Misc Classes: Database class integration.

2025-12-30 00:53:50 +00:00 · 2019-09-02 15:57:18 -06:00
parent 601198e01a
commit 836fb87136
11 changed files with 2002 additions and 2172 deletions
--- a/core/authentication/resources/classes/plugins/ldap.php
+++ b/core/authentication/resources/classes/plugins/ldap.php
@@ -23,13 +23,6 @@ class plugin_ldap {
 	 */
 	function ldap() {

-		//save the database connection to a local variable
-			include "root.php";
-			require_once "resources/classes/database.php";
-			$database = new database;
-			$database->connect();
-			$db = $database->db;
-
 		//use ldap to validate the user credentials
 			if (isset($_SESSION["ldap"]["certpath"])) {
 				$s = "LDAPTLS_CERT=" . $_SESSION["ldap"]["certpath"]["text"];
@@ -41,13 +34,13 @@ class plugin_ldap {
 			}
 			$host = $_SESSION["ldap"]["server_host"]["text"];
 			$port = $_SESSION["ldap"]["server_port"]["numeric"];
-			$connect = ldap_connect($host,$port)
+			$connect = ldap_connect($host, $port)
 				or die("Could not connect to the LDAP server.");
 			//ldap_set_option($connect, LDAP_OPT_NETWORK_TIMEOUT, 10);
 			ldap_set_option($connect, LDAP_OPT_PROTOCOL_VERSION, 3);
 			//ldap_set_option(NULL, LDAP_OPT_DEBUG_LEVEL, 7);

-		//set the default for $user_authorized to false
+		//set the default status
 			$user_authorized = false;

 		//provide backwards compatability
@@ -69,54 +62,37 @@ class plugin_ldap {
 						$user_authorized = true;
 						break;
 					}
-					else {
-						//connection failed
-						$user_authorized = false;
-					}
-				}
-				else {
-					//password not provided
-					$user_authorized = false;
 				}
 			}

 		//check to see if the user exists
 			 if ($user_authorized) {
 				$sql = "select * from v_users ";
-				$sql .= "where username=:username ";
-				if ($_SESSION["users"]["unique"]["text"] == "global") {
-					//unique username - global (example: email address)
-				}
-				else {
-					//unique username - per domain
-					$sql .= "and domain_uuid=:domain_uuid ";
-				}
-				$prep_statement = $db->prepare($sql);
+				$sql .= "where username = :username ";
 				if ($_SESSION["users"]["unique"]["text"] != "global") {
-					$prep_statement->bindParam(':domain_uuid', $this->domain_uuid);
+					//unique username per domain (not globally unique across system - example: email address)
+					$sql .= "and domain_uuid = :domain_uuid ";
+					$parameters['domain_uuid'] = $this->domain_uuid;
 				}
-				$prep_statement->bindParam(':username', $this->username);
-				$prep_statement->execute();
-				$result = $prep_statement->fetchAll(PDO::FETCH_NAMED);
-				if (count($result) > 0) {
-					foreach ($result as &$row) {
-							if ($_SESSION["users"]["unique"]["text"] == "global" && $row["domain_uuid"] != $this->domain_uuid) {
-								//get the domain uuid
-									$this->domain_uuid = $row["domain_uuid"];
-									$this->domain_name = $_SESSION['domains'][$this->domain_uuid]['domain_name'];
+				$parameters['username'] = $this->username;
+				$database = new database;
+				$row = $database->select($sql, $parameters, 'row');
+				if (is_array($row) && @sizeof($row) != 0) {
+					if ($_SESSION["users"]["unique"]["text"] == "global" && $row["domain_uuid"] != $this->domain_uuid) {
+						//get the domain uuid
+							$this->domain_uuid = $row["domain_uuid"];
+							$this->domain_name = $_SESSION['domains'][$this->domain_uuid]['domain_name'];

-								//set the domain session variables
-									$_SESSION["domain_uuid"] = $this->domain_uuid;
-									$_SESSION["domain_name"] = $this->domain_name;
+						//set the domain session variables
+							$_SESSION["domain_uuid"] = $this->domain_uuid;
+							$_SESSION["domain_name"] = $this->domain_name;

-								//set the setting arrays
-									$domain = new domains();
-									$domain->db = $db;
-									$domain->set();
-							}
-							$this->user_uuid = $row["user_uuid"];
-							$this->contact_uuid = $row["contact_uuid"];
+						//set the setting arrays
+							$domain = new domains();
+							$domain->set();
 					}
+					$this->user_uuid = $row["user_uuid"];
+					$this->contact_uuid = $row["contact_uuid"];
 				}
 				else {
 					//salt used with the password to create a one way hash
@@ -127,53 +103,40 @@ class plugin_ldap {
 						$this->user_uuid = uuid();
 						$this->contact_uuid = uuid();

-					//add the user
-						$sql = "insert into v_users ";
-						$sql .= "(";
-						$sql .= "domain_uuid, ";
-						$sql .= "user_uuid, ";
-						$sql .= "contact_uuid, ";
-						$sql .= "username, ";
-						$sql .= "password, ";
-						$sql .= "salt, ";
-						$sql .= "add_date, ";
-						$sql .= "add_user, ";
-						$sql .= "user_enabled ";
-						$sql .= ") ";
-						$sql .= "values ";
-						$sql .= "(";
-						$sql .= "'".$this->domain_uuid."', ";
-						$sql .= "'".$this->user_uuid."', ";
-						$sql .= "'".$this->contact_uuid."', ";
-						$sql .= "'".strtolower($this->username)."', ";
-						$sql .= "'".md5($salt.$password)."', ";
-						$sql .= "'".$salt."', ";
-						$sql .= "now(), ";
-						$sql .= "'".strtolower($this->username)."', ";
-						$sql .= "'true' ";
-						$sql .= ")";
-						$db->exec(check_sql($sql));
-						unset($sql);
+					//build user insert array
+						$array['users'][0]['user_uuid'] = $this->user_uuid;
+						$array['users'][0]['domain_uuid'] = $this->domain_uuid;
+						$array['users'][0]['contact_uuid'] = $this->contact_uuid;
+						$array['users'][0]['username'] = strtolower($this->username);
+						$array['users'][0]['password'] = md5($salt.$password);
+						$array['users'][0]['salt'] = $salt;
+						$array['users'][0]['add_date'] = now();
+						$array['users'][0]['add_user'] = strtolower($this->username);
+						$array['users'][0]['user_enabled'] = 'true';

-					//add the user to group user
-						$group_name = 'user';
-						$sql = "insert into v_user_groups ";
-						$sql .= "(";
-						$sql .= "user_group_uuid, ";
-						$sql .= "domain_uuid, ";
-						$sql .= "group_name, ";
-						$sql .= "user_uuid ";
-						$sql .= ")";
-						$sql .= "values ";
-						$sql .= "(";
-						$sql .= "'".uuid()."', ";
-						$sql .= "'".$this->domain_uuid."', ";
-						$sql .= "'".$group_name."', ";
-						$sql .= "'".$this->user_uuid."' ";
-						$sql .= ")";
-						$db->exec(check_sql($sql));
-						unset($sql);
+					//build user group insert array
+						$array['user_groups'][0]['user_group_uuid'] = uuid();
+						$array['user_groups'][0]['domain_uuid'] = $this->domain_uuid;
+						$array['user_groups'][0]['group_name'] = 'user';
+						$array['user_groups'][0]['user_uuid'] = $this->user_uuid;
+
+					//grant temporary permissions
+						$p = new permissions;
+						$p->add('user_add', 'temp');
+						$p->add('user_group_add', 'temp');
+
+					//execute insert
+						$database = new database;
+						$database->app_name = 'authentication';
+						$database->app_uuid = 'a8a12918-69a4-4ece-a1ae-3932be0e41f1';
+						$database->save($array);
+						unset($array);
+
+					//revoke temporary permissions
+						$p->delete('user_add', 'temp');
+						$p->delete('user_group_add', 'temp');
 				}
+				unset($sql, $parameters, $row);
 			}

 		//result array
@@ -185,14 +148,9 @@ class plugin_ldap {
 			}
 			$result["user_uuid"] = $this->user_uuid;
 			$result["domain_uuid"] = $this->domain_uuid;
-			if ($user_authorized) {
-				$result["authorized"] = "true";
-			}
-			else {
-				$result["authorized"] = "false";
-			}
+			$result["authorized"] = $user_authorized ? 'true' : 'false';
 			return $result;
 	}
 }

-?>
+?>