Domovská stránka Prehľadávať Pomoc
Registrovať Prihlásiť sa
usoft
/
showdoc
1
0
Fork 0
Súbory Issues 0 Pull requesty 0 Wiki
Strom: bade715396
Branche Tagy
showdoc
/
server
/
Application
/
Api
/
Controller
/
AdminSettingController.class.php

AdminSettingController.class.php 5.1 KB
História Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126 
  1. <?php
    2. 

  2. namespace Api\Controller;
    3. 

  3. use Think\Controller;
    4. 

  4. class AdminSettingController extends BaseController {
    5. 

  5. 

  6.     //保存配置
    7. 

  7.     public function saveConfig(){
    8. 

  8.         $login_user = $this->checkLogin();
    9. 

  9.         $this->checkAdmin();
    10. 

  10.         $register_open = intval(I("register_open")) ;
    11. 

  11.         $ldap_open = intval(I("ldap_open")) ;
    12. 

  12.         $ldap_form = I("ldap_form") ;
    13. 

  13.         D("Options")->set("register_open" ,$register_open) ;
    14. 

  14.         
    15. 

  15. 

  16.         if ($ldap_open) {
    17. 

  17.             if (!$ldap_form['user_field']) {
    18. 

  18.                 $ldap_form['user_field'] = 'cn';
    19. 

  19.             }
    20. 

  20.             if( !extension_loaded( 'ldap' ) ) {
    21. 

  21.                $this->sendError(10011,"你尚未安装php-ldap扩展。如果是普通PHP环境,请手动安装之。如果是使用之前官方docker镜像,则需要重新安装镜像。方法是:备份 /showdoc_data 整个目录,然后全新安装showdoc,接着用备份覆盖/showdoc_data 。然后递归赋予777可写权限。");
    22. 

  22.                return ;
    23. 

  23.             }
    24. 

  24. 

  25.             $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
    26. 

  26.             if (!$ldap_conn) {
    27. 

  27.                $this->sendError(10011,"Can't connect to LDAP server");
    28. 

  28.                return ;
    29. 

  29.             }
    30. 

  30.             ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
    31. 

  31.             $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1 
    32. 

  32.             if (!$rs) {
    33. 

  33.                $this->sendError(10011,"Can't bind to LDAP server");
    34. 

  34.                return ;
    35. 

  35.             }
    36. 

  36. 

  37.             $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
    38. 

  38.             $data = ldap_get_entries($ldap_conn, $result);
    39. 

  39.             
    40. 

  40.             for ($i=0; $i<$data["count"]; $i++) {
    41. 

  41.                 $ldap_user = $data[$i][$ldap_form['user_field']][0] ;
    42. 

  42.                 if (!$ldap_user) {
    43. 

  43.                     continue ;
    44. 

  44.                 }
    45. 

  45.                 //如果该用户不在数据库里,则帮助其注册
    46. 

  46.                 if(!D("User")->isExist($ldap_user)){
    47. 

  47.                     D("User")->register($ldap_user,$ldap_user.time());
    48. 

  48.                 }
    49. 

  49.             }
    50. 

  50.             D("Options")->set("ldap_form" , json_encode( $ldap_form)) ;
    51. 

  51.         }
    52. 

  52.         D("Options")->set("ldap_open" ,$ldap_open) ;
    53. 

  53.         $this->sendResult(array());
    54. 

  54. 

  55.     }
    56. 

  56. 

  57.     //加载配置
    58. 

  58.     public function loadConfig(){
    59. 

  59.         $login_user = $this->checkLogin();
    60. 

  60.         $this->checkAdmin();
    61. 

  61.         $ldap_open = D("Options")->get("ldap_open" ) ;
    62. 

  62.         $register_open = D("Options")->get("register_open" ) ;
    63. 

  63.         $ldap_form = D("Options")->get("ldap_form" ) ;
    64. 

  64.         $ldap_form = json_decode($ldap_form,1);
    65. 

  65.         //如果强等于false,那就是尚未有数据。关闭注册应该是有数据且数据为字符串0
    66. 

  66.         if ($register_open === false) {
    67. 

  67.             $this->sendResult(array());
    68. 

  68.         }else{
    69. 

  69.             $array = array(
    70. 

  70.                 "ldap_open"=>$ldap_open ,
    71. 

  71.                 "register_open"=>$register_open ,
    72. 

  72.                 "ldap_form"=>$ldap_form ,
    73. 

  73.                 );
    74. 

  74.             $this->sendResult($array);
    75. 

  75.         }
    76. 

  76. 

  77.     }
    78. 

  78. 

  79.     public function checkLdapLogin(){
    80. 

  80.             $username = 'admin';
    81. 

  81.             $password = '123456';
    82. 

  82. 

  83.             $ldap_open = D("Options")->get("ldap_open" ) ;
    84. 

  84.             $ldap_form = D("Options")->get("ldap_form" ) ;
    85. 

  85.             $ldap_form = json_decode($ldap_form,1);
    86. 

  86.             if (!$ldap_open) {
    87. 

  87.                 return ;
    88. 

  88.             }
    89. 

  89.             if (!$ldap_form['user_field']) {
    90. 

  90.                 $ldap_form['user_field'] = 'cn';
    91. 

  91.             }
    92. 

  92.             $ldap_conn = ldap_connect($ldap_form['host'], $ldap_form['port']);//建立与 LDAP 服务器的连接
    93. 

  93.             if (!$ldap_conn) {
    94. 

  94.                $this->sendError(10011,"Can't connect to LDAP server");
    95. 

  95.                return ;
    96. 

  96.             }
    97. 

  97.             ldap_set_option($ldap_conn, LDAP_OPT_PROTOCOL_VERSION, $ldap_form['version']);
    98. 

  98.             $rs=ldap_bind($ldap_conn, $ldap_form['bind_dn'], $ldap_form['bind_password']);//与服务器绑定 用户登录验证 成功返回1 
    99. 

  99.             if (!$rs) {
    100. 

  100.                $this->sendError(10011,"Can't bind to LDAP server");
    101. 

  101.                return ;
    102. 

  102.             }
    103. 

  103. 

  104.             $result = ldap_search($ldap_conn,$ldap_form['base_dn'],"(cn=*)");
    105. 

  105.             $data = ldap_get_entries($ldap_conn, $result);
    106. 

  106.             for ($i=0; $i<$data["count"]; $i++) {
    107. 

  107.                 $ldap_user = $data[$i][$ldap_form['user_field']][0] ;
    108. 

  108.                 $dn = $data[$i]["dn"] ;
    109. 

  109.                 if ($ldap_user == $username) {
    110. 

  110.                     //如果该用户不在数据库里,则帮助其注册
    111. 

  111.                     $userInfo = D("User")->isExist($username) ;
    112. 

  112.                     if(!$userInfo){
    113. 

  113.                         D("User")->register($ldap_user,$ldap_user.time());
    114. 

  114.                     }
    115. 

  115.                     $rs2=ldap_bind($ldap_conn, $dn , $password);
    116. 

  116.                     if ($rs2) {
    117. 

  117.                        D("User")->updatePwd($userInfo['uid'], $password);
    118. 

  118.                        $this->sendResult(array());
    119. 

  119.                        return ;
    120. 

  120.                     }
    121. 

  121.                 }
    122. 

  122.             }
    123. 

  123.            $this->sendError(10011,"用户名或者密码错误");
    124. 

  124.     }
    125. 

  125. 

  126. }
    127.