mirror of
https://bitbucket.org/jsuto/piler.git
synced 2025-01-26 12:10:00 +01:00
fixed gui auth against AD to include list membership info
This commit is contained in:
parent
ebbbb77fb6
commit
a198aa11e8
@ -44,6 +44,13 @@ $config['LDAP_BASE_DN'] = '';
|
|||||||
$config['LDAP_DISTRIBUTIONLIST_OBJECTCLASS'] = 'zimbraDistributionList';
|
$config['LDAP_DISTRIBUTIONLIST_OBJECTCLASS'] = 'zimbraDistributionList';
|
||||||
$config['LDAP_DISTRIBUTIONLIST_ATTR'] = 'zimbraMailForwardingAddress';
|
$config['LDAP_DISTRIBUTIONLIST_ATTR'] = 'zimbraMailForwardingAddress';
|
||||||
|
|
||||||
|
|
||||||
|
// AD specific settings
|
||||||
|
//
|
||||||
|
//$config['LDAP_ACCOUNT_OBJECTCLASS'] = 'user';
|
||||||
|
//$config['LDAP_DISTRIBUTIONLIST_OBJECTCLASS'] = 'group';
|
||||||
|
//$config['LDAP_DISTRIBUTIONLIST_ATTR'] = 'member';
|
||||||
|
|
||||||
// Lotus Notes specific settings for ldap authentication
|
// Lotus Notes specific settings for ldap authentication
|
||||||
//
|
//
|
||||||
//$config['LDAP_ACCOUNT_OBJECTCLASS'] = 'dominoPerson';
|
//$config['LDAP_ACCOUNT_OBJECTCLASS'] = 'dominoPerson';
|
||||||
|
@ -66,7 +66,8 @@ class ModelUserAuth extends Model {
|
|||||||
$ldap = new LDAP(LDAP_HOST, LDAP_HELPER_DN, LDAP_HELPER_PASSWORD);
|
$ldap = new LDAP(LDAP_HOST, LDAP_HELPER_DN, LDAP_HELPER_PASSWORD);
|
||||||
|
|
||||||
if($ldap->is_bind_ok()) {
|
if($ldap->is_bind_ok()) {
|
||||||
$query = $ldap->query(LDAP_BASE_DN, "(|(&(objectClass=" . LDAP_ACCOUNT_OBJECTCLASS . ")(" . LDAP_MAIL_ATTR . "=$username))(&(objectClass=" . LDAP_DISTRIBUTIONLIST_OBJECTCLASS . ")(" . LDAP_DISTRIBUTIONLIST_ATTR . "=$username)" . "))", array());
|
|
||||||
|
$query = $ldap->query(LDAP_BASE_DN, "(&(objectClass=" . LDAP_ACCOUNT_OBJECTCLASS . ")(" . LDAP_MAIL_ATTR . "=$username))", array());
|
||||||
|
|
||||||
if(isset($query->row)) {
|
if(isset($query->row)) {
|
||||||
$a = $query->row;
|
$a = $query->row;
|
||||||
@ -76,6 +77,9 @@ class ModelUserAuth extends Model {
|
|||||||
if(ENABLE_SYSLOG == 1) { syslog(LOG_INFO, "ldap auth against '" . LDAP_HOST . "', dn: '" . $a['dn'] . "', result: " . $ldap_auth->is_bind_ok()); }
|
if(ENABLE_SYSLOG == 1) { syslog(LOG_INFO, "ldap auth against '" . LDAP_HOST . "', dn: '" . $a['dn'] . "', result: " . $ldap_auth->is_bind_ok()); }
|
||||||
|
|
||||||
if($ldap_auth->is_bind_ok()) {
|
if($ldap_auth->is_bind_ok()) {
|
||||||
|
|
||||||
|
$query = $ldap->query(LDAP_BASE_DN, "(|(&(objectClass=" . LDAP_ACCOUNT_OBJECTCLASS . ")(" . LDAP_MAIL_ATTR . "=$username))(&(objectClass=" . LDAP_DISTRIBUTIONLIST_OBJECTCLASS . ")(" . LDAP_DISTRIBUTIONLIST_ATTR . "=$username)" . ")(&(objectClass=" . LDAP_DISTRIBUTIONLIST_OBJECTCLASS . ")(" . LDAP_DISTRIBUTIONLIST_ATTR . "=" . $a['dn'] . ")))", array());
|
||||||
|
|
||||||
$emails = $this->get_email_array_from_ldap_attr($query->rows);
|
$emails = $this->get_email_array_from_ldap_attr($query->rows);
|
||||||
|
|
||||||
$this->add_session_vars($a['cn'], $username, $emails);
|
$this->add_session_vars($a['cn'], $username, $emails);
|
||||||
|
@ -57,6 +57,7 @@ class LDAP {
|
|||||||
|
|
||||||
$query = new stdClass();
|
$query = new stdClass();
|
||||||
|
|
||||||
|
$query->filter = $filter;
|
||||||
$query->row = isset($data[0]) ? $data[0] : array();
|
$query->row = isset($data[0]) ? $data[0] : array();
|
||||||
$query->dn = isset($results[0]['dn']) ? $results[0]['dn'] : "";
|
$query->dn = isset($results[0]['dn']) ? $results[0]['dn'] : "";
|
||||||
$query->rows = $data;
|
$query->rows = $data;
|
||||||
|
Loading…
x
Reference in New Issue
Block a user