ilLDAPAttributeToUser Class Reference

Update/create ILIAS user account by given LDAP attributes according to user attribute mapping settings. More...

Collaboration diagram for ilLDAPAttributeToUser:

Public Member Functions
	__construct (ilLDAPServer $a_server)
	Construct of ilLDAPAttribute2XML Defines between LDAP and ILIAS user attributes. More...
	getServer ()
	Get server settings. More...
	setUserData (array $a_data)
	Set user data received from pear auth or by ldap_search. More...
	setNewUserAuthMode (string $a_authmode)
	Set auth mode for new users. More...
	getNewUserAuthMode ()
	Get auth mode for new users. More...
	addMode (int $a_mode)
	Add import mode. More...
	isModeActive (int $a_mode)
	Check if mode is active. More...
	refresh ()
	Create/Update non existing users. More...

Data Fields
const	MODE_INITIALIZE_ROLES = 1

Protected Member Functions
	parseRoleAssignmentsForUpdate (int $a_usr_id, string $a_external_account, array $user)
	Parse role assignments for update of user account. More...
	parseRoleAssignmentsForCreation (string $a_external_account, array $a_user)
	Parse role assignments for update of user account. More...

Private Member Functions
	usersToXML ()
	Create xml string of user according to mapping rules. More...
	convertInput ($a_value)
	A value can be an array or a string This function converts arrays to strings. More...
	doMapping (array $user, array $rule)
	initLDAPAttributeMapping ()
	initUserDefinedFields ()

Private Attributes
array	$modes = []
ilLDAPServer	$server_settings
Profile	$profile
array	$user_data = []
ilLDAPAttributeMapping	$mapping
string	$new_user_auth_mode = 'ldap'
ilLogger	$logger
ilXmlWriter	$writer
array	$user_defined_fields = null

Detailed Description

Update/create ILIAS user account by given LDAP attributes according to user attribute mapping settings.

Author

Stefan Meyer meyer.nosp@m.@lei.nosp@m.fos.c.nosp@m.om

Definition at line 29 of file class.ilLDAPAttributeToUser.php.

Constructor & Destructor Documentation

__construct()

ilLDAPAttributeToUser::__construct

(

ilLDAPServer

$a_server

)

Construct of ilLDAPAttribute2XML Defines between LDAP and ILIAS user attributes.

Definition at line 50 of file class.ilLDAPAttributeToUser.php.

    {
        global $DIC;
 
        $this->logger = $DIC->logger()->auth();
        $this->profile = $DIC['user']->profile();
 
        $this->server_settings = $a_server;
 
        $this->initLDAPAttributeMapping();
    }

References $DIC, initLDAPAttributeMapping(), ILIAS\Repository\logger(), and ILIAS\Repository\profile().

Here is the call graph for this function:

Member Function Documentation

addMode()

ilLDAPAttributeToUser::addMode

(

int

$a_mode

)

Add import mode.

Definition at line 102 of file class.ilLDAPAttributeToUser.php.

                                        : void
    {
        //TODO check for proper value
        if (!in_array($a_mode, $this->modes, true)) {
            $this->modes[] = $a_mode;
        }
    }

convertInput()

ilLDAPAttributeToUser::convertInput (   $a_value )

private

A value can be an array or a string This function converts arrays to strings.

Parameters

array|string

value

Returns

string

Definition at line 389 of file class.ilLDAPAttributeToUser.php.

                                           : string
    {
        if (is_array($a_value)) {
            return $a_value[0];
        }
 
        return $a_value;
    }

Referenced by doMapping().

Here is the caller graph for this function:

doMapping()

ilLDAPAttributeToUser::doMapping ( array  $user, array  $rule  )

private

Definition at line 398 of file class.ilLDAPAttributeToUser.php.

                                                        : string
    {
        $mapping = strtolower(trim($rule['value']));
 
        if (strpos($mapping, ',') === false) {
            return $this->convertInput($user[$mapping] ?? '');
        }
        // Is multiple mapping
 
        $fields = explode(',', $mapping);
        $value = '';
        foreach ($fields as $field) {
            if ($value !== '') {
                $value .= ' ';
            }
            $value .= ($this->convertInput($user[trim($field)] ?? ''));
        }
        return $value;
    }

References $mapping, and convertInput().

Referenced by usersToXML().

Here is the call graph for this function:

Here is the caller graph for this function:

getNewUserAuthMode()

ilLDAPAttributeToUser::getNewUserAuthMode

(

)

Get auth mode for new users.

Definition at line 94 of file class.ilLDAPAttributeToUser.php.

                                        : string
    {
        return $this->new_user_auth_mode;
    }

References $new_user_auth_mode.

Referenced by usersToXML().

Here is the caller graph for this function:

getServer()

ilLDAPAttributeToUser::getServer

(

)

Get server settings.

Returns

ilLDAPServer

Definition at line 66 of file class.ilLDAPAttributeToUser.php.

                               : ilLDAPServer
    {
        return $this->server_settings;
    }

References $server_settings.

Referenced by parseRoleAssignmentsForCreation(), parseRoleAssignmentsForUpdate(), and refresh().

Here is the caller graph for this function:

initLDAPAttributeMapping()

ilLDAPAttributeToUser::initLDAPAttributeMapping ( )

private

Definition at line 418 of file class.ilLDAPAttributeToUser.php.

                                               : void
    {
        $this->mapping = ilLDAPAttributeMapping::_getInstanceByServerId($this->server_settings->getServerId());
    }

References ilLDAPAttributeMapping\_getInstanceByServerId().

Referenced by __construct().

Here is the call graph for this function:

Here is the caller graph for this function:

initUserDefinedFields()

ilLDAPAttributeToUser::initUserDefinedFields ( )

private

Definition at line 423 of file class.ilLDAPAttributeToUser.php.

                                            : void
    {
        if ($this->user_defined_fields === null) {
            $this->user_defined_fields = $this->profile->getAllUserDefinedFields();
        }
    }

References ILIAS\Repository\profile().

Referenced by usersToXML().

Here is the call graph for this function:

Here is the caller graph for this function:

isModeActive()

ilLDAPAttributeToUser::isModeActive

(

int

$a_mode

)

Check if mode is active.

Parameters

int

$a_mode

Returns

bool

Definition at line 115 of file class.ilLDAPAttributeToUser.php.

                                             : bool
    {
        return in_array($a_mode, $this->modes, true);
    }

Referenced by usersToXML().

Here is the caller graph for this function:

parseRoleAssignmentsForCreation()

ilLDAPAttributeToUser::parseRoleAssignmentsForCreation ( string  $a_external_account, array  $a_user  )

protected

Parse role assignments for update of user account.

Parameters

string	$a_external_account
array	$a_user

Definition at line 168 of file class.ilLDAPAttributeToUser.php.

                                                                                                 : void
    {
        foreach (ilLDAPRoleAssignmentRules::getAssignmentsForCreation(
            $this->getServer()->getServerId(),
            $a_external_account,
            $a_user
        ) as $role_data) {
            $this->writer->xmlElement(
                'Role',
                [
                    'Id' => $role_data['id'],
                    'Type' => $role_data['type'],
                    'Action' => $role_data['action']
                ],
                ''
            );
        }
    }

References ilLDAPRoleAssignmentRules\getAssignmentsForCreation(), and getServer().

Referenced by usersToXML().

Here is the call graph for this function:

Here is the caller graph for this function:

parseRoleAssignmentsForUpdate()

ilLDAPAttributeToUser::parseRoleAssignmentsForUpdate ( int  $a_usr_id, string  $a_external_account, array  $user  )

protected

Parse role assignments for update of user account.

Parameters

int	$a_usr_id
string	$a_external_account
array	$user

Definition at line 143 of file class.ilLDAPAttributeToUser.php.

                                                                                                            : void
    {
        foreach (ilLDAPRoleAssignmentRules::getAssignmentsForUpdate(
            $this->getServer()->getServerId(),
            $a_usr_id,
            $a_external_account,
            $user
        ) as $role_data) {
            $this->writer->xmlElement(
                'Role',
                [
                    'Id' => $role_data['id'],
                    'Type' => $role_data['type'],
                    'Action' => $role_data['action']
                ],
                ''
            );
        }
    }

References ilLDAPRoleAssignmentRules\getAssignmentsForUpdate(), and getServer().

Referenced by usersToXML().

Here is the call graph for this function:

Here is the caller graph for this function:

refresh()

ilLDAPAttributeToUser::refresh

(

)

Create/Update non existing users.

Definition at line 124 of file class.ilLDAPAttributeToUser.php.

                             : bool
    {
        $this->usersToXML();
 
        $importParser = new ilUserImportParser();
        $importParser->setXMLContent($this->writer->xmlDumpMem(false));
        $importParser->setRoleAssignment(ilLDAPRoleAssignmentRules::getAllPossibleRoles($this->getServer()->getServerId()));
        $importParser->setFolderId(7);
        $importParser->startParsing();
 
        return true;
    }

References ilLDAPRoleAssignmentRules\getAllPossibleRoles(), getServer(), and usersToXML().

Here is the call graph for this function:

setNewUserAuthMode()

ilLDAPAttributeToUser::setNewUserAuthMode

(

string

$a_authmode

)

Set auth mode for new users.

Parameters

string

$a_authmode

Definition at line 86 of file class.ilLDAPAttributeToUser.php.

                                                          : void
    {
        $this->new_user_auth_mode = $a_authmode;
    }

setUserData()

ilLDAPAttributeToUser::setUserData

(

array

$a_data

)

Set user data received from pear auth or by ldap_search.

Parameters

array

array of auth data. array('ilias_account1' => array(firstname => 'Stefan',...),...)

Definition at line 77 of file class.ilLDAPAttributeToUser.php.

                                              : void
    {
        $this->user_data = $a_data;
    }

usersToXML()

ilLDAPAttributeToUser::usersToXML ( )

private

Create xml string of user according to mapping rules.

Definition at line 190 of file class.ilLDAPAttributeToUser.php.

                                 : void
    {
        $this->writer = new ilXmlWriter();
        $this->writer->xmlStartTag('Users');
 
        $cnt_update = 0;
        $cnt_create = 0;
 
        // Single users
        foreach ($this->user_data as $external_account => $user) {
            $external_account = (string) $external_account;
 
            $user['ilExternalAccount'] = $external_account;
 
            // Required fields
            if ($user['ilInternalAccount']) {
                $usr_id = ilObjUser::_lookupId($user['ilInternalAccount']);
 
                ++$cnt_update;
                // User exists
                $this->writer->xmlStartTag('User', ['Id' => $usr_id, 'Action' => 'Update']);
                $this->writer->xmlElement('Login', [], $user['ilInternalAccount']);
                $this->writer->xmlElement('ExternalAccount', [], $external_account);
                $this->writer->xmlElement('AuthMode', ['type' => $this->getNewUserAuthMode()]);
 
                if ($this->isModeActive(self::MODE_INITIALIZE_ROLES)) {
                    $this->parseRoleAssignmentsForCreation($external_account, $user);
                } else {
                    $this->parseRoleAssignmentsForUpdate($usr_id, $external_account, $user);
                }
                $rules = $this->mapping->getRulesForUpdate();
            } else {
                ++$cnt_create;
                // Create user
                $this->writer->xmlStartTag('User', ['Action' => 'Insert']);
                $this->writer->xmlElement('Login', [], ilAuthUtils::_generateLogin($external_account));
 
                $this->parseRoleAssignmentsForCreation($external_account, $user);
                $rules = $this->mapping->getRules(true);
            }
 
            $this->writer->xmlElement('Active', [], "true");
            $this->writer->xmlElement('TimeLimitOwner', [], 7);
            $this->writer->xmlElement('TimeLimitUnlimited', [], 1);
            $this->writer->xmlElement('TimeLimitFrom', [], time());
            $this->writer->xmlElement('TimeLimitUntil', [], time());
 
            // only for new users.
            // If auth_mode is 'default' (ldap) this status should remain.
            if (!$user['ilInternalAccount']) {
                $this->writer->xmlElement(
                    'AuthMode',
                    ['type' => $this->getNewUserAuthMode()],
                    $this->getNewUserAuthMode()
                );
                $this->writer->xmlElement('ExternalAccount', [], $external_account);
            }
            foreach ($rules as $field => $data) {
                // Do Mapping: it is possible to assign multiple ldap attribute to one user data field
                if (!($value = $this->doMapping($user, $data))) {
                    continue;
                }
 
                switch ($field) {
                    case 'gender':
                        switch (strtolower($value)) {
                            case 'm':
                            case 'male':
                                $this->writer->xmlElement('Gender', [], 'm');
                                break;
 
                            case 'f':
                            case 'female':
                                $this->writer->xmlElement('Gender', [], 'f');
                                break;
 
                            default:
                                // use the default for anything that is not clearly m or f
                                $this->writer->xmlElement('Gender', [], 'n');
                                break;
                        }
                        break;
 
                    case 'firstname':
                        $this->writer->xmlElement('Firstname', [], $value);
                        break;
 
                    case 'lastname':
                        $this->writer->xmlElement('Lastname', [], $value);
                        break;
 
                    case 'hobby':
                        $this->writer->xmlElement('Hobby', [], $value);
                        break;
 
                    case 'title':
                        $this->writer->xmlElement('Title', [], $value);
                        break;
 
                    case 'institution':
                        $this->writer->xmlElement('Institution', [], $value);
                        break;
 
                    case 'department':
                        $this->writer->xmlElement('Department', [], $value);
                        break;
 
                    case 'street':
                        $this->writer->xmlElement('Street', [], $value);
                        break;
 
                    case 'city':
                        $this->writer->xmlElement('City', [], $value);
                        break;
 
                    case 'zipcode':
                        $this->writer->xmlElement('PostalCode', [], $value);
                        break;
 
                    case 'country':
                        $this->writer->xmlElement('Country', [], $value);
                        break;
 
                    case 'phone_office':
                        $this->writer->xmlElement('PhoneOffice', [], $value);
                        break;
 
                    case 'phone_home':
                        $this->writer->xmlElement('PhoneHome', [], $value);
                        break;
 
                    case 'phone_mobile':
                        $this->writer->xmlElement('PhoneMobile', [], $value);
                        break;
 
                    case 'fax':
                        $this->writer->xmlElement('Fax', [], $value);
                        break;
 
                    case 'email':
                        $this->writer->xmlElement('Email', [], $value);
                        break;
 
                    case 'second_email':
                        $this->writer->xmlElement('SecondEmail', [], $value);
                        break;
 
                    case 'matriculation':
                        $this->writer->xmlElement('Matriculation', [], $value);
                        break;
 
                    default:
                        // Handle user defined fields
                        if (strpos($field, 'udf_') !== 0) {
                            continue 2;
                        }
                        $id_data = explode('_', $field);
                        if (!isset($id_data[1])) {
                            continue 2;
                        }
                        $this->initUserDefinedFields();
                        if (!isset($this->user_defined_fields[$id_data[1]])) {
                            $this->logger->warning(sprintf(
                                "Invalid/Orphaned UD field mapping detected: %s",
                                $field
                            ));
                            break;
                        }
 
                        $this->writer->xmlElement(
                            'UserDefinedField',
                            [
                                'Id' => $this->user_defined_fields[$id_data[1]]->getIdentifier(),
                                'Name' => $this->user_defined_fields[$id_data[1]]->getLabel()
                            ],
                            $value
                        );
                        break;
                }
            }
            $this->writer->xmlEndTag('User');
        }
 
        if ($cnt_create) {
            $this->logger->info('LDAP: Started creation of ' . $cnt_create . ' users.');
        }
        if ($cnt_update) {
            $this->logger->info('LDAP: Started update of ' . $cnt_update . ' users.');
        }
        $this->writer->xmlEndTag('Users');
    }

References $data, ilAuthUtils\_generateLogin(), ilObjUser\_lookupId(), doMapping(), ILIAS\Test\Questions\Presentation\getLabel, getNewUserAuthMode(), initUserDefinedFields(), isModeActive(), ILIAS\Repository\logger(), parseRoleAssignmentsForCreation(), and parseRoleAssignmentsForUpdate().

Referenced by refresh().

Here is the call graph for this function:

Here is the caller graph for this function:

Field Documentation

$logger

ilLogger ilLDAPAttributeToUser::$logger

private

Definition at line 39 of file class.ilLDAPAttributeToUser.php.

$mapping

ilLDAPAttributeMapping ilLDAPAttributeToUser::$mapping

private

Definition at line 37 of file class.ilLDAPAttributeToUser.php.

Referenced by doMapping().

$modes

array ilLDAPAttributeToUser::$modes = []

private

Definition at line 33 of file class.ilLDAPAttributeToUser.php.

$new_user_auth_mode

string ilLDAPAttributeToUser::$new_user_auth_mode = 'ldap'

private

Definition at line 38 of file class.ilLDAPAttributeToUser.php.

Referenced by getNewUserAuthMode().

$profile

Profile ilLDAPAttributeToUser::$profile

private

Definition at line 35 of file class.ilLDAPAttributeToUser.php.

$server_settings

ilLDAPServer ilLDAPAttributeToUser::$server_settings

private

Definition at line 34 of file class.ilLDAPAttributeToUser.php.

Referenced by getServer().

$user_data

array ilLDAPAttributeToUser::$user_data = []

private

Definition at line 36 of file class.ilLDAPAttributeToUser.php.

$user_defined_fields

array ilLDAPAttributeToUser::$user_defined_fields = null

private

Definition at line 44 of file class.ilLDAPAttributeToUser.php.

$writer

ilXmlWriter ilLDAPAttributeToUser::$writer

private

Definition at line 40 of file class.ilLDAPAttributeToUser.php.

MODE_INITIALIZE_ROLES

const ilLDAPAttributeToUser::MODE_INITIALIZE_ROLES = 1

Definition at line 31 of file class.ilLDAPAttributeToUser.php.

Referenced by ilLDAPUserSynchronisation\performUpdate().

---

The documentation for this class was generated from the following file:

• components/ILIAS/LDAP/classes/class.ilLDAPAttributeToUser.php