ldap is now correctly (de)serialized
username and password are not encrypted at the moment
This commit is contained in:
Roland Gruber
parent
b75919188a
commit
b1058da8a5
|
|
@ -35,6 +35,10 @@ class Ldap{
|
||||||
// server handle
|
// server handle
|
||||||
var $server;
|
var $server;
|
||||||
|
|
||||||
|
// LDAP username and password used for bind
|
||||||
|
var $username;
|
||||||
|
var $password;
|
||||||
|
|
||||||
// constructor
|
// constructor
|
||||||
// $config has to be an object of Config (../config/config.php)
|
// $config has to be an object of Config (../config/config.php)
|
||||||
function Ldap($config) {
|
function Ldap($config) {
|
||||||
|
|
@ -98,6 +102,8 @@ class Ldap{
|
||||||
echo _("No username was specified!");
|
echo _("No username was specified!");
|
||||||
exit;
|
exit;
|
||||||
}
|
}
|
||||||
|
// save password und username encrypted
|
||||||
|
$this->encrypt($user, $passwd);
|
||||||
if ($this->conf->get_SSL() == "True") $this->server = @ldap_connect("ldaps://" . $this->conf->get_Host(), $this->conf->get_Port());
|
if ($this->conf->get_SSL() == "True") $this->server = @ldap_connect("ldaps://" . $this->conf->get_Host(), $this->conf->get_Port());
|
||||||
else $this->server = @ldap_connect("ldap://" . $this->conf->get_Host(), $this->conf->get_Port());
|
else $this->server = @ldap_connect("ldap://" . $this->conf->get_Host(), $this->conf->get_Port());
|
||||||
if ($this->server) {
|
if ($this->server) {
|
||||||
|
|
@ -144,6 +150,40 @@ class Ldap{
|
||||||
return $this->server;
|
return $this->server;
|
||||||
}
|
}
|
||||||
|
|
||||||
|
// closes connection to LDAP server before serialization
|
||||||
|
function __sleep() {
|
||||||
|
$this->close();
|
||||||
|
return array("conf", "server", "username", "password");
|
||||||
|
}
|
||||||
|
|
||||||
|
// reconnects to LDAP server when deserialized
|
||||||
|
function __wakeup() {
|
||||||
|
$data = $this->decrypt();
|
||||||
|
$this->connect($data[0], $data[1]);
|
||||||
|
}
|
||||||
|
|
||||||
|
// encrypts username and password
|
||||||
|
// TODO: implement encryption algorithm
|
||||||
|
function encrypt($username, $password) {
|
||||||
|
$this->username = $username;
|
||||||
|
$this->password = $password;
|
||||||
|
}
|
||||||
|
|
||||||
|
// decrypts username and password
|
||||||
|
// TODO: implement encryption algorithm
|
||||||
|
function decrypt() {
|
||||||
|
$ret = array($this->username, $this->password);
|
||||||
|
return $ret;
|
||||||
|
}
|
||||||
|
|
||||||
|
// closes connection to LDAP server and deletes encrypted username/password
|
||||||
|
function destroy() {
|
||||||
|
$this->close();
|
||||||
|
$this->username="xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx";
|
||||||
|
$this->password="xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx";
|
||||||
|
// TODO: delete encryption key
|
||||||
|
}
|
||||||
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
|
|
|
||||||
|
|
@ -23,12 +23,22 @@ $Id$
|
||||||
|
|
||||||
*/
|
*/
|
||||||
|
|
||||||
|
include_once("../lib/ldap.php");
|
||||||
|
|
||||||
@session_start();
|
@session_start();
|
||||||
|
|
||||||
|
// close LDAP connection
|
||||||
|
$_SESSION["ldap"]->destroy();
|
||||||
|
|
||||||
// destroy session
|
// destroy session
|
||||||
session_destroy();
|
session_destroy();
|
||||||
|
|
||||||
// print logout message
|
// print logout message
|
||||||
|
|
||||||
?>
|
?>
|
||||||
|
|
||||||
|
<html>
|
||||||
|
<body>
|
||||||
|
<p align="center"><a href="http://lam.sf.net" target="new_window"><img src="../graphics/banner.jpg" border=1></a></p><hr><br>
|
||||||
|
<p align="center"><big><? echo ("You have been logged off from LDAP Account Manager."); ?></big></p>
|
||||||
|
</body>
|
||||||
|
</html>
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue