samba3= ($config->get_cfg_value("sambaversion") == 3);
if ($this->samba3){
$this->attributes= array ("sambaSID", "sambaPwdLastSet", "sambaLogonTime",
"sambaLogoffTime", "sambaKickoffTime", "sambaPwdCanChange",
"sambaPwdMustChange", "sambaAcctFlags", "uid", "sambaMungedDial",
"sambaHomePath", "sambaHomeDrive", "sambaLogonScript",
"sambaProfilePath", "sambaPrimaryGroupSID", "sambaDomainName",
"sambaUserWorkstations", "sambaPasswordHistory",
"sambaLogonHours", "sambaBadPasswordTime",
"sambaBadPasswordCount");
$this->objectclasses= array ("sambaSamAccount");
$this->mungedObject= new sambaMungedDial;
$this->ctxattributes= $this->mungedObject->ctxattributes;
} else {
$this->attributes= array ("pwdLastSet", "logonTime", "logoffTime", "kickoffTime",
"pwdCanChange", "pwdMustChange", "acctFlags", "profilePath", "uid",
"smbHome", "homeDrive", "scriptPath", "rid", "primaryGroupID");
$this->objectclasses= array ("sambaAccount");
}
plugin::plugin ($config, $dn);
/* Setting uid to default */
if(isset($this->attrs['uid'][0])){
$this->uid = $this->attrs['uid'][0];
}
/* Get samba Domain in case of samba 3 */
if ($this->samba3 && $this->sambaSID != ""){
$this->SID= preg_replace ("/-[^-]+$/", "", $this->sambaSID);
$ldap= $this->config->get_ldap_link();
$ldap->cd($this->config->current['BASE']);
$ldap->search ("(&(objectClass=sambaDomain)(sambaSID=$this->SID))",array("sambaAlgorithmicRidBase","sambaDomainName"));
if ($ldap->count() != 0){
$attrs= $ldap->fetch();
if(isset($attrs['sambaAlgorithmicRidBase'])){
$this->ridBase= $attrs['sambaAlgorithmicRidBase'][0];
} else {
$this->ridBase= $this->config->get_cfg_value("sambaRidBase");
}
if ($this->sambaDomainName == ""){
$this->sambaDomainName= $attrs['sambaDomainName'][0];
}
} else {
if ($this->sambaDomainName == ""){
$this->sambaDomainName= "DEFAULT";
}
$this->ridBase= $this->config->get_cfg_value("sambaRidBase");
$this->SID= $this->config->get_cfg_value("sambaSid");
}
/* Save in order to compare later on */
$this->orig_sambaDomainName= $this->sambaDomainName;
}
/* Fill mungedDial field */
if ($this->samba3 && isset($this->attrs['sambaMungedDial'])){
$this->mungedObject->load($this->sambaMungedDial);
}
/* Password expiery */
if(isset($this->attrs['sambaPwdMustChange']) &&
$this->attrs['sambaPwdMustChange'][0] != 0){
$this->password_expires= 1;
}
if(isset($this->attrs['sambaLogonTime']) && ! (
$this->attrs['sambaLogonTime'][0] == 0 ||
$this->attrs['sambaLogonTime'][0] == 2147483647
)){
$this->logon_time_set= 1;
}
if(isset($this->attrs['sambaLogoffTime']) && ! (
$this->attrs['sambaLogoffTime'][0] == 0 ||
$this->attrs['sambaLogoffTime'][0] == 2147483647
)){
$this->logoff_time_set= 1;
}
/* Account expiery */
if(isset($this->attrs['sambaKickoffTime']) && ! (
$this->attrs['sambaKickoffTime'][0] == 0 ||
$this->attrs['sambaKickoffTime'][0] == 2147483647
)){
$this->kickoff_time_set= 1;
}
/* Get global filter config */
if (!session::is_set("sambafilter")){
$ui= get_userinfo();
$base= get_base_from_people($ui->dn);
$sambafilter= array( "depselect" => $base, "regex" => "*");
session::set("sambafilter", $sambafilter);
}
/* Save initial account state */
$this->initially_was_account= $this->is_account;
}
function execute()
{
/* Call parent execute */
plugin::execute();
/* Log view */
if($this->is_account && !$this->view_logged){
$this->view_logged = TRUE;
new log("view","users/".get_class($this),$this->dn);
}
/* Do we need to flip is_account state? */
if (isset($_POST['modify_state'])){
$this->is_account= !$this->is_account;
}
/* Do we represent a valid account? */
if (!$this->is_account && $this->parent === NULL){
$display= " ".
msgPool::noValidExtension(_("Samba"))."";
$display.= back_to_main();
return ($display);
}
$display ="";
if(!$this->multiple_support_active){
/* Show tab dialog headers */
$display= "";
if ($this->parent !== NULL){
if ($this->is_account){
$display= $this->show_disable_header(msgPool::removeFeaturesButton(_("Samba")),
msgPool::featuresEnabled(_("Samba")));
} else {
$obj= $this->parent->by_object['posixAccount'];
/* Samba3 dependency on posix accounts are enabled
in the moment, because I need to rely on unique
uidNumbers. There'll be a better solution later
on. */
if ($obj->is_account){
$display= $this->show_enable_header(msgPool::addFeaturesButton(_("Samba")),
msgPool::featuresDisabled(_("Samba")));
} else {
$display= $this->show_enable_header(msgPool::addFeaturesButton(_("Samba")),
msgPool::featuresDisabled(_("Samba"), _("POSIX")), TRUE);
}
return ($display);
}
}
}
$SkipWrite = (!isset($this->parent) || !$this->parent) && !session::is_set('edit');
/* Open Samaba Logong hours dialog */
if(isset($_POST['SetSambaLogonHours']) && $this->samba3 && $this->acl_is_readable("sambaLogonHours")){
$this->dialog = new sambaLogonHours($this->config,$this->dn,$this->sambaLogonHours);
}
/* Cancel dialog */
if(isset($_POST['cancel_logonHours'])){
$this->dialog = FALSE;
}
/* Save selected logon hours */
if(isset($_POST['save_logonHours'])){
$this->dialog->save_object();
if($this->acl_is_writeable("sambaLogonHours")){
$this->sambaLogonHours = $this->dialog->save();
}
$this->dialog = FALSE;
}
/* Display dialog */
if((isset($this->dialog)) && (is_object($this->dialog))){
$this->dialog->save_object();
return($this->dialog->execute());
}
/* Prepare templating */
$smarty= get_smarty();
$tmp = $this->plInfo();
foreach($tmp['plProvidedAcls'] as $var => $rest){
$smarty->assign($var."ACL",$this->getacl($var,$SkipWrite));
}
if(!session::is_set('edit') && !isset($this->parent)){
$smarty->assign("sambaLogonHoursACL","");
}
if ($this->sambaPwdMustChange=="0"){
$date= getdate();
} else {
$date= getdate($this->sambaPwdMustChange);
}
if ($this->sambaLogonTime=="2147483647" || $this->sambaLogonTime=="0"){
$sambaLogonTime_date= getdate();
} else {
$sambaLogonTime_date= getdate($this->sambaLogonTime);
}
if ($this->sambaLogoffTime=="2147483647" || $this->sambaLogoffTime=="0"){
$sambaLogoffTime_date= getdate();
} else {
$sambaLogoffTime_date= getdate($this->sambaLogoffTime);
}
if ($this->sambaKickoffTime=="2147483647" || $this->sambaKickoffTime=="0"){
$sambaKickoffTime_date= getdate();
} else {
$sambaKickoffTime_date= getdate($this->sambaKickoffTime);
}
/* Remove user workstations? */
if (isset($_POST["delete_ws"]) && isset($_POST['workstation_list'])){
if($this->acl_is_writeable("sambaUserWorkstations",$SkipWrite)){
if($this->multiple_support_active){
foreach($_POST['workstation_list'] as $name){
if(isset($this->multiple_sambaUserWorkstations[trim($name)])){
unset($this->multiple_sambaUserWorkstations[trim($name)]);
}
}
}else{
$tmp= $this->sambaUserWorkstations;
foreach($_POST['workstation_list'] as $name){
$tmp= preg_replace("/$name/", '', $tmp);
$this->is_modified= TRUE;
}
$tmp= preg_replace('/,+/', ',', $tmp);
$this->sambaUserWorkstations= trim($tmp, ',');
}
}
}
/* Add user workstation? */
if (isset($_POST["add_ws"])){
if($this->acl_is_writeable("sambaUserWorkstations",$SkipWrite)){
$this->show_ws_dialog= TRUE;
$this->dialog= TRUE;
}
}
/* Add user workstation finished? */
if (isset($_POST["add_ws_cancel"])){
$this->show_ws_dialog= FALSE;
$this->dialog= FALSE;
}
/* Add user workstation? */
if (isset($_POST["add_ws_finish"])){
if (isset($_POST['wslist'])){
if($this->multiple_support_active){
foreach($_POST['wslist'] as $ws){
$this->multiple_sambaUserWorkstations[trim($we)] = array("Name" => trim($ws), "UsedByAllUsers" => TRUE);
}
}else{
$tmp= $this->sambaUserWorkstations;
foreach($_POST['wslist'] as $ws){
$tmp.= ",$ws";
}
$tmp= preg_replace('/,+/', ',', $tmp);
$this->sambaUserWorkstations= trim($tmp, ',');
}
$this->is_modified= TRUE;
$this->show_ws_dialog= FALSE;
$this->dialog= FALSE;
} else {
msg_dialog::display(_("Error"), _("Please select an entry!"), ERROR_DIALOG);
}
}
/* Show ws dialog */
if ($this->show_ws_dialog){
/* Save data */
$sambafilter= session::get("sambafilter");
foreach( array("depselect", "regex") as $type){
if (isset($_POST[$type])){
$sambafilter[$type]= $_POST[$type];
}
}
if (isset($_GET['search'])){
$s= mb_substr($_GET['search'], 0, 1, "UTF8")."*";
if ($s == "**"){
$s= "*";
}
$sambafilter['regex']= $s;
}
session::set("sambafilter", $sambafilter);
/* Get workstation list */
$exclude= "";
if($this->multiple_support_active){
foreach($this->multiple_sambaUserWorkstations as $ws){
if($ws['UsedByAllUsers']){
$exclude.= "(cn=".$ws['Name']."$)";
}
}
}else{
foreach(split(',', $this->sambaUserWorkstations) as $ws){
$exclude.= "(cn=$ws$)";
}
}
if ($exclude != ""){
$exclude= "(!(|$exclude))";
}
$regex= $sambafilter['regex'];
$filter= "(&(objectClass=sambaSAMAccount)$exclude(uid=*$)(|(uid=$regex)(cn=$regex)))";
$res= get_list($filter, "winworkstation", $sambafilter['depselect'], array("uid"), GL_SUBSEARCH | GL_SIZELIMIT);
$wslist= array();
foreach ($res as $attrs){
$wslist[]= preg_replace('/\$/', '', $attrs['uid'][0]);
}
asort($wslist);
$smarty->assign("search_image", get_template_path('images/lists/search.png'));
$smarty->assign("launchimage", get_template_path('images/lists/action.png'));
$smarty->assign("tree_image", get_template_path('images/lists/search-subtree.png'));
$smarty->assign("deplist", $this->config->idepartments);
$smarty->assign("alphabet", generate_alphabet());
foreach( array("depselect", "regex") as $type){
$smarty->assign("$type", $sambafilter[$type]);
}
$smarty->assign("hint", print_sizelimit_warning());
$smarty->assign("wslist", $wslist);
$smarty->assign("apply", apply_filter());
$display= $smarty->fetch (get_template_path('samba3_workstations.tpl', TRUE,
dirname(__FILE__)));
return ($display);
}
/* Fill calendar */
$days= array();
for($d= 1; $d<32; $d++){
$days[]= $d;
}
$years= array();
for($y= $date['year']-4; $y<$date['year']+4; $y++){
$years[]= $y;
}
$months= msgPool::months();
$smarty->assign("day", $date["mday"]);
$smarty->assign("days", $days);
$smarty->assign("months", $months);
$smarty->assign("month", $date["mon"]-1);
$smarty->assign("years", $years);
$smarty->assign("year", $date["year"]);
$sambaLogonTime_days= array();
for($d= 1; $d<32; $d++){
$sambaLogonTime_days[]= $d;
}
$sambaLogonTime_years= array();
for($y= $date['year']-4; $y<$date['year']+4; $y++){
$sambaLogonTime_years[]= $y;
}
$sambaLogonTime_months= msgPool::months();
$smarty->assign("sambaLogonTime_day", $sambaLogonTime_date["mday"]);
$smarty->assign("sambaLogonTime_days", $sambaLogonTime_days);
$smarty->assign("sambaLogonTime_months", $sambaLogonTime_months);
$smarty->assign("sambaLogonTime_month", $sambaLogonTime_date["mon"]-1);
$smarty->assign("sambaLogonTime_years", $sambaLogonTime_years);
$smarty->assign("sambaLogonTime_year", $sambaLogonTime_date["year"]);
$sambaLogoffTime_days= array();
for($d= 1; $d<32; $d++){
$sambaLogoffTime_days[]= $d;
}
$sambaLogoffTime_years= array();
for($y= $date['year']-4; $y<$date['year']+4; $y++){
$sambaLogoffTime_years[]= $y;
}
$sambaLogoffTime_months= msgPool::months();
$smarty->assign("sambaLogoffTime_day", $sambaLogoffTime_date["mday"]);
$smarty->assign("sambaLogoffTime_days", $sambaLogoffTime_days);
$smarty->assign("sambaLogoffTime_months", $sambaLogoffTime_months);
$smarty->assign("sambaLogoffTime_month", $sambaLogoffTime_date["mon"]-1);
$smarty->assign("sambaLogoffTime_years", $sambaLogoffTime_years);
$smarty->assign("sambaLogoffTime_year", $sambaLogoffTime_date["year"]);
$sambaKickoffTime_days= array();
for($d= 1; $d<32; $d++){
$sambaKickoffTime_days[]= $d;
}
$sambaKickoffTime_years= array();
for($y= $date['year']-4; $y<$date['year']+4; $y++){
$sambaKickoffTime_years[]= $y;
}
$sambaKickoffTime_months= msgPool::months();
//$smarty->assign("sambaKickoffTime_day", $sambaKickoffTime_date["mday"]-1);
$smarty->assign("sambaKickoffTime_day", $sambaKickoffTime_date["mday"]); // hickert
$smarty->assign("sambaKickoffTime_days", $sambaKickoffTime_days);
$smarty->assign("sambaKickoffTime_months", $sambaKickoffTime_months);
$smarty->assign("sambaKickoffTime_month", $sambaKickoffTime_date["mon"]-1);
$smarty->assign("sambaKickoffTime_years", $sambaKickoffTime_years);
$smarty->assign("sambaKickoffTime_year", $sambaKickoffTime_date["year"]);
/* Fill boxes */
if ($this->samba3){
$domains= array();
foreach($this->config->data['SERVERS']['SAMBA'] as $name => $content){
$domains[]= $name;
}
$smarty->assign("domains", $domains);
}
$letters= array("");
for ($i= 68; $i<91; $i++){
$letters[]= chr($i).":";
}
$smarty->assign("drives", $letters);
/* Fill terminal server settings */
if ($this->samba3){
foreach ($this->ctxattributes as $attr){
/* Fill common attributes */
if (isset($this->mungedObject->ctx[$attr])){
$smarty->assign("$attr", $this->mungedObject->ctx[$attr]);
// Set field to blank if value is 0
if(in_array($attr, array("CtxMaxConnectionTime", "CtxMaxDisconnectionTime", "CtxMaxIdleTime"))) {
if($this->mungedObject->ctx[$attr] == 0) {
$smarty->assign("$attr", "");
}
}
} else {
$smarty->assign("$attr", "");
}
}
/* Assign enum values for preset items */
$shadowModeVals= array( "0" => _("disabled"),
"1" => _("input on, notify on"),
"2" => _("input on, notify off"),
"3" => _("input off, notify on"),
"4" => _("input off, nofify off"));
$brokenConnModeVals= array( "0" => _("disconnect"),
"1" => _("reset"));
$reConnModeVals= array( "0" => _("from any client"),
"1" => _("from previous client only"));
/* Fill preset items */
$smarty->assign("shadow", $shadowModeVals);
$smarty->assign("brokenconn", $brokenConnModeVals);
$smarty->assign("reconn", $reConnModeVals);
/* Fill preset items with values */
$smarty->assign("shadowmode", $this->mungedObject->getShadow());
$smarty->assign("brokenconnmode", $this->mungedObject->getBrokenConn());
$smarty->assign("reconnmode", $this->mungedObject->getReConn());
if(session::get('js')){
/* Set form elements to disabled/enable state */
$smarty->assign("tsloginstate", $this->mungedObject->getTsLogin()?"":"disabled");
$smarty->assign("inheritstate", "");
if($this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite)){
$smarty->assign("inheritstate", $this->mungedObject->getInheritMode()?"disabled":"");
}
}else{
$smarty->assign("tsloginstate", "");
$smarty->assign("inheritstate", "");
}
/* Set checkboxes to checked or unchecked state */
$smarty->assign("tslogin", $this->mungedObject->getTsLogin()?"checked":"");
$smarty->assign("inherit", $this->mungedObject->getInheritMode()?"checked":"");
$smarty->assign("connectclientdrives",
$this->mungedObject->getConnectClientDrives()?"checked":"");
$smarty->assign("connectclientprinters",
$this->mungedObject->getConnectClientPrinters()?"checked":"");
$smarty->assign("defaultprinter",
$this->mungedObject->getDefaultPrinter()?"checked":"");
$smarty->assign("CtxMaxConnectionTimeF",
$this->mungedObject->getCtxMaxConnectionTimeF()?"checked":"");
$smarty->assign("CtxMaxDisconnectionTimeF",
$this->mungedObject->getCtxMaxDisconnectionTimeF()?"checked":"");
$smarty->assign("CtxMaxIdleTimeF",
$this->mungedObject->getCtxMaxIdleTimeF()?"checked":"");
/* Fill sambaUserWorkstations */
$ws= split(",", $this->sambaUserWorkstations);
sort($ws);
/* Tidy checks for empty option, and smarty will produce one if array[0]="" */
if(($ws[0]=="")&&(count($ws)==1)) $ws=array();
if($this->multiple_support_active){
$smarty->assign("multiple_workstations",$this->multiple_sambaUserWorkstations);
}
$smarty->assign("workstations", $ws);
}
/* Variables */
foreach($this->attributes as $val){
$smarty->assign("$val", $this->$val);
}
/* 'sambaAcctFlags' checkboxes */
/* Check for 'lock-account'-flag: 'D' or 'L' */
if (is_integer(strpos($this->sambaAcctFlags, "D")) ||
is_integer(strpos($this->sambaAcctFlags, "L"))) {
$smarty->assign("flagsD", "checked");
} else {
$smarty->assign("flagsD", "");
}
/* Check for no_password_required flag 'N' */
if (is_integer(strpos($this->sambaAcctFlags, "N"))) {
$smarty->assign("flagsN", "checked");
} else {
$smarty->assign("flagsN", "");
}
if($this->samba3){
if ($this->sambaPwdCanChange=="1"){
$smarty->assign("flagsP", "checked");
} else {
$smarty->assign("flagsP", "");
}
}else{
if ($this->pwdCanChange=="1"){
$smarty->assign("flagsP", "checked");
} else {
$smarty->assign("flagsP", "");
}
}
if ($this->password_expires=="1"){
$smarty->assign("flagsC", "checked");
} else {
$smarty->assign("flagsC", "");
}
if ($this->logon_time_set=="1"){
$smarty->assign("flagsT", "checked");
} else {
$smarty->assign("flagsT", "");
}
if ($this->logoff_time_set=="1"){
$smarty->assign("flagsO", "checked");
} else {
$smarty->assign("flagsO", "");
}
if ($this->kickoff_time_set=="1"){
$smarty->assign("flagsK", "checked");
} else {
$smarty->assign("flagsK", "");
}
/* In case of javascript, disable some fields on demand */
if ($this->samba3){
foreach($this->mungedObject->getOnDemandFlags() as $key => $value) {
$smarty->assign("$key", "$value");
}
}
foreach($this->attributes as $attr){
if(in_array($attr,$this->multi_boxes)){
$smarty->assign("use_".$attr,TRUE);
}else{
$smarty->assign("use_".$attr,FALSE);
}
}
foreach(array("allow_pwchange","tslogin","CtxWFHomeDir","CtxWFHomeDirDrive","CtxWFProfilePath",
"inherit","CtxWorkDirectory","CtxInitialProgram","CtxMaxConnectionTimeF","CtxMaxConnectionTime","CtxMaxDisconnectionTimeF",
"CtxMaxDisconnectionTime","CtxMaxIdleTimeF","CtxMaxIdleTime","connectclientdrives",
"onnectclientprinters","defaultprinter","shadow","brokenconn",
"reconn","allow_pwchange","connectclientprinters","no_password_required","temporary_disable",
"password_expires","logon_time_set","logoff_time_set","kickoff_time_set","SetSambaLogonHours",
"workstation_list") as $attr){
if(in_array($attr,$this->multi_boxes)){
$smarty->assign("use_".$attr,TRUE);
}else{
$smarty->assign("use_".$attr,FALSE);
}
}
if($this->multiple_support_active){
$smarty->assign("tsloginstate","");
}
/* Create additional info for sambaKickOffTime and sambaPwdMustChange.
e.g. Display effective kickoff time. Domain policy + user settings.
*/
$additional_info_PwdMustChange = "";
/* Calculate effective max Password Age
This can only be calculated if sambaPwdLastSet ist set.
*/
if(isset($this->attrs['sambaPwdLastSet'][0])){
$last = $this->attrs['sambaPwdLastSet'][0];
$sid = $this->get_domain_info();
if(isset($sid['sambaMaxPwdAge'][0])){
$d = ($last + $sid['sambaMaxPwdAge'][0]) - time();
/* A negative value means the password is outdated
*/
if($d < 0){
$additional_info_PwdMustChange = sprintf(_("The password is outdated since %s, by domain policy."),
date("d.m.Y H:i:s",$last + $sid['sambaMaxPwdAge'][0]));
}else{
if($this->password_expires && ($last + $sid['sambaMaxPwdAge'][0]) > $this->sambaPwdMustChange){
$additional_info_PwdMustChange = sprintf(_("The password is valid till %s, by user policy."),
date("d.m.Y H:i:s", $this->sambaPwdMustChange));
}else{
$additional_info_PwdMustChange = sprintf(_("The password is valid till %s, by domain policy."),
date("d.m.Y H:i:s", ($last + $sid['sambaMaxPwdAge'][0])));
}
}
}
}
$smarty->assign("additional_info_PwdMustChange",$additional_info_PwdMustChange);
/* Show main page */
$smarty->assign("multiple_support",$this->multiple_support_active);
if ($this->samba3){
$smarty->assign("samba_information","");
$smarty->assign("display_information",$this->display_information);
if($this->display_information){
$smarty->assign("samba_information",$this->get_samba_information());
}
$display.= $smarty->fetch (get_template_path('samba3.tpl', TRUE, dirname(__FILE__)));
} else {
$display.= $smarty->fetch (get_template_path('samba2.tpl', TRUE, dirname(__FILE__)));
}
return ($display);
}
/*! \brief Returns the samba Domain object, selected in the samba tab.
*/
function get_domain_info()
{
/* Only search once, return last result if available
*/
if(!isset($this->cache['DOMAIN'][$this->sambaDomainName])){
$this->cache['DOMAIN'][$this->sambaDomainName] = array();
if(!empty($this->sambaDomainName) && isset($this->config->data['SERVERS']['SAMBA'][$this->sambaDomainName])){
$cfg = $this->config->data['SERVERS']['SAMBA'][$this->sambaDomainName];
$ldap = $this->config->get_ldap_link();
$ldap->cd($this->config->current['BASE']);
$ldap->search("(&(objectClass=sambaDomain)(sambaSID=".$cfg['SID']."))",array("*"));
if($ldap->count()){
$this->cache['DOMAIN'][$this->sambaDomainName] = $ldap->fetch();
}
}
}
return($this->cache['DOMAIN'][$this->sambaDomainName]);
}
function get_samba_information()
{
/* Defaults
*/
$sambaMinPwdLength = "unset";
$sambaPwdHistoryLength = "unset";
$sambaLogonToChgPwd = "unset";
$sambaMaxPwdAge = "unset";
$sambaMinPwdAge = "unset";
$sambaLockoutDuration = "unset";
$sambaLockoutThreshold = "unset";
$sambaForceLogoff = "unset";
$sambaRefuseMachinePwdChange = "unset";
$sambaPwdLastSet = "unset";
$sambaLogonTime = "unset";
$sambaLogoffTime = "unset";
$sambaKickoffTime = "unset";
$sambaPwdCanChange = "unset";
$sambaPwdMustChange = "unset";
$sambaBadPasswordCount = "unset";
$sambaBadPasswordTime = "unset";
/* Domain attributes
*/
$domain_attributes = array("sambaMinPwdLength","sambaPwdHistoryLength","sambaMaxPwdAge",
"sambaMinPwdAge","sambaLockoutDuration","sambaRefuseMachinePwdChange",
"sambaLogonToChgPwd","sambaLockoutThreshold","sambaForceLogoff");
/* User attributes
*/
$user_attributes = array("sambaBadPasswordTime","sambaPwdLastSet","sambaLogonTime","sambaLogoffTime",
"sambaKickoffTime","sambaPwdCanChange","sambaPwdMustChange","sambaBadPasswordCount");
/* Get samba SID object and parse settings.
*/
$ldap = $this->config->get_ldap_link();
$ldap->cd($this->config->current['BASE']);
if(!empty($this->sambaDomainName) && isset($this->config->data['SERVERS']['SAMBA'][$this->sambaDomainName])){
$attrs = $this->get_domain_info();
foreach($domain_attributes as $attr){
if(isset($attrs[$attr])){
$$attr = $attrs[$attr][0];
}
}
}
/* Get user infos
*/
foreach($user_attributes as $attr){
if(isset($this->attrs[$attr])){
$$attr = $this->attrs[$attr][0];
}
}
if($this->password_expires){
$sambaPwdMustChange = $this->sambaPwdMustChange;
}
if($this->kickoff_time_set){
$sambaKickoffTime = $this->sambaKickoffTime;
}
$sambaPwdCanChange = $this->sambaPwdCanChange;
/* DOMAIN Attributes
*/
/* sambaMinPwdLength: Password length has a default of 5
*/
if($sambaMinPwdLength == "unset" || $sambaMinPwdLength == 5){
$sambaMinPwdLength = "5 ("._("default").")";
}
/* sambaPwdHistoryLength: Length of Password History Entries (default: 0 => off)
*/
if($sambaPwdHistoryLength == "unset" || $sambaPwdHistoryLength == 0){
$sambaPwdHistoryLength = _("Off")." ("._("default").")";
}
/* sambaLogonToChgPwd: Force Users to logon for password change (default: 0 => off, 2 => on)
*/
if($sambaLogonToChgPwd == "unset" || $sambaLogonToChgPwd == 0){
$sambaLogonToChgPwd = _("Off")." ("._("default").")";
}else{
$sambaLogonToChgPwd = _("On");
}
/* sambaMaxPwdAge: Maximum password age, in seconds (default: -1 => never expire passwords)'
*/
if($sambaMaxPwdAge == "unset" || $sambaMaxPwdAge == "-1"){
$sambaMaxPwdAge = _("disabled")." ("._("default").")";
}else{
$sambaMaxPwdAge .= " "._("seconds");
}
/* sambaMinPwdAge: Minimum password age, in seconds (default: 0 => allow immediate password change
*/
if($sambaMinPwdAge == "unset" || $sambaMinPwdAge == 0){
$sambaMinPwdAge = _("disabled")." ("._("default").")";
}else{
$sambaMinPwdAge .= " "._("seconds");
}
/* sambaLockoutDuration: Lockout duration in minutes (default: 30, -1 => forever)
*/
if($sambaLockoutDuration == "unset" || $sambaLockoutDuration == 30){
$sambaLockoutDuration = "30 "._("minutes")." ("._("default").")";
}elseif($sambaLockoutDuration == -1){
$sambaLockoutDuration = _("forever");
}else{
$sambaLockoutDuration .= " "._("minutes");
}
/* sambaLockoutThreshold: Lockout users after bad logon attempts (default: 0 => off
*/
if($sambaLockoutThreshold == "unset" || $sambaLockoutThreshold == 0){
$sambaLockoutThreshold = _("disabled")." ("._("default").")";
}
/* sambaForceLogoff: Disconnect Users outside logon hours (default: -1 => off, 0 => on
*/
if($sambaForceLogoff == "unset" || $sambaForceLogoff == -1){
$sambaForceLogoff = _("off")." ("._("default").")";
}else{
$sambaForceLogoff = _("on");
}
/* sambaRefuseMachinePwdChange: Allow Machine Password changes (default: 0 => off
*/
if($sambaRefuseMachinePwdChange == "none" || $sambaRefuseMachinePwdChange == 0){
$sambaRefuseMachinePwdChange = _("off")." ("._("default").")";
}else{
$sambaRefuseMachinePwdChange = _("on");
}
/* USER Attributes
*/
/* sambaBadPasswordTime: Time of the last bad password attempt
*/
if($sambaBadPasswordTime == "unset" || empty($sambaBadPasswordTime)){
$sambaBadPasswordTime = "("._("unset").")";
}else{
$sambaBadPasswordTime = date("d.m.Y H:i:s",$sambaBadPasswordTime);
}
/* sambaBadPasswordCount: Bad password attempt count
*/
if($sambaBadPasswordCount == "unset" || empty($sambaBadPasswordCount)){
$sambaBadPasswordCount = "("._("unset").")";
}else{
$sambaBadPasswordCount = date("d.m.Y H:i:s",$sambaBadPasswordCount);
}
/* sambaPwdLastSet: Timestamp of the last password update
*/
if($sambaPwdLastSet == "unset" || empty($sambaPwdLastSet)){
$sambaPwdLastSet = "("._("unset").")";
}else{
$sambaPwdLastSet = date("d.m.Y H:i:s",$sambaPwdLastSet);
}
/* sambaLogonTime: Timestamp of last logon
*/
if($sambaLogonTime == "unset" || empty($sambaLogonTime)){
$sambaLogonTime = "("._("unset").")";
}else{
$sambaLogonTime = date("d.m.Y H:i:s",$sambaLogonTime);
}
/* sambaLogoffTime: Timestamp of last logoff
*/
if($sambaLogoffTime == "unset" || empty($sambaLogoffTime)){
$sambaLogoffTime = "("._("unset").")";
}else{
$sambaLogoffTime = date("d.m.Y H:i:s",$sambaLogoffTime);
}
/* sambaKickoffTime: Timestamp of when the user will be logged off automatically
*/
if($sambaKickoffTime == "unset" || empty($sambaKickoffTime)){
$sambaKickoffTime = "("._("unset").")";
}else{
$sambaKickoffTime = date("d.m.Y H:i:s",$sambaKickoffTime);
}
/* sambaPwdMustChange: Timestamp of when the password will expire
*/
if($sambaPwdMustChange == "unset" || empty($sambaPwdMustChange)){
$sambaPwdMustChange = "("._("unset").")";
}else{
$sambaPwdMustChange = date("d.m.Y H:i:s",$sambaPwdMustChange);
}
/* sambaPwdCanChange: Timestamp of when the user is allowed to update the password
*/
if($sambaPwdCanChange == "unset" || empty($sambaPwdCanChange)){
$sambaPwdCanChange = "("._("unset").")";
}elseif($sambaPwdCanChange != "unset" && time() > $sambaPwdCanChange){
$sambaPwdCanChange = _("immediately") ;
}else{
$days = floor((($sambaPwdCanChange - time()) / 60 / 60 / 24)) ;
$hours = floor((($sambaPwdCanChange - time()) / 60 / 60) % 24) ;
$minutes = floor((($sambaPwdCanChange - time()) / 60 ) % 60) ;
$sambaPwdCanChange = " ".$days." "._("days");
$sambaPwdCanChange.= " ".$hours." "._("hours");
$sambaPwdCanChange.= " ".$minutes." "._("minutes");
}
$str =
"\n
".
"\n".
"\n"._("Domain attributes")." | ".
"\n"._("Min password length").": | ".$sambaMinPwdLength." | ".
"\n"._("Min password length").": | ".$sambaMinPwdLength." | ".
"\n"._("Password history").": | ".$sambaPwdHistoryLength." | ".
"\n"._("Force password change").": | ".$sambaLogonToChgPwd." | ".
"\n"._("Maximum password age").": | ".$sambaMaxPwdAge." | ".
"\n"._("Minimum password age").": | ".$sambaMinPwdAge." | ".
"\n"._("Lockout duration").": | ".$sambaLockoutDuration." | ".
"\n"._("Bad lockout attempt").": | ".$sambaLockoutThreshold." | ".
"\n"._("Disconnect time").": | ".$sambaForceLogoff." | ".
"\n"._("Refuse machine password change").": | ".$sambaRefuseMachinePwdChange." | ".
"\n | ".
"\n"._("User attributes")." | ".
"\n"._("Last failed login").": | ".$sambaBadPasswordTime." | ".
"\n"._("Logon attempts").": | ".$sambaBadPasswordCount." | ".
"\n"._("Last password update").": | ".$sambaPwdLastSet." | ".
"\n"._("Last logon").": | ".$sambaLogonTime." | ".
"\n"._("Last logoff").": | ".$sambaLogoffTime." | ".
"\n"._("Automatic logoff").": | ".$sambaKickoffTime." | ".
"\n"._("Password expires").": | ".$sambaPwdMustChange." | ".
"\n"._("Password change available").": | ".$sambaPwdCanChange." | ".
"\n |
";
return($str);
}
function remove_from_parent()
{
/* Cancel if there's nothing to do here */
if (!$this->initially_was_account){
return;
}
/* include global link_info */
$ldap= $this->config->get_ldap_link();
plugin::remove_from_parent();
/* Keep uid attribute for gosaAccount */
unset($this->attrs['uid']);
unset($this->attrs['uidNumber']);
unset($this->attrs['gidNumber']);
/* Remove objectClass for sambaIdmapEntry */
$tmp= array();
for ($i= 0; $iattrs["objectClass"]); $i++){
if ($this->attrs['objectClass'][$i] != 'sambaIdmapEntry'){
$tmp[]= $this->attrs['objectClass'][$i];
}
}
$this->attrs['objectClass']= $tmp;
@DEBUG (DEBUG_LDAP, __LINE__, __FUNCTION__, __FILE__,
$this->attributes, "Save");
$ldap->cd($this->dn);
$this->cleanup();
$ldap->modify ($this->attrs);
new log("remove","users/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
if (!$ldap->success()){
msg_dialog::display(_("LDAP error"), msgPool::ldaperror($ldap->get_error(), $this->dn, LDAP_MOD, get_class()));
}
/* Optionally execute a command after we're done */
$this->handle_post_events("remove", array("uid" => $this->uid));
}
/* Check for input problems */
function check()
{
/* Call common method to give check the hook */
$message= plugin::check();
if ($this->samba3){
/* sambaHomePath requires sambaHomeDrive and vice versa */
if(!empty($this->sambaHomePath) && empty($this->sambaHomeDrive)){
$message[]= msgPool::required(_("Home drive"));
}
if(!empty($this->sambaHomeDrive) && empty($this->sambaHomePath)){
$message[]= msgPool::required(_("Home path"));
}
/* Strings */
foreach (array( "sambaHomePath" => _("Home directory"),
"sambaProfilePath" => _("Profile path")) as $key => $val){
if (!$this->mungedObject->is_samba_path($this->$key)){
$message[]= msgPool::invalid($val);
}
}
/* Numeric values */
foreach (array( "CtxMaxConnectionTime" => _("Connection"),
"CtxMaxDisconnectionTime" => _("Disconnection"),
"CtxMaxIdleTime" => _("IDLE")) as $key => $val){
if (isset($this->mungedObject->ctx[$key]) && !tests::is_id($this->mungedObject->ctx[$key]) && $val != 0){
$message[]= msgPool::invalid($val);
}
}
/* Too many workstations? Windows usrmgr only supports eight */
if (substr_count($this->sambaUserWorkstations, ",") >= 8){
$message[]= _("The windows usermanager allows eight clients at maximum!");
}
}
return ($message);
}
/* Save data to object */
function save_object()
{
$SkipWrite = (!isset($this->parent) || !$this->parent) && !session::is_set('edit');
/* We only care if we are on the sambaTab... */
if (isset($_POST['sambaTab'])){
plugin::save_object();
if(isset($_POST['display_information'])){
$this->display_information = !$this->display_information;
}
/* Take care about access options */
if ($this->acl_is_writeable("sambaAcctFlagsL",$SkipWrite) || ($this->acl_is_writeable("sambaAcctFlagsN",$SkipWrite))){
if ($this->samba3){
$attrname= "sambaPwdCanChange";
} else {
$attrname= "pwdCanChange";
}
if (isset($_POST["allow_pwchange"]) && $_POST["allow_pwchange"] == 1){
$tmp= 1;
} else {
$tmp= 0;
}
if ($this->$attrname != $tmp){
$this->is_modified= TRUE;
}
$this->pwdCanChange= $tmp;
$this->sambaPwdCanChange= $tmp;
}
$tmp= "UX";
$this->no_password_required = FALSE;
if (isset($_POST["no_password_required"])){
if ($_POST["no_password_required"] == 1){
$tmp.= "N";
$this->no_password_required = TRUE;
}
}
if (isset($_POST["password_expires"])){
if ($_POST["password_expires"] == 1){
$this->password_expires= 1;
}
} else {
$this->password_expires= 0;
}
$this->temporary_disable = FALSE;
if (isset($_POST["temporary_disable"])){
if ($_POST["temporary_disable"] == 1){
$this->temporary_disable = TRUE;
if (is_integer(strpos($this->sambaAcctFlags, "L"))) {
$tmp.= "L";
} else {
$tmp.= "D";
}
}
}
if (isset($_POST["logon_time_set"])){
if ($_POST["logon_time_set"] == 1){
$this->logon_time_set= 1;
}
} else {
$this->logon_time_set= 0;
}
if (isset($_POST["logoff_time_set"])){
if ($_POST["logoff_time_set"] == 1){
$this->logoff_time_set= 1;
}
} else {
$this->logoff_time_set= 0;
}
if (isset($_POST["kickoff_time_set"])){
if ($_POST["kickoff_time_set"] == 1){
$this->kickoff_time_set= 1;
}
} else {
$this->kickoff_time_set= 0;
}
$fill= "";
for ($i= strlen($tmp); $i<12; $i++){
$fill.= " ";
}
$tmp= "[$tmp$fill]";
/* Only save if acl's are set */
if ($this->acl_is_writeable("sambaAcctFlagsL",$SkipWrite) || ($this->acl_is_writeable("sambaAcctFlagsN",$SkipWrite))){
if ($this->samba3){
$attrname= "sambaAcctFlags";
} else {
$attrname= "acctFlags";
}
if ($this->$attrname != $tmp){
$this->is_modified= TRUE;
}
$this->$attrname= $tmp;
}
/* Save sambaDomain attribute */
if ($this->acl_is_writeable("sambaDomainName",$SkipWrite) && $this->samba3 && isset ($_POST['sambaDomainName'],$SkipWrite)){
$this->sambaDomainName= validate($_POST['sambaDomainName']);
}
/* Save CTX values */
if ($this->samba3){
/* Save obvious values */
foreach($this->ctxattributes as $val){
if (isset($_POST[$val]) && $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite)){
if (get_magic_quotes_gpc()) {
$this->mungedObject->ctx[$val]= stripcslashes(validate($_POST[$val]));
} else {
$this->mungedObject->ctx[$val]= validate($_POST[$val]);
}
}
}
/* Save checkbox states. */
$this->mungedObject->setTsLogin(!isset($_POST['tslogin'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
// Need to do some index checking to avoid messages like "index ... not found"
if(isset($_POST['brokenconn'])) {
$this->mungedObject->setBrokenConn($_POST['brokenconn'] == '1'
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
}
if(isset($_POST['reconn'])) {
$this->mungedObject->setReConn($_POST['reconn'] == '1'
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
}
$this->mungedObject->setInheritMode(isset($_POST['inherit'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
$this->mungedObject->setCtxMaxConnectionTimeF(!isset($_POST['CtxMaxConnectionTimeF'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
$this->mungedObject->setCtxMaxDisconnectionTimeF(
!isset($_POST['CtxMaxDisconnectionTimeF'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
$this->mungedObject->setCtxMaxIdleTimeF(!isset($_POST['CtxMaxIdleTimeF'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
$this->mungedObject->setConnectClientDrives(isset($_POST['connectclientdrives'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
$this->mungedObject->setConnectClientPrinters(isset($_POST['connectclientprinters'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
$this->mungedObject->setDefaultPrinter(isset($_POST['defaultprinter'])
&& $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite));
/* Save combo boxes. Takes two values */
if(isset($_POST['reconn'])) {
$this->mungedObject->setShadow(isset($_POST['shadow']) && $this->acl_is_writeable("AllowLoginOnTerminalServer",$SkipWrite),$_POST['shadow']);
}
/* Check for changes */
if ($this->sambaMungedDial != $this->mungedObject->getMunged()){
$this->is_modified= TRUE;
}
}
}
}
/* Save to LDAP */
function save()
{
/* Load uid and gid of this 'dn' */
$ldap= $this->config->get_ldap_link();
$ldap->cat($this->dn, array('uidNumber', 'gidNumber'));
$tmp= $ldap->fetch();
$this->uidNumber= $tmp['uidNumber'][0];
$this->gidNumber= $tmp['gidNumber'][0];
plugin::save();
/* Remove objectClass for sambaIdmapEntry */
$tmp= array();
for ($i= 0; $iattrs["objectClass"]); $i++){
if ($this->attrs['objectClass'][$i] != 'sambaIdmapEntry'){
$tmp[]= $this->attrs['objectClass'][$i];
}
}
$this->attrs['objectClass']= $tmp;
/* Generate rid / primaryGroupId */
if ($this->samba3){
if (!isset($this->config->data['SERVERS']['SAMBA'][$this->sambaDomainName]['SID'])){
msg_dialog::display(_("Warning"), _("Undefined Samba SID detected. Please fix this problem manually!"), WARNING_DIALOG);
} else {
$this->SID= $this->config->data['SERVERS']['SAMBA'][$this->sambaDomainName]['SID'];
$this->ridBase= $this->config->data['SERVERS']['SAMBA'][$this->sambaDomainName]['RIDBASE'];
}
/* Need to generate a new uniqe uid/gid combination? */
if ($this->sambaSID == "" || $this->orig_sambaDomainName != $this->sambaDomainName){
$uidNumber= $this->uidNumber;
while(TRUE){
$sid= $this->SID."-".($uidNumber*2 + $this->ridBase);
$ldap->cd($this->config->current['BASE']);
$ldap->search("(sambaSID=$sid)", array("sambaSID"));
if ($ldap->count() == 0){
break;
}
$uidNumber++;
}
$this->attrs['sambaSID']= $sid;
/* Check for users primary group */
$ldap->cd($this->config->current['BASE']);
$ldap->search("(&(objectClass=posixGroup)(gidNumber=".$this->gidNumber."))", array("cn"));
if ($ldap->count() != 1){
msg_dialog::display(_("Warning"), _("Cannot convert primary group to samba group: group cannot be identified!"), WARNING_DIALOG);
} else {
$attrs= $ldap->fetch();
$g= new group($this->config, $ldap->getDN());
if ($g->sambaSID == ""){
$g->sambaDomainName= $this->sambaDomainName;
$g->smbgroup= TRUE;
$g->save ();
}
$this->attrs['sambaPrimaryGroupSID']= $g->sambaSID;
}
}
if ($this->sambaHomeDrive == ""){
$this->attrs["sambaHomeDrive"]= array();
}
/* Generate munged dial value */
$this->attrs["sambaMungedDial"]= $this->mungedObject->getMunged();
/* User wants me to fake the idMappings? This is useful for
making winbind resolve the user names in a reasonable amount
of time in combination with larger databases. */
if ($this->config->get_cfg_value("sambaidmapping") == "true"){
$this->attrs['objectClass'][]= "sambaIdmapEntry";
}
/* Password expiery */
if ($this->password_expires == "1"){
$this->attrs['sambaPwdMustChange']= $this->sambaPwdMustChange;
} else {
$this->attrs['sambaPwdMustChange']= array();
}
/* Make sure not to save zero in sambaPwdLastset */
if ($this->sambaPwdLastSet != "0"){
$this->attrs['sambaPwdLastSet']= $this->sambaPwdLastSet;
} else {
$this->attrs['sambaPwdLastSet']= array();
}
/* Account expiery */
if ($this->logon_time_set == "1"){
$this->attrs['sambaLogonTime']= $this->sambaLogonTime;
} else {
$this->attrs['sambaLogonTime']= array();
}
if ($this->logoff_time_set == "1"){
$this->attrs['sambaLogoffTime']= $this->sambaLogoffTime;
} else {
$this->attrs['sambaLogoffTime']= array();
}
if ($this->kickoff_time_set == "1"){
# Add one day in unixtime format to be compatible with usrmgr
//$this->attrs['sambaKickoffTime']= $this->sambaKickoffTime + 86400;
$this->attrs['sambaKickoffTime']= $this->sambaKickoffTime; //hickert
} else {
$this->attrs['sambaKickoffTime']= array();
}
} else {
/* Not samba3 */
$this->attrs['rid']= $this->uidNumber*2 + 1000;
$this->attrs['primaryGroupID']= $this->gidNumber*2 +1001;
if ($this->homeDrive == ""){
$this->attrs["homeDrive"]= array();
}
/* Password expiery */
if ($this->password_expires == "1"){
$this->attrs['pwdMustChange']= $this->pwdMustChange;
} else {
$this->attrs['pwdMustChange']= 2147483647;
}
/* Make sure not to save zero in pwdLastset */
if ($this->pwdLastSet != "0"){
$this->attrs['pwdLastSet']= $this->pwdLastSet;
} else {
$this->attrs['pwdLastSet']= array();
}
/* Account expiery */
if ($this->logon_time_set == "1"){
$this->attrs['logonTime']= $this->logonTime;
} else {
$this->attrs['logonTime']= array();
}
if ($this->logoff_time_set == "1"){
$this->attrs['logoffTime']= $this->logoffTime;
} else {
$this->attrs['logoffTime']= array();
}
if ($this->kickoff_time_set == "1"){
# Add one day in unixtime format to be compatible with usrmgr
$this->attrs['kickoffTime']= $this->kickoffTime + 86400;
} else {
$this->attrs['kickoffTime']= array();
}
}
/* Write back to ldap */
$ldap->cd($this->dn);
$this->cleanup();
$ldap->modify ($this->attrs);
if($this->initially_was_account){
new log("modify","users/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
}else{
new log("create","users/".get_class($this),$this->dn,array_keys($this->attrs),$ldap->get_error());
}
if (!$ldap->success()){
msg_dialog::display(_("LDAP error"), msgPool::ldaperror($ldap->get_error(), $this->dn, 0, get_class()));
}
/* Optionally execute a command after we're done */
if ($this->initially_was_account == $this->is_account){
if ($this->is_modified){
$this->handle_post_events("modify", array("uid" => $this->uid));
}
} else {
$this->handle_post_events("add", array("uid" => $this->uid));
}
}
/* Force password set, if this account doesn't have any samba passwords */
function password_change_needed()
{
if(!$this->initially_was_account && $this->is_account){
$ldap = $this->config->get_ldap_link();
$ldap->cat($this->dn,array("sambaLMPassword","sambaNTPassword"));
$attrs = $ldap->fetch();
if(!isset($attrs['sambaLMPassword']) || !isset($attrs['sambaNTPassword'])){
return(TRUE);
}
}
return(FALSE);
}
function adapt_from_template($dn, $skip= array())
{
plugin::adapt_from_template($dn, $skip);
$this->sambaSID= "";
$this->sambaPrimaryGroupSID= "";
/* Fill mungedDial field */
if ($this->samba3 && isset($this->attrs['sambaMungedDial']) && !in_array('sambaMungedDial', $skip)){
$this->mungedObject->load($this->sambaMungedDial);
}
/* Adapt munged attributes */
foreach($this->ctxattributes as $attr){
if(isset($this->mungedObject->ctx[$attr]))
$val = $this->mungedObject->ctx[$attr];
foreach (array("sn", "givenName", "uid") as $repl){
if (preg_match("/%$repl/i", $val)){
$val= preg_replace ("/%$repl/i", $this->parent->$repl, $val);
}
}
$this->mungedObject->ctx[$attr] = $val;
}
/* Password expiery */
if(isset($this->attrs['sambaPwdMustChange']) &&
$this->attrs['sambaPwdMustChange'][0] != 0 && !in_array('sambaPwdMustChange', $skip)){
$this->password_expires= 1;
}
if(isset($this->attrs['sambaLogonTime']) && ! (
$this->attrs['sambaLogonTime'][0] == 0 ||
$this->attrs['sambaLogonTime'][0] == 2147483647
) && !in_array('sambaLogonTime', $skip)){
$this->logon_time_set= 1;
}
if(isset($this->attrs['sambaLogoffTime']) && ! (
$this->attrs['sambaLogoffTime'][0] == 0 ||
$this->attrs['sambaLogoffTime'][0] == 2147483647
) && !in_array('sambaLogonTime', $skip)){
$this->logoff_time_set= 1;
}
/* Account expiery */
if(isset($this->attrs['sambaKickoffTime']) && ! (
$this->attrs['sambaKickoffTime'][0] == 0 ||
$this->attrs['sambaKickoffTime'][0] == 2147483647
) && !in_array('sambaKickoffTime', $skip)){
$this->kickoff_time_set= 1;
}
/* Get global filter config */
if (!session::is_set("sambafilter")){
$ui= get_userinfo();
$base= get_base_from_people($ui->dn);
$sambafilter= array( "depselect" => $base, "regex" => "*");
session::set("sambafilter", $sambafilter);
}
}
static function plInfo()
{
return (array(
"plShortName" => _("Samba"),
"plDescription" => _("Samba settings"),
"plSelfModify" => TRUE,
"plDepends" => array("user"),
"plPriority" => 5,
"plSection" => array("personal" => _("My account")),
"plCategory" => array("users"),
"plOptions" => array(),
"plProvidedAcls" => array(
"sambaHomePath" => _("Generic home directory") ,
"sambaHomeDrive" => _("Generic samba home drive") ,
"sambaDomainName" => _("Domain") ,
"sambaLogonScript" => _("Generic script path") ,
"sambaProfilePath" => _("Generic profile path") ,
"AllowLoginOnTerminalServer" => _("Allow login on terminal server"),
"InheritClientConfig" => _("Inherit client config"),
"sambaPwdCanChange" => _("Allow user to change password") ,
"sambaAcctFlagsN" => _("Login from windows client requires no password"),
"sambaAcctFlagsL" => _("Lock samba account"),
"sambaKickoffTime" => _("Account expires") ,
"sambaPwdMustChange" => _("Password expires") ,
"sambaLogonTime" => _("Limit Logon Time") ,
"sambaLogoffTime" => _("Limit Logoff Time") ,
"sambaLogonHours" => _("Logon hours") ,
"sambaUserWorkstations" => _("Allow connection from"))
));
}
function enable_multiple_support()
{
plugin::enable_multiple_support();
if($this->samba3){
$this->multiple_support_active = TRUE;
}else{
$this->multiple_support_active = FALSE;
}
}
function multiple_save_object()
{
if (isset($_POST['sambaTab'])){
$this->save_object();
plugin::multiple_save_object();
foreach(array("allow_pwchange","tslogin","CtxWFHomeDir","CtxWFHomeDirDrive","CtxWFProfilePath",
"inherit","CtxWorkDirectory","CtxInitialProgram","CtxMaxConnectionTimeF","CtxMaxConnectionTime","CtxMaxDisconnectionTimeF",
"CtxMaxDisconnectionTime","CtxMaxIdleTimeF","CtxMaxIdleTime","connectclientdrives",
"onnectclientprinters","defaultprinter","shadow","brokenconn",
"reconn","allow_pwchange","connectclientprinters","no_password_required","temporary_disable",
"password_expires","logon_time_set","logoff_time_set","kickoff_time_set","SetSambaLogonHours",
"workstation_list") as $attr){
if(isset($_POST["use_".$attr])){
$this->multi_boxes[] = $attr;
}
}
}
}
function multiple_check()
{
$message = plugin::multiple_check();
/* Strings */
foreach (array( "sambaHomePath" => _("Home directory"),
"sambaProfilePath" => _("Profile path")) as $key => $val){
if (in_array($key,$this->multi_boxes) && !$this->mungedObject->is_samba_path($this->$key)){
$message[]= msgPool::invalid($val);
}
}
/* Numeric values */
foreach (array( "CtxMaxConnectionTime" => _("Connection"),
"CtxMaxDisconnectionTime" => _("Disconnection"),
"CtxMaxIdleTime" => _("IDLE")) as $key => $val){
if (in_array($key,$this->multi_boxes) &&
isset($this->mungedObject->ctx[$key]) &&
!tests::is_id($this->mungedObject->ctx[$key]) && $val != 0){
$message[]=msgPool::invalid($val);
}
}
/* Too many workstations? Windows usrmgr only supports eight */
if (substr_count($this->sambaUserWorkstations, ",") >= 8){
$message[]= _("The windows user manager only allows eight clients. You've specified more than eight.");
}
return($message);
}
function get_multi_init_values()
{
$ret = plugin::get_multi_init_values();
/* Parse given sambaUserWorkstations into array
* to allow "init_multiple_support()" to detect multiple used workstations.
* Those workstations will be displayed in light grey.
*/
$tmp2 = array("count" => 0);
$tmp = split(",", $this->sambaUserWorkstations);
foreach($tmp as $station){
$station = trim($station);
if(!empty($station)){
$tmp2[] = $station;
$tmp2['count'] ++;
}
}
$ret['sambaUserWorkstations'] = $tmp2;
return($ret);
}
function init_multiple_support($attrs,$all)
{
plugin::init_multiple_support($attrs,$all);
$this->multiple_sambaUserWorkstations = array();
if(isset($all['sambaUserWorkstations'])){
for($i = 0 ; $i < $all['sambaUserWorkstations']['count'] ; $i++){
$station = trim($all['sambaUserWorkstations'][$i]);
$this->multiple_sambaUserWorkstations[$station] = array("Name" => $station, "UsedByAllUsers" => FALSE);
}
}
if(isset($attrs['sambaUserWorkstations'])){
for($i = 0 ; $i < $attrs['sambaUserWorkstations']['count'] ; $i++){
$station = trim($attrs['sambaUserWorkstations'][$i]);
$this->multiple_sambaUserWorkstations[$station] = array("Name" => $station, "UsedByAllUsers" => TRUE);
}
}
}
function multiple_execute()
{
return($this->execute());
}
function get_multi_edit_values()
{
$ret = plugin::get_multi_edit_values();
/* Terminal Server */
if(in_array("tslogin",$this->multi_boxes)){
$ret['tslogin'] = $this->mungedObject->getTsLogin();
}
if(in_array("CtxWFHomeDirDrive",$this->multi_boxes)){
$ret['CtxWFHomeDirDrive'] = $this->mungedObject->ctx['CtxWFHomeDirDrive'];
}
if(in_array("CtxWFHomeDir",$this->multi_boxes)){
$ret['CtxWFHomeDir'] = $this->mungedObject->ctx['CtxWFHomeDir'];
}
if(in_array("CtxWFProfilePath",$this->multi_boxes)){
$ret['CtxWFProfilePath'] = $this->mungedObject->ctx['CtxWFProfilePath'];
}
if(in_array("inherit",$this->multi_boxes)){
$ret['inherit'] = $this->mungedObject->getInheritMode();
}
if(in_array("CtxInitialProgram",$this->multi_boxes)){
$ret['CtxInitialProgram'] = $this->mungedObject->ctx['CtxInitialProgram'];
}
if(in_array("CtxWorkDirectory",$this->multi_boxes)){
$ret['CtxWorkDirectory'] = $this->mungedObject->ctx['CtxWorkDirectory'];
}
/* Time Limits. Be careful here, there are some negations */
if(in_array("CtxMaxConnectionTimeF",$this->multi_boxes)){
$ret["CtxMaxConnectionTimeF"] = !$this->mungedObject->getCtxMaxConnectionTimeF();
if(!$ret["CtxMaxConnectionTimeF"]){
$ret["CtxMaxConnectionTime"] = $this->mungedObject->ctx['CtxMaxConnectionTime'];
}
}
if(in_array("CtxMaxDisconnectionTimeF",$this->multi_boxes)){
$ret["CtxMaxDisconnectionTimeF"]= !$this->mungedObject->getCtxMaxDisconnectionTimeF();
if(!$ret["CtxMaxDisconnectionTimeF"]){
$ret["CtxMaxDisconnectionTime"]= $this->mungedObject->ctx['CtxMaxDisconnectionTime'];
}
}
if(in_array("CtxMaxIdleTimeF",$this->multi_boxes)){
$ret["CtxMaxIdleTimeF"] = !$this->mungedObject->getCtxMaxIdleTimeF();
if(!$ret["CtxMaxIdleTimeF"]){
$ret["CtxMaxIdleTime"] = $this->mungedObject->ctx['CtxMaxIdleTime'];
}
}
/* Client Devices */
if(in_array("connectclientdrives",$this->multi_boxes)){
$ret["connectclientdrives"] = $this->mungedObject->getConnectClientDrives();
}
if(in_array("connectclientprinters",$this->multi_boxes)){
$ret["connectclientprinters"] = $this->mungedObject->getConnectClientPrinters();
}
if(in_array("defaultprinter",$this->multi_boxes)){
$ret["defaultprinter"] = $this->mungedObject->getDefaultPrinter();
}
/* Misc */
if(in_array("shadow",$this->multi_boxes)){
$ret["shadow"] =$this->mungedObject->getShadow();
}
if(in_array("brokenconn",$this->multi_boxes)){
$ret["brokenconn"]=$this->mungedObject->getBrokenConn();
}
if(in_array("reconn",$this->multi_boxes)){
$ret["reconn"] =$this->mungedObject->getReConn();
}
/* Flags */
if(in_array("allow_pwchange",$this->multi_boxes)){
$ret['sambaPwdCanChange'] = $this->sambaPwdCanChange;
$ret['pwdCanChange'] = $this->pwdCanChange;
}
if(in_array("password_expires",$this->multi_boxes)){
$ret['password_expires'] = $this->password_expires;
$ret['sambaPwdMustChange']= $this->sambaPwdMustChange;
}
if(in_array("logon_time_set",$this->multi_boxes)){
$ret['logon_time_set'] = $this->logon_time_set;
$ret['sambaLogonTime'] = $this->sambaLogonTime;
}
if(in_array("logoff_time_set",$this->multi_boxes)){
$ret['logoff_time_set'] = $this->logoff_time_set;
$ret['sambaLogoffTime'] = $this->sambaLogoffTime;
}
if(in_array("kickoff_time_set",$this->multi_boxes)){
$ret['kickoff_time_set'] = $this->kickoff_time_set;
$ret['sambaKickoffTime'] = $this->sambaKickoffTime;
}
if(in_array("no_password_required",$this->multi_boxes)){
$ret['no_password_required'] = $this->no_password_required;
}
if(in_array("temporary_disable",$this->multi_boxes)){
$ret['temporary_disable'] = $this->temporary_disable;
}
if(in_array("SetSambaLogonHours",$this->multi_boxes)){
$ret['sambaLogonHours'] = $this->sambaLogonHours;
}
if(in_array("workstation_list",$this->multi_boxes)){
$ret['multiple_sambaUserWorkstations'] = $this->multiple_sambaUserWorkstations;
}
return($ret);
}
function set_multi_edit_values($values)
{
plugin::set_multi_edit_values($values);
/* Prepare current workstation settings to be merged
* with multiple edit settings.
*/
if(isset($values['multiple_sambaUserWorkstations'])){
$cur_ws = array();
$m_ws = $values['multiple_sambaUserWorkstations'];
/* Prepare current settings to be merged */
if(isset($this->sambaUserWorkstations)){
$ttmp = split(",",$this->sambaUserWorkstations);
foreach($ttmp as $station){
$station = trim($station);
if(!empty($station)){
$cur_ws[$station] = array("Name" => $station, "UsedByAllUsers" => TRUE);
}
}
}
/* Unset removed workstations */
foreach($cur_ws as $cur_name => $cur_station){
if(!isset($m_ws[$cur_name])){
unset($cur_ws[$cur_name]);
}
}
/* Add all added workstations */
foreach($m_ws as $name => $station){
if($station['UsedByAllUsers']){
$cur_ws[$name] = $station;
}
}
$this->sambaUserWorkstations = "";
foreach($cur_ws as $name => $ws){
$this->sambaUserWorkstations .= $name.",";
}
$this->sambaUserWorkstations=preg_replace("/,$/","",$this->sambaUserWorkstations);
}
/* Enable disabled terminal login, this is inverted somehow */
if(isset($values['tslogin'])) $this->mungedObject->setTsLogin(!$values['tslogin']);
/* Imherit client configuration */
if(isset($values['inherit'])) $this->mungedObject->setInheritMode($values['inherit']);
/* Get all ctx values posted */
$ctx = array("CtxWFHomeDirDrive","CtxWFHomeDir","CtxWFProfilePath","CtxInitialProgram","CtxWorkDirectory",
"CtxMaxConnectionTime","CtxMaxDisconnectionTime","CtxMaxIdleTime");
foreach($ctx as $attr){
if(isset($values[$attr])){
$this->mungedObject->ctx[$attr] = $values[$attr] ;
}
}
if(isset($values['CtxMaxConnectionTimeF'])) $this->mungedObject->setCtxMaxConnectionTimeF($values['CtxMaxConnectionTimeF']);
if(isset($values['CtxMaxDisconnectionTimeF']))$this->mungedObject->setCtxMaxDisconnectionTimeF($values['CtxMaxDisconnectionTimeF']);
if(isset($values['CtxMaxIdleTimeF'])) $this->mungedObject->setCtxMaxIdleTimeF($values['CtxMaxIdleTimeF']);
if(isset($values['connectclientdrives'])) $this->mungedObject->setConnectClientDrives($values['connectclientdrives']);
if(isset($values['connectclientprinters'])) $this->mungedObject->setConnectClientPrinters($values['connectclientprinters']);
if(isset($values['defaultprinter'])) $this->mungedObject->setDefaultPrinter($values['defaultprinter']);
if(isset($values['shadow'])) $this->mungedObject->setShadow($values['shadow'],$values['shadow']);
if(isset($values['brokenconn'])) $this->mungedObject->setBrokenConn($values['brokenconn'],$values['brokenconn']);
if(isset($values['reconn'])) $this->mungedObject->setReConn($values['reconn'],$values['reconn']);
if(isset($values['sambaPwdCanChange'])) $this->sambaPwdCanChange = $values['sambaPwdCanChange'];
if(isset($values['pwdCanChange'])) $this->pwdCanChange = $values['pwdCanChange'];
if(isset($values['password_expires'])){
$this->password_expires = $values['password_expires'];
$this->sambaPwdMustChange = $values['sambaPwdMustChange'];
}
if(isset($values['logon_time_set'])){
$this->logon_time_set = $values['logon_time_set'];
$this->sambaLogonTime = $values['sambaLogonTime'];
}
if(isset($values['logoff_time_set'])){
$this->logoff_time_set = $values['logoff_time_set'];
$this->sambaLogoffTime = $values['sambaLogoffTime'];
}
if(isset($values['kickoff_time_set'])){
$this->kickoff_time_set = $values['kickoff_time_set'];
$this->sambaKickoffTime = $values['sambaKickoffTime'];
}
if(isset($values['no_password_required'])){
if($values['no_password_required']){
if(!preg_match("/N/",$this->sambaAcctFlags)) {
$this->sambaAcctFlags = preg_replace("/ /","N",$this->sambaAcctFlags,1);
}
}else{
$this->sambaAcctFlags = preg_replace("/N/"," ",$this->sambaAcctFlags,1);
}
}
if(isset($values['temporary_disable'])){
if($values['temporary_disable']){
if(preg_match("/L/",$this->sambaAcctFlags)) {
// Keep L
}else{
$this->sambaAcctFlags = preg_replace("/ /","D",$this->sambaAcctFlags,1);
}
}else{
$this->sambaAcctFlags = preg_replace("/D/"," ",$this->sambaAcctFlags,1);
}
}
}
function PrepareForCopyPaste($source)
{
plugin::PrepareForCopyPaste($source);
/* Set a new SID */
$this->sambaSID = "";
}
}
// vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler:
?>