mirror of
https://bitbucket.org/jsuto/piler.git
synced 2025-10-31 05:52:26 +01:00
121 lines
4.5 KiB
PHP
121 lines
4.5 KiB
PHP
<?php
|
|
|
|
class ModelSaasLdap extends Model
|
|
{
|
|
|
|
public function get($id = -1) {
|
|
|
|
if(is_numeric($id) && $id >= 0) {
|
|
$query = $this->db->query("SELECT * FROM " . TABLE_LDAP . " WHERE id=?", array($id));
|
|
if($query->num_rows > 0) { return $query->row; }
|
|
}
|
|
|
|
return array();
|
|
}
|
|
|
|
|
|
public function search($s = '') {
|
|
if($s) {
|
|
$query = $this->db->query("SELECT id, description, ldap_type, ldap_host, ldap_base_dn, ldap_bind_dn, ldap_auditor_member_dn FROM " . TABLE_LDAP . " WHERE description LIKE ? ORDER BY description ASC", array('%' . $s . '%'));
|
|
} else {
|
|
$query = $this->db->query("SELECT id, description, ldap_type, ldap_host, ldap_base_dn, ldap_bind_dn, ldap_auditor_member_dn FROM " . TABLE_LDAP . " ORDER BY description ASC");
|
|
}
|
|
|
|
if($query->num_rows > 0) { return $query->rows; }
|
|
|
|
return array();
|
|
}
|
|
|
|
|
|
public function delete($id = 0, $description = '') {
|
|
if($id == 0) { return 0; }
|
|
|
|
$query = $this->db->query("DELETE FROM " . TABLE_LDAP . " WHERE id=?", array($id));
|
|
|
|
$rc = $this->db->countAffected();
|
|
|
|
LOGGER("remove ldap entry: #$id, $description (rc=$rc)");
|
|
|
|
return $rc;
|
|
}
|
|
|
|
|
|
public function add($arr = array()) {
|
|
if(!isset($arr['description']) || !isset($arr['ldap_host'])) { return 0; }
|
|
|
|
$query = $this->db->query("INSERT INTO " . TABLE_LDAP . " (description, ldap_host, ldap_base_dn, ldap_bind_dn, ldap_bind_pw, ldap_type, ldap_auditor_member_dn, ldap_mail_attr, ldap_account_objectclass, ldap_distributionlist_attr, ldap_distributionlist_objectclass) VALUES (?,?,?,?,?,?,?,?,?,?,?)", array($arr['description'], $arr['ldap_host'], $arr['ldap_base_dn'], $arr['ldap_bind_dn'], $arr['ldap_bind_pw'], $arr['ldap_type'], $arr['ldap_auditor_member_dn'], $arr['ldap_mail_attr'], $arr['ldap_account_objectclass'], $arr['ldap_distributionlist_attr'], $arr['ldap_distributionlist_objectclass']));
|
|
|
|
$rc = $this->db->countAffected();
|
|
|
|
LOGGER("add ldap entry: " . $arr['description'] . " / " . $arr['ldap_type'] . " / " . $arr['ldap_host'] . " / " . $arr['ldap_base_dn'] . " (rc=$rc)");
|
|
|
|
if($rc == 1){ return 1; }
|
|
|
|
return 0;
|
|
}
|
|
|
|
|
|
public function update($arr = array()) {
|
|
if(!isset($arr['id']) || !isset($arr['description']) || !isset($arr['ldap_host'])) { return 0; }
|
|
|
|
$query = $this->db->query("UPDATE " . TABLE_LDAP . " SET description=?, ldap_host=?, ldap_base_dn=?, ldap_bind_dn=?, ldap_bind_pw=?, ldap_type=?, ldap_auditor_member_dn=?, ldap_mail_attr=?, ldap_account_objectclass=?, ldap_distributionlist_attr=?, ldap_distributionlist_objectclass=? WHERE id=?", array($arr['description'], $arr['ldap_host'], $arr['ldap_base_dn'], $arr['ldap_bind_dn'], $arr['ldap_bind_pw'], $arr['ldap_type'], $arr['ldap_auditor_member_dn'], $arr['ldap_mail_attr'], $arr['ldap_account_objectclass'], $arr['ldap_distributionlist_attr'], $arr['ldap_distributionlist_objectclass'], $arr['id']));
|
|
|
|
return $this->db->countAffected();
|
|
}
|
|
|
|
|
|
public function get_ldap_params_by_email($email = '') {
|
|
$domain = '';
|
|
|
|
if($email == '') { return array(); }
|
|
|
|
list($l,$d) = explode("@", $email);
|
|
|
|
$query = $this->db->query("SELECT d.*, l.* FROM " . TABLE_DOMAIN . " as d, " . TABLE_LDAP . " as l where d.ldap_id=l.id and d.domain=?", array($d));
|
|
|
|
if($query->num_rows > 0) { return $query->rows; }
|
|
|
|
return array();
|
|
}
|
|
|
|
|
|
public function get_accounts_in_domain($domain = '') {
|
|
$ldap_type = '';
|
|
$ldap_host = LDAP_HOST;
|
|
$ldap_port = LDAP_PORT;
|
|
$ldap_base_dn = LDAP_BASE_DN;
|
|
$ldap_helper_dn = LDAP_HELPER_DN;
|
|
$ldap_helper_password = LDAP_HELPER_PASSWORD;
|
|
|
|
if(ENABLE_SAAS == 1) {
|
|
$a = $this->model_saas_ldap->get_ldap_params_by_email("aaa@" . $domain);
|
|
|
|
if(count($a) >= 5) {
|
|
$ldap_type = $a[0];
|
|
$ldap_host = $a[1];
|
|
$ldap_base_dn = $a[2];
|
|
$ldap_helper_dn = $a[3];
|
|
$ldap_helper_password = $a[4];
|
|
}
|
|
}
|
|
|
|
list($ldap_mail_attr, $ldap_account_objectclass, $ldap_distributionlist_attr, $ldap_distributionlist_objectclass) = get_ldap_attribute_names($ldap_type);
|
|
|
|
if($ldap_host == '' || $ldap_helper_password == '') { return array(); }
|
|
|
|
$ldap = new LDAP($ldap_host, $ldap_port, $ldap_helper_dn, $ldap_helper_password);
|
|
|
|
if($ldap->is_bind_ok()) {
|
|
|
|
$query = $ldap->query($ldap_base_dn, "(&(objectClass=$ldap_account_objectclass)($ldap_mail_attr=*@$domain))", array($ldap_mail_attr));
|
|
|
|
if($query->num_rows > 0) { asort($query->rows); return $query->rows; }
|
|
}
|
|
|
|
return array();
|
|
}
|
|
|
|
}
|
|
|
|
?>
|