| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/Multiple.php |
|---|
| New file |
| 0,0 → 1,188 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for using multiple storage drivers in a fall through fashion |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: Multiple.php,v 1.4 2007/06/12 03:11:26 aashley Exp $ |
| * @since File available since Release 1.5.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for using multiple storage drivers in a fall through fashion |
| * |
| * This storage driver provides a mechanism for working through multiple |
| * storage drivers until either one allows successful login or the list is |
| * exhausted. |
| * |
| * This container takes an array of options of the following form: |
| * |
| * array( |
| * array( |
| * 'type' => <standard container type name>, |
| * 'options' => <normal array of options for container>, |
| * ), |
| * ); |
| * |
| * Full example: |
| * |
| * $options = array( |
| * array( |
| * 'type' => 'DB', |
| * 'options' => array( |
| * 'dsn' => "mysql://user:password@localhost/database", |
| * ), |
| * ), |
| * array( |
| * 'type' => 'Array', |
| * 'options' => array( |
| * 'cryptType' => 'md5', |
| * 'users' => array( |
| * 'admin' => md5('password'), |
| * ), |
| * ), |
| * ), |
| * ); |
| * |
| * $auth = new Auth('Multiple', $options); |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.4 $ |
| * @since File available since Release 1.5.0 |
| */ |
| class Auth_Container_Multiple extends Auth_Container { |
| // {{{ properties |
| /** |
| * The options for each container |
| * |
| * @var array $options |
| */ |
| var $options = array(); |
| /** |
| * The instanciated containers |
| * |
| * @var array $containers |
| */ |
| var $containers = array(); |
| // }}} |
| // {{{ Auth_Container_Multiple() |
| /** |
| * Constructor for Array Container |
| * |
| * @param array $data Options for the container |
| * @return void |
| */ |
| function Auth_Container_Multiple($options) |
| { |
| if (!is_array($options)) { |
| PEAR::raiseError('The options for Auth_Container_Multiple must be an array'); |
| } |
| if (count($options) < 1) { |
| PEAR::raiseError('You must define at least one sub container to use in Auth_Container_Multiple'); |
| } |
| foreach ($options as $option) { |
| if (!isset($option['type'])) { |
| PEAR::raiseError('No type defined for sub container'); |
| } |
| } |
| $this->options = $options; |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from array |
| * |
| * This function uses the given username to fetch the corresponding |
| * login data from the array. If an account that matches the passed |
| * username and password is found, the function returns true. |
| * Otherwise it returns false. |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean|PEAR_Error Error object or boolean |
| */ |
| function fetchData($user, $pass) |
| { |
| $this->log('Auth_Container_Multiple::fetchData() called.', AUTH_LOG_DEBUG); |
| foreach ($this->options as $key => $options) { |
| $this->log('Using Container '.$key.' of type '.$options['type'].'.', AUTH_LOG_DEBUG); |
| if (isset($this->containers[$key]) && is_a($this->containers[$key], 'Auth_Container')) { |
| $container = &$this->containers[$key]; |
| } else { |
| $this->containers[$key] = &$this->_auth_obj->_factory($options['type'], $options['options']); |
| $this->containers[$key]->_auth_obj = &$this->_auth_obj; |
| $container = &$this->containers[$key]; |
| } |
| $result = $container->fetchData($user, $pass); |
| if (PEAR::isError($result)) { |
| $this->log('Container '.$key.': '.$result->getMessage(), AUTH_LOG_ERR); |
| return $result; |
| } elseif ($result == true) { |
| $this->log('Container '.$key.': Authentication successful.', AUTH_LOG_DEBUG); |
| return true; |
| } else { |
| $this->log('Container '.$key.': Authentication failed.', AUTH_LOG_DEBUG); |
| } |
| } |
| $this->log('Auth_Container_Multiple: All containers rejected user credentials.', AUTH_LOG_DEBUG); |
| return false; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/KADM5.php |
|---|
| New file |
| 0,0 → 1,171 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for Authentication on a Kerberos V server. |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Andrew Teixeira <ateixeira@gmail.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: KADM5.php,v 1.6 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.4.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR for error handling |
| */ |
| require_once 'PEAR.php'; |
| /** |
| * Storage driver for Authentication on a Kerberos V server. |
| * |
| * Available options: |
| * hostname: The hostname of the kerberos server |
| * realm: The Kerberos V realm |
| * timeout: The timeout for checking the server |
| * checkServer: Set to true to check if the server is running when |
| * constructing the object |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Andrew Teixeira <ateixeira@gmail.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.6 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.4.0 |
| */ |
| class Auth_Container_KADM5 extends Auth_Container { |
| // {{{ properties |
| /** |
| * Options for the class |
| * @var string |
| */ |
| var $options = array(); |
| // }}} |
| // {{{ Auth_Container_KADM5() |
| /** |
| * Constructor of the container class |
| * |
| * $options can have these keys: |
| * 'hostname' The hostname of the kerberos server |
| * 'realm' The Kerberos V realm |
| * 'timeout' The timeout for checking the server |
| * 'checkServer' Set to true to check if the server is running when |
| * constructing the object |
| * |
| * @param $options associative array |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_KADM5($options) { |
| if (!extension_loaded('kadm5')) { |
| return PEAR::raiseError("Cannot use Kerberos V authentication, KADM5 extension not loaded!", 41, PEAR_ERROR_DIE); |
| } |
| $this->_setDefaults(); |
| if (isset($options['hostname'])) { |
| $this->options['hostname'] = $options['hostname']; |
| } |
| if (isset($options['realm'])) { |
| $this->options['realm'] = $options['realm']; |
| } |
| if (isset($options['timeout'])) { |
| $this->options['timeout'] = $options['timeout']; |
| } |
| if (isset($options['checkServer'])) { |
| $this->options['checkServer'] = $options['checkServer']; |
| } |
| if ($this->options['checkServer']) { |
| $this->_checkServer(); |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Try to login to the KADM5 server |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean |
| */ |
| function fetchData($username, $password) { |
| $this->log('Auth_Container_KADM5::fetchData() called.', AUTH_LOG_DEBUG); |
| if ( ($username == NULL) || ($password == NULL) ) { |
| return false; |
| } |
| $server = $this->options['hostname']; |
| $realm = $this->options['realm']; |
| $check = @kadm5_init_with_password($server, $realm, $username, $password); |
| if ($check == false) { |
| return false; |
| } else { |
| return true; |
| } |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| */ |
| function _setDefaults() { |
| $this->options['hostname'] = 'localhost'; |
| $this->options['realm'] = NULL; |
| $this->options['timeout'] = 10; |
| $this->options['checkServer'] = false; |
| } |
| // }}} |
| // {{{ _checkServer() |
| /** |
| * Check if the given server and port are reachable |
| * |
| * @access private |
| */ |
| function _checkServer() { |
| $fp = @fsockopen ($this->options['hostname'], 88, $errno, $errstr, $this->options['timeout']); |
| if (is_resource($fp)) { |
| @fclose($fp); |
| } else { |
| $message = "Error connecting to Kerberos V server " |
| .$this->options['hostname'].":".$this->options['port']; |
| return PEAR::raiseError($message, 41, PEAR_ERROR_DIE); |
| } |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/MDB.php |
|---|
| New file |
| 0,0 → 1,625 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against PEAR MDB |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Lorenzo Alberton <l.alberton@quipo.it> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: MDB.php,v 1.37 2008/04/04 07:57:02 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.3 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR MDB package |
| */ |
| require_once 'MDB.php'; |
| /** |
| * Storage driver for fetching login data from a database |
| * |
| * This storage driver can use all databases which are supported |
| * by the PEAR MDB abstraction layer to fetch login data. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Lorenzo Alberton <l.alberton@quipo.it> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.37 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.2.3 |
| */ |
| class Auth_Container_MDB extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Additional options for the storage container |
| * @var array |
| */ |
| var $options = array(); |
| /** |
| * MDB object |
| * @var object |
| */ |
| var $db = null; |
| var $dsn = ''; |
| /** |
| * User that is currently selected from the DB. |
| * @var string |
| */ |
| var $activeUser = ''; |
| // }}} |
| // {{{ Auth_Container_MDB() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * Initate connection to the database via PEAR::MDB |
| * |
| * @param string Connection data or MDB object |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_MDB($dsn) |
| { |
| $this->_setDefaults(); |
| if (is_array($dsn)) { |
| $this->_parseOptions($dsn); |
| if (empty($this->options['dsn'])) { |
| PEAR::raiseError('No connection parameters specified!'); |
| } |
| } else { |
| $this->options['dsn'] = $dsn; |
| } |
| } |
| // }}} |
| // {{{ _connect() |
| /** |
| * Connect to database by using the given DSN string |
| * |
| * @access private |
| * @param mixed DSN string | array | mdb object |
| * @return mixed Object on error, otherwise bool |
| */ |
| function _connect($dsn) |
| { |
| $this->log('Auth_Container_MDB::_connect() called.', AUTH_LOG_DEBUG); |
| if (is_string($dsn) || is_array($dsn)) { |
| $this->db =& MDB::connect($dsn, $this->options['db_options']); |
| } elseif (is_subclass_of($dsn, 'mdb_common')) { |
| $this->db = $dsn; |
| } elseif (is_object($dsn) && MDB::isError($dsn)) { |
| return PEAR::raiseError($dsn->getMessage(), $dsn->code); |
| } else { |
| return PEAR::raiseError('The given dsn was not valid in file ' . __FILE__ . ' at line ' . __LINE__, |
| 41, |
| PEAR_ERROR_RETURN, |
| null, |
| null |
| ); |
| } |
| if (MDB::isError($this->db) || PEAR::isError($this->db)) { |
| return PEAR::raiseError($this->db->getMessage(), $this->db->code); |
| } |
| if ($this->options['auto_quote']) { |
| if (strpos('.', $this->options['table']) === false) { |
| $this->options['final_table'] = $this->db->quoteIdentifier($this->options['table']); |
| } else { |
| $t = explode('.', $this->options['table']); |
| for ($i = 0, $count = count($t); $i < $count; $i++) |
| $t[$i] = $this->db->quoteIdentifier($t[$i]); |
| $this->options['final_table'] = implode('.', $t); |
| } |
| $this->options['final_usernamecol'] = $this->db->quoteIdentifier($this->options['usernamecol']); |
| $this->options['final_passwordcol'] = $this->db->quoteIdentifier($this->options['passwordcol']); |
| } else { |
| $this->options['final_table'] = $this->options['table']; |
| $this->options['final_usernamecol'] = $this->options['usernamecol']; |
| $this->options['final_passwordcol'] = $this->options['passwordcol']; |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _prepare() |
| /** |
| * Prepare database connection |
| * |
| * This function checks if we have already opened a connection to |
| * the database. If that's not the case, a new connection is opened. |
| * |
| * @access private |
| * @return mixed True or a MDB error object. |
| */ |
| function _prepare() |
| { |
| if (is_subclass_of($this->db, 'mdb_common')) { |
| return true; |
| } |
| return $this->_connect($this->options['dsn']); |
| } |
| // }}} |
| // {{{ query() |
| /** |
| * Prepare query to the database |
| * |
| * This function checks if we have already opened a connection to |
| * the database. If that's not the case, a new connection is opened. |
| * After that the query is passed to the database. |
| * |
| * @access public |
| * @param string Query string |
| * @return mixed a MDB_result object or MDB_OK on success, a MDB |
| * or PEAR error on failure |
| */ |
| function query($query) |
| { |
| $this->log('Auth_Container_MDB::query() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return $err; |
| } |
| return $this->db->query($query); |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| * @return void |
| */ |
| function _setDefaults() |
| { |
| $this->options['table'] = 'auth'; |
| $this->options['usernamecol'] = 'username'; |
| $this->options['passwordcol'] = 'password'; |
| $this->options['dsn'] = ''; |
| $this->options['db_fields'] = ''; |
| $this->options['cryptType'] = 'md5'; |
| $this->options['db_options'] = array(); |
| $this->options['db_where'] = ''; |
| $this->options['auto_quote'] = true; |
| } |
| // }}} |
| // {{{ _parseOptions() |
| /** |
| * Parse options passed to the container class |
| * |
| * @access private |
| * @param array |
| */ |
| function _parseOptions($array) |
| { |
| foreach ($array as $key => $value) { |
| if (isset($this->options[$key])) { |
| $this->options[$key] = $value; |
| } |
| } |
| } |
| // }}} |
| // {{{ _quoteDBFields() |
| /** |
| * Quote the db_fields option to avoid the possibility of SQL injection. |
| * |
| * @access private |
| * @return string A properly quoted string that can be concatenated into a |
| * SELECT clause. |
| */ |
| function _quoteDBFields() |
| { |
| if (isset($this->options['db_fields'])) { |
| if (is_array($this->options['db_fields'])) { |
| if ($this->options['auto_quote']) { |
| $fields = array(); |
| foreach ($this->options['db_fields'] as $field) { |
| $fields[] = $this->db->quoteIdentifier($field); |
| } |
| return implode(', ', $fields); |
| } else { |
| return implode(', ', $this->options['db_fields']); |
| } |
| } else { |
| if (strlen($this->options['db_fields']) > 0) { |
| if ($this->options['auto_quote']) { |
| return $this->db->quoteIdentifier($this->options['db_fields']); |
| } else { |
| return $this->options['db_fields']; |
| } |
| } |
| } |
| } |
| return ''; |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from database |
| * |
| * This function uses the given username to fetch |
| * the corresponding login data from the database |
| * table. If an account that matches the passed username |
| * and password is found, the function returns true. |
| * Otherwise it returns false. |
| * |
| * @param string Username |
| * @param string Password |
| * @param boolean If true password is secured using a md5 hash |
| * the frontend and auth are responsible for making sure the container supports |
| * challenge response password authentication |
| * @return mixed Error object or boolean |
| */ |
| function fetchData($username, $password, $isChallengeResponse=false) |
| { |
| $this->log('Auth_Container_MDB::fetchData() called.', AUTH_LOG_DEBUG); |
| // Prepare for a database query |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| //Check if db_fields contains a *, if so assume all columns are selected |
| if (is_string($this->options['db_fields']) |
| && strstr($this->options['db_fields'], '*')) { |
| $sql_from = '*'; |
| } else { |
| $sql_from = $this->options['final_usernamecol']. |
| ", ".$this->options['final_passwordcol']; |
| if (strlen($fields = $this->_quoteDBFields()) > 0) { |
| $sql_from .= ', '.$fields; |
| } |
| } |
| $query = sprintf("SELECT %s FROM %s WHERE %s = %s", |
| $sql_from, |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->db->getTextValue($username) |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->db->getRow($query, null, null, null, MDB_FETCHMODE_ASSOC); |
| if (MDB::isError($res) || PEAR::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } |
| if (!is_array($res)) { |
| $this->activeUser = ''; |
| return false; |
| } |
| // Perform trimming here before the hashing |
| $password = trim($password, "\r\n"); |
| $res[$this->options['passwordcol']] = trim($res[$this->options['passwordcol']], "\r\n"); |
| // If using Challenge Response md5 the pass with the secret |
| if ($isChallengeResponse) { |
| $res[$this->options['passwordcol']] = |
| md5($res[$this->options['passwordcol']].$this->_auth_obj->session['loginchallenege']); |
| // UGLY cannot avoid without modifying verifyPassword |
| if ($this->options['cryptType'] == 'md5') { |
| $res[$this->options['passwordcol']] = md5($res[$this->options['passwordcol']]); |
| } |
| } |
| if ($this->verifyPassword($password, |
| $res[$this->options['passwordcol']], |
| $this->options['cryptType'])) { |
| // Store additional field values in the session |
| foreach ($res as $key => $value) { |
| if ($key == $this->options['passwordcol'] || |
| $key == $this->options['usernamecol']) { |
| continue; |
| } |
| $this->log('Storing additional field: '.$key, AUTH_LOG_DEBUG); |
| // Use reference to the auth object if exists |
| // This is because the auth session variable can change so a static |
| // call to setAuthData does not make sense |
| $this->_auth_obj->setAuthData($key, $value); |
| } |
| return true; |
| } |
| $this->activeUser = $res[$this->options['usernamecol']]; |
| return false; |
| } |
| // }}} |
| // {{{ listUsers() |
| /** |
| * Returns a list of users from the container |
| * |
| * @return mixed array|PEAR_Error |
| * @access public |
| */ |
| function listUsers() |
| { |
| $this->log('Auth_Container_MDB::listUsers() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| $retVal = array(); |
| //Check if db_fields contains a *, if so assume all columns are selected |
| if ( is_string($this->options['db_fields']) |
| && strstr($this->options['db_fields'], '*')) { |
| $sql_from = '*'; |
| } else { |
| $sql_from = $this->options['final_usernamecol'] |
| .', '.$this->options['final_passwordcol']; |
| if (strlen($fields = $this->_quoteDBFields()) > 0) { |
| $sql_from .= ', '.$fields; |
| } |
| } |
| $query = sprintf('SELECT %s FROM %s', |
| $sql_from, |
| $this->options['final_table'] |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " WHERE ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->db->getAll($query, null, null, null, MDB_FETCHMODE_ASSOC); |
| if (MDB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } else { |
| foreach ($res as $user) { |
| $user['username'] = $user[$this->options['usernamecol']]; |
| $retVal[] = $user; |
| } |
| } |
| $this->log('Found '.count($retVal).' users.', AUTH_LOG_DEBUG); |
| return $retVal; |
| } |
| // }}} |
| // {{{ addUser() |
| /** |
| * Add user to the storage container |
| * |
| * @access public |
| * @param string Username |
| * @param string Password |
| * @param mixed Additional information that are stored in the DB |
| * |
| * @return mixed True on success, otherwise error object |
| */ |
| function addUser($username, $password, $additional = "") |
| { |
| $this->log('Auth_Container_MDB::addUser() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| if (isset($this->options['cryptType']) && $this->options['cryptType'] == 'none') { |
| $cryptFunction = 'strval'; |
| } elseif (isset($this->options['cryptType']) && function_exists($this->options['cryptType'])) { |
| $cryptFunction = $this->options['cryptType']; |
| } else { |
| $cryptFunction = 'md5'; |
| } |
| $password = $cryptFunction($password); |
| $additional_key = ''; |
| $additional_value = ''; |
| if (is_array($additional)) { |
| foreach ($additional as $key => $value) { |
| if ($this->options['auto_quote']) { |
| $additional_key .= ', ' . $this->db->quoteIdentifier($key); |
| } else { |
| $additional_key .= ', ' . $key; |
| } |
| $additional_value .= ', ' . $this->db->getTextValue($value); |
| } |
| } |
| $query = sprintf("INSERT INTO %s (%s, %s%s) VALUES (%s, %s%s)", |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->options['final_passwordcol'], |
| $additional_key, |
| $this->db->getTextValue($username), |
| $this->db->getTextValue($password), |
| $additional_value |
| ); |
| $this->log('Running SQL against MDB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (MDB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->code); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ removeUser() |
| /** |
| * Remove user from the storage container |
| * |
| * @access public |
| * @param string Username |
| * |
| * @return mixed True on success, otherwise error object |
| */ |
| function removeUser($username) |
| { |
| $this->log('Auth_Container_MDB::removeUser() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| $query = sprintf("DELETE FROM %s WHERE %s = %s", |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->db->getTextValue($username) |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (MDB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->code); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ changePassword() |
| /** |
| * Change password for user in the storage container |
| * |
| * @param string Username |
| * @param string The new password (plain text) |
| */ |
| function changePassword($username, $password) |
| { |
| $this->log('Auth_Container_MDB::changePassword() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| if (isset($this->options['cryptType']) && $this->options['cryptType'] == 'none') { |
| $cryptFunction = 'strval'; |
| } elseif (isset($this->options['cryptType']) && function_exists($this->options['cryptType'])) { |
| $cryptFunction = $this->options['cryptType']; |
| } else { |
| $cryptFunction = 'md5'; |
| } |
| $password = $cryptFunction($password); |
| $query = sprintf("UPDATE %s SET %s = %s WHERE %s = %s", |
| $this->options['final_table'], |
| $this->options['final_passwordcol'], |
| $this->db->getTextValue($password), |
| $this->options['final_usernamecol'], |
| $this->db->getTextValue($username) |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (MDB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->code); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ supportsChallengeResponse() |
| /** |
| * Determine if this container supports |
| * password authentication with challenge response |
| * |
| * @return bool |
| * @access public |
| */ |
| function supportsChallengeResponse() |
| { |
| return in_array($this->options['cryptType'], array('md5', 'none', '')); |
| } |
| // }}} |
| // {{{ getCryptType() |
| /** |
| * Returns the selected crypt type for this container |
| * |
| * @return string Function used to crypt the password |
| */ |
| function getCryptType() |
| { |
| return $this->options['cryptType']; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/NetVPOPMaild.php |
|---|
| New file |
| 0,0 → 1,129 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use with a Vpopmaild server |
| * |
| * PHP versions 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Bill Shupp <hostmaster@shupp.org> |
| * @author Stefan Ekman <stekman@sedata.org> |
| * @author Martin Jansen <mj@php.net> |
| * @author Mika Tuupola <tuupola@appelsiini.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once 'PEAR.php'; |
| /** |
| * Include PEAR Net_Vpopmaild package |
| */ |
| require_once 'Net/Vpopmaild.php'; |
| /** |
| * Storage driver for Authentication on a Vpopmaild server. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Martin Jansen <mj@php.net> |
| * @author Mika Tuupola <tuupola@appelsiini.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.5.4 File: $Revision: 1.1 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.6.0 |
| */ |
| class Auth_Container_Vpopmaild extends Auth_Container |
| { |
| /** |
| * Vpopmaild Server |
| * @var string |
| */ |
| var $server = 'localhost'; |
| /** |
| * Vpopmaild Server port |
| * @var string |
| */ |
| var $port = 89; |
| /** |
| * Constructor of the container class |
| * |
| * @param $server string server or server:port combination |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_Vpopmaild($server=null) |
| { |
| if (isset($server) && !is_null($server)) { |
| if (is_array($server)) { |
| if (isset($server['host'])) { |
| $this->server = $server['host']; |
| } |
| if (isset($server['port'])) { |
| $this->port = $server['port']; |
| } |
| } else { |
| if (strstr($server, ':')) { |
| $serverparts = explode(':', trim($server)); |
| $this->server = $serverparts[0]; |
| $this->port = $serverparts[1]; |
| } else { |
| $this->server = $server; |
| } |
| } |
| } |
| } |
| /** |
| * fetchData() |
| * |
| * Try to login to the Vpopmaild server |
| * |
| * @param string username |
| * @param string password |
| * |
| * @return boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_Vpopmaild::fetchData() called.', AUTH_LOG_DEBUG); |
| $vpopmaild =& new Net_Vpopmaild(); |
| // Connect |
| try { |
| $res = $vpopmaild->connect($this->server, $this->port, $this->method); |
| } catch (Net_Vpopmaild_FatalException $e) { |
| $this->log('Connection to Vpopmaild server failed.', AUTH_LOG_DEBUG); |
| return PEAR::raiseError($e->getMessage(), $e->getCode()); |
| } |
| // Authenticate |
| try { |
| $result = $vpopmaild->clogin($username, $password); |
| $vpopmaild->quit(); |
| } catch (Net_Vpopmaild_Exception $e) { |
| return PEAR::raiseError($e->getMessage(), $e->getCode()); |
| } |
| return $result; |
| } |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/SOAP.php |
|---|
| New file |
| 0,0 → 1,229 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against a SOAP service |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Bruno Pedro <bpedro@co.sapo.pt> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: SOAP.php,v 1.13 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Include PEAR SOAP_Client |
| */ |
| require_once 'SOAP/Client.php'; |
| /** |
| * Storage driver for fetching login data from SOAP |
| * |
| * This class takes one parameter (options), where |
| * you specify the following fields: endpoint, namespace, |
| * method, encoding, usernamefield and passwordfield. |
| * |
| * You can use specify features of your SOAP service |
| * by providing its parameters in an associative manner by |
| * using the '_features' array through the options parameter. |
| * |
| * The 'matchpassword' option should be set to false if your |
| * webservice doesn't return (username,password) pairs, but |
| * instead returns error when the login is invalid. |
| * |
| * Example usage: |
| * |
| * <?php |
| * |
| * ... |
| * |
| * $options = array ( |
| * 'endpoint' => 'http://your.soap.service/endpoint', |
| * 'namespace' => 'urn:/Your/Namespace', |
| * 'method' => 'get', |
| * 'encoding' => 'UTF-8', |
| * 'usernamefield' => 'login', |
| * 'passwordfield' => 'password', |
| * 'matchpasswords' => false, |
| * '_features' => array ( |
| * 'example_feature' => 'example_value', |
| * 'another_example' => '' |
| * ) |
| * ); |
| * $auth = new Auth('SOAP', $options, 'loginFunction'); |
| * $auth->start(); |
| * |
| * ... |
| * |
| * ?> |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Bruno Pedro <bpedro@co.sapo.pt> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.13 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.2.0 |
| */ |
| class Auth_Container_SOAP extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Required options for the class |
| * @var array |
| * @access private |
| */ |
| var $_requiredOptions = array( |
| 'endpoint', |
| 'namespace', |
| 'method', |
| 'encoding', |
| 'usernamefield', |
| 'passwordfield', |
| ); |
| /** |
| * Options for the class |
| * @var array |
| * @access private |
| */ |
| var $_options = array(); |
| /** |
| * Optional SOAP features |
| * @var array |
| * @access private |
| */ |
| var $_features = array(); |
| /** |
| * The SOAP response |
| * @var array |
| * @access public |
| */ |
| var $soapResponse = array(); |
| /** |
| * The SOAP client |
| * @var mixed |
| * @access public |
| */ |
| var $soapClient = null; |
| // }}} |
| // {{{ Auth_Container_SOAP() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * @param $options, associative array with endpoint, namespace, method, |
| * usernamefield, passwordfield and optional features |
| */ |
| function Auth_Container_SOAP($options) |
| { |
| $this->_options = $options; |
| if (!isset($this->_options['matchpasswords'])) { |
| $this->_options['matchpasswords'] = true; |
| } |
| if (!empty($this->_options['_features'])) { |
| $this->_features = $this->_options['_features']; |
| unset($this->_options['_features']); |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Fetch data from SOAP service |
| * |
| * Requests the SOAP service for the given username/password |
| * combination. |
| * |
| * @param string Username |
| * @param string Password |
| * @return mixed Returns the SOAP response or false if something went wrong |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_SOAP::fetchData() called.', AUTH_LOG_DEBUG); |
| // check if all required options are set |
| if (array_intersect($this->_requiredOptions, array_keys($this->_options)) != $this->_requiredOptions) { |
| return false; |
| } else { |
| // create a SOAP client and set encoding |
| $this->soapClient = new SOAP_Client($this->_options['endpoint']); |
| $this->soapClient->setEncoding($this->_options['encoding']); |
| } |
| // set the trace option if requested |
| if (isset($this->_options['trace'])) { |
| $this->soapClient->__options['trace'] = true; |
| } |
| // set the timeout option if requested |
| if (isset($this->_options['timeout'])) { |
| $this->soapClient->__options['timeout'] = $this->_options['timeout']; |
| } |
| // assign username and password fields |
| $usernameField = new SOAP_Value($this->_options['usernamefield'],'string', $username); |
| $passwordField = new SOAP_Value($this->_options['passwordfield'],'string', $password); |
| $SOAPParams = array($usernameField, $passwordField); |
| // assign optional features |
| foreach ($this->_features as $fieldName => $fieldValue) { |
| $SOAPParams[] = new SOAP_Value($fieldName, 'string', $fieldValue); |
| } |
| // make SOAP call |
| $this->soapResponse = $this->soapClient->call( |
| $this->_options['method'], |
| $SOAPParams, |
| array('namespace' => $this->_options['namespace']) |
| ); |
| if (!PEAR::isError($this->soapResponse)) { |
| if ($this->_options['matchpasswords']) { |
| // check if passwords match |
| if ($password == $this->soapResponse->{$this->_options['passwordfield']}) { |
| return true; |
| } else { |
| return false; |
| } |
| } else { |
| return true; |
| } |
| } else { |
| return false; |
| } |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/SMBPasswd.php |
|---|
| New file |
| 0,0 → 1,182 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against Samba password files |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Michael Bretterklieber <michael@bretterklieber.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: SMBPasswd.php,v 1.8 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.3 |
| */ |
| /** |
| * Include PEAR File_SMBPasswd |
| */ |
| require_once "File/SMBPasswd.php"; |
| /** |
| * Include Auth_Container Base file |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR class for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for fetching login data from an SAMBA smbpasswd file. |
| * |
| * This storage container can handle SAMBA smbpasswd files. |
| * |
| * Example: |
| * $a = new Auth("SMBPasswd", '/usr/local/private/smbpasswd'); |
| * $a->start(); |
| * if ($a->getAuth()) { |
| * printf ("AUTH OK<br>\n"); |
| * $a->logout(); |
| * } |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Michael Bretterklieber <michael@bretterklieber.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @package Auth |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.8 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.2.3 |
| */ |
| class Auth_Container_SMBPasswd extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * File_SMBPasswd object |
| * @var object |
| */ |
| var $pwfile; |
| // }}} |
| // {{{ Auth_Container_SMBPasswd() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * @param $filename string filename for a passwd type file |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_SMBPasswd($filename) |
| { |
| $this->pwfile = new File_SMBPasswd($filename,0); |
| if (!$this->pwfile->load()) { |
| PEAR::raiseError("Error while reading file contents.", 41, PEAR_ERROR_DIE); |
| return; |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from pwfile |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_SMBPasswd::fetchData() called.', AUTH_LOG_DEBUG); |
| return $this->pwfile->verifyAccount($username, $password); |
| } |
| // }}} |
| // {{{ listUsers() |
| function listUsers() |
| { |
| $this->log('Auth_Container_SMBPasswd::fetchData() called.', AUTH_LOG_DEBUG); |
| return $this->pwfile->getAccounts(); |
| } |
| // }}} |
| // {{{ addUser() |
| /** |
| * Add a new user to the storage container |
| * |
| * @param string Username |
| * @param string Password |
| * @param array Additional information |
| * |
| * @return boolean |
| */ |
| function addUser($username, $password, $additional = '') |
| { |
| $this->log('Auth_Container_SMBPasswd::addUser() called.', AUTH_LOG_DEBUG); |
| $res = $this->pwfile->addUser($user, $additional['userid'], $pass); |
| if ($res === true) { |
| return $this->pwfile->save(); |
| } |
| return $res; |
| } |
| // }}} |
| // {{{ removeUser() |
| /** |
| * Remove user from the storage container |
| * |
| * @param string Username |
| */ |
| function removeUser($username) |
| { |
| $this->log('Auth_Container_SMBPasswd::removeUser() called.', AUTH_LOG_DEBUG); |
| $res = $this->pwfile->delUser($username); |
| if ($res === true) { |
| return $this->pwfile->save(); |
| } |
| return $res; |
| } |
| // }}} |
| // {{{ changePassword() |
| /** |
| * Change password for user in the storage container |
| * |
| * @param string Username |
| * @param string The new password |
| */ |
| function changePassword($username, $password) |
| { |
| $this->log('Auth_Container_SMBPasswd::changePassword() called.', AUTH_LOG_DEBUG); |
| $res = $this->pwfile->modUser($username, '', $password); |
| if ($res === true) { |
| return $this->pwfile->save(); |
| } |
| return $res; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/DBLite.php |
|---|
| New file |
| 0,0 → 1,320 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Reduced storage driver for use against PEAR DB |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Martin Jansen <mj@php.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: DBLite.php,v 1.20 2008/04/04 07:57:02 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.3.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR DB package |
| */ |
| require_once 'DB.php'; |
| /** |
| * A lighter storage driver for fetching login data from a database |
| * |
| * This driver is derived from the DB storage container but |
| * with the user manipulation function removed for smaller file size |
| * by the PEAR DB abstraction layer to fetch login data. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Martin Jansen <mj@php.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.20 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.3.0 |
| */ |
| class Auth_Container_DBLite extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Additional options for the storage container |
| * @var array |
| */ |
| var $options = array(); |
| /** |
| * DB object |
| * @var object |
| */ |
| var $db = null; |
| var $dsn = ''; |
| /** |
| * User that is currently selected from the DB. |
| * @var string |
| */ |
| var $activeUser = ''; |
| // }}} |
| // {{{ Auth_Container_DBLite() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * Initate connection to the database via PEAR::DB |
| * |
| * @param string Connection data or DB object |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_DBLite($dsn) |
| { |
| $this->options['table'] = 'auth'; |
| $this->options['usernamecol'] = 'username'; |
| $this->options['passwordcol'] = 'password'; |
| $this->options['dsn'] = ''; |
| $this->options['db_fields'] = ''; |
| $this->options['cryptType'] = 'md5'; |
| $this->options['db_options'] = array(); |
| $this->options['db_where'] = ''; |
| $this->options['auto_quote'] = true; |
| if (is_array($dsn)) { |
| $this->_parseOptions($dsn); |
| if (empty($this->options['dsn'])) { |
| PEAR::raiseError('No connection parameters specified!'); |
| } |
| } else { |
| $this->options['dsn'] = $dsn; |
| } |
| } |
| // }}} |
| // {{{ _connect() |
| /** |
| * Connect to database by using the given DSN string |
| * |
| * @access private |
| * @param string DSN string |
| * @return mixed Object on error, otherwise bool |
| */ |
| function _connect(&$dsn) |
| { |
| $this->log('Auth_Container_DBLite::_connect() called.', AUTH_LOG_DEBUG); |
| if (is_string($dsn) || is_array($dsn)) { |
| $this->db =& DB::connect($dsn, $this->options['db_options']); |
| } elseif (is_subclass_of($dsn, "db_common")) { |
| $this->db =& $dsn; |
| } else { |
| return PEAR::raiseError("Invalid dsn or db object given"); |
| } |
| if (DB::isError($this->db) || PEAR::isError($this->db)) { |
| return PEAR::raiseError($this->db->getMessage(), $this->db->getCode()); |
| } else { |
| return true; |
| } |
| } |
| // }}} |
| // {{{ _prepare() |
| /** |
| * Prepare database connection |
| * |
| * This function checks if we have already opened a connection to |
| * the database. If that's not the case, a new connection is opened. |
| * |
| * @access private |
| * @return mixed True or a DB error object. |
| */ |
| function _prepare() |
| { |
| if (!DB::isConnection($this->db)) { |
| $res = $this->_connect($this->options['dsn']); |
| if (DB::isError($res) || PEAR::isError($res)) { |
| return $res; |
| } |
| } |
| if ($this->options['auto_quote'] && $this->db->dsn['phptype'] != 'sqlite') { |
| if (strpos('.', $this->options['table']) === false) { |
| $this->options['final_table'] = $this->db->quoteIdentifier($this->options['table']); |
| } else { |
| $t = explode('.', $this->options['table']); |
| for ($i = 0, $count = count($t); $i < $count; $i++) |
| $t[$i] = $this->db->quoteIdentifier($t[$i]); |
| $this->options['final_table'] = implode('.', $t); |
| } |
| $this->options['final_usernamecol'] = $this->db->quoteIdentifier($this->options['usernamecol']); |
| $this->options['final_passwordcol'] = $this->db->quoteIdentifier($this->options['passwordcol']); |
| } else { |
| $this->options['final_table'] = $this->options['table']; |
| $this->options['final_usernamecol'] = $this->options['usernamecol']; |
| $this->options['final_passwordcol'] = $this->options['passwordcol']; |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _parseOptions() |
| /** |
| * Parse options passed to the container class |
| * |
| * @access private |
| * @param array |
| */ |
| function _parseOptions($array) |
| { |
| foreach ($array as $key => $value) { |
| if (isset($this->options[$key])) { |
| $this->options[$key] = $value; |
| } |
| } |
| } |
| // }}} |
| // {{{ _quoteDBFields() |
| /** |
| * Quote the db_fields option to avoid the possibility of SQL injection. |
| * |
| * @access private |
| * @return string A properly quoted string that can be concatenated into a |
| * SELECT clause. |
| */ |
| function _quoteDBFields() |
| { |
| if (isset($this->options['db_fields'])) { |
| if (is_array($this->options['db_fields'])) { |
| if ($this->options['auto_quote']) { |
| $fields = array(); |
| foreach ($this->options['db_fields'] as $field) { |
| $fields[] = $this->db->quoteIdentifier($field); |
| } |
| return implode(', ', $fields); |
| } else { |
| return implode(', ', $this->options['db_fields']); |
| } |
| } else { |
| if (strlen($this->options['db_fields']) > 0) { |
| if ($this->options['auto_quote']) { |
| return $this->db->quoteIdentifier($this->options['db_fields']); |
| } else { |
| $this->options['db_fields']; |
| } |
| } |
| } |
| } |
| return ''; |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from database |
| * |
| * This function uses the given username to fetch |
| * the corresponding login data from the database |
| * table. If an account that matches the passed username |
| * and password is found, the function returns true. |
| * Otherwise it returns false. |
| * |
| * @param string Username |
| * @param string Password |
| * @return mixed Error object or boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_DBLite::fetchData() called.', AUTH_LOG_DEBUG); |
| // Prepare for a database query |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| // Find if db_fields contains a *, if so assume all col are selected |
| if (is_string($this->options['db_fields']) |
| && strstr($this->options['db_fields'], '*')) { |
| $sql_from = "*"; |
| } else { |
| $sql_from = $this->options['final_usernamecol']. |
| ", ".$this->options['final_passwordcol']; |
| if (strlen($fields = $this->_quoteDBFields()) > 0) { |
| $sql_from .= ', '.$fields; |
| } |
| } |
| $query = "SELECT ".$sql_from. |
| " FROM ".$this->options['final_table']. |
| " WHERE ".$this->options['final_usernamecol']." = ".$this->db->quoteSmart($username); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against DB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->db->getRow($query, null, DB_FETCHMODE_ASSOC); |
| if (DB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } |
| if (!is_array($res)) { |
| $this->activeUser = ''; |
| return false; |
| } |
| if ($this->verifyPassword(trim($password, "\r\n"), |
| trim($res[$this->options['passwordcol']], "\r\n"), |
| $this->options['cryptType'])) { |
| // Store additional field values in the session |
| foreach ($res as $key => $value) { |
| if ($key == $this->options['passwordcol'] || |
| $key == $this->options['usernamecol']) { |
| continue; |
| } |
| $this->log('Storing additional field: '.$key, AUTH_LOG_DEBUG); |
| // Use reference to the auth object if exists |
| // This is because the auth session variable can change so a static call to setAuthData does not make sence |
| if (is_object($this->_auth_obj)) { |
| $this->_auth_obj->setAuthData($key, $value); |
| } else { |
| Auth::setAuthData($key, $value); |
| } |
| } |
| $this->activeUser = $res[$this->options['usernamecol']]; |
| return true; |
| } |
| $this->activeUser = $res[$this->options['usernamecol']]; |
| return false; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/Array.php |
|---|
| New file |
| 0,0 → 1,161 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against a PHP Array |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author georg_1 at have2 dot com |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: Array.php,v 1.5 2007/06/12 03:11:26 aashley Exp $ |
| * @since File available since Release 1.4.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for fetching authentication data from a PHP Array |
| * |
| * This container takes two options when configuring: |
| * |
| * cryptType: The crypt used to store the password. Currently recognised |
| * are: none, md5 and crypt. default: none |
| * users: A named array of usernames and passwords. |
| * Ex: |
| * array( |
| * 'guest' => '084e0343a0486ff05530df6c705c8bb4', // password guest |
| * 'georg' => 'fc77dba827fcc88e0243404572c51325' // password georg |
| * ) |
| * |
| * Usage Example: |
| * <?php |
| * $AuthOptions = array( |
| * 'users' => array( |
| * 'guest' => '084e0343a0486ff05530df6c705c8bb4', // password guest |
| * 'georg' => 'fc77dba827fcc88e0243404572c51325' // password georg |
| * ), |
| * 'cryptType'=>'md5', |
| * ); |
| * |
| * $auth = new Auth("Array", $AuthOptions); |
| * ?> |
| * |
| * @category Authentication |
| * @package Auth |
| * @author georg_1 at have2 dot com |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.5 $ |
| * @since File available since Release 1.4.0 |
| */ |
| class Auth_Container_Array extends Auth_Container { |
| // {{{ properties |
| /** |
| * The users and their password to authenticate against |
| * |
| * @var array $users |
| */ |
| var $users; |
| /** |
| * The cryptType used on the passwords |
| * |
| * @var string $cryptType |
| */ |
| var $cryptType = 'none'; |
| // }}} |
| // {{{ Auth_Container_Array() |
| /** |
| * Constructor for Array Container |
| * |
| * @param array $data Options for the container |
| * @return void |
| */ |
| function Auth_Container_Array($data) |
| { |
| if (!is_array($data)) { |
| PEAR::raiseError('The options for Auth_Container_Array must be an array'); |
| } |
| if (isset($data['users']) && is_array($data['users'])) { |
| $this->users = $data['users']; |
| } else { |
| $this->users = array(); |
| PEAR::raiseError('Auth_Container_Array: no user data found in options array'); |
| } |
| if (isset($data['cryptType'])) { |
| $this->cryptType = $data['cryptType']; |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from array |
| * |
| * This function uses the given username to fetch the corresponding |
| * login data from the array. If an account that matches the passed |
| * username and password is found, the function returns true. |
| * Otherwise it returns false. |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean|PEAR_Error Error object or boolean |
| */ |
| function fetchData($user, $pass) |
| { |
| $this->log('Auth_Container_Array::fetchData() called.', AUTH_LOG_DEBUG); |
| if ( isset($this->users[$user]) |
| && $this->verifyPassword($pass, $this->users[$user], $this->cryptType)) { |
| return true; |
| } |
| return false; |
| } |
| // }}} |
| // {{{ listUsers() |
| /** |
| * Returns a list of users available within the container |
| * |
| * @return array |
| */ |
| function listUsers() |
| { |
| $this->log('Auth_Container_Array::listUsers() called.', AUTH_LOG_DEBUG); |
| $ret = array(); |
| foreach ($this->users as $username => $password) { |
| $ret[]['username'] = $username; |
| } |
| return $ret; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/File.php |
|---|
| New file |
| 0,0 → 1,314 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against a generic password file |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Stefan Ekman <stekman@sedata.org> |
| * @author Martin Jansen <mj@php.net> |
| * @author Mika Tuupola <tuupola@appelsiini.net> |
| * @author Michael Wallner <mike@php.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: File.php,v 1.25 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| */ |
| /** |
| * Include PEAR File_Passwd package |
| */ |
| require_once "File/Passwd.php"; |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for fetching login data from an encrypted password file. |
| * |
| * This storage container can handle CVS pserver style passwd files. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Stefan Ekman <stekman@sedata.org> |
| * @author Martin Jansen <mj@php.net> |
| * @author Mika Tuupola <tuupola@appelsiini.net> |
| * @author Michael Wallner <mike@php.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.25 $ |
| * @link http://pear.php.net/package/Auth |
| */ |
| class Auth_Container_File extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Path to passwd file |
| * |
| * @var string |
| */ |
| var $pwfile = ''; |
| /** |
| * Options for container |
| * |
| * @var array |
| */ |
| var $options = array(); |
| // }}} |
| // {{{ Auth_Container_File() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * @param string $filename path to passwd file |
| * @return object Auth_Container_File new Auth_Container_File object |
| */ |
| function Auth_Container_File($filename) { |
| $this->_setDefaults(); |
| // Only file is a valid option here |
| if(is_array($filename)) { |
| $this->pwfile = $filename['file']; |
| $this->_parseOptions($filename); |
| } else { |
| $this->pwfile = $filename; |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Authenticate an user |
| * |
| * @param string username |
| * @param string password |
| * @return mixed boolean|PEAR_Error |
| */ |
| function fetchData($user, $pass) |
| { |
| $this->log('Auth_Container_File::fetchData() called.', AUTH_LOG_DEBUG); |
| return File_Passwd::staticAuth($this->options['type'], $this->pwfile, $user, $pass); |
| } |
| // }}} |
| // {{{ listUsers() |
| /** |
| * List all available users |
| * |
| * @return array |
| */ |
| function listUsers() |
| { |
| $this->log('Auth_Container_File::listUsers() called.', AUTH_LOG_DEBUG); |
| $pw_obj = &$this->_load(); |
| if (PEAR::isError($pw_obj)) { |
| return array(); |
| } |
| $users = $pw_obj->listUser(); |
| if (!is_array($users)) { |
| return array(); |
| } |
| foreach ($users as $key => $value) { |
| $retVal[] = array("username" => $key, |
| "password" => $value['passwd'], |
| "cvsuser" => $value['system']); |
| } |
| $this->log('Found '.count($retVal).' users.', AUTH_LOG_DEBUG); |
| return $retVal; |
| } |
| // }}} |
| // {{{ addUser() |
| /** |
| * Add a new user to the storage container |
| * |
| * @param string username |
| * @param string password |
| * @param mixed Additional parameters to File_Password_*::addUser() |
| * |
| * @return boolean |
| */ |
| function addUser($user, $pass, $additional='') |
| { |
| $this->log('Auth_Container_File::addUser() called.', AUTH_LOG_DEBUG); |
| $params = array($user, $pass); |
| if (is_array($additional)) { |
| foreach ($additional as $item) { |
| $params[] = $item; |
| } |
| } else { |
| $params[] = $additional; |
| } |
| $pw_obj = &$this->_load(); |
| if (PEAR::isError($pw_obj)) { |
| return false; |
| } |
| $res = call_user_func_array(array(&$pw_obj, 'addUser'), $params); |
| if (PEAR::isError($res)) { |
| return false; |
| } |
| $res = $pw_obj->save(); |
| if (PEAR::isError($res)) { |
| return false; |
| } |
| return true; |
| } |
| // }}} |
| // {{{ removeUser() |
| /** |
| * Remove user from the storage container |
| * |
| * @param string Username |
| * @return boolean |
| */ |
| function removeUser($user) |
| { |
| $this->log('Auth_Container_File::removeUser() called.', AUTH_LOG_DEBUG); |
| $pw_obj = &$this->_load(); |
| if (PEAR::isError($pw_obj)) { |
| return false; |
| } |
| $res = $pw_obj->delUser($user); |
| if (PEAR::isError($res)) { |
| return false; |
| } |
| $res = $pw_obj->save(); |
| if (PEAR::isError($res)) { |
| return false; |
| } |
| return true; |
| } |
| // }}} |
| // {{{ changePassword() |
| /** |
| * Change password for user in the storage container |
| * |
| * @param string Username |
| * @param string The new password |
| */ |
| function changePassword($username, $password) |
| { |
| $this->log('Auth_Container_File::changePassword() called.', AUTH_LOG_DEBUG); |
| $pw_obj = &$this->_load(); |
| if (PEAR::isError($pw_obj)) { |
| return false; |
| } |
| $res = $pw_obj->changePasswd($username, $password); |
| if (PEAR::isError($res)) { |
| return false; |
| } |
| $res = $pw_obj->save(); |
| if (PEAR::isError($res)) { |
| return false; |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _load() |
| /** |
| * Load and initialize the File_Passwd object |
| * |
| * @return object File_Passwd_Cvs|PEAR_Error |
| */ |
| function &_load() |
| { |
| static $pw_obj; |
| if (!isset($pw_obj)) { |
| $this->log('Instanciating File_Password object of type '.$this->options['type'], AUTH_LOG_DEBUG); |
| $pw_obj = File_Passwd::factory($this->options['type']); |
| if (PEAR::isError($pw_obj)) { |
| return $pw_obj; |
| } |
| $pw_obj->setFile($this->pwfile); |
| $res = $pw_obj->load(); |
| if (PEAR::isError($res)) { |
| return $res; |
| } |
| } |
| return $pw_obj; |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| * @return void |
| */ |
| function _setDefaults() |
| { |
| $this->options['type'] = 'Cvs'; |
| } |
| // }}} |
| // {{{ _parseOptions() |
| /** |
| * Parse options passed to the container class |
| * |
| * @access private |
| * @param array |
| */ |
| function _parseOptions($array) |
| { |
| foreach ($array as $key => $value) { |
| if (isset($this->options[$key])) { |
| $this->options[$key] = $value; |
| } |
| } |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/LDAP.php |
|---|
| New file |
| 0,0 → 1,766 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against an LDAP server |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Jan Wagner <wagner@netsols.de> |
| * @author Adam Ashley <aashley@php.net> |
| * @author Hugues Peeters <hugues.peeters@claroline.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: LDAP.php,v 1.43 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for fetching login data from LDAP |
| * |
| * This class is heavily based on the DB and File containers. By default it |
| * connects to localhost:389 and searches for uid=$username with the scope |
| * "sub". If no search base is specified, it will try to determine it via |
| * the namingContexts attribute. It takes its parameters in a hash, connects |
| * to the ldap server, binds anonymously, searches for the user, and tries |
| * to bind as the user with the supplied password. When a group was set, it |
| * will look for group membership of the authenticated user. If all goes |
| * well the authentication was successful. |
| * |
| * Parameters: |
| * |
| * host: localhost (default), ldap.netsols.de or 127.0.0.1 |
| * port: 389 (default) or 636 or whereever your server runs |
| * url: ldap://localhost:389/ |
| * useful for ldaps://, works only with openldap2 ? |
| * it will be preferred over host and port |
| * version: LDAP version to use, ususally 2 (default) or 3, |
| * must be an integer! |
| * referrals: If set, determines whether the LDAP library automatically |
| * follows referrals returned by LDAP servers or not. Possible |
| * values are true (default) or false. |
| * binddn: If set, searching for user will be done after binding |
| * as this user, if not set the bind will be anonymous. |
| * This is reported to make the container work with MS |
| * Active Directory, but should work with any server that |
| * is configured this way. |
| * This has to be a complete dn for now (basedn and |
| * userdn will not be appended). |
| * bindpw: The password to use for binding with binddn |
| * basedn: the base dn of your server |
| * userdn: gets prepended to basedn when searching for user |
| * userscope: Scope for user searching: one, sub (default), or base |
| * userattr: the user attribute to search for (default: uid) |
| * userfilter: filter that will be added to the search filter |
| * this way: (&(userattr=username)(userfilter)) |
| * default: (objectClass=posixAccount) |
| * attributes: array of additional attributes to fetch from entry. |
| * these will added to auth data and can be retrieved via |
| * Auth::getAuthData(). An empty array will fetch all attributes, |
| * array('') will fetch no attributes at all (default) |
| * If you add 'dn' as a value to this array, the users DN that was |
| * used for binding will be added to auth data as well. |
| * attrformat: The returned format of the additional data defined in the |
| * 'attributes' option. Two formats are available. |
| * LDAP returns data formatted in a |
| * multidimensional array where each array starts with a |
| * 'count' element providing the number of attributes in the |
| * entry, or the number of values for attributes. When set |
| * to this format, the only way to retrieve data from the |
| * Auth object is by calling getAuthData('attributes'). |
| * AUTH returns data formatted in a |
| * structure more compliant with other Auth Containers, |
| * where each attribute element can be directly called by |
| * getAuthData() method from Auth. |
| * For compatibily with previous LDAP container versions, |
| * the default format is LDAP. |
| * groupdn: gets prepended to basedn when searching for group |
| * groupattr: the group attribute to search for (default: cn) |
| * groupfilter: filter that will be added to the search filter when |
| * searching for a group: |
| * (&(groupattr=group)(memberattr=username)(groupfilter)) |
| * default: (objectClass=groupOfUniqueNames) |
| * memberattr : the attribute of the group object where the user dn |
| * may be found (default: uniqueMember) |
| * memberisdn: whether the memberattr is the dn of the user (default) |
| * or the value of userattr (usually uid) |
| * group: the name of group to search for |
| * groupscope: Scope for group searching: one, sub (default), or base |
| * start_tls: enable/disable the use of START_TLS encrypted connection |
| * (default: false) |
| * debug: Enable/Disable debugging output (default: false) |
| * try_all: Whether to try all user accounts returned from the search |
| * or just the first one. (default: false) |
| * |
| * To use this storage container, you have to use the following syntax: |
| * |
| * <?php |
| * ... |
| * |
| * $a1 = new Auth("LDAP", array( |
| * 'host' => 'localhost', |
| * 'port' => '389', |
| * 'version' => 3, |
| * 'basedn' => 'o=netsols,c=de', |
| * 'userattr' => 'uid' |
| * 'binddn' => 'cn=admin,o=netsols,c=de', |
| * 'bindpw' => 'password')); |
| * |
| * $a2 = new Auth('LDAP', array( |
| * 'url' => 'ldaps://ldap.netsols.de', |
| * 'basedn' => 'o=netsols,c=de', |
| * 'userscope' => 'one', |
| * 'userdn' => 'ou=People', |
| * 'groupdn' => 'ou=Groups', |
| * 'groupfilter' => '(objectClass=posixGroup)', |
| * 'memberattr' => 'memberUid', |
| * 'memberisdn' => false, |
| * 'group' => 'admin' |
| * )); |
| * |
| * $a3 = new Auth('LDAP', array( |
| * 'host' => 'ldap.netsols.de', |
| * 'port' => 389, |
| * 'version' => 3, |
| * 'referrals' => false, |
| * 'basedn' => 'dc=netsols,dc=de', |
| * 'binddn' => 'cn=Jan Wagner,cn=Users,dc=netsols,dc=de', |
| * 'bindpw' => 'password', |
| * 'userattr' => 'samAccountName', |
| * 'userfilter' => '(objectClass=user)', |
| * 'attributes' => array(''), |
| * 'group' => 'testing', |
| * 'groupattr' => 'samAccountName', |
| * 'groupfilter' => '(objectClass=group)', |
| * 'memberattr' => 'member', |
| * 'memberisdn' => true, |
| * 'groupdn' => 'cn=Users', |
| * 'groupscope' => 'one', |
| * 'debug' => true); |
| * |
| * The parameter values have to correspond |
| * to the ones for your LDAP server of course. |
| * |
| * When talking to a Microsoft ActiveDirectory server you have to |
| * use 'samaccountname' as the 'userattr' and follow special rules |
| * to translate the ActiveDirectory directory names into 'basedn'. |
| * The 'basedn' for the default 'Users' folder on an ActiveDirectory |
| * server for the ActiveDirectory Domain (which is not related to |
| * its DNS name) "win2000.example.org" would be: |
| * "CN=Users, DC=win2000, DC=example, DC=org' |
| * where every component of the domain name becomes a DC attribute |
| * of its own. If you want to use a custom users folder you have to |
| * replace "CN=Users" with a sequence of "OU" attributes that specify |
| * the path to your custom folder in reverse order. |
| * So the ActiveDirectory folder |
| * "win2000.example.org\Custom\Accounts" |
| * would become |
| * "OU=Accounts, OU=Custom, DC=win2000, DC=example, DC=org' |
| * |
| * It seems that binding anonymously to an Active Directory |
| * is not allowed, so you have to set binddn and bindpw for |
| * user searching. |
| * |
| * LDAP Referrals need to be set to false for AD to work sometimes. |
| * |
| * Example a3 shows a full blown and tested example for connection to |
| * Windows 2000 Active Directory with group mebership checking |
| * |
| * Note also that if you want an encrypted connection to an MS LDAP |
| * server, then, on your webserver, you must specify |
| * TLS_REQCERT never |
| * in /etc/ldap/ldap.conf or in the webserver user's ~/.ldaprc (which |
| * may or may not be read depending on your configuration). |
| * |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Jan Wagner <wagner@netsols.de> |
| * @author Adam Ashley <aashley@php.net> |
| * @author Hugues Peeters <hugues.peeters@claroline.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.43 $ |
| * @link http://pear.php.net/package/Auth |
| */ |
| class Auth_Container_LDAP extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Options for the class |
| * @var array |
| */ |
| var $options = array(); |
| /** |
| * Connection ID of LDAP Link |
| * @var string |
| */ |
| var $conn_id = false; |
| // }}} |
| // {{{ Auth_Container_LDAP() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * @param $params, associative hash with host,port,basedn and userattr key |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_LDAP($params) |
| { |
| if (false === extension_loaded('ldap')) { |
| return PEAR::raiseError('Auth_Container_LDAP: LDAP Extension not loaded', |
| 41, PEAR_ERROR_DIE); |
| } |
| $this->_setDefaults(); |
| if (is_array($params)) { |
| $this->_parseOptions($params); |
| } |
| } |
| // }}} |
| // {{{ _prepare() |
| /** |
| * Prepare LDAP connection |
| * |
| * This function checks if we have already opened a connection to |
| * the LDAP server. If that's not the case, a new connection is opened. |
| * |
| * @access private |
| * @return mixed True or a PEAR error object. |
| */ |
| function _prepare() |
| { |
| if (!$this->_isValidLink()) { |
| $res = $this->_connect(); |
| if (PEAR::isError($res)) { |
| return $res; |
| } |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _connect() |
| /** |
| * Connect to the LDAP server using the global options |
| * |
| * @access private |
| * @return object Returns a PEAR error object if an error occurs. |
| */ |
| function _connect() |
| { |
| $this->log('Auth_Container_LDAP::_connect() called.', AUTH_LOG_DEBUG); |
| // connect |
| if (isset($this->options['url']) && $this->options['url'] != '') { |
| $this->log('Connecting with URL', AUTH_LOG_DEBUG); |
| $conn_params = array($this->options['url']); |
| } else { |
| $this->log('Connecting with host:port', AUTH_LOG_DEBUG); |
| $conn_params = array($this->options['host'], $this->options['port']); |
| } |
| if (($this->conn_id = @call_user_func_array('ldap_connect', $conn_params)) === false) { |
| $this->log('Connection to server failed.', AUTH_LOG_DEBUG); |
| $this->log('LDAP ERROR: '.ldap_errno($this->conn_id).': '.ldap_error($this->conn_id), AUTH_LOG_DEBUG); |
| return PEAR::raiseError('Auth_Container_LDAP: Could not connect to server.', 41); |
| } |
| $this->log('Successfully connected to server', AUTH_LOG_DEBUG); |
| // switch LDAP version |
| if (is_numeric($this->options['version']) && $this->options['version'] > 2) { |
| $this->log("Switching to LDAP version {$this->options['version']}", AUTH_LOG_DEBUG); |
| @ldap_set_option($this->conn_id, LDAP_OPT_PROTOCOL_VERSION, $this->options['version']); |
| // start TLS if available |
| if (isset($this->options['start_tls']) && $this->options['start_tls']) { |
| $this->log("Starting TLS session", AUTH_LOG_DEBUG); |
| if (@ldap_start_tls($this->conn_id) === false) { |
| $this->log('Could not start TLS session', AUTH_LOG_DEBUG); |
| $this->log('LDAP ERROR: '.ldap_errno($this->conn_id).': '.ldap_error($this->conn_id), AUTH_LOG_DEBUG); |
| return PEAR::raiseError('Auth_Container_LDAP: Could not start tls.', 41); |
| } |
| } |
| } |
| // switch LDAP referrals |
| if (is_bool($this->options['referrals'])) { |
| $this->log("Switching LDAP referrals to " . (($this->options['referrals']) ? 'true' : 'false'), AUTH_LOG_DEBUG); |
| if (@ldap_set_option($this->conn_id, LDAP_OPT_REFERRALS, $this->options['referrals']) === false) { |
| $this->log('Could not change LDAP referrals options', AUTH_LOG_DEBUG); |
| $this->log('LDAP ERROR: '.ldap_errno($this->conn_id).': '.ldap_error($this->conn_id), AUTH_LOG_DEBUG); |
| } |
| } |
| // bind with credentials or anonymously |
| if (strlen($this->options['binddn']) && strlen($this->options['bindpw'])) { |
| $this->log('Binding with credentials', AUTH_LOG_DEBUG); |
| $bind_params = array($this->conn_id, $this->options['binddn'], $this->options['bindpw']); |
| } else { |
| $this->log('Binding anonymously', AUTH_LOG_DEBUG); |
| $bind_params = array($this->conn_id); |
| } |
| // bind for searching |
| if ((@call_user_func_array('ldap_bind', $bind_params)) === false) { |
| $this->log('Bind failed', AUTH_LOG_DEBUG); |
| $this->log('LDAP ERROR: '.ldap_errno($this->conn_id).': '.ldap_error($this->conn_id), AUTH_LOG_DEBUG); |
| $this->_disconnect(); |
| return PEAR::raiseError("Auth_Container_LDAP: Could not bind to LDAP server.", 41); |
| } |
| $this->log('Binding was successful', AUTH_LOG_DEBUG); |
| return true; |
| } |
| // }}} |
| // {{{ _disconnect() |
| /** |
| * Disconnects (unbinds) from ldap server |
| * |
| * @access private |
| */ |
| function _disconnect() |
| { |
| $this->log('Auth_Container_LDAP::_disconnect() called.', AUTH_LOG_DEBUG); |
| if ($this->_isValidLink()) { |
| $this->log('disconnecting from server'); |
| @ldap_unbind($this->conn_id); |
| } |
| } |
| // }}} |
| // {{{ _getBaseDN() |
| /** |
| * Tries to find Basedn via namingContext Attribute |
| * |
| * @access private |
| */ |
| function _getBaseDN() |
| { |
| $this->log('Auth_Container_LDAP::_getBaseDN() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| if ($this->options['basedn'] == "" && $this->_isValidLink()) { |
| $this->log("basedn not set, searching via namingContexts.", AUTH_LOG_DEBUG); |
| $result_id = @ldap_read($this->conn_id, "", "(objectclass=*)", array("namingContexts")); |
| if (@ldap_count_entries($this->conn_id, $result_id) == 1) { |
| $this->log("got result for namingContexts", AUTH_LOG_DEBUG); |
| $entry_id = @ldap_first_entry($this->conn_id, $result_id); |
| $attrs = @ldap_get_attributes($this->conn_id, $entry_id); |
| $basedn = $attrs['namingContexts'][0]; |
| if ($basedn != "") { |
| $this->log("result for namingContexts was $basedn", AUTH_LOG_DEBUG); |
| $this->options['basedn'] = $basedn; |
| } |
| } |
| @ldap_free_result($result_id); |
| } |
| // if base ist still not set, raise error |
| if ($this->options['basedn'] == "") { |
| return PEAR::raiseError("Auth_Container_LDAP: LDAP search base not specified!", 41); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _isValidLink() |
| /** |
| * determines whether there is a valid ldap conenction or not |
| * |
| * @accessd private |
| * @return boolean |
| */ |
| function _isValidLink() |
| { |
| if (is_resource($this->conn_id)) { |
| if (get_resource_type($this->conn_id) == 'ldap link') { |
| return true; |
| } |
| } |
| return false; |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| */ |
| function _setDefaults() |
| { |
| $this->options['url'] = ''; |
| $this->options['host'] = 'localhost'; |
| $this->options['port'] = '389'; |
| $this->options['version'] = 2; |
| $this->options['referrals'] = true; |
| $this->options['binddn'] = ''; |
| $this->options['bindpw'] = ''; |
| $this->options['basedn'] = ''; |
| $this->options['userdn'] = ''; |
| $this->options['userscope'] = 'sub'; |
| $this->options['userattr'] = 'uid'; |
| $this->options['userfilter'] = '(objectClass=posixAccount)'; |
| $this->options['attributes'] = array(''); // no attributes |
| $this->options['attrformat'] = 'AUTH'; // returns attribute like other Auth containers |
| $this->options['group'] = ''; |
| $this->options['groupdn'] = ''; |
| $this->options['groupscope'] = 'sub'; |
| $this->options['groupattr'] = 'cn'; |
| $this->options['groupfilter'] = '(objectClass=groupOfUniqueNames)'; |
| $this->options['memberattr'] = 'uniqueMember'; |
| $this->options['memberisdn'] = true; |
| $this->options['start_tls'] = false; |
| $this->options['debug'] = false; |
| $this->options['try_all'] = false; // Try all user ids returned not just the first one |
| } |
| // }}} |
| // {{{ _parseOptions() |
| /** |
| * Parse options passed to the container class |
| * |
| * @access private |
| * @param array |
| */ |
| function _parseOptions($array) |
| { |
| $array = $this->_setV12OptionsToV13($array); |
| foreach ($array as $key => $value) { |
| if (array_key_exists($key, $this->options)) { |
| if ($key == 'attributes') { |
| if (is_array($value)) { |
| $this->options[$key] = $value; |
| } else { |
| $this->options[$key] = explode(',', $value); |
| } |
| } else { |
| $this->options[$key] = $value; |
| } |
| } |
| } |
| } |
| // }}} |
| // {{{ _setV12OptionsToV13() |
| /** |
| * Adapt deprecated options from Auth 1.2 LDAP to Auth 1.3 LDAP |
| * |
| * @author Hugues Peeters <hugues.peeters@claroline.net> |
| * @access private |
| * @param array |
| * @return array |
| */ |
| function _setV12OptionsToV13($array) |
| { |
| if (isset($array['useroc'])) |
| $array['userfilter'] = "(objectClass=".$array['useroc'].")"; |
| if (isset($array['groupoc'])) |
| $array['groupfilter'] = "(objectClass=".$array['groupoc'].")"; |
| if (isset($array['scope'])) |
| $array['userscope'] = $array['scope']; |
| return $array; |
| } |
| // }}} |
| // {{{ _scope2function() |
| /** |
| * Get search function for scope |
| * |
| * @param string scope |
| * @return string ldap search function |
| */ |
| function _scope2function($scope) |
| { |
| switch($scope) { |
| case 'one': |
| $function = 'ldap_list'; |
| break; |
| case 'base': |
| $function = 'ldap_read'; |
| break; |
| default: |
| $function = 'ldap_search'; |
| break; |
| } |
| return $function; |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Fetch data from LDAP server |
| * |
| * Searches the LDAP server for the given username/password |
| * combination. Escapes all LDAP meta characters in username |
| * before performing the query. |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_LDAP::fetchData() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| $err = $this->_getBaseDN(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| // UTF8 Encode username for LDAPv3 |
| if (@ldap_get_option($this->conn_id, LDAP_OPT_PROTOCOL_VERSION, $ver) && $ver == 3) { |
| $this->log('UTF8 encoding username for LDAPv3', AUTH_LOG_DEBUG); |
| $username = utf8_encode($username); |
| } |
| // make search filter |
| $filter = sprintf('(&(%s=%s)%s)', |
| $this->options['userattr'], |
| $this->_quoteFilterString($username), |
| $this->options['userfilter']); |
| // make search base dn |
| $search_basedn = $this->options['userdn']; |
| if ($search_basedn != '' && substr($search_basedn, -1) != ',') { |
| $search_basedn .= ','; |
| } |
| $search_basedn .= $this->options['basedn']; |
| // attributes |
| $searchAttributes = $this->options['attributes']; |
| // make functions params array |
| $func_params = array($this->conn_id, $search_basedn, $filter, $searchAttributes); |
| // search function to use |
| $func_name = $this->_scope2function($this->options['userscope']); |
| $this->log("Searching with $func_name and filter $filter in $search_basedn", AUTH_LOG_DEBUG); |
| // search |
| if (($result_id = @call_user_func_array($func_name, $func_params)) === false) { |
| $this->log('User not found', AUTH_LOG_DEBUG); |
| } elseif (@ldap_count_entries($this->conn_id, $result_id) >= 1) { // did we get some possible results? |
| $this->log('User(s) found', AUTH_LOG_DEBUG); |
| $first = true; |
| $entry_id = null; |
| do { |
| // then get the user dn |
| if ($first) { |
| $entry_id = @ldap_first_entry($this->conn_id, $result_id); |
| $first = false; |
| } else { |
| $entry_id = @ldap_next_entry($this->conn_id, $entry_id); |
| if ($entry_id === false) |
| break; |
| } |
| $user_dn = @ldap_get_dn($this->conn_id, $entry_id); |
| // as the dn is not fetched as an attribute, we save it anyway |
| if (is_array($searchAttributes) && in_array('dn', $searchAttributes)) { |
| $this->log('Saving DN to AuthData', AUTH_LOG_DEBUG); |
| $this->_auth_obj->setAuthData('dn', $user_dn); |
| } |
| // fetch attributes |
| if ($attributes = @ldap_get_attributes($this->conn_id, $entry_id)) { |
| if (is_array($attributes) && isset($attributes['count']) && |
| $attributes['count'] > 0) { |
| // ldap_get_attributes() returns a specific multi dimensional array |
| // format containing all the attributes and where each array starts |
| // with a 'count' element providing the number of attributes in the |
| // entry, or the number of values for attribute. For compatibility |
| // reasons, it remains the default format returned by LDAP container |
| // setAuthData(). |
| // The code below optionally returns attributes in another format, |
| // more compliant with other Auth containers, where each attribute |
| // element are directly set in the 'authData' list. This option is |
| // enabled by setting 'attrformat' to |
| // 'AUTH' in the 'options' array. |
| // eg. $this->options['attrformat'] = 'AUTH' |
| if ( strtoupper($this->options['attrformat']) == 'AUTH' ) { |
| $this->log('Saving attributes to Auth data in AUTH format', AUTH_LOG_DEBUG); |
| unset ($attributes['count']); |
| foreach ($attributes as $attributeName => $attributeValue ) { |
| if (is_int($attributeName)) continue; |
| if (is_array($attributeValue) && isset($attributeValue['count'])) { |
| unset ($attributeValue['count']); |
| } |
| if (count($attributeValue)<=1) $attributeValue = $attributeValue[0]; |
| $this->log('Storing additional field: '.$attributeName, AUTH_LOG_DEBUG); |
| $this->_auth_obj->setAuthData($attributeName, $attributeValue); |
| } |
| } |
| else |
| { |
| $this->log('Saving attributes to Auth data in LDAP format', AUTH_LOG_DEBUG); |
| $this->_auth_obj->setAuthData('attributes', $attributes); |
| } |
| } |
| } |
| @ldap_free_result($result_id); |
| // need to catch an empty password as openldap seems to return TRUE |
| // if anonymous binding is allowed |
| if ($password != "") { |
| $this->log("Bind as $user_dn", AUTH_LOG_DEBUG); |
| // try binding as this user with the supplied password |
| if (@ldap_bind($this->conn_id, $user_dn, $password)) { |
| $this->log('Bind successful', AUTH_LOG_DEBUG); |
| // check group if appropiate |
| if (strlen($this->options['group'])) { |
| // decide whether memberattr value is a dn or the username |
| $this->log('Checking group membership', AUTH_LOG_DEBUG); |
| $return = $this->checkGroup(($this->options['memberisdn']) ? $user_dn : $username); |
| $this->_disconnect(); |
| return $return; |
| } else { |
| $this->log('Authenticated', AUTH_LOG_DEBUG); |
| $this->_disconnect(); |
| return true; // user authenticated |
| } // checkGroup |
| } // bind |
| } // non-empty password |
| } while ($this->options['try_all'] == true); // interate through entries |
| } // get results |
| // default |
| $this->log('NOT authenticated!', AUTH_LOG_DEBUG); |
| $this->_disconnect(); |
| return false; |
| } |
| // }}} |
| // {{{ checkGroup() |
| /** |
| * Validate group membership |
| * |
| * Searches the LDAP server for group membership of the |
| * supplied username. Quotes all LDAP filter meta characters in |
| * the user name before querying the LDAP server. |
| * |
| * @param string Distinguished Name of the authenticated User |
| * @return boolean |
| */ |
| function checkGroup($user) |
| { |
| $this->log('Auth_Container_LDAP::checkGroup() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| // make filter |
| $filter = sprintf('(&(%s=%s)(%s=%s)%s)', |
| $this->options['groupattr'], |
| $this->options['group'], |
| $this->options['memberattr'], |
| $this->_quoteFilterString($user), |
| $this->options['groupfilter']); |
| // make search base dn |
| $search_basedn = $this->options['groupdn']; |
| if ($search_basedn != '' && substr($search_basedn, -1) != ',') { |
| $search_basedn .= ','; |
| } |
| $search_basedn .= $this->options['basedn']; |
| $func_params = array($this->conn_id, $search_basedn, $filter, |
| array($this->options['memberattr'])); |
| $func_name = $this->_scope2function($this->options['groupscope']); |
| $this->log("Searching with $func_name and filter $filter in $search_basedn", AUTH_LOG_DEBUG); |
| // search |
| if (($result_id = @call_user_func_array($func_name, $func_params)) != false) { |
| if (@ldap_count_entries($this->conn_id, $result_id) == 1) { |
| @ldap_free_result($result_id); |
| $this->log('User is member of group', AUTH_LOG_DEBUG); |
| return true; |
| } |
| } |
| // default |
| $this->log('User is NOT member of group', AUTH_LOG_DEBUG); |
| return false; |
| } |
| // }}} |
| // {{{ _quoteFilterString() |
| /** |
| * Escapes LDAP filter special characters as defined in RFC 2254. |
| * |
| * @access private |
| * @param string Filter String |
| */ |
| function _quoteFilterString($filter_str) |
| { |
| $metas = array( '\\', '*', '(', ')', "\x00"); |
| $quoted_metas = array('\\\\', '\*', '\(', '\)', "\\\x00"); |
| return str_replace($metas, $quoted_metas, $filter_str); |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/POP3.php |
|---|
| New file |
| 0,0 → 1,145 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against a POP3 server |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Stefan Ekman <stekman@sedata.org> |
| * @author Martin Jansen <mj@php.net> |
| * @author Mika Tuupola <tuupola@appelsiini.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: POP3.php,v 1.12 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once 'PEAR.php'; |
| /** |
| * Include PEAR Net_POP3 package |
| */ |
| require_once 'Net/POP3.php'; |
| /** |
| * Storage driver for Authentication on a POP3 server. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Martin Jansen <mj@php.net> |
| * @author Mika Tuupola <tuupola@appelsiini.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.12 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.2.0 |
| */ |
| class Auth_Container_POP3 extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * POP3 Server |
| * @var string |
| */ |
| var $server='localhost'; |
| /** |
| * POP3 Server port |
| * @var string |
| */ |
| var $port='110'; |
| /** |
| * POP3 Authentication method |
| * |
| * Prefered POP3 authentication method. Acceptable values: |
| * Boolean TRUE - Use Net_POP3's autodetection |
| * String 'DIGEST-MD5','CRAM-MD5','LOGIN','PLAIN','APOP','USER' |
| * - Attempt this authentication style first |
| * then fallback to autodetection. |
| * @var mixed |
| */ |
| var $method=true; |
| // }}} |
| // {{{ Auth_Container_POP3() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * @param $server string server or server:port combination |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_POP3($server=null) |
| { |
| if (isset($server) && !is_null($server)) { |
| if (is_array($server)) { |
| if (isset($server['host'])) { |
| $this->server = $server['host']; |
| } |
| if (isset($server['port'])) { |
| $this->port = $server['port']; |
| } |
| if (isset($server['method'])) { |
| $this->method = $server['method']; |
| } |
| } else { |
| if (strstr($server, ':')) { |
| $serverparts = explode(':', trim($server)); |
| $this->server = $serverparts[0]; |
| $this->port = $serverparts[1]; |
| } else { |
| $this->server = $server; |
| } |
| } |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Try to login to the POP3 server |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_POP3::fetchData() called.', AUTH_LOG_DEBUG); |
| $pop3 =& new Net_POP3(); |
| $res = $pop3->connect($this->server, $this->port, $this->method); |
| if (!$res) { |
| $this->log('Connection to POP3 server failed.', AUTH_LOG_DEBUG); |
| return $res; |
| } |
| $result = $pop3->login($username, $password); |
| $pop3->disconnect(); |
| return $result; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/SAP.php |
|---|
| New file |
| 0,0 → 1,179 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against a SAP system using the SAPRFC PHP extension. |
| * |
| * Requires the SAPRFC ext available at http://saprfc.sourceforge.net/ |
| * |
| * PHP version 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Stoyan Stefanov <ssttoo@gmail.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: SAP.php,v 1.5 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.4.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR for error handling |
| */ |
| require_once 'PEAR.php'; |
| /** |
| * Performs authentication against a SAP system using the SAPRFC PHP extension. |
| * |
| * When the option GETSSO2 is TRUE (default) |
| * the Single Sign-On (SSO) ticket is retrieved |
| * and stored as an Auth attribute called 'sap' |
| * in order to be reused for consecutive connections. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Stoyan Stefanov <ssttoo@gmail.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.5 $ |
| * @since Class available since Release 1.4.0 |
| */ |
| class Auth_Container_SAP extends Auth_Container { |
| // {{{ properties |
| /** |
| * @var array Default options |
| */ |
| var $options = array( |
| 'CLIENT' => '000', |
| 'LANG' => 'EN', |
| 'GETSSO2' => true, |
| ); |
| // }}} |
| // {{{ Auth_Container_SAP() |
| /** |
| * Class constructor. Checks that required options |
| * are present and that the SAPRFC extension is loaded |
| * |
| * Options that can be passed and their defaults: |
| * <pre> |
| * array( |
| * 'ASHOST' => "", |
| * 'SYSNR' => "", |
| * 'CLIENT' => "000", |
| * 'GWHOST' =>"", |
| * 'GWSERV' =>"", |
| * 'MSHOST' =>"", |
| * 'R3NAME' =>"", |
| * 'GROUP' =>"", |
| * 'LANG' =>"EN", |
| * 'TRACE' =>"", |
| * 'GETSSO2'=> true |
| * ) |
| * </pre> |
| * |
| * @param array array of options. |
| * @return void |
| */ |
| function Auth_Container_SAP($options) |
| { |
| $saprfc_loaded = PEAR::loadExtension('saprfc'); |
| if (!$saprfc_loaded) { |
| return PEAR::raiseError('Cannot use SAP authentication, ' |
| .'SAPRFC extension not loaded!'); |
| } |
| if (empty($options['R3NAME']) && empty($options['ASHOST'])) { |
| return PEAR::raiseError('R3NAME or ASHOST required for authentication'); |
| } |
| $this->options = array_merge($this->options, $options); |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Performs username and password check |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean TRUE on success (valid user), FALSE otherwise |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_SAP::fetchData() called.', AUTH_LOG_DEBUG); |
| $connection_options = $this->options; |
| $connection_options['USER'] = $username; |
| $connection_options['PASSWD'] = $password; |
| $rfc = saprfc_open($connection_options); |
| if (!$rfc) { |
| $message = "Couldn't connect to the SAP system."; |
| $error = $this->getError(); |
| if ($error['message']) { |
| $message .= ': ' . $error['message']; |
| } |
| PEAR::raiseError($message, null, null, null, @$erorr['all']); |
| return false; |
| } else { |
| if (!empty($this->options['GETSSO2'])) { |
| $this->log('Attempting to retrieve SSO2 ticket.', AUTH_LOG_DEBUG); |
| if ($ticket = @saprfc_get_ticket($rfc)) { |
| $this->options['MYSAPSSO2'] = $ticket; |
| unset($this->options['GETSSO2']); |
| $this->_auth_obj->setAuthData('sap', $this->options); |
| } else { |
| PEAR::raiseError("SSO ticket retrieval failed"); |
| } |
| } |
| @saprfc_close($rfc); |
| return true; |
| } |
| } |
| // }}} |
| // {{{ getError() |
| /** |
| * Retrieves the last error from the SAP connection |
| * and returns it as an array. |
| * |
| * @return array Array of error information |
| */ |
| function getError() |
| { |
| $error = array(); |
| $sap_error = saprfc_error(); |
| if (empty($err)) { |
| return $error; |
| } |
| $err = explode("n", $sap_error); |
| foreach ($err AS $line) { |
| $item = split(':', $line); |
| $error[strtolower(trim($item[0]))] = trim($item[1]); |
| } |
| $error['all'] = $sap_error; |
| return $error; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/MDB2.php |
|---|
| New file |
| 0,0 → 1,624 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against PEAR MDB2 |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Lorenzo Alberton <l.alberton@quipo.it> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: MDB2.php,v 1.24 2008/04/04 07:57:02 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.3.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR MDB2 package |
| */ |
| require_once 'MDB2.php'; |
| /** |
| * Storage driver for fetching login data from a database |
| * |
| * This storage driver can use all databases which are supported |
| * by the PEAR MDB2 abstraction layer to fetch login data. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Lorenzo Alberton <l.alberton@quipo.it> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.24 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.3.0 |
| */ |
| class Auth_Container_MDB2 extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Additional options for the storage container |
| * @var array |
| */ |
| var $options = array(); |
| /** |
| * MDB object |
| * @var object |
| */ |
| var $db = null; |
| var $dsn = ''; |
| /** |
| * User that is currently selected from the DB. |
| * @var string |
| */ |
| var $activeUser = ''; |
| // }}} |
| // {{{ Auth_Container_MDB2() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * Initate connection to the database via PEAR::MDB2 |
| * |
| * @param string Connection data or MDB2 object |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_MDB2($dsn) |
| { |
| $this->_setDefaults(); |
| if (is_array($dsn)) { |
| $this->_parseOptions($dsn); |
| if (empty($this->options['dsn'])) { |
| PEAR::raiseError('No connection parameters specified!'); |
| } |
| } else { |
| $this->options['dsn'] = $dsn; |
| } |
| } |
| // }}} |
| // {{{ _connect() |
| /** |
| * Connect to database by using the given DSN string |
| * |
| * @access private |
| * @param mixed DSN string | array | mdb object |
| * @return mixed Object on error, otherwise bool |
| */ |
| function _connect($dsn) |
| { |
| $this->log('Auth_Container_MDB2::_connect() called.', AUTH_LOG_DEBUG); |
| if (is_string($dsn) || is_array($dsn)) { |
| $this->db =& MDB2::connect($dsn, $this->options['db_options']); |
| } elseif (is_subclass_of($dsn, 'MDB2_Driver_Common')) { |
| $this->db = $dsn; |
| } elseif (is_object($dsn) && MDB2::isError($dsn)) { |
| return PEAR::raiseError($dsn->getMessage(), $dsn->code); |
| } else { |
| return PEAR::raiseError('The given dsn was not valid in file ' . __FILE__ . ' at line ' . __LINE__, |
| 41, |
| PEAR_ERROR_RETURN, |
| null, |
| null |
| ); |
| } |
| if (MDB2::isError($this->db) || PEAR::isError($this->db)) { |
| return PEAR::raiseError($this->db->getMessage(), $this->db->code); |
| } |
| if ($this->options['auto_quote']) { |
| if (strpos('.', $this->options['table']) === false) { |
| $this->options['final_table'] = $this->db->quoteIdentifier($this->options['table'], true); |
| } else { |
| $t = explode('.', $this->options['table']); |
| for ($i = 0, $count = count($t); $i < $count; $i++) |
| $t[$i] = $this->db->quoteIdentifier($t[$i], true); |
| $this->options['final_table'] = implode('.', $t); |
| } |
| $this->options['final_usernamecol'] = $this->db->quoteIdentifier($this->options['usernamecol'], true); |
| $this->options['final_passwordcol'] = $this->db->quoteIdentifier($this->options['passwordcol'], true); |
| } else { |
| $this->options['final_table'] = $this->options['table']; |
| $this->options['final_usernamecol'] = $this->options['usernamecol']; |
| $this->options['final_passwordcol'] = $this->options['passwordcol']; |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _prepare() |
| /** |
| * Prepare database connection |
| * |
| * This function checks if we have already opened a connection to |
| * the database. If that's not the case, a new connection is opened. |
| * |
| * @access private |
| * @return mixed True or a MDB error object. |
| */ |
| function _prepare() |
| { |
| if (is_subclass_of($this->db, 'MDB2_Driver_Common')) { |
| return true; |
| } |
| return $this->_connect($this->options['dsn']); |
| } |
| // }}} |
| // {{{ query() |
| /** |
| * Prepare query to the database |
| * |
| * This function checks if we have already opened a connection to |
| * the database. If that's not the case, a new connection is opened. |
| * After that the query is passed to the database. |
| * |
| * @access public |
| * @param string Query string |
| * @return mixed a MDB_result object or MDB_OK on success, a MDB |
| * or PEAR error on failure |
| */ |
| function query($query) |
| { |
| $this->log('Auth_Container_MDB2::query() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return $err; |
| } |
| return $this->db->exec($query); |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| * @return void |
| */ |
| function _setDefaults() |
| { |
| $this->options['table'] = 'auth'; |
| $this->options['usernamecol'] = 'username'; |
| $this->options['passwordcol'] = 'password'; |
| $this->options['dsn'] = ''; |
| $this->options['db_fields'] = ''; |
| $this->options['cryptType'] = 'md5'; |
| $this->options['db_options'] = array(); |
| $this->options['db_where'] = ''; |
| $this->options['auto_quote'] = true; |
| } |
| // }}} |
| // {{{ _parseOptions() |
| /** |
| * Parse options passed to the container class |
| * |
| * @access private |
| * @param array |
| */ |
| function _parseOptions($array) |
| { |
| foreach ($array as $key => $value) { |
| if (isset($this->options[$key])) { |
| $this->options[$key] = $value; |
| } |
| } |
| } |
| // }}} |
| // {{{ _quoteDBFields() |
| /** |
| * Quote the db_fields option to avoid the possibility of SQL injection. |
| * |
| * @access private |
| * @return string A properly quoted string that can be concatenated into a |
| * SELECT clause. |
| */ |
| function _quoteDBFields() |
| { |
| if (isset($this->options['db_fields'])) { |
| if (is_array($this->options['db_fields'])) { |
| if ($this->options['auto_quote']) { |
| $fields = array(); |
| foreach ($this->options['db_fields'] as $field) { |
| $fields[] = $this->db->quoteIdentifier($field, true); |
| } |
| return implode(', ', $fields); |
| } else { |
| return implode(', ', $this->options['db_fields']); |
| } |
| } else { |
| if (strlen($this->options['db_fields']) > 0) { |
| if ($this->options['auto_quote']) { |
| return $this->db->quoteIdentifier($this->options['db_fields'], true); |
| } else { |
| return $this->options['db_fields']; |
| } |
| } |
| } |
| } |
| return ''; |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from database |
| * |
| * This function uses the given username to fetch |
| * the corresponding login data from the database |
| * table. If an account that matches the passed username |
| * and password is found, the function returns true. |
| * Otherwise it returns false. |
| * |
| * @param string Username |
| * @param string Password |
| * @param boolean If true password is secured using a md5 hash |
| * the frontend and auth are responsible for making sure the container supports |
| * challenge response password authentication |
| * @return mixed Error object or boolean |
| */ |
| function fetchData($username, $password, $isChallengeResponse=false) |
| { |
| $this->log('Auth_Container_MDB2::fetchData() called.', AUTH_LOG_DEBUG); |
| // Prepare for a database query |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| //Check if db_fields contains a *, if so assume all columns are selected |
| if (is_string($this->options['db_fields']) |
| && strstr($this->options['db_fields'], '*')) { |
| $sql_from = '*'; |
| } else { |
| $sql_from = $this->options['final_usernamecol']. |
| ", ".$this->options['final_passwordcol']; |
| if (strlen($fields = $this->_quoteDBFields()) > 0) { |
| $sql_from .= ', '.$fields; |
| } |
| } |
| $query = sprintf("SELECT %s FROM %s WHERE %s = %s", |
| $sql_from, |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->db->quote($username, 'text') |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB2: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->db->queryRow($query, null, MDB2_FETCHMODE_ASSOC); |
| if (MDB2::isError($res) || PEAR::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } |
| if (!is_array($res)) { |
| $this->activeUser = ''; |
| return false; |
| } |
| // Perform trimming here before the hashing |
| $password = trim($password, "\r\n"); |
| $res[$this->options['passwordcol']] = trim($res[$this->options['passwordcol']], "\r\n"); |
| // If using Challenge Response md5 the pass with the secret |
| if ($isChallengeResponse) { |
| $res[$this->options['passwordcol']] = |
| md5($res[$this->options['passwordcol']].$this->_auth_obj->session['loginchallenege']); |
| // UGLY cannot avoid without modifying verifyPassword |
| if ($this->options['cryptType'] == 'md5') { |
| $res[$this->options['passwordcol']] = md5($res[$this->options['passwordcol']]); |
| } |
| } |
| if ($this->verifyPassword($password, |
| $res[$this->options['passwordcol']], |
| $this->options['cryptType'])) { |
| // Store additional field values in the session |
| foreach ($res as $key => $value) { |
| if ($key == $this->options['passwordcol'] || |
| $key == $this->options['usernamecol']) { |
| continue; |
| } |
| $this->log('Storing additional field: '.$key, AUTH_LOG_DEBUG); |
| // Use reference to the auth object if exists |
| // This is because the auth session variable can change so a static call to setAuthData does not make sense |
| $this->_auth_obj->setAuthData($key, $value); |
| } |
| return true; |
| } |
| $this->activeUser = $res[$this->options['usernamecol']]; |
| return false; |
| } |
| // }}} |
| // {{{ listUsers() |
| /** |
| * Returns a list of users from the container |
| * |
| * @return mixed array|PEAR_Error |
| * @access public |
| */ |
| function listUsers() |
| { |
| $this->log('Auth_Container_MDB2::listUsers() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| $retVal = array(); |
| //Check if db_fields contains a *, if so assume all columns are selected |
| if ( is_string($this->options['db_fields']) |
| && strstr($this->options['db_fields'], '*')) { |
| $sql_from = '*'; |
| } else { |
| $sql_from = $this->options['final_usernamecol']. |
| ", ".$this->options['final_passwordcol']; |
| if (strlen($fields = $this->_quoteDBFields()) > 0) { |
| $sql_from .= ', '.$fields; |
| } |
| } |
| $query = sprintf('SELECT %s FROM %s', |
| $sql_from, |
| $this->options['final_table'] |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " WHERE ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB2: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->db->queryAll($query, null, MDB2_FETCHMODE_ASSOC); |
| if (MDB2::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } else { |
| foreach ($res as $user) { |
| $user['username'] = $user[$this->options['usernamecol']]; |
| $retVal[] = $user; |
| } |
| } |
| $this->log('Found '.count($retVal).' users.', AUTH_LOG_DEBUG); |
| return $retVal; |
| } |
| // }}} |
| // {{{ addUser() |
| /** |
| * Add user to the storage container |
| * |
| * @access public |
| * @param string Username |
| * @param string Password |
| * @param mixed Additional information that are stored in the DB |
| * |
| * @return mixed True on success, otherwise error object |
| */ |
| function addUser($username, $password, $additional = "") |
| { |
| $this->log('Auth_Container_MDB2::addUser() called.', AUTH_LOG_DEBUG); |
| // Prepare for a database query |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| if (isset($this->options['cryptType']) && $this->options['cryptType'] == 'none') { |
| $cryptFunction = 'strval'; |
| } elseif (isset($this->options['cryptType']) && function_exists($this->options['cryptType'])) { |
| $cryptFunction = $this->options['cryptType']; |
| } else { |
| $cryptFunction = 'md5'; |
| } |
| $password = $cryptFunction($password); |
| $additional_key = ''; |
| $additional_value = ''; |
| if (is_array($additional)) { |
| foreach ($additional as $key => $value) { |
| if ($this->options['auto_quote']) { |
| $additional_key .= ', ' . $this->db->quoteIdentifier($key, true); |
| } else { |
| $additional_key .= ', ' . $key; |
| } |
| $additional_value .= ', ' . $this->db->quote($value, 'text'); |
| } |
| } |
| $query = sprintf("INSERT INTO %s (%s, %s%s) VALUES (%s, %s%s)", |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->options['final_passwordcol'], |
| $additional_key, |
| $this->db->quote($username, 'text'), |
| $this->db->quote($password, 'text'), |
| $additional_value |
| ); |
| $this->log('Running SQL against MDB2: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (MDB2::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->code); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ removeUser() |
| /** |
| * Remove user from the storage container |
| * |
| * @access public |
| * @param string Username |
| * |
| * @return mixed True on success, otherwise error object |
| */ |
| function removeUser($username) |
| { |
| $this->log('Auth_Container_MDB2::removeUser() called.', AUTH_LOG_DEBUG); |
| // Prepare for a database query |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| $query = sprintf("DELETE FROM %s WHERE %s = %s", |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->db->quote($username, 'text') |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB2: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (MDB2::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->code); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ changePassword() |
| /** |
| * Change password for user in the storage container |
| * |
| * @param string Username |
| * @param string The new password (plain text) |
| */ |
| function changePassword($username, $password) |
| { |
| $this->log('Auth_Container_MDB2::changePassword() called.', AUTH_LOG_DEBUG); |
| // Prepare for a database query |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| if (isset($this->options['cryptType']) && $this->options['cryptType'] == 'none') { |
| $cryptFunction = 'strval'; |
| } elseif (isset($this->options['cryptType']) && function_exists($this->options['cryptType'])) { |
| $cryptFunction = $this->options['cryptType']; |
| } else { |
| $cryptFunction = 'md5'; |
| } |
| $password = $cryptFunction($password); |
| $query = sprintf("UPDATE %s SET %s = %s WHERE %s = %s", |
| $this->options['final_table'], |
| $this->options['final_passwordcol'], |
| $this->db->quote($password, 'text'), |
| $this->options['final_usernamecol'], |
| $this->db->quote($username, 'text') |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against MDB2: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (MDB2::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->code); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ supportsChallengeResponse() |
| /** |
| * Determine if this container supports |
| * password authentication with challenge response |
| * |
| * @return bool |
| * @access public |
| */ |
| function supportsChallengeResponse() |
| { |
| return in_array($this->options['cryptType'], array('md5', 'none', '')); |
| } |
| // }}} |
| // {{{ getCryptType() |
| /** |
| * Returns the selected crypt type for this container |
| * |
| * @return string Function used to crypt the password |
| */ |
| function getCryptType() |
| { |
| return $this->options['cryptType']; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/DB.php |
|---|
| New file |
| 0,0 → 1,639 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against PEAR DB |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Martin Jansen <mj@php.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: DB.php,v 1.74 2008/04/04 07:57:02 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Include PEAR DB |
| */ |
| require_once 'DB.php'; |
| /** |
| * Storage driver for fetching login data from a database |
| * |
| * This storage driver can use all databases which are supported |
| * by the PEAR DB abstraction layer to fetch login data. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Martin Jansen <mj@php.net> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.74 $ |
| * @link http://pear.php.net/package/Auth |
| */ |
| class Auth_Container_DB extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Additional options for the storage container |
| * @var array |
| */ |
| var $options = array(); |
| /** |
| * DB object |
| * @var object |
| */ |
| var $db = null; |
| var $dsn = ''; |
| /** |
| * User that is currently selected from the DB. |
| * @var string |
| */ |
| var $activeUser = ''; |
| // }}} |
| // {{{ Auth_Container_DB [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * Save the initial options passed to the container. Initiation of the DB |
| * connection is no longer performed here and is only done when needed. |
| * |
| * @param string Connection data or DB object |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_DB($dsn) |
| { |
| $this->_setDefaults(); |
| if (is_array($dsn)) { |
| $this->_parseOptions($dsn); |
| if (empty($this->options['dsn'])) { |
| PEAR::raiseError('No connection parameters specified!'); |
| } |
| } else { |
| $this->options['dsn'] = $dsn; |
| } |
| } |
| // }}} |
| // {{{ _connect() |
| /** |
| * Connect to database by using the given DSN string |
| * |
| * @access private |
| * @param string DSN string |
| * @return mixed Object on error, otherwise bool |
| */ |
| function _connect($dsn) |
| { |
| $this->log('Auth_Container_DB::_connect() called.', AUTH_LOG_DEBUG); |
| if (is_string($dsn) || is_array($dsn)) { |
| $this->db = DB::Connect($dsn, $this->options['db_options']); |
| } elseif (is_subclass_of($dsn, 'db_common')) { |
| $this->db = $dsn; |
| } elseif (DB::isError($dsn)) { |
| return PEAR::raiseError($dsn->getMessage(), $dsn->getCode()); |
| } else { |
| return PEAR::raiseError('The given dsn was not valid in file ' . __FILE__ . ' at line ' . __LINE__, |
| 41, |
| PEAR_ERROR_RETURN, |
| null, |
| null |
| ); |
| } |
| if (DB::isError($this->db) || PEAR::isError($this->db)) { |
| return PEAR::raiseError($this->db->getMessage(), $this->db->getCode()); |
| } else { |
| return true; |
| } |
| } |
| // }}} |
| // {{{ _prepare() |
| /** |
| * Prepare database connection |
| * |
| * This function checks if we have already opened a connection to |
| * the database. If that's not the case, a new connection is opened. |
| * |
| * @access private |
| * @return mixed True or a DB error object. |
| */ |
| function _prepare() |
| { |
| if (!DB::isConnection($this->db)) { |
| $res = $this->_connect($this->options['dsn']); |
| if (DB::isError($res) || PEAR::isError($res)) { |
| return $res; |
| } |
| } |
| if ($this->options['auto_quote'] && $this->db->dsn['phptype'] != 'sqlite') { |
| if (strpos('.', $this->options['table']) === false) { |
| $this->options['final_table'] = $this->db->quoteIdentifier($this->options['table']); |
| } else { |
| $t = explode('.', $this->options['table']); |
| for ($i = 0, $count = count($t); $i < $count; $i++) |
| $t[$i] = $this->db->quoteIdentifier($t[$i]); |
| $this->options['final_table'] = implode('.', $t); |
| } |
| $this->options['final_usernamecol'] = $this->db->quoteIdentifier($this->options['usernamecol']); |
| $this->options['final_passwordcol'] = $this->db->quoteIdentifier($this->options['passwordcol']); |
| } else { |
| $this->options['final_table'] = $this->options['table']; |
| $this->options['final_usernamecol'] = $this->options['usernamecol']; |
| $this->options['final_passwordcol'] = $this->options['passwordcol']; |
| } |
| return true; |
| } |
| // }}} |
| // {{{ query() |
| /** |
| * Prepare query to the database |
| * |
| * This function checks if we have already opened a connection to |
| * the database. If that's not the case, a new connection is opened. |
| * After that the query is passed to the database. |
| * |
| * @access public |
| * @param string Query string |
| * @return mixed a DB_result object or DB_OK on success, a DB |
| * or PEAR error on failure |
| */ |
| function query($query) |
| { |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return $err; |
| } |
| return $this->db->query($query); |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| * @return void |
| */ |
| function _setDefaults() |
| { |
| $this->options['table'] = 'auth'; |
| $this->options['usernamecol'] = 'username'; |
| $this->options['passwordcol'] = 'password'; |
| $this->options['dsn'] = ''; |
| $this->options['db_fields'] = ''; |
| $this->options['cryptType'] = 'md5'; |
| $this->options['db_options'] = array(); |
| $this->options['db_where'] = ''; |
| $this->options['auto_quote'] = true; |
| } |
| // }}} |
| // {{{ _parseOptions() |
| /** |
| * Parse options passed to the container class |
| * |
| * @access private |
| * @param array |
| */ |
| function _parseOptions($array) |
| { |
| foreach ($array as $key => $value) { |
| if (isset($this->options[$key])) { |
| $this->options[$key] = $value; |
| } |
| } |
| } |
| // }}} |
| // {{{ _quoteDBFields() |
| /** |
| * Quote the db_fields option to avoid the possibility of SQL injection. |
| * |
| * @access private |
| * @return string A properly quoted string that can be concatenated into a |
| * SELECT clause. |
| */ |
| function _quoteDBFields() |
| { |
| if (isset($this->options['db_fields'])) { |
| if (is_array($this->options['db_fields'])) { |
| if ($this->options['auto_quote']) { |
| $fields = array(); |
| foreach ($this->options['db_fields'] as $field) { |
| $fields[] = $this->db->quoteIdentifier($field); |
| } |
| return implode(', ', $fields); |
| } else { |
| return implode(', ', $this->options['db_fields']); |
| } |
| } else { |
| if (strlen($this->options['db_fields']) > 0) { |
| if ($this->options['auto_quote']) { |
| return $this->db->quoteIdentifier($this->options['db_fields']); |
| } else { |
| return $this->options['db_fields']; |
| } |
| } |
| } |
| } |
| return ''; |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from database |
| * |
| * This function uses the given username to fetch |
| * the corresponding login data from the database |
| * table. If an account that matches the passed username |
| * and password is found, the function returns true. |
| * Otherwise it returns false. |
| * |
| * @param string Username |
| * @param string Password |
| * @param boolean If true password is secured using a md5 hash |
| * the frontend and auth are responsible for making sure the container supports |
| * challenge response password authentication |
| * @return mixed Error object or boolean |
| */ |
| function fetchData($username, $password, $isChallengeResponse=false) |
| { |
| $this->log('Auth_Container_DB::fetchData() called.', AUTH_LOG_DEBUG); |
| // Prepare for a database query |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| // Find if db_fields contains a *, if so assume all columns are selected |
| if (is_string($this->options['db_fields']) |
| && strstr($this->options['db_fields'], '*')) { |
| $sql_from = "*"; |
| } else { |
| $sql_from = $this->options['final_usernamecol']. |
| ", ".$this->options['final_passwordcol']; |
| if (strlen($fields = $this->_quoteDBFields()) > 0) { |
| $sql_from .= ', '.$fields; |
| } |
| } |
| $query = "SELECT ".$sql_from. |
| " FROM ".$this->options['final_table']. |
| " WHERE ".$this->options['final_usernamecol']." = ".$this->db->quoteSmart($username); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " AND ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against DB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->db->getRow($query, null, DB_FETCHMODE_ASSOC); |
| if (DB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } |
| if (!is_array($res)) { |
| $this->activeUser = ''; |
| return false; |
| } |
| // Perform trimming here before the hashihg |
| $password = trim($password, "\r\n"); |
| $res[$this->options['passwordcol']] = trim($res[$this->options['passwordcol']], "\r\n"); |
| // If using Challenge Response md5 the pass with the secret |
| if ($isChallengeResponse) { |
| $res[$this->options['passwordcol']] = md5($res[$this->options['passwordcol']] |
| .$this->_auth_obj->session['loginchallenege']); |
| // UGLY cannot avoid without modifying verifyPassword |
| if ($this->options['cryptType'] == 'md5') { |
| $res[$this->options['passwordcol']] = md5($res[$this->options['passwordcol']]); |
| } |
| //print " Hashed Password [{$res[$this->options['passwordcol']]}]<br/>\n"; |
| } |
| if ($this->verifyPassword($password, |
| $res[$this->options['passwordcol']], |
| $this->options['cryptType'])) { |
| // Store additional field values in the session |
| foreach ($res as $key => $value) { |
| if ($key == $this->options['passwordcol'] || |
| $key == $this->options['usernamecol']) { |
| continue; |
| } |
| $this->log('Storing additional field: '.$key, AUTH_LOG_DEBUG); |
| // Use reference to the auth object if exists |
| // This is because the auth session variable can change so a |
| // static call to setAuthData does not make sence |
| $this->_auth_obj->setAuthData($key, $value); |
| } |
| return true; |
| } |
| $this->activeUser = $res[$this->options['usernamecol']]; |
| return false; |
| } |
| // }}} |
| // {{{ listUsers() |
| /** |
| * Returns a list of users from the container |
| * |
| * @return mixed |
| * @access public |
| */ |
| function listUsers() |
| { |
| $this->log('Auth_Container_DB::listUsers() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| $retVal = array(); |
| // Find if db_fields contains a *, if so assume all col are selected |
| if ( is_string($this->options['db_fields']) |
| && strstr($this->options['db_fields'], '*')) { |
| $sql_from = "*"; |
| } else { |
| $sql_from = $this->options['final_usernamecol']. |
| ", ".$this->options['final_passwordcol']; |
| if (strlen($fields = $this->_quoteDBFields()) > 0) { |
| $sql_from .= ', '.$fields; |
| } |
| } |
| $query = sprintf("SELECT %s FROM %s", |
| $sql_from, |
| $this->options['final_table'] |
| ); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $query .= " WHERE ".$this->options['db_where']; |
| } |
| $this->log('Running SQL against DB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->db->getAll($query, null, DB_FETCHMODE_ASSOC); |
| if (DB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } else { |
| foreach ($res as $user) { |
| $user['username'] = $user[$this->options['usernamecol']]; |
| $retVal[] = $user; |
| } |
| } |
| $this->log('Found '.count($retVal).' users.', AUTH_LOG_DEBUG); |
| return $retVal; |
| } |
| // }}} |
| // {{{ addUser() |
| /** |
| * Add user to the storage container |
| * |
| * @access public |
| * @param string Username |
| * @param string Password |
| * @param mixed Additional information that are stored in the DB |
| * |
| * @return mixed True on success, otherwise error object |
| */ |
| function addUser($username, $password, $additional = "") |
| { |
| $this->log('Auth_Container_DB::addUser() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| if ( isset($this->options['cryptType']) |
| && $this->options['cryptType'] == 'none') { |
| $cryptFunction = 'strval'; |
| } elseif ( isset($this->options['cryptType']) |
| && function_exists($this->options['cryptType'])) { |
| $cryptFunction = $this->options['cryptType']; |
| } else { |
| $cryptFunction = 'md5'; |
| } |
| $password = $cryptFunction($password); |
| $additional_key = ''; |
| $additional_value = ''; |
| if (is_array($additional)) { |
| foreach ($additional as $key => $value) { |
| if ($this->options['auto_quote']) { |
| $additional_key .= ', ' . $this->db->quoteIdentifier($key); |
| } else { |
| $additional_key .= ', ' . $key; |
| } |
| $additional_value .= ", " . $this->db->quoteSmart($value); |
| } |
| } |
| $query = sprintf("INSERT INTO %s (%s, %s%s) VALUES (%s, %s%s)", |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->options['final_passwordcol'], |
| $additional_key, |
| $this->db->quoteSmart($username), |
| $this->db->quoteSmart($password), |
| $additional_value |
| ); |
| $this->log('Running SQL against DB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (DB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } else { |
| return true; |
| } |
| } |
| // }}} |
| // {{{ removeUser() |
| /** |
| * Remove user from the storage container |
| * |
| * @access public |
| * @param string Username |
| * |
| * @return mixed True on success, otherwise error object |
| */ |
| function removeUser($username) |
| { |
| $this->log('Auth_Container_DB::removeUser() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $where = " AND ".$this->options['db_where']; |
| } else { |
| $where = ''; |
| } |
| $query = sprintf("DELETE FROM %s WHERE %s = %s %s", |
| $this->options['final_table'], |
| $this->options['final_usernamecol'], |
| $this->db->quoteSmart($username), |
| $where |
| ); |
| $this->log('Running SQL against DB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (DB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } else { |
| return true; |
| } |
| } |
| // }}} |
| // {{{ changePassword() |
| /** |
| * Change password for user in the storage container |
| * |
| * @param string Username |
| * @param string The new password (plain text) |
| */ |
| function changePassword($username, $password) |
| { |
| $this->log('Auth_Container_DB::changePassword() called.', AUTH_LOG_DEBUG); |
| $err = $this->_prepare(); |
| if ($err !== true) { |
| return PEAR::raiseError($err->getMessage(), $err->getCode()); |
| } |
| if ( isset($this->options['cryptType']) |
| && $this->options['cryptType'] == 'none') { |
| $cryptFunction = 'strval'; |
| } elseif ( isset($this->options['cryptType']) |
| && function_exists($this->options['cryptType'])) { |
| $cryptFunction = $this->options['cryptType']; |
| } else { |
| $cryptFunction = 'md5'; |
| } |
| $password = $cryptFunction($password); |
| // check if there is an optional parameter db_where |
| if ($this->options['db_where'] != '') { |
| // there is one, so add it to the query |
| $where = " AND ".$this->options['db_where']; |
| } else { |
| $where = ''; |
| } |
| $query = sprintf("UPDATE %s SET %s = %s WHERE %s = %s %s", |
| $this->options['final_table'], |
| $this->options['final_passwordcol'], |
| $this->db->quoteSmart($password), |
| $this->options['final_usernamecol'], |
| $this->db->quoteSmart($username), |
| $where |
| ); |
| $this->log('Running SQL against DB: '.$query, AUTH_LOG_DEBUG); |
| $res = $this->query($query); |
| if (DB::isError($res)) { |
| return PEAR::raiseError($res->getMessage(), $res->getCode()); |
| } else { |
| return true; |
| } |
| } |
| // }}} |
| // {{{ supportsChallengeResponse() |
| /** |
| * Determine if this container supports |
| * password authentication with challenge response |
| * |
| * @return bool |
| * @access public |
| */ |
| function supportsChallengeResponse() |
| { |
| return in_array($this->options['cryptType'], array('md5', 'none', '')); |
| } |
| // }}} |
| // {{{ getCryptType() |
| /** |
| * Returns the selected crypt type for this container |
| */ |
| function getCryptType() |
| { |
| return($this->options['cryptType']); |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/IMAP.php |
|---|
| New file |
| 0,0 → 1,210 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against IMAP servers |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Jeroen Houben <jeroen@terena.nl> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: IMAP.php,v 1.18 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR class for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for fetching login data from an IMAP server |
| * |
| * This class is based on LDAP containers, but it very simple. |
| * By default it connects to localhost:143 |
| * The constructor will first check if the host:port combination is |
| * actually reachable. This behaviour can be disabled. |
| * It then tries to create an IMAP stream (without opening a mailbox) |
| * If you wish to pass extended options to the connections, you may |
| * do so by specifying protocol options. |
| * |
| * To use this storage containers, you have to use the |
| * following syntax: |
| * |
| * <?php |
| * ... |
| * $params = array( |
| * 'host' => 'mail.example.com', |
| * 'port' => 143, |
| * ); |
| * $myAuth = new Auth('IMAP', $params); |
| * ... |
| * |
| * By default we connect without any protocol options set. However, some |
| * servers require you to connect with the notls or norsh options set. |
| * To do this you need to add the following value to the params array: |
| * 'baseDSN' => '/imap/notls/norsh' |
| * |
| * To connect to an SSL IMAP server: |
| * 'baseDSN' => '/imap/ssl' |
| * |
| * To connect to an SSL IMAP server with a self-signed certificate: |
| * 'baseDSN' => '/imap/ssl/novalidate-cert' |
| * |
| * Further options may be available and can be found on the php site at |
| * http://www.php.net/manual/function.imap-open.php |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Jeroen Houben <jeroen@terena.nl> |
| * @author Cipriano Groenendal <cipri@campai.nl> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.18 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.2.0 |
| */ |
| class Auth_Container_IMAP extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Options for the class |
| * @var array |
| */ |
| var $options = array(); |
| // }}} |
| // {{{ Auth_Container_IMAP() [constructor] |
| /** |
| * Constructor of the container class |
| * |
| * @param $params associative array with host, port, baseDSN, checkServer |
| * and userattr key |
| * @return object Returns an error object if something went wrong |
| * @todo Use PEAR Net_IMAP if IMAP extension not loaded |
| */ |
| function Auth_Container_IMAP($params) |
| { |
| if (!extension_loaded('imap')) { |
| return PEAR::raiseError('Cannot use IMAP authentication, ' |
| .'IMAP extension not loaded!', 41, PEAR_ERROR_DIE); |
| } |
| $this->_setDefaults(); |
| // set parameters (if any) |
| if (is_array($params)) { |
| $this->_parseOptions($params); |
| } |
| if ($this->options['checkServer']) { |
| $this->_checkServer($this->options['timeout']); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| */ |
| function _setDefaults() |
| { |
| $this->options['host'] = 'localhost'; |
| $this->options['port'] = 143; |
| $this->options['baseDSN'] = ''; |
| $this->options['checkServer'] = true; |
| $this->options['timeout'] = 20; |
| } |
| // }}} |
| // {{{ _checkServer() |
| /** |
| * Check if the given server and port are reachable |
| * |
| * @access private |
| */ |
| function _checkServer() { |
| $this->log('Auth_Container_IMAP::_checkServer() called.', AUTH_LOG_DEBUG); |
| $fp = @fsockopen ($this->options['host'], $this->options['port'], |
| $errno, $errstr, $this->options['timeout']); |
| if (is_resource($fp)) { |
| @fclose($fp); |
| } else { |
| $message = "Error connecting to IMAP server " |
| . $this->options['host'] |
| . ":" . $this->options['port']; |
| return PEAR::raiseError($message, 41); |
| } |
| } |
| // }}} |
| // {{{ _parseOptions() |
| /** |
| * Parse options passed to the container class |
| * |
| * @access private |
| * @param array |
| */ |
| function _parseOptions($array) |
| { |
| foreach ($array as $key => $value) { |
| $this->options[$key] = $value; |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Try to open a IMAP stream using $username / $password |
| * |
| * @param string Username |
| * @param string Password |
| * @return boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_IMAP::fetchData() called.', AUTH_LOG_DEBUG); |
| $dsn = '{'.$this->options['host'].':'.$this->options['port'].$this->options['baseDSN'].'}'; |
| $conn = @imap_open ($dsn, $username, $password, OP_HALFOPEN); |
| if (is_resource($conn)) { |
| $this->log('Successfully connected to IMAP server.', AUTH_LOG_DEBUG); |
| $this->activeUser = $username; |
| @imap_close($conn); |
| return true; |
| } else { |
| $this->log('Connection to IMAP server failed.', AUTH_LOG_DEBUG); |
| $this->activeUser = ''; |
| return false; |
| } |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/vpopmail.php |
|---|
| New file |
| 0,0 → 1,88 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against vpopmail setups |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Stanislav Grozev <tacho@orbitel.bg> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: vpopmail.php,v 1.10 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for fetching login data from vpopmail |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Stanislav Grozev <tacho@orbitel.bg> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.10 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.2.0 |
| */ |
| class Auth_Container_vpopmail extends Auth_Container { |
| // {{{ Constructor |
| /** |
| * Constructor of the container class |
| * |
| * @return void |
| */ |
| function Auth_Container_vpopmail() |
| { |
| if (!extension_loaded('vpopmail')) { |
| return PEAR::raiseError('Cannot use VPOPMail authentication, ' |
| .'VPOPMail extension not loaded!', 41, PEAR_ERROR_DIE); |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from vpopmail |
| * |
| * @param string Username - has to be valid email address |
| * @param string Password |
| * @return boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_vpopmail::fetchData() called.', AUTH_LOG_DEBUG); |
| $userdata = array(); |
| $userdata = preg_split("/@/", $username, 2); |
| $result = @vpopmail_auth_user($userdata[0], $userdata[1], $password); |
| return $result; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/SOAP5.php |
|---|
| New file |
| 0,0 → 1,268 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against a SOAP service using PHP5 SoapClient |
| * |
| * PHP version 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Based upon Auth_Container_SOAP by Bruno Pedro <bpedro@co.sapo.pt> |
| * @author Marcel Oelke <puRe@rednoize.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: SOAP5.php,v 1.9 2007/07/02 08:25:41 aashley Exp $ |
| * @since File available since Release 1.4.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR package for error handling |
| */ |
| require_once "PEAR.php"; |
| /** |
| * Storage driver for fetching login data from SOAP using the PHP5 Builtin SOAP |
| * functions. This is a modification of the SOAP Storage driver from Bruno Pedro |
| * thats using the PEAR SOAP Package. |
| * |
| * This class takes one parameter (options), where |
| * you specify the following fields: |
| * * location and uri, or wsdl file |
| * * method to call on the SOAP service |
| * * usernamefield, the name of the parameter where the username is supplied |
| * * passwordfield, the name of the parameter where the password is supplied |
| * * matchpassword, whether to look for the password in the response from |
| * the function call or assume that no errors means user |
| * authenticated. |
| * |
| * See http://www.php.net/manual/en/ref.soap.php for further details |
| * on options for the PHP5 SoapClient which are passed through. |
| * |
| * Example usage without WSDL: |
| * |
| * <?php |
| * |
| * $options = array ( |
| * 'wsdl' => NULL, |
| * 'location' => 'http://your.soap.service/endpoint', |
| * 'uri' => 'urn:/Your/Namespace', |
| * 'method' => 'checkAuth', |
| * 'usernamefield' => 'username', |
| * 'passwordfield' => 'password', |
| * 'matchpasswords' => false, |
| * '_features' => array ( |
| * 'extra_parameter' => 'example_value', |
| * 'another_parameter' => 'foobar' |
| * ) |
| * ); |
| * |
| * $auth = new Auth('SOAP5', $options); |
| * $auth->start(); |
| * |
| * ?> |
| * |
| * Example usage with WSDL: |
| * |
| * <?php |
| * |
| * $options = array ( |
| * 'wsdl' => 'http://your.soap.service/wsdl', |
| * 'method' => 'checkAuth', |
| * 'usernamefield' => 'username', |
| * 'passwordfield' => 'password', |
| * 'matchpasswords' => false, |
| * '_features' => array ( |
| * 'extra_parameter' => 'example_value', |
| * 'another_parameter' => 'foobar' |
| * ) |
| * ); |
| * |
| * $auth = new Auth('SOAP5', $options); |
| * $auth->start(); |
| * |
| * ?> |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Based upon Auth_Container_SOAP by Bruno Pedro <bpedro@co.sapo.pt> |
| * @author Marcel Oelke <puRe@rednoize.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.9 $ |
| * @since Class available since Release 1.4.0 |
| */ |
| class Auth_Container_SOAP5 extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Required options for the class |
| * @var array |
| * @access private |
| */ |
| var $_requiredOptions = array( |
| 'location', |
| 'uri', |
| 'method', |
| 'usernamefield', |
| 'passwordfield', |
| 'wsdl', |
| ); |
| /** |
| * Options for the class |
| * @var array |
| * @access private |
| */ |
| var $_options = array(); |
| /** |
| * Optional SOAP features |
| * @var array |
| * @access private |
| */ |
| var $_features = array(); |
| /** |
| * The SOAP response |
| * @var array |
| * @access public |
| */ |
| var $soapResponse = array(); |
| // }}} |
| // {{{ Auth_Container_SOAP5() |
| /** |
| * Constructor of the container class |
| * |
| * @param $options, associative array with endpoint, namespace, method, |
| * usernamefield, passwordfield and optional features |
| */ |
| function Auth_Container_SOAP5($options) |
| { |
| $this->_setDefaults(); |
| foreach ($options as $name => $value) { |
| $this->_options[$name] = $value; |
| } |
| if (!empty($this->_options['_features'])) { |
| $this->_features = $this->_options['_features']; |
| unset($this->_options['_features']); |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Fetch data from SOAP service |
| * |
| * Requests the SOAP service for the given username/password |
| * combination. |
| * |
| * @param string Username |
| * @param string Password |
| * @return mixed Returns the SOAP response or false if something went wrong |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_SOAP5::fetchData() called.', AUTH_LOG_DEBUG); |
| $result = $this->_validateOptions(); |
| if (PEAR::isError($result)) |
| return $result; |
| // create a SOAP client |
| $soapClient = new SoapClient($this->_options["wsdl"], $this->_options); |
| $params = array(); |
| // first, assign the optional features |
| foreach ($this->_features as $fieldName => $fieldValue) { |
| $params[$fieldName] = $fieldValue; |
| } |
| // assign username and password ... |
| $params[$this->_options['usernamefield']] = $username; |
| $params[$this->_options['passwordfield']] = $password; |
| try { |
| $this->soapResponse = $soapClient->__soapCall($this->_options['method'], $params); |
| if ($this->_options['matchpasswords']) { |
| // check if passwords match |
| if ($password == $this->soapResponse[$this->_options['passwordfield']]) { |
| return true; |
| } else { |
| return false; |
| } |
| } else { |
| return true; |
| } |
| } catch (SoapFault $e) { |
| return PEAR::raiseError("Error retrieving authentication data. Received SOAP Fault: ".$e->faultstring, $e->faultcode); |
| } |
| } |
| // }}} |
| // {{{ _validateOptions() |
| /** |
| * Validate that the options passed to the container class are enough for us to proceed |
| * |
| * @access private |
| * @param array |
| */ |
| function _validateOptions() |
| { |
| if ( ( is_null($this->_options['wsdl']) |
| && is_null($this->_options['location']) |
| && is_null($this->_options['uri'])) |
| || ( is_null($this->_options['wsdl']) |
| && ( is_null($this->_options['location']) |
| || is_null($this->_options['uri'])))) { |
| return PEAR::raiseError('Either a WSDL file or a location/uri pair must be specified.'); |
| } |
| if (is_null($this->_options['method'])) { |
| return PEAR::raiseError('A method to call on the soap service must be specified.'); |
| } |
| return true; |
| } |
| // }}} |
| // {{{ _setDefaults() |
| /** |
| * Set some default options |
| * |
| * @access private |
| * @return void |
| */ |
| function _setDefaults() |
| { |
| $this->_options['wsdl'] = null; |
| $this->_options['location'] = null; |
| $this->_options['uri'] = null; |
| $this->_options['method'] = null; |
| $this->_options['usernamefield'] = 'username'; |
| $this->_options['passwordfield'] = 'password'; |
| $this->_options['matchpasswords'] = true; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/PEAR.php |
|---|
| New file |
| 0,0 → 1,159 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against PEAR website |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Yavor Shahpasov <yavo@netsmart.com.cy> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: PEAR.php,v 1.13 2008/04/04 00:53:53 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.3.0 |
| */ |
| /** |
| * Include PEAR HTTP_Client. |
| */ |
| require_once 'HTTP/Client.php'; |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once 'Auth/Container.php'; |
| /** |
| * Storage driver for authenticating against PEAR website |
| * |
| * This driver provides a method for authenticating against the pear.php.net |
| * authentication system. |
| * |
| * Supports two options: |
| * - "url": The base URL with schema to authenticate against |
| * - "karma": An array of karma levels which the user needs one of. |
| * When empty, no karma level is required. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Yavor Shahpasov <yavo@netsmart.com.cy> |
| * @author Adam Ashley <aashley@php.net> |
| * @author Adam Harvey <aharvey@php.net> |
| * @copyright 2001-2007 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.13 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.3.0 |
| */ |
| class Auth_Container_Pear extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * URL to connect to, with schema |
| * |
| * @var string |
| */ |
| var $url = 'https://pear.php.net/rest-login.php/'; |
| /** |
| * Array of karma levels the user can have. |
| * A user needs only one of the levels to succeed login. |
| * No levels mean that only username and password need to match |
| * |
| * @var array |
| */ |
| var $karma = array(); |
| // }}} |
| // {{{ Auth_Container_Pear() [constructor] |
| /** |
| * Constructor |
| * |
| * Accepts options "url" and "karma", see class docs. |
| * |
| * @param array $data Array of options |
| * |
| * @return void |
| */ |
| function Auth_Container_Pear($data = null) |
| { |
| if (!is_array($data)) { |
| PEAR::raiseError('The options for Auth_Container_Pear must be an array'); |
| } |
| if (isset($data['karma'])) { |
| if (is_array($data['karma'])) { |
| $this->karma = $data['karma']; |
| } else { |
| $this->karma = array($data['karma']); |
| } |
| } |
| if (isset($data['url'])) { |
| $this->url = $data['url']; |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Get user information from pear.php.net |
| * |
| * This function uses the given username and password to authenticate |
| * against the pear.php.net website |
| * |
| * @param string Username |
| * @param string Password |
| * @return mixed Error object or boolean |
| */ |
| function fetchData($username, $password) |
| { |
| $this->log('Auth_Container_PEAR::fetchData() called.', AUTH_LOG_DEBUG); |
| $client = new HTTP_Client; |
| $this->log('Auth_Container_PEAR::fetchData() getting salt.', AUTH_LOG_DEBUG); |
| $code = $client->get($this->url . '/getsalt'); |
| if ($code != 200) { |
| return PEAR::raiseError('Bad response to salt request.', $code); |
| } |
| $resp = $client->currentResponse(); |
| $salt = $resp['body']; |
| $this->log('Auth_Container_PEAR::fetchData() calling validate.', AUTH_LOG_DEBUG); |
| $postOptions = array( |
| 'username' => $username, |
| 'password' => md5($salt . md5($password)) |
| ); |
| if (is_array($this->karma) && count($this->karma) > 0) { |
| $postOptions['karma'] = implode(',', $this->karma); |
| } |
| $code = $client->post($this->url . '/validate', $postOptions); |
| if ($code != 200) { |
| return PEAR::raiseError('Bad response to validate request.', $code); |
| } |
| $resp = $client->currentResponse(); |
| list($code, $message) = explode(' ', $resp['body'], 1); |
| if ($code != 8) { |
| return PEAR::raiseError($message, $code); |
| } |
| return true; |
| } |
| // }}} |
| } |
| ?> |
| /obs_saisons/SPIP-v1-8-3/modules/configuration/Container/RADIUS.php |
|---|
| New file |
| 0,0 → 1,182 |
| <?php |
| /* vim: set expandtab tabstop=4 shiftwidth=4 softtabstop=4 foldmethod=marker: */ |
| /** |
| * Storage driver for use against RADIUS servers |
| * |
| * PHP versions 4 and 5 |
| * |
| * LICENSE: This source file is subject to version 3.01 of the PHP license |
| * that is available through the world-wide-web at the following URI: |
| * http://www.php.net/license/3_01.txt. If you did not receive a copy of |
| * the PHP License and are unable to obtain it through the web, please |
| * send a note to license@php.net so we can mail you a copy immediately. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Michael Bretterklieber <michael@bretterklieber.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version CVS: $Id: RADIUS.php,v 1.16 2007/06/12 03:11:26 aashley Exp $ |
| * @link http://pear.php.net/package/Auth |
| * @since File available since Release 1.2.0 |
| */ |
| /** |
| * Include Auth_Container base class |
| */ |
| require_once "Auth/Container.php"; |
| /** |
| * Include PEAR Auth_RADIUS package |
| */ |
| require_once "Auth/RADIUS.php"; |
| /** |
| * Storage driver for authenticating users against RADIUS servers. |
| * |
| * @category Authentication |
| * @package Auth |
| * @author Michael Bretterklieber <michael@bretterklieber.com> |
| * @author Adam Ashley <aashley@php.net> |
| * @copyright 2001-2006 The PHP Group |
| * @license http://www.php.net/license/3_01.txt PHP License 3.01 |
| * @version Release: 1.6.1 File: $Revision: 1.16 $ |
| * @link http://pear.php.net/package/Auth |
| * @since Class available since Release 1.2.0 |
| */ |
| class Auth_Container_RADIUS extends Auth_Container |
| { |
| // {{{ properties |
| /** |
| * Contains a RADIUS object |
| * @var object |
| */ |
| var $radius; |
| /** |
| * Contains the authentication type |
| * @var string |
| */ |
| var $authtype; |
| // }}} |
| // {{{ Auth_Container_RADIUS() [constructor] |
| /** |
| * Constructor of the container class. |
| * |
| * $options can have these keys: |
| * 'servers' an array containing an array: servername, port, |
| * sharedsecret, timeout, maxtries |
| * 'configfile' The filename of the configuration file |
| * 'authtype' The type of authentication, one of: PAP, CHAP_MD5, |
| * MSCHAPv1, MSCHAPv2, default is PAP |
| * |
| * @param $options associative array |
| * @return object Returns an error object if something went wrong |
| */ |
| function Auth_Container_RADIUS($options) |
| { |
| $this->authtype = 'PAP'; |
| if (isset($options['authtype'])) { |
| $this->authtype = $options['authtype']; |
| } |
| $classname = 'Auth_RADIUS_' . $this->authtype; |
| if (!class_exists($classname)) { |
| PEAR::raiseError("Unknown Authtype, please use one of: " |
| ."PAP, CHAP_MD5, MSCHAPv1, MSCHAPv2!", 41, PEAR_ERROR_DIE); |
| } |
| $this->radius = new $classname; |
| if (isset($options['configfile'])) { |
| $this->radius->setConfigfile($options['configfile']); |
| } |
| $servers = $options['servers']; |
| if (is_array($servers)) { |
| foreach ($servers as $server) { |
| $servername = $server[0]; |
| $port = isset($server[1]) ? $server[1] : 0; |
| $sharedsecret = isset($server[2]) ? $server[2] : 'testing123'; |
| $timeout = isset($server[3]) ? $server[3] : 3; |
| $maxtries = isset($server[4]) ? $server[4] : 3; |
| $this->radius->addServer($servername, $port, $sharedsecret, $timeout, $maxtries); |
| } |
| } |
| if (!$this->radius->start()) { |
| PEAR::raiseError($this->radius->getError(), 41, PEAR_ERROR_DIE); |
| } |
| } |
| // }}} |
| // {{{ fetchData() |
| /** |
| * Authenticate |
| * |
| * @param string Username |
| * @param string Password |
| * @return bool true on success, false on reject |
| */ |
| function fetchData($username, $password, $challenge = null) |
| { |
| $this->log('Auth_Container_RADIUS::fetchData() called.', AUTH_LOG_DEBUG); |
| switch($this->authtype) { |
| case 'CHAP_MD5': |
| case 'MSCHAPv1': |
| if (isset($challenge)) { |
| $this->radius->challenge = $challenge; |
| $this->radius->chapid = 1; |
| $this->radius->response = pack('H*', $password); |
| } else { |
| require_once 'Crypt/CHAP.php'; |
| $classname = 'Crypt_' . $this->authtype; |
| $crpt = new $classname; |
| $crpt->password = $password; |
| $this->radius->challenge = $crpt->challenge; |
| $this->radius->chapid = $crpt->chapid; |
| $this->radius->response = $crpt->challengeResponse(); |
| } |
| break; |
| case 'MSCHAPv2': |
| require_once 'Crypt/CHAP.php'; |
| $crpt = new Crypt_MSCHAPv2; |
| $crpt->username = $username; |
| $crpt->password = $password; |
| $this->radius->challenge = $crpt->authChallenge; |
| $this->radius->peerChallenge = $crpt->peerChallenge; |
| $this->radius->chapid = $crpt->chapid; |
| $this->radius->response = $crpt->challengeResponse(); |
| break; |
| default: |
| $this->radius->password = $password; |
| break; |
| } |
| $this->radius->username = $username; |
| $this->radius->putAuthAttributes(); |
| $result = $this->radius->send(); |
| if (PEAR::isError($result)) { |
| return false; |
| } |
| $this->radius->getAttributes(); |
| // just for debugging |
| // $this->radius->dumpAttributes(); |
| return $result; |
| } |
| // }}} |
| } |
| ?> |