2017-11-02 15:40:38 +03:00
|
|
|
<?php
|
|
|
|
/**
|
|
|
|
* @copyright Copyright (c) 2017 EITA Cooperative (eita.org.br)
|
|
|
|
*
|
2020-03-31 11:49:10 +03:00
|
|
|
* @author Christoph Wurst <christoph@winzerhof-wurst.at>
|
2019-12-03 21:57:53 +03:00
|
|
|
* @author Filis Futsarov <filisko@users.noreply.github.com>
|
2017-11-06 17:56:42 +03:00
|
|
|
* @author Vinicius Cubas Brand <vinicius@eita.org.br>
|
2017-11-02 15:40:38 +03:00
|
|
|
*
|
2017-11-06 17:56:42 +03:00
|
|
|
* @license GNU AGPL version 3 or any later version
|
2017-11-02 15:40:38 +03:00
|
|
|
*
|
2017-11-06 17:56:42 +03:00
|
|
|
* This program is free software: you can redistribute it and/or modify
|
|
|
|
* it under the terms of the GNU Affero General Public License as
|
|
|
|
* published by the Free Software Foundation, either version 3 of the
|
|
|
|
* License, or (at your option) any later version.
|
2017-11-02 15:40:38 +03:00
|
|
|
*
|
|
|
|
* This program is distributed in the hope that it will be useful,
|
|
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
2017-11-06 17:56:42 +03:00
|
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
2017-11-02 15:40:38 +03:00
|
|
|
* GNU Affero General Public License for more details.
|
|
|
|
*
|
2017-11-06 17:56:42 +03:00
|
|
|
* You should have received a copy of the GNU Affero General Public License
|
2019-12-03 21:57:53 +03:00
|
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
2017-11-02 15:40:38 +03:00
|
|
|
*
|
|
|
|
*/
|
|
|
|
|
|
|
|
namespace OCA\User_LDAP;
|
|
|
|
|
|
|
|
use OC\User\Backend;
|
|
|
|
|
|
|
|
class UserPluginManager {
|
|
|
|
public $test = false;
|
|
|
|
|
|
|
|
private $respondToActions = 0;
|
|
|
|
|
2020-03-26 11:30:18 +03:00
|
|
|
private $which = [
|
2017-11-02 15:40:38 +03:00
|
|
|
Backend::CREATE_USER => null,
|
|
|
|
Backend::SET_PASSWORD => null,
|
|
|
|
Backend::GET_HOME => null,
|
|
|
|
Backend::GET_DISPLAYNAME => null,
|
|
|
|
Backend::SET_DISPLAYNAME => null,
|
|
|
|
Backend::PROVIDE_AVATAR => null,
|
|
|
|
Backend::COUNT_USERS => null,
|
|
|
|
'deleteUser' => null
|
2020-03-26 11:30:18 +03:00
|
|
|
];
|
2017-11-02 15:40:38 +03:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @return int All implemented actions, except for 'deleteUser'
|
|
|
|
*/
|
|
|
|
public function getImplementedActions() {
|
|
|
|
return $this->respondToActions;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2019-01-31 01:23:09 +03:00
|
|
|
* Registers a user plugin that may implement some actions, overriding User_LDAP's user actions.
|
2017-11-03 01:19:03 +03:00
|
|
|
*
|
|
|
|
* @param ILDAPUserPlugin $plugin
|
2017-11-02 15:40:38 +03:00
|
|
|
*/
|
|
|
|
public function register(ILDAPUserPlugin $plugin) {
|
|
|
|
$respondToActions = $plugin->respondToActions();
|
|
|
|
$this->respondToActions |= $respondToActions;
|
|
|
|
|
2020-04-10 15:19:56 +03:00
|
|
|
foreach ($this->which as $action => $v) {
|
2017-11-03 01:19:03 +03:00
|
|
|
if (is_int($action) && (bool)($respondToActions & $action)) {
|
2017-11-02 15:40:38 +03:00
|
|
|
$this->which[$action] = $plugin;
|
|
|
|
\OC::$server->getLogger()->debug("Registered action ".$action." to plugin ".get_class($plugin), ['app' => 'user_ldap']);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
if (method_exists($plugin,'deleteUser')) {
|
|
|
|
$this->which['deleteUser'] = $plugin;
|
2017-11-03 01:19:03 +03:00
|
|
|
\OC::$server->getLogger()->debug("Registered action deleteUser to plugin ".get_class($plugin), ['app' => 'user_ldap']);
|
2017-11-02 15:40:38 +03:00
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Signal if there is a registered plugin that implements some given actions
|
2017-11-03 01:19:03 +03:00
|
|
|
* @param int $actions Actions defined in \OC\User\Backend, like Backend::CREATE_USER
|
2017-11-02 15:40:38 +03:00
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function implementsActions($actions) {
|
|
|
|
return ($actions & $this->respondToActions) == $actions;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Create a new user in LDAP Backend
|
|
|
|
*
|
2017-11-03 01:19:03 +03:00
|
|
|
* @param string $username The username of the user to create
|
2017-11-02 15:40:38 +03:00
|
|
|
* @param string $password The password of the new user
|
2019-03-01 18:12:19 +03:00
|
|
|
* @return string | false The user DN if user creation was successful.
|
2017-11-02 15:40:38 +03:00
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function createUser($username, $password) {
|
|
|
|
$plugin = $this->which[Backend::CREATE_USER];
|
|
|
|
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->createUser($username,$password);
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements createUser in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Change the password of a user*
|
|
|
|
* @param string $uid The username
|
|
|
|
* @param string $password The new password
|
|
|
|
* @return bool
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function setPassword($uid, $password) {
|
|
|
|
$plugin = $this->which[Backend::SET_PASSWORD];
|
|
|
|
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->setPassword($uid,$password);
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements setPassword in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* checks whether the user is allowed to change his avatar in Nextcloud
|
|
|
|
* @param string $uid the Nextcloud user name
|
|
|
|
* @return boolean either the user can or cannot
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function canChangeAvatar($uid) {
|
|
|
|
$plugin = $this->which[Backend::PROVIDE_AVATAR];
|
|
|
|
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->canChangeAvatar($uid);
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements canChangeAvatar in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get the user's home directory
|
|
|
|
* @param string $uid the username
|
|
|
|
* @return boolean
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function getHome($uid) {
|
|
|
|
$plugin = $this->which[Backend::GET_HOME];
|
|
|
|
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->getHome($uid);
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements getHome in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get display name of the user
|
|
|
|
* @param string $uid user ID of the user
|
|
|
|
* @return string display name
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function getDisplayName($uid) {
|
|
|
|
$plugin = $this->which[Backend::GET_DISPLAYNAME];
|
|
|
|
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->getDisplayName($uid);
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements getDisplayName in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Set display name of the user
|
|
|
|
* @param string $uid user ID of the user
|
|
|
|
* @param string $displayName new user's display name
|
|
|
|
* @return string display name
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function setDisplayName($uid, $displayName) {
|
|
|
|
$plugin = $this->which[Backend::SET_DISPLAYNAME];
|
|
|
|
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->setDisplayName($uid, $displayName);
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements setDisplayName in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Count the number of users
|
|
|
|
* @return int|bool
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function countUsers() {
|
|
|
|
$plugin = $this->which[Backend::COUNT_USERS];
|
|
|
|
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->countUsers();
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements countUsers in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @return bool
|
|
|
|
*/
|
|
|
|
public function canDeleteUser() {
|
|
|
|
return $this->which['deleteUser'] !== null;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param $uid
|
|
|
|
* @return bool
|
|
|
|
* @throws \Exception
|
|
|
|
*/
|
|
|
|
public function deleteUser($uid) {
|
|
|
|
$plugin = $this->which['deleteUser'];
|
|
|
|
if ($plugin) {
|
|
|
|
return $plugin->deleteUser($uid);
|
|
|
|
}
|
|
|
|
throw new \Exception('No plugin implements deleteUser in this LDAP Backend.');
|
|
|
|
}
|
|
|
|
}
|