edit !== false) { moduleToArray($this->edit, $data, $LDAPAUTH_COMMON_FIELDS); $data['title'] = $this->edit->title(); $data['edit'] = $this->edit->id(); } postToArray($data, $LDAPAUTH_COMMON_FIELDS, true); if (preg_match('/^(.*)\:(636|389)$/', $data['server'], $out)) { $data['server'] = $out[1]; } $data['step'] = 'LdapAuth_CheckConnection'; Render::addDialog(Dictionary::translate('config-module', 'ldapAuth_title'), false, 'ldap-start', $data); } } class LdapAuth_CheckConnection extends AddModule_Base { private $scanTask; private $server; protected function preprocessInternal() { $this->server = Request::post('server'); $searchbase = Request::post('searchbase'); $ssl = Request::post('ssl', 'off') === 'on'; if (empty($this->server) || empty($searchbase)) { Message::addError('main.empty-field'); AddModule_Base::setStep('LdapAuth_Start'); // Continues with LdapAuth_Start for render() return; } if (preg_match('/^([^\:]+)\:(\d+)$/', $this->server, $out)) { $ports = array($out[2]); $this->server = $out[1]; } elseif ($ssl) { $ports = array(636, 3269); } else { $ports = array(389, 3268); } $this->scanTask = Taskmanager::submit('PortScan', array( 'host' => $this->server, 'ports' => $ports, 'certificate' => Request::post('certificate', '') )); if (!isset($this->scanTask['id'])) { AddModule_Base::setStep('LdapAuth_Start'); // Continues with LdapAuth_Start for render() return; } } protected function renderInternal() { $data = array( 'edit' => Request::post('edit'), 'title' => Request::post('title'), 'server' => $this->server, 'searchbase' => Util::normalizeDn(Request::post('searchbase')), 'binddn' => Util::normalizeDn(Request::post('binddn')), 'bindpw' => Request::post('bindpw'), 'home' => Request::post('home'), 'ssl' => Request::post('ssl'), 'certificate' => Request::post('certificate', ''), 'taskid' => $this->scanTask['id'] ); $data['prev'] = 'LdapAuth_Start'; $data['next'] = 'LdapAuth_CheckCredentials'; Render::addDialog(Dictionary::translate('config-module', 'ldapAuth_title'), false, 'ad_ldap-checkconnection', $data); } } class LdapAuth_CheckCredentials extends AddModule_Base { private $taskIds; protected function preprocessInternal() { $server = Request::post('server'); $port = Request::post('port'); $searchbase = Request::post('searchbase', ''); $binddn = Request::post('binddn'); $bindpw = Request::post('bindpw'); $ssl = Request::post('ssl', 'off') === 'on'; if ($ssl && !Request::post('fingerprint')) { Message::addError('main.error-read', 'fingerprint'); AddModule_Base::setStep('LdapAuth_Start'); // Continues with LdapAuth_Start for render() return; } if (empty($server) || empty($port)) { Message::addError('main.empty-field'); AddModule_Base::setStep('LdapAuth_Start'); // Continues with LdapAuth_Start for render() return; } $parent = null; $server .= ':' . $port; if ($ssl) { $uri = "ldaps://$server/"; } else { $uri = "ldap://$server/"; } $ldapSearch = Taskmanager::submit('LdapSearch', array( 'parentTask' => $parent, 'server' => $uri, 'searchbase' => $searchbase, 'binddn' => $binddn, 'bindpw' => $bindpw, 'plainldap' => true, )); if (!isset($ldapSearch['id'])) { AddModule_Base::setStep('LdapAuth_Start'); // Continues with LdapAuth_Start for render() return; } $this->taskIds = array( 'tm-search' => $ldapSearch['id'] ); if (isset($selfSearch['id'])) $this->taskIds['self-search'] = $selfSearch['id']; } protected function renderInternal() { Render::addDialog(Dictionary::translate('config-module', 'ldapAuth_title'), false, 'ad_ldap-checkcredentials', array_merge($this->taskIds, array( 'edit' => Request::post('edit'), 'title' => Request::post('title'), 'server' => Request::post('server') . ':' . Request::post('port'), 'searchbase' => Request::post('searchbase'), 'binddn' => Request::post('binddn'), 'bindpw' => Request::post('bindpw'), 'home' => Request::post('home'), 'ssl' => Request::post('ssl') === 'on', 'fingerprint' => Request::post('fingerprint'), 'certificate' => Request::post('certificate', ''), 'prev' => 'LdapAuth_Start', 'next' => 'LdapAuth_Finish' )) ); } } class LdapAuth_Finish extends AddModule_Base { private $taskIds; protected function preprocessInternal() { $binddn = Request::post('binddn'); $searchbase = Request::post('searchbase'); $title = Request::post('title'); if (empty($title)) $title = 'LDAP: ' . Request::post('server'); if ($this->edit === false) $module = ConfigModule::getInstance('LdapAuth'); else $module = $this->edit; $somedn = Request::post('somedn', false); if (!empty($somedn)) { $i = stripos($somedn, $searchbase); if ($i !== false) { $searchbase = substr($somedn, $i, strlen($searchbase)); } } $ssl = Request::post('ssl', 'off') === 'on'; $module->setData('server', Request::post('server')); $module->setData('searchbase', $searchbase); $module->setData('binddn', $binddn); $module->setData('bindpw', Request::post('bindpw')); $module->setData('home', Request::post('home')); $module->setData('certificate', Request::post('certificate')); $module->setData('ssl', $ssl); if ($ssl) { $module->setData('fingerprint', Request::post('fingerprint', '')); } else { $module->setData('fingerprint', ''); } if ($this->edit !== false) $ret = $module->update($title); else $ret = $module->insert($title); if (!$ret) { Message::addError('main.value-invalid', 'any', 'any'); $tgz = false; } else { $parent = $this->stopOldInstance(); $tgz = $module->generate($this->edit === false, $parent); } if ($tgz === false) { AddModule_Base::setStep('LdapAuth_Start'); // Continues with LdapAuth_Start for render() return; } $this->taskIds = array( 'tm-config' => $tgz, ); } private function stopOldInstance() { if ($this->edit === false) return NULL; $list = ConfigTgz::getAllForModule($this->edit->id()); if (!is_array($list)) return NULL; $parent = NULL; foreach ($list as $tgz) { if (!$tgz->isActive()) continue; $task = Trigger::ldadp($tgz->id(), $parent); if (isset($task['id'])) $parent = $task['id']; } return $parent; } protected function renderInternal() { Render::addDialog(Dictionary::translate('config-module', 'ldapAuth_title'), false, 'ldap-finish', $this->taskIds); } }