diff options
Diffstat (limited to 'phpBB/includes/auth')
| -rw-r--r-- | phpBB/includes/auth/auth_apache.php | 27 | ||||
| -rw-r--r-- | phpBB/includes/auth/auth_db.php | 29 | ||||
| -rw-r--r-- | phpBB/includes/auth/auth_ldap.php | 44 | ||||
| -rw-r--r-- | phpBB/includes/auth/index.htm | 10 |
4 files changed, 110 insertions, 0 deletions
diff --git a/phpBB/includes/auth/auth_apache.php b/phpBB/includes/auth/auth_apache.php new file mode 100644 index 0000000000..e5059724b9 --- /dev/null +++ b/phpBB/includes/auth/auth_apache.php @@ -0,0 +1,27 @@ +<?php + +// +// Authentication plug-ins is largely down to +// Sergey Kanareykin, our thanks to him. +// +function login_apache(&$username, &$password) +{ + global $HTTP_SERVER_VARS, $HTTP_ENV_VARS; + + $php_auth_user = ( !empty($HTTP_SERVER_VARS['PHP_AUTH_USER']) ) ? $HTTP_SERVER_VARS['PHP_AUTH_USER'] : $HTTP_GET_VARS['PHP_AUTH_USER'] + $php_auth_pw = ( !empty($HTTP_SERVER_VARS['PHP_AUTH_PW']) ) ? $HTTP_SERVER_VARS['PHP_AUTH_PW'] : $HTTP_GET_VARS['PHP_AUTH_PW'] + + if ( $php_auth_user && $php_auth_pw ) + { + $sql = "SELECT user_id, username, user_password, user_email, user_active + FROM " . USERS_TABLE . " + WHERE username = '" . str_replace("\'", "''", $username) . "'"; + $result = $db->sql_query($sql); + + return ( $row = $db->sql_fetchrow($result) ? $row : false; + } + + return false; +} + +?>
\ No newline at end of file diff --git a/phpBB/includes/auth/auth_db.php b/phpBB/includes/auth/auth_db.php new file mode 100644 index 0000000000..0c9d0adf3e --- /dev/null +++ b/phpBB/includes/auth/auth_db.php @@ -0,0 +1,29 @@ +<?php + +// +// Authentication plug-ins is largely down to +// Sergey Kanareykin, our thanks to him. +// +function login_db(&$username, &$password) +{ + global $db, $board_config; + + $sql = "SELECT user_id, username, user_password, user_email, user_active + FROM " . USERS_TABLE . " + WHERE username = '" . str_replace("\'", "''", $username) . "'"; + $result = $db->sql_query($sql); + + if ( $row = $db->sql_fetchrow($result) ) + { + $db->sql_freeresult($result); + + if ( md5($password) == $row['user_password'] && $row['user_active'] ) + { + return $row; + } + } + + return false; +} + +?>
\ No newline at end of file diff --git a/phpBB/includes/auth/auth_ldap.php b/phpBB/includes/auth/auth_ldap.php new file mode 100644 index 0000000000..0957b56949 --- /dev/null +++ b/phpBB/includes/auth/auth_ldap.php @@ -0,0 +1,44 @@ +<?php + +// +// Authentication plug-ins is largely down to +// Sergey Kanareykin, our thanks to him. +// +function login_ldap(&$username, &$password) +{ + global $board_config; + + if ( !extension_loaded('ldap') ) + { + return 'LDAP extension not available'; + } + + if ( !($ldap = @ldap_connect($board_config['ldap_server'])) ) + { + return 'Could not connect to LDAP server'; + } + + $search = @ldap_search($ldap, $board_config['ldap_base_dn'], $board_config['ldap_uid'] . '=' . $username, array($board_config['ldap_uid'])); + $result = @ldap_get_entries($ldap, $search); + + if ( is_array($result) && count($result) > 1 ) + { + if ( @ldap_bind($ldap, $result[0]['dn'], $password) ) + { + @ldap_close($ldap); + + $sql = "SELECT user_id, username, user_password, user_email, user_active + FROM " . USERS_TABLE . " + WHERE username = '" . str_replace("\'", "''", $username) . "'"; + $result = $db->sql_query($sql); + + return ( $row = $db->sql_fetchrow($result) ? $row : false; + } + } + + @ldap_close($ldap); + + return false; +} + +?>
\ No newline at end of file diff --git a/phpBB/includes/auth/index.htm b/phpBB/includes/auth/index.htm new file mode 100644 index 0000000000..ee1f723a7d --- /dev/null +++ b/phpBB/includes/auth/index.htm @@ -0,0 +1,10 @@ +<html> +<head> +<title></title> +<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1"> +</head> + +<body bgcolor="#FFFFFF" text="#000000"> + +</body> +</html> |