PageRenderTime 44ms CodeModel.GetById 13ms RepoModel.GetById 0ms app.codeStats 0ms

/tests/tests/kernel/datatypes/ezuser/setup_accounts.php

https://github.com/zerustech/ezpublish
PHP | 247 lines | 170 code | 21 blank | 56 comment | 5 complexity | b871d5535a91f9e32004e1698d728b15 MD5 | raw file
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Setup the test accounts on the ldap server.
    4. 

  4.  *
    5. 

  5.  * Assumes the username entries are 'uid'.
    6. 

  6.  * Note that all tests will crash horribly if any new trilogy characters are introduced here ;)
    7. 

  7.  *
    8. 

  8.  * @copyright Copyright (C) eZ Systems AS. All rights reserved.
    9. 

  9.  * @license For full copyright and license information view LICENSE file distributed with this source code.
    10. 

  10.  * @version //autogentag//
    11. 

  11.  * @package tests
    12. 

  12.  */
    13. 

  13. 

  14. $dc = "dc=phpuc,dc=ez,dc=no";
    15. 

  15. $host = "phpuc.ez.no";
    16. 

  16. 

  17. $connection = Ldap::connect( "ldap://$host", "cn=%s,{$dc}", 'admin', 'wee123' );
    18. 

  18. 

  19. Ldap::delete( $connection, 'yoda', "ou=StarWars,{$dc}" );
    20. 

  20. Ldap::delete( $connection, 'boba.fett', "ou=StarWars,{$dc}" );
    21. 

  21. Ldap::delete( $connection, 'obi.wan', "ou=StarWars,{$dc}" );
    22. 

  22. Ldap::delete( $connection, 'jabba.thehutt', "ou=StarWars,{$dc}" );
    23. 

  23. Ldap::delete( $connection, 'darth.vader', "ou=StarWars,{$dc}" );
    24. 

  24. Ldap::delete( $connection, 'leia', "ou=StarWars,{$dc}" );
    25. 

  25. Ldap::delete( $connection, 'han.solo', "ou=StarWars,{$dc}" );
    26. 

  26. Ldap::delete( $connection, 'chewbacca', "ou=StarWars,{$dc}" );
    27. 

  27. 

  28. Ldap::deleteGroup( $connection, 'Jedi', "ou=RebelAlliance,ou=StarWars,{$dc}" );
    29. 

  29. Ldap::deleteGroup( $connection, 'RebelAlliance', "ou=StarWars,{$dc}" );
    30. 

  30. Ldap::deleteGroup( $connection, 'Sith', "ou=GalacticEmpire,ou=StarWars,$dc" );
    31. 

  31. Ldap::deleteGroup( $connection, 'GalacticEmpire', "ou=StarWars,{$dc}" );
    32. 

  32. Ldap::deleteGroup( $connection, 'Rogues', "ou=StarWars,{$dc}" );
    33. 

  33. Ldap::deleteGroup( $connection, 'StarWars', $dc );
    34. 

  34. 

  35. Ldap::addGroup( $connection, 'StarWars', $dc );
    36. 

  36. 

  37. $chewbaccaDN =
    38. 

  38. Ldap::add( $connection, 'chewbacca', '{MD5}' . base64_encode( pack( 'H*', md5( 'aaawwwwrrrkk' ) ) ), "ou=StarWars,{$dc}", 'Chewbacca', 'Chewbacca',
    39. 

  39.            array( 'givenName' => 'Chewbacca',
    40. 

  40.                   'displayName' => 'Chewbacca the Wokiee',
    41. 

  41.                   'ou' => array( 'StarWars', 'Rogues', 'RebelAlliance' ),
    42. 

  42.                   'mail' => array( 'chewbacca@millenniumfalcon.net' ) ) );
    43. 

  43. $hanSoloDN =
    44. 

  44. Ldap::add( $connection, 'han.solo', '{MD5}' . base64_encode( pack( 'H*', md5( 'leiaishot' ) ) ), "ou=StarWars,{$dc}", 'Solo', 'Han Solo',
    45. 

  45.            array( 'givenName' => 'Han',
    46. 

  46.                   'displayName' => 'He who shot first',
    47. 

  47.                   'ou' => array( 'StarWars', 'Rogues', 'RebelAlliance' ),
    48. 

  48.                   'mail' => array( 'han.solo@millenniumfalcon.net' ) ) );
    49. 

  49. $princessLeiaDN =
    50. 

  50. Ldap::add( $connection, 'leia', '{MD5}' . base64_encode( pack( 'H*', md5( 'bunhead' ) ) ), "ou=StarWars,{$dc}", 'Organa', 'Leia Organa',
    51. 

  51.            array( 'givenName' => 'Leia',
    52. 

  52.                   'displayName' => 'Princess Leia',
    53. 

  53.                   'ou' => array( 'StarWars', 'RebelAlliance' ),
    54. 

  54.                   'mail' => array( 'leia@rebelalliance.org' ) ) );
    55. 

  55. $darthVaderDN =
    56. 

  56. Ldap::add( $connection, 'darth.vader', '{MD5}' . base64_encode( pack( 'H*', md5( 'whosyourdaddy' ) ) ), "ou=StarWars,{$dc}", 'Skywalker', 'Anakin Skywalker',
    57. 

  57.            array( 'givenName' => 'Anakin',
    58. 

  58.                   'displayName' => 'Darth Vader',
    59. 

  59.                   'ou' => array( 'StarWars', 'GalacticEmpire', 'Sith' ),
    60. 

  60.                   'mail' => array( 'vader@empire.com' ) ) );
    61. 

  61. $jabbaTheHuttDN =
    62. 

  62. Ldap::add( $connection, 'jabba.thehutt', '{MD5}' . base64_encode( pack( 'H*', md5( 'wishihadlegs' ) ) ), "ou=StarWars,{$dc}", 'Hutt', 'Jabba Hutt',
    63. 

  63.            array( 'givenName' => 'Jabba',
    64. 

  64.                   'displayName' => 'Jabba the Hutt',
    65. 

  65.                   'ou' => array( 'Hutts' ),
    66. 

  66.                   'mail' => array( 'jabba@hutt.com' ) ) );
    67. 

  67. $obiWanDN =
    68. 

  68. Ldap::add( $connection, 'obi.wan', '{MD5}' . base64_encode( pack( 'H*', md5( 'thesearenotthedroids' ) ) ), "ou=StarWars,{$dc}", 'Kenobi', 'Obi Wan Kenobi',
    69. 

  69.            array( 'givenName' => 'Obi Wan',
    70. 

  70.                   'displayName' => 'Obi Wan Kenobi',
    71. 

  71.                   'ou' => array( 'StarWars', 'RebelAlliance', 'Jedi' ),
    72. 

  72.                   'seeAlso' => array( "ou=StarWars,{$dc}", "ou=RebelAlliance,ou=StarWars,{$dc}", "ou=Jedi,ou=RebelAlliance,ou=StarWars,{$dc}" ),
    73. 

  73.                   'mail' => array( 'obi.wan@jedi.org' ) ) );
    74. 

  74. $bobaFettDN =
    75. 

  75. Ldap::add( $connection, 'boba.fett', '{MD5}' . base64_encode( pack( 'H*', md5( 'ihatesarlacs' ) ) ), "ou=StarWars,{$dc}", 'Fett', 'Boba Fett',
    76. 

  76.            array( 'givenName' => 'Boba',
    77. 

  77.                   'displayName' => 'Boba Fett',
    78. 

  78.                   'ou' => array( 'StarWars', 'Rogues' ),
    79. 

  79.                   'seeAlso' => array( "ou=StarWars,{$dc}", "ou=Rogues,ou=StarWars,{$dc}" ),
    80. 

  80.                   'mail' => array( 'boba.fett@bountyhunter.com' ) ) );
    81. 

  81. $yodaDN =
    82. 

  82. Ldap::add( $connection, 'yoda', '{MD5}' . base64_encode( pack( 'H*', md5( 'dagobah4eva' ) ) ), "ou=StarWars,{$dc}", 'Yoda', 'Yoda',
    83. 

  83.            array( 'givenName' => 'Yoda',
    84. 

  84.                   'displayName' => 'Yoda',
    85. 

  85.                   'ou' => array( 'StarWars', 'RebelAlliance', 'Jedi' ),
    86. 

  86.                   'seeAlso' => array( "ou=StarWars,{$dc}", "ou=RebelAlliance,ou=StarWars,{$dc}", "ou=Jedi,ou=RebelAlliance,ou=StarWars,{$dc}" ),
    87. 

  87.                   'mail' => array( 'yoda@jedi.org' ) ) );
    88. 

  88. 

  89. Ldap::addGroup( $connection, 'RebelAlliance', "ou=StarWars,{$dc}",
    90. 

  90.                 array( 'seeAlso' => array( $princessLeiaDN, $chewbaccaDN, $hanSoloDN, $obiWanDN, $yodaDN ) ) );
    91. 

  91. Ldap::addGroup( $connection, 'Rogues', "ou=StarWars,{$dc}",
    92. 

  92.                 array( 'seeAlso' => array( $chewbaccaDN, $hanSoloDN ) ) );
    93. 

  93. Ldap::addGroup( $connection, 'GalacticEmpire', "ou=StarWars,{$dc}",
    94. 

  94.                 array( 'seeAlso' => array( $darthVaderDN ) ) );
    95. 

  95. Ldap::addGroup( $connection, 'Sith', "ou=GalacticEmpire,ou=StarWars,$dc",
    96. 

  96.                 array( 'seeAlso' => array( $darthVaderDN ) ) );
    97. 

  97. Ldap::addGroup( $connection, 'Jedi', "ou=RebelAlliance,ou=StarWars,{$dc}",
    98. 

  98.                 array( 'seeAlso' => array( $obiWanDN, $yodaDN ) ) );
    99. 

  99. 

  100. // This dumps all the LDAP data
    101. 

  101. // Ldap::fetchAll( $connection, $dc );
    102. 

  102. 

  103. Ldap::close( $connection );
    104. 

  104. 

  105. 

  106. /**
    107. 

  107.  * Support for LDAP functions connect, add, delete and get_entries.
    108. 

  108.  */
    109. 

  109. class Ldap
    110. 

  110. {
    111. 

  111.     /**
    112. 

  112.      * Connects to an LDAP server specified by $uri, with admin $user and $password.
    113. 

  113.      *
    114. 

  114.      * Returns a resource which can be used in LDAP functions like add, delete, search.
    115. 

  115.      *
    116. 

  116.      * @param string $uri Uri for LDAP, such as 'ldap://example.com'
    117. 

  117.      * @param string $format Format for an entry, like 'cn=%s,dc=example,dc=com'. %s is a literal placeholder for username
    118. 

  118.      * @param string $user Admin username
    119. 

  119.      * @param string $password Password for admin
    120. 

  120.      * @return resource
    121. 

  121.      */
    122. 

  122.     public static function connect( $uri, $format, $user, $password )
    123. 

  123.     {
    124. 

  124.         if ( !extension_loaded( 'ldap' ) )
    125. 

  125.         {
    126. 

  126.             die( 'LDAP extension is not loaded.' );
    127. 

  127.         }
    128. 

  128.         $connection = ldap_connect( $uri );
    129. 

  129.         if ( !$connection )
    130. 

  130.         {
    131. 

  131.             throw new Exception( "Could not connect to host '{$uri}'" );
    132. 

  132.         }
    133. 

  133.         ldap_set_option( $connection, LDAP_OPT_PROTOCOL_VERSION, 3 );
    134. 

  134.         @ldap_bind( $connection, sprintf( $format, $user ), $password );
    135. 

  135.         $err = ldap_errno( $connection );
    136. 

  136.         switch ( $err )
    137. 

  137.         {
    138. 

  138.             case 0x51: // LDAP_SERVER_DOWN
    139. 

  139.             case 0x52: // LDAP_LOCAL_ERROR
    140. 

  140.             case 0x53: // LDAP_ENCODING_ERROR
    141. 

  141.             case 0x54: // LDAP_DECODING_ERROR
    142. 

  142.             case 0x55: // LDAP_TIMEOUT
    143. 

  143.             case 0x56: // LDAP_AUTH_UNKNOWN
    144. 

  144.             case 0x57: // LDAP_FILTER_ERROR
    145. 

  145.             case 0x58: // LDAP_USER_CANCELLED
    146. 

  146.             case 0x59: // LDAP_PARAM_ERROR
    147. 

  147.             case 0x5a: // LDAP_NO_MEMORY
    148. 

  148.                 throw new Exception( "Could not connect to host '{$uri}'. (0x" . dechex( $err ) . ")" );
    149. 

  149.                 break;
    150. 

  150.         }
    151. 

  151.         return $connection;
    152. 

  152.     }
    153. 

  153. 

  154.     /**
    155. 

  155.      * Adds an entry in the LDAP directory.
    156. 

  156.      *
    157. 

  157.      * Throws a warning if the entry already exists.
    158. 

  158.      *
    159. 

  159.      * @param resource $connection Connection resource returned by ldap_connect()
    160. 

  160.      * @param string $user Username
    161. 

  161.      * @param string $password Password for username. Use an encryption function and put method in front of hash, like: '{MD5}hash'
    162. 

  162.      * @param string $dc The dc part of the entry, like: 'dc=example,dc=com'
    163. 

  163.      */
    164. 

  164.     public static function add( $connection, $user, $password, $dc, $sn, $cn, $extra = array() )
    165. 

  165.     {
    166. 

  166.         $ldaprecord['uid'][0] = $user;
    167. 

  167.         $ldaprecord['objectclass'][0] = "person";
    168. 

  168.         $ldaprecord['objectclass'][] = "organizationalPerson";
    169. 

  169.         $ldaprecord['objectclass'][] = "inetOrgPerson";
    170. 

  170.         $ldaprecord['sn'] = array( $sn );
    171. 

  171.         $ldaprecord['cn'] = array( $cn );
    172. 

  172.         $ldaprecord['objectclass'][] = "top";
    173. 

  173.         $ldaprecord['userPassword'][0] = $password;
    174. 

  174. 

  175.         foreach ( $extra as $key => $value )
    176. 

  176.         {
    177. 

  177.             $ldaprecord[$key] = $value;
    178. 

  178.         }
    179. 

  179.         $dn = "uid={$user},{$dc}";
    180. 

  180.         $success = ldap_add( $connection, $dn, $ldaprecord );
    181. 

  181. 

  182.         if ( $success )
    183. 

  183.             return $dn;
    184. 

  184.         else
    185. 

  185.             return false;
    186. 

  186.     }
    187. 

  187. 

  188.     /**
    189. 

  189.      * Deletes an entry from the LDAP directory.
    190. 

  190.      *
    191. 

  191.      * @param resource $connection Connection resource returned by ldap_connect()
    192. 

  192.      * @param string $user Username to delete
    193. 

  193.      * @param string $dc The dc part of the entry, like: 'dc=example,dc=com'
    194. 

  194.      */
    195. 

  195.     public static function delete( $connection, $user, $dc )
    196. 

  196.     {
    197. 

  197.         ldap_delete( $connection, "uid={$user},{$dc}" );
    198. 

  198.     }
    199. 

  199. 

  200.     public static function addGroup( $connection, $group, $dc, $extra = array() )
    201. 

  201.     {
    202. 

  202.         $ldaprecord['ou'] = $group;
    203. 

  203.         $ldaprecord['objectclass'][0] = "organizationalUnit";
    204. 

  204.         $ldaprecord['objectclass'][1] = "top";
    205. 

  205. 

  206.         foreach ( $extra as $key => $value )
    207. 

  207.         {
    208. 

  208.             $ldaprecord[$key] = $value;
    209. 

  209.         }
    210. 

  210.         $dn = "ou={$group},{$dc}";
    211. 

  211.         $success = ldap_add( $connection, $dn, $ldaprecord );
    212. 

  212. 

  213.         if ( $success )
    214. 

  214.             return $dn;
    215. 

  215.         else
    216. 

  216.             return false;
    217. 

  217.     }
    218. 

  218. 

  219.     public static function deleteGroup( $connection, $group, $dc )
    220. 

  220.     {
    221. 

  221.         ldap_delete( $connection, "ou={$group},{$dc}" );
    222. 

  222.     }
    223. 

  223. 

  224.     /**
    225. 

  225.      * Returns an array of all the entries in the LDAP directory.
    226. 

  226.      *
    227. 

  227.      * @param resource $connection Connection resource returned by ldap_connect()
    228. 

  228.      * @param string $dc The dc part of the entry, like: 'dc=example,dc=com'
    229. 

  229.      * @return array(mixed)
    230. 

  230.      */
    231. 

  231.     public static function fetchAll( $connection, $dc )
    232. 

  232.     {
    233. 

  233.         $sr = ldap_search( $connection, $dc, '(&(ou=*))' );
    234. 

  234.         var_dump( ldap_get_entries( $connection, $sr ) );
    235. 

  235.     }
    236. 

  236. 

  237.     /**
    238. 

  238.      * Closes the connection to the LDAP server.
    239. 

  239.      *
    240. 

  240.      * @param resource $connection Connection resource returned by ldap_connect()
    241. 

  241.      */
    242. 

  242.     public static function close( $connection )
    243. 

  243.     {
    244. 

  244.         ldap_close( $connection );
    245. 

  245.     }
    246. 

  246. }
    247. 

  247. ?>
    248. 

  248.