rids = array( _('Domain Admins') => 512, _('Domain Users') => 513, _('Domain Guests') => 514, _('Domain Computers') => 515, _('Domain Controllers') => 516, _('Domain Certificate Admins') => 517, _('Domain Schema Admins') => 518, _('Domain Enterprise Admins') => 519, _('Domain Policy Admins') => 520 ); // call parent constructor parent::baseModule($scope); } /** this functin fills the error message array with messages **/ function load_Messages() { // error messages for input checks $this->messages['homePath'][0] = array('ERROR', _('Home path'), _('Home path is invalid.')); $this->messages['homePath'][1] = array('INFO', _('Home path'), _('Inserted user or group name in home path.')); $this->messages['homePath'][2] = array('INFO', _('Account %s:') . ' sambaAccount_homePath', _('Inserted user or group name in home path.')); $this->messages['profilePath'][0] = array('ERROR', _('Profile path'), _('Profile path is invalid!')); $this->messages['profilePath'][1] = array('INFO', _('Profile path'), _('Inserted user or group name in profile path.')); $this->messages['profilePath'][2] = array('INFO', _('Account %s:') . ' sambaAccount_profilePath', _('Inserted user or group name in profile path.')); $this->messages['logonScript'][0] = array('ERROR', _('Logon script'), _('Logon script is invalid!')); $this->messages['logonScript'][1] = array('INFO', _('Logon script'), _('Inserted user or group name in logon script.')); $this->messages['logonScript'][2] = array('ERROR', _('Account %s:') . ' sambaAccount_logonScript', _('Logon script is invalid!')); $this->messages['workstations'][0] = array('ERROR', _('Samba workstations'), _('Please enter a comma separated list of host names!')); $this->messages['workstations'][1] = array('ERROR', _('Account %s:') . ' sambaAccount_workstations', _('Please enter a comma separated list of host names!')); $this->messages['domain'][0] = array('ERROR', _('Domain name'), _('Domain name contains invalid characters. Valid characters are: a-z, A-Z, 0-9 and -.')); $this->messages['domain'][1] = array('ERROR', _('Account %s:') . ' sambaAccount_domain', _('Domain name contains invalid characters. Valid characters are: a-z, A-Z, 0-9 and -.')); $this->messages['lmPassword'][0] = array('ERROR', _('Password'), _('Please enter the same password in both password-fields.')); $this->messages['lmPassword'][1] = array('ERROR', _('Password'), _('Password contains invalid characters. Valid characters are: a-z, A-Z, 0-9 and #*,.;:_-+!$%&/|?{[()]}= !')); $this->messages['lmPassword'][2] = array('ERROR', _('Account %s:') . ' sambaAccount_password', _('Password contains invalid characters. Valid characters are: a-z, A-Z, 0-9 and #*,.;:_-+!$%&/|?{[()]}= !')); $this->messages['displayName'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_displayName', _('Please enter a valid display name!')); $this->messages['displayName'][1] = array('ERROR', _('Display name'), _('Please enter a valid display name!')); $this->messages['pwdUnix'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_pwdUnix', _('This value can only be \"true\" or \"false\"!')); $this->messages['noPassword'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_noPassword', _('This value can only be \"true\" or \"false\"!')); $this->messages['noExpire'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_noExpire', _('This value can only be \"true\" or \"false\"!')); $this->messages['deactivated'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_deactivated', _('This value can only be \"true\" or \"false\"!')); $this->messages['pwdCanChange'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_pwdCanChange', _('Please enter a valid date in format DD-MM-YYYY.')); $this->messages['pwdMustChange'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_pwdMustChange', _('Please enter a valid date in format DD-MM-YYYY.')); $this->messages['homeDrive'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_homeDrive', _('Please enter a valid drive letter.')); $this->messages['group'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_group', _('Please enter a valid group RID.')); $this->messages['specialUser'][0] = array('ERROR', _('Account %s:') . ' sambaAccount_specialUser', _('Please enter a valid special user name.')); } /** * Returns meta data that is interpreted by parent class * * @return array array with meta data */ function get_metaData() { $return = array(); // manages user and host accounts $return["account_types"] = array("user", "host"); if ($this->get_scope() == "host") { // LDAP filter $return["ldap_filter"] = array('and' => '(uid=*$)', 'or' => "(objectClass=posixAccount)"); } // alias name $return["alias"] = _('Samba 2'); // module dependencies $return['dependencies'] = array('depends' => array('posixAccount'), 'conflicts' => array()); // profile options if ($this->get_scope() == 'user') { // set Unix password for Samba $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Use Unix password') . ': '), 1 => array('kind' => 'input', 'name' => 'sambaAccount_useunixpwd', 'type' => 'checkbox', 'checked' => true), 2 => array('kind' => 'help', 'value' => 'pwdUnix') ); // set no password $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Use no password') . ': '), 1 => array('kind' => 'input', 'name' => 'sambaAccount_acctFlagsN', 'type' => 'checkbox', 'checked' => false), 2 => array('kind' => 'help', 'value' => 'noPassword') ); // password expiry $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Password does not expire') . ': '), 1 => array('kind' => 'input', 'name' => 'sambaAccount_acctFlagsX', 'type' => 'checkbox', 'checked' => true), 2 => array('kind' => 'help', 'value' => 'noExpire') ); // account deactivation $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Account is deactivated') . ': '), 1 => array('kind' => 'input', 'name' => 'sambaAccount_acctFlagsD', 'type' => 'checkbox', 'checked' => false), 2 => array('kind' => 'help', 'value' => 'deactivated') ); // drive letter $drives = array(); for ($i = 90; $i > 67; $i--) $drives[] = chr($i) . ':'; $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Home drive') . ': '), 1 => array('kind' => 'select', 'name' => 'sambaAccount_homeDrive', 'options' => $drives, 'options_selected' => array ('Z:')), 2 => array('kind' => 'help', 'value' => 'homeDrive') ); // path to home directory $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Home path') . ': '), 1 => array('kind' => 'input', 'type' => 'text', 'name' => 'sambaAccount_smbhome', 'size' => '20', 'maxlength' => '255', 'value' => ''), 2 => array('kind' => 'help', 'value' => 'homePath') ); // path to profile $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Profile path') . ': '), 1 => array('kind' => 'input', 'type' => 'text', 'name' => 'sambaAccount_profilePath', 'size' => '20', 'maxlength' => '255', 'value' => ''), 2 => array('kind' => 'help', 'value' => 'profilePath') ); // logon script $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Logon script') . ': '), 1 => array('kind' => 'input', 'type' => 'text', 'name' => 'sambaAccount_scriptPath', 'size' => '20', 'maxlength' => '255', 'value' => ''), 2 => array('kind' => 'help', 'value' => 'scriptPath') ); // allowed workstations $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Samba workstations') . ': '), 1 => array('kind' => 'input', 'type' => 'text', 'name' => 'sambaAccount_userWorkstations', 'value' => ''), 2 => array('kind' => 'help', 'value' => 'workstations') ); } // Samba domain $return['profile_options'][] = array( 0 => array('kind' => 'text', 'text' => _('Domain') . ': '), 1 => array('kind' => 'input', 'type' => 'text', 'name' => 'sambaAccount_domain', 'size' => '20', 'maxlength' => '255', 'value' => ''), 2 => array('kind' => 'help', 'value' => 'domain') ); // profile checks $return['profile_checks']['sambaAccount_smbhome'] = array('type' => 'ext_preg', 'regex' => 'UNC', 'error_message' => $this->messages['homePath'][0]); $return['profile_checks']['sambaAccount_profilePath'] = array('type' => 'ext_preg', 'regex' => 'UNC', 'error_message' => $this->messages['profilePath'][0]); $return['profile_checks']['sambaAccount_scriptPath'] = array('type' => 'ext_preg', 'regex' => 'logonscript', 'error_message' => $this->messages['logonScript'][0]); $return['profile_checks']['sambaAccount_userWorkstations'] = array('type' => 'ext_preg', 'regex' => 'unixhost', 'error_message' => $this->messages['workstations'][0]); $return['profile_checks']['sambaAccount_domain'] = array('type' => 'ext_preg', 'regex' => 'domainname', 'error_message' => $this->messages['domain'][0]); // profile mappings $return['profile_mappings'] = array( 'sambaAccount_homeDrive' => 'homeDrive', 'sambaAccount_smbhome' => 'smbHome', 'sambaAccount_profilePath' => 'profilePath', 'sambaAccount_scriptPath' => 'scriptPath', 'sambaAccount_userWorkstations' => 'userWorkstations', 'sambaAccount_domain' => 'domain' ); // available PDF fields $return['PDF_fields'] = array( 'displayName', 'smbHome', 'homeDrive', 'scriptPath', 'profilePath', 'userWorkstations', 'domain', 'description' ); // upload dependencies $return['upload_preDepends'] = array('posixAccount', 'inetOrgPerson'); // upload options if ($this->get_scope() == "user") { $return['upload_columns'] = array( array( 'name' => 'sambaAccount_displayName', 'description' => _('Display name'), 'help' => 'displayName', 'example' => _('Steve Miller') ), array( 'name' => 'sambaAccount_password', 'description' => _('Password'), 'help' => 'password', 'example' => _('secret') ), array( 'name' => 'sambaAccount_pwdUnix', 'description' => _('Use Unix password'), 'help' => 'pwdUnixUpload', 'default' => 'true', 'values' => 'true, false', 'example' => 'true' ), array( 'name' => 'sambaAccount_noPassword', 'description' => _('Use no password'), 'help' => 'noPasswordUpload', 'default' => 'false', 'values' => 'true, false', 'example' => 'false' ), array( 'name' => 'sambaAccount_noExpire', 'description' => _('Password does not expire'), 'help' => 'noExpireUpload', 'default' => 'true', 'values' => 'true, false', 'example' => 'true' ), array( 'name' => 'sambaAccount_deactivated', 'description' => _('Account is deactivated'), 'help' => 'deactivatedUpload', 'default' => 'false', 'values' => 'true, false', 'example' => 'false' ), array( 'name' => 'sambaAccount_pwdCanChange', 'description' => _('User can change password'), 'help' => 'pwdCanChange', 'default' => '31-12-2030', 'example' => '15-11-2006' ), array( 'name' => 'sambaAccount_pwdMustChange', 'description' => _('User must change password'), 'help' => 'pwdMustChange', 'default' => '31-12-2030', 'example' => '15-10-2006' ), array( 'name' => 'sambaAccount_homeDrive', 'description' => _('Home drive'), 'help' => 'homeDrive', 'example' => 'k:' ), array( 'name' => 'sambaAccount_homePath', 'description' => _('Home path'), 'help' => 'homePath', 'example' => _('\\\\server\\homes\\smiller') ), array( 'name' => 'sambaAccount_profilePath', 'description' => _('Profile path'), 'help' => 'profilePath', 'example' => _('\\\\server\\profiles\\smiller') ), array( 'name' => 'sambaAccount_logonScript', 'description' => _('Logon script'), 'help' => 'scriptPath', 'example' => 'logon.bat' ), array( 'name' => 'sambaAccount_workstations', 'description' => _('Samba workstations'), 'help' => 'workstations', 'example' => 'PC01,PC02,PC03' ), array( 'name' => 'sambaAccount_group', 'description' => _('Windows group'), 'help' => 'groupUpload', 'example' => '1235', 'default' => '<gidNumber>*2 + 1001' ), array( 'name' => 'sambaAccount_specialUser', 'description' => _('Special user'), 'help' => 'specialUser', 'example' => _('Domain Admins'), 'values' => implode(", ", array_keys($this->rids)) ), array( 'name' => 'sambaAccount_domain', 'description' => _('Domain'), 'help' => 'domain', 'example' => _('mydomain') ) ); } elseif ($this->get_scope() == "host") { $return['upload_columns'] = array( array( 'name' => 'sambaAccount_domain', 'description' => _('Domain'), 'help' => 'domain', 'example' => _('mydomain') ) ); } // help Entries $return['help'] = array ( "displayName" => array( "ext" => "FALSE", "Headline" => _("Display name"), "Text" => _("This is the account's full name on Windows systems.")), "password" => array( "ext" => "FALSE", "Headline" => _("Samba password"), "Text" => _("This is the account's Windows password.")), "resetPassword" => array( "ext" => "FALSE", "Headline" => _("Reset password"), "Text" => _("This will reset the host's password to a default value.")), "pwdUnix" => array( "ext" => "FALSE", "Headline" => _("Use Unix password"), "Text" => _("If checked Unix password will also be used as Samba password.")), "pwdUnixUpload" => array( "ext" => "FALSE", "Headline" => _("Use Unix password"), "Text" => _("If set to \"true\" Unix password will also be used as Samba password.")), "noPassword" => array( "ext" => "FALSE", "Headline" => _("Use no password"), "Text" => _("If checked no password will be used.")), "noPasswordUpload" => array( "ext" => "FALSE", "Headline" => _("Use no password"), "Text" => _("If set to \"true\" no password will be used.")), "noExpire" => array( "ext" => "FALSE", "Headline" => _("Password does not expire"), "Text" => _("If checked password does not expire. (Setting X-Flag)")), "noExpireUpload" => array( "ext" => "FALSE", "Headline" => _("Password does not expire"), "Text" => _("If set to \"true\" password does not expire. (Setting X-Flag)")), "deactivated" => array( "ext" => "FALSE", "Headline" => _("Account is deactivated"), "Text" => _("If checked account will be deactivated. (Setting D-Flag)")), "deactivatedUpload" => array( "ext" => "FALSE", "Headline" => _("Account is deactivated"), "Text" => _("If set to \"true\" account will be deactivated. (Setting D-Flag)")), "pwdCanChange" => array( "ext" => "FALSE", "Headline" => _("User can change password"), "Text" => _("Date after the user is able to change his password. Format: DD-MM-YYYY")), "pwdMustChange" => array ("ext" => "FALSE", "Headline" => _("User must change password"), "Text" => _("Date after the user must change his password. Format: DD-MM-YYYY")), "homeDrive" => array( "ext" => "FALSE", "Headline" => _("Home drive"), "Text" => _("Drive letter assigned on windows workstations as homedirectory.")), "homePath" => array( "ext" => "FALSE", "Headline" => _("Home path"), "Text" => _('UNC-path (\\\\server\\share) of homedirectory. $user and $group are replaced with user and group name.'). ' '. _("Can be left empty.")), "profilePath" => array( "ext" => "FALSE", "Headline" => _("Profile path"), "Text" => _('Path of the user profile. Can be a local absolute path or a UNC-path (\\\\server\\share). $user and $group are replaced with user and group name.'). ' '. _("Can be left empty.")), "scriptPath" => array( "ext" => "FALSE", "Headline" => _("Logon script"), "Text" => _('File name and path relative to the netlogon-share which should be executed on logon. $user and $group are replaced with user and group name.'). ' '. _("Can be left empty.")), "userWorkstations" => array( "ext" => "FALSE", "Headline" => _("Samba workstations"), "Text" => _("List of Samba workstations the user is allowed to login. Empty means every workstation.")), "workstations" => array( "ext" => "FALSE", "Headline" => _("Samba workstations"), "Text" => _("Comma separated list of Samba workstations the user is allowed to login. Empty means every workstation."). ' '. _("Can be left empty.")), "group" => array( "ext" => "FALSE", "Headline" => _("Windows group name"), "Text" => _("If you want to use a well known RID you can selcet a well known group.")), "groupUpload" => array( "ext" => "FALSE", "Headline" => _("Windows group RID"), "Text" => _("This is the RID of the user's primary Windows group.")), "specialUser" => array( "ext" => "FALSE", "Headline" => _("Special user"), "Text" => _("If you want to create domain administrators or other special users use this option.")), "domain" => array( "ext" => "FALSE", "Headline" => _("Domain"), "Text" => _("Windows domain name of account."). ' '. _("Can be left empty.")) ); return $return; } /** * Initializes the module after it became part of an accountContainer * * @param string $base the name of the accountContainer object ($_SESSION[$base]) */ function init($base) { // call parent init parent::init($base); $this->useunixpwd = false; $this->noexpire = true; $this->nopwd = false; $this->deactivated = false; } // Variables /** use unix password as samba password? */ var $useunixpwd; /** use no password? */ var $nopwd; /** password does not expire? */ var $noexpire; /** account deactivated? */ var $deactivated; /** Array of well known rids */ var $rids; function module_ready() { if ($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]=='') return false; if ($_SESSION[$this->base]->module['posixAccount']->attributes['uidNumber'][0]=='') return false; return true; } /** * This functions returns true if all needed settings are done * * @return boolean true if ready to save account */ function module_complete() { if (!$this->module_ready()) return false; if ($this->attributes['rid'][0] == '') return false; return true; } /* This function loads all attributes into the object * $attr is an array as it's retured from ldap_get_attributes */ function load_attributes($attr) { parent::load_attributes($attr); if (is_string($this->attributes['acctFlags'][0])) { if (strpos($this->attributes['acctFlags'][0], "D")) $this->deactivated = true; else $this->deactivated = false; if (strpos($this->attributes['acctFlags'][0], "N")) $this->nopwd = true; else $this->nopwd = false; if (strpos($this->attributes['acctFlags'][0], "X")) $this->noexpire = true; else $this->noexpire = false; } return 0; } /* This function returns an array with 3 entries: * array( DN1 ('add' => array($attr), 'remove' => array($attr), 'modify' => array($attr)), DN2 .... ) * DN is the DN to change. It may be possible to change several DNs, * e.g. create a new user and add him to some groups via attribute memberUid * add are attributes which have to be added to ldap entry * remove are attributes which have to be removed from ldap entry * modify are attributes which have to been modified in ldap entry */ function save_attributes() { /* Create sambaSID. Can't create it while loading attributes because * it's psssible uidNumber has changed */ $special = false; if ($this->attributes['rid'][0] < 1000) $special = true; if (!$special) $this->attributes['rid'][0] == $_SESSION[$this->base]->module['posixAccount']->attributes['uidNumber'][0]*2+1000; $rids = array_values($this->rids); $wrid = false; for ($i=0; $iattributes['primaryGroupID'][0] == $rids[$i]) { $wrid = true; break; } } if (!$wrid) $this->attributes['primaryGroupID'][0] = ($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]*2)+1001; $return = $_SESSION[$this->base]->save_module_attributes($this->attributes, $this->orig); return $return; } /** * Processes user input of the primary module page. * It checks if all input values are correct and updates the associated LDAP attributes. * * @param array $post HTTP-POST values * @return array list of info/error messages */ function process_attributes(&$post) { $this->attributes['domain'][0] = $post['domain']; // Start character $flag = "["; if ($post['acctFlagsD']) { $flag .= "D"; $this->deactivated = true; } else { $this->deactivated = false; } if ($post['acctFlagsX']) { $flag .= "X"; $this->noexpire = true; } else { $this->noexpire = false; } if ($post['acctFlagsN']) { $flag .= "N"; $this->nopwd = true; } else { $this->nopwd = false; } if ($post['acctFlagsS']) $flag .= "S"; if ($post['acctFlagsH']) $flag .= "H"; if ($post['acctFlagsW']) $flag .= "W"; if ($post['acctFlagsU']) $flag .= "U"; // Expand string to fixed length $flag = str_pad($flag, 12); // End character $flag = $flag. "]"; $this->attributes['acctFlags'][0] = $flag; // display name $this->attributes['displayName'][0] = $post['displayName']; if (!($this->attributes['displayName'][0] == '') && !(get_preg($this->attributes['displayName'][0], 'realname'))) { $triggered_messages['displayName'][] = $this->messages['displayName'][1]; } // host attributes if ($_SESSION[$this->base]->type=='host') { $this->attributes['primaryGroupID'][0] = $this->rids[_('Domain Computers')]; if ($post['ResetSambaPassword'] || (!$this->attributes['lmPassword'][0])) { $hostname = $_SESSION[$this->base]->module['posixAccount']->attributes['uid'][0]; $hostname = substr($hostname, 0, strlen($hostname) - 1); $this->attributes['lmPassword'][0] = lmPassword($hostname); $this->attributes['ntPassword'][0] = ntPassword($hostname); $this->attributes['pwdLastSet'][0] = time(); } } // check values for user account if ($this->scope == 'user') { $this->attributes['pwdCanChange'][0] = mktime(intval($post['pwdCanChange_h']), intval($post['pwdCanChange_m']), intval($post['pwdCanChange_s']), intval($post['pwdCanChange_mon']), intval($post['pwdCanChange_day']), intval($post['pwdCanChange_yea'])); $this->attributes['pwdMustChange'][0] = mktime(intval($post['pwdMustChange_h']), intval($post['pwdMustChange_m']), intval($post['pwdMustChange_s']), intval($post['pwdMustChange_mon']), intval($post['pwdMustChange_day']), intval($post['pwdMustChange_yea'])); $this->attributes['smbHome'][0] = $post['smbHome']; $this->attributes['homeDrive'][0] = $post['homeDrive']; $this->attributes['scriptPath'][0] = $post['scriptPath']; $this->attributes['profilePath'][0] = $post['profilePath']; $rids = array_keys($this->rids); $wrid = false; for ($i=0; $iattributes['primaryGroupID'][0] = $this->rids[$rids[$i]]; break; } } if (!$wrid) $this->attributes['primaryGroupID'][0] = ($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]*2)+1001; if ($post['useunixpwd']) $this->useunixpwd = true; else $this->useunixpwd = false; if ($post['useunixpwd']) { $this->useunixpwd = true; $this->attributes['lmPassword'][0] = lmPassword($_SESSION[$this->base]->module['posixAccount']->attributes['userPassword'][0]); $this->attributes['ntPassword'][0] = ntPassword($_SESSION[$this->base]->module['posixAccount']->attributes['userPassword'][0]); $this->attributes['pwdLastSet'][0] = time(); } else $this->useunixpwd = false; if (!$this->useunixpwd && isset($post['lmPassword']) && ($post['lmPassword'] != '')) { if ($post['lmPassword'] != $post['lmPassword2']) { $triggered_messages['lmPassword'][] = $this->messages['lmPassword'][0]; unset ($post['lmPassword2']); } else { if ( !get_preg($post['lmPassword'], 'password')) $triggered_messages['lmPassword'][] = $this->messages['lmPassword'][1]; else { $this->attributes['lmPassword'][0] = lmPassword($post['lmPassword']); $this->attributes['ntPassword'][0] = ntPassword($post['lmPassword']); $this->attributes['pwdLastSet'][0] = time(); } } } // rid $specialNames = array_keys($this->rids); if (in_array($post['rid'], $specialNames)) { $this->attributes['rid'][0] = $this->rids[$post['rid']]; } else { $this->attributes['rid'][0] = $_SESSION[$this->base]->module['posixAccount']->attributes['uidNumber'][0]*2+1000; } $this->attributes['smbHome'][0] = str_replace('$user', $_SESSION[$this->base]->module['posixAccount']->attributes['uid'][0], $this->attributes['smbHome'][0]); $this->attributes['smbHome'][0] = str_replace('$group', $_SESSION['cache']->getgrnam($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]), $this->attributes['smbHome'][0]); if ($this->attributes['smbHome'][0] != $post['smbHome']) $triggered_messages['smbHome'][] = $this->messages['homePath'][1]; $this->attributes['scriptPath'][0] = str_replace('$user', $_SESSION[$this->base]->module['posixAccount']->attributes['uid'][0], $this->attributes['scriptPath'][0]); $this->attributes['scriptPath'][0] = str_replace('$group', $_SESSION['cache']->getgrnam($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]), $this->attributes['scriptPath'][0]); if ($this->attributes['scriptPath'][0] != $post['scriptPath']) $triggered_messages['scriptPath'][] = $this->messages['logonScript'][1]; $this->attributes['profilePath'][0] = str_replace('$user', $_SESSION[$this->base]->module['posixAccount']->attributes['uid'][0], $this->attributes['profilePath'][0]); $this->attributes['profilePath'][0] = str_replace('$group', $_SESSION['cache']->getgrnam($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]), $this->attributes['profilePath'][0]); if ($this->attributes['profiletPath'][0] != $post['profilePath']) $triggered_messages['profilePath'][] = $this->messages['profilePath'][1]; if ( (!$this->attributes['smbHome'][0]=='') && (!get_preg($this->attributes['smbHome'][0], 'UNC'))) $triggered_messages['smbHome'][] = $this->messages['homePath'][0]; if ( (!$this->attributes['scriptPath'][0]=='') && (!get_preg($this->attributes['scriptPath'][0], 'logonscript'))) $triggered_messages['scriptPath'][] = $this->messages['logonScript'][0]; if ( (!$this->attributes['profilePath'][0]=='') && (!get_preg($this->attributes['profilePath'][0], 'UNC'))) $triggered_messages['profilePath'][] = $this->messages['profilePath'][0]; } // check values for host account else { if (!$this->attributes['rid'][0]) { $this->attributes['rid'][0] = ($_SESSION[$this->base]->module['posixAccount']->attributes['uidNumber'][0] * 2) + 1000; } if (!$this->attributes['primaryGroupID'][0]) { $this->attributes['primaryGroupID'][0] = ($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0] * 2) + 1001; } } if ((!$this->attributes['domain'][0]=='') && !get_preg($this->attributes['domain'][0], 'domainname')) $triggered_messages['domain'][] = $this->messages['domain'][0]; if (count($triggered_messages)!=0) { $this->triggered_messages = $triggered_messages; return $triggered_messages; } else $this->triggered_messages = array(); } /** * Processes user input of the workstation selection page. * It checks if all input values are correct and updates the associated LDAP attributes. * * @param array $post HTTP-POST values * @return array list of info/error messages */ function process_userWorkstations(&$post) { // Load attributes if ($_SESSION[$this->base]->type=='user') { if (isset($post['availableUserWorkstations']) && isset($post['userWorkstations_add'])) { // Add workstations to list $temp = str_replace(' ', '', $this->attributes['userWorkstations'][0]); $workstations = explode (',', $temp); for ($i=0; $iattributes['userWorkstations'][0] = $workstations[0]; for ($i=1; $iattributes['userWorkstations'][0] = $this->attributes['userWorkstations'][0] . "," . $workstations[$i]; } } elseif (isset($post['userWorkstations']) && isset($post['userWorkstations_remove'])) { // remove // Add workstations from list // Put all workstations in array $temp = str_replace(' ', '', $this->attributes['userWorkstations'][0]); $workstations = explode (',', $temp); for ($i=0; $iattributes['userWorkstations'][0] = $workstations[0]; for ($i=1; $iattributes['userWorkstations'][0] = $this->attributes['userWorkstations'][0] . "," . $workstations[$i]; } } } } /* This function will create the html-page * to show a page with all attributes. * It will output a complete html-table */ function display_html_attributes(&$post) { $return[] = array( 0 => array('kind' => 'text', 'text' => _('Display name')), 1 => array('kind' => 'input', 'type' => 'text', 'name' => 'displayName', 'size' => '20', 'value' => $this->attributes['displayName'][0]), 2 => array('kind' => 'help', 'value' => 'displayName')); // user attributes if ($_SESSION[$this->base]->type=='user') { if (isset($this->attributes['pwdCanChange'][0])) $canchangedate = getdate(intval($this->attributes['pwdCanChange'][0])); else $canchangedate = getdate(0); if (isset($this->attributes['pwdMustChange'][0])) $mustchangedate = getdate(intval($this->attributes['pwdMustChange'][0])); else $mustchangedate = getdate(0); $return[] = array ( 0 => array ( 'kind' => 'input', 'name' => 'pwdCanChange_h', 'type' => 'hidden', 'value' => $canchangedate['hours']), 1 => array ( 'kind' => 'input', 'name' => 'pwdCanChange_m', 'type' => 'hidden', 'value' => $canchangedate['minutes']), 2 => array ( 'kind' => 'input', 'name' => 'pwdCanChange_s', 'type' => 'hidden', 'value' => $canchangedate['seconds']), 3 => array ( 'kind' => 'input', 'name' => 'pwdMustChange_h', 'type' => 'hidden', 'value' => $mustchangedate['hours']), 4 => array ( 'kind' => 'input', 'name' => 'pwdMustChange_m', 'type' => 'hidden', 'value' => $mustchangedate['minutes']), 5 => array ( 'kind' => 'input', 'name' => 'pwdMustChange_s', 'type' => 'hidden', 'value' => $mustchangedate['seconds']), 6 => array ( 'kind' => 'input', 'name' => 'acctFlagsU', 'type' => 'hidden', 'value' => 'true')); $return[] = array( 0 => array('kind' => 'text', 'text' => _('Samba password') ), 1 => array('kind' => 'input', 'name' => 'lmPassword', 'type' => 'password', 'size' => '20', 'maxlength' => '255', 'value' => '')); $return[] = array( 0 => array('kind' => 'text', 'text' => _('Repeat password') ), 1 => array('kind' => 'input', 'name' => 'lmPassword2', 'type' => 'password', 'size' => '20', 'maxlength' => '255', 'value' => ''), 2 => array('kind' => 'help', 'value' => 'password')); if ($_SESSION[$this->base]->module['posixAccount']->orig['userPassword'][0] != $_SESSION[$this->base]->module['posixAccount']->attributes['userPassword'][0]) { $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Use unix password') ), 1 => array ( 'kind' => 'input', 'name' => 'useunixpwd', 'type' => 'checkbox', 'checked' => $this->useunixpwd, 'value' => true), 2 => array ('kind' => 'help', 'value' => 'pwdUnix')); } $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Use no password') ), 1 => array ( 'kind' => 'input', 'name' => 'acctFlagsN', 'type' => 'checkbox', 'checked' => $this->nopwd), 2 => array ('kind' => 'help', 'value' => 'noPassword')); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Password does not expire') ), 1 => array ( 'kind' => 'input', 'name' => 'acctFlagsX', 'type' => 'checkbox', 'checked' => $this->noexpire), 2 => array ('kind' => 'help', 'value' => 'noExpire')); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Account is deactivated') ), 1 => array ( 'kind' => 'input', 'name' => 'acctFlagsD', 'type' => 'checkbox', 'checked' => $this->deactivated), 2 => array ('kind' => 'help', 'value' => 'deactivated')); for ( $i=1; $i<=31; $i++ ) $mday[] = $i; for ( $i=1; $i<=12; $i++ ) $mon[] = $i; for ( $i=2003; $i<=2030; $i++ ) $year[] = $i; $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('User can change password') ), 1 => array ( 'kind' => 'table', 'value' => array ( 0 => array ( 0 => array ( 'kind' => 'select', 'name' => 'pwdCanChange_day', 'options' => $mday, 'options_selectd' => $canchangedate['mday']), 1 => array ( 'kind' => 'select', 'name' => 'pwdCanChange_mon', 'options' => $mon, 'options_selectd' => $canchangedate['mon']), 2 => array ( 'kind' => 'select', 'name' => 'pwdCanChange_yes', 'options' => $year, 'options_selectd' => $canchangedate['year'])))), 2 => array ( 'kind' => 'help', 'value' => 'pwdCanChange' )); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('User must change password') ), 1 => array ( 'kind' => 'table', 'value' => array ( 0 => array ( 0 => array ( 'kind' => 'select', 'name' => 'pwdMustChange_day', 'options' => $mday, 'options_selectd' => $mustchangedate['mday']), 1 => array ( 'kind' => 'select', 'name' => 'pwdMustChange_mon', 'options' => $mon, 'options_selectd' => $mustchangedate['mon']), 2 => array ( 'kind' => 'select', 'name' => 'pwdMustChange_yes', 'options' => $year, 'options_selectd' => $mustchangedate['year'])))), 2 => array ( 'kind' => 'help', 'value' => 'pwdMustChange' )); for ($i=90; $i>67; $i--) $drives[] = chr($i).':'; $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Home drive') ), 1 => array ( 'kind' => 'select', 'name' => 'homeDrive', 'options' => $drives, 'options_selected' => array ($this->attributes['homeDrive'][0])), 2 => array ( 'kind' => 'help', 'value' => 'homeDrive' )); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Home path') ), 1 => array ( 'kind' => 'input', 'type' => 'text', 'name' => 'smbHome', 'size' => '20', 'maxlength' => '255', 'value' => $this->attributes['smbHome'][0]), 2 => array ( 'kind' => 'help', 'value' => 'homePath' )); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Profile path') ), 1 => array ( 'kind' => 'input', 'type' => 'text', 'name' => 'profilePath', 'size' => '20', 'maxlength' => '255', 'value' => $this->attributes['profilePath'][0]), 2 => array ( 'kind' => 'help', 'value' => 'profilePath' )); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Logon script') ), 1 => array ( 'kind' => 'input', 'type' => 'text', 'name' => 'scriptPath', 'size' => '20', 'maxlength' => '255', 'value' => $this->attributes['scriptPath'][0]), 2 => array ( 'kind' => 'help', 'value' => 'scriptPath' )); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Samba workstations') ), 1 => array ( 'kind' => 'input', 'type' => 'submit', 'name' => 'form_subpage_sambaAccount_userWorkstations_open', 'value' => _('Edit workstations')), 2 => array ( 'kind' => 'help', 'value' => 'userWorkstations' )); $names = array_keys($this->rids); $options = array(); $selected = array(); $wrid = false; for ($i=0; $iattributes['primaryGroupID'][0] == $this->rids[$names[$i]]) { $selected[] = $names[$i]; $wrid=true; } else $options[] = $names[$i]; } if ($wrid) $options[] = $_SESSION['cache']->getgrnam($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]); else $selected[] = $_SESSION['cache']->getgrnam($_SESSION[$this->base]->module['posixAccount']->attributes['gidNumber'][0]); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Windows group') ), 1 => array ( 'kind' => 'select', 'name' => 'primaryGroupID', 'options' => $options, 'options_selected' => $selected), 2 => array ( 'kind' => 'help', 'value' => 'group' )); $options = array(); $selected = array(); $wrid = false; for ($i=0; $iattributes['rid'][0] == $this->rids[$names[$i]]) { $selected[] = $names[$i]; $wrid=true; } else $options[] = $names[$i]; } if ($wrid) $options[] = "-"; else $selected[] = "-"; $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Special user') ), 1 => array ( 'kind' => 'select', 'name' => 'rid', 'options' => $options, 'options_selected' => $selected), 2 => array ( 'kind' => 'help', 'value' => 'specialUser' )); } $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Domain') ), 1 => array ( 'kind' => 'input', 'type' => 'text', 'name' => 'domain', 'size' => '20', 'maxlength' => '255', 'value' => $this->attributes['domain'][0]), 2 => array ( 'kind' => 'help', 'value' => 'domain' )); if ($_SESSION[$this->base]->type=='host') { $return[] = array ( 0 => array ( 'kind' => 'input', 'name' => 'acctFlagsW', 'type' => 'hidden', 'value' => 'true' )); $return[] = array ( 0 => array ( 'kind' => 'text', 'text' => _('Reset password') ), 1 => array ( 'kind' => 'input', 'type' => 'submit', 'name' => 'ResetSambaPassword', 'value' => _('Submit')), 2 => array ( 'kind' => 'help', 'value' => 'resetPassword' )); } return $return; } /* This function will create the html-page * to show a page with all attributes. * It will output a complete html-table */ function display_html_userWorkstations(&$post) { if ($_SESSION[$this->base]->type=='user') { // Get list of all hosts. $result = $_SESSION['cache']->get_cache('uid', 'sambaAccount', 'host'); if (is_array($result)) { foreach ($result as $host) $availableUserWorkstations[] = str_replace("$", '', $host[0]); sort($availableUserWorkstations, SORT_STRING); $result = str_replace(' ', '', $this->attributes['userWorkstations'][0]); $userWorkstations = explode (',', $result); $availableUserWorkstations = array_delete($userWorkstations, $availableUserWorkstations); } $return[] = array ( 0 => array ( 'kind' => 'fieldset', 'legend' => _("Allowed workstations"), 'value' => array ( 0 => array ( 0 => array ('kind' => 'fieldset', 'td' => array ('valign' => 'top'), 'legend' => _("Allowed workstations"), 'value' => array ( 0 => array ( 0 => array ( 'kind' => 'select', 'name' => 'userWorkstations', 'size' => '15', 'multiple' => true, 'options' => $userWorkstations)))), 1 => array ( 'kind' => 'table', 'value' => array ( 0 => array ( 0 => array ( 'kind' => 'input', 'type' => 'submit', 'name' => 'userWorkstations_add', 'value' => '<=')), 1 => array ( 0 => array ( 'kind' => 'input', 'type' => 'submit', 'name' => 'userWorkstations_remove', 'value' => '=>' )), 2 => array ( 0 => array ( 'kind' => 'help', 'value' => 'userWorkstations' )))), 2 => array ('kind' => 'fieldset', 'td' => array ('valign' => 'top'), 'legend' => _("Available workstations"), 'value' => array ( 0 => array ( 0 => array ( 'kind' => 'select', 'name' => 'availableUserWorkstations', 'size' => '15', 'multiple' => true, 'options' => $availableUserWorkstations)))) )))); $return[] = array( 0 => array('kind' => 'input', 'type' => 'submit', 'name' => 'form_subpage_sambaAccount_attributes_back', 'value' => _('Back')), 1 => array('kind' => 'text'), 2 => array('kind' => 'text')); } return $return; } /** * Returns the PDF entries for this module. * * @return array list of possible PDF entries */ function get_pdfEntries() { return array( 'sambaAccount_displayName' => array('' . _('Display name') . 'attributes['displayName'][0] . ''), 'sambaAccount_smbHome' => array('' . _('Home path') . '' . $this->attributes['smbHome'][0] . ''), 'sambaAccount_homeDrive' => array('' . _('Home drive') . '' . $this->attributes['homePath'][0] . ''), 'sambaAccount_scriptPath' => array('' . _('Logon script') . '' . $this->attributes['scriptPath'][0] . ''), 'sambaAccount_profilePath' => array('' . _('Profile path') . '' . $this->attributes['profilePath'][0] . ''), 'sambaAccount_userWorkstations' => array('' . _('Samba workstations') . '' . $this->attributes['userWorkstations'][0] . ''), 'sambaAccount_domain' => array('' . _('Domain') . '' . $this->attributes['domain'][0] . ''), 'sambaAccount_description' => array('' . _('Description') . '' . $this->attributes['description'][0] . '')); } /** * In this function the LDAP account is built up. * * @param array $rawAccounts list of hash arrays (name => value) from user input * @param array $partialAccounts list of hash arrays (name => value) which are later added to LDAP * @param array $ids list of IDs for column position (e.g. "posixAccount_uid" => 5) * @return array list of error messages if any */ function build_uploadAccounts($rawAccounts, $ids, &$partialAccounts) { $triggered_messages = array(); if ($this->get_scope() == 'user') { for ($i = 0; $i < sizeof($rawAccounts); $i++) { if (!in_array("sambaAccount", $partialAccounts[$i]['objectClass'])) $partialAccounts[$i]['objectClass'][] = "sambaAccount"; // displayName if ($rawAccounts[$i][$ids['sambaAccount_displayName']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_displayName']], 'realname')) { $partialAccounts[$i]['displayName'] = $rawAccounts[$i][$ids['sambaAccount_displayName']]; } else { $errMsg = $this->messages['displayName'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // password if (!get_preg($rawAccounts[$i][$ids['sambaAccount_password']], 'password')) { $errMsg = $this->messages['lmPassword'][2]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } // use Unix password if ($rawAccounts[$i][$ids['sambaAccount_pwdUnix']] == "") { // default: use Unix $partialAccounts[$i]['lmPassword'] = lmPassword($rawAccounts[$i][$ids['posixAccount_password']]); $partialAccounts[$i]['ntPassword'] = ntPassword($rawAccounts[$i][$ids['posixAccount_password']]); } elseif (in_array($rawAccounts[$i][$ids['sambaAccount_pwdUnix']], array('true', 'false'))) { if ($rawAccounts[$i][$ids['sambaAccount_pwdUnix']] == 'true') { // use Unix $partialAccounts[$i]['lmPassword'] = lmPassword($rawAccounts[$i][$ids['posixAccount_password']]); $partialAccounts[$i]['ntPassword'] = ntPassword($rawAccounts[$i][$ids['posixAccount_password']]); } else { // use given password $partialAccounts[$i]['lmPassword'] = lmPassword($rawAccounts[$i][$ids['sambaAccount_password']]); $partialAccounts[$i]['ntPassword'] = ntPassword($rawAccounts[$i][$ids['sambaAccount_password']]); } } else { $errMsg = $this->messages['pwdUnix'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } // use no password if ($rawAccounts[$i][$ids['sambaAccount_noPassword']] != "") { if (in_array($rawAccounts[$i][$ids['sambaAccount_noPassword']], array('true', 'false'))) { if ($rawAccounts[$i][$ids['sambaAccount_noPassword']] == 'true') { $partialAccounts[$i]['lmPassword'] = 'NO PASSWORD*****'; $partialAccounts[$i]['ntPassword'] = 'NO PASSWORD*****'; } } else { $errMsg = $this->messages['noPassword'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // account flags $flag_expire = false; $flag_deactivated = false; // password does not expire if ($rawAccounts[$i][$ids['sambaAccount_noExpire']] != "") { if (in_array($rawAccounts[$i][$ids['sambaAccount_noExpire']], array('true', 'false'))) { if ($rawAccounts[$i][$ids['sambaAccount_noExpire']] == 'false') { $flag_expire = true; } } else { $errMsg = $this->messages['noExpire'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // account is deactivated if ($rawAccounts[$i][$ids['sambaAccount_deactivated']] != "") { if (in_array($rawAccounts[$i][$ids['sambaAccount_deactivated']], array('true', 'false'))) { if ($rawAccounts[$i][$ids['sambaAccount_deactivated']] == 'true') { $flag_deactivated = true; } } else { $errMsg = $this->messages['deactivated'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // set flags $flags = "["; if ($flag_deactivated) $flags = $flags . "D"; if (!$flag_expire) $flags = $flags . "X"; $flags = $flags . "U"; // Expand string to fixed length $flags = str_pad($flags, 12); // End character $flags = $flags . "]"; $partialAccounts[$i]['acctFlags'] = $flags; // passsword can be changed if ($rawAccounts[$i][$ids['sambaAccount_pwdCanChange']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_pwdCanChange']], 'date')) { $parts = explode("-", $rawAccounts[$i][$ids['sambaAccount_pwdCanChange']]); $time = mktime(0, 0, 0, intval($parts[1]), intval($parts[0]), intval($parts[2])); $partialAccounts[$i]['pwdCanChange'] = $time; } else { $errMsg = $this->messages['pwdCanChange'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // passsword must be changed if ($rawAccounts[$i][$ids['sambaAccount_pwdMustChange']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_pwdMustChange']], 'date')) { $parts = explode("-", $rawAccounts[$i][$ids['sambaAccount_pwdMustChange']]); $time = mktime(0, 0, 0, intval($parts[1]), intval($parts[0]), intval($parts[2])); $partialAccounts[$i]['pwdMustChange'] = $time; } else { $errMsg = $this->messages['pwdMustChange'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // home drive if ($rawAccounts[$i][$ids['sambaAccount_homeDrive']] != "") { if (eregi("[d-z]:", $rawAccounts[$i][$ids['sambaAccount_homeDrive']])) { $partialAccounts[$i]['homeDrive'] = $rawAccounts[$i][$ids['sambaAccount_homeDrive']]; } else { $errMsg = $this->messages['homeDrive'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // home path if ($rawAccounts[$i][$ids['sambaAccount_homePath']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_homePath']], 'UNC')) { $partialAccounts[$i]['smbHome'] = $rawAccounts[$i][$ids['sambaAccount_homePath']]; } else { $errMsg = $this->messages['homePath'][2]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // profile path if ($rawAccounts[$i][$ids['sambaAccount_profilePath']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_profilePath']], 'UNC')) { $partialAccounts[$i]['profilePath'] = $rawAccounts[$i][$ids['sambaAccount_profilePath']]; } else { $errMsg = $this->messages['profilePath'][2]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // logon script if ($rawAccounts[$i][$ids['sambaAccount_logonScript']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_logonScript']], 'logonscript')) { $partialAccounts[$i]['scriptPath'] = $rawAccounts[$i][$ids['sambaAccount_logonScript']]; } else { $errMsg = $this->messages['logonScript'][2]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // workstations if ($rawAccounts[$i][$ids['sambaAccount_workstations']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_workstations']], 'workstations')) { $partialAccounts[$i]['userWorkstations'] = $rawAccounts[$i][$ids['sambaAccount_workstations']]; } else { $errMsg = $this->messages['workstations'][1]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // group if ($rawAccounts[$i][$ids['sambaAccount_group']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_group']], 'digit')) { $partialAccounts[$i]['primaryGroupID'] = $rawAccounts[$i][$ids['sambaAccount_group']]; } else { $errMsg = $this->messages['group'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } else { // default GID*2 + 1001 $partialAccounts[$i]['primaryGroupID'] = $partialAccounts[$i]['gidNumber']*2 + 1001; } // domain if ($rawAccounts[$i][$ids['sambaAccount_domain']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_domain']], 'domainname')) { $partialAccounts[$i]['domain'] = $rawAccounts[$i][$ids['sambaAccount_domain']]; } else { $errMsg = $this->messages['domain'][1]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // special user if ($rawAccounts[$i][$ids['sambaAccount_specialUser']] != "") { if (in_array($rawAccounts[$i][$ids['sambaAccount_specialUser']], array_keys($this->rids))) { $partialAccounts[$i]['rid'] = $this->rids[$rawAccounts[$i][$ids['sambaAccount_specialUser']]]; } else { $errMsg = $this->messages['specialUser'][0]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } else { // default RID uid*2 + 1000 $partialAccounts[$i]['rid'] = $partialAccounts[$i]['uidNumber']*2 + 1000; } } } else { // hosts for ($i = 0; $i < sizeof($rawAccounts); $i++) { if (!in_array("sambaAccount", $partialAccounts[$i]['objectClass'])) $partialAccounts[$i]['objectClass'][] = "sambaAccount"; // domain if ($rawAccounts[$i][$ids['sambaAccount_domain']] != "") { if (get_preg($rawAccounts[$i][$ids['sambaAccount_domain']], 'domainname')) { $partialAccounts[$i]['domain'] = $rawAccounts[$i][$ids['sambaAccount_domain']]; } else { $errMsg = $this->messages['domain'][1]; array_push($errMsg, array($i)); $triggered_messages[] = $errMsg; } } // RID (RID uid*2 + 1000) $partialAccounts[$i]['rid'] = $partialAccounts[$i]['uidNumber']*2 + 1000; // passwords ( = host name) $partialAccounts[$i]['lmPassword'] = lmPassword(substr($partialAccounts[$i]['uid'], 0, sizeof($partialAccounts[$i]['uid']) - 1)); $partialAccounts[$i]['ntPassword'] = ntPassword(substr($partialAccounts[$i]['uid'], 0, sizeof($partialAccounts[$i]['uid']) - 1)); // flags $partialAccounts[$i]['acctFlags'] = "[W ]"; } } return $triggered_messages; } /** * Loads the values of an account profile into internal variables. * * @param array $profile hash array with profile values (identifier => value) */ function load_profile($profile) { // profile mappings in meta data parent::load_profile($profile); // special profile options // use Unix password if ($profile['sambaAccount_useunixpwd'][0] == "true") { $this->useunixpwd = true; } elseif ($profile['sambaAccount_useunixpwd'][0] == "false") { $this->useunixpwd = false; } // use no password if ($profile['sambaAccount_acctFlagsN'][0] == "true") { $this->nopwd = true; } elseif ($profile['sambaAccount_acctFlagsN'][0] == "false") { $this->nopwd = false; } // password expiration if ($profile['sambaAccount_acctFlagsX'][0] == "true") { $this->noexpire = true; } elseif ($profile['sambaAccount_acctFlagsX'][0] == "false") { $this->noexpire = false; } // use no password if ($profile['sambaAccount_acctFlagsD'][0] == "true") { $this->deactivated = true; } elseif ($profile['sambaAccount_acctFlagsD'][0] == "false") { $this->deactivated = false; } } } ?>