2004-01-30 10:26:04 +00:00
< ? php
/*
$Id $
2009-10-27 18:47:12 +00:00
This code is part of LDAP Account Manager ( http :// www . ldap - account - manager . org / )
2012-01-15 19:34:14 +00:00
Copyright ( C ) 2003 - 2012 Roland Gruber
2004-01-30 10:26:04 +00:00
This program is free software ; you can redistribute it and / or modify
it under the terms of the GNU General Public License as published by
the Free Software Foundation ; either version 2 of the License , or
( at your option ) any later version .
This program is distributed in the hope that it will be useful ,
but WITHOUT ANY WARRANTY ; without even the implied warranty of
MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE . See the
GNU General Public License for more details .
You should have received a copy of the GNU General Public License
along with this program ; if not , write to the Free Software
Foundation , Inc . , 59 Temple Place , Suite 330 , Boston , MA 02111 - 1307 USA
2004-06-20 19:23:04 +00:00
*/
2004-01-30 10:26:04 +00:00
2004-06-20 19:23:04 +00:00
/**
* Interface between modules and other parts of LAM .
2006-08-14 17:29:45 +00:00
*
2004-06-20 19:23:04 +00:00
* @ package modules
* @ author Tilo Lutz
* @ author Michael Duergner
* @ author Roland Gruber
2004-01-30 10:26:04 +00:00
*/
2004-06-20 19:23:04 +00:00
/** some helper functions */
2004-04-04 13:45:59 +00:00
include_once ( " account.inc " );
2004-06-08 18:54:37 +00:00
/** parent class of account modules */
include_once ( " baseModule.inc " );
2004-09-08 19:30:18 +00:00
/** access to LDAP server */
include_once ( " ldap.inc " );
2004-12-09 19:10:57 +00:00
/** lamdaemon functions */
include_once ( " lamdaemon.inc " );
2006-04-23 16:33:25 +00:00
/** security functions */
include_once ( " security.inc " );
2010-06-06 18:16:09 +00:00
/** meta HTML classes */
include_once ( " html.inc " );
2006-08-14 17:29:45 +00:00
2004-06-20 19:23:04 +00:00
/**
* This includes all module files .
2004-02-10 19:59:41 +00:00
*/
2004-10-14 14:09:44 +00:00
$modulesINC_dirname = substr ( __FILE__ , 0 , strlen ( __FILE__ ) - 12 ) . " /modules " ;
$modulesINC_dir = dir ( $modulesINC_dirname );
// get module names.
while ( $entry = $modulesINC_dir -> read ())
if (( substr ( $entry , strlen ( $entry ) - 4 , 4 ) == '.inc' ) && is_file ( $modulesINC_dirname . '/' . $entry )) {
include_once ( $modulesINC_dirname . '/' . $entry );
2004-07-24 17:14:39 +00:00
}
2004-01-30 10:26:04 +00:00
2004-06-14 16:05:36 +00:00
/**
* Returns the alias name of a module
*
* @ param string $name the module name
* @ param string $scope the account type ( " user " , " group " , " host " )
* @ return string alias name
*/
2004-02-21 17:25:18 +00:00
function getModuleAlias ( $name , $scope ) {
2004-06-14 16:05:36 +00:00
$module = new $name ( $scope );
return $module -> get_alias ();
2004-02-21 17:25:18 +00:00
}
2004-06-20 19:23:04 +00:00
/**
* Returns true if the module is a base module
*
* @ param string $name the module name
* @ param string $scope the account type ( " user " , " group " , " host " )
* @ return boolean true if base module
*/
2004-02-21 17:25:18 +00:00
function is_base_module ( $name , $scope ) {
2004-06-08 18:54:37 +00:00
$module = new $name ( $scope );
return $module -> is_base_module ();
2004-02-21 17:25:18 +00:00
}
2004-01-30 10:26:04 +00:00
2004-06-20 19:23:04 +00:00
/**
* Returns the LDAP filter used by the account lists
*
* @ param string $scope the account type ( " user " , " group " , " host " )
* @ return string LDAP filter
*/
2004-02-23 16:55:51 +00:00
function get_ldap_filter ( $scope ) {
2004-10-17 09:52:58 +00:00
$mods = $_SESSION [ 'config' ] -> get_AccountModules ( $scope );
2004-02-23 16:55:51 +00:00
$filters = array ();
2004-06-04 11:28:22 +00:00
$orFilter = '' ;
2004-02-23 16:55:51 +00:00
for ( $i = 0 ; $i < sizeof ( $mods ); $i ++ ) {
2005-01-10 10:57:04 +00:00
$module = new $mods [ $i ]( $scope );
$modinfo = $module -> get_ldap_filter ();
if ( isset ( $modinfo [ 'or' ])) $filters [ 'or' ][] = $modinfo [ 'or' ];
if ( isset ( $modinfo [ 'and' ])) $filters [ 'and' ][] = $modinfo [ 'and' ];
2004-02-23 16:55:51 +00:00
}
2004-06-04 11:28:22 +00:00
// build OR filter
if ( sizeof ( $filters [ 'or' ]) == 1 ) {
$orFilter = $filters [ 'or' ][ 0 ];
2004-02-23 16:55:51 +00:00
}
2004-06-04 11:28:22 +00:00
elseif ( sizeof ( $filters [ 'or' ]) > 1 ) {
$orFilter = " (| " . implode ( " " , $filters [ 'or' ]) . " ) " ;
2004-02-23 16:55:51 +00:00
}
2004-06-04 11:28:22 +00:00
// add built OR filter to AND filters
if ( $orFilter != '' ) $filters [ 'and' ][] = $orFilter ;
// collapse AND filters
if ( sizeof ( $filters [ 'and' ]) < 2 ) return $filters [ 'and' ][ 0 ];
else return " (& " . implode ( " " , $filters [ 'and' ]) . " ) " ;
2004-02-23 16:55:51 +00:00
}
2004-10-06 18:17:22 +00:00
/**
* Returns a list of LDAP attributes which can be used to form the RDN .
*
* The list is already sorted by the priority given by the nodules .
*
* @ param string $scope account type ( user , group , host )
2010-02-15 20:21:44 +00:00
* @ param array $selectedModules return only RDN attributes of these modules
2004-10-06 18:17:22 +00:00
* @ return array list of LDAP attributes
*/
2010-02-15 20:21:44 +00:00
function getRDNAttributes ( $scope , $selectedModules = null ) {
2004-10-17 09:52:58 +00:00
$mods = $_SESSION [ 'config' ] -> get_AccountModules ( $scope );
2010-02-15 20:21:44 +00:00
if ( $selectedModules != null ) {
$mods = $selectedModules ;
}
2004-10-06 18:17:22 +00:00
$return = array ();
$attrs_low = array ();
$attrs_normal = array ();
$attrs_high = array ();
for ( $i = 0 ; $i < sizeof ( $mods ); $i ++ ) {
// get list of attributes
$module = new $mods [ $i ]( $scope );
$attrs = $module -> get_RDNAttributes ();
$keys = array_keys ( $attrs );
// sort attributes
for ( $k = 0 ; $k < sizeof ( $keys ); $k ++ ) {
switch ( $attrs [ $keys [ $k ]]) {
case " low " :
$attrs_low [] = $keys [ $k ];
break ;
case " normal " :
$attrs_normal [] = $keys [ $k ];
break ;
case " high " :
$attrs_high [] = $keys [ $k ];
break ;
default :
$attrs_low [] = $keys [ $k ];
break ;
}
}
}
// merge arrays
2005-08-13 09:49:28 +00:00
$return = array_values ( array_unique ( $attrs_high ));
for ( $i = 0 ; $i < sizeof ( $attrs_normal ); $i ++ ) {
if ( ! in_array ( $attrs_normal [ $i ], $return )) $return [] = $attrs_normal [ $i ];
}
for ( $i = 0 ; $i < sizeof ( $attrs_low ); $i ++ ) {
if ( ! in_array ( $attrs_low [ $i ], $return )) $return [] = $attrs_low [ $i ];
}
2004-10-06 18:17:22 +00:00
return $return ;
}
2004-06-20 19:23:04 +00:00
/**
2004-10-17 09:52:58 +00:00
* Returns a hash array ( module name => dependencies ) of all module dependencies
2004-06-20 19:23:04 +00:00
*
* " dependencies " contains an array with two sub arrays : depends , conflicts
* < br > The elements of " depends " are either module names or an array of module names ( OR - case ) .
* < br > The elements of conflicts are module names .
*
* @ param string $scope the account type ( user , group , host )
* @ return array dependencies
*/
2004-02-08 15:57:55 +00:00
function getModulesDependencies ( $scope ) {
2004-06-04 11:28:22 +00:00
$mods = getAvailableModules ( $scope );
for ( $i = 0 ; $i < sizeof ( $mods ); $i ++ ) {
2004-06-20 17:32:02 +00:00
$module = new $mods [ $i ]( $scope );
$return [ $mods [ $i ]] = $module -> get_dependencies ();
2004-06-04 11:28:22 +00:00
}
2004-02-07 18:34:26 +00:00
return $return ;
2004-07-24 17:14:39 +00:00
}
2004-02-07 18:34:26 +00:00
2004-01-30 10:26:04 +00:00
2004-06-20 19:23:04 +00:00
/**
* Checks if there are missing dependencies between modules .
*
* @ param array $selected selected module names
* @ param array $deps module dependencies
* @ return mixed false if no misssing dependency was found ,
* otherwise an array of array ( selected module , depending module ) if missing dependencies were found
*/
2004-02-21 17:25:18 +00:00
function check_module_depends ( $selected , $deps ) {
$ret = array ();
for ( $m = 0 ; $m < sizeof ( $selected ); $m ++ ) { // check selected modules
for ( $i = 0 ; $i < sizeof ( $deps [ $selected [ $m ]][ 'depends' ]); $i ++ ) { // check dependencies of module
// check if we have OR-combined modules
if ( is_array ( $deps [ $selected [ $m ]][ 'depends' ][ $i ])) {
// one of the elements is needed
$found = false ;
$depends = $deps [ $selected [ $m ]][ 'depends' ][ $i ];
for ( $d = 0 ; $d < sizeof ( $depends ); $d ++ ) {
if ( in_array ( $depends [ $d ], $selected )) {
$found = true ;
break ;
}
}
if ( ! $found ) {
// missing dependency, add to return value
$ret [] = array ( $selected [ $m ], implode ( " || " , $depends ));
}
}
else {
// single dependency
if ( ! in_array ( $deps [ $selected [ $m ]][ 'depends' ][ $i ], $selected )) {
// missing dependency, add to return value
$ret [] = array ( $selected [ $m ], $deps [ $selected [ $m ]][ 'depends' ][ $i ]);
}
}
}
}
if ( sizeof ( $ret ) > 0 ) return $ret ;
else return false ;
}
2004-06-20 19:23:04 +00:00
/**
* Checks if there are conflicts between modules
*
* @ param array $selected selected module names
* @ param array $deps module dependencies
2005-07-21 11:22:59 +00:00
* @ return boolean false if no conflict was found ,
2004-06-20 19:23:04 +00:00
* otherwise an array of array ( selected module , conflicting module ) if conflicts were found
*/
2004-02-21 17:25:18 +00:00
function check_module_conflicts ( $selected , $deps ) {
$ret = array ();
for ( $m = 0 ; $m < sizeof ( $selected ); $m ++ ) {
for ( $i = 0 ; $i < sizeof ( $deps [ $selected [ $m ]][ 'conflicts' ]); $i ++ ) {
if ( in_array ( $deps [ $selected [ $m ]][ 'conflicts' ][ $i ], $selected )) {
$ret [] = array ( $selected [ $m ], $deps [ $selected [ $m ]][ 'conflicts' ][ $i ]);
}
}
}
if ( sizeof ( $ret ) > 0 ) return $ret ;
else return false ;
}
2004-06-13 19:58:58 +00:00
/**
* Returns an array with all available user module names
*
* @ param string $scope account type ( user , group , host )
2012-07-22 18:10:44 +00:00
* @ param boolean $mustSupportAdminInterface module must support LAM admin interface ( default : false )
2004-06-13 19:58:58 +00:00
* @ return array list of possible modules
*/
2012-07-22 18:10:44 +00:00
function getAvailableModules ( $scope , $mustSupportAdminInterface = false ) {
2004-10-14 14:09:44 +00:00
$dirname = substr ( __FILE__ , 0 , strlen ( __FILE__ ) - 12 ) . " /modules " ;
$dir = dir ( $dirname );
2004-05-23 15:51:21 +00:00
$return = array ();
2004-02-07 18:34:26 +00:00
// get module names.
2004-10-14 14:09:44 +00:00
while ( $entry = $dir -> read ())
if (( substr ( $entry , strlen ( $entry ) - 4 , 4 ) == '.inc' ) && is_file ( $dirname . '/' . $entry )) {
2004-02-08 15:57:55 +00:00
$entry = substr ( $entry , 0 , strpos ( $entry , '.' ));
2004-06-13 19:58:58 +00:00
$temp = new $entry ( $scope );
2012-07-22 18:10:44 +00:00
if ( $mustSupportAdminInterface && ! $entry :: supportsAdminInterface ()) {
continue ;
}
if ( $temp -> can_manage ()) {
$return [] = $entry ;
}
2004-03-02 19:58:17 +00:00
}
2004-02-07 18:34:26 +00:00
return $return ;
2004-05-23 15:51:21 +00:00
}
2004-02-07 18:34:26 +00:00
2004-06-20 19:23:04 +00:00
/**
* Returns the elements for the profile page .
*
* @ param string $scope account type ( user , group , host )
* @ return array profile elements
*/
2004-03-06 19:15:40 +00:00
function getProfileOptions ( $scope ) {
2004-10-28 19:37:40 +00:00
$mods = $_SESSION [ 'config' ] -> get_AccountModules ( $scope );
$return = array ();
for ( $i = 0 ; $i < sizeof ( $mods ); $i ++ ) {
$module = new $mods [ $i ]( $scope );
$return [ $mods [ $i ]] = $module -> get_profileOptions ();
2004-02-08 15:57:55 +00:00
}
2004-10-28 19:37:40 +00:00
return $return ;
2004-04-03 14:47:33 +00:00
}
2004-02-08 15:57:55 +00:00
2004-06-20 19:23:04 +00:00
/**
* Checks if the profile options are valid
*
* @ param string $scope account type ( user , group , host )
* @ param array $options hash array containing all options ( name => array ( ... ))
* @ return array list of error messages
*/
2004-03-14 17:35:22 +00:00
function checkProfileOptions ( $scope , $options ) {
2004-10-28 19:37:40 +00:00
$mods = $_SESSION [ 'config' ] -> get_AccountModules ( $scope );
$return = array ();
for ( $i = 0 ; $i < sizeof ( $mods ); $i ++ ) {
$module = new $mods [ $i ]( $scope );
$temp = $module -> check_profileOptions ( $options );
$return = array_merge ( $return , $temp );
2004-02-08 15:57:55 +00:00
}
2004-10-28 19:37:40 +00:00
return $return ;
2004-03-14 17:35:22 +00:00
}
2004-02-21 17:25:18 +00:00
2004-07-24 17:14:39 +00:00
/**
* Returns a hash array ( module name => elements ) of all module options for the configuration page .
*
* @ param array $scopes hash array ( module name => array ( account types ))
* @ return array configuration options
*/
function getConfigOptions ( $scopes ) {
$return = array ();
$modules = array_keys ( $scopes );
for ( $i = 0 ; $i < sizeof ( $modules ); $i ++ ) {
$m = new $modules [ $i ]( 'none' );
2006-03-06 17:09:17 +00:00
$return [ $modules [ $i ]] = $m -> get_configOptions ( $scopes [ $modules [ $i ]], $scopes );
2004-07-24 17:14:39 +00:00
}
return $return ;
}
/**
* Checks if the configuration options are valid
*
* @ param array $scopes hash array ( module name => array ( account types ))
* @ param array $options hash array containing all options ( name => array ( ... ))
* @ return array list of error messages
*/
function checkConfigOptions ( $scopes , $options ) {
$return = array ();
$modules = array_keys ( $scopes );
for ( $i = 0 ; $i < sizeof ( $modules ); $i ++ ) {
$m = new $modules [ $i ]( 'none' );
$errors = $m -> check_configOptions ( $scopes [ $modules [ $i ]], $options );
2007-10-05 18:09:49 +00:00
if ( isset ( $errors ) && is_array ( $errors )) {
$return = array_merge ( $return , $errors );
}
2004-07-24 17:14:39 +00:00
}
return $return ;
}
2004-06-20 19:23:04 +00:00
/**
* Returns a help entry from an account module .
*
* @ param string $module module name
2009-02-07 22:57:04 +00:00
* @ param string $helpID help identifier
* @ param string $scope account type
2004-06-20 19:23:04 +00:00
* @ return array help entry
*/
2004-09-09 07:10:14 +00:00
function getHelp ( $module , $helpID , $scope = '' ) {
2009-02-07 19:25:22 +00:00
if ( ! isset ( $module ) || ( $module == '' ) || ( $module == 'main' )) {
$helpPath = " ../help/help.inc " ;
if ( is_file ( " ../../help/help.inc " )) $helpPath = " ../../help/help.inc " ;
2009-02-07 20:36:56 +00:00
if ( ! isset ( $helpArray )) {
include ( $helpPath );
}
2009-02-07 19:25:22 +00:00
return $helpArray [ $helpID ];
}
2004-09-09 07:10:14 +00:00
$moduleObject = new $module ((( $scope != '' ) ? $scope : 'none' ));
2004-10-30 16:46:06 +00:00
return $moduleObject -> get_help ( $helpID );
2004-03-15 16:30:52 +00:00
}
2004-06-20 19:23:04 +00:00
/**
* Returns a list of available PDF entries .
*
* @ param string $scope account type ( user , group , host )
2010-04-05 10:13:37 +00:00
* @ return array PDF entries ( field ID => field label )
2004-06-20 19:23:04 +00:00
*/
2004-05-30 13:43:42 +00:00
function getAvailablePDFFields ( $scope ) {
2005-06-19 09:40:30 +00:00
$mods = $_SESSION [ 'config' ] -> get_AccountModules ( $scope );
$return = array ();
for ( $i = 0 ; $i < sizeof ( $mods ); $i ++ ) {
$module = new $mods [ $i ]( $scope );
2010-04-05 10:13:37 +00:00
$fields = $module -> get_pdfFields ();
$return [ $mods [ $i ]] = array ();
if ( is_array ( $fields )) {
foreach ( $fields as $fieldID => $fieldLabel ) {
if ( is_integer ( $fieldID )) {
// support old PDF field list which did not contain a label
$return [ $mods [ $i ]][ $fieldLabel ] = $fieldLabel ;
}
else {
$return [ $mods [ $i ]][ $fieldID ] = $fieldLabel ;
}
}
}
2004-05-30 13:43:42 +00:00
}
2010-04-05 12:38:23 +00:00
$return [ 'main' ] = array ( 'dn' => _ ( 'DN' ));
2005-06-19 09:40:30 +00:00
return $return ;
2004-05-30 13:43:42 +00:00
}
2004-09-08 19:30:18 +00:00
/**
* Returns an array containing all input columns for the file upload .
*
* Syntax :
* < br > array (
* < br > string : name , // fixed non-translated name which is used as column name (should be of format: <module name>_<column name>)
* < br > string : description , // short descriptive name
* < br > string : help , // help ID
* < br > string : example , // example value
* < br > boolean : required // true, if user must set a value for this column
* < br > )
*
* @ param string $scope account type
2010-02-15 20:21:44 +00:00
* @ param array $selectedModules selected account modules
2004-09-08 19:30:18 +00:00
* @ return array column list
*/
2010-02-15 20:21:44 +00:00
function getUploadColumns ( $scope , $selectedModules ) {
2004-10-28 19:37:40 +00:00
$return = array ();
2010-02-15 20:21:44 +00:00
for ( $i = 0 ; $i < sizeof ( $selectedModules ); $i ++ ) {
$module = new $selectedModules [ $i ]( $scope );
$return [ $selectedModules [ $i ]] = $module -> get_uploadColumns ( $selectedModules );
2004-09-08 19:30:18 +00:00
}
2004-10-28 19:37:40 +00:00
return $return ;
2004-09-08 19:30:18 +00:00
}
2004-09-19 08:26:33 +00:00
/**
* This function builds the LDAP accounts for the file upload .
*
* If there are problems status messages will be printed automatically .
*
* @ param string $scope account type
* @ param array $data array containing one account in each element
* @ param array $ids array ( < column_name > => < column number > )
2010-02-15 20:21:44 +00:00
* @ param array $selectedModules selected account modules
2004-09-19 08:26:33 +00:00
* @ return mixed array including accounts or false if there were errors
*/
2010-02-15 20:21:44 +00:00
function buildUploadAccounts ( $scope , $data , $ids , $selectedModules ) {
2004-09-19 08:26:33 +00:00
// build module order
2010-02-15 20:21:44 +00:00
$unOrdered = $selectedModules ;
2004-09-19 08:26:33 +00:00
$ordered = array ();
$predepends = array ();
2004-10-17 09:36:36 +00:00
// get dependencies
2004-09-19 08:26:33 +00:00
for ( $i = 0 ; $i < sizeof ( $unOrdered ); $i ++ ) {
$mod = new $unOrdered [ $i ]( $scope );
$predepends [ $unOrdered [ $i ]] = $mod -> get_uploadPreDepends ();
}
// first all modules without predepends can be ordered
for ( $i = 0 ; $i < sizeof ( $unOrdered ); $i ++ ) {
if ( sizeof ( $predepends [ $unOrdered [ $i ]]) == 0 ) {
$ordered [] = $unOrdered [ $i ];
unset ( $unOrdered [ $i ]);
$unOrdered = array_values ( $unOrdered );
$i -- ;
}
}
$unOrdered = array_values ( $unOrdered ); // fix indexes
// now add all modules with fulfilled dependencies until all are in order
while ( sizeof ( $unOrdered ) > 0 ) {
$newRound = false ;
for ( $i = 0 ; $i < sizeof ( $unOrdered ); $i ++ ) {
$deps = $predepends [ $unOrdered [ $i ]];
$depends = false ;
for ( $d = 0 ; $d < sizeof ( $deps ); $d ++ ) {
if ( in_array ( $deps [ $d ], $unOrdered )) {
$depends = true ;
break ;
}
}
if ( ! $depends ) { // add to order if dependencies are fulfilled
$ordered [] = $unOrdered [ $i ];
unset ( $unOrdered [ $i ]);
$unOrdered = array_values ( $unOrdered );
$newRound = true ;
break ;
}
}
if ( $newRound ) continue ;
// this point should never be reached, LAM was unable to find a correct module order
2004-10-23 11:53:30 +00:00
StatusMessage ( " ERROR " , " Internal Error: Unable to find correct module order. " , " " );
2004-09-19 08:26:33 +00:00
return false ;
}
// give raw data to modules
$errors = array ();
$partialAccounts = array ();
2004-09-21 18:32:44 +00:00
for ( $i = 0 ; $i < sizeof ( $data ); $i ++ ) $partialAccounts [ $i ][ 'objectClass' ] = array ();
2004-09-19 08:26:33 +00:00
for ( $i = 0 ; $i < sizeof ( $ordered ); $i ++ ) {
$module = new $ordered [ $i ]( $scope );
2010-02-15 20:21:44 +00:00
$errors = $module -> build_uploadAccounts ( $data , $ids , $partialAccounts , $selectedModules );
2004-09-19 16:04:37 +00:00
if ( sizeof ( $errors ) > 0 ) {
2004-10-17 15:55:26 +00:00
array_unshift ( $errors , array ( " INFO " , _ ( " Displayed account numbers start at \" 0 \" . Add 2 to get the row in your spreadsheet. " ), " " ));
2004-10-09 11:08:16 +00:00
$errors [] = array ( " ERROR " , _ ( " Upload was stopped after errors in %s module! " ), " " , array ( $module -> get_alias ()));
2004-09-19 16:04:37 +00:00
break ;
}
2004-09-19 08:26:33 +00:00
}
2004-09-19 16:04:37 +00:00
if ( sizeof ( $errors ) > 0 ) {
2004-10-09 11:08:16 +00:00
for ( $i = 0 ; (( $i < sizeof ( $errors )) || ( $i > 49 )); $i ++ ) call_user_func_array ( " StatusMessage " , $errors [ $i ]);
2004-09-19 16:04:37 +00:00
return false ;
}
else return $partialAccounts ;
2004-09-19 08:26:33 +00:00
}
2004-09-08 19:30:18 +00:00
2004-10-19 18:18:46 +00:00
/**
* This function executes one post upload action .
*
* @ param string $scope account type
* @ param array $data array containing one account in each element
* @ param array $ids array ( < column_name > => < column number > )
* @ param array $failed list of accounts which were not created successfully
2010-02-16 17:32:48 +00:00
* @ param array $selectedModules list of selected account modules
2010-12-16 17:59:04 +00:00
* @ param array $accounts list of LDAP entries
2004-10-19 18:18:46 +00:00
* @ return array current status
* < br > array (
* < br > 'status' => 'finished' | 'inProgress'
* < br > 'module' => < name of active module >
* < br > 'progress' => 0. . 100
* < br > 'errors' => array ( < array of parameters for StatusMessage > )
* < br > )
*/
2010-12-16 17:59:04 +00:00
function doUploadPostActions ( $scope , & $data , $ids , $failed , $selectedModules , & $accounts ) {
2004-10-19 18:18:46 +00:00
// check if function is called the first time
if ( ! isset ( $_SESSION [ 'mass_postActions' ][ 'remainingModules' ])) {
// make list of remaining modules
2010-02-16 17:32:48 +00:00
$moduleList = $selectedModules ;
2004-10-19 18:18:46 +00:00
$_SESSION [ 'mass_postActions' ][ 'remainingModules' ] = $moduleList ;
}
$activeModule = $_SESSION [ 'mass_postActions' ][ 'remainingModules' ][ 0 ];
// initialize temporary variable
if ( ! isset ( $_SESSION [ 'mass_postActions' ][ $activeModule ])) {
$_SESSION [ 'mass_postActions' ][ $activeModule ] = array ();
}
// let first module do one post action
$module = new $activeModule ( $scope );
2010-12-16 17:59:04 +00:00
$return = $module -> doUploadPostActions ( $data , $ids , $failed , $_SESSION [ 'mass_postActions' ][ $activeModule ], $accounts );
2004-10-19 18:18:46 +00:00
// remove active module from list if already finished
if ( $return [ 'status' ] == 'finished' ) {
unset ( $_SESSION [ 'mass_postActions' ][ 'remainingModules' ][ 0 ]);
$_SESSION [ 'mass_postActions' ][ 'remainingModules' ] = array_values ( $_SESSION [ 'mass_postActions' ][ 'remainingModules' ]);
}
// update status and return back to upload page
$return [ 'module' ] = $activeModule ;
if ( sizeof ( $_SESSION [ 'mass_postActions' ][ 'remainingModules' ]) > 0 ) {
$return [ 'status' ] = 'inProgress' ;
}
else {
$return [ 'status' ] = 'finished' ;
}
return $return ;
}
2006-04-29 09:58:17 +00:00
/**
* Returns true if the module is a base module
*
* @ return array required extensions
*/
function getRequiredExtensions () {
$extList = array ();
$scopes = $_SESSION [ 'config' ] -> get_ActiveTypes ();
for ( $i = 0 ; $i < sizeof ( $scopes ); $i ++ ) {
$mods = $_SESSION [ 'config' ] -> get_AccountModules ( $scopes [ $i ]);
for ( $m = 0 ; $m < sizeof ( $mods ); $m ++ ) {
$module = new $mods [ $m ]( $scopes [ $i ]);
$ext = $module -> getRequiredExtensions ();
for ( $e = 0 ; $e < sizeof ( $ext ); $e ++ ) {
if ( ! in_array ( $ext [ $e ], $extList )) $extList [] = $ext [ $e ];
}
}
}
return $extList ;
}
2005-03-29 10:05:08 +00:00
/**
* Takes a list of meta - HTML elements and prints the equivalent HTML output .
2008-02-07 19:05:44 +00:00
*
* The modules are not allowed to display HTML code directly but return
2011-04-28 17:42:47 +00:00
* meta HTML code . This allows to have a common design for all module pages .
2005-03-29 10:05:08 +00:00
*
* @ param string $module Name of account module
2010-10-24 13:53:22 +00:00
* @ param mixed $input htmlElement or array of htmlElement elements
2005-03-29 10:05:08 +00:00
* @ param array $values List of values which override the defaults in $input ( name => value )
* @ param boolean $restricted If true then no buttons will be displayed
* @ param integer $tabindex Start value of tabulator index for input fields
2005-03-29 16:10:30 +00:00
* @ param string $scope Account type
2005-03-29 14:33:31 +00:00
* @ return array List of input field names and their type ( name => type )
2005-03-29 10:05:08 +00:00
*/
2009-02-07 19:25:22 +00:00
function parseHtml ( $module , $input , $values , $restricted , & $tabindex , $scope ) {
2010-05-23 10:35:33 +00:00
if ( $input instanceof htmlElement ) {
2010-06-06 18:16:09 +00:00
return $input -> generateHTML ( $module , $input , $values , $restricted , $tabindex , $scope );
2010-05-23 10:35:33 +00:00
}
2010-06-10 15:36:43 +00:00
if ( is_array ( $input ) && ( sizeof ( $input ) > 0 )) {
2011-04-28 17:42:47 +00:00
$return = array ();
for ( $i = 0 ; $i < sizeof ( $input ); $i ++ ) {
$return = array_merge ( $return , $input [ $i ] -> generateHTML ( $module , $input , $values , $restricted , $tabindex , $scope ));
2005-03-29 10:05:08 +00:00
}
2011-04-28 17:42:47 +00:00
return $return ;
2005-03-29 10:05:08 +00:00
}
2011-04-28 17:42:47 +00:00
return array ();
2005-03-29 10:05:08 +00:00
}
2004-10-19 18:18:46 +00:00
2010-01-30 13:56:32 +00:00
/**
* Helper function to sort descriptive options in parseHTML () .
* It compares the second entries of two arrays .
*
* @ param array $a first array
* @ param array $b second array
* @ return integer compare result
*/
function lamCompareDescriptiveOptions ( & $a , & $b ) {
// check parameters
if ( ! is_array ( $a ) || ! isset ( $a [ 1 ]) || ! is_array ( $b ) || ! isset ( $b [ 1 ])) {
return 0 ;
}
return strnatcasecmp ( $a [ 1 ], $b [ 1 ]);
}
2009-02-07 19:25:22 +00:00
/**
* Prints a LAM help link .
*
* @ param array $entry help entry
* @ param String $number help number
* @ param String $module module name
* @ param String $scope account scope
*/
function printHelpLink ( $entry , $number , $module = '' , $scope = '' ) {
$helpPath = " ../ " ;
if ( is_file ( " ./help.php " )) $helpPath = " " ;
$title = $entry [ 'Headline' ];
$message = $entry [ 'Text' ];
2012-01-31 18:31:54 +00:00
if ( isset ( $entry [ 'attr' ])) {
$message .= '<br><br><hr class="dotted">' . _ ( 'Technical name' ) . ': <i>' . $entry [ 'attr' ] . '</i>' ;
}
2009-02-15 10:15:29 +00:00
// replace special characters
$message = str_replace ( array ( " ' " , '"' , " \n " ), array ( " \\ ' " , '"' , '' ), $message );
2010-10-02 10:40:09 +00:00
$title = str_replace ( array ( " ' " , '"' , " \n " ), array ( " \\ ' " , '"' , '' ), $title );
2009-02-07 19:25:22 +00:00
echo " <a href= \" " . $helpPath . " help.php?module= $module &HelpNumber= " . $number . " &scope= " . $scope . " \" " ;
echo " target= \" help \" " ;
echo " onmouseover= \" Tip(' " . $message . " ', TITLE, ' " . $title . " ') \" onmouseout= \" UnTip() \" > " ;
2012-08-18 15:55:43 +00:00
echo " <img class= \" align-middle \" width=16 height=16 src= \" ../ $helpPath /graphics/help.png \" alt= \" " . _ ( 'Help' ) . " \" title= \" " . _ ( 'Help' ) . " \" > " ;
2009-02-07 19:25:22 +00:00
echo " </a> " ;
}
2006-03-14 17:58:52 +00:00
2004-06-20 19:23:04 +00:00
/**
* This class includes all modules and attributes of an account .
*
* @ package modules
*/
2004-02-07 18:34:26 +00:00
class accountContainer {
2007-10-03 18:25:55 +00:00
2005-07-21 11:22:59 +00:00
/**
* Constructor
*
* @ param string $type account type
* @ param string $base key in $_SESSION where this object is saved
*/
2007-12-28 16:08:56 +00:00
function __construct ( $type , $base ) {
2004-02-07 18:34:26 +00:00
/* Set the type of account . Valid
* types are : user , group , host
*/
// Check input variable
2006-08-14 17:29:45 +00:00
2004-10-23 11:11:31 +00:00
if ( ! is_string ( $type )) trigger_error ( 'Argument of accountContainer must be string.' , E_USER_ERROR );
if ( ! is_string ( $base )) trigger_error ( 'Argument of accountContainer must be string.' , E_USER_ERROR );
2004-02-07 18:34:26 +00:00
$this -> type = $type ;
$this -> base = $base ;
2004-09-08 10:07:25 +00:00
// Set startpage
$this -> current_page = 0 ;
$this -> subpage = 'attributes' ;
2005-04-29 15:20:48 +00:00
$this -> isNewAccount = false ;
2004-02-07 18:34:26 +00:00
return 0 ;
}
2005-04-29 15:20:48 +00:00
/**
* Array of all used attributes
2004-02-07 18:34:26 +00:00
* Syntax is attribute => array ( objectClass => MUST or MAY , ... )
*/
2009-10-30 18:21:57 +00:00
public $attributes ;
2006-08-14 17:29:45 +00:00
2005-04-29 15:20:48 +00:00
/**
* This variale stores the account type .
* Currently " user " , " group " and " host " are supported .
2004-02-07 18:34:26 +00:00
*/
2007-10-04 16:45:05 +00:00
private $type ;
2006-08-14 17:29:45 +00:00
2005-07-21 11:22:59 +00:00
/** This is an array with all module objects */
2007-10-04 16:45:05 +00:00
private $module ;
2006-08-14 17:29:45 +00:00
2005-05-02 17:41:09 +00:00
/** DN suffix of the account */
2011-10-15 09:46:13 +00:00
public $dnSuffix ;
2006-08-14 17:29:45 +00:00
2011-12-03 18:23:08 +00:00
/** DN of account when it was loaded */
2009-10-30 18:21:57 +00:00
public $dn_orig ;
2006-08-14 17:29:45 +00:00
2005-05-02 17:41:09 +00:00
/** RDN attribute of this account */
2009-10-30 18:21:57 +00:00
public $rdn ;
2008-02-23 10:23:40 +00:00
/** DN of saved account */
public $finalDN ;
2006-08-14 17:29:45 +00:00
2005-05-02 17:41:09 +00:00
/** original LDAP attributes when account was loaded from LDAP */
2009-10-30 18:21:57 +00:00
public $attributes_orig ;
2006-08-14 17:29:45 +00:00
2005-04-29 15:20:48 +00:00
/** Module order */
2007-10-04 16:45:05 +00:00
private $order ;
2006-08-14 17:29:45 +00:00
2005-04-29 15:20:48 +00:00
/** Name of accountContainer variable in session */
2007-10-03 18:25:55 +00:00
private $base ;
2006-08-14 17:29:45 +00:00
2011-09-23 09:44:38 +00:00
/** This variable stores the page number of the currently displayed page */
private $current_page = 0 ;
2006-08-14 17:29:45 +00:00
2005-04-29 15:20:48 +00:00
/** This variable is set to the pagename of a subpage if it should be displayed */
2007-10-04 16:45:05 +00:00
private $subpage ;
2006-08-14 17:29:45 +00:00
2005-04-29 15:20:48 +00:00
/** True if this is a newly created account */
2008-02-23 10:23:40 +00:00
public $isNewAccount ;
2007-12-04 15:58:05 +00:00
2010-11-21 14:32:54 +00:00
/** name of last loaded account profile */
2007-12-04 15:58:05 +00:00
private $lastLoadedProfile = '' ;
2010-11-21 14:32:54 +00:00
/** cache for existing OUs */
private $cachedOUs = null ;
2010-12-11 15:58:25 +00:00
/** main title in title bar */
private $titleBarTitle = null ;
/** subtitle in title bar */
private $titleBarSubtitle = null ;
2004-02-07 18:34:26 +00:00
2007-10-01 17:46:55 +00:00
/**
* Returns the account module with the given class name
*
* @ param string $name class name ( e . g . posixAccount )
2007-10-10 16:45:30 +00:00
* @ return baseModule account module
2007-10-01 17:46:55 +00:00
*/
function getAccountModule ( $name ) {
if ( isset ( $this -> module [ $name ])) {
return $this -> module [ $name ];
}
else {
return null ;
}
2007-10-26 14:10:10 +00:00
}
/**
* Returns the included account modules .
*
* @ return array modules
*/
function getAccountModules () {
return $this -> module ;
}
2007-10-01 17:46:55 +00:00
2005-07-21 11:22:59 +00:00
/**
* Returns the accout type of this object ( e . g . user , group , host ) .
*
* @ return string account type
2004-02-07 18:34:26 +00:00
*/
function get_type () {
return $this -> type ;
}
2006-08-14 17:29:45 +00:00
2005-07-21 11:22:59 +00:00
/**
* This function is called when the user clicks on any button on the account pages .
* It prints the HTML code of each account page .
*/
2006-08-14 17:29:45 +00:00
function continue_main () {
2006-08-27 14:57:22 +00:00
$result = array ();
2007-12-26 18:49:04 +00:00
$stopProcessing = false ; // when set to true, no module options are displayed
$errorsOccured = false ;
2012-04-09 13:20:24 +00:00
$typeObject = new $this -> type ();
2008-01-15 18:13:34 +00:00
$profileLoaded = $this -> loadProfileIfRequested ();
2004-09-08 10:07:25 +00:00
if ( $this -> subpage == '' ) $this -> subpage = 'attributes' ;
2007-12-26 18:49:04 +00:00
if ( isset ( $_POST [ 'accountContainerReset' ])) {
2006-09-16 13:26:18 +00:00
$result = $this -> load_account ( $this -> dn_orig );
}
2008-01-15 18:13:34 +00:00
elseif ( ! $profileLoaded ) {
2007-12-03 13:01:17 +00:00
// change dn suffix
2011-10-15 09:46:13 +00:00
if ( isset ( $_GET [ 'suffix' ]) && ( $_GET [ 'suffix' ] != '' ) && ( $this -> dnSuffix == null )) {
$this -> dnSuffix = $_GET [ 'suffix' ];
2007-12-26 18:49:04 +00:00
}
2011-05-14 13:51:08 +00:00
if ( isset ( $_POST [ 'accountContainerSuffix' ]) && ( $_POST [ 'accountContainerSuffix' ] != '' )) {
2011-10-15 09:46:13 +00:00
$this -> dnSuffix = $_POST [ 'accountContainerSuffix' ];
2007-12-04 15:24:34 +00:00
}
2007-12-09 19:39:09 +00:00
// change RDN
2007-12-26 18:49:04 +00:00
if ( isset ( $_POST [ 'accountContainerRDN' ])) {
$this -> rdn = $_POST [ 'accountContainerRDN' ];
}
// create another account
if ( isset ( $_POST [ 'accountContainerCreateAgain' ])) {
// open fresh account page
unset ( $_SESSION [ $this -> base ]);
2011-10-15 09:46:13 +00:00
metaRefresh ( " edit.php?type= " . $this -> type . " &suffix= " . $this -> dnSuffix );
2007-12-26 18:49:04 +00:00
exit ();
}
2011-05-03 16:15:38 +00:00
// reedit account
if ( isset ( $_POST [ 'accountContainerBackToEdit' ])) {
// open fresh account page
unset ( $_SESSION [ $this -> base ]);
2011-08-30 18:38:04 +00:00
metaRefresh ( " edit.php?type= " . $this -> type . " &DN= " . urlencode ( $this -> finalDN ));
2011-05-03 16:15:38 +00:00
exit ();
}
2007-12-26 18:49:04 +00:00
// back to account list
if ( isset ( $_POST [ 'accountContainerBackToList' ])) {
// Return to account list
unset ( $_SESSION [ $this -> base ]);
metaRefresh ( " ../lists/list.php?type= " . $this -> type );
exit ;
}
// create PDF file
if ( isset ( $_POST [ 'accountContainerCreatePDF' ])) {
2010-03-08 18:18:31 +00:00
metaRefresh ( '../lists/list.php?printPDF=1&type=' . $this -> type . " &PDFSessionID= " . $this -> base );
2007-12-26 18:49:04 +00:00
exit ;
}
// module actions
2008-01-01 15:00:46 +00:00
if (( sizeof ( $_POST ) > 0 ) && checkIfWriteAccessIsAllowed ()) {
2007-12-26 18:49:04 +00:00
$result = call_user_func ( array ( & $this -> module [ $this -> order [ $this -> current_page ]], 'process_' . $this -> subpage ));
if ( is_array ( $result )) { // messages were returned, check for errors
for ( $i = 0 ; $i < sizeof ( $result ); $i ++ ) {
if ( $result [ $i ][ 0 ] == 'ERROR' ) {
$errorsOccured = true ;
break ;
2005-05-10 16:51:32 +00:00
}
2004-09-08 10:07:25 +00:00
}
}
2012-04-09 13:20:24 +00:00
$this -> sortModules ();
2004-02-07 18:34:26 +00:00
}
2012-04-09 13:20:24 +00:00
// run type post actions
$typeObject -> runEditPagePostAction ( $this );
2007-12-26 18:49:04 +00:00
// save account
if ( ! $errorsOccured && isset ( $_POST [ 'accountContainerSaveAccount' ])) {
// check if all modules are complete
2007-12-04 15:58:05 +00:00
$modules = array_keys ( $this -> module );
2007-12-26 18:49:04 +00:00
$incompleteModules = array ();
foreach ( $modules as $module ) {
if ( ! $this -> module [ $module ] -> module_complete ()) {
$incompleteModules [] = $this -> module [ $module ] -> get_alias ();
2007-12-04 15:58:05 +00:00
}
}
2007-12-26 18:49:04 +00:00
if ( sizeof ( $incompleteModules ) > 0 ) {
2011-11-01 12:17:44 +00:00
$result [] = array ( 'INFO' , _ ( 'Some required information is missing' ),
2007-12-26 18:49:04 +00:00
sprintf ( _ ( 'Please set up all required attributes on page: %s' ), implode ( " , " , $incompleteModules )));
}
else {
// save account
2012-01-04 19:08:19 +00:00
$saveMessages = $this -> save_account ();
$saveOk = true ;
for ( $i = 0 ; $i < sizeof ( $saveMessages ); $i ++ ) {
if ( $saveMessages [ $i ][ 0 ] == 'ERROR' ) {
$saveOk = false ;
}
}
if ( ! $saveOk ) {
$result = $saveMessages ;
2007-12-26 18:49:04 +00:00
$stopProcessing = true ;
}
else {
2012-01-04 19:08:19 +00:00
$this -> printSuccessPage ( $saveMessages );
2007-12-26 18:49:04 +00:00
return ;
}
2007-12-04 15:58:05 +00:00
}
}
2005-09-01 15:20:15 +00:00
}
2005-05-07 14:32:18 +00:00
// change to next page
if ( is_array ( $result )) { // messages were returned, check for errors
2006-08-16 17:42:35 +00:00
for ( $i = 0 ; $i < sizeof ( $result ); $i ++ ) {
if ( $result [ $i ][ 0 ] == 'ERROR' ) {
$errorsOccured = true ;
break ;
2005-05-07 14:32:18 +00:00
}
}
}
2005-09-01 15:20:15 +00:00
if ( ! $errorsOccured ) {
2005-09-07 12:58:34 +00:00
// go to subpage of current module
2006-08-14 17:29:45 +00:00
$postKeys = array_keys ( $_POST );
2005-09-01 15:20:15 +00:00
for ( $p = 0 ; $p < sizeof ( $postKeys ); $p ++ ) {
if ( is_string ( $postKeys [ $p ]) && ( strpos ( $postKeys [ $p ], 'form_subpage_' . $this -> order [ $this -> current_page ]) === 0 )) {
$temp = substr ( $postKeys [ $p ], strlen ( $this -> order [ $this -> current_page ]) + 14 );
$temp = explode ( '_' , $temp );
if ( sizeof ( $temp ) == 2 ) {
$this -> subpage = $temp [ 0 ];
}
}
}
2007-12-26 18:49:04 +00:00
for ( $i = 0 ; $i < count ( $this -> order ); $i ++ ) {
if ( isset ( $_POST [ 'form_main_' . $this -> order [ $i ]])) {
if ( $this -> module [ $this -> order [ $i ]] -> module_ready ()) {
$this -> current_page = $i ;
$this -> subpage = 'attributes' ;
}
else {
StatusMessage ( 'ERROR' , _ ( 'The module %s is not yet ready.' ),
_ ( 'Please enter the account information on the other pages first.' ),
array ( $this -> module [ $this -> order [ $i ]] -> get_alias ()));
2005-08-02 19:06:29 +00:00
}
2005-05-07 14:32:18 +00:00
}
2005-09-07 12:58:34 +00:00
}
2005-05-07 14:32:18 +00:00
}
2012-04-07 16:40:34 +00:00
// update titles
$this -> titleBarTitle = $typeObject -> getTitleBarTitle ( $this );
$this -> titleBarSubtitle = $typeObject -> getTitleBarSubtitle ( $this );
2009-10-08 20:16:02 +00:00
// prints a module content page
$this -> printModuleContent ( $result , $stopProcessing );
}
/**
* Prints the content part provided by the current module .
*
* @ param array $result list of messages
* @ param boolean $stopProcessing true if page should end after displaying the messages
*/
private function printModuleContent ( $result , $stopProcessing ) {
2012-09-09 14:02:27 +00:00
$tabindex = 1 ;
2007-12-26 18:49:04 +00:00
$this -> printPageHeader ();
2011-05-15 18:26:28 +00:00
$this -> printPasswordPromt ();
2010-12-11 15:58:25 +00:00
// display error messages
2005-05-10 16:51:32 +00:00
if ( is_array ( $result )) {
2006-08-16 17:42:35 +00:00
for ( $i = 0 ; $i < sizeof ( $result ); $i ++ ) {
call_user_func_array ( " StatusMessage " , $result [ $i ]);
2005-05-10 16:51:32 +00:00
}
2007-12-26 18:49:04 +00:00
if ( $stopProcessing ) {
2010-08-21 09:43:52 +00:00
$this -> printPageFooter ();
2007-12-26 18:49:04 +00:00
return ;
2005-05-07 14:32:18 +00:00
}
}
2011-05-15 18:26:28 +00:00
echo '<div id="passwordMessageArea"></div>' ;
2010-09-04 13:52:03 +00:00
echo " <table class= \" " . $this -> type . " list-bright \" border=0 width= \" 100% \" style= \" border-collapse: collapse; \" > \n " ;
2007-12-30 16:08:54 +00:00
if ( checkIfWriteAccessIsAllowed ()) {
2010-09-04 13:52:03 +00:00
echo " <tr class= \" " . $this -> type . " list-bright \" ><td style= \" padding: 15px 15px 0px 15px; \" > \n " ;
2012-09-09 14:02:27 +00:00
$this -> printCommonControls ( $tabindex );
2010-09-04 13:52:03 +00:00
echo " </td></tr> \n " ;
2007-12-11 18:52:07 +00:00
}
2010-09-04 13:52:03 +00:00
echo " <tr class= \" " . $this -> type . " list-bright \" valign= \" top \" ><td style= \" padding: 15px; \" > " ;
2010-12-11 15:58:25 +00:00
// print title bar
echo '<div class="titleBar ui-corner-top">' ;
echo '<table width="100%"><tr>' ;
echo '<td><div class="titleBarTitle">' ;
echo $this -> titleBarTitle ;
echo '</div></td>' ;
echo '<td align="right">' ;
2012-09-09 14:02:27 +00:00
$group = new htmlGroup ();
// suffix
$group -> addElement ( new htmlOutputText ( _ ( 'Suffix' )));
$suffixList = array ();
foreach ( $this -> getOUs () as $suffix ) {
$suffixList [ getAbstractDN ( $suffix )] = $suffix ;
}
if ( ! ( $this -> dnSuffix == '' ) && ! in_array ( $this -> dnSuffix , $this -> getOUs ())) {
$suffixList [ getAbstractDN ( $this -> dnSuffix )] = $this -> dnSuffix ;
}
$selectedSuffix = array ( $this -> dnSuffix );
$suffixSelect = new htmlSelect ( 'accountContainerSuffix' , $suffixList , $selectedSuffix );
$suffixSelect -> setHasDescriptiveElements ( true );
$suffixSelect -> setRightToLeftTextDirection ( true );
$group -> addElement ( $suffixSelect );
$group -> addElement ( new htmlSpacer ( '10px' , null ));
2010-12-11 15:58:25 +00:00
// RDN selection
2012-09-09 14:02:27 +00:00
$group -> addElement ( new htmlOutputText ( _ ( 'RDN identifier' )));
2010-12-11 15:58:25 +00:00
$rdnlist = getRDNAttributes ( $this -> type );
2012-09-09 14:02:27 +00:00
$group -> addElement ( new htmlSelect ( 'accountContainerRDN' , $rdnlist , array ( $this -> rdn )));
$group -> addElement ( new htmlHelpLink ( '301' ));
parseHtml ( null , $group , array (), true , $tabindex , $this -> type );
2010-12-11 15:58:25 +00:00
echo '</td>' ;
echo '</tr></table>' ;
if ( $this -> titleBarSubtitle != null ) {
echo '<div class="titleBarSubtitle">' ;
echo $this -> titleBarSubtitle ;
echo '</div>' ;
}
echo '</div>' ;
echo '<div id="lamVerticalTabs" class="ui-tabs ui-widget ui-widget-content ui-corner-bottom ui-helper-clearfix">' ;
2007-12-26 18:49:04 +00:00
// tab menu
$this -> printModuleTabs ();
2010-12-14 19:45:08 +00:00
echo " <div class= \" lamEqualHeightTabContent ui-tabs-panel ui-widget-content ui-corner-bottom \" > \n " ;
2007-12-26 18:49:04 +00:00
// content area
// display html-code from modules
$return = call_user_func ( array ( $this -> module [ $this -> order [ $this -> current_page ]], 'display_html_' . $this -> subpage ));
$y = 5000 ;
2009-02-07 19:25:22 +00:00
parseHtml ( $this -> order [ $this -> current_page ], $return , array (), false , $y , $this -> type );
2010-09-04 13:52:03 +00:00
echo " </div> \n " ;
echo " </div> \n " ;
echo " </td></tr> \n " ;
2007-12-26 18:49:04 +00:00
// Display rest of html-page
2010-09-04 13:52:03 +00:00
echo " </table> \n " ;
2007-12-26 18:49:04 +00:00
$this -> printPageFooter ();
}
2009-10-08 20:16:02 +00:00
/**
* Prints the input fields of the central password service .
*/
2011-05-15 18:26:28 +00:00
private function printPasswordPromt () {
echo " <div id= \" passwordDialog \" class= \" hidden \" > \n " ;
echo '<div id="passwordDialogMessageArea"></div>' ;
2011-08-28 11:26:51 +00:00
$printContainer = false ;
2010-10-11 16:04:17 +00:00
$container = new htmlTable ();
2010-10-22 18:01:39 +00:00
// password fields
$container -> addElement ( new htmlOutputText ( _ ( 'Password' )));
$pwdInput1 = new htmlInputField ( 'newPassword1' );
$pwdInput1 -> setIsPassword ( true );
$container -> addElement ( $pwdInput1 );
$container -> addElement ( new htmlHelpLink ( '404' ), true );
$container -> addElement ( new htmlOutputText ( _ ( 'Repeat password' )));
$pwdInput2 = new htmlInputField ( 'newPassword2' );
$pwdInput2 -> setIsPassword ( true );
$container -> addElement ( $pwdInput2 , true );
2012-01-15 19:34:14 +00:00
// print force password change option
$forceChangeSupported = false ;
foreach ( $this -> module as $name => $module ) {
if (( $module instanceof passwordService ) && $module -> supportsForcePasswordChange ()) {
$forceChangeSupported = true ;
break ;
}
}
if ( $forceChangeSupported ) {
$container -> addElement ( new htmlTableExtendedInputCheckbox ( 'lamForcePasswordChange' , false , _ ( 'Force password change' )));
$container -> addElement ( new htmlHelpLink ( '406' ), true );
}
2012-05-30 19:00:56 +00:00
if ( isLAMProVersion () && isset ( $this -> attributes_orig [ 'mail' ][ 0 ])) {
$container -> addElement ( new htmlTableExtendedInputCheckbox ( 'lamPasswordChangeSendMail' , false , _ ( 'Send via mail' )));
$container -> addElement ( new htmlHelpLink ( '407' ), true );
}
2010-10-22 18:01:39 +00:00
$container -> addElement ( new htmlSpacer ( null , '10px' ), true );
2010-10-11 16:04:17 +00:00
// password modules
$moduleContainer = new htmlTable ();
2009-10-08 20:16:02 +00:00
foreach ( $this -> module as $name => $module ) {
if (( $module instanceof passwordService ) && $module -> managesPasswordAttributes ()) {
2011-08-28 11:26:51 +00:00
$printContainer = true ;
2009-10-08 20:16:02 +00:00
$buttonImage = $module -> getIcon ();
if ( $buttonImage != null ) {
2010-10-11 16:04:17 +00:00
$moduleContainer -> addElement ( new htmlImage ( '../../graphics/' . $buttonImage , null , null , getModuleAlias ( $name , $this -> type )));
2009-10-08 20:16:02 +00:00
}
2012-09-14 15:48:32 +00:00
$moduleContainer -> addElement ( new htmlTableExtendedInputCheckbox ( 'password_cb_' . $name , true , getModuleAlias ( $name , $this -> type ), null , false ));
2010-10-11 16:04:17 +00:00
$moduleContainer -> addElement ( new htmlSpacer ( '10px' , null ));
2009-10-08 20:16:02 +00:00
}
}
2010-10-11 16:04:17 +00:00
$moduleContainer -> colspan = 5 ;
$container -> addElement ( $moduleContainer , true );
// generate HTML
2011-05-15 18:26:28 +00:00
$tabindex = 2000 ;
2011-08-28 11:26:51 +00:00
if ( $printContainer ) {
parseHtml ( null , $container , array (), false , $tabindex , $this -> type );
}
2010-10-11 16:04:17 +00:00
echo " </div> \n " ;
2009-10-08 20:16:02 +00:00
}
/**
* Sets the new password in all selected account modules .
*
2011-05-15 18:26:28 +00:00
* @ param array $input input parameters
2009-10-08 20:16:02 +00:00
*/
2011-05-15 18:26:28 +00:00
public function setNewPassword ( $input ) {
$password1 = $input [ 'password1' ];
$password2 = $input [ 'password2' ];
$random = $input [ 'random' ];
$modules = $input [ 'modules' ];
for ( $m = 0 ; $m < sizeof ( $modules ); $m ++ ) {
$modules [ $m ] = str_replace ( 'password_cb_' , '' , $modules [ $m ]);
}
$return = array (
'messages' => '' ,
'errorsOccured' => 'false'
);
if ( $random == 'true' ) {
$password1 = generateRandomPassword ();
2012-03-20 20:59:34 +00:00
$return [ 'messages' ] .= StatusMessage ( 'INFO' , _ ( 'The password was set to:' ) . ' ' . htmlspecialchars ( $password1 ), '' , array (), true );
2009-10-08 20:16:02 +00:00
}
else {
// check if passwords match
2011-05-15 18:26:28 +00:00
if ( $password1 != $password2 ) {
$return [ 'messages' ] .= StatusMessage ( 'ERROR' , _ ( 'Passwords are different!' ), '' , array (), true );
$return [ 'errorsOccured' ] = 'true' ;
2009-10-08 20:16:02 +00:00
}
// check passsword stregth
2011-05-15 18:26:28 +00:00
$pwdPolicyResult = checkPasswordStrength ( $password1 );
2009-10-08 20:16:02 +00:00
if ( $pwdPolicyResult !== true ) {
2011-05-15 18:26:28 +00:00
$return [ 'messages' ] .= StatusMessage ( 'ERROR' , $pwdPolicyResult , '' , array (), true );
$return [ 'errorsOccured' ] = 'true' ;
2009-10-08 20:16:02 +00:00
}
}
2012-02-18 13:47:31 +00:00
$forcePasswordChange = false ;
if ( isset ( $input [ 'forcePasswordChange' ]) && ( $input [ 'forcePasswordChange' ] == 'true' )) {
$forcePasswordChange = true ;
}
2012-05-30 19:00:56 +00:00
$sendMail = false ;
if ( isset ( $input [ 'sendMail' ]) && ( $input [ 'sendMail' ] == 'true' )) {
$sendMail = true ;
}
2012-01-15 19:34:14 +00:00
$return [ 'forcePasswordChange' ] = $forcePasswordChange ;
2011-05-15 18:26:28 +00:00
if ( $return [ 'errorsOccured' ] == 'false' ) {
// set new password
foreach ( $this -> module as $name => $module ) {
if ( $module instanceof passwordService ) {
2012-01-15 19:34:14 +00:00
$messages = $module -> passwordChangeRequested ( $password1 , $modules , $forcePasswordChange );
2011-05-15 18:26:28 +00:00
for ( $m = 0 ; $m < sizeof ( $messages ); $m ++ ) {
if ( $messages [ $m ][ 0 ] == 'ERROR' ) {
$return [ 'errorsOccured' ] = 'true' ;
}
if ( sizeof ( $messages [ $m ]) == 2 ) {
$return [ 'messages' ] .= StatusMessage ( $messages [ $m ][ 0 ], $messages [ $m ][ 1 ], '' , array (), true );
}
elseif ( sizeof ( $messages [ $m ]) == 3 ) {
$return [ 'messages' ] .= StatusMessage ( $messages [ $m ][ 0 ], $messages [ $m ][ 1 ], $messages [ $m ][ 2 ], array (), true );
}
elseif ( sizeof ( $messages [ $m ]) == 4 ) {
2011-05-20 17:57:36 +00:00
$return [ 'messages' ] .= StatusMessage ( $messages [ $m ][ 0 ], $messages [ $m ][ 1 ], $messages [ $m ][ 2 ], $messages [ $m ][ 3 ], true );
2011-05-15 18:26:28 +00:00
}
}
}
2009-10-09 18:21:12 +00:00
}
}
2012-05-30 19:00:56 +00:00
if ( isLAMProVersion () && $sendMail ) {
$mailMessages = sendPasswordMail ( $password1 , $this -> attributes_orig );
if ( sizeof ( $mailMessages ) > 0 ) {
for ( $i = 0 ; $i < sizeof ( $mailMessages ); $i ++ ) {
if ( $mailMessages [ $i ][ 0 ] == 'ERROR' ) {
$return [ 'errorsOccured' ] = 'true' ;
}
if ( sizeof ( $mailMessages [ $i ]) == 2 ) {
$return [ 'messages' ] .= StatusMessage ( $mailMessages [ $i ][ 0 ], $mailMessages [ $i ][ 1 ], '' , array (), true );
}
elseif ( sizeof ( $mailMessages [ $i ]) == 3 ) {
$return [ 'messages' ] .= StatusMessage ( $mailMessages [ $i ][ 0 ], $mailMessages [ $i ][ 1 ], $mailMessages [ $i ][ 2 ], array (), true );
}
}
}
}
2011-05-15 18:26:28 +00:00
if ( $return [ 'errorsOccured' ] == 'false' ) {
$return [ 'messages' ] .= StatusMessage ( 'INFO' , _ ( 'The new password will be stored in the directory after you save this account.' ), '' , array (), true );
2009-10-08 20:16:02 +00:00
}
return $return ;
}
2007-12-26 18:49:04 +00:00
2007-12-30 16:08:54 +00:00
/**
* Prints common controls like the save button and the ou selection .
2012-09-09 14:02:27 +00:00
*
* @ param int $tabindex tabindex for GUI elements
2007-12-30 16:08:54 +00:00
*/
2012-09-09 14:02:27 +00:00
private function printCommonControls ( & $tabindex ) {
$table = new htmlTable ( '100%' );
$leftButtonGroup = new htmlGroup ();
$leftButtonGroup -> alignment = htmlElement :: ALIGN_LEFT ;
2007-12-30 16:08:54 +00:00
// save button
2012-09-09 14:02:27 +00:00
$saveButton = new htmlButton ( 'accountContainerSaveAccount' , _ ( 'Save' ));
$saveButton -> setIconClass ( 'saveButton' );
$leftButtonGroup -> addElement ( $saveButton );
$leftButtonGroup -> addElement ( new htmlSpacer ( '1px' , null ));
2007-12-30 16:08:54 +00:00
// reset button
2012-09-09 14:02:27 +00:00
$resetButton = new htmlButton ( 'accountContainerReset' , _ ( 'Reset changes' ));
$resetButton -> setIconClass ( 'undoButton' );
$leftButtonGroup -> addElement ( $resetButton );
// set password button
2009-10-08 20:16:02 +00:00
if ( $this -> showSetPasswordButton ()) {
2012-09-09 14:02:27 +00:00
$leftButtonGroup -> addElement ( new htmlSpacer ( '15px' , null ));
$passwordButton = new htmlButton ( 'accountContainerPassword' , _ ( 'Set password' ));
$passwordButton -> setIconClass ( 'passwordButton' );
$passwordButton -> setOnClick ( 'passwordShowChangeDialog(\'' . _ ( 'Set password' ) . '\', \'' . _ ( 'Ok' ) . '\', \''
. _ ( 'Cancel' ) . '\', \'' . _ ( 'Set random password' ) . '\', \'../misc/ajax.php?function=passwordChange\');' );
$leftButtonGroup -> addElement ( $passwordButton );
}
$table -> addElement ( $leftButtonGroup );
$rightGroup = new htmlGroup ();
$rightGroup -> alignment = htmlElement :: ALIGN_RIGHT ;
2007-12-30 16:08:54 +00:00
// profile selection
$profilelist = getAccountProfiles ( $this -> type );
if ( sizeof ( $profilelist ) > 0 ) {
2012-09-09 14:02:27 +00:00
$rightGroup -> addElement ( new htmlSelect ( 'accountContainerSelectLoadProfile' , $profilelist , array ( $this -> lastLoadedProfile )));
$profileButton = new htmlButton ( 'accountContainerLoadProfile' , _ ( 'Load profile' ));
$profileButton -> setIconClass ( 'loadProfileButton' );
$rightGroup -> addElement ( $profileButton );
$rightGroup -> addElement ( new htmlSpacer ( '1px' , null ));
$rightGroup -> addElement ( new htmlHelpLink ( '401' ));
}
$table -> addElement ( $rightGroup );
parseHtml ( null , $table , array (), false , $tabindex , $this -> type );
2010-09-04 13:52:03 +00:00
?>
< script type = " text/javascript " >
jQuery ( document ) . ready ( function () {
2010-12-14 19:45:08 +00:00
var maxHeight = 0 ;
jQuery ( '.lamEqualHeightTabContent' ) . each ( function () {
if ( jQuery ( this ) . height () > maxHeight ) {
maxHeight = jQuery ( this ) . height ();
};
});
jQuery ( '.lamEqualHeightTabContent' ) . each ( function () {
jQuery ( this ) . css ({ 'height' : maxHeight });
});
2010-09-04 13:52:03 +00:00
});
</ script >
< ? php
2007-12-30 16:08:54 +00:00
}
2009-10-08 20:16:02 +00:00
/**
* Returns if the page should show a button to set the password .
*
* @ return boolean show or hide button
*/
private function showSetPasswordButton () {
foreach ( $this -> module as $name => $module ) {
if (( $module instanceof passwordService ) && $module -> managesPasswordAttributes ()) {
return true ;
}
}
return false ;
}
2007-12-26 18:49:04 +00:00
/**
* Prints the header of the account pages .
*/
private function printPageHeader () {
2010-01-01 17:21:46 +00:00
include '../main_header.php' ;
2011-10-16 12:06:00 +00:00
echo '<script type="text/javascript">' ;
echo 'jQuery(document).ready(function() {' ;
echo ' jQuery("#inputForm").validationEngine();' ;
echo '});' ;
echo '</script>' ;
echo " <form id= \" inputForm \" enctype= \" multipart/form-data \" action= \" edit.php \" method= \" post \" > \n " ;
2007-12-26 18:49:04 +00:00
}
/**
* Prints the footer of the account pages .
*/
private function printPageFooter () {
echo " </form> \n " ;
2010-08-21 09:43:52 +00:00
include '../main_footer.php' ;
2007-12-26 18:49:04 +00:00
}
/**
* Prints the HTML code to notify the user about the successful saving .
*
2012-01-04 19:08:19 +00:00
* @ param array $messages array which contains status messages . Each entry is an array containing the status message parameters .
2007-12-26 18:49:04 +00:00
*/
2012-01-04 19:08:19 +00:00
private function printSuccessPage ( $messages ) {
2007-12-26 18:49:04 +00:00
$this -> printPageHeader ();
// Show success message
if ( $this -> dn_orig == '' ) {
$text = _ ( " Account was created successfully. " );
}
else {
$text = _ ( " Account was modified successfully. " );
}
2010-10-16 13:24:10 +00:00
echo " <div class= \" " . $this -> type . " list-bright smallPaddingContent \" > " ;
2007-12-26 18:49:04 +00:00
2010-10-16 13:24:10 +00:00
$container = new htmlTable ();
2012-01-04 19:08:19 +00:00
// show messages
for ( $i = 0 ; $i < sizeof ( $messages ); $i ++ ) {
if ( sizeof ( $messages [ $i ]) == 2 ) {
$message = new htmlStatusMessage ( $messages [ $i ][ 0 ], $messages [ $i ][ 1 ]);
$message -> colspan = 10 ;
$container -> addElement ( $message , true );
}
else {
$message = new htmlStatusMessage ( $messages [ $i ][ 0 ], $messages [ $i ][ 1 ], $messages [ $i ][ 2 ]);
$message -> colspan = 10 ;
$container -> addElement ( $message , true );
}
}
2010-10-16 13:24:10 +00:00
$message = new htmlStatusMessage ( 'INFO' , _ ( 'LDAP operation successful.' ), $text );
2011-05-03 16:15:38 +00:00
$message -> colspan = 10 ;
2010-10-16 13:24:10 +00:00
$container -> addElement ( $message , true );
$container -> addElement ( new htmlSpacer ( null , '20px' ), true );
2007-12-26 18:49:04 +00:00
2009-02-18 19:15:56 +00:00
$type = new $this -> type ();
2011-05-03 16:15:38 +00:00
$createButton = new htmlButton ( 'accountContainerCreateAgain' , $type -> LABEL_CREATE_ANOTHER_ACCOUNT );
$createButton -> setIconClass ( 'createButton' );
$container -> addElement ( $createButton );
$container -> addElement ( new htmlSpacer ( '10px' , null ));
$pdfButton = new htmlButton ( 'accountContainerCreatePDF' , _ ( 'Create PDF file' ));
$pdfButton -> setIconClass ( 'pdfButton' );
$container -> addElement ( $pdfButton );
$container -> addElement ( new htmlSpacer ( '10px' , null ));
$backToListButton = new htmlButton ( 'accountContainerBackToList' , $type -> LABEL_BACK_TO_ACCOUNT_LIST );
$backToListButton -> setIconClass ( 'backButton' );
$container -> addElement ( $backToListButton );
2010-10-16 13:24:10 +00:00
$container -> addElement ( new htmlSpacer ( '10px' , null ));
2011-05-03 16:15:38 +00:00
$backToEditButton = new htmlButton ( 'accountContainerBackToEdit' , _ ( 'Edit again' ));
$backToEditButton -> setIconClass ( 'editButton' );
$container -> addElement ( $backToEditButton );
2010-10-16 13:24:10 +00:00
$tabindex = 1 ;
parseHtml ( null , $container , array (), false , $tabindex , $this -> type );
echo " </div> \n " ;
2007-12-26 18:49:04 +00:00
$this -> printPageFooter ();
}
/**
* Checks if the user requested to load a profile .
2008-01-15 18:13:34 +00:00
*
* @ return boolean true , if profile was loaded
2007-12-26 18:49:04 +00:00
*/
private function loadProfileIfRequested () {
if ( isset ( $_POST [ 'accountContainerLoadProfile' ]) && isset ( $_POST [ 'accountContainerSelectLoadProfile' ])) {
$profile = loadAccountProfile ( $_POST [ 'accountContainerSelectLoadProfile' ], $this -> type );
$this -> lastLoadedProfile = $_POST [ 'accountContainerSelectLoadProfile' ];
// pass profile to each module
$modules = array_keys ( $this -> module );
foreach ( $modules as $module ) $this -> module [ $module ] -> load_profile ( $profile );
if ( isset ( $profile [ 'ldap_rdn' ][ 0 ])) {
if ( in_array ( $profile [ 'ldap_rdn' ][ 0 ], getRDNAttributes ( $this -> type ))) {
$this -> rdn = $profile [ 'ldap_rdn' ][ 0 ];
}
}
2011-05-14 13:51:08 +00:00
if ( isset ( $profile [ 'ldap_suffix' ][ 0 ]) && ( $profile [ 'ldap_suffix' ][ 0 ] != '-' )) {
2011-10-15 09:46:13 +00:00
$this -> dnSuffix = $profile [ 'ldap_suffix' ][ 0 ];
2007-12-26 18:49:04 +00:00
}
2008-01-15 18:13:34 +00:00
return true ;
2007-12-26 18:49:04 +00:00
}
2008-01-15 18:13:34 +00:00
return false ;
2007-12-26 18:49:04 +00:00
}
/**
* Prints the HTML code of the module tabs .
*/
private function printModuleTabs () {
// $x is used to count up tabindex
2010-06-23 17:35:43 +00:00
$x = 1 ;
2010-12-14 19:45:08 +00:00
echo '<ul class="lamEqualHeightTabContent ui-tabs-nav ui-helper-reset ui-helper-clearfix ui-widget-header ui-corner-all">' ;
2010-06-23 17:35:43 +00:00
// Loop for each module
2007-12-26 18:49:04 +00:00
for ( $i = 0 ; $i < count ( $this -> order ); $i ++ ) {
2007-10-03 18:25:55 +00:00
$buttonStatus = $this -> module [ $this -> order [ $i ]] -> getButtonStatus ();
// skip hidden buttons
if ( $buttonStatus == 'hidden' ) continue ;
2007-11-19 18:42:03 +00:00
$buttonImage = $this -> module [ $this -> order [ $i ]] -> getIcon ();
2010-06-23 17:35:43 +00:00
$activatedClass = '' ;
if ( $this -> order [ $this -> current_page ] == $this -> order [ $i ]) {
2010-09-04 13:52:03 +00:00
$activatedClass = ' ui-tabs-selected ui-state-active ' . $this -> type . 'list-bright' ;
2010-06-23 17:35:43 +00:00
}
// print button
2010-12-11 15:58:25 +00:00
echo '<li class="ui-state-default ui-corner-left' . $activatedClass . '">' ;
2010-10-09 15:14:55 +00:00
$buttonStyle = 'background-color:transparent;;border:0px solid;' ;
echo " <button style= \" " . $buttonStyle . " \" name= \" form_main_ " . $this -> order [ $i ] . " \" " ;
echo " tabindex= $x " ;
if ( $buttonStatus == 'disabled' ) echo " disabled " ;
2011-01-06 17:38:16 +00:00
echo ' onmouseover="jQuery(this).addClass(\'tabs-hover\');" onmouseout="jQuery(this).removeClass(\'tabs-hover\');">' ;
2007-11-19 18:42:03 +00:00
if ( $buttonImage != null ) {
2011-04-03 10:29:23 +00:00
echo " <img height=32 width=32 class= \" align-middle \" style= \" padding: 3px; \" alt= \" \" src= \" ../../graphics/ $buttonImage\ " >& nbsp ; " ;
2007-11-19 18:42:03 +00:00
}
2010-10-09 15:14:55 +00:00
echo $this -> module [ $this -> order [ $i ]] -> get_alias ();
echo " </button> \n " ;
2010-06-23 17:35:43 +00:00
echo " </li> \n " ;
2004-09-28 15:41:16 +00:00
$x ++ ;
2005-08-26 08:53:16 +00:00
}
2010-09-04 13:52:03 +00:00
echo '</ul>' ;
2006-05-13 08:55:31 +00:00
}
2007-12-03 13:01:17 +00:00
2005-07-21 11:22:59 +00:00
/**
* This function checks which LDAP attributes have changed while the account was edited .
2006-08-14 17:29:45 +00:00
*
2005-07-21 11:22:59 +00:00
* @ param array $attributes list of current LDAP attributes
* @ param array $orig list of old attributes when account was loaded
* @ return array an array which can be passed to $this -> saveAccount ()
2004-02-07 18:34:26 +00:00
*/
function save_module_attributes ( $attributes , $orig ) {
2011-02-26 13:14:10 +00:00
$return = array ();
2006-05-01 16:13:10 +00:00
$toadd = array ();
$tomodify = array ();
$torem = array ();
$notchanged = array ();
2006-09-03 12:29:44 +00:00
// get list of all attributes
2004-02-07 18:34:26 +00:00
$attr_names = array_keys ( $attributes );
2006-09-03 12:29:44 +00:00
$orig_names = array_keys ( $orig );
// find deleted attributes (in $orig but no longer in $attributes)
2007-10-28 12:31:31 +00:00
foreach ( $orig_names as $i => $value ) {
if ( ! isset ( $attributes [ $value ])) {
$torem [ $value ] = $orig [ $value ];
2006-09-03 12:29:44 +00:00
}
}
2006-05-07 08:49:47 +00:00
// find changed attributes
2007-10-28 12:31:31 +00:00
foreach ( $attr_names as $i => $name ) {
2006-05-07 08:49:47 +00:00
// find deleted attributes
2007-10-28 12:48:13 +00:00
if ( isset ( $orig [ $name ]) && is_array ( $orig [ $name ])) {
foreach ( $orig [ $name ] as $j => $value ) {
if ( is_array ( $attributes [ $name ])) {
if ( ! in_array ( $value , $attributes [ $name ])) {
2009-12-18 21:02:53 +00:00
if ( $value != '' ) $torem [ $name ][] = $value ;
2007-10-28 12:48:13 +00:00
}
2004-02-07 18:34:26 +00:00
}
2009-12-18 21:02:53 +00:00
else if ( $value != '' ) $torem [ $name ][] = $value ;
2004-02-07 18:34:26 +00:00
}
2006-05-07 08:49:47 +00:00
}
// find new attributes
2007-10-28 12:48:13 +00:00
if ( isset ( $attributes [ $name ]) && is_array ( $attributes [ $name ])) {
foreach ( $attributes [ $name ] as $j => $value ) {
2010-05-19 19:22:29 +00:00
if ( isset ( $orig [ $name ]) && is_array ( $orig [ $name ])) {
2007-10-28 12:48:13 +00:00
if ( ! in_array ( $value , $orig [ $name ]))
if ( $value != '' ) {
$toadd [ $name ][] = $value ;
}
}
else if ( $value != '' ) $toadd [ $name ][] = $value ;
2004-02-07 18:34:26 +00:00
}
2006-05-07 08:49:47 +00:00
}
// find unchanged attributes
2010-05-19 19:22:29 +00:00
if ( isset ( $orig [ $name ]) && is_array ( $orig [ $name ]) && is_array ( $attributes [ $name ])) {
2007-10-28 12:48:13 +00:00
foreach ( $attributes [ $name ] as $j => $value ) {
if (( $value != '' ) && in_array ( $value , $orig [ $name ])) {
$notchanged [ $name ][] = $value ;
2006-07-05 19:51:20 +00:00
}
2004-02-07 18:34:26 +00:00
}
}
2006-05-07 08:49:47 +00:00
}
2004-09-15 19:52:29 +00:00
// create modify with add and remove
2006-05-07 08:49:47 +00:00
$attributes2 = array_keys ( $toadd );
for ( $i = 0 ; $i < count ( $attributes2 ); $i ++ ) {
if ( isset ( $torem [ $attributes2 [ $i ]]))
if (( count ( $toadd [ $attributes2 [ $i ]]) > 0 ) && ( count ( $torem [ $attributes2 [ $i ]]) > 0 )) {
// found attribute which should be modified
$tomodify [ $attributes2 [ $i ]] = $toadd [ $attributes2 [ $i ]];
// merge unchanged values
if ( isset ( $notchanged [ $attributes2 [ $i ]])) {
$tomodify [ $attributes2 [ $i ]] = array_merge ( $tomodify [ $attributes2 [ $i ]], $notchanged [ $attributes2 [ $i ]]);
unset ( $notchanged [ $attributes2 [ $i ]]);
2004-02-07 18:34:26 +00:00
}
2006-05-07 08:49:47 +00:00
// remove old add and remove commands
unset ( $toadd [ $attributes2 [ $i ]]);
unset ( $torem [ $attributes2 [ $i ]]);
2004-02-07 18:34:26 +00:00
}
}
2011-10-15 09:46:13 +00:00
if ( count ( $toadd ) != 0 ) $return [ $this -> dn_orig ][ 'add' ] = $toadd ;
if ( count ( $torem ) != 0 ) $return [ $this -> dn_orig ][ 'remove' ] = $torem ;
if ( count ( $tomodify ) != 0 ) $return [ $this -> dn_orig ][ 'modify' ] = $tomodify ;
if ( count ( $notchanged ) != 0 ) $return [ $this -> dn_orig ][ 'notchanged' ] = $notchanged ;
2004-02-07 18:34:26 +00:00
return $return ;
}
2005-07-21 11:22:59 +00:00
/**
* Loads an LDAP account with the given DN .
*
* @ param string $dn the DN of the account
2012-02-05 13:04:57 +00:00
* @ param array $infoAttributes list of additional informational attributes that are added to the LDAP attributes
* E . g . this is used to inject the clear text password in the file upload . Informational attribute names must start with " INFO. " .
2006-09-16 13:26:18 +00:00
* @ return array error messages
2004-02-07 18:34:26 +00:00
*/
2012-02-05 13:04:57 +00:00
function load_account ( $dn , $infoAttributes = array ()) {
2010-01-25 16:38:36 +00:00
logNewMessage ( LOG_DEBUG , " Edit account " . $dn );
2006-09-16 13:26:18 +00:00
$this -> module = array ();
2004-10-17 09:36:36 +00:00
$modules = $_SESSION [ 'config' ] -> get_AccountModules ( $this -> type );
2004-02-07 18:34:26 +00:00
$search = substr ( $dn , 0 , strpos ( $dn , ',' ));
2011-10-12 17:38:27 +00:00
$searchAttrs = array ( '*' , '+' , 'creatorsName' , 'createTimestamp' , 'modifiersName' ,
'modifyTimestamp' , 'hasSubordinates' , 'pwdChangedTime' );
$result = @ ldap_read ( $_SESSION [ 'ldap' ] -> server (), escapeDN ( $dn ), escapeDN ( $search ), $searchAttrs , 0 , 0 , 0 , LDAP_DEREF_NEVER );
2006-09-16 13:26:18 +00:00
if ( ! $result ) {
2011-08-30 18:38:04 +00:00
return array ( array ( " ERROR " , _ ( " Unable to load LDAP entry: " ) . " " . htmlspecialchars ( $dn ), ldap_error ( $_SESSION [ 'ldap' ] -> server ())));
2006-09-16 13:26:18 +00:00
}
$entry = @ ldap_first_entry ( $_SESSION [ 'ldap' ] -> server (), $result );
if ( ! $entry ) {
2011-08-30 18:38:04 +00:00
return array ( array ( " ERROR " , _ ( " Unable to load LDAP entry: " ) . " " . htmlspecialchars ( $dn ), ldap_error ( $_SESSION [ 'ldap' ] -> server ())));
2006-09-16 13:26:18 +00:00
}
2011-12-03 18:23:08 +00:00
$this -> dnSuffix = extractDNSuffix ( $dn );
2004-02-07 18:34:26 +00:00
$this -> dn_orig = $dn ;
2005-05-02 17:41:09 +00:00
// extract RDN
2011-12-03 18:23:08 +00:00
$this -> rdn = extractRDNAttribute ( $dn );
2004-09-08 19:30:18 +00:00
$attr = ldap_get_attributes ( $_SESSION [ 'ldap' ] -> server (), $entry );
2011-05-21 10:58:22 +00:00
$attr = array ( $attr );
cleanLDAPResult ( $attr );
2009-11-25 23:07:28 +00:00
$attr = $attr [ 0 ];
2006-04-05 15:48:27 +00:00
// fix spelling errors
$attr = $this -> fixLDAPAttributes ( $attr , $modules );
2005-12-05 14:27:47 +00:00
// get binary attributes
$binaryAttr = array ( 'jpegPhoto' );
for ( $i = 0 ; $i < sizeof ( $binaryAttr ); $i ++ ) {
if ( isset ( $attr [ $binaryAttr [ $i ]][ 0 ])) {
$binData = ldap_get_values_len ( $_SESSION [ 'ldap' ] -> server (), $entry , $binaryAttr [ $i ]);
unset ( $binData [ 'count' ]);
$attr [ $binaryAttr [ $i ]] = $binData ;
}
}
2012-02-05 13:04:57 +00:00
// add informational attributes
$attr = array_merge ( $attr , $infoAttributes );
2005-05-02 17:41:09 +00:00
// save original attributes
$this -> attributes_orig = $attr ;
2006-08-14 17:29:45 +00:00
2004-02-12 11:26:30 +00:00
foreach ( $modules as $module ) {
2004-06-08 18:54:37 +00:00
if ( ! isset ( $this -> module [ $module ])) {
$this -> module [ $module ] = new $module ( $this -> type );
$this -> module [ $module ] -> init ( $this -> base );
}
2004-02-12 11:26:30 +00:00
$this -> module [ $module ] -> load_attributes ( $attr );
2012-03-18 18:24:00 +00:00
}
2004-02-07 18:34:26 +00:00
2005-08-23 12:16:58 +00:00
// sort module buttons
$this -> sortModules ();
2010-12-11 15:58:25 +00:00
// get titles
$typeObject = new $this -> type ();
2012-04-07 16:40:34 +00:00
$this -> titleBarTitle = $typeObject -> getTitleBarTitle ( $this );
$this -> titleBarSubtitle = $typeObject -> getTitleBarSubtitle ( $this );
2006-09-16 13:26:18 +00:00
return array ();
2006-04-05 15:48:27 +00:00
}
2006-08-14 17:29:45 +00:00
2006-04-05 15:48:27 +00:00
/**
* Fixes spelling errors in the attribute names .
*
* @ param array $attributes LDAP attributes
* @ param array $modules list of active modules
* @ return array fixed attributes
*/
function fixLDAPAttributes ( $attributes , $modules ) {
if ( ! is_array ( $attributes )) return $attributes ;
$keys = array_keys ( $attributes );
2006-05-01 16:13:10 +00:00
// get correct object class names, aliases and attributes
2006-04-05 15:48:27 +00:00
$objectClasses = array ();
2006-05-01 16:13:10 +00:00
$aliases = array ();
2006-07-23 15:03:35 +00:00
$ldapAttributesTemp = array ();
2006-04-05 15:48:27 +00:00
foreach ( $modules as $module ) {
$moduleObj = new $module ( $this -> type );
$objectClasses = array_merge ( $objectClasses , $moduleObj -> getManagedObjectClasses ());
2006-05-01 16:13:10 +00:00
$aliases = array_merge ( $aliases , $moduleObj -> getLDAPAliases ());
2006-07-23 15:03:35 +00:00
$ldapAttributesTemp = array_merge ( $ldapAttributesTemp , $moduleObj -> getManagedAttributes ());
2004-02-07 18:34:26 +00:00
}
2006-07-23 15:03:35 +00:00
// build lower case attribute names
$ldapAttributes = array ();
for ( $i = 0 ; $i < sizeof ( $ldapAttributesTemp ); $i ++ ) {
$ldapAttributes [ strtolower ( $ldapAttributesTemp [ $i ])] = $ldapAttributesTemp [ $i ];
unset ( $ldapAttributes [ $i ]);
}
$ldapAttributesKeys = array_keys ( $ldapAttributes );
2006-05-01 16:13:10 +00:00
// convert alias names to lower case (for easier comparison)
$aliasKeys = array_keys ( $aliases );
for ( $i = 0 ; $i < sizeof ( $aliasKeys ); $i ++ ) {
if ( $aliasKeys [ $i ] != strtolower ( $aliasKeys [ $i ])) {
$aliases [ strtolower ( $aliasKeys [ $i ])] = $aliases [ $aliasKeys [ $i ]];
unset ( $aliases [ $aliasKeys [ $i ]]);
$aliasKeys [ $i ] = strtolower ( $aliasKeys [ $i ]);
}
}
// fix object classes and attributes
2006-04-05 15:48:27 +00:00
for ( $i = 0 ; $i < sizeof ( $keys ); $i ++ ) {
2006-05-01 16:13:10 +00:00
// check object classes
2006-04-05 15:48:27 +00:00
if ( strtolower ( $keys [ $i ]) == 'objectclass' ) {
// fix object class attribute
if ( $keys [ $i ] != 'objectClass' ) {
$temp = $attributes [ $keys [ $i ]];
unset ( $attributes [ $keys [ $i ]]);
$attributes [ 'objectClass' ] = $temp ;
}
// fix object classes
for ( $attrClass = 0 ; $attrClass < sizeof ( $attributes [ 'objectClass' ]); $attrClass ++ ) {
for ( $modClass = 0 ; $modClass < sizeof ( $objectClasses ); $modClass ++ ) {
if ( strtolower ( $attributes [ 'objectClass' ][ $attrClass ]) == strtolower ( $objectClasses [ $modClass ])) {
if ( $attributes [ 'objectClass' ][ $attrClass ] != $objectClasses [ $modClass ]) {
unset ( $attributes [ 'objectClass' ][ $attrClass ]);
$attributes [ 'objectClass' ][] = $objectClasses [ $modClass ];
}
break ;
}
}
}
2006-05-01 16:13:10 +00:00
}
else {
// fix aliases
if ( in_array ( strtolower ( $keys [ $i ]), $aliasKeys )) {
$attributes [ $aliases [ strtolower ( $keys [ $i ])]] = $attributes [ $keys [ $i ]];
unset ( $attributes [ $keys [ $i ]]);
}
2006-07-23 15:03:35 +00:00
// fix attribute names
elseif ( in_array ( strtolower ( $keys [ $i ]), $ldapAttributesKeys )) {
if ( $keys [ $i ] != $ldapAttributes [ strtolower ( $keys [ $i ])]) {
$attributes [ $ldapAttributes [ strtolower ( $keys [ $i ])]] = $attributes [ $keys [ $i ]];
unset ( $attributes [ $keys [ $i ]]);
}
}
2006-04-05 15:48:27 +00:00
}
}
return $attributes ;
}
2004-02-07 18:34:26 +00:00
2005-04-29 15:20:48 +00:00
/**
* This function will prepare the object for a new account .
2004-02-07 18:34:26 +00:00
*/
function new_account () {
2010-01-25 16:38:36 +00:00
logNewMessage ( LOG_DEBUG , " New account with type " . $this -> type );
2005-04-29 15:20:48 +00:00
$this -> isNewAccount = true ;
2007-12-04 15:58:05 +00:00
$this -> lastLoadedProfile = 'default' ;
2004-10-17 09:36:36 +00:00
$modules = $_SESSION [ 'config' ] -> get_AccountModules ( $this -> type );
2004-06-08 18:54:37 +00:00
foreach ( $modules as $module ) {
$this -> module [ $module ] = new $module ( $this -> type );
$this -> module [ $module ] -> init ( $this -> base );
}
2005-08-23 12:16:58 +00:00
// sort module buttons
$this -> sortModules ();
2005-04-16 10:58:18 +00:00
$profile = loadAccountProfile ( 'default' , $this -> type );
// pass profile to each module
$modules = array_keys ( $this -> module );
foreach ( $modules as $module ) $this -> module [ $module ] -> load_profile ( $profile );
2005-05-22 09:05:33 +00:00
if ( isset ( $profile [ 'ldap_rdn' ][ 0 ])) {
2005-08-13 09:38:32 +00:00
if ( in_array ( $profile [ 'ldap_rdn' ][ 0 ], getRDNAttributes ( $this -> type ))) {
$this -> rdn = $profile [ 'ldap_rdn' ][ 0 ];
}
2005-05-22 09:05:33 +00:00
}
2011-05-14 13:51:08 +00:00
if ( isset ( $profile [ 'ldap_suffix' ][ 0 ]) && ( $profile [ 'ldap_suffix' ][ 0 ] != '-' )) {
2011-10-15 09:46:13 +00:00
$this -> dnSuffix = $profile [ 'ldap_suffix' ][ 0 ];
2005-05-22 09:05:33 +00:00
}
2010-12-11 15:58:25 +00:00
// get titles
$typeObject = new $this -> type ();
2012-04-07 16:40:34 +00:00
$this -> titleBarTitle = $typeObject -> getTitleBarTitle ( $this );
$this -> titleBarSubtitle = $typeObject -> getTitleBarSubtitle ( $this );
2004-02-07 18:34:26 +00:00
return 0 ;
2010-12-11 15:58:25 +00:00
}
2004-02-07 18:34:26 +00:00
2005-05-02 17:41:09 +00:00
/**
* This function will save an account to the LDAP database .
*
2012-01-04 19:08:19 +00:00
* @ return array list of status messages
2004-02-07 18:34:26 +00:00
*/
function save_account () {
2007-12-30 16:08:54 +00:00
if ( ! checkIfWriteAccessIsAllowed ()) {
die ();
}
2011-10-15 09:46:13 +00:00
$this -> finalDN = $this -> dn_orig ;
2006-08-27 14:57:22 +00:00
$errors = array ();
2006-05-16 15:18:24 +00:00
$ldapUser = $_SESSION [ 'ldap' ] -> decrypt_login ();
$ldapUser = $ldapUser [ 0 ];
2004-02-07 18:34:26 +00:00
$module = array_keys ( $this -> module );
$attributes = array ();
// load attributes
foreach ( $module as $singlemodule ) {
// load changes
$temp = $this -> module [ $singlemodule ] -> save_attributes ();
2005-12-17 12:07:36 +00:00
if ( ! is_array ( $temp )) $temp = array ();
2004-02-07 18:34:26 +00:00
// merge changes
$DNs = array_keys ( $temp );
2005-07-06 13:35:54 +00:00
if ( is_array ( $temp )) $attributes = array_merge_recursive ( $temp , $attributes );
2004-02-07 18:34:26 +00:00
for ( $i = 0 ; $i < count ( $DNs ); $i ++ ) {
$ops = array_keys ( $temp [ $DNs [ $i ]]);
for ( $j = 0 ; $j < count ( $ops ); $j ++ ) {
$attrs = array_keys ( $temp [ $DNs [ $i ]][ $ops [ $j ]]);
2011-10-15 09:46:13 +00:00
for ( $k = 0 ; $k < count ( $attrs ); $k ++ ) {
2004-02-07 18:34:26 +00:00
$attributes [ $DNs [ $i ]][ $ops [ $j ]][ $attrs [ $k ]] = array_unique ( $attributes [ $DNs [ $i ]][ $ops [ $j ]][ $attrs [ $k ]]);
}
}
}
2011-10-15 09:46:13 +00:00
}
// build DN for new accounts and change it for existing ones if needed
if ( isset ( $attributes [ $this -> dn_orig ][ 'modify' ][ $this -> rdn ][ 0 ])) {
$this -> finalDN = $this -> rdn . '=' . $attributes [ $this -> dn_orig ][ 'modify' ][ $this -> rdn ][ 0 ] . ',' . $this -> dnSuffix ;
if ( $this -> dn_orig != $this -> finalDN ) {
$attributes [ $this -> finalDN ] = $attributes [ $this -> dn_orig ];
unset ( $attributes [ $this -> dn_orig ]);
}
}
elseif ( isset ( $attributes [ $this -> dn_orig ][ 'add' ][ $this -> rdn ][ 0 ])) {
$this -> finalDN = $this -> rdn . '=' . $attributes [ $this -> dn_orig ][ 'add' ][ $this -> rdn ][ 0 ] . ',' . $this -> dnSuffix ;
if ( $this -> dn_orig != $this -> finalDN ) {
$attributes [ $this -> finalDN ] = $attributes [ $this -> dn_orig ];
unset ( $attributes [ $this -> dn_orig ]);
2004-02-07 18:34:26 +00:00
}
2009-05-21 16:33:50 +00:00
}
2011-12-11 13:07:48 +00:00
elseif ( ! $this -> isNewAccount && (( $this -> dnSuffix != extractDNSuffix ( $this -> dn_orig )) || ( $this -> rdn != extractRDNAttribute ( $this -> dn_orig )))) {
2011-12-03 18:23:08 +00:00
$this -> finalDN = $this -> rdn . '=' . $attributes [ $this -> dn_orig ][ 'notchanged' ][ $this -> rdn ][ 0 ] . ',' . $this -> dnSuffix ;
$attributes [ $this -> finalDN ] = $attributes [ $this -> dn_orig ];
unset ( $attributes [ $this -> dn_orig ]);
}
2009-05-21 16:33:50 +00:00
// pre modify actions
2011-02-26 13:14:10 +00:00
$prePostModifyAttributes = array ();
2009-05-21 16:33:50 +00:00
if ( isset ( $attributes [ $this -> finalDN ]) && is_array ( $attributes [ $this -> finalDN ])) {
2011-01-12 21:07:28 +00:00
if ( isset ( $attributes [ $this -> finalDN ][ 'notchanged' ])) {
2011-02-26 13:14:10 +00:00
$prePostModifyAttributes = array_merge ( $prePostModifyAttributes , $attributes [ $this -> finalDN ][ 'notchanged' ]);
2011-01-12 21:07:28 +00:00
}
2009-05-21 16:33:50 +00:00
if ( isset ( $attributes [ $this -> finalDN ][ 'modify' ])) {
2011-02-26 13:14:10 +00:00
$prePostModifyAttributes = array_merge ( $prePostModifyAttributes , $attributes [ $this -> finalDN ][ 'modify' ]);
foreach ( $attributes [ $this -> finalDN ][ 'modify' ] as $key => $value ) {
$prePostModifyAttributes [ 'MOD.' . $key ] = $value ;
}
2009-05-21 16:33:50 +00:00
}
if ( isset ( $attributes [ $this -> finalDN ][ 'add' ])) {
2011-02-26 13:14:10 +00:00
$prePostModifyAttributes = array_merge ( $prePostModifyAttributes , $attributes [ $this -> finalDN ][ 'add' ]);
foreach ( $attributes [ $this -> finalDN ][ 'add' ] as $key => $value ) {
$prePostModifyAttributes [ 'NEW.' . $key ] = $value ;
}
}
if ( isset ( $attributes [ $this -> finalDN ][ 'remove' ])) {
foreach ( $attributes [ $this -> finalDN ][ 'remove' ] as $key => $value ) {
$prePostModifyAttributes [ 'DEL.' . $key ] = $value ;
}
}
if ( isset ( $attributes [ $this -> finalDN ][ 'info' ])) {
foreach ( $attributes [ $this -> finalDN ][ 'info' ] as $key => $value ) {
$prePostModifyAttributes [ 'INFO.' . $key ] = $value ;
}
2009-05-21 16:33:50 +00:00
}
}
2012-07-25 19:17:37 +00:00
if ( ! $this -> isNewAccount ) {
foreach ( $this -> attributes_orig as $key => $value ) {
$prePostModifyAttributes [ 'ORIG.' . $key ] = $value ;
}
$prePostModifyAttributes [ 'ORIG.dn' ][ 0 ] = $this -> dn_orig ;
}
2011-02-26 13:14:10 +00:00
$prePostModifyAttributes [ 'dn' ][ 0 ] = $this -> finalDN ;
2012-06-02 17:45:37 +00:00
if ( ! $this -> isNewAccount && ( $this -> finalDN != $this -> dn_orig )) {
2012-07-25 19:17:37 +00:00
$prePostModifyAttributes [ 'MOD.dn' ][ 0 ] = $this -> finalDN ;
2012-06-02 17:45:37 +00:00
}
2011-02-26 13:14:10 +00:00
logNewMessage ( LOG_DEBUG , 'Edit page pre/postModify attributes: ' . print_r ( $prePostModifyAttributes , true ));
2009-05-21 16:33:50 +00:00
$preModifyOk = true ;
foreach ( $module as $singlemodule ) {
2012-01-04 20:51:34 +00:00
$preModifyMessages = $this -> module [ $singlemodule ] -> preModifyActions ( $this -> isNewAccount , $prePostModifyAttributes );
$errors = array_merge ( $errors , $preModifyMessages );
for ( $i = 0 ; $i < sizeof ( $preModifyMessages ); $i ++ ) {
if ( $preModifyMessages [ $i ][ 0 ] == 'ERROR' ) {
$preModifyOk = false ;
break ;
}
2009-05-21 16:33:50 +00:00
}
}
if ( ! $preModifyOk ) {
$errors [] = array ( 'ERROR' , _ ( 'The operation was stopped because of the above errors.' ));
return $errors ;
}
2004-02-07 18:34:26 +00:00
// Set to true if an real error has happened
$stopprocessing = false ;
2008-02-23 10:23:40 +00:00
if ( strtolower ( $this -> finalDN ) != strtolower ( $this -> dn_orig )) {
2006-05-07 08:49:47 +00:00
// move existing DN
if ( $this -> dn_orig != '' ) {
2010-02-28 14:36:29 +00:00
logNewMessage ( LOG_DEBUG , 'Rename ' . $this -> dn_orig . ' to ' . $this -> finalDN );
2008-02-23 10:23:40 +00:00
$success = ldap_rename ( $_SESSION [ 'ldap' ] -> server (), $this -> dn_orig , $this -> getRDN ( $this -> finalDN ), $this -> getParentDN ( $this -> finalDN ), false );
2006-05-07 08:49:47 +00:00
if ( $success ) {
2008-02-23 10:23:40 +00:00
logNewMessage ( LOG_NOTICE , '[' . $ldapUser . '] Renamed DN ' . $this -> dn_orig . " to " . $this -> finalDN );
2006-05-07 08:49:47 +00:00
}
2007-05-13 13:02:32 +00:00
else {
logNewMessage ( LOG_ERR , '[' . $ldapUser . '] Unable to rename DN: ' . $this -> dn_orig . ' (' . ldap_error ( $_SESSION [ 'ldap' ] -> server ()) . ').' );
$errors [] = array ( 'ERROR' , sprintf ( _ ( 'Was unable to rename DN: %s.' ), $this -> dn_orig ), ldap_error ( $_SESSION [ 'ldap' ] -> server ()));
2006-05-07 08:49:47 +00:00
$stopprocessing = true ;
}
}
// create complete new dn
else {
$attr = array ();
2010-05-19 19:22:29 +00:00
if ( isset ( $attributes [ $this -> finalDN ][ 'add' ]) && is_array ( $attributes [ $this -> finalDN ][ 'add' ])) {
$attr = array_merge_recursive ( $attr , $attributes [ $this -> finalDN ][ 'add' ]);
}
if ( isset ( $attributes [ $this -> finalDN ][ 'notchanged' ]) && is_array ( $attributes [ $this -> finalDN ][ 'notchanged' ])) {
$attr = array_merge_recursive ( $attr , $attributes [ $this -> finalDN ][ 'notchanged' ]);
}
if ( isset ( $attributes [ $this -> finalDN ][ 'modify' ]) && is_array ( $attributes [ $this -> finalDN ][ 'modify' ])) {
$attr = array_merge_recursive ( $attr , $attributes [ $this -> finalDN ][ 'modify' ]);
}
2008-02-23 10:23:40 +00:00
$success = ldap_add ( $_SESSION [ 'ldap' ] -> server (), $this -> finalDN , $attr );
2006-05-07 08:49:47 +00:00
if ( ! $success ) {
2008-02-23 10:23:40 +00:00
logNewMessage ( LOG_ERR , '[' . $ldapUser . '] Unable to create DN: ' . $this -> finalDN . ' (' . ldap_err2str ( ldap_errno ( $_SESSION [ 'ldap' ] -> server ())) . ').' );
$errors [] = array ( 'ERROR' , sprintf ( _ ( 'Was unable to create DN: %s.' ), $this -> finalDN ), ldap_error ( $_SESSION [ 'ldap' ] -> server ()));
2006-05-07 08:49:47 +00:00
$stopprocessing = true ;
}
2006-05-16 15:18:24 +00:00
else {
2008-02-23 10:23:40 +00:00
logNewMessage ( LOG_NOTICE , '[' . $ldapUser . '] Created DN: ' . $this -> finalDN );
2006-05-16 15:18:24 +00:00
}
2008-02-23 10:23:40 +00:00
unset ( $attributes [ $this -> finalDN ]);
2004-02-07 18:34:26 +00:00
}
2005-10-15 09:33:05 +00:00
}
2004-02-07 18:34:26 +00:00
$DNs = array_keys ( $attributes );
for ( $i = 0 ; $i < count ( $DNs ); $i ++ ) {
if ( ! $stopprocessing ) {
2010-02-28 14:36:29 +00:00
logNewMessage ( LOG_DEBUG , 'Attribute changes for ' . $DNs [ $i ] . " : \n " . print_r ( $attributes [ $DNs [ $i ]], true ));
2004-02-07 18:34:26 +00:00
// modify attributes
if ( isset ( $attributes [ $DNs [ $i ]][ 'modify' ]) && ! $stopprocessing ) {
2004-09-08 19:30:18 +00:00
$success = @ ldap_mod_replace ( $_SESSION [ 'ldap' ] -> server (), $DNs [ $i ], $attributes [ $DNs [ $i ]][ 'modify' ]);
2004-02-07 18:34:26 +00:00
if ( ! $success ) {
2011-05-11 15:04:24 +00:00
logNewMessage ( LOG_ERR , '[' . $ldapUser . '] Unable to modify attributes from DN: ' . $DNs [ $i ] . ' (' . ldap_err2str ( ldap_errno ( $_SESSION [ 'ldap' ] -> server ())) . ').' );
$errors [] = array ( 'ERROR' , sprintf ( _ ( 'Was unable to modify attributes from DN: %s.' ), $DNs [ $i ]), ldap_error ( $_SESSION [ 'ldap' ] -> server ()));
2004-02-07 18:34:26 +00:00
$stopprocessing = true ;
}
2006-05-16 15:18:24 +00:00
else {
logNewMessage ( LOG_NOTICE , '[' . $ldapUser . '] Modified DN: ' . $DNs [ $i ]);
2012-02-09 17:50:08 +00:00
// check if the password of the currently logged in user was changed
$lamAdmin = $_SESSION [ 'ldap' ] -> decrypt_login ();
if (( strtolower ( $DNs [ $i ]) == strtolower ( $lamAdmin [ 0 ])) && isset ( $attributes [ $DNs [ $i ]][ 'info' ][ 'userPasswordClearText' ][ 0 ])) {
$_SESSION [ 'ldap' ] -> encrypt_login ( $DNs [ $i ], $attributes [ $DNs [ $i ]][ 'info' ][ 'userPasswordClearText' ][ 0 ]);
}
2006-05-16 15:18:24 +00:00
}
2005-10-15 09:33:05 +00:00
}
2004-02-07 18:34:26 +00:00
// add attributes
if ( isset ( $attributes [ $DNs [ $i ]][ 'add' ]) && ! $stopprocessing ) {
2004-09-08 19:30:18 +00:00
$success = @ ldap_mod_add ( $_SESSION [ 'ldap' ] -> server (), $DNs [ $i ], $attributes [ $DNs [ $i ]][ 'add' ]);
2004-02-07 18:34:26 +00:00
if ( ! $success ) {
2011-05-11 15:04:24 +00:00
logNewMessage ( LOG_ERR , '[' . $ldapUser . '] Unable to add attributes to DN: ' . $DNs [ $i ] . ' (' . ldap_err2str ( ldap_errno ( $_SESSION [ 'ldap' ] -> server ())) . ').' );
$errors [] = array ( 'ERROR' , sprintf ( _ ( 'Was unable to add attributes to DN: %s.' ), $DNs [ $i ]), ldap_error ( $_SESSION [ 'ldap' ] -> server ()));
2004-02-07 18:34:26 +00:00
$stopprocessing = true ;
}
2006-05-16 15:18:24 +00:00
else {
logNewMessage ( LOG_NOTICE , '[' . $ldapUser . '] Modified DN: ' . $DNs [ $i ]);
}
2005-10-15 09:33:05 +00:00
}
2005-12-05 14:27:47 +00:00
// remove attributes
2004-02-07 18:34:26 +00:00
if ( isset ( $attributes [ $DNs [ $i ]][ 'remove' ]) && ! $stopprocessing ) {
2004-09-08 19:30:18 +00:00
$success = @ ldap_mod_del ( $_SESSION [ 'ldap' ] -> server (), $DNs [ $i ], $attributes [ $DNs [ $i ]][ 'remove' ]);
2004-02-07 18:34:26 +00:00
if ( ! $success ) {
2011-05-11 15:04:24 +00:00
logNewMessage ( LOG_ERR , '[' . $ldapUser . '] Unable to delete attributes from DN: ' . $DNs [ $i ] . ' (' . ldap_err2str ( ldap_errno ( $_SESSION [ 'ldap' ] -> server ())) . ').' );
$errors [] = array ( 'ERROR' , sprintf ( _ ( 'Was unable to remove attributes from DN: %s.' ), $DNs [ $i ]), ldap_error ( $_SESSION [ 'ldap' ] -> server ()));
2004-02-07 18:34:26 +00:00
$stopprocessing = true ;
}
2006-05-16 15:18:24 +00:00
else {
logNewMessage ( LOG_NOTICE , '[' . $ldapUser . '] Modified DN: ' . $DNs [ $i ]);
}
2004-02-07 18:34:26 +00:00
}
}
2005-10-15 09:33:05 +00:00
}
2004-02-07 18:34:26 +00:00
if ( ! $stopprocessing ) {
2007-02-25 13:50:13 +00:00
// post modify actions
foreach ( $module as $singlemodule ) {
2012-01-04 19:08:19 +00:00
$postMessages = $this -> module [ $singlemodule ] -> postModifyActions ( $this -> isNewAccount , $prePostModifyAttributes );
$errors = array_merge ( $errors , $postMessages );
2004-02-07 18:34:26 +00:00
}
2005-10-15 09:33:05 +00:00
}
2006-08-27 14:57:22 +00:00
return $errors ;
2005-08-05 08:49:03 +00:00
}
2004-02-07 18:34:26 +00:00
2005-08-05 08:49:03 +00:00
/**
* Returns a list of possible PDF entries for this account .
2006-08-14 17:29:45 +00:00
*
2005-08-05 08:49:03 +00:00
* @ return list of PDF entries ( array ( < name > => < PDF lines > ))
*/
function get_pdfEntries () {
$return = array ();
while (( $current = current ( $this -> module )) != null ) {
2005-10-09 18:05:32 +00:00
$return = array_merge ( $return , $current -> get_pdfEntries ());
2005-08-05 08:49:03 +00:00
next ( $this -> module );
2004-05-23 15:23:00 +00:00
}
2010-01-13 18:55:22 +00:00
$dn = $this -> dn_orig ;
if ( isset ( $this -> finalDN )) {
$dn = $this -> finalDN ;
}
$return = array_merge ( $return , array ( 'main_dn' => array ( '<block><key>' . _ ( 'DN' ) . '</key><value>' . $dn . '</value></block>' )));
2005-08-05 08:49:03 +00:00
return $return ;
}
2005-08-23 12:16:58 +00:00
/**
* Sorts the module buttons for the account page .
*/
function sortModules () {
$order = array ();
$modules = array_keys ( $this -> module );
$depModules = array ();
2011-09-23 09:44:38 +00:00
if ( isset ( $this -> order )) {
$currentPage = $this -> order [ $this -> current_page ];
}
2005-08-23 12:16:58 +00:00
for ( $i = 0 ; $i < sizeof ( $modules ); $i ++ ) {
// insert waiting modules
for ( $w = 0 ; $w < sizeof ( $depModules ); $w ++ ) {
$dependencies = $this -> module [ $depModules [ $w ]] -> get_dependencies ( $this -> type );
$dependencies = $dependencies [ 'depends' ];
$everything_found = true ;
for ( $d = 0 ; $d < sizeof ( $dependencies ); $d ++ ) {
if ( ! in_array ( $dependencies [ $d ], $order )) {
$everything_found = false ;
break ;
}
}
// inser after depending module
if ( $everything_found ) {
$order [] = $depModules [ $w ];
unset ( $depModules [ $w ]);
$depModules = array_values ( $depModules );
$w -- ;
}
}
// check next module
$dependencies = $this -> module [ $modules [ $i ]] -> get_dependencies ( $this -> type );
if ( is_array ( $dependencies [ 'depends' ])) {
$everything_found = true ;
$dependencies = $dependencies [ 'depends' ];
for ( $d = 0 ; $d < sizeof ( $dependencies ); $d ++ ) {
if ( ! in_array ( $dependencies [ $d ], $order )) {
$everything_found = false ;
break ;
}
}
// remove module if dependencies are not satisfied
if ( ! $everything_found ) {
$depModules [] = $modules [ $i ];
unset ( $modules [ $i ]);
$modules = array_values ( $modules );
$i -- ;
}
else {
$order [] = $modules [ $i ];
}
}
else {
$order [] = $modules [ $i ];
}
}
// add modules which could not be sorted (e.g. because of cyclic dependencies)
if ( sizeof ( $depModules ) > 0 ) {
for ( $i = 0 ; $i < sizeof ( $depModules ); $i ++ ) $order [] = $depModules [ $i ];
}
2008-03-25 17:48:16 +00:00
// move disabled modules to end
$activeModules = array ();
$passiveModules = array ();
for ( $i = 0 ; $i < sizeof ( $order ); $i ++ ) {
if ( $this -> module [ $order [ $i ]] -> getButtonStatus () == 'enabled' ) {
$activeModules [] = $order [ $i ];
}
else {
$passiveModules [] = $order [ $i ];
}
}
$this -> order = array_merge ( $activeModules , $passiveModules );
2011-09-23 09:44:38 +00:00
// check if ordering changed and current page number must be updated
if ( isset ( $currentPage ) && ( $currentPage != $this -> order [ $this -> current_page ])) {
$this -> current_page = array_search ( $currentPage , $this -> order );
}
2005-08-23 12:16:58 +00:00
}
2007-05-13 13:02:32 +00:00
/**
* Returns the RDN part of a given DN .
*
* @ param String $dn DN
* @ return String RDN
*/
function getRDN ( $dn ) {
if (( $dn == " " ) || ( $dn == null )) return " " ;
$rdn = substr ( $dn , 0 , strpos ( $dn , " , " ));
return $rdn ;
}
/**
* Returns the parent DN of a given DN .
*
* @ param String $dn DN
* @ return String DN
*/
function getParentDN ( $dn ) {
if (( $dn == " " ) || ( $dn == null )) return " " ;
$parent = substr ( $dn , strpos ( $dn , " , " ) + 1 );
return $parent ;
}
2010-11-21 14:32:54 +00:00
/**
* Returns a list of OUs that exist for this account type .
*
* @ return array OU list
*/
private function getOUs () {
if ( $this -> cachedOUs != null ) {
return $this -> cachedOUs ;
}
2011-04-25 18:01:11 +00:00
$typeObj = new $this -> type ();
$this -> cachedOUs = $typeObj -> getSuffixList ();
2010-11-21 14:32:54 +00:00
return $this -> cachedOUs ;
}
2006-08-14 17:29:45 +00:00
2005-08-05 08:49:03 +00:00
/**
* Encrypts sensitive data before storing in session .
*
* @ return array list of attributes which are serialized
*/
function __sleep () {
// encrypt data
$this -> attributes = $_SESSION [ 'ldap' ] -> encrypt ( serialize ( $this -> attributes ));
$this -> attributes_orig = $_SESSION [ 'ldap' ] -> encrypt ( serialize ( $this -> attributes_orig ));
$this -> module = $_SESSION [ 'ldap' ] -> encrypt ( serialize ( $this -> module ));
// save all attributes
2005-09-04 12:49:26 +00:00
return array_keys ( get_object_vars ( $this ));
2005-08-05 08:49:03 +00:00
}
2006-08-14 17:29:45 +00:00
2005-08-05 08:49:03 +00:00
/**
* Decrypts sensitive data after accountContainer was loaded from session .
*/
function __wakeup () {
// decrypt data
$this -> attributes = unserialize ( $_SESSION [ 'ldap' ] -> decrypt ( $this -> attributes ));
$this -> attributes_orig = unserialize ( $_SESSION [ 'ldap' ] -> decrypt ( $this -> attributes_orig ));
$this -> module = unserialize ( $_SESSION [ 'ldap' ] -> decrypt ( $this -> module ));
2004-02-07 18:34:26 +00:00
}
2005-08-05 08:49:03 +00:00
}
2009-10-04 18:58:44 +00:00
/**
* This interface needs to be implemented by all account modules which manage passwords .
* It allows LAM to provide central password changes .
*
* @ package modules
*/
interface passwordService {
/**
* This method specifies if a module manages password attributes . The module alias will
* then appear as option in the GUI .
* < br > If the module only wants to get notified about password changes then return false .
*
* @ return boolean true if this module manages password attributes
*/
public function managesPasswordAttributes ();
2012-01-15 19:34:14 +00:00
/**
* Specifies if this module supports to force that a user must change his password on next login .
*
* @ return boolean force password change supported
*/
public function supportsForcePasswordChange ();
2009-10-04 18:58:44 +00:00
/**
2009-10-09 18:21:12 +00:00
* This function is called whenever the password should be changed . Account modules
* must change their password attributes only if the modules list contains their module name .
2009-10-04 18:58:44 +00:00
*
* @ param String $password new password
2012-01-15 19:34:14 +00:00
* @ param array $modules list of modules for which the password should be changed
* @ param boolean $forcePasswordChange force the user to change his password at next login
2009-10-04 18:58:44 +00:00
* @ return array list of error messages if any as parameter array for StatusMessage
* e . g . return arrray ( array ( 'ERROR' , 'Password change failed.' ))
*/
2012-01-15 19:34:14 +00:00
public function passwordChangeRequested ( $password , $modules , $forcePasswordChange );
2009-10-04 18:58:44 +00:00
}
2004-09-08 10:07:25 +00:00
?>