WMDE
/
LDAPAccountManager
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

added new attributes: 

objectClasses: objectClass strings from LDAP server
supports_unix_hosts: true if schema allows hosts in inetOrgPerson
supports_samba2/3_schema: true if schema includes samba(Sam)Account
This commit is contained in:
Roland Gruber 2003-10-12 17:07:03 +00:00
parent 88239dec21
commit e63ce4891c
1 changed files with 46 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

47
lam/lib/ldap.inc
View File

@ -128,6 +128,14 @@ class Ldap{
var $ldapGroupAttributes; var $ldapGroupAttributes;
var $ldapHostAttributes; var $ldapHostAttributes;
// array with all objectClass strings from the LDAP server
var $objectClasses;
// capabilities of the LDAP server
var $supports_unix_hosts=false; // host attribute in inetOrgPerson
var $supports_samba2_schema=false; // objectClass sambaAccount
var $supports_samba3_schema=false; // objectClass sambaSamAccount
// constructor // constructor
// $config: an object of Config (../config/config.php) // $config: an object of Config (../config/config.php)
function Ldap($config) { function Ldap($config) {
@ -195,6 +203,11 @@ class Ldap{
} }
$bind = @ldap_bind($this->server, $user, $passwd); $bind = @ldap_bind($this->server, $user, $passwd);
if ($bind) { if ($bind) {
// read objectClasses from server and update capabilities if needed
if (! $this->objectClasses) {
$this->updateClasses();
$this->updateCapabilities();
}
// return server handle // return server handle
return $this->server; return $this->server;
} }
@ -277,6 +290,36 @@ class Ldap{
return $ret; return $ret;
} }
// reads the array of objectClasses from the LDAP server
function updateClasses() {
// read from default cn
$sr = @ldap_read($this->server, 'cn=subschema', '(objectClass=*)', array('objectclasses'));
// if default was not correct check different cn
if (!$sr) $sr = @ldap_read($this->server, 'cn=schema', '(objectClass=*)', array('objectclasses'));
if ($sr) {
// get search result and save it
$info = @ldap_get_entries($this->server,$sr);
if ($info) {
$this->objectClasses = $info[0]['objectclasses'];
array_shift($this->objectClasses);
return true;
}
}
// if search failed save empty result
$this->objectClasses = array();
}
// updates the capabilities values (var $supports_*)
function updateCapabilities() {
for ($i = 0; $i < sizeof($this->objectClasses); $i++) {
$line = $this->objectClasses[$i];
// search keywords
if (strpos($line, "NAME 'inetOrgPerson'") && strpos($line, " host ")) $this->supports_unix_hosts = true;
if (strpos($line, "NAME 'sambaAccount'")) $this->supports_samba2_schema = true;
if (strpos($line, "NAME 'sambaSamAccount'")) $this->supports_samba3_schema = true;
}
}
// returns the LDAP connection handle // returns the LDAP connection handle
function server() { function server() {
return $this->server; return $this->server;
@ -286,7 +329,9 @@ class Ldap{
function __sleep() { function __sleep() {
$this->close(); $this->close();
// define which attributes to save // define which attributes to save
return array("conf", "username", "password", "ldapUserAttributes", "ldapGroupAttributes", "ldapHostAttributes"); return array("conf", "username", "password", "ldapUserAttributes", "ldapGroupAttributes",
"ldapHostAttributes", "objectClasses", "supports_unix_hosts", "supports_samba2_schema",
"supports_samba3_schema");
} }
// reconnects to LDAP server when deserialized // reconnects to LDAP server when deserialized