Главная Обзор Помощь
Вход
ShariX_Open
/
sharix-open-wiki
5
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Дерево: 2abb002708
Ветки Метки
sharix-open-wik...
/
lib
/
plugins
/
authad
/
adLDAP
/
classes
/
adLDAPFolders.php

adLDAPFolders.php 6.5 KB
История Исходник

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * PHP LDAP CLASS FOR MANIPULATING ACTIVE DIRECTORY 
    4. 

  4.  * Version 4.0.4
    5. 

  5.  * 
    6. 

  6.  * PHP Version 5 with SSL and LDAP support
    7. 

  7.  * 
    8. 

  8.  * Written by Scott Barnett, Richard Hyland
    9. 

  9.  *   email: scott@wiggumworld.com, adldap@richardhyland.com
    10. 

  10.  *   http://adldap.sourceforge.net/
    11. 

  11.  * 
    12. 

  12.  * Copyright (c) 2006-2012 Scott Barnett, Richard Hyland
    13. 

  13.  * 
    14. 

  14.  * We'd appreciate any improvements or additions to be submitted back
    15. 

  15.  * to benefit the entire community :)
    16. 

  16.  * 
    17. 

  17.  * This library is free software; you can redistribute it and/or
    18. 

  18.  * modify it under the terms of the GNU Lesser General Public
    19. 

  19.  * License as published by the Free Software Foundation; either
    20. 

  20.  * version 2.1 of the License.
    21. 

  21.  * 
    22. 

  22.  * This library is distributed in the hope that it will be useful,
    23. 

  23.  * but WITHOUT ANY WARRANTY; without even the implied warranty of
    24. 

  24.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    25. 

  25.  * Lesser General Public License for more details.
    26. 

  26.  * 
    27. 

  27.  * @category ToolsAndUtilities
    28. 

  28.  * @package adLDAP
    29. 

  29.  * @subpackage Folders
    30. 

  30.  * @author Scott Barnett, Richard Hyland
    31. 

  31.  * @copyright (c) 2006-2012 Scott Barnett, Richard Hyland
    32. 

  32.  * @license http://www.gnu.org/licenses/old-licenses/lgpl-2.1.html LGPLv2.1
    33. 

  33.  * @revision $Revision: 97 $
    34. 

  34.  * @version 4.0.4
    35. 

  35.  * @link http://adldap.sourceforge.net/
    36. 

  36.  */
    37. 

  37. require_once(dirname(__FILE__) . '/../adLDAP.php');
    38. 

  38. 

  39. /**
    40. 

  40. * FOLDER / OU MANAGEMENT FUNCTIONS
    41. 

  41. */
    42. 

  42. class adLDAPFolders {
    43. 

  43.     /**
    44. 

  44.     * The current adLDAP connection via dependency injection
    45. 

  45.     * 
    46. 

  46.     * @var adLDAP
    47. 

  47.     */
    48. 

  48.     protected $adldap;
    49. 

  49.     
    50. 

  50.     public function __construct(adLDAP $adldap) {
    51. 

  51.         $this->adldap = $adldap;
    52. 

  52.     }
    53. 

  53.     
    54. 

  54.     /**
    55. 

  55.     * Delete a distinguished name from Active Directory
    56. 

  56.     * You should never need to call this yourself, just use the wrapper functions user_delete and contact_delete
    57. 

  57.     *
    58. 

  58.     * @param string $dn The distinguished name to delete
    59. 

  59.     * @return bool
    60. 

  60.     */
    61. 

  61.     public function delete($dn){ 
    62. 

  62.         $result = ldap_delete($this->adldap->getLdapConnection(), $dn);
    63. 

  63.         if ($result != true) { 
    64. 

  64.             return false; 
    65. 

  65.         }
    66. 

  66.         return true;
    67. 

  67.     }
    68. 

  68.     
    69. 

  69.     /**
    70. 

  70.     * Returns a folder listing for a specific OU
    71. 

  71.     * See http://adldap.sourceforge.net/wiki/doku.php?id=api_folder_functions
    72. 

  72.     * 
    73. 

  73.     * @param array $folderName An array to the OU you wish to list. 
    74. 

  74.     *                           If set to NULL will list the root, strongly recommended to set 
    75. 

  75.     *                           $recursive to false in that instance!
    76. 

  76.     * @param string $dnType The type of record to list.  This can be ADLDAP_FOLDER or ADLDAP_CONTAINER.
    77. 

  77.     * @param bool $recursive Recursively search sub folders
    78. 

  78.     * @param bool $type Specify a type of object to search for
    79. 

  79.     * @return array
    80. 

  80.     */
    81. 

  81.     public function listing($folderName = NULL, $dnType = adLDAP::ADLDAP_FOLDER, $recursive = NULL, $type = NULL) 
    82. 

  82.     {
    83. 

  83.         if ($recursive === NULL) { $recursive = $this->adldap->getRecursiveGroups(); } //use the default option if they haven't set it
    84. 

  84.         if (!$this->adldap->getLdapBind()) { return false; }
    85. 

  85. 

  86.         $filter = '(&';
    87. 

  87.         if ($type !== NULL) {
    88. 

  88.             switch ($type) {
    89. 

  89.                 case 'contact':
    90. 

  90.                     $filter .= '(objectClass=contact)';
    91. 

  91.                     break;
    92. 

  92.                 case 'computer':
    93. 

  93.                     $filter .= '(objectClass=computer)';
    94. 

  94.                     break;
    95. 

  95.                 case 'group':
    96. 

  96.                     $filter .= '(objectClass=group)';
    97. 

  97.                     break;
    98. 

  98.                 case 'folder':
    99. 

  99.                     $filter .= '(objectClass=organizationalUnit)';
    100. 

  100.                     break;
    101. 

  101.                 case 'container':
    102. 

  102.                     $filter .= '(objectClass=container)';
    103. 

  103.                     break;
    104. 

  104.                 case 'domain':
    105. 

  105.                     $filter .= '(objectClass=builtinDomain)';
    106. 

  106.                     break;
    107. 

  107.                 default:
    108. 

  108.                     $filter .= '(objectClass=user)';
    109. 

  109.                     break;   
    110. 

  110.             }
    111. 

  111.         }
    112. 

  112.         else {
    113. 

  113.             $filter .= '(objectClass=*)';   
    114. 

  114.         }
    115. 

  115.         // If the folder name is null then we will search the root level of AD
    116. 

  116.         // This requires us to not have an OU= part, just the base_dn
    117. 

  117.         $searchOu = $this->adldap->getBaseDn();
    118. 

  118.         if (is_array($folderName)) {
    119. 

  119.             $ou = $dnType . "=" . implode("," . $dnType . "=", $folderName);
    120. 

  120.             $filter .= '(!(distinguishedname=' . $ou . ',' . $this->adldap->getBaseDn() . ')))';
    121. 

  121.             $searchOu = $ou . ',' . $this->adldap->getBaseDn();
    122. 

  122.         }
    123. 

  123.         else {
    124. 

  124.             $filter .= '(!(distinguishedname=' . $this->adldap->getBaseDn() . ')))';
    125. 

  125.         }
    126. 

  126. 

  127.         if ($recursive === true) {
    128. 

  128.             $sr = ldap_search($this->adldap->getLdapConnection(), $searchOu, $filter, array('objectclass', 'distinguishedname', 'samaccountname'));
    129. 

  129.             $entries = @ldap_get_entries($this->adldap->getLdapConnection(), $sr);
    130. 

  130.             if (is_array($entries)) {
    131. 

  131.                 return $entries;
    132. 

  132.             }
    133. 

  133.         }
    134. 

  134.         else {
    135. 

  135.             $sr = ldap_list($this->adldap->getLdapConnection(), $searchOu, $filter, array('objectclass', 'distinguishedname', 'samaccountname'));
    136. 

  136.             $entries = @ldap_get_entries($this->adldap->getLdapConnection(), $sr);
    137. 

  137.             if (is_array($entries)) {
    138. 

  138.                 return $entries;
    139. 

  139.             }
    140. 

  140.         }
    141. 

  141.         
    142. 

  142.         return false;
    143. 

  143.     }
    144. 

  144. 

  145.     /**
    146. 

  146.     * Create an organizational unit
    147. 

  147.     * 
    148. 

  148.     * @param array $attributes Default attributes of the ou
    149. 

  149.     * @return bool
    150. 

  150.     */
    151. 

  151.     public function create($attributes)
    152. 

  152.     {
    153. 

  153.         if (!is_array($attributes)){ return "Attributes must be an array"; }
    154. 

  154.         if (!is_array($attributes["container"])) { return "Container attribute must be an array."; }
    155. 

  155.         if (!array_key_exists("ou_name",$attributes)) { return "Missing compulsory field [ou_name]"; }
    156. 

  156.         if (!array_key_exists("container",$attributes)) { return "Missing compulsory field [container]"; }
    157. 

  157.         
    158. 

  158.         $attributes["container"] = array_reverse($attributes["container"]);
    159. 

  159. 

  160.         $add=array();
    161. 

  161.         $add["objectClass"] = "organizationalUnit";
    162. 

  162.         $add["OU"] = $attributes['ou_name'];
    163. 

  163.         $containers = "";
    164. 

  164.         if (count($attributes['container']) > 0) {
    165. 

  165.             $containers = "OU=" . implode(",OU=", $attributes["container"]) . ",";
    166. 

  166.         }
    167. 

  167. 

  168.         $containers = "OU=" . implode(",OU=", $attributes["container"]);
    169. 

  169.         $result = ldap_add($this->adldap->getLdapConnection(), "OU=" . $add["OU"] . ", " . $containers . $this->adldap->getBaseDn(), $add);
    170. 

  170.         if ($result != true) { 
    171. 

  171.             return false; 
    172. 

  172.         }
    173. 

  173.         
    174. 

  174.         return true;
    175. 

  175.     }
    176. 

  176.     
    177. 

  177. }
    178. 

  178. 

  179. ?>
    180.