test: password recovery
diff --git a/ldap.php b/ldap.php
index 267a78c..1633eb9 100755
--- a/ldap.php
+++ b/ldap.php
@@ -1,59 +1,64 @@
<?php
-function debug($msg) {
+function debug($msg)
+{
include 'config.php';
if ($DEBUG)
- echo $msg."\n";
+ echo $msg . "\n";
}
-function generateSalt($length=10) {
- $chars="0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
+function generateSalt($length = 10)
+{
+ $chars = "0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ";
- $string="";
- for($i=0;$i<$length;$i++) {
- $string.=substr($chars,rand(0,strlen($chars)-1),1);
- }
+ $string = "";
+ for ($i = 0; $i < $length; $i++) {
+ $string .= substr($chars, rand(0, strlen($chars) - 1), 1);
+ }
- return $string;
+ return $string;
}
-class User {
- function __construct(string $user_name, string $first_name, string $last_name, string $email, string $password){
+class User
+{
+ function __construct(string $user_name, string $first_name, string $last_name, string $email, string $password)
+ {
$this->user_name = $user_name;
$this->name = $first_name;
$this->first_name = $first_name;
$this->last_name = $last_name;
$this->email = $email;
- $this->user_hash = "{crypt}" . crypt($password,'$6$'.generateSalt(10).'$');
+ $this->user_hash = "{crypt}" . crypt($password, '$6$' . generateSalt(10) . '$');
$this->password = $this->user_hash;
}
}
-function ldap_search_query($query, $filter="cn"){
+function ldap_search_query($query, $filter = "cn")
+{
include 'config.php';
$ldap_host = $HOST;
$ldap_port = $PORT;
$ldaptree = explode("{},", $BASE_DN)[1];
- $ldap_user = "cn=".$USER.",".join(",", array_slice(explode(",", $ldaptree), 1));
+ $ldap_user = "cn=" . $USER . "," . join(",", array_slice(explode(",", $ldaptree), 1));
$ldap_pass = $PASSWORD;
//First: Connect to LDAP Server
- $connect = ldap_connect( $ldap_host, $ldap_port)
- or debug(">>Could not connect to LDAP server to add user<<");
+ $connect = ldap_connect($ldap_host, $ldap_port)
+ or debug(">>Could not connect to LDAP server to add user<<");
ldap_set_option($connect, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($connect, LDAP_OPT_REFERRALS, 0);
//Login to LDAP
ldap_bind($connect, $ldap_user, $ldap_pass)
- or debug(">>Could not bind to $ldap_host to add user<<");
+ or debug(">>Could not bind to $ldap_host to add user<<");
-
- $result = ldap_search($connect,$ldaptree, "(".$filter."=".$query.")") or die ("Error in search query: ".ldap_error($connect));
+
+ $result = ldap_search($connect, $ldaptree, "(" . $filter . "=" . $query . ")") or die("Error in search query: " . ldap_error($connect));
$data = ldap_get_entries($connect, $result);
return $data;
}
-function ldap_add_user ($user)
+function ldap_add_user($user)
{
include 'config.php';
$ldap_host = $HOST;
@@ -62,15 +67,15 @@
$ldaptree = explode("{},", $BASE_DN)[1];
- $info["givenName"]=$user->first_name;
- $info["sn"]=$user->last_name;
- $info["uid"]=$user->user_name;
+ $info["givenName"] = $user->first_name;
+ $info["sn"] = $user->last_name;
+ $info["uid"] = $user->user_name;
#$info["homeDirectory"]="/home/";
- $info["mail"]=$user->email;
- $info["displayName"]= $user->first_name." ".$user->last_name;
+ $info["mail"] = $user->email;
+ $info["displayName"] = $user->first_name . " " . $user->last_name;
#$info["departmentNumber"]=$user->id;
- $info["cn"] =$user->user_name;
- $info["userPassword"]=$user->user_hash;
+ $info["cn"] = $user->user_name;
+ $info["userPassword"] = $user->user_hash;
$info["objectclass"][0] = "top";
$info["objectclass"][1] = "person";
$info["objectclass"][2] = "inetOrgPerson";
@@ -78,35 +83,72 @@
- $ldap_user = "cn=".$USER.",".join(",", array_slice(explode(",", $ldaptree), 1));
+ $ldap_user = "cn=" . $USER . "," . join(",", array_slice(explode(",", $ldaptree), 1));
$ldap_pass = $PASSWORD;
//First: Connect to LDAP Server
- $connect = ldap_connect( $ldap_host, $ldap_port)
- or debug(">>Could not connect to LDAP server to add user<<");
+ $connect = ldap_connect($ldap_host, $ldap_port)
+ or debug(">>Could not connect to LDAP server to add user<<");
ldap_set_option($connect, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($connect, LDAP_OPT_REFERRALS, 0);
//Login to LDAP
ldap_bind($connect, $ldap_user, $ldap_pass)
- or debug(">>Could not bind to $ldap_host to add user<<");
+ or debug(">>Could not bind to $ldap_host to add user<<");
// Adding new user
- $add = ldap_add($connect, $base_dn, $info)
- or debug(">>Not able to load user <<");
+ $add = ldap_add($connect, $base_dn, $info)
+ or debug(">>Not able to load user <<");
// Close connection
- ldap_close($connect);
+ ldap_close($connect);
- // Return value of operation
+ // Return value of operation
return $add;
}
-function ldap_user_count($user){
+function ldap_user_count($user)
+{
return ldap_search_query($user)["count"];
}
-function ldap_mail_count($email){
+function ldap_mail_count($email)
+{
return ldap_search_query($email, "mail")["count"];
}
-?>
+
+function change_password($email, $new_password)
+{
+ include 'config.php';
+ $ldap_host = $HOST;
+ $ldap_port = $PORT;
+ $ldaptree = explode("{},", $BASE_DN)[1];
+
+ $ldap_user = "cn=" . $USER . "," . join(",", array_slice(explode(",", $ldaptree), 1));
+ $ldap_pass = $PASSWORD;
+
+ //First: Connect to LDAP Server
+ $connect = ldap_connect($ldap_host, $ldap_port)
+ or debug(">>Could not connect to LDAP server to add user<<");
+ ldap_set_option($connect, LDAP_OPT_PROTOCOL_VERSION, 3);
+ ldap_set_option($connect, LDAP_OPT_REFERRALS, 0);
+
+ //Login to LDAP
+ ldap_bind($connect, $ldap_user, $ldap_pass)
+ or debug(">>Could not bind to $ldap_host to add user<<");
+
+
+ $result = ldap_search($connect, $ldaptree, "(mail=" . $email . ")") or die("Error in search query: " . ldap_error($connect));
+ $data = ldap_get_entries($connect, $result);
+ if (!$data['count'] || !isset($data[0]["dn"]) || empty($data[0]["dn"])) {
+ return false;
+ }
+ $dn = $data[0]["dn"];
+
+ $newEntry = ['userPassword' => "{crypt}" . crypt($new_password, '$6$' . generateSalt(10) . '$')];
+
+ if (ldap_mod_replace($connect, $dn, $newEntry))
+ return true;
+ else
+ return false;
+}