system_usermanager_settings_ldapacpicker.php 4.1 KB
Newer Older
Ad Schellevis's avatar
Ad Schellevis committed
1 2
<?php
/*
3 4 5
    Copyright (C) 2014-2015 Deciso B.V.
    Copyright (C) 2007 Scott Ullrich <sullrich@gmail.com>
    All rights reserved.
Ad Schellevis's avatar
Ad Schellevis committed
6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28

    Redistribution and use in source and binary forms, with or without
    modification, are permitted provided that the following conditions are met:

    1. Redistributions of source code must retain the above copyright notice,
       this list of conditions and the following disclaimer.

    2. Redistributions in binary form must reproduce the above copyright
       notice, this list of conditions and the following disclaimer in the
       documentation and/or other materials provided with the distribution.

    THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED WARRANTIES,
    INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY
    AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE
    AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY,
    OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF
    SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS
    INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN
    CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
    ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
    POSSIBILITY OF SUCH DAMAGE.
*/

29
require_once("guiconfig.inc");
Ad Schellevis's avatar
Ad Schellevis committed
30
require_once("auth.inc");
31
include('head.inc');
Ad Schellevis's avatar
Ad Schellevis committed
32 33

$ous = array();
34
if (isset($_GET['basedn']) && isset($_GET['host'])) {
35 36 37 38 39
    if (isset($_GET['cert'])) {
        $authcfg = array();
        $authcfg['ldap_caref'] = $_GET['cert'];
        ldap_setup_caenv($authcfg);
    }
40 41 42 43 44 45 46 47 48 49 50 51

    $ldap_authcn = isset($_GET['authcn']) ? explode(";", $_GET['authcn']) : array();
    if (isset($_GET['urltype']) && strstr($_GET['urltype'], "Standard")) {
        $ldap_full_url = "ldap://";
    } else {
        $ldap_full_url = "ldaps://";
    }
    $ldap_full_url .= is_ipaddrv6($_GET['host']) ? "[{$_GET['host']}]" : $_GET['host'];
    if (!empty($_GET['port'])) {
        $ldap_full_url .= ":{$_GET['port']}";
    }

52
    $ldap_auth = new OPNsense\Auth\LDAP($_GET['basedn'], isset($_GET['proto']) ? $_GET['proto'] : 3);
53
    $ldap_is_connected = $ldap_auth->connect($ldap_full_url
54
                                            , !empty($_GET['binddn']) ? $_GET['binddn'] : null
55 56
    , !empty($_GET['bindpw']) ? $_GET['bindpw'] : null
    );
57 58 59
    if ($ldap_is_connected) {
        $ous = $ldap_auth->listOUs();
    }
Ad Schellevis's avatar
Ad Schellevis committed
60 61
}
?>
62 63

 <body>
64 65 66 67 68 69 70 71 72 73 74
  <script type="text/javascript">
      function post_choices() {
        var ous = <?php echo count($ous); ?>;
        var i;
        var values = $("#ou:checked").map(function(){
                        return $(this).val();
                     }).get().join(';');
        window.opener.document.getElementById('ldapauthcontainers').value=values;
        window.close();
      }
  </script>
75
 <form method="post" action="system_usermanager_settings_ldapacpicker.php">
76
<?php
77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108
  if (empty($ous)) :?>
  <p><?=gettext("Could not connect to the LDAP server. Please check your LDAP configuration.");?></p>
  <input type='button' class="btn btn-default" value='<?=gettext("Close"); ?>' onClick="window.close();">
<?php
  else :?>
  <section class="page-content-main">
    <div class="container-fluid">
      <div class="row">
        <div class="table-responsive">
          <table class="table table-striped">
            <tbody>
              <tr>
                <th><?=gettext("Please select which containers to Authenticate against:");?></th>
              </tr>
<?php
              foreach ($ous as $ou):?>
              <tr>
                <td><input type='checkbox' value='<?=$ou;?>' id='ou' name='ou[]' <?=in_array($ou, $ldap_authcn) ? "CHECKED": "";?>> <?=$ou;?></td>
              </tr>
<?php
              endforeach;?>
              <tr>
                <td align="right">
                  <input type='button' class="btn btn-primary" value='<?=gettext("Save");?>' onClick="post_choices();">
                </td>
              </tr>
            </tbody>
          </table>
        </div>
      </div>
    </div>
  </section>
109
<?php
110
  endif; ?>
Ad Schellevis's avatar
Ad Schellevis committed
111
 </form>
112
</body>
Ad Schellevis's avatar
Ad Schellevis committed
113
</html>