system_usermanager_settings_ldapacpicker.php 3.85 KB
Newer Older
Ad Schellevis's avatar
Ad Schellevis committed
1 2
<?php
/*
3
	Copyright (C) 2014-2015 Deciso B.V.
Ad Schellevis's avatar
Ad Schellevis committed
4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28
	Copyright (C) 2007 Scott Ullrich <sullrich@gmail.com>
	All rights reserved.

    Redistribution and use in source and binary forms, with or without
    modification, are permitted provided that the following conditions are met:

    1. Redistributions of source code must retain the above copyright notice,
       this list of conditions and the following disclaimer.

    2. Redistributions in binary form must reproduce the above copyright
       notice, this list of conditions and the following disclaimer in the
       documentation and/or other materials provided with the distribution.

    THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
    INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
    AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
    AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
    OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
    SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
    INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
    CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
    ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
    POSSIBILITY OF SUCH DAMAGE.
*/

29
require_once("guiconfig.inc");
Ad Schellevis's avatar
Ad Schellevis committed
30
require_once("auth.inc");
31
include('head.inc');
Ad Schellevis's avatar
Ad Schellevis committed
32 33 34

$ous = array();

35
if (isset($_GET['basedn']) && isset($_GET['host'])) {
36 37 38 39 40
    if (isset($_GET['cert'])) {
        $authcfg = array();
        $authcfg['ldap_caref'] = $_GET['cert'];
        ldap_setup_caenv($authcfg);
    }
41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59

    $ldap_authcn = isset($_GET['authcn']) ? explode(";", $_GET['authcn']) : array();
    if (isset($_GET['urltype']) && strstr($_GET['urltype'], "Standard")) {
        $ldap_full_url = "ldap://";
    } else {
        $ldap_full_url = "ldaps://";
    }
    $ldap_full_url .= is_ipaddrv6($_GET['host']) ? "[{$_GET['host']}]" : $_GET['host'];
    if (!empty($_GET['port'])) {
        $ldap_full_url .= ":{$_GET['port']}";
    }

    $ldap_auth = new OPNsense\Auth\LDAP($_GET['basedn']
    , isset($_GET['proto']) ? $_GET['proto'] : 3
    );
    $ldap_is_connected = $ldap_auth->connect($ldap_full_url
    , !empty($_GET['binddn']) ? $_GET['binddn'] : null
    , !empty($_GET['bindpw']) ? $_GET['bindpw'] : null
    );
60 61 62
    if ($ldap_is_connected) {
        $ous = $ldap_auth->listOUs();
    }
Ad Schellevis's avatar
Ad Schellevis committed
63 64 65
}

?>
66 67

 <body>
68
	<script type="text/javascript">
Ad Schellevis's avatar
Ad Schellevis committed
69 70 71 72
function post_choices() {

	var ous = <?php echo count($ous); ?>;
	var i;
73
	var values = jQuery("#ou:checked").map(function(){
74
	return jQuery(this).val();
75 76
    }).get().join(';');
	window.opener.document.getElementById('ldapauthcontainers').value=values;
Ad Schellevis's avatar
Ad Schellevis committed
77 78 79
	window.close();
}
</script>
80
 <form method="post" action="system_usermanager_settings_ldapacpicker.php">
81 82
<?php if (empty($ous)) :
?>
Ad Schellevis's avatar
Ad Schellevis committed
83
	<p><?=gettext("Could not connect to the LDAP server. Please check your LDAP configuration.");?></p>
84
	<input type='button' class="btn btn-default" value='<?=gettext("Close"); ?>' onClick="window.close();">
85 86 87
<?php
else :
?>
88 89 90 91 92 93 94 95
	<table class="table table-striped">
		<tbody>
			<tr>
			<th>
				<?=gettext("Please select which containers to Authenticate against:");?>
			</th>
			</tr>
			<?php
96 97
            if (is_array($ous)) {
                foreach ($ous as $ou) {
98
                    if (in_array($ou, $ldap_authcn)) {
99 100 101 102 103 104 105 106
                        $CHECKED=" CHECKED";
                    } else {
                        $CHECKED="";
                    }
                    echo "			<tr><td><input type='checkbox' value='{$ou}' id='ou' name='ou[]'{$CHECKED}> {$ou}</td></tr>\n";
                }
            }
            ?>
107 108 109 110 111 112
			<tr>
				<td align="right">
					<input type='button' class="btn btn-primary" value='<?=gettext("Save");?>' onClick="post_choices();">
				</td>
			</tr>
		</tbody>
113
	</table>
114 115
<?php
endif; ?>
Ad Schellevis's avatar
Ad Schellevis committed
116 117 118
 </form>
 </body>
</html>