diff options
| author | Nils Adermann <naderman@naderman.de> | 2006-04-21 22:41:05 +0000 |
|---|---|---|
| committer | Nils Adermann <naderman@naderman.de> | 2006-04-21 22:41:05 +0000 |
| commit | 478ab68a7eb609de10fd6f9e874d7387f5842cb8 (patch) | |
| tree | e85fe2edec0c96d3243a6159e9442d3b49fef2a1 /phpBB/includes/auth/auth_ldap.php | |
| parent | 09073c368f6e8e7c4dd76d9cc19c02079ff2c7ed (diff) | |
| download | forums-478ab68a7eb609de10fd6f9e874d7387f5842cb8.tar forums-478ab68a7eb609de10fd6f9e874d7387f5842cb8.tar.gz forums-478ab68a7eb609de10fd6f9e874d7387f5842cb8.tar.bz2 forums-478ab68a7eb609de10fd6f9e874d7387f5842cb8.tar.xz forums-478ab68a7eb609de10fd6f9e874d7387f5842cb8.zip | |
- added login error constant for various external auth failures
- completed auth plugin interface (init_method, login_method, autologin_method, validate_session_method, logout_method)
- updated ldap and apache auth plugins to return an info array
- added apache autologin
git-svn-id: file:///svn/phpbb/trunk@5815 89ea8834-ac86-4346-8a33-228a782c2dd0
Diffstat (limited to 'phpBB/includes/auth/auth_ldap.php')
| -rw-r--r-- | phpBB/includes/auth/auth_ldap.php | 54 |
1 files changed, 47 insertions, 7 deletions
diff --git a/phpBB/includes/auth/auth_ldap.php b/phpBB/includes/auth/auth_ldap.php index 17c29cc5e6..e6d783313f 100644 --- a/phpBB/includes/auth/auth_ldap.php +++ b/phpBB/includes/auth/auth_ldap.php @@ -70,12 +70,20 @@ function login_ldap(&$username, &$password) if (!extension_loaded('ldap')) { - return 'LDAP extension not available'; + return array( + 'status' => LOGIN_ERROR_EXTERNAL_AUTH, + 'error_msg' => 'LDAP_NO_LDAP_EXTENSION', + 'user_row' => array('user_id' => ANONYMOUS), + ); } if (!($ldap = @ldap_connect($config['ldap_server']))) { - return 'Could not connect to LDAP server'; + return array( + 'status' => LOGIN_ERROR_EXTERNAL_AUTH, + 'error_msg' => 'LDAP_NO_SERVER_CONNECTION', + 'user_row' => array('user_id' => ANONYMOUS), + ); } @ldap_set_option($ldap, LDAP_OPT_PROTOCOL_VERSION, 3); @@ -93,18 +101,49 @@ function login_ldap(&$username, &$password) FROM ' . USERS_TABLE . " WHERE username = '" . $db->sql_escape($username) . "'"; $result = $db->sql_query($sql); + $row = $db->sql_fetchrow($result); + $db->sql_freeresult($result); - if ($row = $db->sql_fetchrow($result)) + if ($row) { - $db->sql_freeresult($result); - return ($row['user_type'] == USER_INACTIVE || $row['user_type'] == USER_IGNORE) ? 0 : $row; + // User inactive... + if ($row['user_type'] == USER_INACTIVE || $row['user_type'] == USER_IGNORE) + { + return array( + 'status' => LOGIN_ERROR_ACTIVE, + 'error_msg' => 'ACTIVE_ERROR', + 'user_row' => $row, + ); + } + + // Successful login... set user_login_attempts to zero... + return array( + 'status' => LOGIN_SUCCESS, + 'error_msg' => false, + 'user_row' => $row, + ); } } + else + { + @ldap_close($ldap); + + // Give status about wrong password... + return array( + 'status' => LOGIN_ERROR_PASSWORD, + 'error_msg' => 'LOGIN_ERROR_PASSWORD', + 'user_row' => array('user_id' => ANONYMOUS), + ); + } } @ldap_close($ldap); - return false; + return array( + 'status' => LOGIN_ERROR_USERNAME, + 'error_msg' => 'LOGIN_ERROR_USERNAME', + 'user_row' => array('user_id' => ANONYMOUS), + ); } /** @@ -147,12 +186,13 @@ function admin_ldap(&$new) * their username, password, etc. ... should be up to the plugin what data * is updated. * +* @todo implement this functionality (probably 3.2) +* * @param new|update|delete $mode defining the action to take on user updates */ function usercp_ldap($mode) { global $db, $config; - } ?>
\ No newline at end of file |