d4/d40/ldap__groups_8php_source.html

<?php

/* Copyright (C) 2004      Rodolphe Quiedeville <rodolphe@quiedeville.org>

 * Copyright (C) 2004      Sebastien Di Cintio  <sdicintio@ressource-toi.org>

 * Copyright (C) 2004      Benoit Mortier       <benoit.mortier@opensides.be>

 * Copyright (C) 2005      Regis Houssin        <regis.houssin@inodbox.com>

 * Copyright (C) 2006-2011 Laurent Destailleur  <eldy@users.sourceforge.net>

 * Copyright (C) 2011-2013 Juanjo Menent    <jmenent@2byte.es>

 *

 * This program is free software; you can redistribute it and/or modify

 * it under the terms of the GNU General Public License as published by

 * the Free Software Foundation; either version 3 of the License, or

 * (at your option) any later version.

 *

 * This program is distributed in the hope that it will be useful,

 * but WITHOUT ANY WARRANTY; without even the implied warranty of

 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

 * GNU General Public License for more details.

 *

 * You should have received a copy of the GNU General Public License

 * along with this program. If not, see <https://www.gnu.org/licenses/>.

 */


// Load Dolibarr environment

require '../main.inc.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/admin.lib.php';

require_once DOL_DOCUMENT_ROOT.'/user/class/user.class.php';

require_once DOL_DOCUMENT_ROOT.'/user/class/usergroup.class.php';

require_once DOL_DOCUMENT_ROOT.'/core/class/ldap.class.php';

require_once DOL_DOCUMENT_ROOT.'/core/lib/ldap.lib.php';


// Load translation files required by the page

$langs->loadLangs(array("admin", "errors"));


if (!$user->admin) {

  accessforbidden();

}


$action = GETPOST('action', 'aZ09');


/*

 * Actions

 */


if ($action == 'setvalue' && $user->admin) {

  $error = 0;

  $db->begin();


  if (!dolibarr_set_const($db, 'LDAP_GROUP_DN', GETPOST("group", 'alphanohtml'), 'chaine', 0, '', $conf->entity)) {

    $error++;

  }

  if (!dolibarr_set_const($db, 'LDAP_GROUP_OBJECT_CLASS', GETPOST("objectclass", 'alphanohtml'), 'chaine', 0, '', $conf->entity)) {

    $error++;

  }

  if (!dolibarr_set_const($db, 'LDAP_GROUP_FILTER', GETPOST("filter"), 'chaine', 0, '', $conf->entity)) {

    $error++;

  }

  if (!dolibarr_set_const($db, 'LDAP_GROUP_FIELD_FULLNAME', GETPOST("fieldfullname", 'alphanohtml'), 'chaine', 0, '', $conf->entity)) {

    $error++;

  }

  //if (! dolibarr_set_const($db, 'LDAP_GROUP_FIELD_NAME',GETPOST("fieldname", 'alphanohtml'),'chaine',0,'',$conf->entity)) $error++;

  if (!dolibarr_set_const($db, 'LDAP_GROUP_FIELD_DESCRIPTION', GETPOST("fielddescription", 'alphanohtml'), 'chaine', 0, '', $conf->entity)) {

    $error++;

  }

  if (!dolibarr_set_const($db, 'LDAP_GROUP_FIELD_GROUPMEMBERS', GETPOST("fieldgroupmembers", 'alphanohtml'), 'chaine', 0, '', $conf->entity)) {

    $error++;

  }

  if (!dolibarr_set_const($db, 'LDAP_GROUP_FIELD_GROUPID', GETPOST("fieldgroupid", 'alphanohtml'), 'chaine', 0, '', $conf->entity)) {

    $error++;

  }


  // This one must be after the others

  $valkey = '';

  $key = GETPOST("key");

  if ($key) {

    $valkey = $conf->global->$key;

  }

  if (!dolibarr_set_const($db, 'LDAP_KEY_GROUPS', $valkey, 'chaine', 0, '', $conf->entity)) {

    $error++;

  }


  if (!$error) {

    $db->commit();

    setEventMessages($langs->trans("SetupSaved"), null, 'mesgs');

  } else {

    $db->rollback();

    dol_print_error($db);

  }

}


/*

 * View

 */


$form = new Form($db);


llxHeader('', $langs->trans("LDAPSetup"), 'EN:Module_LDAP_En|FR:Module_LDAP|ES:M&oacute;dulo_LDAP');

$linkback = '<a href="'.DOL_URL_ROOT.'/admin/modules.php?restore_lastsearch_values=1">'.$langs->trans("BackToModuleList").'</a>';


print load_fiche_titre($langs->trans("LDAPSetup"), $linkback, 'title_setup');


$head = ldap_prepare_head();


// Test si fonction LDAP actives

if (!function_exists("ldap_connect")) {

  setEventMessages($langs->trans("LDAPFunctionsNotAvailableOnPHP"), null, 'errors');

}


print dol_get_fiche_head($head, 'groups', '', -1);


print '<span class="opacitymedium">'.$langs->trans("LDAPDescGroups").'</span><br>';

print '<br>';


print '<form method="post" action="'.$_SERVER["PHP_SELF"].'?action=setvalue&token='.newToken().'">';

print '<input type="hidden" name="token" value="'.newToken().'">';


print '<table class="noborder centpercent">';


print '<tr class="liste_titre">';

print '<td colspan="4">'.$langs->trans("LDAPSynchronizeGroups").'</td>';

print "</tr>\n";


// DN pour les groupes

print '<!-- LDAP_GROUP_DN -->';

print '<tr class="oddeven"><td><span class="fieldrequired">'.$langs->trans("LDAPGroupDn").'</span></td><td>';

print '<input size="48" type="text" name="group" value="'.getDolGlobalString('LDAP_GROUP_DN').'">';

print '</td><td>'.$langs->trans("LDAPGroupDnExample").'</td>';

print '<td>&nbsp;</td>';

print '</tr>';


// List of object class used to define attributes in structure

print '<!-- LDAP_GROUP_OBJECT_CLASS -->';

print '<tr class="oddeven"><td><span class="fieldrequired">'.$langs->trans("LDAPGroupObjectClassList").'</span></td><td>';

print '<input size="48" type="text" name="objectclass" value="'.getDolGlobalString('LDAP_GROUP_OBJECT_CLASS').'">';

print '</td><td>'.$langs->trans("LDAPGroupObjectClassListExample").'</td>';

print '<td>&nbsp;</td>';

print '</tr>';


// Filter, used to filter search

print '<!-- LDAP_GROUP_FILTER -->';

print '<tr class="oddeven"><td>'.$langs->trans("LDAPFilterConnection").'</td><td>';

print '<input size="48" type="text" name="filter" value="'.getDolGlobalString('LDAP_GROUP_FILTER').'">';

print '</td><td>'.$langs->trans("LDAPGroupFilterExample").'</td>';

print '<td></td>';

print '</tr>';


print '</table>';


print '<br>';


print '<table class="noborder centpercent">';


print '<tr class="liste_titre">';

print '<td>'.$langs->trans("LDAPDolibarrMapping").'</td>';

print '<td colspan="2">'.$langs->trans("LDAPLdapMapping").'</td>';

print '<td class="right">'.$langs->trans("LDAPNamingAttribute").'</td>';

print "</tr>\n";


// Filtre


// Common name

print '<tr class="oddeven"><td>'.$langs->trans("LDAPFieldName").'</td><td>';

print '<input size="25" type="text" name="fieldfullname" value="'.getDolGlobalString('LDAP_GROUP_FIELD_FULLNAME').'">';

print '</td><td>'.$langs->trans("LDAPFieldCommonNameExample").'</td>';

print '<td class="right"><input type="radio" name="key" value="LDAP_GROUP_FIELD_FULLNAME"'.((getDolGlobalString('LDAP_KEY_GROUPS') == getDolGlobalString('LDAP_GROUP_FIELD_FULLNAME')) ? ' checked' : '')."></td>";

print '</tr>';


// Name

/*

print '<tr class="oddeven"><td>'.$langs->trans("LDAPFieldName").'</td><td>';

print '<input size="25" type="text" name="fieldname" value="'.$conf->global->LDAP_GROUP_FIELD_NAME.'">';

print '</td><td>'.$langs->trans("LDAPFieldNameExample").'</td>';

print '<td class="right"><input type="radio" name="key" value="'.$conf->global->LDAP_GROUP_FIELD_NAME.'"'.($conf->global->LDAP_KEY_GROUPS==$conf->global->LDAP_GROUP_FIELD_NAME?' checked':'')."></td>";

print '</tr>';

*/


// Description

print '<tr class="oddeven"><td>'.$langs->trans("LDAPFieldDescription").'</td><td>';

print '<input size="25" type="text" name="fielddescription" value="'.getDolGlobalString('LDAP_GROUP_FIELD_DESCRIPTION').'">';

print '</td><td>'.$langs->trans("LDAPFieldDescriptionExample").'</td>';

print '<td class="right"><input type="radio" name="key" value="LDAP_GROUP_FIELD_DESCRIPTION"'.((getDolGlobalString('LDAP_KEY_GROUPS') == getDolGlobalString('LDAP_GROUP_FIELD_DESCRIPTION')) ? ' checked' : '')."></td>";

print '</tr>';


// User group

print '<tr class="oddeven"><td>'.$langs->trans("LDAPFieldGroupMembers").'</td><td>';

print '<input size="25" type="text" name="fieldgroupmembers" value="'.getDolGlobalString('LDAP_GROUP_FIELD_GROUPMEMBERS').'">';

print '</td><td>'.$langs->trans("LDAPFieldGroupMembersExample").'</td>';

print '<td class="right"><input type="radio" name="key" value="LDAP_GROUP_FIELD_GROUPMEMBERS"'.((getDolGlobalString('LDAP_KEY_GROUPS') == getDolGlobalString('LDAP_GROUP_FIELD_GROUPMEMBERS')) ? ' checked' : '')."></td>";

print '</tr>';


// Group id

print '<tr class="oddeven"><td>'.$langs->trans("LDAPFieldGroupid").'</td><td>';

print '<input size="25" type="text" name="fieldgroupid" value="'.getDolGlobalString('LDAP_GROUP_FIELD_GROUPID').'">';

print '</td><td>'.$langs->trans("LDAPFieldGroupidExample").'</td>';

print '<td class="right">&nbsp;</td>';

print '</tr>';


print '</table>';


print info_admin($langs->trans("LDAPDescValues"));


print dol_get_fiche_end();


print $form->buttonsSaveCancel("Modify", '');


print '</form>';


/*

 * Test de la connexion

 */

if (getDolGlobalInt('LDAP_SYNCHRO_ACTIVE') === Ldap::SYNCHRO_DOLIBARR_TO_LDAP) {

  $butlabel = $langs->trans("LDAPTestSynchroGroup");

  $testlabel = 'testgroup';

  $key = getDolGlobalString('LDAP_KEY_GROUPS');

  $dn = getDolGlobalString('LDAP_GROUP_DN');

  $objectclass = getDolGlobalString('LDAP_GROUP_OBJECT_CLASS');


  show_ldap_test_button($butlabel, $testlabel, $key, $dn, $objectclass);

} elseif (getDolGlobalInt('LDAP_SYNCHRO_ACTIVE') === Ldap::SYNCHRO_LDAP_TO_DOLIBARR) {

  $butlabel = $langs->trans("LDAPTestSearch");

  $testlabel = 'testsearchgroup';

  $key = getDolGlobalString('LDAP_KEY_GROUPS');

  $dn = getDolGlobalString('LDAP_GROUP_DN');

  $objectclass = getDolGlobalString('LDAP_GROUP_OBJECT_CLASS');

  show_ldap_test_button($butlabel, $testlabel, $key, $dn, $objectclass);

}


if (function_exists("ldap_connect")) {

  if ($action == 'testgroup') {

    // Creation objet

    $object = new UserGroup($db);

    $object->initAsSpecimen();


    // Test synchro

    $ldap = new Ldap();

    $result = $ldap->connect_bind();


    if ($result > 0) {

      $info = $object->_load_ldap_info();

      $dn = $object->_load_ldap_dn($info);


      // Get a gid number for objectclass PosixGroup

      if (in_array('posixGroup', $info['objectclass'])) {

        $info['gidNumber'] = $ldap->getNextGroupGid('LDAP_KEY_GROUPS');

      }


      $result1 = $ldap->delete($dn); // To be sure to delete existing records

      $result2 = $ldap->add($dn, $info, $user); // Now the test

      $result3 = $ldap->delete($dn); // Clean what we did


      if ($result2 > 0) {

        print img_picto('', 'info').' ';

        print '<span class="ok">'.$langs->trans("LDAPSynchroOK").'</span><br>';

      } else {

        print img_picto('', 'error').' ';

        print '<span class="error">'.$langs->trans("LDAPSynchroKOMayBePermissions");

        print ': '.$ldap->error;

        print '</span><br>';

        print $langs->trans("ErrorLDAPMakeManualTest", $conf->ldap->dir_temp).'<br>';

      }


      print "<br>\n";

      print "LDAP input file used for test:<br><br>\n";

      print nl2br($ldap->dump_content($dn, $info));

      print "\n<br>";

    } else {

      print img_picto('', 'error').' ';

      print '<span class="error">'.$langs->trans("LDAPSynchroKO");

      print ': '.$ldap->error;

      print '</span><br>';

      print $langs->trans("ErrorLDAPMakeManualTest", $conf->ldap->dir_temp).'<br>';

    }

  }


  if ($action == 'testsearchgroup') {

    // TODO Mutualize code following with other ldap_xxxx.php pages


    // Test synchro

    $ldap = new Ldap();

    $result = $ldap->connect_bind();


    if ($result > 0) {

      $required_fields = array(

        getDolGlobalString('LDAP_KEY_GROUPS'),

        // getDolGlobalString('LDAP_GROUP_FIELD_NAME'),

        getDolGlobalString('LDAP_GROUP_FIELD_DESCRIPTION'),

        getDolGlobalString('LDAP_GROUP_FIELD_GROUPMEMBERS'),

        getDolGlobalString('LDAP_GROUP_FIELD_GROUPID')

      );


      // Remove from required_fields all entries not configured in LDAP (empty) and duplicated

      $required_fields = array_unique(array_values(array_filter($required_fields, "dol_validElement")));


      // Get from LDAP database an array of results

      $ldapgroups = $ldap->getRecords('*', getDolGlobalString('LDAP_GROUP_DN'), getDolGlobalString('LDAP_KEY_GROUPS'), $required_fields, 'group');

      //$ldapgroups = $ldap->getRecords('*', $conf->global->LDAP_GROUP_DN, $conf->global->LDAP_KEY_GROUPS, '', 'group');


      if (is_array($ldapgroups)) {

        $liste = array();

        foreach ($ldapgroups as $key => $ldapgroup) {

          // Define the label string for this group

          $label = '';

          foreach ($required_fields as $value) {

            if ($value) {

              $label .= $value."=".$ldapgroup[$value]." ";

            }

          }

          $liste[$key] = $label;

        }

      } else {

        setEventMessages($ldap->error, $ldap->errors, 'errors');

      }


      print "<br>\n";

      print "LDAP search for group:<br>\n";

      print "search: *<br>\n";

      print "userDN: ".getDolGlobalString('LDAP_GROUP_DN')."<br>\n";

      print "useridentifier: ".getDolGlobalString('LDAP_KEY_GROUPS')."<br>\n";

      print "required_fields: ".implode(',', $required_fields)."<br>\n";

      print "=> ".count($liste)." records<br>\n";

      print "\n<br>";

    } else {

      print img_picto('', 'error').' ';

      print '<span class="error">'.$langs->trans("LDAPSynchroKO");

      print ': '.$ldap->error;

      print '</span><br>';

      print $langs->trans("ErrorLDAPMakeManualTest", $conf->ldap->dir_temp).'<br>';

    }

  }

}


// End of page

llxFooter();

$db->close();

dolibarr_set_const
dolibarr_set_const($db, $name, $value, $type='chaine', $visible=0, $note='', $entity=1)
Insert a parameter (key,value) into database (delete old key then insert it again).
Definition admin.lib.php:638

llxHeader
if(!defined('NOREQUIRESOC')) if(!defined( 'NOREQUIRETRAN')) if(!defined('NOTOKENRENEWAL')) if(!defined( 'NOREQUIREMENU')) if(!defined('NOREQUIREHTML')) if(!defined( 'NOREQUIREAJAX')) llxHeader()
Empty header.
Definition wrapper.php:56

llxFooter
llxFooter()
Empty footer.
Definition wrapper.php:70

Form
Class to manage generation of HTML components Only common components must be here.
Definition html.form.class.php:54

Ldap
Class to manage LDAP features.
Definition ldap.class.php:35

Ldap\SYNCHRO_LDAP_TO_DOLIBARR
const SYNCHRO_LDAP_TO_DOLIBARR
Ldap to Dolibarr synchronization.
Definition ldap.class.php:141

Ldap\SYNCHRO_DOLIBARR_TO_LDAP
const SYNCHRO_DOLIBARR_TO_LDAP
Dolibarr to Ldap synchronization.
Definition ldap.class.php:136

UserGroup
Class to manage user groups.
Definition usergroup.class.php:41

load_fiche_titre
load_fiche_titre($titre, $morehtmlright='', $picto='generic', $pictoisfullpath=0, $id='', $morecssontable='', $morehtmlcenter='')
Load a title with picto.
Definition functions.lib.php:5541

dol_get_fiche_head
dol_get_fiche_head($links=array(), $active='', $title='', $notab=0, $picto='', $pictoisfullpath=0, $morehtmlright='', $morecss='', $limittoshow=0, $moretabssuffix='', $dragdropfile=0)
Show tabs of a record.
Definition functions.lib.php:2028

dol_print_error
dol_print_error($db='', $error='', $errors=null)
Displays error message system with all the information to facilitate the diagnosis and the escalation...
Definition functions.lib.php:5169

dol_get_fiche_end
dol_get_fiche_end($notab=0)
Return tab footer of a card.
Definition functions.lib.php:2226

getDolGlobalInt
getDolGlobalInt($key, $default=0)
Return dolibarr global constant int value.
Definition functions.lib.php:156

img_picto
img_picto($titlealt, $picto, $moreatt='', $pictoisfullpath=false, $srconly=0, $notitle=0, $alt='', $morecss='', $marginleftonlyshort=2)
Show picto whatever it's its name (generic function)
Definition functions.lib.php:4197

GETPOST
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
Definition functions.lib.php:614

info_admin
info_admin($text, $infoonimgalt=0, $nodiv=0, $admin='1', $morecss='hideonsmartphone', $textfordropdown='')
Show information for admin users or standard users.
Definition functions.lib.php:5125

setEventMessages
setEventMessages($mesg, $mesgs, $style='mesgs', $messagekey='', $noduplicate=0)
Set event messages in dol_events session object.
Definition functions.lib.php:8743

getDolGlobalString
getDolGlobalString($key, $default='')
Return dolibarr global constant string value.
Definition functions.lib.php:142

ldap_prepare_head
ldap_prepare_head()
Initialize the array of tabs for customer invoice.
Definition ldap.lib.php:31

show_ldap_test_button
show_ldap_test_button($butlabel, $testlabel, $key, $dn, $objectclass)
Show button test LDAP synchro.
Definition ldap.lib.php:102

accessforbidden
accessforbidden($message='', $printheader=1, $printfooter=1, $showonlymessage=0, $params=null)
Show a message to say access is forbidden and stop program.
Definition security.lib.php:1185