Trang chủ Khám phá Trợ giúp
Đăng ký Đăng nhập
usoft
/
showdoc
1
0
Fork 0
Các tập tin Các vấn đề 0 Yêu cầu khéo về 0 Wiki
Tree: 4a2ead0aac
Branches Tags
showdoc
/
server
/
Application
/
Api
/
Controller
/
AdminSettingController.class.php

AdminSettingController.class.php 5.5 KB
Lịch sử Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134 
  1. <?php
    2. 

  2. namespace Api\Controller;
    3. 

  3. use Think\Controller;
    4. 

  4. class AdminSettingController extends BaseController {
    5. 

  5. 

  6.     //保存配置
    7. 

  7.     public function saveConfig(){
    8. 

  8.         $login_user = $this->checkLogin();
    9. 

  9.         $this->checkAdmin();
    10. 

  10.         $register_open = intval(I("register_open")) ;
    11. 

  11.         $ldap_open = intval(I("ldap_open")) ;
    12. 

  12.         $home_page = intval(I("home_page")) ;
    13. 

  13.         $home_item = intval(I("home_item")) ;
    14. 

  14.         $ldap_form = I("ldap_form") ;
    15. 

  15.         D("Options")->set("register_open" ,$register_open) ;
    16. 

  16.         D("Options")->set("home_page" ,$home_page) ;
    17. 

  17.         D("Options")->set("home_item" ,$home_item) ;
    18. 

  18.         
    19. 

  19. 

  20.         if ($ldap_open) {
    21. 

  21.             if (!$ldap_form['user_field']) {
    22. 

  22.                 $ldap_form['user_field'] = 'cn';
    23. 

  23.             }
    24. 

  24.             if( !extension_loaded( 'ldap' ) ) {
    25. 

  25.                $this->sendError(10011,"你尚未安装php-ldap扩展。如果是普通PHP环境,请手动安装之。如果是使用之前官方docker镜像,则需要重新安装镜像。方法是:备份 /showdoc_data 整个目录,然后全新安装showdoc,接着用备份覆盖/showdoc_data 。然后递归赋予777可写权限。");
    26. 

  26.                return ;
    27. 

  27.             }
    28. 

  28. 

  29.             $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
    30. 

  30.             if (!$ldap_conn) {
    31. 

  31.                $this->sendError(10011,"Can't connect to LDAP server");
    32. 

  32.                return ;
    33. 

  33.             }
    34. 

  34.             ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
    35. 

  35.             $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1 
    36. 

  36.             if (!$rs) {
    37. 

  37.                $this->sendError(10011,"Can't bind to LDAP server");
    38. 

  38.                return ;
    39. 

  39.             }
    40. 

  40. 

  41.             $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
    42. 

  42.             $data = ldap_get_entries($ldap_conn, $result);
    43. 

  43.             
    44. 

  44.             for ($i=0; $i<$data["count"]; $i++) {
    45. 

  45.                 $ldap_user = $data[$i][$ldap_form['user_field']][0] ;
    46. 

  46.                 if (!$ldap_user) {
    47. 

  47.                     continue ;
    48. 

  48.                 }
    49. 

  49.                 //如果该用户不在数据库里,则帮助其注册
    50. 

  50.                 if(!D("User")->isExist($ldap_user)){
    51. 

  51.                     D("User")->register($ldap_user,$ldap_user.time());
    52. 

  52.                 }
    53. 

  53.             }
    54. 

  54.             D("Options")->set("ldap_form" , json_encode( $ldap_form)) ;
    55. 

  55.         }
    56. 

  56.         D("Options")->set("ldap_open" ,$ldap_open) ;
    57. 

  57.         $this->sendResult(array());
    58. 

  58. 

  59.     }
    60. 

  60. 

  61.     //加载配置
    62. 

  62.     public function loadConfig(){
    63. 

  63.         $login_user = $this->checkLogin();
    64. 

  64.         $this->checkAdmin();
    65. 

  65.         $ldap_open = D("Options")->get("ldap_open" ) ;
    66. 

  66.         $register_open = D("Options")->get("register_open" ) ;
    67. 

  67.         $ldap_form = D("Options")->get("ldap_form" ) ;
    68. 

  68.         $home_page = D("Options")->get("home_page" ) ;
    69. 

  69.         $home_item = D("Options")->get("home_item" ) ;
    70. 

  70.         $ldap_form = json_decode($ldap_form,1);
    71. 

  71.         //如果强等于false,那就是尚未有数据。关闭注册应该是有数据且数据为字符串0
    72. 

  72.         if ($register_open === false) {
    73. 

  73.             $this->sendResult(array());
    74. 

  74.         }else{
    75. 

  75.             $array = array(
    76. 

  76.                 "ldap_open"=>$ldap_open ,
    77. 

  77.                 "register_open"=>$register_open ,
    78. 

  78.                 "home_page"=>$home_page ,
    79. 

  79.                 "home_item"=>$home_item ,
    80. 

  80.                 "ldap_form"=>$ldap_form ,
    81. 

  81.                 );
    82. 

  82.             $this->sendResult($array);
    83. 

  83.         }
    84. 

  84. 

  85.     }
    86. 

  86. 

  87.     public function checkLdapLogin(){
    88. 

  88.             $username = 'admin';
    89. 

  89.             $password = '123456';
    90. 

  90. 

  91.             $ldap_open = D("Options")->get("ldap_open" ) ;
    92. 

  92.             $ldap_form = D("Options")->get("ldap_form" ) ;
    93. 

  93.             $ldap_form = json_decode($ldap_form,1);
    94. 

  94.             if (!$ldap_open) {
    95. 

  95.                 return ;
    96. 

  96.             }
    97. 

  97.             if (!$ldap_form['user_field']) {
    98. 

  98.                 $ldap_form['user_field'] = 'cn';
    99. 

  99.             }
    100. 

  100.             $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
    101. 

  101.             if (!$ldap_conn) {
    102. 

  102.                $this->sendError(10011,"Can't connect to LDAP server");
    103. 

  103.                return ;
    104. 

  104.             }
    105. 

  105.             ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
    106. 

  106.             $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1 
    107. 

  107.             if (!$rs) {
    108. 

  108.                $this->sendError(10011,"Can't bind to LDAP server");
    109. 

  109.                return ;
    110. 

  110.             }
    111. 

  111. 

  112.             $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
    113. 

  113.             $data = ldap_get_entries($ldap_conn, $result);
    114. 

  114.             for ($i=0; $i<$data["count"]; $i++) {
    115. 

  115.                 $ldap_user = $data[$i][$ldap_form['user_field']][0] ;
    116. 

  116.                 $dn = $data[$i]["dn"] ;
    117. 

  117.                 if ($ldap_user == $username) {
    118. 

  118.                     //如果该用户不在数据库里,则帮助其注册
    119. 

  119.                     $userInfo = D("User")->isExist($username) ;
    120. 

  120.                     if(!$userInfo){
    121. 

  121.                         D("User")->register($ldap_user,$ldap_user.time());
    122. 

  122.                     }
    123. 

  123.                     $rs2=ldap_bind($ldap_conn, $dn , $password);
    124. 

  124.                     if ($rs2) {
    125. 

  125.                        D("User")->updatePwd($userInfo['uid'], $password);
    126. 

  126.                        $this->sendResult(array());
    127. 

  127.                        return ;
    128. 

  128.                     }
    129. 

  129.                 }
    130. 

  130.             }
    131. 

  131.            $this->sendError(10011,"用户名或者密码错误");
    132. 

  132.     }
    133. 

  133. 

  134. }
    135.