From c8e57d5460e9b6b94f5730bcc5ca8197c42188ab Mon Sep 17 00:00:00 2001
From: Dominik Schmidt <dev@dominik-schmidt.de>
Date: Thu, 23 Jun 2011 22:51:25 +0200
Subject: [PATCH] Add user_ldap plugin
---
apps/user_ldap/appinfo/app.php | 36 ++++++++++++++++
apps/user_ldap/appinfo/info.xml | 10 +++++
apps/user_ldap/settings.php | 48 +++++++++++++++++++++
apps/user_ldap/templates/settings.php | 24 +++++++++++
apps/user_ldap/user_ldap.php | 62 +++++++++++++++++++++++++++
5 files changed, 180 insertions(+)
create mode 100644 apps/user_ldap/appinfo/app.php
create mode 100644 apps/user_ldap/appinfo/info.xml
create mode 100644 apps/user_ldap/settings.php
create mode 100644 apps/user_ldap/templates/settings.php
create mode 100644 apps/user_ldap/user_ldap.php
diff --git a/apps/user_ldap/appinfo/app.php b/apps/user_ldap/appinfo/app.php
new file mode 100644
index 0000000000..f7ce4f87a6
--- /dev/null
+++ b/apps/user_ldap/appinfo/app.php
@@ -0,0 +1,36 @@
+<?php
+
+/**
+* ownCloud - user_ldap
+*
+* @author Dominik Schmidt
+* @copyright 2011 Dominik Schmidt dev@dominik-schmidt.de
+*
+* This library is free software; you can redistribute it and/or
+* modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
+* License as published by the Free Software Foundation; either
+* version 3 of the License, or any later version.
+*
+* This library is distributed in the hope that it will be useful,
+* but WITHOUT ANY WARRANTY; without even the implied warranty of
+* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+* GNU AFFERO GENERAL PUBLIC LICENSE for more details.
+*
+* You should have received a copy of the GNU Affero General Public
+* License along with this library. If not, see <http://www.gnu.org/licenses/>.
+*
+*/
+
+require_once('apps/user_ldap/user_ldap.php');
+
+// register user backend
+OC_USER::useBackend( "LDAP" );
+
+// add settings page to navigation
+$entry = array(
+ 'id' => "user_ldap_settings",
+ 'order'=>1,
+ 'href' => OC_HELPER::linkTo( "user_ldap", "settings.php" ),
+ 'name' => 'LDAP'
+);
+OC_APP::addNavigationSubEntry( "core_users", $entry);
diff --git a/apps/user_ldap/appinfo/info.xml b/apps/user_ldap/appinfo/info.xml
new file mode 100644
index 0000000000..9a6ee1436f
--- /dev/null
+++ b/apps/user_ldap/appinfo/info.xml
@@ -0,0 +1,10 @@
+<?xml version="1.0"?>
+<info>
+ <id>user_ldap</id>
+ <name>LDAP user backend</name>
+ <description>Authenticate Users by LDAP</description>
+ <version>0.1</version>
+ <licence>AGPL</licence>
+ <author>Dominik Schmidt</author>
+ <require>2</require>
+</info>
diff --git a/apps/user_ldap/settings.php b/apps/user_ldap/settings.php
new file mode 100644
index 0000000000..22f817e7ca
--- /dev/null
+++ b/apps/user_ldap/settings.php
@@ -0,0 +1,48 @@
+<?php
+
+/**
+ * ownCloud - user_ldap
+ *
+ * @author Dominik Schmidt
+ * @copyright 2011 Dominik Schmidt dev@dominik-schmidt.de
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or any later version.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU AFFERO GENERAL PUBLIC LICENSE for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public
+ * License along with this library. If not, see <http://www.gnu.org/licenses/>.
+ *
+ */
+
+require_once('../../lib/base.php');
+require( 'template.php' );
+
+if( !OC_USER::isLoggedIn() || !OC_GROUP::inGroup( OC_USER::getUser(), 'admin' )){
+ header( "Location: ".OC_HELPER::linkTo( "index.php" ));
+ exit();
+}
+
+$params = array('ldap_host', 'ldap_dn', 'ldap_password', 'ldap_base', 'ldap_filter');
+
+foreach($params as $param){
+ if(isset($_POST[$param])){
+ OC_APPCONFIG::setValue('user_ldap', $param, $_POST[$param]);
+ }
+}
+OC_APP::setActiveNavigationEntry( "user_ldap_settings" );
+
+
+// fill template
+$tmpl = new OC_TEMPLATE( 'user_ldap', 'settings', 'admin' );
+foreach($params as $param){
+ $value = OC_APPCONFIG::getValue('user_ldap', $param,'');
+ $tmpl->assign($param, $value);
+}
+$tmpl->printPage();
diff --git a/apps/user_ldap/templates/settings.php b/apps/user_ldap/templates/settings.php
new file mode 100644
index 0000000000..5f7ee671ce
--- /dev/null
+++ b/apps/user_ldap/templates/settings.php
@@ -0,0 +1,24 @@
+<form id="ldap" action='#' method='post'>
+ <fieldset>
+ <legend>LDAP</legend>
+ <div>
+ <div>
+ <span>Host: *</span><span><input type="text" name="ldap_host" width="200" value="<?php echo $_['ldap_host']; ?>"></span>
+ </div>
+ <div>
+ <span>DN:<input type="text" name="ldap_dn" width="200" value="<?php echo $_['ldap_dn']; ?>"></span>
+ </div>
+ <div>
+ <span>Password:<input type="text" name="ldap_password" width="200" value="<?php echo $_['ldap_password']; ?>"></span>
+ </div>
+ <div>
+ <span>Base: *<input type="text" name="ldap_base" width="200" value="<?php echo $_['ldap_base']; ?>"></span>
+ </div>
+ <div>
+ <span>Filter * (use %uid placeholder):<input type="text" name="ldap_filter" width="200" value="<?php echo $_['ldap_filter']; ?>"></span>
+ </div>
+ </div>
+ <input type='submit' value='Save'/>
+ <br/> * required
+ </fieldset>
+</form>
\ No newline at end of file
diff --git a/apps/user_ldap/user_ldap.php b/apps/user_ldap/user_ldap.php
new file mode 100644
index 0000000000..52f8806429
--- /dev/null
+++ b/apps/user_ldap/user_ldap.php
@@ -0,0 +1,62 @@
+<?php
+
+/**
+ * ownCloud
+ *
+ * @author Dominik Schmidt
+ * @copyright 2011 Dominik Schmidt dev@dominik-schmidt.de
+ *
+ * This library is free software; you can redistribute it and/or
+ * modify it under the terms of the GNU AFFERO GENERAL PUBLIC LICENSE
+ * License as published by the Free Software Foundation; either
+ * version 3 of the License, or any later version.
+ *
+ * This library is distributed in the hope that it will be useful,
+ * but WITHOUT ANY WARRANTY; without even the implied warranty of
+ * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
+ * GNU AFFERO GENERAL PUBLIC LICENSE for more details.
+ *
+ * You should have received a copy of the GNU Affero General Public
+ * License along with this library. If not, see <http://www.gnu.org/licenses/>.
+ *
+ */
+
+require_once('User/backend.php');
+
+class OC_USER_LDAP extends OC_USER_BACKEND {
+
+ public function checkPassword( $uid, $password ) {
+ $ldap_host = OC_APPCONFIG::getValue('user_ldap', 'ldap_host','');
+ $ldap_dn = OC_APPCONFIG::getValue('user_ldap', 'ldap_dn','');
+ $ldap_password = OC_APPCONFIG::getValue('user_ldap', 'ldap_password','');
+ $ldap_base = OC_APPCONFIG::getValue('user_ldap', 'ldap_base','');
+ $ldap_filter = OC_APPCONFIG::getValue('user_ldap', 'ldap_filter','');
+
+ // connect to server
+ $ds = ldap_connect( $ldap_host );
+ if( !$ds )
+ return false;
+
+ // login for search
+ if(!empty($ldap_dn)) {
+ $ldap_login = @ldap_bind( $ds, $ldap_dn, $ldap_password );
+ if(!$ldap_login)
+ return false;
+ }
+
+ // get dn
+ $filter = str_replace("%uid", $uid, $ldap_filter);
+ $sr = ldap_search( $ds, $ldap_base, $filter );
+ $entries = ldap_get_entries( $ds, $sr );
+
+ if( $entries["count"] == 0 )
+ return false;
+
+ $dn = $entries[0]["dn"];
+ $result = @ldap_bind( $ds, $dn, $password );
+
+ return $result;
+ }
+}
+
+?>
--
GitLab