Skip to content
GitLab
Select Git revision
  • dev default
  • 6378-orcid-test-method-is-wrong-and-break-orcid-saving
  • core-php8
  • master
  • 6342-update-the-locales-for-1-5
  • 6344-template-issue-when-creating-a-template-with-empty-password-error-message-should-not-be-seen
  • 6365-core-locking-mechanism-is-not-changing-the-mail-ressource-it-does-lock-the-mail-account
  • 6365-core-when-lock-mechanism-is-trigger-the-user-should-not-be-editable-if-not-unlock
  • fusiondirectory-1.5
  • fusiondirectory-1.4
  • fusiondirectory-1.3.1
  • fusiondirectory-1.3
  • fusiondirectory-1.2.3
  • fusiondirectory-1.2.2
  • fusiondirectory-1.2.1
  • fusiondirectory-1.2
  • fusiondirectory-1.1.1
  • fusiondirectory-1.1
  • fusiondirectory-1.0.20
  • fusiondirectory-1.0.19
  • fusiondirectory-1.0.18
  • fusiondirectory-1.0.17
  • fusiondirectory-1.0.16
  • fusiondirectory-1.0.15
  • fusiondirectory-1.0.14
  • fusiondirectory-1.0.13
  • fusiondirectory-1.0.12
  • fusiondirectory-1.0.11
Find file BlameHistoryPermalink
class_ldap.inc 45.18 KiB
1 
<?php
2 
/*
3 
  This code is part of FusionDirectory (http://www.fusiondirectory.org/)
4 
  Copyright (C) 2003-2010  Cajus Pollmeier
5 
  Copyright (C) 2003 Alejandro Escanero Blanco <aescanero@chaosdimension.org>
6 
  Copyright (C) 1998  Eric Kilfoil <eric@ipass.net>
7 
  Copyright (C) 2011-2016  FusionDirectory
8
9 
  This program is free software; you can redistribute it and/or modify
10 
  it under the terms of the GNU General Public License as published by
11 
  the Free Software Foundation; either version 2 of the License, or
12 
  (at your option) any later version.
13
14 
  This program is distributed in the hope that it will be useful,
15 
  but WITHOUT ANY WARRANTY; without even the implied warranty of
16 
  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
17 
  GNU General Public License for more details.
18
19 
  You should have received a copy of the GNU General Public License
20 
  along with this program; if not, write to the Free Software
21 
  Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA.
22 
*/
23
24 
/*!
25 
 * \file class_ldap.inc
26 
 * Source code for Class LDAP
27 
 */
28
29 
/*!
30 
 * \brief This class contains all ldap function needed to make
31 
 * ldap operations easy
32 
 */
33
34 
class LDAP
35 
{
36 
  var $hascon         = FALSE;
37 
  var $reconnect      = FALSE;
38 
  var $tls            = FALSE;
39
40 
  /* connection identifier */
41 
  var $cid;
42
43 
  var $hasres         = [];
44 
  var $sr             = [];
45 
  var $re             = [];
46 
  var $basedn         = "";
47
48 
  /* 0 if we are fetching the first entry, otherwise 1 */
49 
  var $start          = [];
50
51 
  /* Any error messages to be returned can be put here */
52 
  var $error          = "";
53
54 
  var $srp            = 0;
55
56 
  /* Information read from slapd.oc.conf */
57 
  var $objectClasses    = [];
58 
  /* the dn for the bind */
59 
  var $binddn           = "";
60 
  /* the dn's password for the bind */
61 
  var $bindpw           = "";
62 
  var $hostname         = "";
63 
  var $follow_referral  = FALSE;
64 
  var $referrals        = [];
65
66 
  /* 0, empty or negative values will disable this check */
67 
  var $max_ldap_query_time  = 0;
68
69 
  /*!
70 
   * \brief Create a LDAP connection
7172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140
* * \param string $binddn Bind of the DN * * \param string $bindpw Bind * * \param string $hostname The hostname * * \param boolean $follow_referral FALSE * * \param boolean $tls FALSE */ function __construct ($binddn, $bindpw, $hostname, $follow_referral = FALSE, $tls = FALSE) { global $config; $this->follow_referral = $follow_referral; $this->tls = $tls; $this->binddn = $binddn; $this->bindpw = $bindpw; $this->hostname = $hostname; /* Check if MAX_LDAP_QUERY_TIME is defined */ if (is_object($config) && ($config->get_cfg_value("ldapMaxQueryTime") != "")) { $str = $config->get_cfg_value("ldapMaxQueryTime"); $this->max_ldap_query_time = (float)($str); } $this->connect(); } /*! * \brief Get the search ressource * * \return increase srp */ function getSearchResource () { $this->sr[$this->srp] = NULL; $this->start[$this->srp] = 0; $this->hasres[$this->srp] = FALSE; return $this->srp++; } /*! * \brief Function to fix problematic characters in DN's that are used for search requests. I.e. member=.... * * \param string $dn The DN */ static function prepare4filter ($dn) { trigger_error('deprecated, use ldap_escape_f instead'); return ldap_escape_f($dn); } /*! * \brief Error text that must be returned for invalid user or password * * This is useful to make sure the same error text is shown whether a user exists or not, when the password is not correct. */ static function invalidCredentialsError (): string { return _(ldap_err2str(49)); } /*! * \brief Create a connection to LDAP server * * The string $error containts result of the connection */ function connect () {