LDAPAccountManager/lam/lib/modules/phpGroupwareUser.inc

454 lines
17 KiB
PHP
Raw Normal View History

2008-02-24 18:53:25 +00:00
<?php
/*
$Id$
2009-10-27 18:47:12 +00:00
This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/)
2011-01-09 14:38:00 +00:00
Copyright (C) 2008 - 2011 Roland Gruber
2008-02-24 18:53:25 +00:00
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
*/
/**
* Manages phpGroupware users.
*
* @package modules
* @author Roland Gruber
*/
/**
* Manages phpGroupware users.
*
* @package modules
*/
2009-10-10 11:04:14 +00:00
class phpGroupwareUser extends baseModule implements passwordService {
2008-02-24 18:53:25 +00:00
/**
* Creates a new kolabUser object.
*
* @param string $scope account type (user, group, host)
*/
public function __construct($scope) {
parent::__construct($scope);
$this->autoAddObjectClasses = false;
}
/**
* Returns meta data that is interpreted by parent class
*
* @return array array with meta data
*
* @see baseModule::get_metaData()
*/
public function get_metaData() {
$return = array();
// icon
$return['icon'] = 'phpGroupware.png';
// manages host accounts
$return["account_types"] = array("user");
// alias name
$return["alias"] = "phpGroupWare";
// module dependencies
$return['dependencies'] = array('depends' => array('posixAccount'), 'conflicts' => array());
// LDAP filter
$return["ldap_filter"] = array('or' => "(objectClass=phpgwAccount)");
// managed object classes
$return['objectClasses'] = array('phpgwAccount');
// managed attributes
$return['attributes'] = array('phpgwAccountID', 'phpgwAccountStatus', 'phpgwAccountExpires',
'phpgwLastPasswordChange', 'phpgwLastLoginFrom', 'phpgwLastLogin');
// help Entries
$return['help'] = array(
'extension' => array(
2008-02-26 19:55:37 +00:00
"Headline" => _("Add phpGroupWare extension"),
2008-04-15 14:33:01 +00:00
"Text" => _("If you set this to \"true\" then the phpGroupware extension will be added.")
2008-02-26 19:55:37 +00:00
),
'phpgwAccountStatus' => array(
"Headline" => _("Account status"),
"Text" => _("Here you can specify if the account is active or inactive.")
),
'phpgwAccountExpires' => array(
"Headline" => _("Account expiration date"),
"Text" => _("This is the date when the account will expire. Format: DD-MM-YYYY")
2009-12-20 14:35:42 +00:00
),
'autoAdd' => array(
"Headline" => _("Automatically add this extension"),
"Text" => _("This will enable the extension automatically if this profile is loaded.")
2008-02-24 18:53:25 +00:00
)
);
2009-12-20 14:35:42 +00:00
// profile options
2010-09-21 18:32:51 +00:00
$profileContainer = new htmlTable();
$profileContainer->addElement(new htmlTableExtendedInputCheckbox('phpGroupwareUser_addExt', false, _('Automatically add this extension'), 'autoAdd'));
$return['profile_options'] = $profileContainer;
2008-02-26 19:55:37 +00:00
// available PDF fields
$return['PDF_fields'] = array(
2010-04-05 12:38:23 +00:00
'phpgwAccountStatus' => _('Account status'),
'phpgwAccountExpires' => _('Account expiration date'),
'phpgwLastLoginFrom' => _('Last login from'),
'phpgwLastLogin' => _('Last login')
2008-02-26 19:55:37 +00:00
);
2008-02-24 18:53:25 +00:00
// upload dependencies
$return['upload_preDepends'] = array('posixAccount');
// upload fields
$return['upload_columns'] = array(
array(
'name' => 'phpGroupwareUser_extension',
2008-02-26 19:55:37 +00:00
'description' => _('Add phpGroupWare extension'),
2008-02-24 18:53:25 +00:00
'help' => 'extension',
'example' => 'true',
'values' => 'true, false'
2008-02-26 19:55:37 +00:00
),
array(
'name' => 'phpGroupwareUser_accountStatus',
'description' => _('Account status'),
'help' => 'phpgwAccountStatus',
'example' => 'active',
'values' => 'active, inactive'
),
array(
'name' => 'phpGroupwareUser_accountExpires',
'description' => _('Account expiration date'),
'help' => 'phpgwAccountExpires',
'example' => '23-07-2011'
2008-02-24 18:53:25 +00:00
)
);
return $return;
}
2008-02-26 19:55:37 +00:00
/**
* This function builds up the message array.
*/
function load_Messages() {
// error messages for input checks
$this->messages['phpgwAccountStatus'][0] = array('ERROR', _('Account %s:') . ' phpGroupwareUser_accountStatus', _('Please enter "active" or "inactive".'));
$this->messages['phpgwAccountExpires'][0] = array('ERROR', _('Account %s:') . ' phpGroupwareUser_accountExpires', _('The expiration date is invalid.'));
}
2008-02-24 18:53:25 +00:00
/**
* Returns the HTML meta data for the main account page.
*
2010-09-21 18:32:51 +00:00
* @return htmlElement HTML meta data
2008-02-24 18:53:25 +00:00
*/
public function display_html_attributes() {
2010-09-21 18:32:51 +00:00
$return = new htmlTable();
2008-02-24 18:53:25 +00:00
if (isset($this->attributes['objectClass']) && in_array('phpgwAccount', $this->attributes['objectClass'])) {
2010-09-21 18:32:51 +00:00
// expiration date
$phpgwAccountExpires = '-';
2008-03-25 19:01:10 +00:00
if (isset($this->attributes['phpgwAccountExpires'][0]) && ($this->attributes['phpgwAccountExpires'][0] != "-1")) {
2008-02-26 19:55:37 +00:00
$date = getdate($this->attributes['phpgwAccountExpires'][0]);
$phpgwAccountExpires = $date['mday'] . '.' . $date['mon'] . '.' . $date['year'];
}
2010-09-21 18:32:51 +00:00
$return->addElement(new htmlOutputText(_('Account expiration date')));
$return->addElement(new htmlOutputText($phpgwAccountExpires));
$return->addElement(new htmlAccountPageButton(get_class($this), 'time', 'phpgwAccountExpires', _('Change')));
$return->addElement(new htmlHelpLink('phpgwAccountExpires'), true);
// account status
$accountStatus = 'A';
if (isset($this->attributes['phpgwAccountStatus'][0])) {
$accountStatus = $this->attributes['phpgwAccountStatus'][0];
}
$return->addElement(new htmlOutputText(_('Account status')));
$statusOptions = array(_('active') => 'A', _('inactive') => 'I');
$statusSelect = new htmlSelect('phpgwAccountStatus', $statusOptions, array($accountStatus));
$statusSelect->setHasDescriptiveElements(true);
$return->addElement($statusSelect);
$return->addElement(new htmlOutputText(''));
$return->addElement(new htmlHelpLink('phpgwAccountStatus'), true);
// last login
$phpgwLastLogin = '-';
2008-02-26 19:55:37 +00:00
if (isset($this->attributes['phpgwLastLogin'][0])) {
$date = getdate($this->attributes['phpgwLastLogin'][0]);
$phpgwLastLogin = $date['mday'] . '.' . $date['mon'] . '.' . $date['year'];
}
2010-09-21 18:32:51 +00:00
$return->addElement(new htmlOutputText(_('Last login')));
$return->addElement(new htmlOutputText($phpgwLastLogin), true);
// last login from
$phpgwLastLoginFrom = '-';
2008-02-26 19:55:37 +00:00
if (isset($this->attributes['phpgwLastLoginFrom'][0])) {
$phpgwLastLoginFrom = $this->attributes['phpgwLastLoginFrom'][0];
}
2010-09-21 18:32:51 +00:00
$return->addElement(new htmlOutputText(_('Last login from')));
$return->addElement(new htmlOutputText($phpgwLastLoginFrom), true);
$return->addElement(new htmlSpacer(null, '10px'), true);
$remButton = new htmlButton('remObjectClass', _('Remove phpGroupWare extension'));
$remButton->colspan = 4;
$return->addElement($remButton);
2008-02-24 18:53:25 +00:00
}
else {
2010-09-21 18:32:51 +00:00
$return->addElement(new htmlButton('addObjectClass', _('Add phpGroupWare extension')));
2008-02-24 18:53:25 +00:00
}
return $return;
}
/**
* Processes user input of the primary module page.
* It checks if all input values are correct and updates the associated LDAP attributes.
*
* @return array list of info/error messages
*/
public function process_attributes() {
2008-04-24 18:50:02 +00:00
if (isset($this->attributes['objectClass']) && in_array('phpgwAccount', $this->attributes['objectClass'])) {
$this->attributes['phpgwAccountStatus'][0] = $_POST['phpgwAccountStatus'];
}
2010-09-21 18:32:51 +00:00
if (isset($_POST['addObjectClass'])) {
2008-02-24 18:53:25 +00:00
$this->attributes['objectClass'][] = 'phpgwAccount';
2008-03-25 19:01:10 +00:00
$this->attributes['phpgwAccountExpires'][0] = "-1";
2009-10-10 11:04:14 +00:00
$this->attributes['phpgwLastPasswordChange'][0] = time();
2008-02-24 18:53:25 +00:00
}
2010-09-21 18:32:51 +00:00
elseif (isset($_POST['remObjectClass'])) {
2009-12-18 21:02:06 +00:00
$this->attributes['objectClass'] = array_delete(array('phpgwAccount'), $this->attributes['objectClass']);
for ($i = 0; $i < sizeof($this->meta['attributes']); $i++) {
if (isset($this->attributes[$this->meta['attributes'][$i]])) {
unset($this->attributes[$this->meta['attributes'][$i]]);
2008-02-24 18:53:25 +00:00
}
}
}
return array();
}
2008-02-26 19:55:37 +00:00
/**
* This function will create the meta HTML code to show a page to change time values.
*
2010-09-21 18:32:51 +00:00
* @return htmlElement meta HTML code
2008-02-26 19:55:37 +00:00
*/
function display_html_time() {
2010-09-21 18:32:51 +00:00
$return = new htmlTable();
2008-02-26 19:55:37 +00:00
// determine attribute
if (isset($_POST['form_subpage_phpGroupwareUser_time_phpgwAccountExpires'])) {
$attr = 'phpgwAccountExpires';
$text = _('Account expiration date');
$help = "phpgwAccountExpires";
}
2008-03-25 19:01:10 +00:00
$time = time();
if (isset($this->attributes[$attr][0]) && ($this->attributes[$attr][0] != "-1")) {
2008-02-26 19:55:37 +00:00
$time = $this->attributes[$attr][0];
}
$date = getdate($time);
for ( $i=1; $i<=31; $i++ ) $mday[] = $i;
for ( $i=1; $i<=12; $i++ ) $mon[] = $i;
for ( $i=2003; $i<=2030; $i++ ) $year[] = $i;
2010-09-21 18:32:51 +00:00
$return->addElement(new htmlOutputText($text));
$dateContainer = new htmlTable();
$dateContainer->addElement(new htmlSelect('expire_day', $mday, array($date['mday'])));
$dateContainer->addElement(new htmlSelect('expire_mon', $mon, array($date['mon'])));
$dateContainer->addElement(new htmlSelect('expire_yea', $year, array($date['year'])));
$return->addElement($dateContainer);
$return->addElement(new htmlHelpLink($help), true);
$return->addElement(new htmlSpacer(null, '10px'), true);
// buttons
$buttonContainer = new htmlTable();
$buttonContainer->addElement(new htmlAccountPageButton(get_class($this), 'attributes', 'change' . $attr, _('Change')));
2008-02-26 19:55:37 +00:00
$buttons = array();
if (isset($this->attributes[$attr][0])) {
2010-09-21 18:32:51 +00:00
$buttonContainer->addElement(new htmlAccountPageButton(get_class($this), 'attributes', 'del' . $attr, _('Remove')));
2008-02-26 19:55:37 +00:00
}
2010-09-21 18:32:51 +00:00
$buttonContainer->addElement(new htmlAccountPageButton(get_class($this), 'attributes', 'back' . $attr, _('Cancel')));
$buttonContainer->colspan = 3;
$return->addElement($buttonContainer);
return $return;
2008-02-26 19:55:37 +00:00
}
/**
* Processes user input of the time selection page.
*
* @return array list of info/error messages
*/
function process_time() {
$return = array();
// find button name
$buttonName = '';
$postKeys = array_keys($_POST);
for ($i = 0; $i < sizeof($postKeys); $i++) {
if (strpos($postKeys[$i], 'form_subpage_phpGroupwareUser_attributes_') !== false) {
$buttonName = $postKeys[$i];
}
}
if (($buttonName == '') || (strpos($buttonName, '_back') !== false)) return array();
// get attribute name
$attr = '';
if (strpos($buttonName, 'phpgwAccountExpires') !== false) {
$attr = 'phpgwAccountExpires';
}
if ($attr == '') return array();
// determine action
if (strpos($buttonName, '_change') !== false) {
// set new time
$this->attributes[$attr][0] = gmmktime(0, 0, 0, intval($_POST['expire_mon']), intval($_POST['expire_day']),
intval($_POST['expire_yea']));
}
elseif (strpos($buttonName, '_del') !== false) {
// remove attribute value
2008-03-25 19:01:10 +00:00
$this->attributes[$attr][0] = "-1";
2008-02-26 19:55:37 +00:00
}
return $return;
}
2008-02-24 18:53:25 +00:00
/**
* Returns a list of modifications which have to be made to the LDAP account.
*
* @return array list of modifications
* <br>This function returns an array with 3 entries:
* <br>array( DN1 ('add' => array($attr), 'remove' => array($attr), 'modify' => array($attr)), DN2 .... )
* <br>DN is the DN to change. It may be possible to change several DNs (e.g. create a new user and add him to some groups via attribute memberUid)
* <br>"add" are attributes which have to be added to LDAP entry
* <br>"remove" are attributes which have to be removed from LDAP entry
* <br>"modify" are attributes which have to been modified in LDAP entry
*/
function save_attributes() {
if (!in_array('phpgwAccount', $this->attributes['objectClass'])) {
return parent::save_attributes();
}
// set phpgwAccountID to UID number for new accounts
$attrs = $this->getAccountContainer()->getAccountModule('posixAccount')->getAttributes();
$this->attributes['phpgwAccountID'][0] = $attrs['uidNumber'][0];
return parent::save_attributes();
}
2008-02-26 19:55:37 +00:00
/**
* Returns the PDF entries for this module.
*
* @return array list of possible PDF entries
*/
function get_pdfEntries() {
$return = array();
if (isset($this->attributes['phpgwAccountStatus'][0])) {
if ($this->attributes['phpgwAccountStatus'][0] == 'A') {
$status = _('active');
}
else {
$status = _('inactive');
}
$return['phpGroupwareUser_phpgwAccountStatus'] = array('<block><key>' . _('Account status') . '</key><value>' . $status . '</value></block>');
}
if (isset($this->attributes['phpgwAccountExpires'][0])) {
$date = getdate($this->attributes['phpgwAccountExpires'][0]);
$phpgwAccountExpires = $date['mday'] . '.' . $date['mon'] . '.' . $date['year'];
$return['phpGroupwareUser_phpgwAccountExpires'] = array('<block><key>' . _('Account expiration date') . '</key><value>' . $phpgwAccountExpires . '</value></block>');
}
if (isset($this->attributes['phpgwLastLoginFrom'][0])) {
$return['phpGroupwareUser_phpgwLastLoginFrom'] = array('<block><key>' . _('Last login from') . '</key><value>' . $this->attributes['phpgwLastLoginFrom'][0] . '</value></block>');
}
if (isset($this->attributes['phpgwLastLogin'][0])) {
$date = getdate($this->attributes['phpgwLastLogin'][0]);
$phpgwLastLogin = $date['mday'] . '.' . $date['mon'] . '.' . $date['year'];
$return['phpGroupwareUser_phpgwLastLogin'] = array('<block><key>' . _('Last login') . '</key><value>' . $phpgwLastLogin . '</value></block>');
}
return $return;
}
2009-12-20 14:35:42 +00:00
/**
* Loads the values of an account profile into internal variables.
*
* @param array $profile hash array with profile values (identifier => value)
*/
function load_profile($profile) {
parent::load_profile($profile);
// add extension
2011-01-09 14:38:00 +00:00
if (isset($profile['phpGroupwareUser_addExt'][0]) && ($profile['phpGroupwareUser_addExt'][0] == "true")) {
2009-12-20 14:35:42 +00:00
if (!in_array('phpgwAccount', $this->attributes['objectClass'])) {
$this->attributes['objectClass'][] = 'phpgwAccount';
}
}
}
2008-02-26 19:55:37 +00:00
2008-02-24 18:53:25 +00:00
/**
* In this function the LDAP account is built up.
*
* @param array $rawAccounts list of hash arrays (name => value) from user input
* @param array $partialAccounts list of hash arrays (name => value) which are later added to LDAP
* @param array $ids list of IDs for column position (e.g. "posixAccount_uid" => 5)
* @param array $selectedModules list of selected account modules
2008-02-24 18:53:25 +00:00
* @return array list of error messages if any
*/
function build_uploadAccounts($rawAccounts, $ids, &$partialAccounts, $selectedModules) {
2008-02-26 19:55:37 +00:00
$messages = array();
2008-02-24 18:53:25 +00:00
for ($i = 0; $i < sizeof($rawAccounts); $i++) {
2008-02-26 19:55:37 +00:00
if (!isset($rawAccounts[$i][$ids['phpGroupwareUser_extension']])
|| !(strtolower($rawAccounts[$i][$ids['phpGroupwareUser_extension']]) == "true")) {
2008-02-24 18:53:25 +00:00
continue;
}
$partialAccounts[$i]['objectClass'][] = 'phpgwAccount';
$partialAccounts[$i]['phpgwAccountID'][0] = $partialAccounts[$i]['uidNumber'];
2008-02-26 19:55:37 +00:00
$partialAccounts[$i]['phpgwLastPasswordChange'] = array(time());
// account status
if ($rawAccounts[$i][$ids['phpGroupwareUser_accountStatus']] != '') {
$status = $rawAccounts[$i][$ids['phpGroupwareUser_accountStatus']];
if (($status == 'active') || ($status == 'inactive')) {
$partialAccounts[$i]['phpgwAccountStatus'] = array($status);
}
else {
$errMsg = $this->messages['phpgwAccountStatus'][0];
array_push($errMsg, array($i));
$messages[] = $errMsg;
}
}
// expiration date
if ($rawAccounts[$i][$ids['phpGroupwareUser_accountExpires']] != '') {
if (get_preg($rawAccounts[$i][$ids['phpGroupwareUser_accountExpires']], 'date')) {
$parts = explode('-', $rawAccounts[$i][$ids['phpGroupwareUser_accountExpires']]);
$partialAccounts[$i]['phpgwAccountExpires'] = mktime(0, 0, 0, intval($parts[1]), intval($parts[0]), intval($parts[2]));
}
else {
$errMsg = $this->messages['phpgwAccountExpires'][0];
array_push($errMsg, array($i));
$messages[] = $errMsg;
}
}
2008-03-25 19:01:10 +00:00
else {
$partialAccounts[$i]['phpgwAccountExpires'] = "-1";
}
2008-02-24 18:53:25 +00:00
}
2008-02-26 19:55:37 +00:00
return $messages;
2008-02-24 18:53:25 +00:00
}
2009-10-10 11:04:14 +00:00
/**
* This method specifies if a module manages password attributes.
* @see passwordService::managesPasswordAttributes
*
* @return boolean true if this module manages password attributes
*/
public function managesPasswordAttributes() {
// only listen to password changes
return false;
}
/**
* This function is called whenever the password should be changed. Account modules
* must change their password attributes only if the modules list contains their module name.
*
* @param String $password new password
* @param $modules list of modules for which the password should be changed
* @return array list of error messages if any as parameter array for StatusMessage
* e.g. return arrray(array('ERROR', 'Password change failed.'))
* @see passwordService::passwordChangeRequested
*/
public function passwordChangeRequested($password, $modules) {
// update password timestamp when Unix password was updated
if (!in_array('posixAccount', $modules)) {
return array();
}
if (in_array_ignore_case('phpgwAccount', $this->attributes['objectClass'])) {
$this->attributes['phpgwLastPasswordChange'][0] = time();
}
2009-10-10 11:04:14 +00:00
return array();
}
2008-02-24 18:53:25 +00:00
}
?>