moodle/admin/auth.php

<?PHP  // $Id$
       // config.php - allows admin to edit all configuration variables

    include("../config.php");
    require_login();

    if (!$site = get_site()) {
        redirect("index.php");
    }

    if (!isadmin()) {
        error("Only the admin can use this page");
    }


/// If data submitted, then process and store.

	if ($config = data_submitted()) {

        $config = (array)$config;
        validate_form($config, $err);

        if (count($err) == 0) {
            print_header();
            foreach ($config as $name => $value) {
                if (! set_config($name, $value)) {
                    notify("Problem saving config $name as $value");
                }
            }
            redirect("auth.php", get_string("changessaved"), 1);
            exit;

        } else {
            foreach ($err as $key => $value) {
                $focus = "form.$key";
            }
        }
	}

/// Otherwise fill and print the form.

    if (empty($config)) {
        $config = $CFG;
    }

    $modules = get_list_of_plugins("auth");
    foreach ($modules as $module) {
        $options[$module] = get_string("auth_$module"."title", "auth");
    }
    asort($options);
	if (isset($_GET['auth'])) {
	    $auth = $_GET['auth'];
	} else {
        $auth = $config->auth;
	} 
    require_once("$CFG->dirroot/auth/$auth/lib.php"); //just to make sure that current authentication functions are loaded
    if (! isset($config->guestloginbutton)) {
        $config->guestloginbutton = 1;
    }
    if (! isset($config->auth_instructions)) {
        $config->auth_instructions = "";
    }
    if (! isset($config->changepassword)) {
        $config->changepassword = "";
    }
    $user_fields = array("firstname", "lastname", "email", "phone1", "phone2", "department", "address", "city", "country", "description", "idnumber", "lang");

    foreach ($user_fields as $user_field) {
        $user_field = "auth_user_$user_field";
        if (! isset($config->$user_field)) {
            $config->$user_field = "";
        }
    }

    if (empty($focus)) {
        $focus = "";
    }

    $guestoptions[0] = get_string("hide");
    $guestoptions[1] = get_string("show");

    $createoptions[0] = get_string("no");
    $createoptions[1] = get_string("yes");

    $stradministration        = get_string("administration");
    $strauthentication        = get_string("authentication");
    $strauthenticationoptions = get_string("authenticationoptions","auth");
    $strsettings = get_string("settings");
    $strusers = get_string("users");

    print_header("$site->shortname: $strauthenticationoptions", "$site->fullname",
                  "<A HREF=\"index.php\">$stradministration</A> -> <a href=\"users.php\">$strusers</a> -> $strauthenticationoptions", "$focus");

    echo "<CENTER><P><B>";
    echo "<form TARGET=\"{$CFG->framename}\" NAME=\"authmenu\" method=\"post\" action=\"auth.php\">";
    print_string("chooseauthmethod","auth");

	choose_from_menu ($options, "auth", $auth, "","top.location='auth.php?auth='+document.authmenu.auth.options[document.authmenu.auth.selectedIndex].value", "");

    echo "</B></P></CENTER>";
        
    print_simple_box_start("center", "100%", "$THEME->cellheading");
    print_heading($options[$auth]);

    print_simple_box_start("center", "60%", "$THEME->cellcontent");
    print_string("auth_$auth"."description", "auth");
    print_simple_box_end();

    echo "<hr>";

    print_heading($strsettings);

    echo "<table border=\"0\" width=\"100%\" cellpadding=\"4\">";

    require_once("$CFG->dirroot/auth/$auth/config.html");

    if ($auth != "email" and $auth != "none" and $auth != "manual") {
        echo "<tr valign=\"top\">";
	    echo "<td align=right nowrap><p>";
        print_string("changepassword", "auth");
        echo ":</p></td>";
	    echo "<td>";
        echo "<input type=\"text\" name=\"changepassword\" size=40 value=\"$config->changepassword\">";
        echo "</td>";
        echo "<td>";
        print_string("changepasswordhelp","auth");
        echo "</td></tr>";

    }

    echo "<tr valign=\"top\">";
	echo "<td align=right nowrap><p>";
    print_string("guestloginbutton", "auth");
    echo ":</p></td>";
	echo "<td>";
    choose_from_menu($guestoptions, "guestloginbutton", $config->guestloginbutton, "");
    echo "</td>";
    echo "<td>";
    print_string("showguestlogin","auth");
    echo "</td></tr>";

    if (function_exists('auth_user_create')){    
	    echo "<tr valign=\"top\">";
		echo "<td align=right nowrap><p>";
		print_string("auth_user_create", "auth");
		echo ":</p></td>";
		echo "<td>";
		choose_from_menu($createoptions, "auth_user_create", $config->auth_user_create, "");
		echo "</td>";
		echo "<td>";
		print_string("auth_user_creation","auth");
		echo "</td></tr>";
	}

    echo "</table><center><p><input type=\"submit\" value=\"";
    print_string("savechanges");
    echo "\"></p></center></form>";

    print_simple_box_end(); 

    print_footer();
    exit; 

/// Functions /////////////////////////////////////////////////////////////////

function validate_form(&$form, &$err) {

   // if (empty($form->fullname))
   //     $err["fullname"] = get_string("missingsitename");

    return;
}


?>
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`<?PHP // $Id$`
			`// config.php - allows admin to edit all configuration variables`

			`include("../config.php");`
			`require_login();`

			`if (!$site = get_site()) {`
			`redirect("index.php");`
			`}`

			`if (!isadmin()) {`
			`error("Only the admin can use this page");`
			`}`


			`/// If data submitted, then process and store.`

buggy_referer is dead! Long live buggy_referer! Should be fixed now. As a bonus, I've removed all the uses of HTTP_POST_VARS from all scripts. All forms should use the new data_submitted() function to collect form data (it does the match_referer thing internally now). Much nicer. 2003-01-02 14:49:23 +00:00			`if ($config = data_submitted()) {`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00
Some little fixes 2003-01-02 15:25:51 +00:00			`$config = (array)$config;`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`validate_form($config, $err);`

			`if (count($err) == 0) {`
			`print_header();`
			`foreach ($config as $name => $value) {`
Changes to allow admin to control the "forgot password" function and a bug fix for set_config 2002-11-22 08:43:35 +00:00			`if (! set_config($name, $value)) {`
			`notify("Problem saving config $name as $value");`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`}`
			`}`
			`redirect("auth.php", get_string("changessaved"), 1);`
			`exit;`

			`} else {`
			`foreach ($err as $key => $value) {`
			`$focus = "form.$key";`
			`}`
			`}`
			`}`

			`/// Otherwise fill and print the form.`

Some little fixes 2003-01-02 15:25:51 +00:00			`if (empty($config)) {`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`$config = $CFG;`
			`}`

			`$modules = get_list_of_plugins("auth");`
			`foreach ($modules as $module) {`
			`$options[$module] = get_string("auth_$module"."title", "auth");`
			`}`
			`asort($options);`
			`if (isset($_GET['auth'])) {`
			`$auth = $_GET['auth'];`
			`} else {`
			`$auth = $config->auth;`
			`}`
Show creation option when available. 2003-02-20 21:55:14 +00:00			`require_once("$CFG->dirroot/auth/$auth/lib.php"); //just to make sure that current authentication functions are loaded`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`if (! isset($config->guestloginbutton)) {`
			`$config->guestloginbutton = 1;`
			`}`
More robustness, and some little bug fixes. Also, database module now supports md5 passwords 2002-12-31 08:45:37 +00:00			`if (! isset($config->auth_instructions)) {`
			`$config->auth_instructions = "";`
			`}`
			`if (! isset($config->changepassword)) {`
			`$config->changepassword = "";`
			`}`
			`$user_fields = array("firstname", "lastname", "email", "phone1", "phone2", "department", "address", "city", "country", "description", "idnumber", "lang");`

			`foreach ($user_fields as $user_field) {`
			`$user_field = "auth_user_$user_field";`
			`if (! isset($config->$user_field)) {`
			`$config->$user_field = "";`
			`}`
			`}`
Little robustness fixes 2002-12-30 15:47:54 +00:00
			`if (empty($focus)) {`
			`$focus = "";`
			`}`

A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`$guestoptions[0] = get_string("hide");`
			`$guestoptions[1] = get_string("show");`

Added support for usercreation from Moodle to authentication module. Works currently only with ldap-module (tested with e-directory), but other modules could be extended too by adding following functions: function auth_user_exists ($username) { //returns true if given username already exists on authetication database } function auth_user_create ($userobject,$plainpass) { //create new user to authentication database //in inactive state (if posible) //returns true if user is created } function auth_user_activate ($username) { //activate external user after email-address is confirmed //returns true if user is activated } 2003-02-20 21:39:51 +00:00			`$createoptions[0] = get_string("no");`
			`$createoptions[1] = get_string("yes");`

A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`$stradministration = get_string("administration");`
			`$strauthentication = get_string("authentication");`
			`$strauthenticationoptions = get_string("authenticationoptions","auth");`
			`$strsettings = get_string("settings");`
Some cleanups of the admin page to make it - more explanatory - more expandable Apologies for the lost muscle memories, but I think this will work better in the long run. 2003-08-10 08:01:14 +00:00			`$strusers = get_string("users");`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00
			`print_header("$site->shortname: $strauthenticationoptions", "$site->fullname",`
Some cleanups of the admin page to make it - more explanatory - more expandable Apologies for the lost muscle memories, but I think this will work better in the long run. 2003-08-10 08:01:14 +00:00			`"<A HREF=\"index.php\">$stradministration</A> -> <a href=\"users.php\">$strusers</a> -> $strauthenticationoptions", "$focus");`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00
			`echo "<CENTER><P><B>";`
Modified Greg's work to: - rename the main_frame variable to framename, because it - might have caused some confusion - none of the global variables have underscores - put the config in the config table, with a default of _top 2003-03-12 07:36:22 +00:00			`echo "<form TARGET=\"{$CFG->framename}\" NAME=\"authmenu\" method=\"post\" action=\"auth.php\">";`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`print_string("chooseauthmethod","auth");`

			`choose_from_menu ($options, "auth", $auth, "","top.location='auth.php?auth='+document.authmenu.auth.options[document.authmenu.auth.selectedIndex].value", "");`

			`echo "</B></P></CENTER>";`

			`print_simple_box_start("center", "100%", "$THEME->cellheading");`
			`print_heading($options[$auth]);`

Formatting fixes only 2003-05-05 08:31:04 +00:00			`print_simple_box_start("center", "60%", "$THEME->cellcontent");`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`print_string("auth_$auth"."description", "auth");`
Formatting fixes only 2003-05-05 08:31:04 +00:00			`print_simple_box_end();`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00
Formatting fixes only 2003-05-05 08:31:04 +00:00			`echo "<hr>";`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00
			`print_heading($strsettings);`

			`echo "<table border=\"0\" width=\"100%\" cellpadding=\"4\">";`

Clean sweep through all the important changing all include(), include_once() and require() to require_once() 2003-01-05 14:19:20 +00:00			`require_once("$CFG->dirroot/auth/$auth/config.html");`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00
When using the "manual" method, I've disabled the external method of changing passwords, and enabled the internal "change password" button just like "email" and "none". Thanks to Danilo Massa for pointing out the inconsistency. 2003-07-21 15:20:58 +00:00			`if ($auth != "email" and $auth != "none" and $auth != "manual") {`
Changes to allow admin to control the "forgot password" function and a bug fix for set_config 2002-11-22 08:43:35 +00:00			`echo "<tr valign=\"top\">";`
			`echo "<td align=right nowrap><p>";`
			`print_string("changepassword", "auth");`
			`echo ":</p></td>";`
			`echo "<td>";`
Formatting fixes only 2003-05-05 08:31:04 +00:00			`echo "<input type=\"text\" name=\"changepassword\" size=40 value=\"$config->changepassword\">";`
Changes to allow admin to control the "forgot password" function and a bug fix for set_config 2002-11-22 08:43:35 +00:00			`echo "</td>";`
			`echo "<td>";`
			`print_string("changepasswordhelp","auth");`
			`echo "</td></tr>";`

			`}`

A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`echo "<tr valign=\"top\">";`
Tweaks to authentication system. Database method now allows other fields to be specified so that things like email, names etc can be pulled in from external database when new Moodle accounts are created 2002-11-21 07:37:21 +00:00			`echo "<td align=right nowrap><p>";`
			`print_string("guestloginbutton", "auth");`
			`echo ":</p></td>";`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`echo "<td>";`
			`choose_from_menu($guestoptions, "guestloginbutton", $config->guestloginbutton, "");`
			`echo "</td>";`
			`echo "<td>";`
			`print_string("showguestlogin","auth");`
Added support for usercreation from Moodle to authentication module. Works currently only with ldap-module (tested with e-directory), but other modules could be extended too by adding following functions: function auth_user_exists ($username) { //returns true if given username already exists on authetication database } function auth_user_create ($userobject,$plainpass) { //create new user to authentication database //in inactive state (if posible) //returns true if user is created } function auth_user_activate ($username) { //activate external user after email-address is confirmed //returns true if user is activated } 2003-02-20 21:39:51 +00:00			`echo "</td></tr>";`

			`if (function_exists('auth_user_create')){`
			`echo "<tr valign=\"top\">";`
			`echo "<td align=right nowrap><p>";`
			`print_string("auth_user_create", "auth");`
			`echo ":</p></td>";`
			`echo "<td>";`
			`choose_from_menu($createoptions, "auth_user_create", $config->auth_user_create, "");`
			`echo "</td>";`
			`echo "<td>";`
			`print_string("auth_user_creation","auth");`
			`echo "</td></tr>";`
			`}`
Changes to allow admin to control the "forgot password" function and a bug fix for set_config 2002-11-22 08:43:35 +00:00
Formatting fixes only 2003-05-05 08:31:04 +00:00			`echo "</table><center><p><input type=\"submit\" value=\"";`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00			`print_string("savechanges");`
Formatting fixes only 2003-05-05 08:31:04 +00:00			`echo "\"></p></center></form>";`
A significant new system for authentication configuration that exposes the wide array of authentication possibilities. Authentication now has it's own page separate from other variables. Most of this work was done by Petri Asikainen <paca@sci.fi>, who started these changes off. I've done some cleanups and additions which is why I'm checking it in. It's all working pretty well at the moment but could use some testing. Thanks, Petri! :-) 2002-11-19 08:51:33 +00:00
			`print_simple_box_end();`

			`print_footer();`
			`exit;`

			`/// Functions /////////////////////////////////////////////////////////////////`

			`function validate_form(&$form, &$err) {`

			`// if (empty($form->fullname))`
			`// $err["fullname"] = get_string("missingsitename");`

			`return;`
			`}`


			`?>`