Home Explore Help
Register Sign In
usoft
/
showdoc
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 613fd24dff
Branches Tags
showdoc
/
server
/
Application
/
Api
/
Controller
/
AdminSettingController.class.php

AdminSettingController.class.php 4.8 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117 
  1. <?php
    2. 

  2. namespace Api\Controller;
    3. 

  3. use Think\Controller;
    4. 

  4. class AdminSettingController extends BaseController {
    5. 

  5. 

  6.     //保存配置
    7. 

  7.     public function saveConfig(){
    8. 

  8.         $login_user = $this->checkLogin();
    9. 

  9.         $this->checkAdmin();
    10. 

  10.         $register_open = intval(I("register_open")) ;
    11. 

  11.         $ldap_open = intval(I("ldap_open")) ;
    12. 

  12.         $ldap_form = I("ldap_form") ;
    13. 

  13.         D("Options")->set("register_open" ,$register_open) ;
    14. 

  14.         
    15. 

  15. 

  16.         if ($ldap_open) {
    17. 

  17. 

  18.             if( !extension_loaded( 'ldap' ) ) {
    19. 

  19.                $this->sendError(10011,"你尚未安装php-ldap扩展。如果是普通PHP环境,请手动安装之。如果是使用之前官方docker镜像,则需要重新安装镜像。方法是:备份 /showdoc_data 整个目录,然后全新安装showdoc,接着用备份覆盖/showdoc_data 。然后递归赋予777可写权限。");
    20. 

  20.                return ;
    21. 

  21.             }
    22. 

  22. 

  23.             $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
    24. 

  24.             if (!$ldap_conn) {
    25. 

  25.                $this->sendError(10011,"Can't connect to LDAP server");
    26. 

  26.                return ;
    27. 

  27.             }
    28. 

  28.             ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
    29. 

  29.             $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1 
    30. 

  30.             if (!$rs) {
    31. 

  31.                $this->sendError(10011,"Can't bind to LDAP server");
    32. 

  32.                return ;
    33. 

  33.             }
    34. 

  34. 

  35.             $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
    36. 

  36.             $data = ldap_get_entries($ldap_conn, $result);
    37. 

  37.             for ($i=0; $i<$data["count"]; $i++) {
    38. 

  38.                 $ldap_user = $data[$i]["cn"][0] ;
    39. 

  39.                 //如果该用户不在数据库里,则帮助其注册
    40. 

  40.                 if(!D("User")->isExist($ldap_user)){
    41. 

  41.                     D("User")->register($ldap_user,$ldap_user.time());
    42. 

  42.                 }
    43. 

  43.             }
    44. 

  44.             D("Options")->set("ldap_form" , json_encode( $ldap_form)) ;
    45. 

  45.         }
    46. 

  46.         D("Options")->set("ldap_open" ,$ldap_open) ;
    47. 

  47.         $this->sendResult(array());
    48. 

  48. 

  49.     }
    50. 

  50. 

  51.     //加载配置
    52. 

  52.     public function loadConfig(){
    53. 

  53.         $login_user = $this->checkLogin();
    54. 

  54.         $this->checkAdmin();
    55. 

  55.         $ldap_open = D("Options")->get("ldap_open" ) ;
    56. 

  56.         $register_open = D("Options")->get("register_open" ) ;
    57. 

  57.         $ldap_form = D("Options")->get("ldap_form" ) ;
    58. 

  58.         $ldap_form = json_decode($ldap_form,1);
    59. 

  59.         //如果强等于false,那就是尚未有数据。关闭注册应该是有数据且数据为字符串0
    60. 

  60.         if ($register_open === false) {
    61. 

  61.             $this->sendResult(array());
    62. 

  62.         }else{
    63. 

  63.             $array = array(
    64. 

  64.                 "ldap_open"=>$ldap_open ,
    65. 

  65.                 "register_open"=>$register_open ,
    66. 

  66.                 "ldap_form"=>$ldap_form ,
    67. 

  67.                 );
    68. 

  68.             $this->sendResult($array);
    69. 

  69.         }
    70. 

  70. 

  71.     }
    72. 

  72. 

  73.     public function checkLdapLogin(){
    74. 

  74.             $username = 'admin';
    75. 

  75.             $password = '123456';
    76. 

  76. 

  77.             $ldap_open = D("Options")->get("ldap_open" ) ;
    78. 

  78.             $ldap_form = D("Options")->get("ldap_form" ) ;
    79. 

  79.             $ldap_form = json_decode($ldap_form,1);
    80. 

  80.             if (!$ldap_open) {
    81. 

  81.                 return ;
    82. 

  82.             }
    83. 

  83.             $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
    84. 

  84.             if (!$ldap_conn) {
    85. 

  85.                $this->sendError(10011,"Can't connect to LDAP server");
    86. 

  86.                return ;
    87. 

  87.             }
    88. 

  88.             ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
    89. 

  89.             $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1 
    90. 

  90.             if (!$rs) {
    91. 

  91.                $this->sendError(10011,"Can't bind to LDAP server");
    92. 

  92.                return ;
    93. 

  93.             }
    94. 

  94. 

  95.             $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
    96. 

  96.             $data = ldap_get_entries($ldap_conn, $result);
    97. 

  97.             for ($i=0; $i<$data["count"]; $i++) {
    98. 

  98.                 $ldap_user = $data[$i]["cn"][0] ;
    99. 

  99.                 $dn = $data[$i]["dn"] ;
    100. 

  100.                 if ($ldap_user == $username) {
    101. 

  101.                     //如果该用户不在数据库里,则帮助其注册
    102. 

  102.                     $userInfo = D("User")->isExist($username) ;
    103. 

  103.                     if(!$userInfo){
    104. 

  104.                         D("User")->register($ldap_user,$ldap_user.time());
    105. 

  105.                     }
    106. 

  106.                     $rs2=ldap_bind($ldap_conn, $dn , $password);
    107. 

  107.                     if ($rs2) {
    108. 

  108.                        D("User")->updatePwd($userInfo['uid'], $password);
    109. 

  109.                        $this->sendResult(array());
    110. 

  110.                        return ;
    111. 

  111.                     }
    112. 

  112.                 }
    113. 

  113.             }
    114. 

  114.            $this->sendError(10011,"用户名或者密码错误");
    115. 

  115.     }
    116. 

  116. 

  117. }
    118.