WMDE
/
LDAPAccountManager
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Allow to sync Unix password with Windows password

This commit is contained in:
Roland Gruber 2016-06-26 10:15:45 +02:00
parent 5d85a88ca1
commit 8bb1b358d2
3 changed files with 24 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
lam/docs/.gitignore vendored
View File

@ -1,3 +1,5 @@
/manual /manual
/manual-pdf /manual-pdf
/manual-onePage /manual-onePage
/manual.tar.gz
/phpdoc/

9
lam/docs/manual-sources/howto.xml
View File

@ -8384,7 +8384,7 @@ OK (10 msec)</programlisting>
</row> </row>
<row> <row>
<entry morerows="2"><inlinemediaobject> <entry morerows="3"><inlinemediaobject>
<imageobject> <imageobject>
<imagedata fileref="images/schema_unix.png" /> <imagedata fileref="images/schema_unix.png" />
</imageobject> </imageobject>
@ -8408,6 +8408,13 @@ OK (10 msec)</programlisting>
synchronization options.</entry> synchronization options.</entry>
</row> </row>
<row>
<entry>Sync Unix password with Windows password</entry>
<entry>This is a hidden field. It will update the Unix
password each time the Windows password is changed.</entry>
</row>
<row> <row>
<entry morerows="1"><inlinemediaobject> <entry morerows="1"><inlinemediaobject>
<imageobject> <imageobject>

15
lam/lib/modules/posixAccount.inc
View File

@ -183,7 +183,12 @@ class posixAccount extends baseModule implements passwordService {
// self service search attributes // self service search attributes
$return['selfServiceSearchAttributes'] = array('uid'); $return['selfServiceSearchAttributes'] = array('uid');
// self service field settings // self service field settings
$return['selfServiceFieldSettings'] = array('password' => _('Password'), 'cn' => _('Common name'), 'loginShell' => _('Login shell')); $return['selfServiceFieldSettings'] = array(
'password' => _('Password'),
'cn' => _('Common name'),
'loginShell' => _('Login shell'),
'syncWindowsPassword' => _('Sync Unix password with Windows password')
);
// possible self service read-only fields // possible self service read-only fields
$return['selfServiceReadOnlyFields'] = array('cn', 'loginShell'); $return['selfServiceReadOnlyFields'] = array('cn', 'loginShell');
// self service configuration settings // self service configuration settings
@ -2844,6 +2849,14 @@ class posixAccount extends baseModule implements passwordService {
if ($passwordChangeOnly) { if ($passwordChangeOnly) {
return $return; return $return;
} }
// sync from Windows password
if (in_array('syncWindowsPassword', $fields) && !empty($_POST['windowsUser_unicodePwd'])) {
$password = $_POST['windowsUser_unicodePwd'];
$return['mod']['unixUserPassword'][0] = pwd_hash($password, true, $this->selfServiceSettings->moduleSettings['posixAccount_pwdHash'][0]);
if (isset($attributes['shadowLastChange'][0])) {
$return['mod']['shadowLastChange'][0] = intval(time()/3600/24);
}
}
// cn // cn
if (in_array('cn', $fields) && !in_array('cn', $readOnlyFields)) { if (in_array('cn', $fields) && !in_array('cn', $readOnlyFields)) {
if (isset($_POST['posixAccount_cn']) && ($_POST['posixAccount_cn'] != '')) { if (isset($_POST['posixAccount_cn']) && ($_POST['posixAccount_cn'] != '')) {