2021-06-26 15:23:15 +00:00
|
|
|
<?php
|
|
|
|
|
2023-05-17 17:56:55 +01:00
|
|
|
namespace BookStack\Access;
|
2016-01-15 23:21:47 +00:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Class Ldap
|
|
|
|
* An object-orientated thin abstraction wrapper for common PHP LDAP functions.
|
|
|
|
* Allows the standard LDAP functions to be mocked for testing.
|
|
|
|
*/
|
|
|
|
class Ldap
|
|
|
|
{
|
|
|
|
/**
|
2021-11-06 00:32:01 +00:00
|
|
|
* Connect to an LDAP server.
|
2021-11-06 22:00:33 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @return resource|\LDAP\Connection|false
|
2016-01-15 23:21:47 +00:00
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function connect(string $hostName)
|
2016-01-15 23:21:47 +00:00
|
|
|
{
|
2023-05-30 13:10:05 +01:00
|
|
|
return ldap_connect($hostName);
|
2016-01-15 23:21:47 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2023-05-30 13:10:05 +01:00
|
|
|
* Set the value of an LDAP option for the given connection.
|
2021-06-26 15:23:15 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @param resource|\LDAP\Connection|null $ldapConnection
|
2016-01-15 23:21:47 +00:00
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function setOption($ldapConnection, int $option, mixed $value): bool
|
2016-01-15 23:21:47 +00:00
|
|
|
{
|
|
|
|
return ldap_set_option($ldapConnection, $option, $value);
|
|
|
|
}
|
|
|
|
|
2021-02-07 20:00:04 +00:00
|
|
|
/**
|
|
|
|
* Start TLS on the given LDAP connection.
|
|
|
|
*/
|
|
|
|
public function startTls($ldapConnection): bool
|
|
|
|
{
|
|
|
|
return ldap_start_tls($ldapConnection);
|
|
|
|
}
|
|
|
|
|
2016-05-02 11:38:07 +01:00
|
|
|
/**
|
2023-05-30 13:10:05 +01:00
|
|
|
* Set the version number for the given LDAP connection.
|
2021-06-26 15:23:15 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @param resource|\LDAP\Connection $ldapConnection
|
2016-05-02 11:38:07 +01:00
|
|
|
*/
|
2021-11-06 00:32:01 +00:00
|
|
|
public function setVersion($ldapConnection, int $version): bool
|
2016-05-02 11:38:07 +01:00
|
|
|
{
|
|
|
|
return $this->setOption($ldapConnection, LDAP_OPT_PROTOCOL_VERSION, $version);
|
|
|
|
}
|
|
|
|
|
2016-01-15 23:21:47 +00:00
|
|
|
/**
|
|
|
|
* Search LDAP tree using the provided filter.
|
2021-06-26 15:23:15 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @param resource|\LDAP\Connection $ldapConnection
|
2021-06-26 15:23:15 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @return resource|\LDAP\Result
|
2016-01-15 23:21:47 +00:00
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function search($ldapConnection, string $baseDn, string $filter, array $attributes = null)
|
2016-01-15 23:21:47 +00:00
|
|
|
{
|
|
|
|
return ldap_search($ldapConnection, $baseDn, $filter, $attributes);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2023-05-30 13:10:05 +01:00
|
|
|
* Get entries from an LDAP search result.
|
2021-06-26 15:23:15 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @param resource|\LDAP\Connection $ldapConnection
|
|
|
|
* @param resource|\LDAP\Result $ldapSearchResult
|
2016-01-15 23:21:47 +00:00
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function getEntries($ldapConnection, $ldapSearchResult): array|false
|
2016-01-15 23:21:47 +00:00
|
|
|
{
|
|
|
|
return ldap_get_entries($ldapConnection, $ldapSearchResult);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Search and get entries immediately.
|
2021-06-26 15:23:15 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @param resource|\LDAP\Connection $ldapConnection
|
2016-01-15 23:21:47 +00:00
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function searchAndGetEntries($ldapConnection, string $baseDn, string $filter, array $attributes = null): array|false
|
2016-01-15 23:21:47 +00:00
|
|
|
{
|
|
|
|
$search = $this->search($ldapConnection, $baseDn, $filter, $attributes);
|
2021-06-26 15:23:15 +00:00
|
|
|
|
2016-01-15 23:21:47 +00:00
|
|
|
return $this->getEntries($ldapConnection, $search);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Bind to LDAP directory.
|
2021-06-26 15:23:15 +00:00
|
|
|
*
|
2023-05-30 13:10:05 +01:00
|
|
|
* @param resource|\LDAP\Connection $ldapConnection
|
2016-01-15 23:21:47 +00:00
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function bind($ldapConnection, string $bindRdn = null, string $bindPassword = null): bool
|
2016-01-15 23:21:47 +00:00
|
|
|
{
|
|
|
|
return ldap_bind($ldapConnection, $bindRdn, $bindPassword);
|
|
|
|
}
|
2018-12-20 20:04:09 +00:00
|
|
|
|
|
|
|
/**
|
2023-05-30 13:10:05 +01:00
|
|
|
* Explode an LDAP dn string into an array of components.
|
2018-12-20 20:04:09 +00:00
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function explodeDn(string $dn, int $withAttrib): array|false
|
2018-12-20 20:04:09 +00:00
|
|
|
{
|
|
|
|
return ldap_explode_dn($dn, $withAttrib);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Escape a string for use in an LDAP filter.
|
|
|
|
*/
|
2023-05-30 13:10:05 +01:00
|
|
|
public function escape(string $value, string $ignore = '', int $flags = 0): string
|
2018-12-20 20:04:09 +00:00
|
|
|
{
|
|
|
|
return ldap_escape($value, $ignore, $flags);
|
|
|
|
}
|
2016-11-15 11:10:12 +01:00
|
|
|
}
|