2009-07-01 16:09:17 +10:00
|
|
|
<?php
|
|
|
|
// $Header$
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Classes and functions for the template engine.
|
|
|
|
*
|
|
|
|
* Templates are either:
|
|
|
|
* + Creating or Editing, (a Container or DN passed to the object)
|
|
|
|
* + A predefined template, or a default template (template ID passed to the object)
|
|
|
|
*
|
|
|
|
* The template object will know which attributes are mandatory (MUST
|
|
|
|
* attributes) and which attributes are optional (MAY attributes). It will also
|
|
|
|
* contain a list of optional attributes. These are attributes that the schema
|
|
|
|
* will allow data for (they are MAY attributes), but the template has not
|
|
|
|
* included a definition for them.
|
|
|
|
*
|
|
|
|
* The template object will be invalidated if it does contain the necessary
|
|
|
|
* items (objectClass, MUST attributes, etc) to make a successful LDAP update.
|
|
|
|
*
|
|
|
|
* @author The phpLDAPadmin development team
|
|
|
|
* @package phpLDAPadmin
|
|
|
|
*/
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Template Class
|
|
|
|
*
|
|
|
|
* @package phpLDAPadmin
|
|
|
|
* @subpackage Templates
|
|
|
|
* @todo RDN attributes should be treated as MUST attributes even though the schema marks them as MAY
|
|
|
|
* @todo RDN attributes need to be checked that are included in the schema, otherwise mark it is invalid
|
|
|
|
* @todo askcontainer is no longer used?
|
|
|
|
*/
|
|
|
|
class Template extends xmlTemplate {
|
|
|
|
# If this template visible on the template choice list
|
|
|
|
private $visible = true;
|
|
|
|
# Is this template valid after parsing the XML file
|
|
|
|
private $invalid = false;
|
|
|
|
private $invalid_reason;
|
|
|
|
# The TEMPLATE structural objectclasses
|
|
|
|
protected $structural_oclass = array();
|
|
|
|
protected $description = '';
|
|
|
|
# Is this a read-only template (only valid in modification templates)
|
|
|
|
private $readonly = false;
|
|
|
|
|
|
|
|
# If this is set, it means we are editing an entry.
|
|
|
|
private $dn;
|
|
|
|
# Where this template will store its data
|
|
|
|
protected $container;
|
|
|
|
# A regexp that determines if this template is valid in the container.
|
|
|
|
private $regexp;
|
|
|
|
# Template Title
|
|
|
|
public $title;
|
|
|
|
# Icon for the template
|
|
|
|
private $icon;
|
|
|
|
# Template RDN attributes
|
|
|
|
private $rdn;
|
|
|
|
|
|
|
|
public function __clone() {
|
|
|
|
# We need to clone our attributes, when passing back a template with getTemplate
|
|
|
|
foreach ($this->attributes as $key => $value)
|
|
|
|
$this->attributes[$key] = clone $value;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Main processing to store the template.
|
|
|
|
*
|
|
|
|
* @param xmldata Parsed xmldata from xml2array object
|
|
|
|
*/
|
|
|
|
protected function storeTemplate($xmldata) {
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Entered with (%s)',5,__FILE__,__LINE__,__METHOD__,$xmldata);
|
|
|
|
|
|
|
|
$server = $this->getServer();
|
|
|
|
$objectclasses = array();
|
|
|
|
|
|
|
|
foreach ($xmldata['template'] as $xml_key => $xml_value) {
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Foreach loop Key [%s] Value [%s]',4,__FILE__,__LINE__,__METHOD__,$xml_key,is_array($xml_value));
|
|
|
|
|
|
|
|
switch ($xml_key) {
|
|
|
|
# Build our object Classes from the DN and Template.
|
|
|
|
case ('objectclasses'):
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Case [%s]',4,__FILE__,__LINE__,__METHOD__,$xml_key);
|
|
|
|
|
|
|
|
if (isset($xmldata['template'][$xml_key]['objectclass']))
|
|
|
|
if (is_array($xmldata['template'][$xml_key]['objectclass'])) {
|
|
|
|
foreach ($xmldata['template'][$xml_key]['objectclass'] as $index => $details) {
|
|
|
|
|
|
|
|
# XML files with only 1 objectClass dont have a numeric index.
|
|
|
|
$soc = $server->getSchemaObjectClass(strtolower($details));
|
|
|
|
|
|
|
|
# If we havent recorded this objectclass already, do so now.
|
|
|
|
if (is_object($soc) && ! in_array($soc->getName(),$objectclasses))
|
|
|
|
array_push($objectclasses,$soc->getName(false));
|
|
|
|
|
|
|
|
elseif (! is_object($soc))
|
|
|
|
system_message(array(
|
|
|
|
'title'=>_('Automatically removed objectClass from template'),
|
|
|
|
'body'=>sprintf('%s: <b>%s</b> %s',$this->getTitle(),$details,_('removed from template as it is not defined in the schema')),
|
|
|
|
'type'=>'warn'));
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
# XML files with only 1 objectClass dont have a numeric index.
|
|
|
|
$soc = $server->getSchemaObjectClass(strtolower($xmldata['template'][$xml_key]['objectclass']));
|
|
|
|
|
|
|
|
# If we havent recorded this objectclass already, do so now.
|
|
|
|
if (is_object($soc) && ! in_array($soc->getName(),$objectclasses))
|
|
|
|
array_push($objectclasses,$soc->getName(false));
|
|
|
|
}
|
|
|
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
# Build our attribute list from the DN and Template.
|
|
|
|
case ('attributes'):
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Case [%s]',4,__FILE__,__LINE__,__METHOD__,$xml_key);
|
|
|
|
|
|
|
|
if (is_array($xmldata['template'][$xml_key])) {
|
|
|
|
foreach ($xmldata['template'][$xml_key] as $tattrs)
|
|
|
|
foreach ($tattrs as $index => $details) {
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Foreach tattrs Key [%s] Value [%s]',4,__FILE__,__LINE__,__METHOD__,
|
|
|
|
$index,$details);
|
|
|
|
|
|
|
|
# If there is no schema definition for the attribute, it will be ignored.
|
|
|
|
if ($sattr = $server->getSchemaAttribute($index))
|
|
|
|
if (is_null($this->getAttribute($sattr->getName())))
|
|
|
|
$this->addAttribute($sattr->getName(),$details,'XML');
|
|
|
|
}
|
|
|
|
|
|
|
|
masort($this->attributes,'order');
|
|
|
|
}
|
|
|
|
|
|
|
|
break;
|
|
|
|
|
|
|
|
default:
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Case [%s]',4,__FILE__,__LINE__,__METHOD__,$xml_key);
|
|
|
|
|
|
|
|
# Some key definitions need to be an array, some must not be:
|
|
|
|
$allowed_arrays = array('rdn');
|
|
|
|
$storelower = array('rdn');
|
|
|
|
$storearray = array('rdn');
|
|
|
|
|
|
|
|
# Items that must be stored lowercase
|
|
|
|
if (in_array($xml_key,$storelower))
|
|
|
|
if (is_array($xml_value))
|
|
|
|
foreach ($xml_value as $index => $value)
|
|
|
|
$xml_value[$index] = strtolower($value);
|
|
|
|
else
|
|
|
|
$xml_value = strtolower($xml_value);
|
|
|
|
|
|
|
|
# Items that must be stored as arrays
|
|
|
|
if (in_array($xml_key,$storearray) && ! is_array($xml_value))
|
|
|
|
$xml_value = array($xml_value);
|
|
|
|
|
|
|
|
# Items that should not be an array
|
|
|
|
if (! in_array($xml_key,$allowed_arrays) && is_array($xml_value)) {
|
|
|
|
debug_dump(array(__METHOD__,'key'=>$xml_key,'value'=>$xml_value));
|
|
|
|
error(sprintf(_('In the XML file (%s), [%s] is an array, it must be a string.'),
|
|
|
|
$this->filename,$xml_key),'error');
|
|
|
|
}
|
|
|
|
|
|
|
|
$this->$xml_key = $xml_value;
|
|
|
|
|
|
|
|
if ($xml_key == 'invalid' && $xml_value)
|
|
|
|
$this->invalid_reason = _('Disabled by XML configuration');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (! count($objectclasses)) {
|
|
|
|
$this->setInvalid(_('ObjectClasses in XML dont exist in LDAP server.'));
|
|
|
|
return;
|
|
|
|
|
|
|
|
} else {
|
2009-07-05 22:13:17 +10:00
|
|
|
$attribute = $this->addAttribute('objectClass',array('values'=>$objectclasses),'XML');
|
2009-07-01 16:09:17 +10:00
|
|
|
$attribute->justModified();
|
|
|
|
$attribute->setRequired();
|
2009-07-05 22:13:17 +10:00
|
|
|
$attribute->hide();
|
2009-07-01 16:09:17 +10:00
|
|
|
}
|
|
|
|
|
|
|
|
$this->rebuildTemplateAttrs();
|
|
|
|
|
|
|
|
# Check we have some manditory items.
|
|
|
|
foreach (array('rdn','structural_oclass','visible') as $key) {
|
|
|
|
if (! isset($this->$key)
|
|
|
|
|| (! is_array($this->$key) && ! trim($this->$key))) {
|
|
|
|
|
|
|
|
$this->setInvalid(sprintf(_('Missing %s in the XML file.'),$key));
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# Mark our RDN attributes as RDN
|
|
|
|
$counter = 1;
|
|
|
|
foreach ($this->rdn as $key) {
|
|
|
|
if ((is_null($attribute = $this->getAttribute($key))) && (in_array_ignore_case('extensibleobject',$this->getObjectClasses()))) {
|
|
|
|
$attribute = $this->addAttribute($key,array('values'=>array()));
|
|
|
|
$attribute->show();
|
|
|
|
}
|
|
|
|
|
|
|
|
if (! is_null($attribute))
|
|
|
|
$attribute->setRDN($counter++);
|
|
|
|
elseif ($this->isType('creation'))
|
|
|
|
$this->setInvalid(sprintf(_('Missing RDN attribute %s in the XML file.'),$key));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Is default templates enabled?
|
|
|
|
* This will disable the default template from the engine.
|
|
|
|
*
|
|
|
|
* @return boolean
|
|
|
|
*/
|
|
|
|
protected function hasDefaultTemplate() {
|
|
|
|
if ($_SESSION[APPCONFIG]->getValue('appearance','disable_default_template'))
|
|
|
|
return false;
|
|
|
|
else
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the templates of type (creation/modification)
|
|
|
|
*
|
|
|
|
* @param $string type - creation/modification
|
|
|
|
* @return array - Array of templates of that type
|
|
|
|
*/
|
|
|
|
protected function readTemplates($type) {
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Entered with ()',1,__FILE__,__LINE__,__METHOD__);
|
|
|
|
|
|
|
|
$template_xml = new Templates($this->server_id);
|
|
|
|
return $template_xml->getTemplates($type);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* This function will perform the following intialisation steps:
|
|
|
|
* + If a DN is set, query the ldap and load the object
|
|
|
|
* + Read our $_REQUEST variable and set the values
|
|
|
|
* After this action, the template should self describe as to whether it is an update, create
|
|
|
|
* or delete.
|
|
|
|
* (OLD values are IGNORED, we will have got them when we build this object from the LDAP server DN.)
|
|
|
|
*/
|
|
|
|
public function accept($makeVisible=false) {
|
|
|
|
$server = $this->getServer();
|
|
|
|
|
|
|
|
# If a DN is set, then query the LDAP server for the details.
|
|
|
|
if ($this->dn) {
|
|
|
|
if (! $server->dnExists($this->dn))
|
|
|
|
system_message(array(
|
|
|
|
'title'=>__METHOD__,
|
|
|
|
'body'=>sprintf('DN (%s) didnt exist in LDAP?',$this->dn),
|
|
|
|
'type'=>'info'));
|
|
|
|
|
|
|
|
$rdnarray = rdn_explode(strtolower(get_rdn(dn_escape($this->dn))));
|
|
|
|
|
|
|
|
$counter = 1;
|
|
|
|
foreach ($server->getDNAttrValues($this->dn,null,LDAP_DEREF_NEVER,array_merge(array('*'),$server->getValue('server','custom_attrs'))) as $attr => $values) {
|
|
|
|
# We ignore DNs.
|
|
|
|
if ($attr == 'dn')
|
|
|
|
continue;
|
|
|
|
|
|
|
|
$attribute = $this->getAttribute($attr);
|
|
|
|
|
|
|
|
if (is_null($attribute))
|
|
|
|
$attribute = $this->addAttribute($attr,array('values'=>$values));
|
|
|
|
else
|
2009-07-05 22:13:17 +10:00
|
|
|
if ($attribute->getValues()) {
|
|
|
|
# Override values to those that are defined in the XML file.
|
|
|
|
if ($attribute->getSource() != 'XML')
|
|
|
|
$attribute->setValue(array_values($values));
|
|
|
|
else
|
|
|
|
$attribute->setOldValue(array_values($values));
|
|
|
|
|
|
|
|
} else
|
2009-07-01 16:09:17 +10:00
|
|
|
$attribute->initValue(array_values($values));
|
|
|
|
|
|
|
|
# Work out the RDN attributes
|
|
|
|
foreach ($attribute->getValues() as $index => $value)
|
|
|
|
if (in_array(sprintf('%s=%s',
|
|
|
|
$attribute->getName(),strtolower($attribute->getValue($index))),$rdnarray))
|
|
|
|
$attribute->setRDN($counter++);
|
|
|
|
|
|
|
|
if ($makeVisible)
|
|
|
|
$attribute->show();
|
|
|
|
}
|
|
|
|
|
|
|
|
# Get the Internal Attributes
|
|
|
|
foreach ($server->getDNAttrValues($this->dn,null,LDAP_DEREF_NEVER,array_merge(array('+'),$server->getValue('server','custom_sys_attrs'))) as $attr => $values) {
|
|
|
|
$attribute = $this->getAttribute($attr);
|
|
|
|
|
|
|
|
if (is_null($attribute))
|
|
|
|
$attribute = $this->addAttribute($attr,array('values'=>$values));
|
|
|
|
else
|
|
|
|
if ($attribute->getValues())
|
|
|
|
$attribute->setValue(array_values($values));
|
|
|
|
else
|
|
|
|
$attribute->initValue(array_values($values));
|
|
|
|
|
|
|
|
if (! in_array_ignore_case($attribute->getName(),$server->getValue('server','custom_attrs')))
|
|
|
|
$attribute->setInternal();
|
|
|
|
}
|
|
|
|
|
|
|
|
# If this is the default template, and our $_REQUEST has defined our objectclass, then query the schema to get the attributes
|
|
|
|
} elseif ($this->container) {
|
|
|
|
if ($this->isType('default') && ! count($this->getAttributes(true)) && isset($_REQUEST['new_values']['objectclass'])) {
|
|
|
|
$attribute = $this->addAttribute('objectclass',array('values'=>$_REQUEST['new_values']['objectclass']));
|
|
|
|
$attribute->justModified();
|
|
|
|
$this->rebuildTemplateAttrs();
|
|
|
|
unset($_REQUEST['new_values']['objectclass']);
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
debug_dump_backtrace('No DN or CONTAINER?',1);
|
|
|
|
}
|
|
|
|
|
|
|
|
# Read in our new values.
|
|
|
|
foreach (array('new_values') as $key) {
|
|
|
|
if (isset($_REQUEST[$key]))
|
|
|
|
foreach ($_REQUEST[$key] as $attr => $values) {
|
|
|
|
# If it isnt an array, silently ignore it.
|
|
|
|
if (! is_array($values))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
# If _REQUEST['skip_array'] with this attr set, we'll ignore this new_value
|
|
|
|
if (isset($_REQUEST['skip_array'][$attr]))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
# Prune out entries with a blank value.
|
|
|
|
foreach ($values as $index => $value)
|
|
|
|
if (! strlen(trim($value)))
|
|
|
|
unset($values[$index]);
|
|
|
|
|
|
|
|
$attribute = $this->getAttribute($attr);
|
|
|
|
# If the attribute is null, then no attribute exists, silently ignore it (unless this is the default template)
|
|
|
|
if (is_null($attribute) && (! $this->isType('default') && ! $this->isType(null)))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
# If it is a binary attribute, the post should have base64 encoded the value, we'll need to reverse that
|
|
|
|
if ($server->isAttrBinary($attr))
|
|
|
|
foreach ($values as $index => $value)
|
|
|
|
$values[$index] = base64_decode($value);
|
|
|
|
|
|
|
|
if (is_null($attribute)) {
|
|
|
|
$attribute = $this->addAttribute($attr,array('values'=>$values));
|
|
|
|
|
|
|
|
if (count($values))
|
|
|
|
$attribute->justModified();
|
|
|
|
|
|
|
|
} else
|
|
|
|
$attribute->setValue(array_values($values));
|
|
|
|
}
|
|
|
|
|
|
|
|
# Read in our new binary values
|
|
|
|
if (isset($_FILES[$key]['name']))
|
|
|
|
foreach ($_FILES[$key]['name'] as $attr => $values) {
|
|
|
|
$new_values = array();
|
|
|
|
|
|
|
|
foreach ($values as $index => $details) {
|
|
|
|
# Ignore empty files
|
|
|
|
if (! $_FILES[$key]['size'][$attr][$index])
|
|
|
|
continue;
|
|
|
|
|
|
|
|
if (! is_uploaded_file($_FILES[$key]['tmp_name'][$attr][$index])) {
|
|
|
|
if (isset($_FILES[$key]['error'][$attr][$index]))
|
|
|
|
switch($_FILES[$key]['error'][$attr][$index]) {
|
|
|
|
|
|
|
|
# No error; possible file attack!
|
|
|
|
case 0:
|
|
|
|
$msg = _('Security error: The file being uploaded may be malicious.');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# Uploaded file exceeds the upload_max_filesize directive in php.ini
|
|
|
|
case 1:
|
|
|
|
$msg = _('The file you uploaded is too large. Please check php.ini, upload_max_size setting');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# Uploaded file exceeds the MAX_FILE_SIZE directive specified in the html form
|
|
|
|
case 2:
|
|
|
|
$msg = _('The file you uploaded is too large. Please check php.ini, upload_max_size setting');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# Uploaded file was only partially uploaded
|
|
|
|
case 3:
|
|
|
|
$msg = _('The file you selected was only partially uploaded, likley due to a network error.');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# No file was uploaded
|
|
|
|
case 4:
|
|
|
|
$msg = _('You left the attribute value blank. Please go back and try again.');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# A default error, just in case! :)
|
|
|
|
default:
|
|
|
|
$msg = _('Security error: The file being uploaded may be malicious.');
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
else
|
|
|
|
$msg = _('Security error: The file being uploaded may be malicious.');
|
|
|
|
|
|
|
|
system_message(array(
|
|
|
|
'title'=>_('Upload Binary Attribute Error'),'body'=>$msg,'type'=>'warn'));
|
|
|
|
|
|
|
|
} else {
|
|
|
|
$binaryfile = array();
|
|
|
|
$binaryfile['name'] = $_FILES[$key]['tmp_name'][$attr][$index];
|
|
|
|
$binaryfile['handle'] = fopen($binaryfile['name'],'r');
|
|
|
|
$binaryfile['data'] = fread($binaryfile['handle'],filesize($binaryfile['name']));
|
|
|
|
fclose($binaryfile['handle']);
|
|
|
|
|
|
|
|
$new_values[$index] = $binaryfile['data'];
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (count($new_values)) {
|
|
|
|
$attribute = $this->getAttribute($attr);
|
|
|
|
|
|
|
|
if (is_null($attribute))
|
|
|
|
$attribute = $this->addAttribute($attr,array('values'=>$new_values));
|
|
|
|
else
|
|
|
|
foreach ($new_values as $value)
|
|
|
|
$attribute->addValue($value);
|
|
|
|
|
|
|
|
$attribute->justModified();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# If there are any single item additions (from the add_attr form for example)
|
|
|
|
if (isset($_REQUEST['single_item_attr'])) {
|
|
|
|
if (isset($_REQUEST['single_item_value'])) {
|
|
|
|
if (! is_array($_REQUEST['single_item_value']))
|
|
|
|
$values = array($_REQUEST['single_item_value']);
|
|
|
|
else
|
|
|
|
$values = $_REQUEST['single_item_value'];
|
|
|
|
|
|
|
|
} elseif (isset($_REQUEST['binary'])) {
|
|
|
|
/* Special case for binary attributes (like jpegPhoto and userCertificate):
|
|
|
|
* we must go read the data from the file and override $_REQUEST['single_item_value'] with the
|
|
|
|
* binary data. Secondly, we must check if the ";binary" option has to be appended to the name
|
|
|
|
* of the attribute. */
|
|
|
|
|
|
|
|
if ($_FILES['single_item_value']['size'] === 0)
|
|
|
|
system_message(array(
|
|
|
|
'title'=>_('Upload Binary Attribute Error'),
|
|
|
|
'body'=>sprintf('%s %s',_('The file you chose is either empty or does not exist.'),_('Please go back and try again.')),
|
|
|
|
'type'=>'warn'));
|
|
|
|
|
|
|
|
else {
|
|
|
|
if (! is_uploaded_file($_FILES['single_item_value']['tmp_name'])) {
|
|
|
|
if (isset($_FILES['single_item_value']['error']))
|
|
|
|
switch($_FILES['single_item_value']['error']) {
|
|
|
|
|
|
|
|
# No error; possible file attack!
|
|
|
|
case 0:
|
|
|
|
$msg = _('Security error: The file being uploaded may be malicious.');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# Uploaded file exceeds the upload_max_filesize directive in php.ini
|
|
|
|
case 1:
|
|
|
|
$msg = _('The file you uploaded is too large. Please check php.ini, upload_max_size setting');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# Uploaded file exceeds the MAX_FILE_SIZE directive specified in the html form
|
|
|
|
case 2:
|
|
|
|
$msg = _('The file you uploaded is too large. Please check php.ini, upload_max_size setting');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# Uploaded file was only partially uploaded
|
|
|
|
case 3:
|
|
|
|
$msg = _('The file you selected was only partially uploaded, likley due to a network error.');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# No file was uploaded
|
|
|
|
case 4:
|
|
|
|
$msg = _('You left the attribute value blank. Please go back and try again.');
|
|
|
|
break;
|
|
|
|
|
|
|
|
# A default error, just in case! :)
|
|
|
|
default:
|
|
|
|
$msg = _('Security error: The file being uploaded may be malicious.');
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
|
|
|
|
else
|
|
|
|
$msg = _('Security error: The file being uploaded may be malicious.');
|
|
|
|
|
|
|
|
system_message(array(
|
|
|
|
'title'=>_('Upload Binary Attribute Error'),'body'=>$msg,'type'=>'warn'),'index.php');
|
|
|
|
}
|
|
|
|
|
|
|
|
$binaryfile = array();
|
|
|
|
$binaryfile['name'] = $_FILES['single_item_value']['tmp_name'];
|
|
|
|
$binaryfile['handle'] = fopen($binaryfile['name'],'r');
|
|
|
|
$binaryfile['data'] = fread($binaryfile['handle'],filesize($binaryfile['name']));
|
|
|
|
fclose($binaryfile['handle']);
|
|
|
|
|
|
|
|
$values = array($binaryfile['data']);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (count($values)) {
|
|
|
|
$attribute = $this->getAttribute($_REQUEST['single_item_attr']);
|
|
|
|
|
|
|
|
if (is_null($attribute))
|
|
|
|
$attribute = $this->addAttribute($_REQUEST['single_item_attr'],array('values'=>$values));
|
|
|
|
else
|
|
|
|
$attribute->setValue(array_values($values));
|
|
|
|
|
|
|
|
$attribute->justModified();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# If this is the default creation template, we need to set some additional values
|
|
|
|
if ($this->isType('default') && $this->getContext() == 'create') {
|
|
|
|
# Load our schema, based on the objectclasses that may have already been defined.
|
|
|
|
$this->rebuildTemplateAttrs();
|
|
|
|
|
|
|
|
# Set the RDN attribute
|
|
|
|
$counter = 1;
|
|
|
|
foreach (get_request('rdn_attribute','REQUEST',false,array()) as $key => $value) {
|
|
|
|
$attribute = $this->getAttribute($value);
|
|
|
|
|
|
|
|
if (! is_null($attribute))
|
|
|
|
$attribute->setRDN($counter++);
|
|
|
|
|
|
|
|
else {
|
|
|
|
system_message(array(
|
|
|
|
'title'=>_('No RDN attribute'),
|
|
|
|
'body'=>_('No RDN attribute was selected'),
|
|
|
|
'type'=>'warn'),'index.php');
|
|
|
|
|
|
|
|
die();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Set the DN for this template, if we are editing entries
|
|
|
|
*
|
|
|
|
* @param dn The DN of the entry
|
|
|
|
*/
|
|
|
|
public function setDN($dn) {
|
|
|
|
if (isset($this->container))
|
|
|
|
system_message(array(
|
|
|
|
'title'=>__METHOD__,
|
|
|
|
'body'=>'CONTAINER set while setting DN',
|
|
|
|
'type'=>'info'));
|
|
|
|
|
|
|
|
$this->dn = $dn;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Set the RDN attributes
|
|
|
|
* Given an RDN, mark the attributes as RDN attributes. If there is no defined attribute,
|
|
|
|
* then the remaining RDNs will be returned.
|
|
|
|
*
|
|
|
|
* @param RDN
|
|
|
|
* @return RDN attributes not processed
|
|
|
|
*/
|
|
|
|
public function setRDNAttributes($rdn) {
|
|
|
|
# Setup to work out our RDN.
|
|
|
|
$rdnarray = rdn_explode($rdn);
|
|
|
|
|
|
|
|
$counter = 1;
|
|
|
|
foreach ($this->getAttributes(true) as $attribute)
|
|
|
|
foreach ($rdnarray as $index => $rdnattr) {
|
|
|
|
list($attr,$value) = explode('=',$rdnattr);
|
|
|
|
|
|
|
|
if (strtolower($attr) == $attribute->getName()) {
|
|
|
|
$attribute->setRDN($counter++);
|
|
|
|
unset($rdnarray[$index]);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return $rdnarray;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Display the DN for this template entry. If the DN is not set (creating a new entry), then
|
|
|
|
* a generated DN will be produced, taken from the RDN and the CONTAINER details.
|
|
|
|
*
|
|
|
|
* @return dn
|
|
|
|
*/
|
|
|
|
public function getDN() {
|
|
|
|
if ($this->dn)
|
|
|
|
return $this->dn;
|
|
|
|
|
|
|
|
# If DN is not set, our DN will be made from our RDN and Container.
|
|
|
|
elseif ($this->getRDN() && $this->getContainer())
|
|
|
|
return sprintf('%s,%s',$this->getRDN(),$this->GetContainer());
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Set the container for this template, if we are creating entries
|
|
|
|
*
|
|
|
|
* @param dn The DN of the container
|
|
|
|
* @todo Trigger a query to the LDAP server and generate an error if the container doesnt exist
|
|
|
|
*/
|
|
|
|
public function setContainer($container) {
|
|
|
|
if (isset($this->dn))
|
|
|
|
system_message(array(
|
|
|
|
'title'=>__METHOD__,
|
|
|
|
'body'=>'DN set while setting CONTAINER',
|
|
|
|
'type'=>'info'));
|
|
|
|
|
|
|
|
$this->container = $container;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get the DN of the container for this entry
|
|
|
|
*
|
|
|
|
* @return dn DN of the container
|
|
|
|
*/
|
|
|
|
public function getContainer() {
|
|
|
|
return $this->container;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Copy a DN
|
|
|
|
*/
|
|
|
|
public function copy($template,$rdn) {
|
|
|
|
$rdnarray = rdn_explode($rdn);
|
|
|
|
|
|
|
|
$counter = 1;
|
|
|
|
foreach ($template->getAttributes(true) as $sattribute) {
|
|
|
|
$attribute = $this->addAttribute($sattribute->getName(false),array('values'=>$sattribute->getValues()));
|
|
|
|
|
|
|
|
# Set our new RDN, and its values
|
|
|
|
if (is_null($attribute)) {
|
|
|
|
debug_dump_backtrace('Attribute is null, it probably doesnt exist in the destination server?');
|
|
|
|
|
|
|
|
} else {
|
|
|
|
|
|
|
|
# Mark our internal attributes.
|
|
|
|
if ($sattribute->isInternal())
|
|
|
|
$attribute->setInternal();
|
|
|
|
|
|
|
|
$modified = false;
|
|
|
|
foreach ($rdnarray as $index => $rdnattr) {
|
|
|
|
list($attr,$value) = explode('=',$rdnattr);
|
|
|
|
if (strtolower($attr) == $attribute->getName()) {
|
|
|
|
|
|
|
|
# If this is already marked as an RDN, then this multivalue RDN was updated on a previous loop
|
|
|
|
if (! $modified) {
|
|
|
|
$attribute->setValue(array($value));
|
|
|
|
$attribute->setRDN($counter++);
|
|
|
|
$modified = true;
|
|
|
|
|
|
|
|
} else {
|
|
|
|
$attribute->addValue($value);
|
|
|
|
}
|
|
|
|
|
|
|
|
# This attribute has been taken care of, we'll drop it from our list.
|
|
|
|
unset($rdnarray[$index]);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# If we have any RDN values left over, there werent in the original entry and need to be added.
|
|
|
|
foreach ($rdnarray as $rdnattr) {
|
|
|
|
list($attr,$value) = explode('=',$rdnattr);
|
|
|
|
|
|
|
|
$attribute = $this->addAttribute($attr,array('values'=>array($value)));
|
|
|
|
|
|
|
|
if (is_null($attribute))
|
|
|
|
debug_dump_backtrace('Attribute is null, it probably doesnt exist in the destination server?');
|
|
|
|
else
|
|
|
|
$attribute->setRDN($counter++);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get Attributes by LDAP type
|
|
|
|
* This function will return a list of attributes by LDAP type (MUST,MAY).
|
|
|
|
*
|
|
|
|
* @return array Array of attributes.
|
|
|
|
*/
|
|
|
|
function getAttrbyLdapType($type) {
|
|
|
|
$result = array();
|
|
|
|
|
|
|
|
foreach ($this->attributes as $index => $attribute) {
|
|
|
|
if ($attribute->getLDAPtype() == strtolower($type))
|
|
|
|
array_push($result,$attribute->getName());
|
|
|
|
}
|
|
|
|
|
|
|
|
return $result;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return true if this is a MUST,MAY attribute
|
|
|
|
*/
|
|
|
|
function isAttrType($attr,$type) {
|
|
|
|
if (in_array(strtolower($attr),$this->getAttrbyLdapType($type)))
|
|
|
|
return true;
|
|
|
|
else
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the attributes that comprise the RDN.
|
|
|
|
*
|
|
|
|
* @return array Array of RDN objects
|
|
|
|
*/
|
|
|
|
private function getRDNObjects() {
|
|
|
|
$return = array();
|
|
|
|
|
|
|
|
foreach ($this->attributes as $attribute)
|
|
|
|
if ($attribute->isRDN())
|
|
|
|
array_push($return,$attribute);
|
|
|
|
|
|
|
|
masort($return,'rdn');
|
|
|
|
return $return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get all the RDNs for this template, in RDN order.
|
|
|
|
*
|
|
|
|
* @return array RDNs in order.
|
|
|
|
*/
|
|
|
|
public function getRDNAttrs() {
|
|
|
|
$return = array();
|
|
|
|
|
|
|
|
foreach ($this->getRDNObjects() as $attribute) {
|
|
|
|
# We'll test if two RDN's have the same number (we cant test anywhere else)
|
|
|
|
if (isset($return[$attribute->isRDN()]) && $this->getType() == 'creation')
|
|
|
|
system_message(array(
|
|
|
|
'title'=>_('RDN attribute sequence already defined'),
|
|
|
|
'body'=>sprintf('%s %s',
|
|
|
|
sprintf(_('There is a problem in template [%s].'),$this->getName()),
|
|
|
|
sprintf(_('RDN attribute sequence [%s] is already used by attribute [%s] and cant be used by attribute [%s] also.'),
|
|
|
|
$attribute->isRDN(),$return[$attribute->isRDN()],$attribute->getName())),
|
|
|
|
'type'=>'error'),'index.php');
|
|
|
|
|
|
|
|
$return[$attribute->isRDN()] = $attribute->getName();
|
|
|
|
}
|
|
|
|
|
|
|
|
return $return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the RDN for this template. If the DN is already defined, then the RDN will be calculated from it.
|
|
|
|
* If the DN is not set, then the RDN will be calcuated from the template attribute definitions
|
|
|
|
*
|
|
|
|
* @return rdn RDN for this template
|
|
|
|
*/
|
|
|
|
public function getRDN() {
|
|
|
|
# If the DN is set, then the RDN will be calculated from it.
|
|
|
|
if ($this->dn)
|
|
|
|
return get_rdn($this->dn);
|
|
|
|
|
|
|
|
$rdn = '';
|
|
|
|
|
|
|
|
foreach ($this->getRDNObjects() as $attribute) {
|
|
|
|
$vals = $attribute->getValues();
|
|
|
|
|
|
|
|
# If an RDN attribute has no values, return with an empty string. The calling script should handle this.
|
|
|
|
if (! count($vals))
|
|
|
|
return '';
|
|
|
|
|
|
|
|
foreach ($vals as $val)
|
|
|
|
$rdn .= sprintf('%s=%s+',$attribute->getName(),$val);
|
|
|
|
}
|
|
|
|
|
|
|
|
# Chop the last plus sign off when returning
|
|
|
|
return preg_replace('/\+$/','',$rdn);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the attribute name part of the RDN
|
|
|
|
*/
|
|
|
|
public function getRDNAttributeName() {
|
|
|
|
$attr = array();
|
|
|
|
|
|
|
|
if ($this->getDN()) {
|
|
|
|
$i = strpos($this->getDN(),',');
|
|
|
|
if ($i !== false) {
|
|
|
|
$attrs = explode('\+',substr($this->getDN(),0,$i));
|
|
|
|
foreach ($attrs as $id => $attr) {
|
|
|
|
list ($name,$value) = explode('=',$attr);
|
|
|
|
$attrs[$id] = $name;
|
|
|
|
}
|
|
|
|
|
|
|
|
$attr = array_unique($attrs);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return $attr;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Determine the type of template this is
|
|
|
|
*/
|
|
|
|
public function getContext() {
|
|
|
|
if ($this->getContainer())
|
|
|
|
return 'create';
|
|
|
|
elseif ($this->getDN())
|
|
|
|
return 'edit';
|
|
|
|
else
|
|
|
|
return 'unknown';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Test if the template is visible
|
|
|
|
*
|
|
|
|
* @return boolean
|
|
|
|
*/
|
|
|
|
public function isVisible() {
|
|
|
|
return $this->visible;
|
|
|
|
}
|
|
|
|
|
|
|
|
public function getRegExp() {
|
|
|
|
return $this->regexp;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Test if this template has been marked as a read-only template
|
|
|
|
*/
|
|
|
|
public function isReadOnly() {
|
|
|
|
if ((($this->getContext() == 'edit') && $this->readonly) || $this->getServer()->isReadOnly())
|
|
|
|
return true;
|
|
|
|
else
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get the attribute entries
|
|
|
|
*
|
|
|
|
* @param boolean Include the optional attributes
|
|
|
|
* @return array Array of attributes
|
|
|
|
*/
|
|
|
|
public function getAttributes($optional=false) {
|
|
|
|
if ($optional)
|
|
|
|
return $this->attributes;
|
|
|
|
|
|
|
|
$result = array();
|
|
|
|
foreach ($this->attributes as $attribute) {
|
|
|
|
if (! $attribute->isRequired())
|
|
|
|
continue;
|
|
|
|
|
|
|
|
array_push($result,$attribute);
|
|
|
|
}
|
|
|
|
|
|
|
|
return $result;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return a list of attributes that should be shown
|
|
|
|
*/
|
|
|
|
public function getAttributesShown() {
|
|
|
|
$result = array();
|
|
|
|
|
|
|
|
foreach ($this->attributes as $attribute)
|
|
|
|
if ($attribute->isVisible())
|
|
|
|
array_push($result,$attribute);
|
|
|
|
|
|
|
|
return $result;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return a list of the internal attributes
|
|
|
|
*/
|
|
|
|
public function getAttributesInternal() {
|
|
|
|
$result = array();
|
|
|
|
|
|
|
|
foreach ($this->attributes as $attribute)
|
|
|
|
if ($attribute->isInternal())
|
|
|
|
array_push($result,$attribute);
|
|
|
|
|
|
|
|
return $result;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the objectclasses defined in this template
|
|
|
|
*
|
|
|
|
* @return array Array of Objects
|
|
|
|
*/
|
|
|
|
public function getObjectClasses() {
|
|
|
|
$attribute = $this->getAttribute('objectclass');
|
|
|
|
if ($attribute)
|
|
|
|
return $attribute->getValues();
|
|
|
|
else
|
|
|
|
return array();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get template icon
|
|
|
|
*/
|
|
|
|
public function getIcon() {
|
|
|
|
return isset($this->icon) ? $this->icon : '';
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the template description
|
|
|
|
*
|
|
|
|
* @return string Description
|
|
|
|
*/
|
|
|
|
public function getDescription() {
|
|
|
|
return $this->description;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Set a template as invalid
|
|
|
|
*
|
|
|
|
* @param string Message indicating the reason the template has been invalidated
|
|
|
|
*/
|
|
|
|
private function setInvalid($msg) {
|
|
|
|
$this->invalid = true;
|
|
|
|
$this->invalid_reason = $msg;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get the template validity or the reason it is invalid
|
|
|
|
*
|
|
|
|
* @return string Invalid reason, or false if not invalid
|
|
|
|
*/
|
|
|
|
public function isInValid() {
|
|
|
|
if ($this->invalid)
|
|
|
|
return $this->invalid_reason;
|
|
|
|
else
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Set the minimum number of values for an attribute
|
|
|
|
*
|
|
|
|
* @param object Attribute
|
|
|
|
* @param int
|
|
|
|
*/
|
|
|
|
private function setMinValueCount($attr,$value) {
|
|
|
|
$attribute = $this->getAttribute($attr);
|
|
|
|
|
|
|
|
if (! is_null($attribute))
|
|
|
|
$attribute->setMinValueCount($value);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Set the LDAP type property for an attribute
|
|
|
|
*
|
|
|
|
* @param object Attribute
|
|
|
|
* @param string (MUST,MAY,OPTIONAL)
|
|
|
|
*/
|
|
|
|
private function setAttrLDAPtype($attr,$value) {
|
|
|
|
$attribute = $this->getAttribute($attr);
|
|
|
|
|
|
|
|
if (is_null($attribute))
|
|
|
|
$attribute = $this->addAttribute($attr,array('values'=>array()));
|
|
|
|
|
|
|
|
$attribute->setLDAPtype($value);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* OnChangeAdd javascript processing
|
|
|
|
*/
|
|
|
|
public function OnChangeAdd($origin,$value) {
|
|
|
|
if (DEBUG_ENABLED)
|
|
|
|
debug_log('Entered with (%s,%s)',5,__FILE__,__LINE__,__METHOD__,$origin,$value);
|
|
|
|
|
|
|
|
$attribute = $this->getAttribute($origin);
|
|
|
|
|
|
|
|
if (preg_match('/^=(\w+)\((.*)\)$/',$value,$matches)) {
|
|
|
|
$command = $matches[1];
|
|
|
|
$arg = $matches[2];
|
|
|
|
} else
|
|
|
|
return;
|
|
|
|
|
|
|
|
switch ($command) {
|
|
|
|
/*
|
|
|
|
autoFill:string
|
|
|
|
string is a literal string, and may contain many fields like %attr|start-end/flags%
|
|
|
|
to substitute values read from other fields.
|
|
|
|
|start-end is optional, but must be present if the k flag is used.
|
|
|
|
/flags is optional.
|
|
|
|
|
|
|
|
flags may be:
|
|
|
|
T: Read display text from selection item (drop-down list), otherwise, read the value of the field
|
|
|
|
For fields that aren't selection items, /T shouldn't be used, and the field value will always be read.
|
|
|
|
k: Tokenize:
|
|
|
|
If the "k" flag is not given:
|
|
|
|
A |start-end instruction will perform a sub-string operation upon
|
|
|
|
the value of the attr, passing character positions start-end through.
|
|
|
|
start can be 0 for first character, or any other integer.
|
|
|
|
end can be 0 for last character, or any other integer for a specific position.
|
|
|
|
If the "k" flag is given:
|
|
|
|
The string read will be split into fields, using : as a delimiter
|
|
|
|
"start" indicates which field number to pass through.
|
|
|
|
K: The string read will be split into fields, using ' ' as a delimiter "start" indicates which field number to pass through.
|
|
|
|
l: Make the result lower case.
|
|
|
|
U: Make the result upper case.
|
|
|
|
*/
|
|
|
|
case 'autoFill':
|
|
|
|
list($attr,$string) = preg_split('(([^,]+);(.*))',$arg,-1,PREG_SPLIT_DELIM_CAPTURE | PREG_SPLIT_NO_EMPTY);
|
|
|
|
preg_match_all('/%(\w+)(\|[0-9]*-[0-9]*)?(\/[KklTUA]+)?%/U',$string,$matchall);
|
|
|
|
//print"<PRE>";print_r($matchall); //0 = highlevel match, 1 = attr, 2 = subst, 3 = mod
|
|
|
|
|
|
|
|
if (! isset($attribute->js['autoFill']))
|
|
|
|
$attribute->js['autoFill'] = '';
|
|
|
|
|
|
|
|
$formula = $string;
|
|
|
|
$formula = preg_replace('/^([^%])/','\'$1',$formula);
|
|
|
|
$formula = preg_replace('/([^%])$/','$1\'',$formula);
|
|
|
|
|
|
|
|
# Check that our attributes match our schema attributes.
|
|
|
|
foreach ($matchall[1] as $index => $checkattr) {
|
|
|
|
$sattr = $this->getServer()->getSchemaAttribute($checkattr);
|
|
|
|
|
|
|
|
# If the attribute is the same as in the XML file, then dont need to do anything.
|
|
|
|
if (! strcasecmp($sattr->getName(),$checkattr))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
$formula = preg_replace("/$checkattr/",$sattr->getName(),$formula);
|
|
|
|
$matchall[1][$index] = $sattr->getName();
|
|
|
|
}
|
|
|
|
|
|
|
|
$elem_id = 0;
|
|
|
|
|
|
|
|
foreach ($matchall[0] as $index => $null) {
|
|
|
|
$match_attr = strtolower($matchall[1][$index]);
|
|
|
|
$match_subst = $matchall[2][$index];
|
|
|
|
$match_mod = $matchall[3][$index];
|
|
|
|
|
|
|
|
$substrarray = array();
|
|
|
|
|
|
|
|
if (! isset($varcount[$match_attr]))
|
|
|
|
$varcount[$match_attr] = 0;
|
|
|
|
else
|
|
|
|
$varcount[$match_attr]++;
|
|
|
|
|
|
|
|
$js_match_attr = $match_attr;
|
|
|
|
$match_attr = $js_match_attr.'xx'.$varcount[$match_attr];
|
|
|
|
|
|
|
|
$formula = preg_replace('/%'.$js_match_attr.'([|\/%])/i','%'.$match_attr.'$1',$formula,1);
|
|
|
|
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" var %s;\n",$match_attr);
|
|
|
|
$attribute->js['autoFill'] .= sprintf(
|
|
|
|
" var elem$elem_id = document.getElementById(pre+'%s'+suf);\n".
|
|
|
|
" if (!elem$elem_id) return;\n", $js_match_attr);
|
|
|
|
|
|
|
|
if (strstr($match_mod,'T')) {
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = elem$elem_id.options[elem$elem_id.selectedIndex].text;\n",
|
|
|
|
$match_attr);
|
|
|
|
} else {
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = elem$elem_id.value;\n",$match_attr);
|
|
|
|
}
|
|
|
|
|
|
|
|
$elem_id++;
|
|
|
|
|
|
|
|
if (strstr($match_mod,'k')) {
|
|
|
|
preg_match_all('/([0-9]+)/',trim($match_subst),$substrarray);
|
|
|
|
if (isset($substrarray[1][0])) {
|
|
|
|
$tok_idx = $substrarray[1][0];
|
|
|
|
} else {
|
|
|
|
$tok_idx = '0';
|
|
|
|
}
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = %s.split(':')[%s];\n",$match_attr,$match_attr,$tok_idx);
|
|
|
|
|
|
|
|
} elseif (strstr($match_mod,'K')) {
|
|
|
|
preg_match_all('/([0-9]+)/',trim($match_subst),$substrarray);
|
|
|
|
if (isset($substrarray[1][0])) {
|
|
|
|
$tok_idx = $substrarray[1][0];
|
|
|
|
} else {
|
|
|
|
$tok_idx = '0';
|
|
|
|
}
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = %s.split(' ')[%s];\n",$match_attr,$match_attr,$tok_idx);
|
|
|
|
|
|
|
|
} else {
|
|
|
|
preg_match_all('/([0-9]*)-([0-9]*)/',trim($match_subst),$substrarray);
|
|
|
|
if ((isset($substrarray[1][0]) && $substrarray[1][0]) || (isset($substrarray[2][0]) && $substrarray[2][0])) {
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = %s.substr(%s,%s);\n",
|
|
|
|
$match_attr,$match_attr,
|
|
|
|
$substrarray[1][0] ? $substrarray[1][0] : '0',
|
|
|
|
$substrarray[2][0] ? $substrarray[2][0] : sprintf('%s.length',$match_attr));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (strstr($match_mod,'l')) {
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = %s.toLowerCase();\n",$match_attr,$match_attr);
|
|
|
|
}
|
|
|
|
if (strstr($match_mod,'U')) {
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = %s.toUpperCase();\n",$match_attr,$match_attr);
|
|
|
|
}
|
|
|
|
if (strstr($match_mod,'A')) {
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" %s = toAscii(%s);\n",$match_attr,$match_attr);
|
|
|
|
}
|
|
|
|
|
|
|
|
# Matchfor only entry without modifiers.
|
|
|
|
$formula = preg_replace('/^%('.$match_attr.')%$/U','$1 + \'\'',$formula);
|
|
|
|
# Matchfor only entry with modifiers.
|
|
|
|
$formula = preg_replace('/^%('.$match_attr.')(\|[0-9]*-[0-9]*)?(\/[KklTUA]+)?%$/U','$1 + \'\'',$formula);
|
|
|
|
# Matchfor begining entry.
|
|
|
|
$formula = preg_replace('/^%('.$match_attr.')(\|[0-9]*-[0-9]*)?(\/[KklTUA]+)?%/U','$1 + \'',$formula);
|
|
|
|
# Matchfor ending entry.
|
|
|
|
$formula = preg_replace('/%('.$match_attr.')(\|[0-9]*-[0-9]*)?(\/[KklTUA]+)?%$/U','\' + $1 ',$formula);
|
|
|
|
# Match for entries not at begin/end.
|
|
|
|
$formula = preg_replace('/%('.$match_attr.')(\|[0-9]*-[0-9]*)?(\/[:lTUA]+)?%/U','\' + $1 + \'',$formula);
|
|
|
|
$attribute->js['autoFill'] .= "\n";
|
|
|
|
}
|
|
|
|
|
|
|
|
$attribute->js['autoFill'] .= sprintf(" fillRec(pre+'%s'+suf, %s); // %s\n",strtolower($attr),$formula,$string);
|
|
|
|
$attribute->js['autoFill'] .= "\n";
|
|
|
|
break;
|
|
|
|
|
|
|
|
default: $return = '';
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* This functions main purpose is to discover our MUST attributes based on objectclass
|
|
|
|
* definitions in the template file and to discover which of the objectclasses are
|
|
|
|
* STRUCTURAL - without one, creating an entry will just product an LDAP error.
|
|
|
|
*/
|
|
|
|
private function rebuildTemplateAttrs() {
|
|
|
|
$server = $this->getServer();
|
|
|
|
|
|
|
|
# Collect our structural, MUST & MAY attributes.
|
|
|
|
$oclass_processed = array();
|
|
|
|
$superclasslist = array();
|
|
|
|
$allattrs = array();
|
|
|
|
|
|
|
|
foreach ($this->getObjectClasses() as $oclass) {
|
|
|
|
# If we get some superclasses - then we'll need to go through them too.
|
|
|
|
$supclass = true;
|
|
|
|
$inherited = false;
|
|
|
|
|
|
|
|
while ($supclass) {
|
|
|
|
$soc = $server->getSchemaObjectClass($oclass);
|
|
|
|
|
|
|
|
if ($soc->getType() == 'structural' && (! $inherited))
|
|
|
|
array_push($this->structural_oclass,$oclass);
|
|
|
|
|
|
|
|
# Make sure our MUST attributes are marked as such for this template.
|
|
|
|
if ($soc->getMustAttrs())
|
|
|
|
foreach ($soc->getMustAttrs() as $index => $details) {
|
|
|
|
$objectclassattr = $details->getName();
|
|
|
|
|
|
|
|
# We add the 'objectClass' attribute, only if it's explicitly in the template attribute list
|
|
|
|
if ((strcasecmp('objectClass',$objectclassattr) != 0) ||
|
|
|
|
((strcasecmp('objectClass',$objectclassattr) == 0) && (! is_null($this->getAttribute($objectclassattr))))) {
|
|
|
|
|
|
|
|
# Go through the aliases, and ignore any that are already defined.
|
|
|
|
$ignore = false;
|
|
|
|
$sattr = $server->getSchemaAttribute($objectclassattr);
|
|
|
|
foreach ($sattr->getAliases() as $alias) {
|
|
|
|
if ($this->isAttrType($alias,'must')) {
|
|
|
|
$ignore = true;
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($ignore)
|
|
|
|
continue;
|
|
|
|
|
|
|
|
$this->setAttrLDAPtype($sattr->getName(),'must');
|
|
|
|
$this->setMinValueCount($sattr->getName(),1);
|
|
|
|
|
|
|
|
# We need to mark the attributes as show, except for the objectclass attribute.
|
|
|
|
if (strcasecmp('objectClass',$objectclassattr) != 0) {
|
|
|
|
$attribute = $this->getAttribute($sattr->getName());
|
|
|
|
$attribute->show();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (! in_array($objectclassattr,$allattrs))
|
|
|
|
array_push($allattrs,$objectclassattr);
|
|
|
|
}
|
|
|
|
|
|
|
|
if ($soc->getMayAttrs())
|
|
|
|
foreach ($soc->getMayAttrs() as $index => $details) {
|
|
|
|
$objectclassattr = $details->getName();
|
|
|
|
$sattr = $server->getSchemaAttribute($objectclassattr);
|
|
|
|
|
|
|
|
# If it is a MUST attribute, skip to the next one.
|
|
|
|
if ($this->isAttrType($objectclassattr,'must'))
|
|
|
|
continue;
|
|
|
|
|
|
|
|
if (! $this->isAttrType($objectclassattr,'may'))
|
|
|
|
$this->setAttrLDAPtype($sattr->getName(false),'optional');
|
|
|
|
|
|
|
|
if (! in_array($objectclassattr,$allattrs))
|
|
|
|
array_push($allattrs,$objectclassattr);
|
|
|
|
}
|
|
|
|
|
|
|
|
# Keep a list to objectclasses we have processed, so we dont get into a loop.
|
|
|
|
array_push($oclass_processed,$oclass);
|
|
|
|
$supoclasses = $soc->getSupClasses();
|
|
|
|
|
|
|
|
if (count($supoclasses) || count($superclasslist)) {
|
|
|
|
foreach ($supoclasses as $supoclass) {
|
|
|
|
if (! in_array($supoclass,$oclass_processed))
|
|
|
|
$superclasslist[] = $supoclass;
|
|
|
|
}
|
|
|
|
|
|
|
|
$oclass = array_shift($superclasslist);
|
|
|
|
if ($oclass)
|
|
|
|
$inherited = true;
|
|
|
|
else
|
|
|
|
$supclass = false;
|
|
|
|
|
|
|
|
} else {
|
|
|
|
$supclass = false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
# Check that attributes are defined by an ObjectClass
|
|
|
|
foreach ($this->getAttributes(true) as $index => $attribute)
|
|
|
|
if (! in_array($attribute->getName(),$allattrs) && (! array_intersect($attribute->getAliases(),$allattrs))
|
|
|
|
&& (! in_array_ignore_case('extensibleobject',$this->getObjectClasses()))) {
|
|
|
|
unset($this->attributes[$index]);
|
|
|
|
|
|
|
|
system_message(array(
|
|
|
|
'title'=>_('Automatically removed attribute from template'),
|
|
|
|
'body'=>sprintf('%s: <b>%s</b> %s',$this->getTitle(),$attribute->getName(false),_('removed from template as it is not defined by an ObjectClass')),
|
|
|
|
'type'=>'warn'));
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return an array, that can be passed to ldap_add().
|
|
|
|
* Attributes with empty values will be excluded.
|
|
|
|
*/
|
|
|
|
public function getLDAPadd($attrsOnly=false) {
|
|
|
|
$return = array();
|
|
|
|
$returnattrs = array();
|
|
|
|
|
|
|
|
if ($attrsOnly && count($returnattrs))
|
|
|
|
return $returnattrs;
|
|
|
|
|
|
|
|
foreach ($this->getAttributes(true) as $attribute)
|
|
|
|
if (! $attribute->isInternal() && count($attribute->getValues())) {
|
|
|
|
$return[$attribute->getName()] = $attribute->getValues();
|
|
|
|
$returnattrs[$attribute->getName()] = $attribute;
|
|
|
|
}
|
|
|
|
|
|
|
|
# Ensure that our objectclasses has "top".
|
|
|
|
if (isset($return['objectclass']) && ! in_array('top',$return['objectclass']))
|
|
|
|
array_push($return['objectclass'],'top');
|
|
|
|
|
|
|
|
if ($attrsOnly)
|
|
|
|
return $returnattrs;
|
|
|
|
|
|
|
|
return $return;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return an array, that can be passed to ldap_mod_replace().
|
|
|
|
* Only attributes that have changed their value will be returned.
|
|
|
|
*
|
|
|
|
* This function will cache its results, so that it can be called with count() to see
|
|
|
|
* if there are changes, and if they are, the 2nd call will just return the results
|
|
|
|
*
|
|
|
|
* @param boolean Return the attribute objects (useful for a confirmation process), or the modification array for ldap_modify()
|
|
|
|
*/
|
2009-07-07 19:35:37 +10:00
|
|
|
public function getLDAPmodify($attrsOnly=false,$index=0) {
|
2009-07-01 16:09:17 +10:00
|
|
|
static $return = array();
|
|
|
|
static $returnattrs = array();
|
|
|
|
|
2009-07-07 19:35:37 +10:00
|
|
|
if ($attrsOnly && isset($returnattrs[$index]) && count($returnattrs[$index]))
|
|
|
|
return $returnattrs[$index];
|
|
|
|
|
|
|
|
$returnattrs[$index] = array();
|
|
|
|
$return[$index] = array();
|
2009-07-01 16:09:17 +10:00
|
|
|
|
|
|
|
# If an objectclass is being modified, we need to remove all the orphan attributes that would result.
|
|
|
|
if ($this->getAttribute('objectclass')->hasBeenModified()) {
|
|
|
|
$attr_to_keep = array();
|
|
|
|
$server = $this->getServer();
|
|
|
|
|
|
|
|
# Make sure that there will be a structural object class remaining.
|
|
|
|
$haveStructural = false;
|
|
|
|
foreach ($this->getAttribute('objectclass')->getValues() as $value) {
|
|
|
|
$soc = $server->getSchemaObjectClass($value);
|
|
|
|
|
|
|
|
if ($soc) {
|
|
|
|
if ($soc->isStructural())
|
|
|
|
$haveStructural = true;
|
|
|
|
|
|
|
|
# While we are looping, workout which attributes these objectclasses define.
|
|
|
|
foreach ($soc->getMustAttrs(true) as $value)
|
|
|
|
if (! in_array($value->getName(),$attr_to_keep))
|
|
|
|
array_push($attr_to_keep,$value->getName());
|
|
|
|
|
|
|
|
foreach ($soc->getMayAttrs(true) as $value)
|
|
|
|
if (! in_array($value->getName(),$attr_to_keep))
|
|
|
|
array_push($attr_to_keep,$value->getName());
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
if (! $haveStructural)
|
|
|
|
error(_('An entry should have one structural objectClass.'),'error','index.php');
|
|
|
|
|
|
|
|
# Work out the attributes to delete.
|
|
|
|
foreach ($this->getAttribute('objectclass')->getRemovedValues() as $value) {
|
|
|
|
$soc = $server->getSchemaObjectClass($value);
|
|
|
|
|
|
|
|
foreach ($soc->getMustAttrs() as $value) {
|
|
|
|
$attribute = $this->getAttribute($value->getName());
|
|
|
|
|
|
|
|
if ($attribute && (! in_array($value->getName(),$attr_to_keep)) && ($value->getName() != 'objectclass'))
|
|
|
|
#array_push($attr_to_delete,$value->getName(false));
|
|
|
|
$attribute->setForceDelete();
|
|
|
|
}
|
|
|
|
|
|
|
|
foreach ($soc->getMayAttrs() as $value) {
|
|
|
|
$attribute = $this->getAttribute($value->getName());
|
|
|
|
|
|
|
|
if ($attribute && (! in_array($value->getName(),$attr_to_keep)) && ($value->getName() != 'objectclass'))
|
|
|
|
$attribute->setForceDelete();
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
foreach ($this->getAttributes(true) as $attribute)
|
|
|
|
if ($attribute->hasBeenModified()
|
|
|
|
&& (count(array_diff($attribute->getValues(),$attribute->getOldValues())) || ! count($attribute->getValues())
|
|
|
|
|| $attribute->isForceDelete() || (count($attribute->getValues()) != count($attribute->getOldValues()))))
|
2009-07-07 19:35:37 +10:00
|
|
|
$returnattrs[$index][$attribute->getName()] = $attribute;
|
2009-07-01 16:09:17 +10:00
|
|
|
|
|
|
|
if ($attrsOnly)
|
2009-07-07 19:35:37 +10:00
|
|
|
return $returnattrs[$index];
|
2009-07-01 16:09:17 +10:00
|
|
|
|
2009-07-07 19:35:37 +10:00
|
|
|
foreach ($returnattrs[$index] as $attribute)
|
|
|
|
$return[$index][$attribute->getName()] = $attribute->getValues();
|
2009-07-01 16:09:17 +10:00
|
|
|
|
2009-07-07 19:35:37 +10:00
|
|
|
return $return[$index];
|
2009-07-01 16:09:17 +10:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get the attributes that are marked as force delete
|
|
|
|
* We'll cache this result in the event of multiple calls.
|
|
|
|
*/
|
|
|
|
public function getForceDeleteAttrs() {
|
|
|
|
static $result = array();
|
|
|
|
|
|
|
|
if (count($result))
|
|
|
|
return $result;
|
|
|
|
|
|
|
|
foreach ($this->attributes as $attribute)
|
|
|
|
if ($attribute->isForceDelete())
|
|
|
|
array_push($result,$attribute);
|
|
|
|
|
|
|
|
return $result;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get available attributes
|
|
|
|
*/
|
|
|
|
public function getAvailAttrs() {
|
|
|
|
$attributes = array();
|
|
|
|
$server = $this->getServer();
|
|
|
|
|
|
|
|
# Initialise the Attribute Factory.
|
|
|
|
$attribute_factory = new AttributeFactory();
|
|
|
|
|
|
|
|
if (in_array_ignore_case('extensibleobject',$this->getObjectClasses())) {
|
|
|
|
foreach ($server->SchemaAttributes() as $sattr) {
|
|
|
|
$attribute = $attribute_factory->newAttribute($sattr->getName(),array('values'=>array()),$server->getIndex(),null);
|
|
|
|
array_push($attributes,$attribute);
|
|
|
|
}
|
|
|
|
|
|
|
|
} else {
|
|
|
|
$attrs = array();
|
|
|
|
|
|
|
|
foreach ($this->getObjectClasses() as $oc) {
|
|
|
|
$soc = $server->getSchemaObjectClass($oc);
|
|
|
|
$attrs = array_merge($attrs,$soc->getMustAttrNames(),$soc->getMayAttrNames());
|
|
|
|
$attrs = array_unique($attrs);
|
|
|
|
}
|
|
|
|
|
|
|
|
foreach ($attrs as $attr)
|
|
|
|
if (is_null($this->getAttribute($attr))) {
|
|
|
|
$attribute = $attribute_factory->newAttribute($attr,array('values'=>array()),$server->getIndex(),null);
|
|
|
|
array_push($attributes,$attribute);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
masort($attributes,'name');
|
|
|
|
return $attributes;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
?>
|