mirror of
https://git.code.sf.net/p/seeddms/code
synced 2025-03-11 00:15:34 +00:00
ldap search can be filtered
This commit is contained in:
Uwe Steinmann
parent
e0ae06441e
commit
c43c5e64eb
|
|
@ -111,6 +111,7 @@
|
|||
- URIs are supported, e.g.: ldaps://ldap.host.com
|
||||
- port: port of the authentification server
|
||||
- baseDN: top level of the LDAP directory tree
|
||||
- filter: Additional filters which are to be checked
|
||||
-->
|
||||
<connector
|
||||
enable = "false"
|
||||
|
|
@ -120,6 +121,7 @@
|
|||
baseDN = ""
|
||||
bindDN=""
|
||||
bindPw=""
|
||||
filter=""
|
||||
>
|
||||
</connector>
|
||||
<!-- ***** CONNECTOR Microsoft Active Directory *****
|
||||
|
|
|
|||
|
|
@ -217,6 +217,7 @@ class Settings { /* {{{ */
|
|||
var $_ldapBindPw = "";
|
||||
var $_ldapAccountDomainName = "";
|
||||
var $_ldapType = 1; // 0 = ldap; 1 = AD
|
||||
var $_ldapFilter = "";
|
||||
var $_converters = array(); // list of commands used to convert files to text for Indexer
|
||||
|
||||
/**
|
||||
|
|
@ -422,6 +423,7 @@ class Settings { /* {{{ */
|
|||
$this->_ldapBindDN = strVal($connectorNode["bindDN"]);
|
||||
$this->_ldapBindPw = strVal($connectorNode["bindPw"]);
|
||||
$this->_ldapType = 0;
|
||||
$this->_ldapFilter = strVal($connectorNode["filter"]);
|
||||
}
|
||||
else if ($params['enable'] && ($typeConn == "AD"))
|
||||
{
|
||||
|
|
@ -431,6 +433,7 @@ class Settings { /* {{{ */
|
|||
$this->_ldapBindDN = strVal($connectorNode["bindDN"]);
|
||||
$this->_ldapBindPw = strVal($connectorNode["bindPw"]);
|
||||
$this->_ldapType = 1;
|
||||
$this->_ldapFilter = strVal($connectorNode["filter"]);
|
||||
$this->_ldapAccountDomainName = strVal($connectorNode["accountDomainName"]);
|
||||
}
|
||||
}
|
||||
|
|
|
|||
|
|
@ -118,6 +118,7 @@
|
|||
- URIs are supported, e.g.: ldaps://ldap.host.com
|
||||
- port: port of the authentification server
|
||||
- baseDN: top level of the LDAP directory tree
|
||||
- filter: Additional filters which are to be checked
|
||||
-->
|
||||
<connector
|
||||
enable = "false"
|
||||
|
|
@ -127,6 +128,7 @@
|
|||
baseDN = ""
|
||||
bindDN=""
|
||||
bindPw=""
|
||||
filter=""
|
||||
>
|
||||
</connector>
|
||||
<!-- ***** CONNECTOR Microsoft Active Directory *****
|
||||
|
|
|
|||
|
|
@ -117,7 +117,11 @@ if (!$user && isset($settings->_ldapHost) && strlen($settings->_ldapHost)>0) {
|
|||
$dn = false;
|
||||
/* If bind succeed, then get the dn of for the user */
|
||||
if ($bind) {
|
||||
$search = ldap_search($ds, $settings->_ldapBaseDN, $ldapSearchAttribut.$login);
|
||||
if (isset($settings->_ldapFilter) && strlen($settings->_ldapFilter) > 0) {
|
||||
$search = ldap_search($ds, $settings->_ldapBaseDN, "(&(".$ldapSearchAttribut.$login.")".$settings->_ldapFilter.")");
|
||||
} else {
|
||||
$search = ldap_search($ds, $settings->_ldapBaseDN, $ldapSearchAttribut.$login);
|
||||
}
|
||||
if (!is_bool($search)) {
|
||||
$info = ldap_get_entries($ds, $search);
|
||||
if (!is_bool($info) && $info["count"]>0) {
|
||||
|
|
@ -142,7 +146,11 @@ if (!$user && isset($settings->_ldapHost) && strlen($settings->_ldapHost)>0) {
|
|||
$user = $dms->getUserByLogin($login);
|
||||
if (is_bool($user) && !$settings->_restricted) {
|
||||
// Retrieve the user's LDAP information.
|
||||
$search = ldap_search($ds, $settings->_ldapBaseDN, $ldapSearchAttribut . $login);
|
||||
if (isset($settings->_ldapFilter) && strlen($settings->_ldapFilter) > 0) {
|
||||
$search = ldap_search($ds, $settings->_ldapBaseDN, "(&(".$ldapSearchAttribut.$login.")".$settings->_ldapFilter.")");
|
||||
} else {
|
||||
$search = ldap_search($ds, $settings->_ldapBaseDN, $ldapSearchAttribut.$login);
|
||||
}
|
||||
|
||||
if (!is_bool($search)) {
|
||||
$info = ldap_get_entries($ds, $search);
|
||||
|
|
|
|||
Loading…
Reference in New Issue
Block a user