ilAuthContainerApache Class Reference

Authentication against ILIAS database. More...

Inheritance diagram for ilAuthContainerApache:

Collaboration diagram for ilAuthContainerApache:

Public Member Functions
	__construct ()
	Constructor. More...

Static Public Member Functions
static	forceCreation ($value)

Static Public Attributes
static	$force_creation = false

Protected Member Functions
	updateRequired ($a_username)
	Check if an update is required. More...
	handleLDAPDataSource ($a_auth, $ext_account, $settings)
	Handle ldap as data source. More...

Private Member Functions
	initLDAPAttributeToUser ()
	Init LDAP attribute mapping @access private. More...

Detailed Description

Authentication against ILIAS database.

Author

Stefan Meyer meyer.nosp@m.@lei.nosp@m.fos.c.nosp@m.om

Version

$Id$

Definition at line 12 of file class.ilAuthContainerApache.php.

Constructor & Destructor Documentation

__construct()

ilAuthContainerApache::__construct

(

)

Constructor.

Definition at line 22 of file class.ilAuthContainerApache.php.

        {
                parent::__construct();
        }

Member Function Documentation

forceCreation()

static ilAuthContainerApache::forceCreation (   $value )

static

Parameters

boolean

$value

Definition at line 30 of file class.ilAuthContainerApache.php.

        {
                self::$force_creation = $value;
        }

handleLDAPDataSource()

ilAuthContainerApache::handleLDAPDataSource (   $a_auth,   $ext_account,   $settings  )

protected

Handle ldap as data source.

Parameters

Auth	$auth
string	$ext_account

Definition at line 313 of file class.ilAuthContainerApache.php.

        {
                include_once './Services/LDAP/classes/class.ilLDAPServer.php';
                $server = ilLDAPServer::getInstanceByServerId(
                        $settings->get('apache_ldap_sid')
                );
 
                ilLoggerFactory::getLogger('auth')->debug('Using ldap data source with server configuration: ' . $server->getName());
 
                include_once './Services/LDAP/classes/class.ilLDAPUserSynchronisation.php';
                $sync = new ilLDAPUserSynchronisation('ldap_'.$server->getServerId(), $server->getServerId());
                $sync->setExternalAccount($ext_account);
                $sync->setUserData(array());
                $sync->forceCreation(self::$force_creation);
                $sync->forceReadLdapData(true);
 
                try {
                        $internal_account = $sync->sync();
                }
                catch(UnexpectedValueException $e) {
                        ilLoggerFactory::getLogger('auth')->info('Login failed with message: ' . $e->getMessage());
                        $a_auth->status = AUTH_WRONG_LOGIN;
                        $a_auth->logout();
                        return false;
                }
                catch(ilLDAPSynchronisationForbiddenException $e) {
                        // No syncronisation allowed => create Error
                        ilLoggerFactory::getLogger('auth')->info('Login failed with message: ' . $e->getMessage());
                        $a_auth->status = AUTH_RADIUS_NO_ILIAS_USER;
                        $a_auth->logout();
                        return false;
                }
                catch(ilLDAPAccountMigrationRequiredException $e) {
                        ilLoggerFactory::getLogger('auth')->debug('Starting account migration');
                        $a_auth->logout();
                        ilUtil::redirect('ilias.php?baseClass=ilStartUpGUI&cmdClass=ilstartupgui&cmd=showAccountMigration');
                }
 
                $a_auth->setAuth($internal_account);
                return true;
        }

References $server, AUTH_RADIUS_NO_ILIAS_USER, ilLDAPServer\getInstanceByServerId(), ilLoggerFactory\getLogger(), and ilUtil\redirect().

Here is the call graph for this function:

initLDAPAttributeToUser()

ilAuthContainerApache::initLDAPAttributeToUser ( )

private

Init LDAP attribute mapping @access private.

Definition at line 301 of file class.ilAuthContainerApache.php.

        {
                include_once('Services/LDAP/classes/class.ilLDAPAttributeToUser.php');
                $this->ldap_attr_to_user = new ilLDAPAttributeToUser($this->server);
        }

updateRequired()

ilAuthContainerApache::updateRequired (   $a_username )

protected

Check if an update is required.

Returns

Parameters

string

$a_username

Definition at line 277 of file class.ilAuthContainerApache.php.

        {
                if(!ilObjUser::_checkExternalAuthAccount("ldap_".$this->server->getServerId(), $a_username))
                {
                        return true;
                }
                // Check attribute mapping on login
                include_once './Services/LDAP/classes/class.ilLDAPAttributeMapping.php';
                if(ilLDAPAttributeMapping::hasRulesForUpdate($this->server->getServerId()))
                {
                        return true;
                }
                include_once './Services/LDAP/classes/class.ilLDAPRoleAssignmentRule.php';
                if(ilLDAPRoleAssignmentRule::hasRulesForUpdate())
                {
                        return true;
                }
                return false;
        }

References ilObjUser\_checkExternalAuthAccount(), ilLDAPAttributeMapping\hasRulesForUpdate(), and ilLDAPRoleAssignmentRule\hasRulesForUpdate().

Here is the call graph for this function:

Field Documentation

$force_creation

ilAuthContainerApache::$force_creation = false

static

Definition at line 17 of file class.ilAuthContainerApache.php.

---

The documentation for this class was generated from the following file:

• Services/AuthApache/classes/class.ilAuthContainerApache.php