Home Explore Help
Register Sign In
aj
/
chamilo-lms2
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Branch: 1.11.10-releases
Branches Tags
chamilo-lms2
/
main
/
auth
/
external_login
/
login.ldap.php

login.ldap.php 2.8 KB
Permalink History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485 
  1. <?php
    2. 

  2. 

  3. use ChamiloSession as Session;
    4. 

  4. 

  5. // External login module : LDAP
    6. 

  6. /**
    7. 

  7.  * This file is included in main/inc/local.inc.php at user login if the user have 'external_ldap' in
    8. 

  8.  * his auth_source field instead of platform.
    9. 

  9.  *
    10. 

  10.  * Variables that can be used :
    11. 

  11.  *    - $login : string containing the username posted by the user
    12. 

  12.  *    - $password : string containing the password posted by the user
    13. 

  13.  *    - $uData : associative array with those keys :
    14. 

  14.  *           -username
    15. 

  15.  *           -password
    16. 

  16.  *           -auth_source
    17. 

  17.  *           -active
    18. 

  18.  *           -expiration_date
    19. 

  19.  *
    20. 

  20.  * If login succeeds, we have 2 choices :
    21. 

  21.  *    1.  - set $loginFailed to false,
    22. 

  22.  *        - set $_SESSION['_user']['user_id'] with the Chamilo user_id
    23. 

  23.  *        - set $uidReset to true
    24. 

  24.  *        - upgrade user info in chamilo database if needed
    25. 

  25.  *        - let the script local.inc.php continue
    26. 

  26.  *
    27. 

  27.  *    2.  - set $_SESSION['_user']['user_id'] with the Chamilo user_id
    28. 

  28.  *        - set $_SESSION['_user']['uidReset'] to true
    29. 

  29.  *        - upgrade user info in chamilo database if needed
    30. 

  30.  *        - redirect to any page and let local.inc.php do the magic
    31. 

  31.  *
    32. 

  32.  * If login fails we have to redirect to index.php with the right message
    33. 

  33.  * Possible messages are :
    34. 

  34.  *  - index.php?loginFailed=1&error=access_url_inactive
    35. 

  35.  *  - index.php?loginFailed=1&error=account_expired
    36. 

  36.  *  - index.php?loginFailed=1&error=account_inactive
    37. 

  37.  *  - index.php?loginFailed=1&error=user_password_incorrect
    38. 

  38.  *  - index.php?loginFailed=1&error=unrecognize_sso_origin');
    39. 

  39.  *
    40. 

  40.  * */
    41. 

  41. require_once __DIR__.'/ldap.inc.php';
    42. 

  42. require_once __DIR__.'/functions.inc.php';
    43. 

  43. 

  44. $debug = false;
    45. 

  45. if ($debug) {
    46. 

  46.     error_log('Entering login.ldap.php');
    47. 

  47. }
    48. 

  48. $ldap_user = extldap_authenticate($login, $password);
    49. 

  49. if ($ldap_user !== false) {
    50. 

  50.     if ($debug) {
    51. 

  51.         error_log('extldap_authenticate works');
    52. 

  52.     }
    53. 

  53.     $chamilo_user = extldap_get_chamilo_user($ldap_user);
    54. 

  54.     //userid is not on the ldap, we have to use $uData variable from local.inc.php
    55. 

  55.     $chamilo_user['user_id'] = $uData['user_id'];
    56. 

  56.     if ($debug) {
    57. 

  57.         error_log("chamilo_user found user_id: {$uData['user_id']}");
    58. 

  58.     }
    59. 

  59. 

  60.     //U pdate user info
    61. 

  61.     if (isset($extldap_config['update_userinfo']) && $extldap_config['update_userinfo']) {
    62. 

  62.         external_update_user($chamilo_user);
    63. 

  63.         if ($debug) {
    64. 

  64.             error_log("Calling external_update_user");
    65. 

  65.         }
    66. 

  66.     }
    67. 

  67. 

  68.     $loginFailed = false;
    69. 

  69.     $_user['user_id'] = $chamilo_user['user_id'];
    70. 

  70.     $_user['status'] = (isset($chamilo_user['status']) ? $chamilo_user['status'] : 5);
    71. 

  71.     $_user['uidReset'] = true;
    72. 

  72.     Session::write('_user', $_user);
    73. 

  73.     $uidReset = true;
    74. 

  74.     $logging_in = true;
    75. 

  75.     Event::eventLogin($_user['user_id']);
    76. 

  76. } else {
    77. 

  77.     if ($debug) {
    78. 

  78.         error_log('extldap_authenticate error');
    79. 

  79.     }
    80. 

  80.     $loginFailed = true;
    81. 

  81.     $uidReset = false;
    82. 

  82.     if (isset($_user) && isset($_user['user_id'])) {
    83. 

  83.         unset($_user['user_id']);
    84. 

  84.     }
    85. 

  85. }
    86.