| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | <?php | 
					
						
							|  |  |  | /* | 
					
						
							|  |  |  | $Id$ | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2009-10-27 18:47:12 +00:00
										 |  |  |   This code is part of LDAP Account Manager (http://www.ldap-account-manager.org/) | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  |    | 
					
						
							|  |  |  |   This code is based on phpLDAPadmin. | 
					
						
							|  |  |  |   Copyright (C) 2004  David Smith and phpLDAPadmin developers | 
					
						
							|  |  |  |    | 
					
						
							|  |  |  |   The original code was modified to fit for LDAP Account Manager by Roland Gruber. | 
					
						
							|  |  |  |   Copyright (C) 2005  Roland Gruber | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |   This program is free software; you can redistribute it and/or modify | 
					
						
							|  |  |  |   it under the terms of the GNU General Public License as published by | 
					
						
							|  |  |  |   the Free Software Foundation; either version 2 of the License, or | 
					
						
							|  |  |  |   (at your option) any later version. | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |   This program is distributed in the hope that it will be useful, | 
					
						
							|  |  |  |   but WITHOUT ANY WARRANTY; without even the implied warranty of | 
					
						
							|  |  |  |   MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the | 
					
						
							|  |  |  |   GNU General Public License for more details. | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |   You should have received a copy of the GNU General Public License | 
					
						
							|  |  |  |   along with this program; if not, write to the Free Software | 
					
						
							|  |  |  |   Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | */ | 
					
						
							|  |  |  |   | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | /** | 
					
						
							|  |  |  |  * This page may simply add the objectClass and take you back to the edit page, | 
					
						
							|  |  |  |  * but, in one condition it may prompt the user for input. That condition is this: | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  *    If the user has requested to add an objectClass that requires a set of | 
					
						
							|  |  |  |  *    attributes with 1 or more not defined by the object. In that case, we will | 
					
						
							|  |  |  |  *    present a form for the user to add those attributes to the object. | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * Variables that come in as POST vars: | 
					
						
							|  |  |  |  *  - dn (rawurlencoded) | 
					
						
							|  |  |  |  *  - new_oclass | 
					
						
							|  |  |  |  * | 
					
						
							|  |  |  |  * @package lists | 
					
						
							|  |  |  |  * @subpackage tree | 
					
						
							|  |  |  |  * @author David Smith | 
					
						
							|  |  |  |  * @author Roland Gruber | 
					
						
							|  |  |  |  */ | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2006-03-26 17:51:25 +00:00
										 |  |  | /** security functions */ | 
					
						
							|  |  |  | include_once('../../lib/security.inc'); | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | /** tree functions */ | 
					
						
							|  |  |  | include_once('../../lib/tree.inc'); | 
					
						
							|  |  |  | /** access to configuration */ | 
					
						
							|  |  |  | include_once('../../lib/config.inc'); | 
					
						
							|  |  |  | /** LDAP functions */ | 
					
						
							|  |  |  | include_once('../../lib/ldap.inc'); | 
					
						
							|  |  |  | /** status messages */ | 
					
						
							|  |  |  | include_once('../../lib/status.inc'); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | // start session
 | 
					
						
							| 
									
										
										
										
											2006-03-26 17:51:25 +00:00
										 |  |  | startSecureSession(); | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | 
 | 
					
						
							| 
									
										
										
										
											2008-01-01 15:00:46 +00:00
										 |  |  | // die if no write access
 | 
					
						
							|  |  |  | if (!checkIfWriteAccessIsAllowed()) die(); | 
					
						
							|  |  |  | 
 | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | setlanguage(); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | $dn = rawurldecode( $_POST['dn'] ); | 
					
						
							|  |  |  | $encoded_dn = rawurlencode( $dn ); | 
					
						
							|  |  |  | $new_oclass = $_POST['new_oclass']; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | /* Ensure that the object has defined all MUST attrs for this objectClass. | 
					
						
							|  |  |  |  * If it hasn't, present a form to have the user enter values for all the | 
					
						
							|  |  |  |  * newly required attrs. */ | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | $entry = get_object_attrs( $dn, true ); | 
					
						
							|  |  |  | $current_attrs = array(); | 
					
						
							|  |  |  | foreach( $entry as $attr => $junk ) | 
					
						
							|  |  |  | 	$current_attrs[] = strtolower($attr); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | // grab the required attributes for the new objectClass
 | 
					
						
							| 
									
										
										
										
											2005-08-07 13:56:16 +00:00
										 |  |  | $schema_oclasses = get_schema_objectclasses(); | 
					
						
							|  |  |  | $must_attrs = array(); | 
					
						
							|  |  |  | foreach($new_oclass as $oclass_name) { | 
					
						
							|  |  |  | 	$oclass = get_schema_objectclass($oclass_name); | 
					
						
							|  |  |  | 	if($oclass) | 
					
						
							|  |  |  | 		$must_attrs = array_merge($must_attrs, $oclass->getMustAttrNames($schema_oclasses)); | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | $must_attrs = array_unique( $must_attrs ); | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | 
 | 
					
						
							|  |  |  | // We don't want any of the attr meta-data, just the string
 | 
					
						
							|  |  |  | //foreach( $must_attrs as $i => $attr )
 | 
					
						
							|  |  |  | 	//$must_attrs[$i] = $attr->getName();
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | // build a list of the attributes that this new objectClass requires,
 | 
					
						
							|  |  |  | // but that the object does not currently contain
 | 
					
						
							|  |  |  | $needed_attrs = array(); | 
					
						
							|  |  |  | foreach( $must_attrs as $attr ) { | 
					
						
							| 
									
										
										
										
											2005-08-07 13:56:16 +00:00
										 |  |  |     $attr = get_schema_attribute($attr); | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  |     //echo "<pre>"; var_dump( $attr ); echo "</pre>";
 | 
					
						
							|  |  |  |     // First, check if one of this attr's aliases is already an attribute of this entry
 | 
					
						
							|  |  |  |     foreach( $attr->getAliases() as $alias_attr_name ) | 
					
						
							|  |  |  |         if( in_array( strtolower( $alias_attr_name ), $current_attrs ) ) | 
					
						
							|  |  |  |             // Skip this attribute since it's already in the entry
 | 
					
						
							|  |  |  |             continue; | 
					
						
							|  |  |  | 	if( in_array( strtolower($attr->getName()), $current_attrs ) ) | 
					
						
							|  |  |  |         continue; | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  |     // We made it this far, so the attribute needs to be added to this entry in order 
 | 
					
						
							|  |  |  |     // to add this objectClass
 | 
					
						
							|  |  |  |     $needed_attrs[] = $attr; | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | if( count( $needed_attrs ) > 0 ) | 
					
						
							|  |  |  | { | 
					
						
							|  |  |  | 	echo $_SESSION['header']; | 
					
						
							|  |  |  | 	 | 
					
						
							|  |  |  | 	echo "<title>LDAP Account Manager</title>\n"; | 
					
						
							|  |  |  | 	echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../../style/layout.css\">\n"; | 
					
						
							|  |  |  | 	echo "</head>\n"; | 
					
						
							|  |  |  | 	?>
 | 
					
						
							|  |  |  | 	<body> | 
					
						
							|  |  |  | 	 | 
					
						
							|  |  |  | 	<h3 class="tree_title"><?php echo _('DN') . ": " . $dn; ?></h3>
 | 
					
						
							|  |  |  | 	<h3 class="tree_subtitle"><?php echo _('There are new required attributes which need to be set.'); ?></h3>
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 	<br /> | 
					
						
							|  |  |  | 	 | 
					
						
							|  |  |  | 	<form action="add_oclass.php" method="post"> | 
					
						
							| 
									
										
										
										
											2005-08-07 13:56:16 +00:00
										 |  |  | 	<input type="hidden" name="new_oclass" value="<?php echo rawurlencode(serialize($new_oclass)); ?>" /> | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | 	<input type="hidden" name="dn" value="<?php echo $encoded_dn; ?>" /> | 
					
						
							|  |  |  | 	 | 
					
						
							|  |  |  | 	<table class="tree_edit_dn" cellspacing="0"> | 
					
						
							|  |  |  | 	<tr><th colspan="2"><?php echo _('New required attributes:'); ?></th></tr>
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 	<?php foreach( $needed_attrs as $count => $attr ) { ?>
 | 
					
						
							|  |  |  |         <tr><td class="attr"><b><?php echo htmlspecialchars($attr->getName()); ?></b></td></tr>
 | 
					
						
							|  |  |  | 		<tr><td class="val"><input type="text" name="new_attrs[<?php echo htmlspecialchars($attr->getName()); ?>]" value="" size="40" /></tr> | 
					
						
							|  |  |  | 	<?php  } ?>
 | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 	</table> | 
					
						
							|  |  |  | 	<br /> | 
					
						
							|  |  |  | 	<br /> | 
					
						
							|  |  |  | 	<center><input type="submit" value="<?php echo _('Add'); ?>" /></center> | 
					
						
							|  |  |  | 	</form> | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 	</body> | 
					
						
							|  |  |  | 	</html> | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | 	<?php | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | else | 
					
						
							|  |  |  | { | 
					
						
							| 
									
										
										
										
											2007-07-08 10:51:01 +00:00
										 |  |  | 	$ds = $_SESSION['ldap']->server(); | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | 	$add_res = @ldap_mod_add( $ds, $dn, array( 'objectClass' => $new_oclass ) ); | 
					
						
							|  |  |  | 	if( ! $add_res ) { | 
					
						
							|  |  |  | 		echo $_SESSION['header']; | 
					
						
							|  |  |  | 		 | 
					
						
							|  |  |  | 		echo "<title>LDAP Account Manager</title>\n"; | 
					
						
							|  |  |  | 		echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../../style/layout.css\">\n"; | 
					
						
							|  |  |  | 		echo "</head>\n"; | 
					
						
							| 
									
										
										
										
											2011-05-11 15:04:24 +00:00
										 |  |  | 		StatusMessage('ERROR', _("Was unable to modify attributes from DN: %s."), ldap_error( $ds ), array($dn)); | 
					
						
							| 
									
										
										
										
											2005-02-27 12:40:06 +00:00
										 |  |  | 		echo "</body></html>"; | 
					
						
							|  |  |  | 	} | 
					
						
							|  |  |  | 	else | 
					
						
							|  |  |  | 		header( "Location: edit.php?dn=$encoded_dn&modified_attrs[]=objectClass" ); | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | } | 
					
						
							|  |  |  | 
 | 
					
						
							|  |  |  | ?>
 |