ilAuthContainerApache Class Reference

Authentication against ILIAS database. More...

Inheritance diagram for ilAuthContainerApache:

Collaboration diagram for ilAuthContainerApache:

Public Member Functions
	__construct ()
	Constructor. More...

Static Public Member Functions
static	forceCreation ($value)

Static Public Attributes
static	$force_creation = false

Protected Member Functions
	updateRequired ($a_username)
	Check if an update is required. More...
	handleLDAPDataSource ($a_auth, $ext_account, $settings)
	Handle ldap as data source. More...

Private Member Functions
	initLDAPAttributeToUser ()
	Init LDAP attribute mapping @access private. More...

Detailed Description

Authentication against ILIAS database.

Author

Stefan Meyer meyer.nosp@m.@lei.nosp@m.fos.c.nosp@m.om

Version

$Id$

Definition at line 12 of file class.ilAuthContainerApache.php.

Constructor & Destructor Documentation

__construct()

ilAuthContainerApache::__construct

(

)

Constructor.

Definition at line 22 of file class.ilAuthContainerApache.php.

    {
        parent::__construct();
    }

Member Function Documentation

forceCreation()

static ilAuthContainerApache::forceCreation (   $value )

static

Parameters

boolean

$value

Definition at line 30 of file class.ilAuthContainerApache.php.

    {
        self::$force_creation = $value;
    }

handleLDAPDataSource()

ilAuthContainerApache::handleLDAPDataSource (   $a_auth,   $ext_account,   $settings  )

protected

Handle ldap as data source.

Parameters

Auth	$auth
string	$ext_account

Definition at line 278 of file class.ilAuthContainerApache.php.

    {
        include_once './Services/LDAP/classes/class.ilLDAPServer.php';
        $server = ilLDAPServer::getInstanceByServerId(
            $settings->get('apache_ldap_sid')
        );
 
        ilLoggerFactory::getLogger('auth')->debug('Using ldap data source with server configuration: ' . $server->getName());
 
        include_once './Services/LDAP/classes/class.ilLDAPUserSynchronisation.php';
        $sync = new ilLDAPUserSynchronisation('ldap_' . $server->getServerId(), $server->getServerId());
        $sync->setExternalAccount($ext_account);
        $sync->setUserData(array());
        $sync->forceCreation(self::$force_creation);
        $sync->forceReadLdapData(true);
 
        try {
            $internal_account = $sync->sync();
        } catch (UnexpectedValueException $e) {
            ilLoggerFactory::getLogger('auth')->info('Login failed with message: ' . $e->getMessage());
            $a_auth->status = AUTH_WRONG_LOGIN;
            $a_auth->logout();
            return false;
        } catch (ilLDAPSynchronisationForbiddenException $e) {
            // No syncronisation allowed => create Error
            ilLoggerFactory::getLogger('auth')->info('Login failed with message: ' . $e->getMessage());
            $a_auth->status = AUTH_RADIUS_NO_ILIAS_USER;
            $a_auth->logout();
            return false;
        } catch (ilLDAPAccountMigrationRequiredException $e) {
            ilLoggerFactory::getLogger('auth')->debug('Starting account migration');
            $a_auth->logout();
            ilUtil::redirect('ilias.php?baseClass=ilStartUpGUI&cmdClass=ilstartupgui&cmd=showAccountMigration');
        }
 
        $a_auth->setAuth($internal_account);
        return true;
    }

References $server, $sync, AUTH_RADIUS_NO_ILIAS_USER, ilLDAPServer\getInstanceByServerId(), ilLoggerFactory\getLogger(), and ilUtil\redirect().

Here is the call graph for this function:

initLDAPAttributeToUser()

ilAuthContainerApache::initLDAPAttributeToUser ( )

private

Init LDAP attribute mapping @access private.

Definition at line 266 of file class.ilAuthContainerApache.php.

    {
        include_once('Services/LDAP/classes/class.ilLDAPAttributeToUser.php');
        $this->ldap_attr_to_user = new ilLDAPAttributeToUser($this->server);
    }

updateRequired()

ilAuthContainerApache::updateRequired (   $a_username )

protected

Check if an update is required.

Returns

Parameters

string

$a_username

Definition at line 245 of file class.ilAuthContainerApache.php.

    {
        if (!ilObjUser::_checkExternalAuthAccount("ldap_" . $this->server->getServerId(), $a_username)) {
            return true;
        }
        // Check attribute mapping on login
        include_once './Services/LDAP/classes/class.ilLDAPAttributeMapping.php';
        if (ilLDAPAttributeMapping::hasRulesForUpdate($this->server->getServerId())) {
            return true;
        }
        include_once './Services/LDAP/classes/class.ilLDAPRoleAssignmentRule.php';
        if (ilLDAPRoleAssignmentRule::hasRulesForUpdate()) {
            return true;
        }
        return false;
    }

References ilObjUser\_checkExternalAuthAccount(), ilLDAPAttributeMapping\hasRulesForUpdate(), and ilLDAPRoleAssignmentRule\hasRulesForUpdate().

Here is the call graph for this function:

Field Documentation

$force_creation

ilAuthContainerApache::$force_creation = false

static

Definition at line 17 of file class.ilAuthContainerApache.php.

---

The documentation for this class was generated from the following file:

• Services/AuthApache/classes/class.ilAuthContainerApache.php