attr;


     public $ldap_manager_dn;


     public $ldap_manager_pass;


     public $ds;


     public $ldap_use_TLS;


     public $ldap_domain_name;


     public $ldap_filter_person;


     public function __construct(Connection $dao = null)

     {

         if (!extension_loaded('ldap')) {

             trigger_error(sprintf(\XoopsLocale::F_EXTENSION_PHP_NOT_LOADED, 'LDAP'), E_USER_ERROR);

             return;

         }


         $xoops = \Xoops::getInstance();

         $this->dao = $dao;

         //Configuration options that are stored in the database

         $configs = $xoops->getConfigs();

         foreach ($configs as $key => $val) {

             $this->$key = $val;

         }

     }


     public function authenticate($uname, $pwd = null)

     {

         $authenticated = false;

         $this->ds = ldap_connect($this->ldap_server, $this->ldap_port);

         if ($this->ds) {

             ldap_set_option($this->ds, LDAP_OPT_PROTOCOL_VERSION, $this->ldap_version);

             if ($this->ldap_use_TLS) { // We use TLS secure connection

                 if (!ldap_start_tls($this->ds)) {

                     $this->setErrors(0, \XoopsLocale::E_TLS_CONNECTION_NOT_OPENED);

                 }

             }

             // If the uid is not in the DN we proceed to a search

             // The uid is not always in the dn

             $userDN = $this->getUserDN($uname);

             if (!(is_string($userDN))) {

                 return false;

             }

             // We bind as user to test the credentials

             $authenticated = ldap_bind($this->ds, $userDN, stripslashes($pwd));

             if ($authenticated) {

                 // We load the Xoops User database

                 return $this->loadXoopsUser($userDN, $uname, $pwd);

             } else {

                 $this->setErrors(ldap_errno($this->ds), ldap_err2str(ldap_errno($this->ds)) . '(' . $userDN . ')');

             }

         } else {

             $this->setErrors(0, \XoopsLocale::E_CANNOT_CONNECT_TO_SERVER);

         }

         @ldap_close($this->ds);


         return $authenticated;

     }


     public function getUserDN($uname)

     {

         $userDN = false;

         if (!$this->ldap_loginname_asdn) {

             // Bind with the manager

             if (!ldap_bind($this->ds, $this->ldap_manager_dn, stripslashes($this->ldap_manager_pass))) {

                 $this->setErrors(

                     ldap_errno($this->ds),

                     ldap_err2str(ldap_errno($this->ds)) . '(' . $this->ldap_manager_dn . ')'

                 );


                 return false;

             }

             $filter = $this->getFilter($uname);

             $sr = ldap_search($this->ds, $this->ldap_base_dn, $filter);

             $info = ldap_get_entries($this->ds, $sr);

             if ($info['count'] > 0) {

                 $userDN = $info[0]['dn'];

             } else {

                 $this->setErrors(0, sprintf(

                     \XoopsLocale::EF_USER_NOT_FOUND_IN_DIRECTORY_SERVER,

                     $uname,

                     $filter,

                     $this->ldap_base_dn

                 ));

             }

         } else {

             $userDN = $this->ldap_loginldap_attr . '=' . $uname . ',' . $this->ldap_base_dn;

         }


         return $userDN;

     }


     public function getFilter($uname)

     {

         if ($this->ldap_filter_person != '') {

             $filter = str_replace('@@loginname@@', $uname, $this->ldap_filter_person);

         } else {

             $filter = $this->ldap_loginldap_attr . '=' . $uname;

         }


         return $filter;

     }


     public function loadXoopsUser($userdn, $uname, $pwd = null)

     {

         $xoopsUser = false;

         $provisHandler = Provisioning::getInstance($this);

         $sr = ldap_read($this->ds, $userdn, '(objectclass=*)');

         $entries = ldap_get_entries($this->ds, $sr);

         if ($entries['count'] > 0) {

             $xoopsUser = $provisHandler->sync($entries[0], $uname, $pwd);

         } else {

             $this->setErrors(0, sprintf('loadXoopsUser - ' . \XoopsLocale::EF_ENTRY_NOT_READ, $userdn));

         }


         return $xoopsUser;

     }

 }

Xoops\Auth\Ldap\$ldap_version
$ldap_version
Definition: Ldap.php:43

Xoops\Auth\AuthAbstract
Definition: AuthAbstract.php:25

Xoops\Auth\Ldap\$ldap_manager_dn
$ldap_manager_dn
Definition: Ldap.php:83

XoopsLocaleEn_US\F_EXTENSION_PHP_NOT_LOADED
const F_EXTENSION_PHP_NOT_LOADED
Definition: en_US.php:451

XoopsLocaleEn_US\EF_ENTRY_NOT_READ
const EF_ENTRY_NOT_READ
Definition: en_US.php:238

Xoops\Auth\Ldap\authenticate
authenticate($uname, $pwd=null)
Definition: Ldap.php:142

Xoops\Auth\Ldap\$ldap_base_dn
$ldap_base_dn
Definition: Ldap.php:48

Xoops\Auth\Ldap\$ldap_givenname_attr
$ldap_givenname_attr
Definition: Ldap.php:78

Xoops\getInstance
static getInstance()
Definition: Xoops.php:160

Xoops\Auth\Ldap\$ldap_port
$ldap_port
Definition: Ldap.php:39

Xoops\Auth\Ldap\loadXoopsUser
loadXoopsUser($userdn, $uname, $pwd=null)
Definition: Ldap.php:242

XoopsLocaleEn_US\E_CANNOT_CONNECT_TO_SERVER
const E_CANNOT_CONNECT_TO_SERVER
Definition: en_US.php:313

Xoops\Auth\Ldap\getFilter
getFilter($uname)
Definition: Ldap.php:222

Xoops\Auth\Ldap\$ldap_domain_name
$ldap_domain_name
Definition: Ldap.php:103

Ldap

Xoops\Auth\AuthAbstract\setErrors
setErrors($err_no, $err_str)
Definition: AuthAbstract.php:70

$filter
else $filter
Definition: dialog.php:95

Connection

$xoops
$xoops
Definition: admin.php:25

Connection

Xoops\Auth\Ldap\$ds
$ds
Definition: Ldap.php:93

Xoops\Auth\Ldap\$ldap_filter_person
$ldap_filter_person
Definition: Ldap.php:108

Xoops\Auth\Ldap\$ldap_mail_attr
$ldap_mail_attr
Definition: Ldap.php:63

$xoopsUser
global $xoopsUser
Definition: config.php:132

$info
if(isset($_POST['name'])) $info
Definition: execute.php:57

Xoops\Auth\Ldap\$ldap_loginldap_attr
$ldap_loginldap_attr
Definition: Ldap.php:58

$configs
$configs
Definition: config.php:27

Xoops\Auth\Ldap\$ldap_surname_attr
$ldap_surname_attr
Definition: Ldap.php:73

Xoops\Auth\Ldap\$ldap_manager_pass
$ldap_manager_pass
Definition: Ldap.php:88

XoopsLocaleEn_US\E_TLS_CONNECTION_NOT_OPENED
const E_TLS_CONNECTION_NOT_OPENED
Definition: en_US.php:370

Xoops\Auth\Ldap\$ldap_loginname_asdn
$ldap_loginname_asdn
Definition: Ldap.php:53

$uname
$uname
Definition: checklogin.php:37

Xoops\Auth\Provisioning\getInstance
static getInstance(AuthAbstract $auth_instance)
Definition: Provisioning.php:63

Xoops\Auth\Ldap\__construct
__construct(Connection $dao=null)
Definition: Ldap.php:115

Xoops\Auth
Definition: Ads.php:12

Xoops\Auth\Ldap\$ldap_server
$ldap_server
Definition: Ldap.php:33

Xoops\Auth\Ldap\$ldap_use_TLS
$ldap_use_TLS
Definition: Ldap.php:98

Xoops\Auth\Ldap\getUserDN
getUserDN($uname)
Definition: Ldap.php:182

Xoops\Auth\Ldap\$ldap_name_attr
$ldap_name_attr
Definition: Ldap.php:68

XoopsLocaleEn_US\EF_USER_NOT_FOUND_IN_DIRECTORY_SERVER
const EF_USER_NOT_FOUND_IN_DIRECTORY_SERVER
Definition: en_US.php:278

Xoops\Auth\AuthAbstract\$dao
$dao
Definition: AuthAbstract.php:30