Collaboration diagram for ilLDAPRoleAssignmentRule:

Public Member Functions
	matches (array $a_user_data)
	Check if a rule matches. More...

	setRoleId (int $a_role_id)
	set role id More...

	getRoleId ()
	get role id More...

	getRuleId ()
	get id More...

	setServerId (int $a_id)
	set server id More...

	getServerId ()
	get server id More...

	setType (int $a_type)
	set type More...

	getType ()
	getType More...

	setDN (string $a_dn)
	set dn More...

	getDN ()
	get dn More...

	setMemberAttribute (string $a_attribute)

	getMemberAttribute ()
	get attribute More...

	setMemberIsDN (bool $a_status)
	set member attribute is dn More...

	isMemberAttributeDN ()
	is member attribute dn More...

	setAttributeName (string $a_name)
	set attribute name More...

	getAttributeName ()
	get attribute name More...

	setAttributeValue (string $a_value)
	set attribute value More...

	getAttributeValue ()
	get atrtibute value More...

	enableAddOnUpdate (bool $a_status)

	isAddOnUpdateEnabled ()

	enableRemoveOnUpdate (bool $a_status)

	isRemoveOnUpdateEnabled ()

	setPluginId (int $a_id)

	getPluginId ()

	isPluginActive ()

	conditionToString ()

	create ()

	update ()

	validate ()

	delete ()

Static Public Member Functions
static	_getInstanceByRuleId (int $a_rule_id)

static	hasRulesForUpdate ()
	Check if there any rule for updates. More...

static	_getRules ($a_server_id)
	Get all rules. More...

Data Fields
const	TYPE_GROUP = 1

const	TYPE_ATTRIBUTE = 2

const	TYPE_PLUGIN = 3

Protected Member Functions
	wildcardCompare (string $a_str1, string $a_str2)

Private Member Functions
	__construct (int $a_rule_id=0)

	isGroupMember (array $a_user_data)
	Check if user is member of specific group. More...

	read ()

Private Attributes
ilLogger	$logger

ilDBInterface	$db

ilErrorHandling	$ilErr

ilLanguage	$lng

int	$rule_id

int	$server_id = 0

bool	$add_on_update = false

bool	$remove_on_update = false

int	$plugin_id = 0

string	$attribute_value = ''

string	$attribute_name = ''

bool	$member_is_dn = false

string	$member_attribute = ''

string	$dn = ''

int	$type = 0

int	$role_id = 0

Static Private Attributes
static array	$instances = []

Detailed Description

Author: Stefan Meyer meyer.nosp@m.@lei.nosp@m.fos.c.nosp@m.om

Definition at line 25 of file class.ilLDAPRoleAssignmentRule.php.

Constructor & Destructor Documentation

◆ __construct()

ilLDAPRoleAssignmentRule::__construct ( int $a_rule_id = 0 )

private

Definition at line 52 of file class.ilLDAPRoleAssignmentRule.php.

    {
        global $DIC;
        $this->db = $DIC->database();
        $this->logger = $DIC->logger()->auth();
        $this->ilErr = $DIC['ilErr'];
        $this->lng = $DIC->language();
 
        $this->rule_id = $a_rule_id;
        $this->read();
    }

References $DIC, ILIAS\Repository\lng(), ILIAS\Repository\logger(), and read().

Here is the call graph for this function:

Member Function Documentation

◆ _getInstanceByRuleId()

static ilLDAPRoleAssignmentRule::_getInstanceByRuleId ( int $a_rule_id )

static

Definition at line 64 of file class.ilLDAPRoleAssignmentRule.php.

                                                               : ilLDAPRoleAssignmentRule
    {
        return self::$instances[$a_rule_id] ?? (self::$instances[$a_rule_id] = new ilLDAPRoleAssignmentRule($a_rule_id));
    }

Referenced by _getRules(), ilLDAPSettingsGUI\confirmDeleteRules(), ilLDAPSettingsGUI\deleteRulesCmd(), ilLDAPSettingsGUI\editRoleAssignment(), ilLDAPRoleAssignmentRules\getAssignmentsForCreation(), ilLDAPRoleAssignmentRules\getAssignmentsForUpdate(), ilLDAPSettingsGUI\loadRoleAssignmentRule(), and ilLDAPSettingsGUI\roleAssignmentsCmd().

Here is the caller graph for this function:

◆ _getRules()

static ilLDAPRoleAssignmentRule::_getRules ( $a_server_id )

static

Get all rules.

Returns: ilLDAPRoleAssignmentRule[]

Definition at line 202 of file class.ilLDAPRoleAssignmentRule.php.

                                                  : array
    {
        global $DIC;
        $ilDB = $DIC->database();
 
        $rules = [];
 
        $query = "SELECT rule_id FROM ldap_role_assignments " .
                "WHERE server_id = " . $ilDB->quote($a_server_id, 'integer');
        $res = $ilDB->query($query);
        while ($row = $res->fetchRow(ilDBConstants::FETCHMODE_OBJECT)) {
            $rules[] = self::_getInstanceByRuleId((int) $row->rule_id);
        }
 
        return $rules;
    }

References $DIC, $ilDB, $res, _getInstanceByRuleId(), and ilDBConstants\FETCHMODE_OBJECT.

Referenced by ilLDAPSettingsGUI\__construct(), ilLDAPServer\delete(), ilLDAPSettingsGUI\getRoleAssignmentTable(), and ilLDAPSettingsGUI\roleAssignmentsCmd().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ conditionToString()

ilLDAPRoleAssignmentRule::conditionToString ( )

Definition at line 389 of file class.ilLDAPRoleAssignmentRule.php.

                                       : string
    {
        switch ($this->getType()) {
            case self::TYPE_PLUGIN:
                return $this->lng->txt('ldap_plugin_id') . ': ' . $this->getPluginId();
 
            case self::TYPE_GROUP:
                $dn_arr = explode(',', $this->getDN());
                return $dn_arr[0];
 
            case self::TYPE_ATTRIBUTE:
                return $this->getAttributeName() . '=' . $this->getAttributeValue();
 
            default:
                throw new RuntimeException(sprintf('Unknown type: %s', var_export($this->getType(), true)));
        }
    }

References getAttributeName(), getAttributeValue(), getDN(), getPluginId(), getType(), ILIAS\Repository\lng(), TYPE_ATTRIBUTE, TYPE_GROUP, and TYPE_PLUGIN.

Referenced by ilLDAPSettingsGUI\confirmDeleteRules().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ create()

ilLDAPRoleAssignmentRule::create ( )

Definition at line 407 of file class.ilLDAPRoleAssignmentRule.php.

                            : bool
    {
        $next_id = $this->db->nextId('ldap_role_assignments');
 
        $query = "INSERT INTO ldap_role_assignments (server_id,rule_id,type,dn,attribute,isdn,att_name,att_value,role_id, " .
            "add_on_update, remove_on_update, plugin_id ) " .
            "VALUES( " .
            $this->db->quote($this->getServerId(), 'integer') . ", " .
            $this->db->quote($next_id, 'integer') . ", " .
            $this->db->quote($this->getType(), 'integer') . ", " .
            $this->db->quote($this->getDN(), 'text') . ", " .
            $this->db->quote($this->getMemberAttribute(), 'text') . ", " .
            $this->db->quote($this->isMemberAttributeDN(), 'integer') . ", " .
            $this->db->quote($this->getAttributeName(), 'text') . ", " .
            $this->db->quote($this->getAttributeValue(), 'text') . ", " .
            $this->db->quote($this->getRoleId(), 'integer') . ", " .
            $this->db->quote($this->isAddOnUpdateEnabled(), 'integer') . ', ' .
            $this->db->quote($this->isRemoveOnUpdateEnabled(), 'integer') . ', ' .
            $this->db->quote($this->getPluginId(), 'integer') . ' ' .
            ")";
        $this->db->manipulate($query);
        $this->rule_id = $next_id;
 
        return true;
    }

References getAttributeName(), getAttributeValue(), getDN(), getMemberAttribute(), getPluginId(), getRoleId(), getServerId(), getType(), isAddOnUpdateEnabled(), isMemberAttributeDN(), and isRemoveOnUpdateEnabled().

Here is the call graph for this function:

◆ delete()

ilLDAPRoleAssignmentRule::delete ( )

Definition at line 490 of file class.ilLDAPRoleAssignmentRule.php.

                            : bool
    {
        $query = "DELETE FROM ldap_role_assignments " .
            "WHERE rule_id = " . $this->db->quote($this->getRuleId(), 'integer') . " ";
        $this->db->manipulate($query);
 
        return true;
    }

References getRuleId().

Referenced by ilLDAPSettingsGUI\deleteRulesCmd().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ enableAddOnUpdate()

ilLDAPRoleAssignmentRule::enableAddOnUpdate ( bool $a_status )

Definition at line 354 of file class.ilLDAPRoleAssignmentRule.php.

                                                     : void
    {
        $this->add_on_update = $a_status;
    }

Referenced by read().

Here is the caller graph for this function:

◆ enableRemoveOnUpdate()

ilLDAPRoleAssignmentRule::enableRemoveOnUpdate ( bool $a_status )

Definition at line 364 of file class.ilLDAPRoleAssignmentRule.php.

                                                        : void
    {
        $this->remove_on_update = $a_status;
    }

Referenced by read().

Here is the caller graph for this function:

◆ getAttributeName()

ilLDAPRoleAssignmentRule::getAttributeName ( )

get attribute name

Definition at line 333 of file class.ilLDAPRoleAssignmentRule.php.

                                      : string
    {
        return $this->attribute_name;
    }

References $attribute_name.

Referenced by conditionToString(), create(), matches(), update(), and validate().

Here is the caller graph for this function:

◆ getAttributeValue()

ilLDAPRoleAssignmentRule::getAttributeValue ( )

get atrtibute value

Definition at line 349 of file class.ilLDAPRoleAssignmentRule.php.

                                       : string
    {
        return $this->attribute_value;
    }

References $attribute_value.

Referenced by conditionToString(), create(), matches(), update(), and validate().

Here is the caller graph for this function:

◆ getDN()

ilLDAPRoleAssignmentRule::getDN ( )

get dn

Definition at line 288 of file class.ilLDAPRoleAssignmentRule.php.

                           : string
    {
        return $this->dn;
    }

References $dn.

Referenced by conditionToString(), create(), isGroupMember(), update(), and validate().

Here is the caller graph for this function:

◆ getMemberAttribute()

ilLDAPRoleAssignmentRule::getMemberAttribute ( )

get attribute

Definition at line 301 of file class.ilLDAPRoleAssignmentRule.php.

                                        : string
    {
        return $this->member_attribute;
    }

References $member_attribute.

Referenced by create(), isGroupMember(), update(), and validate().

Here is the caller graph for this function:

◆ getPluginId()

ilLDAPRoleAssignmentRule::getPluginId ( )

Definition at line 379 of file class.ilLDAPRoleAssignmentRule.php.

                                 : int
    {
        return $this->plugin_id;
    }

References $plugin_id.

Referenced by conditionToString(), create(), matches(), update(), and validate().

Here is the caller graph for this function:

◆ getRoleId()

ilLDAPRoleAssignmentRule::getRoleId ( )

get role id

Definition at line 232 of file class.ilLDAPRoleAssignmentRule.php.

                               : int
    {
        return $this->role_id;
    }

References $role_id.

Referenced by create(), matches(), update(), and validate().

Here is the caller graph for this function:

◆ getRuleId()

ilLDAPRoleAssignmentRule::getRuleId ( )

get id

Definition at line 240 of file class.ilLDAPRoleAssignmentRule.php.

                               : int
    {
        return $this->rule_id;
    }

References $rule_id.

Referenced by ilLDAPSettingsGUI\__construct(), delete(), read(), and update().

Here is the caller graph for this function:

◆ getServerId()

ilLDAPRoleAssignmentRule::getServerId ( )

get server id

Definition at line 256 of file class.ilLDAPRoleAssignmentRule.php.

                                 : int
    {
        return $this->server_id;
    }

References $server_id.

Referenced by create(), isGroupMember(), and update().

Here is the caller graph for this function:

◆ getType()

ilLDAPRoleAssignmentRule::getType ( )

getType

Definition at line 272 of file class.ilLDAPRoleAssignmentRule.php.

                             : int
    {
        return $this->type;
    }

References $type.

Referenced by conditionToString(), create(), isPluginActive(), matches(), update(), and validate().

Here is the caller graph for this function:

◆ hasRulesForUpdate()

static ilLDAPRoleAssignmentRule::hasRulesForUpdate ( )

static

Check if there any rule for updates.

Definition at line 72 of file class.ilLDAPRoleAssignmentRule.php.

                                              : bool
    {
        global $DIC;
 
        $ilDB = $DIC['ilDB'];
 
        $query = 'SELECT COUNT(*) num FROM ldap_role_assignments ' .
            'WHERE add_on_update = 1 ' .
            'OR remove_on_update = 1 ';
        $res = $ilDB->query($query);
        $row = $res->fetchRow(ilDBConstants::FETCHMODE_OBJECT);
 
        return $row->num > 0;
    }

References $DIC, $ilDB, $res, and ilDBConstants\FETCHMODE_OBJECT.

Referenced by ilLDAPUserSynchronisation\isUpdateRequired().

Here is the caller graph for this function:

◆ isAddOnUpdateEnabled()

ilLDAPRoleAssignmentRule::isAddOnUpdateEnabled ( )

Definition at line 359 of file class.ilLDAPRoleAssignmentRule.php.

                                          : bool
    {
        return $this->add_on_update;
    }

References $add_on_update.

Referenced by create(), and update().

Here is the caller graph for this function:

◆ isGroupMember()

ilLDAPRoleAssignmentRule::isGroupMember ( array $a_user_data )

private

Check if user is member of specific group.

Parameters

array $a_user_data user_data

Definition at line 161 of file class.ilLDAPRoleAssignmentRule.php.

                                                      : bool
    {
        $server = ilLDAPServer::getInstanceByServerId($this->getServerId());
 
        if ($this->isMemberAttributeDN()) {
            if ($server->enabledEscapeDN()) {
                $user_cmp = ldap_escape($a_user_data['dn'], "", LDAP_ESCAPE_FILTER);
            } else {
                $user_cmp = $a_user_data['dn'];
            }
        } else {
            $user_cmp = $a_user_data['ilExternalAccount'];
        }
 
        try {
            $query = new ilLDAPQuery($server);
            $query->bind();
            $res = $query->query(
                $this->getDN(),
                sprintf(
                    '(%s=%s)',
                    $this->getMemberAttribute(),
                    $user_cmp
                ),
                ilLDAPServer::LDAP_SCOPE_BASE,
                array('dn')
            );
            return (bool) $res->numRows();
        } catch (ilLDAPQueryException $e) {
            $this->logger->warning(': Caught Exception: ' . $e->getMessage());
            return false;
        }
    }

References Vendor\Package\$e, $res, $server, getDN(), ilLDAPServer\getInstanceByServerId(), getMemberAttribute(), getServerId(), isMemberAttributeDN(), ilLDAPServer\LDAP_SCOPE_BASE, and ILIAS\Repository\logger().

Referenced by matches().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ isMemberAttributeDN()

ilLDAPRoleAssignmentRule::isMemberAttributeDN ( )

is member attribute dn

Definition at line 317 of file class.ilLDAPRoleAssignmentRule.php.

                                         : bool
    {
        return $this->member_is_dn;
    }

References $member_is_dn.

Referenced by create(), isGroupMember(), and update().

Here is the caller graph for this function:

◆ isPluginActive()

ilLDAPRoleAssignmentRule::isPluginActive ( )

Definition at line 384 of file class.ilLDAPRoleAssignmentRule.php.

                                    : bool
    {
        return $this->getType() === self::TYPE_PLUGIN;
    }

References getType(), and TYPE_PLUGIN.

Here is the call graph for this function:

◆ isRemoveOnUpdateEnabled()

ilLDAPRoleAssignmentRule::isRemoveOnUpdateEnabled ( )

Definition at line 369 of file class.ilLDAPRoleAssignmentRule.php.

                                             : bool
    {
        return $this->remove_on_update;
    }

References $remove_on_update.

Referenced by create(), and update().

Here is the caller graph for this function:

◆ matches()

ilLDAPRoleAssignmentRule::matches ( array $a_user_data )

Check if a rule matches.

Definition at line 90 of file class.ilLDAPRoleAssignmentRule.php.

                                               : bool
    {
        switch ($this->getType()) {
            case self::TYPE_PLUGIN:
                return ilLDAPRoleAssignmentRules::callPlugin($this->getPluginId(), $a_user_data);
 
            case self::TYPE_ATTRIBUTE:
 
                $attn = strtolower($this->getAttributeName());
 
                if (!isset($a_user_data[$attn])) {
                    return false;
                }
 
                if (!is_array($a_user_data[$attn])) {
                    $attribute_val = array(0 => $a_user_data[$attn]);
                } else {
                    $attribute_val = $a_user_data[$attn];
                }
 
                foreach ($attribute_val as $value) {
                    if ($this->wildcardCompare(trim($this->getAttributeValue()), trim($value))) {
                        $this->logger->debug(': Found role mapping: ' . ilObject::_lookupTitle($this->getRoleId()));
                        return true;
                    }
                }
                return false;
 
            case self::TYPE_GROUP:
                return $this->isGroupMember($a_user_data);
        }
 
        return false;
    }

References ilObject\_lookupTitle(), ilLDAPRoleAssignmentRules\callPlugin(), getAttributeName(), getAttributeValue(), getPluginId(), getRoleId(), getType(), isGroupMember(), ILIAS\Repository\logger(), TYPE_ATTRIBUTE, TYPE_GROUP, TYPE_PLUGIN, and wildcardCompare().

Here is the call graph for this function:

◆ read()

ilLDAPRoleAssignmentRule::read ( )

private

Definition at line 499 of file class.ilLDAPRoleAssignmentRule.php.

                           : void
    {
        $query = "SELECT * FROM ldap_role_assignments " .
            "WHERE rule_id = " . $this->db->quote($this->getRuleId(), 'integer') . " ";
 
        $res = $this->db->query($query);
        while ($row = $res->fetchRow(ilDBConstants::FETCHMODE_OBJECT)) {
            $this->setServerId((int) $row->server_id);
            $this->setType((int) $row->type);
            if (!is_null($row->dn)) {
                $this->setDN($row->dn);
            }
            if (!is_null($row->attribute)) {
                $this->setMemberAttribute($row->attribute);
            }
            $this->setMemberIsDN((bool) $row->isdn);
            if (!is_null($row->att_name)) {
                $this->setAttributeName($row->att_name);
            }
            if (!is_null($row->att_value)) {
                $this->setAttributeValue($row->att_value);
            }
            $this->setRoleId((int) $row->role_id);
            if (!is_null($row->add_on_update)) {
                $this->enableAddOnUpdate((bool) $row->add_on_update);
            }
            if (!is_null($row->remove_on_update)) {
                $this->enableRemoveOnUpdate((bool) $row->remove_on_update);
            }
            if (!is_null($row->plugin_id)) {
                $this->setPluginId((int) $row->plugin_id);
            }
        }
    }

References $res, enableAddOnUpdate(), enableRemoveOnUpdate(), ilDBConstants\FETCHMODE_OBJECT, getRuleId(), setAttributeName(), setAttributeValue(), setDN(), setMemberAttribute(), setMemberIsDN(), setPluginId(), setRoleId(), setServerId(), and setType().

Referenced by __construct().

Here is the call graph for this function:

Here is the caller graph for this function:

◆ setAttributeName()

ilLDAPRoleAssignmentRule::setAttributeName ( string $a_name )

set attribute name

Definition at line 325 of file class.ilLDAPRoleAssignmentRule.php.

                                                    : void
    {
        $this->attribute_name = $a_name;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setAttributeValue()

ilLDAPRoleAssignmentRule::setAttributeValue ( string $a_value )

set attribute value

Definition at line 341 of file class.ilLDAPRoleAssignmentRule.php.

                                                      : void
    {
        $this->attribute_value = $a_value;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setDN()

ilLDAPRoleAssignmentRule::setDN ( string $a_dn )

set dn

Definition at line 280 of file class.ilLDAPRoleAssignmentRule.php.

                                       : void
    {
        $this->dn = $a_dn;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setMemberAttribute()

ilLDAPRoleAssignmentRule::setMemberAttribute ( string $a_attribute )

Definition at line 293 of file class.ilLDAPRoleAssignmentRule.php.

                                                           : void
    {
        $this->member_attribute = $a_attribute;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setMemberIsDN()

ilLDAPRoleAssignmentRule::setMemberIsDN ( bool $a_status )

set member attribute is dn

Definition at line 309 of file class.ilLDAPRoleAssignmentRule.php.

                                                 : void
    {
        $this->member_is_dn = $a_status;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setPluginId()

ilLDAPRoleAssignmentRule::setPluginId ( int $a_id )

Definition at line 374 of file class.ilLDAPRoleAssignmentRule.php.

                                          : void
    {
        $this->plugin_id = $a_id;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setRoleId()

ilLDAPRoleAssignmentRule::setRoleId ( int $a_role_id )

set role id

Parameters

int $a_role_id role id of global role

Definition at line 224 of file class.ilLDAPRoleAssignmentRule.php.

                                             : void
    {
        $this->role_id = $a_role_id;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setServerId()

ilLDAPRoleAssignmentRule::setServerId ( int $a_id )

set server id

Definition at line 248 of file class.ilLDAPRoleAssignmentRule.php.

                                          : void
    {
        $this->server_id = $a_id;
    }

Referenced by read().

Here is the caller graph for this function:

◆ setType()

ilLDAPRoleAssignmentRule::setType ( int $a_type )

set type

Definition at line 264 of file class.ilLDAPRoleAssignmentRule.php.

                                        : void
    {
        $this->type = $a_type;
    }

Referenced by read().

Here is the caller graph for this function:

◆ update()

ilLDAPRoleAssignmentRule::update ( )

Definition at line 433 of file class.ilLDAPRoleAssignmentRule.php.

                            : bool
    {
        $query = "UPDATE ldap_role_assignments " .
            "SET server_id = " . $this->db->quote($this->getServerId(), 'integer') . ", " .
            "type = " . $this->db->quote($this->getType(), 'integer') . ", " .
            "dn = " . $this->db->quote($this->getDN(), 'text') . ", " .
            "attribute = " . $this->db->quote($this->getMemberAttribute(), 'text') . ", " .
            "isdn = " . $this->db->quote($this->isMemberAttributeDN(), 'integer') . ", " .
            "att_name = " . $this->db->quote($this->getAttributeName(), 'text') . ", " .
            "att_value = " . $this->db->quote($this->getAttributeValue(), 'text') . ", " .
            "role_id = " . $this->db->quote($this->getRoleId(), 'integer') . ", " .
            "add_on_update = " . $this->db->quote($this->isAddOnUpdateEnabled(), 'integer') . ', ' .
            'remove_on_update = ' . $this->db->quote($this->isRemoveOnUpdateEnabled(), 'integer') . ', ' .
            'plugin_id = ' . $this->db->quote($this->getPluginId(), 'integer') . ' ' .
            "WHERE rule_id = " . $this->db->quote($this->getRuleId(), 'integer') . " ";
        $this->db->manipulate($query);
 
        return true;
    }

References getAttributeName(), getAttributeValue(), getDN(), getMemberAttribute(), getPluginId(), getRoleId(), getRuleId(), getServerId(), getType(), isAddOnUpdateEnabled(), isMemberAttributeDN(), and isRemoveOnUpdateEnabled().

Here is the call graph for this function:

◆ validate()

ilLDAPRoleAssignmentRule::validate ( )

Definition at line 453 of file class.ilLDAPRoleAssignmentRule.php.

                              : bool
    {
        $this->ilErr->setMessage('');
 
        if (!$this->getRoleId()) {
            $this->ilErr->setMessage('fill_out_all_required_fields');
            return false;
        }
        switch ($this->getType()) {
            case self::TYPE_GROUP:
                if ($this->getDN() === '' || $this->getMemberAttribute() === '') {
                    $this->ilErr->setMessage('fill_out_all_required_fields');
                    return false;
                }
                break;
            case self::TYPE_ATTRIBUTE:
                if ($this->getAttributeName() === '' || $this->getAttributeValue() === '') {
                    $this->ilErr->setMessage('fill_out_all_required_fields');
                    return false;
                }
                break;
 
            case self::TYPE_PLUGIN:
                if (!$this->getPluginId()) {
                    $this->ilErr->setMessage('ldap_err_missing_plugin_id');
                    return false;
                }
                break;
 
            default:
                $this->ilErr->setMessage('ldap_no_type_given');
                return false;
        }
 
        return true;
    }

References getAttributeName(), getAttributeValue(), getDN(), getMemberAttribute(), getPluginId(), getRoleId(), getType(), TYPE_ATTRIBUTE, TYPE_GROUP, and TYPE_PLUGIN.

Here is the call graph for this function:

◆ wildcardCompare()

ilLDAPRoleAssignmentRule::wildcardCompare	(	string	$a_str1,
		string	$a_str2
	)

protected

Definition at line 125 of file class.ilLDAPRoleAssignmentRule.php.

                                                                      : bool
    {
        $pattern = str_replace('*', '.*?', $a_str1);
 
        $exception = [];
        foreach (ilAuthUtils::REGEX_DELIMITERS as $delimiter) {
            $this->logger->debug('Trying pattern to match attribute value:' . $pattern . ' => ' . $a_str2);
 
            set_error_handler(static function (int $severity, string $message, string $file, int $line): never {
                throw new ErrorException($message, $severity, $severity, $file, $line);
            });
 
            $regex = $delimiter . "^" . $pattern . '$' . $delimiter . 'i';
            try {
                return preg_match($regex, $a_str2) === 1;
            } catch (Exception $e) {
                $exception[] = 'RegEx: ' . $regex . ' -> Message: ' . $e->getMessage();
            } finally {
                restore_error_handler();
            }
        }
 
        if ($exception !== []) {
            $this->logger->warning('Trying the RegEx delimiter chain results in the following problems: ' . implode(', ', $exception));
        }
 
        return false;
    }