mirror of
				https://github.com/phpbb/phpbb.git
				synced 2025-10-26 21:21:32 +01:00 
			
		
		
		
	
		
			
				
	
	
		
			89 lines
		
	
	
		
			2.7 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
			
		
		
	
	
			89 lines
		
	
	
		
			2.7 KiB
		
	
	
	
		
			PHP
		
	
	
	
	
	
| <?php
 | |
| 
 | |
| // Authentication plug-ins is largely down to Sergey Kanareykin, our thanks to him.
 | |
| //
 | |
| // This is for initial authentication via an LDAP server, user information is then
 | |
| // obtained from the integrated user table
 | |
| //
 | |
| // You can do any kind of checking you like here ... the return data format is
 | |
| // either the resulting row of user information, an integer zero (indicating an
 | |
| // inactive user) or some error string
 | |
| function login_ldap(&$username, &$password)
 | |
| {
 | |
| 	global $db, $config;
 | |
| 
 | |
| 	if (!extension_loaded('ldap'))
 | |
| 	{
 | |
| 		return 'LDAP extension not available';
 | |
| 	}
 | |
| 
 | |
| 	if (!($ldap = @ldap_connect($config['ldap_server'])))
 | |
| 	{
 | |
| 		return 'Could not connect to LDAP server';
 | |
| 	}
 | |
| 
 | |
| 	$search = @ldap_search($ldap, $config['ldap_base_dn'], $config['ldap_uid'] . '=' . $username, array($config['ldap_uid']));
 | |
| 	$result = @ldap_get_entries($ldap, $search);
 | |
| 
 | |
| 	if (is_array($result) && count($result) > 1)
 | |
| 	{
 | |
| 		if (@ldap_bind($ldap, $result[0]['dn'], $password))
 | |
| 		{
 | |
| 			@ldap_close($ldap);
 | |
| 
 | |
| 			$sql = "SELECT user_id, username, user_password, user_email, user_active
 | |
| 				FROM " . USERS_TABLE . "
 | |
| 				WHERE username = '" . $db->sql_escape($username) . "'";
 | |
| 			$result = $db->sql_query($sql);
 | |
| 
 | |
| 			if ($row = $db->sql_fetchrow($result))
 | |
| 			{
 | |
| 				$db->sql_freeresult($result);
 | |
| 				return (empty($row['user_active'])) ? 0 : $row;
 | |
| 			}
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	@ldap_close($ldap);
 | |
| 
 | |
| 	return false;
 | |
| }
 | |
| 
 | |
| // This function is used to output any required fields in the authentication
 | |
| // admin panel. It also defines any required configuration table fields.
 | |
| function admin_ldap(&$new)
 | |
| {
 | |
| 	global $user;
 | |
| 
 | |
| ?>
 | |
| 	<tr>
 | |
| 		<td class="row1"><?php echo $user->lang['LDAP_server']; ?>:<br /><span class="gensmall"><?php echo $user->lang['LDAP_server_explain']; ?></span></td>
 | |
| 		<td class="row2"><input type="text" size="40" name="ldap_server" value="<?php echo $new['ldap_server']; ?>" /></td>
 | |
| 	</tr>
 | |
| 	<tr>
 | |
| 		<td class="row1"><?php echo $user->lang['LDAP_dn']; ?>:<br /><span class="gensmall"><?php echo $user->lang['LDAP_dn_explain']; ?></span></td>
 | |
| 		<td class="row2"><input type="text" size="40" name="ldap_base_dn" value="<?php echo $new['ldap_base_dn']; ?>" /></td>
 | |
| 	</tr>
 | |
| 	<tr>
 | |
| 		<td class="row1"><?php echo $user->lang['LDAP_uid']; ?>:<br /><span class="gensmall"><?php echo $user->lang['LDAP_uid_explain']; ?></span></td>
 | |
| 		<td class="row2"><input type="text" size="40" name="ldap_uid" value="<?php echo $new['ldap_uid']; ?>" /></td>
 | |
| 	</tr>
 | |
| <?php
 | |
| 
 | |
| 	// These are fields required in the config table
 | |
| 	return array('ldap_server', 'ldap_base_dn', 'ldap_uid');
 | |
| 
 | |
| }
 | |
| 
 | |
| // Would be nice to allow syncing of 'appropriate' data when user updates
 | |
| // their username, password, etc. ... should be up to the plugin what data
 | |
| // is updated.
 | |
| //
 | |
| // $mode perhaps being one of NEW, UPDATE, DELETE
 | |
| function usercp_ldap($mode)
 | |
| {
 | |
| 	global $db, $config;
 | |
| 
 | |
| }
 | |
| 
 | |
| ?>
 |