ilAuthContainerApache Class Reference

Authentication against ILIAS database. More...

Inheritance diagram for ilAuthContainerApache:

Collaboration diagram for ilAuthContainerApache:

Public Member Functions
	__construct ()
	Constructor. More...
Public Member Functions inherited from Auth_Container
	Auth_Container ()
	Constructor. More...
	fetchData ($username, $password, $isChallengeResponse=false)
	Fetch data from storage container. More...
	verifyPassword ($password1, $password2, $cryptType="md5")
	Crypt and verfiy the entered password. More...
	supportsChallengeResponse ()
	Returns true if the container supports Challenge Response password authentication. More...
	getCryptType ()
	Returns the crypt current crypt type of the container. More...
	listUsers ()
	List all users that are available from the storage container. More...
	getUser ($username)
	Returns a user assoc array. More...
	addUser ($username, $password, $additional=null)
	Add a new user to the storage container. More...
	removeUser ($username)
	Remove user from the storage container. More...
	changePassword ($username, $password)
	Change password for user in the storage container. More...
	log ($message, $level=AUTH_LOG_DEBUG)
	Log a message to the Auth log. More...
Public Member Functions inherited from ilAuthContainerBase
	loginObserver ($a_username, $a_auth)
	Called after successful login. More...
	failedLoginObserver ($a_username, $a_auth)
	Called after failed login. More...
	checkAuthObserver ($a_username, $a_auth)
	Called after check auth requests. More...
	logoutObserver ($a_username, $a_auth)
	Called after logout. More...
	supportsCaptchaVerification ()
	Returns whether or not the auth container supports the verification of captchas This should be true for those auth methods, which are available in the default login form. More...

Static Public Member Functions
static	forceCreation ($value)

Static Public Attributes
static	$force_creation = false

Protected Member Functions
	updateRequired ($a_username)
	Check if an update is required. More...
	handleLDAPDataSource ($a_auth, $ext_account, $settings)
	Handle ldap as data source. More...

Private Member Functions
	initLDAPAttributeToUser ()
	Init LDAP attribute mapping @access private. More...

Additional Inherited Members
Data Fields inherited from Auth_Container
	$activeUser = ""
	User that is currently selected from the storage container. More...
	$_auth_obj = null
	The Auth object this container is attached to. More...

Detailed Description

Authentication against ILIAS database.

Author

Stefan Meyer meyer.nosp@m.@lei.nosp@m.fos.c.nosp@m.om

Version

$Id$

Definition at line 12 of file class.ilAuthContainerApache.php.

Constructor & Destructor Documentation

__construct()

ilAuthContainerApache::__construct

(

)

Constructor.

Definition at line 22 of file class.ilAuthContainerApache.php.

        {
                parent::__construct();
        }

Member Function Documentation

forceCreation()

static ilAuthContainerApache::forceCreation (   $value )

static

Parameters

boolean

$value

Definition at line 30 of file class.ilAuthContainerApache.php.

        {
                self::$force_creation = $value;
        }

handleLDAPDataSource()

ilAuthContainerApache::handleLDAPDataSource (   $a_auth,   $ext_account,   $settings  )

protected

Handle ldap as data source.

Parameters

Auth	$auth
string	$ext_account

Definition at line 313 of file class.ilAuthContainerApache.php.

        {
                include_once './Services/LDAP/classes/class.ilLDAPServer.php';
                $server = ilLDAPServer::getInstanceByServerId(
                        $settings->get('apache_ldap_sid')
                );
 
                ilLoggerFactory::getLogger('auth')->debug('Using ldap data source with server configuration: ' . $server->getName());
 
                include_once './Services/LDAP/classes/class.ilLDAPUserSynchronisation.php';
                $sync = new ilLDAPUserSynchronisation('ldap_'.$server->getServerId(), $server->getServerId());
                $sync->setExternalAccount($ext_account);
                $sync->setUserData(array());
                $sync->forceCreation(self::$force_creation);
                $sync->forceReadLdapData(true);
 
                try {
                        $internal_account = $sync->sync();
                }
                catch(UnexpectedValueException $e) {
                        ilLoggerFactory::getLogger('auth')->info('Login failed with message: ' . $e->getMessage());
                        $a_auth->status = AUTH_WRONG_LOGIN;
                        $a_auth->logout();
                        return false;
                }
                catch(ilLDAPSynchronisationForbiddenException $e) {
                        // No syncronisation allowed => create Error
                        ilLoggerFactory::getLogger('auth')->info('Login failed with message: ' . $e->getMessage());
                        $a_auth->status = AUTH_RADIUS_NO_ILIAS_USER;
                        $a_auth->logout();
                        return false;
                }
                catch(ilLDAPAccountMigrationRequiredException $e) {
                        ilLoggerFactory::getLogger('auth')->debug('Starting account migration');
                        $a_auth->logout();
                        ilUtil::redirect('ilias.php?baseClass=ilStartUpGUI&cmdClass=ilstartupgui&cmd=showAccountMigration');
                }
 
                $a_auth->setAuth($internal_account);
                return true;
        }

References $server, AUTH_RADIUS_NO_ILIAS_USER, AUTH_WRONG_LOGIN, ilLDAPServer\getInstanceByServerId(), ilLoggerFactory\getLogger(), and ilUtil\redirect().

Here is the call graph for this function:

initLDAPAttributeToUser()

ilAuthContainerApache::initLDAPAttributeToUser ( )

private

Init LDAP attribute mapping @access private.

Definition at line 301 of file class.ilAuthContainerApache.php.

        {
                include_once('Services/LDAP/classes/class.ilLDAPAttributeToUser.php');
                $this->ldap_attr_to_user = new ilLDAPAttributeToUser($this->server);
        }

updateRequired()

ilAuthContainerApache::updateRequired (   $a_username )

protected

Check if an update is required.

Returns

Parameters

string

$a_username

Definition at line 277 of file class.ilAuthContainerApache.php.

        {
                if(!ilObjUser::_checkExternalAuthAccount("ldap_".$this->server->getServerId(), $a_username))
                {
                        return true;
                }
                // Check attribute mapping on login
                include_once './Services/LDAP/classes/class.ilLDAPAttributeMapping.php';
                if(ilLDAPAttributeMapping::hasRulesForUpdate($this->server->getServerId()))
                {
                        return true;
                }
                include_once './Services/LDAP/classes/class.ilLDAPRoleAssignmentRule.php';
                if(ilLDAPRoleAssignmentRule::hasRulesForUpdate())
                {
                        return true;
                }
                return false;
        }

References ilObjUser\_checkExternalAuthAccount(), ilLDAPAttributeMapping\hasRulesForUpdate(), and ilLDAPRoleAssignmentRule\hasRulesForUpdate().

Here is the call graph for this function:

Field Documentation

$force_creation

ilAuthContainerApache::$force_creation = false

static

Definition at line 17 of file class.ilAuthContainerApache.php.

---

The documentation for this class was generated from the following file:

• Services/AuthApache/classes/class.ilAuthContainerApache.php