2003-12-27 11:21:00 +00:00
< ? php
/*
$Id $
This code is part of LDAP Account Manager ( http :// www . sourceforge . net / projects / lam )
Copyright ( C ) 2003 Tilo Lutz
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 2 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program ; if not , write to the Free Software
Foundation , Inc . , 59 Temple Place , Suite 330 , Boston , MA 02111 - 1307 USA
*/
2005-07-21 10:33:02 +00:00
/**
* Manages Samba 3 accounts for groups .
*
* @ package modules
*
* @ author Tilo Lutz
* @ author Roland Gruber
* @ author Michael Duergner
*/
/**
* Manages the object class " sambaGroupMapping " for groups.
*
* @ package modules
*/
2004-06-08 18:54:37 +00:00
class sambaGroupMapping extends baseModule {
2004-06-13 19:58:58 +00:00
2004-09-21 11:33:00 +00:00
// Variables
2004-09-27 19:14:16 +00:00
/** Array of well known RIDs */
2004-09-21 11:33:00 +00:00
var $rids ;
2004-10-09 14:15:56 +00:00
/** Array of sambaGroupTypes */
var $sambaGroupTypes ;
2004-09-25 10:13:32 +00:00
/**
* Creates a new module for Samba 3 groups .
*
* @ param string $scope account type
*/
function sambaGroupMapping ( $scope ) {
// load error messages
2004-09-26 11:18:05 +00:00
$this -> rids = array (
_ ( 'Domain Admins' ) => 512 ,
_ ( 'Domain Users' ) => 513 ,
_ ( 'Domain Guests' ) => 514 ,
_ ( 'Domain Computers' ) => 515 ,
_ ( 'Domain Controllers' ) => 516 ,
_ ( 'Domain Certificate Admins' ) => 517 ,
_ ( 'Domain Schema Admins' ) => 518 ,
_ ( 'Domain Enterprise Admins' ) => 519 ,
_ ( 'Domain Policy Admins' ) => 520 );
2004-10-09 14:15:56 +00:00
$this -> sambaGroupTypes = array (
_ ( 'User' ) => 1 ,
_ ( 'Domain Group' ) => 2 ,
_ ( 'Domain' ) => 3 ,
_ ( 'Local Group' ) => 4 ,
_ ( 'Builtin Group' ) => 5 ,
_ ( 'Deleted Account' ) => 6 ,
2005-01-09 14:36:44 +00:00
_ ( 'Invalid Account' ) => 7
2004-10-09 14:15:56 +00:00
);
2004-09-25 10:13:32 +00:00
// call parent constructor
parent :: baseModule ( $scope );
}
2004-09-21 11:33:00 +00:00
2005-10-03 10:49:48 +00:00
/**
* Initializes the module after it became part of an accountContainer
*
* @ param string $base the name of the accountContainer object ( $_SESSION [ $base ])
*/
function init ( $base ) {
// call parent init
parent :: init ( $base );
2006-01-01 16:30:05 +00:00
$sambaDomains = search_domains ();
2005-10-03 10:49:48 +00:00
if ( sizeof ( $sambaDomains ) == 0 ) {
StatusMessage ( " ERROR " , _ ( 'No Samba 3 domains found in LDAP! Please create one first.' ), '' );
return ;
}
}
2004-09-27 19:14:16 +00:00
/**
* In this function the LDAP account is built up .
*
* @ param array $rawAccounts list of hash arrays ( name => value ) from user input
* @ param array $partialAccounts list of hash arrays ( name => value ) which are later added to LDAP
* @ param array $ids list of IDs for column position ( e . g . " posixAccount_uid " => 5 )
* @ return array list of error messages if any
*/
function build_uploadAccounts ( $rawAccounts , $ids , & $partialAccounts ) {
// search existing Samba 3 domains
2006-01-01 16:30:05 +00:00
$domains = search_domains ();
2004-09-27 19:14:16 +00:00
$nameToSID = array ();
// get domain SIDs
for ( $i = 0 ; $i < sizeof ( $domains ); $i ++ ) {
$nameToSID [ $domains [ $i ] -> name ] = $domains [ $i ] -> SID ;
}
// get domain RID bases
$nameToRIDBase = array ();
for ( $i = 0 ; $i < sizeof ( $domains ); $i ++ ) {
$nameToRIDBase [ $domains [ $i ] -> name ] = $domains [ $i ] -> RIDbase ;
}
2004-10-16 19:51:36 +00:00
$triggered_messages = array ();
2004-09-27 19:14:16 +00:00
for ( $i = 0 ; $i < sizeof ( $rawAccounts ); $i ++ ) {
2004-10-10 17:59:41 +00:00
// group type
if ( $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_groupType' ]] != " " ) {
if ( in_array ( $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_groupType' ]], $this -> sambaGroupTypes )) { // number given
$partialAccounts [ $i ][ 'sambaGroupType' ] = $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_groupType' ]];
}
elseif ( in_array ( $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_groupType' ]], array_keys ( $this -> sambaGroupTypes ))) { // description given
$partialAccounts [ $i ][ 'sambaGroupType' ] = $this -> sambaGroupTypes [ $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_groupType' ]]];
}
else { // invalid type
$errMsg = $this -> messages [ 'groupType' ][ 0 ];
array_push ( $errMsg , array ( $i , implode ( " , " , array_keys ( $this -> sambaGroupTypes ) + $this -> sambaGroupTypes )));
2004-10-16 19:51:36 +00:00
$triggered_messages [] = $errMsg ;
2004-10-10 17:59:41 +00:00
}
}
else {
$partialAccounts [ $i ][ 'sambaGroupType' ] = " 2 " ; // 2 is the default (domain group)
}
2004-09-27 19:14:16 +00:00
if ( ! in_array ( " sambaGroupMapping " , $partialAccounts [ $i ][ 'objectClass' ])) $partialAccounts [ $i ][ 'objectClass' ][] = " sambaGroupMapping " ;
// SID
$domSID = $nameToSID [ $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_domain' ]]];
if ( ! isset ( $domSID )) {
2004-10-03 18:06:57 +00:00
$errMsg = $this -> messages [ 'sambaSID' ][ 1 ];
array_push ( $errMsg , $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_domain' ]]);
array_push ( $errMsg , $i );
2004-10-16 19:51:36 +00:00
$triggered_messages [] = $errMsg ;
2004-09-27 19:14:16 +00:00
}
else {
// RID
$rid = $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_rid' ]];
if ( isset ( $this -> rids [ $rid ])) $rid = $this -> rids [ $rid ];
// check if RID has to be calculated
if (( $rid == " " ) || ( ! isset ( $rid ))) {
$ridBase = $nameToRIDBase [ $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_domain' ]]];
$partialAccounts [ $i ][ 'sambaSID' ] = $domSID . " - " . (( $partialAccounts [ $i ][ 'gidNumber' ] * 2 ) + $ridBase + 1 );
}
elseif ( get_preg ( $rid , 'digit' )) {
$partialAccounts [ $i ][ 'sambaSID' ] = $domSID . " - " . $rid ;
}
}
// display name (UTF-8, no regex check needed)
if ( $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_name' ]] == " " ) {
$partialAccounts [ $i ][ 'displayName' ] = $partialAccounts [ $i ][ 'cn' ];
}
else {
$partialAccounts [ $i ][ 'displayName' ] = $rawAccounts [ $i ][ $ids [ 'sambaGroupMapping_name' ]];
}
}
2004-10-16 19:51:36 +00:00
return $triggered_messages ;
2004-09-27 19:14:16 +00:00
}
2004-09-21 11:33:00 +00:00
/* This function will create the html - page
* to show a page with all attributes .
* It will output a complete html - table
*/
2005-02-16 21:00:19 +00:00
function display_html_attributes ( & $post ) {
2006-01-01 16:30:05 +00:00
$sambaDomains = search_domains ();
2005-10-03 10:49:48 +00:00
if ( sizeof ( $sambaDomains ) == 0 ) {
StatusMessage ( " ERROR " , _ ( 'No Samba 3 domains found in LDAP! Please create one first.' ), '' );
return ;
}
2004-09-21 11:33:00 +00:00
// Get Domain-SID from group SID
2004-10-09 14:15:56 +00:00
if ( $this -> attributes [ 'sambaSID' ][ 0 ] != '' )
2005-01-23 12:15:03 +00:00
$domainSID = substr ( $this -> attributes [ 'sambaSID' ][ 0 ], 0 , strrpos ( $this -> attributes [ 'sambaSID' ][ 0 ], " - " ));
2004-09-21 11:33:00 +00:00
for ( $i = 0 ; $i < count ( $sambaDomains ); $i ++ ) {
// List with all valid domains
$sambaDomainNames [] = $sambaDomains [ $i ] -> name ;
if ( $domainSID == $sambaDomains [ $i ] -> SID ) {
$SID = $sambaDomains [ $i ] -> SID ;
$sel_domain = $sambaDomains [ $i ] -> name ;
}
}
$return [] = array ( 0 => array ( 'kind' => 'text' , 'text' => _ ( 'Display name' ) ),
1 => array ( 'kind' => 'input' , 'name' => 'displayName' , 'type' => 'text' , 'size' => '30' , 'maxlength' => '50' , 'value' => $this -> attributes [ 'displayName' ][ 0 ]),
2 => array ( 'kind' => 'help' , 'value' => 'displayName' ));
2004-10-16 19:51:36 +00:00
$names = array_keys ( $this -> rids );
$wrid = false ;
for ( $i = 0 ; $i < count ( $names ); $i ++ ) {
if ( $this -> attributes [ 'sambaSID' ][ 0 ] == $SID . " - " . $this -> rids [ $names [ $i ]]) {
$selected [] = $names [ $i ];
$wrid = true ;
}
else $options [] = $names [ $i ];
2004-09-21 11:33:00 +00:00
}
2004-10-16 19:51:36 +00:00
if ( $wrid ) $options [] = $_SESSION [ $this -> base ] -> module [ 'posixGroup' ] -> attributes [ 'cn' ][ 0 ];
else $selected [] = $_SESSION [ $this -> base ] -> module [ 'posixGroup' ] -> attributes [ 'cn' ][ 0 ];
$return [] = array ( 0 => array ( 'kind' => 'text' , 'text' => _ ( 'Windows group' ) ),
1 => array ( 'kind' => 'select' , 'name' => 'sambaSID' , 'options' => $options , 'options_selected' => $selected ),
2 => array ( 'kind' => 'help' , 'value' => 'sambaSID' ));
2004-09-21 11:33:00 +00:00
2004-10-09 14:15:56 +00:00
$names = array_keys ( $this -> sambaGroupTypes );
$selected = array ( _ ( 'Domain Group' ) );
for ( $i = 0 ; $i < count ( $names ); $i ++ ) {
if ( $this -> attributes [ 'sambaGroupType' ][ 0 ] == $this -> sambaGroupTypes [ $names [ $i ]])
$selected = array ( $names [ $i ] );
}
$return [] = array ( 0 => array ( 'kind' => 'text' , 'text' => _ ( 'Group type' ) ),
1 => array ( 'kind' => 'select' , 'name' => 'sambaGroupType' , 'options' => $names , 'options_selected' => $selected ),
2 => array ( 'kind' => 'help' , 'value' => 'sambaDomainName' ));
2004-09-21 11:33:00 +00:00
$return [] = array ( 0 => array ( 'kind' => 'text' , 'text' => _ ( 'Domain' ) ),
1 => array ( 'kind' => 'select' , 'name' => 'sambaDomainName' , 'options' => $sambaDomainNames , 'options_selected' => array ( $sel_domain ) ),
2 => array ( 'kind' => 'help' , 'value' => 'sambaDomainName' ));
return $return ;
}
2004-06-13 19:58:58 +00:00
/**
* Returns meta data that is interpreted by parent class
*
* @ return array array with meta data
*/
function get_metaData () {
$return = array ();
// manages group accounts
$return [ " account_types " ] = array ( " group " );
2004-06-14 16:05:36 +00:00
// alias name
$return [ " alias " ] = _ ( 'Samba 3' );
2004-06-20 17:32:02 +00:00
// module dependencies
$return [ 'dependencies' ] = array ( 'depends' => array ( 'posixGroup' ), 'conflicts' => array ());
2004-08-17 15:16:17 +00:00
// available PDF fields
2004-10-30 16:46:06 +00:00
$return [ 'PDF_fields' ] = array (
'gidNumber' ,
'sambaSID' ,
'displayName' ,
'sambaGroupType' ,
'description'
);
2004-08-28 11:53:40 +00:00
// upload fields
2004-10-12 13:13:04 +00:00
// search existing Samba 3 domains
2005-02-24 20:50:48 +00:00
if ( $_SESSION [ 'loggedIn' ]) {
2006-01-01 16:30:05 +00:00
$domains = search_domains ();
2005-02-24 20:50:48 +00:00
$domainNames = array ();
for ( $i = 0 ; $i < sizeof ( $domains ); $i ++ ) $domainNames [] = $domains [ $i ] -> name ;
$return [ 'upload_columns' ] = array (
array (
'name' => 'sambaGroupMapping_domain' ,
'description' => _ ( 'Samba domain name' ),
'help' => 'sambaDomainName' ,
'example' => $domainNames [ 0 ],
'values' => implode ( " , " , $domainNames ),
'required' => true
),
array (
'name' => 'sambaGroupMapping_name' ,
'description' => _ ( 'Samba display name' ),
'help' => 'displayName' ,
'example' => _ ( 'Domain administrators' )
),
array (
'name' => 'sambaGroupMapping_rid' ,
'description' => _ ( 'Samba RID number' ),
'help' => 'rid' ,
'example' => _ ( 'Domain Admins' )
),
array (
'name' => 'sambaGroupMapping_groupType' ,
'description' => _ ( 'Samba group type' ),
'help' => 'type' ,
'values' => implode ( " , " , array_keys ( $this -> sambaGroupTypes ) + $this -> sambaGroupTypes ),
'example' => '2'
)
);
$return [ 'upload_preDepends' ] = array ( 'posixGroup' );
}
2004-09-08 17:39:06 +00:00
// help Entries
2004-09-26 11:18:05 +00:00
$return [ 'help' ] = array (
'displayName' => array (
" Headline " => _ ( " Display name " ),
2004-10-30 16:46:06 +00:00
" Text " => _ ( " This is the group name which will be shown in Windows. " )
),
2004-09-26 11:18:05 +00:00
'sambaSID' => array (
2005-06-18 16:12:01 +00:00
" Headline " => _ ( " Windows group name " ),
2004-10-30 16:46:06 +00:00
" Text " => _ ( " If you want to use a well known RID you can selcet a well known group. " )
),
2004-09-26 11:18:05 +00:00
'rid' => array (
" Headline " => _ ( " Samba RID number " ),
2004-10-30 16:46:06 +00:00
" Text " => _ ( " This is the relative ID (similar to UID on Unix) for Windows accounts. If you leave this empty LAM will calculate the RID from the UID. This can be either a number or the name of a special group: " ) . ' ' . implode ( " , " , array_keys ( $this -> rids ))
),
2004-09-26 11:18:05 +00:00
'sambaDomainName' => array (
" Headline " => _ ( " Domain " ),
2004-10-30 16:46:06 +00:00
" Text " => _ ( " Windows-Domain name of group. " ) . ' ' . _ ( " Can be left empty. " )
),
2004-10-10 17:59:41 +00:00
'type' => array (
" Headline " => _ ( " Samba group type " ),
2004-10-30 16:46:06 +00:00
" Text " => _ ( " Windows group type. " )
)
);
2004-09-08 17:39:06 +00:00
2004-06-13 19:58:58 +00:00
return $return ;
}
2004-09-21 11:33:00 +00:00
2005-10-09 18:05:32 +00:00
/**
* Returns the PDF entries for this module .
*
* @ return array list of possible PDF entries
*/
function get_pdfEntries () {
2004-09-21 11:33:00 +00:00
return array ( 'sambaGroupMapping_gidNumber' => array ( '<block><key>' . _ ( 'GID number' ) . '</key><value>' . $this -> attributes [ 'gidNumber' ][ 0 ] . '</value></block>' ),
'sambaGroupMapping_sambaSID' => array ( '<block><key>' . _ ( 'Windows group' ) . '</key><value>' . $this -> attributes [ 'sambaSID' ][ 0 ] . '</value></block>' ),
'sambaGroupMapping_displayName' => array ( '<block><key>' . _ ( 'Display name' ) . '</key><value>' . $this -> attributes [ 'displayName' ][ 0 ] . '</value></block>' ),
'sambaGroupMapping_sambaGroupType' => array ( '<block><key>' . _ ( 'Samba group type' ) . '</key><value>' . $this -> attributes [ 'sambaGroupType' ][ 0 ] . '</value></block>' ),
'sambaGroupMapping_description' => array ( '<block><key>' . _ ( 'Description' ) . '</key><value>' . $this -> attributes [ 'description' ][ 0 ] . '</value></block>' ));
}
/**
* Returns a list of elements for the account profiles .
*
* @ return profile elements
*/
function get_profileOptions () {
$return = array ();
// get list of domains
2006-01-01 16:30:05 +00:00
$sambaDomains = search_domains ();
2004-09-21 11:33:00 +00:00
$sambaDomainNames = array ();
for ( $i = 0 ; $i < count ( $sambaDomains ); $i ++ ) {
// extract names
$sambaDomainNames [] = $sambaDomains [ $i ] -> name ;
}
// domain
$return [] = array (
0 => array ( 'kind' => 'text' , 'text' => _ ( 'Domain' )),
2005-01-23 12:15:03 +00:00
1 => array ( 'kind' => 'select' , 'name' => 'sambaGroupMapping_sambaDomainName' , 'options' => $sambaDomainNames , 'options_selected' => array ()),
2004-09-21 11:33:00 +00:00
2 => array ( 'kind' => 'help' , 'value' => 'sambaDomainName' ));
return $return ;
2004-09-21 10:43:29 +00:00
}
2004-09-21 11:33:00 +00:00
2005-01-23 12:15:03 +00:00
/**
* Loads the values of an account profile into internal variables .
*
* @ param array $profile hash array with profile values ( identifier => value )
*/
function load_profile ( $profile ) {
if ( isset ( $profile [ 'sambaGroupMapping_sambaDomainName' ][ 0 ])) {
// get list of domains
2006-01-01 16:30:05 +00:00
$sambaDomains = search_domains ();
2005-01-23 12:15:03 +00:00
for ( $i = 0 ; $i < sizeof ( $sambaDomains ); $i ++ ) {
if ( $sambaDomains [ $i ] -> name == $profile [ 'sambaGroupMapping_sambaDomainName' ][ 0 ]) {
$this -> attributes [ 'sambaSID' ][ 0 ] = $sambaDomains [ $i ] -> SID . " -0 " ;
break ;
}
}
}
}
2004-09-21 11:33:00 +00:00
/** this functin fills the error message array with messages
**/
2004-09-26 13:48:52 +00:00
function load_Messages () {
2005-03-03 20:26:54 +00:00
$this -> messages [ 'sambaSID' ][ 0 ] = array ( 'ERROR' , _ ( 'There can be only one group of this type.' )); // third parameter must be set dynamically
2004-10-23 12:11:38 +00:00
$this -> messages [ 'sambaSID' ][ 1 ] = array ( 'ERROR' , _ ( " Account %s: " ) . " (sambaGroupMapping_domain): " . _ ( " LAM was unable to find a Samba 3 domain with this name! " )); // third parameter must be set dynamically
$this -> messages [ 'groupType' ][ 0 ] = array ( 'ERROR' , _ ( " Account %s: " ) . " (sambaGroupMapping_type): " . _ ( " This is not a valid Samba 3 group type! " ), _ ( " Possible values " ) . " : %s " );
2004-09-21 11:33:00 +00:00
}
2004-02-09 18:11:01 +00:00
/* This functions return true
* if all needed settings are done
*/
function module_complete () {
if ( ! $this -> module_ready ()) return false ;
if ( $this -> attributes [ 'sambaSID' ][ 0 ] == '' ) return false ;
if ( $this -> attributes [ 'sambaGroupType' ][ 0 ] == '' ) return false ;
return true ;
2005-09-19 18:43:10 +00:00
}
2004-09-21 11:33:00 +00:00
function module_ready () {
if ( $_SESSION [ $this -> base ] -> module [ 'posixGroup' ] -> attributes [ 'gidNumber' ][ 0 ] == '' ) return false ;
return true ;
2005-09-19 18:43:10 +00:00
}
2003-12-27 11:21:00 +00:00
2005-09-07 12:58:34 +00:00
/**
* Processes user input of the primary module page .
* It checks if all input values are correct and updates the associated LDAP a ttributes .
*
* @ param array $post HTTP - POST values
* @ return array list of info / error messages
2003-12-27 11:21:00 +00:00
*/
2005-03-10 18:35:04 +00:00
function process_attributes ( & $post ) {
2006-01-01 16:30:05 +00:00
$sambaDomains = search_domains ();
2005-10-03 10:49:48 +00:00
if ( sizeof ( $sambaDomains ) == 0 ) {
return array ( array ( array ( " ERROR " , _ ( 'No Samba 3 domains found in LDAP! Please create one first.' ))));
}
2004-10-09 14:15:56 +00:00
// Save attributes
2003-12-30 15:36:30 +00:00
$this -> attributes [ 'displayName' ][ 0 ] = $post [ 'displayName' ];
2004-10-09 14:15:56 +00:00
$this -> attributes [ 'sambaGroupType' ][ 0 ] = $this -> sambaGroupTypes [ $post [ 'sambaGroupType' ]];
2003-12-30 15:36:30 +00:00
2004-10-16 19:51:36 +00:00
// Get Domain SID from name
for ( $i = 0 ; $i < count ( $sambaDomains ); $i ++ )
if ( $post [ 'sambaDomainName' ] == $sambaDomains [ $i ] -> name ) {
$SID = $sambaDomains [ $i ] -> SID ;
$RIDbase = $sambaDomain [ $i ] -> RIDbase ;
}
// Load attributes
$this -> attributes [ 'displayName' ][ 0 ] = $post [ 'displayName' ];
$rids = array_keys ( $this -> rids );
$wrid = false ;
for ( $i = 0 ; $i < count ( $rids ); $i ++ ) {
if ( $post [ 'sambaSID' ] == $rids [ $i ]) {
$wrid = true ;
// Get Domain SID
$this -> attributes [ 'sambaSID' ][ 0 ] = $SID . " - " . $this -> rids [ $rids [ $i ]];
2005-03-03 20:26:54 +00:00
// Do a check if special group is unique
2005-12-17 12:11:51 +00:00
if ( $_SESSION [ $this -> base ] -> isNewAccount ) {
if ( $_SESSION [ 'cache' ] -> in_cache ( $SID . " - " . $this -> rids [ $rids [ $i ]], 'sambaSID' , 'group' )) {
$message = $this -> messages [ 'sambaSID' ][ 0 ];
$message [] = $rids [ $i ];
$triggered_messages [ 'sambaSID' ][] = $message ;
}
2003-12-30 15:36:30 +00:00
}
}
2005-03-03 20:26:54 +00:00
}
2004-10-16 19:51:36 +00:00
if ( ! $wrid ) $this -> attributes [ 'sambaSID' ][ 0 ] = $SID . " - " . ( $_SESSION [ $this -> base ] -> module [ 'posixGroup' ] -> attributes [ 'gidNumber' ][ 0 ] * 2 + $RIDbase + 1 );
2004-01-27 19:07:31 +00:00
2003-12-30 15:36:30 +00:00
// Return error-messages
2004-10-16 19:51:36 +00:00
if ( count ( $triggered_messages ) != 0 ) {
$this -> triggered_messages = $triggered_messages ;
return $triggered_messages ;
}
else $this -> triggered_messages = array ();
2005-09-07 12:58:34 +00:00
}
2003-12-27 11:21:00 +00:00
2004-09-21 11:33:00 +00:00
/* This function returns an array with 3 entries :
* array ( DN1 ( 'add' => array ( $attr ), 'remove' => array ( $attr ), 'modify' => array ( $attr )), DN2 .... )
* DN is the DN to change . It may be possible to change several DNs ,
* e . g . create a new user and add him to some groups via attribute memberUid
* add are attributes which have to be added to ldap entry
* remove are attributes which have to be removed from ldap entry
* modify are attributes which have to been modified in ldap entry
2003-12-27 11:21:00 +00:00
*/
2004-09-21 11:33:00 +00:00
function save_attributes () {
2003-12-27 11:21:00 +00:00
// Get Domain SID from name
2006-01-01 16:30:05 +00:00
$sambaDomains = search_domains ();
2003-12-27 11:21:00 +00:00
// Get Domain-SID from group SID
$domainSID = substr ( $this -> attributes [ 'sambaSID' ][ 0 ], 0 , strrpos ( $this -> attributes [ 'sambaSID' ][ 0 ], " - " ));
2004-09-21 11:33:00 +00:00
for ( $i = 0 ; $i < count ( $sambaDomains ); $i ++ )
if ( $domainSID == $sambaDomains [ $i ] -> SID )
2003-12-27 11:21:00 +00:00
$SID = $sambaDomains [ $i ] -> SID ;
2004-09-21 11:33:00 +00:00
$names = array_keys ( $this -> rids );
$wrid = false ;
for ( $i = 0 ; $i < count ( $names ); $i ++ )
if ( $this -> attributes [ 'sambaSID' ][ 0 ] == $SID . " - " . $this -> rids [ $names [ $i ]]) {
$wrid = true ;
2003-12-27 11:21:00 +00:00
}
2004-09-21 11:33:00 +00:00
if ( ! $wrid ) $this -> attributes [ 'sambaSID' ][ 0 ] == $SID . " - " . ( $_SESSION [ $this -> base ] -> module [ 'posixGroup' ] -> attributes [ 'gidNumber' ][ 0 ] * 2 + 1 + $RIDbase );
$return = $_SESSION [ $this -> base ] -> save_module_attributes ( $this -> attributes , $this -> orig );
2004-01-27 19:07:31 +00:00
return $return ;
2003-12-27 11:21:00 +00:00
}
2004-03-09 12:03:39 +00:00
}
2003-12-27 11:21:00 +00:00
?>