LDAPAccountManager/lam/templates/delete.php

301 lines
10 KiB
PHP
Raw Normal View History

<?php
/*
2005-03-26 11:27:15 +00:00
$Id$
2006-08-14 17:29:45 +00:00
2005-03-26 11:27:15 +00:00
This code is part of LDAP Account Manager (http://www.sourceforge.net/projects/lam)
2006-03-03 17:30:35 +00:00
Copyright (C) 2003 - 2006 Tilo Lutz
Copyright (C) 2007 Roland Gruber
2006-08-14 17:29:45 +00:00
2005-03-26 11:27:15 +00:00
This program is free software; you can redistribute it and/or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation; either version 2 of the License, or
(at your option) any later version.
2006-08-14 17:29:45 +00:00
2005-03-26 11:27:15 +00:00
This program is distributed in the hope that it will be useful,
but WITHOUT ANY WARRANTY; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
GNU General Public License for more details.
2006-08-14 17:29:45 +00:00
2005-03-26 11:27:15 +00:00
You should have received a copy of the GNU General Public License
along with this program; if not, write to the Free Software
Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA
2006-08-14 17:29:45 +00:00
2005-03-26 11:27:15 +00:00
*/
2005-03-26 11:27:15 +00:00
/**
* Used to delete accounts from LDAP tree.
*
* @author Tilo Lutz
* @author Roland Gruber
2005-08-17 19:17:15 +00:00
* @package main
*/
2004-01-10 11:47:48 +00:00
2006-03-26 17:51:25 +00:00
/** security functions */
include_once("../lib/security.inc");
2005-08-17 19:17:15 +00:00
/** account functions */
include_once('../lib/account.inc');
/** current configuration options */
include_once('../lib/config.inc');
/** message displaying */
include_once('../lib/status.inc');
/** LDAP connection */
include_once('../lib/ldap.inc');
/** lamdaemon interface */
include_once('../lib/lamdaemon.inc');
/** module interface */
include_once('../lib/modules.inc');
2004-01-10 11:47:48 +00:00
// Start session
2006-03-26 17:51:25 +00:00
startSecureSession();
2004-01-10 11:47:48 +00:00
2007-12-30 16:08:54 +00:00
if (!checkIfWriteAccessIsAllowed()) {
die();
}
// Redirect to startpage if user is not loged in
if (!isset($_SESSION['loggedIn'])) {
metaRefresh("login.php");
2004-01-10 11:47:48 +00:00
exit;
2005-03-26 11:27:15 +00:00
}
2004-01-10 11:47:48 +00:00
// Set correct language, codepages, ....
setlanguage();
2003-04-25 16:14:09 +00:00
2004-01-10 11:47:48 +00:00
if (!isset($_SESSION['cache'])) {
$_SESSION['cache'] = new cache();
2005-03-26 11:27:15 +00:00
}
2007-04-21 11:04:50 +00:00
if (isset($_GET['type']) && isset($_SESSION['delete_dn'])) {
2004-01-10 11:47:48 +00:00
// Create account list
foreach ($_SESSION['delete_dn'] as $dn) {
$start = strpos ($dn, "=")+1;
$end = strpos ($dn, ",");
$users[] = substr($dn, $start, $end-$start);
2005-03-26 11:27:15 +00:00
}
2004-01-10 11:47:48 +00:00
//load account
$_SESSION['account'] = new accountContainer($_GET['type'], 'account');
// Show HTML Page
echo $_SESSION['header'];
2006-10-22 07:45:58 +00:00
echo "<title>LDAP Account Manager</title>\n";
2004-01-10 11:47:48 +00:00
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../style/layout.css\">\n";
2007-11-18 10:36:35 +00:00
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../style/type_" . $_GET['type'] . ".css\">\n";
2004-01-10 11:47:48 +00:00
echo "</head><body>\n";
echo "<form action=\"delete.php\" method=\"post\">\n";
2005-04-22 08:56:47 +00:00
echo "<fieldset class=\"".$_GET['type']."edit\"><legend><b>";
2005-03-26 11:27:15 +00:00
echo _('Please confirm:');
echo "</b></legend>\n";
2004-01-10 11:47:48 +00:00
echo "<input name=\"type\" type=\"hidden\" value=\"" . $_GET['type'] . "\">\n";
2005-03-26 11:27:15 +00:00
echo "<b>" . _("Do you really want to remove the following accounts?") . "</b>";
echo "<br><br>\n";
2005-11-26 12:49:48 +00:00
echo "<table border=0>\n";
2004-01-10 11:47:48 +00:00
for ($i=0; $i<count($users); $i++) {
echo "<tr>\n";
2005-03-26 11:27:15 +00:00
echo "<td><b>" . _("Account name:") . "</b> $users[$i]</td>\n";
2005-11-26 12:49:48 +00:00
echo "<td>&nbsp;&nbsp;<b>" . _('DN') . ":</b> " . $_SESSION['delete_dn'][$i] . "</td>\n";
$childCount = getChildCount($_SESSION['delete_dn'][$i]);
if ($childCount > 0) {
echo "<td>&nbsp;&nbsp;<b>" . _('Number of child entries') . ":</b> " . $childCount . "</td>\n";
}
2004-01-10 11:47:48 +00:00
echo "</tr>\n";
2005-03-26 11:27:15 +00:00
}
echo "</table>\n";
2004-01-10 11:47:48 +00:00
echo "<br>\n";
// Print delete rows from modules
echo "<table border=0 width=\"100%\">\n<tr><td valign=\"top\" width=\"15%\" >";
2005-04-04 16:55:34 +00:00
$modules = $_SESSION['config']->get_AccountModules($_GET['type']);
$values = array();
$tabindex = 100;
$tabindexLink = 1000;
2005-04-04 16:55:34 +00:00
foreach ($modules as $module) {
$module = new $module($_GET['type']);
parseHtml(get_class($module), $module->display_html_delete($_POST), $values, true, $tabindex, $tabindexLink, $_GET['type']);
2005-03-26 11:27:15 +00:00
}
2004-01-10 11:47:48 +00:00
echo "</table>\n";
echo "<br>\n";
2005-03-26 11:27:15 +00:00
echo "<input name=\"delete\" type=\"submit\" value=\"" . _('Delete') . "\">&nbsp;\n";
echo "<input name=\"cancel\" type=\"submit\" value=\"" . _('Cancel') . "\">\n";
2004-01-10 11:47:48 +00:00
echo "</fieldset>\n";
echo "</form>\n";
echo "</body>\n";
echo "</html>\n";
2005-03-26 11:27:15 +00:00
}
2003-05-02 07:59:13 +00:00
2004-01-10 11:47:48 +00:00
if ($_POST['cancel']) {
if (isset($_SESSION['delete_dn'])) unset($_SESSION['delete_dn']);
2006-01-06 10:47:43 +00:00
metaRefresh("lists/list.php?type=" . $_POST['type']);
2005-03-26 11:27:15 +00:00
}
2004-01-10 11:47:48 +00:00
if ($_POST['delete']) {
// Show HTML Page
echo $_SESSION['header'];
2006-10-22 07:45:58 +00:00
echo "<title>LDAP Account Manager</title>\n";
2004-01-10 11:47:48 +00:00
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../style/layout.css\">\n";
2007-11-18 10:36:35 +00:00
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"../style/type_" . $_POST['type'] . ".css\">\n";
2004-01-10 11:47:48 +00:00
echo "</head><body>\n";
echo "<form action=\"delete.php\" method=\"post\">\n";
echo "<input name=\"type\" type=\"hidden\" value=\"" . $_POST['type'] . "\">\n";
2005-04-22 08:56:47 +00:00
echo "<fieldset class=\"".$_POST['type']."edit\"><legend><b>";
2005-03-26 11:27:15 +00:00
echo _('Deleting. Please stand by ...');
echo "</b></legend>\n";
2004-01-10 11:47:48 +00:00
// Delete dns
for ($m=0; $m<count($_SESSION['delete_dn']); $m++) {
// Set to true if an real error has happened
$stopprocessing = false;
// First load DN.
$_SESSION['account']->load_account($_SESSION['delete_dn'][$m]);
// get commands and changes of each attribute
2007-10-26 14:10:10 +00:00
$moduleNames = array_keys($_SESSION['account']->getAccountModules());
$modules = $_SESSION['account']->getAccountModules();
2004-01-10 11:47:48 +00:00
$attributes = array();
$errors = array();
2007-02-25 13:51:40 +00:00
// predelete actions
if (!$stopprocessing) {
2007-10-26 14:10:10 +00:00
foreach ($moduleNames as $singlemodule) {
$success = $modules[$singlemodule]->preDeleteActions();
2007-02-25 13:51:40 +00:00
if (!$success) {
$stopprocessing = true;
break;
2004-01-10 11:47:48 +00:00
}
}
2007-02-25 13:51:40 +00:00
}
if (!$stopprocessing) {
// load attributes
2007-10-26 14:10:10 +00:00
foreach ($moduleNames as $singlemodule) {
2007-02-25 13:51:40 +00:00
// load changes
2007-10-26 14:10:10 +00:00
$temp = $modules[$singlemodule]->delete_attributes();
2007-02-25 13:51:40 +00:00
if (is_array($temp)) {
// merge changes
$DNs = array_keys($temp);
// *** fixme don't include references
$attributes = array_merge_recursive($temp, $attributes);
for ($i=0; $i<count($DNs); $i++) {
$ops = array_keys($temp[$DNs[$i]]);
for ($j=0; $j<count($ops); $j++) {
$attrs = array_keys($temp[$DNs[$i]][$ops[$j]]);
for ($k=0; $k<count($attrs); $k++)
$attributes[$DNs[$i]][$ops[$j]][$attrs[$k]] = array_unique($attributes[$DNs[$i]][$ops[$j]][$attrs[$k]]);
}
}
2004-01-10 11:47:48 +00:00
}
2005-03-26 11:27:15 +00:00
}
2007-02-25 13:51:40 +00:00
$DNs = array_keys($attributes);
for ($i=0; $i<count($DNs); $i++) {
if (isset($attributes[$DNs[$i]]['errors'])) {
foreach ($attributes[$DNs[$i]]['errors'] as $singleerror) {
$errors[] = $singleerror;
if ($singleerror[0] == 'ERROR') $stopprocessing = true;
}
2005-03-26 11:27:15 +00:00
}
2007-02-25 13:51:40 +00:00
if (!$stopprocessing) {
// modify attributes
if (isset($attributes[$DNs[$i]]['modify']) && !$stopprocessing) {
$success = @ldap_mod_replace($_SESSION['ldap']->server(), $DNs[$i], $attributes[$DNs[$i]]['modify']);
if (!$success) {
$errors[] = array ('ERROR', sprintf(_('Was unable to modify attribtues from DN: %s.'), $DNs[$i]), ldap_error($_SESSION['ldap']->server()));
$stopprocessing = true;
}
2003-04-26 21:58:00 +00:00
}
2007-02-25 13:51:40 +00:00
// add attributes
if (isset($attributes[$DNs[$i]]['add']) && !$stopprocessing) {
$success = @ldap_mod_add($_SESSION['ldap']->server(), $DNs[$i], $attributes[$DNs[$i]]['add']);
if (!$success) {
$errors[] = array ('ERROR', sprintf(_('Was unable to add attribtues to DN: %s.'), $DNs[$i]), ldap_error($_SESSION['ldap']->server()));
$stopprocessing = true;
}
}
// removce attributes
if (isset($attributes[$DNs[$i]]['remove']) && !$stopprocessing) {
$success = @ldap_mod_del($_SESSION['ldap']->server(), $DNs[$i], $attributes[$DNs[$i]]['remove']);
if (!$success) {
$errors[] = array ('ERROR', sprintf(_('Was unable to remove attribtues from DN: %s.'), $DNs[$i]), ldap_error($_SESSION['ldap']->server()));
$stopprocessing = true;
}
2004-01-10 11:47:48 +00:00
}
}
}
2005-03-26 11:27:15 +00:00
}
2004-01-10 11:47:48 +00:00
if (!$stopprocessing) {
2005-11-26 12:49:48 +00:00
$errors = deleteDN($_SESSION['delete_dn'][$m]);
if (sizeof($errors) > 0) $stopprocessing = true;
2005-03-26 11:27:15 +00:00
}
2007-02-25 13:51:40 +00:00
// post delete actions
if (!$stopprocessing) {
2007-10-26 14:10:10 +00:00
foreach ($moduleNames as $singlemodule) {
$modules[$singlemodule]->postDeleteActions();
}
}
2004-01-10 11:47:48 +00:00
if (!$stopprocessing) {
2005-03-26 11:27:15 +00:00
echo sprintf(_('Deleted DN: %s'), $_SESSION['delete_dn'][$m]) . "<br>\n";
2004-01-10 11:47:48 +00:00
foreach ($errors as $error) StatusMessage($error[0], $error[1], $error[2]);
2005-03-26 11:27:15 +00:00
echo "<br>\n";
}
2004-01-10 11:47:48 +00:00
else {
2005-03-26 11:27:15 +00:00
echo sprintf(_('Error while deleting DN: %s'), $_SESSION['delete_dn'][$m]) . "<br>\n";
2004-01-10 11:47:48 +00:00
foreach ($errors as $error) StatusMessage($error[0], $error[1], $error[2]);
2005-03-26 11:27:15 +00:00
echo "<br>\n";
2003-08-20 19:16:03 +00:00
}
2005-03-26 11:27:15 +00:00
}
$_SESSION['cache']->refresh_cache(true);
2004-01-10 11:47:48 +00:00
echo "<br>\n";
2005-03-26 11:27:15 +00:00
echo "<br><input name=\"cancel\" type=\"submit\" value=\"" . _('Back to list') . "\">\n";
2004-01-10 11:47:48 +00:00
echo "</fieldset>\n";
echo "</form>\n";
echo "</body>\n";
echo "</html>\n";
2003-05-02 07:59:13 +00:00
2005-03-26 11:27:15 +00:00
}
2003-05-02 07:59:13 +00:00
2005-11-26 12:49:48 +00:00
/**
* Returns the number of child entries of a DN.
*
* @param string $dn DN of parent
* @return interger number of childs
*/
function getChildCount($dn) {
$return = 0;
2007-07-08 10:51:01 +00:00
$sr = @ldap_search($_SESSION['ldap']->server(), $dn, 'objectClass=*', array('dn'), 0);
2005-11-26 12:49:48 +00:00
if ($sr) {
2007-07-08 10:51:01 +00:00
$entries = ldap_get_entries($_SESSION['ldap']->server(), $sr);
2005-11-26 12:49:48 +00:00
$return = $entries['count'] - 1;
}
return $return;
}
/**
* Deletes a DN and all child entries.
2006-08-14 17:29:45 +00:00
*
2005-11-26 12:49:48 +00:00
* @param string $dn DN to delete
* @return array error messages
*/
function deleteDN($dn) {
$errors = array();
2007-07-08 10:51:01 +00:00
$sr = @ldap_list($_SESSION['ldap']->server(), $dn, 'objectClass=*', array('dn'), 0);
2005-11-26 12:49:48 +00:00
if ($sr) {
2007-07-08 10:51:01 +00:00
$entries = ldap_get_entries($_SESSION['ldap']->server(), $sr);
2005-11-26 12:49:48 +00:00
for ($i = 0; $i < $entries['count']; $i++) {
// delete recursively
$subErrors = deleteDN($entries[$i]['dn']);
for ($e = 0; $e < sizeof($subErrors); $e++) $errors[] = $subErrors[$e];
}
}
else {
$errors[] = array ('ERROR', sprintf(_('Was unable to delete DN: %s.'), $dn), ldap_error($_SESSION['ldap']->server()));
}
// delete parent DN
$success = @ldap_delete($_SESSION['ldap']->server(), $dn);
2006-05-16 15:18:24 +00:00
$ldapUser = $_SESSION['ldap']->decrypt_login();
$ldapUser = $ldapUser[0];
2005-11-26 12:49:48 +00:00
if (!$success) {
2006-05-16 15:18:24 +00:00
logNewMessage(LOG_ERR, '[' . $ldapUser .'] Unable to delete DN: ' . $dn . ' (' . ldap_err2str(ldap_errno($_SESSION['ldap']->server())) . ').');
2005-11-26 12:49:48 +00:00
$errors[] = array ('ERROR', sprintf(_('Was unable to delete DN: %s.'), $dn), ldap_error($_SESSION['ldap']->server()));
}
2006-05-16 15:18:24 +00:00
else {
logNewMessage(LOG_NOTICE, '[' . $ldapUser .'] Deleted DN: ' . $dn);
}
2005-11-26 12:49:48 +00:00
return $errors;
}
2003-04-25 16:14:09 +00:00
?>