diff --git a/html/getldif.php b/html/getldif.php
index 63d9636967b885d31642292083b2ce64b12af7fd..95964d3ffec95077440beef2b3e41da39acb23dc 100644 (file)
--- a/html/getldif.php
+++ b/html/getldif.php
$display = "";
$display = "";
- if($mode == 2){ // Single Entry Export !
- $dn = base64_decode($_GET['dn']);
- $display = $ldap->gen_one_entry($dn);
- echo $display;
- }
- elseif($mode == 3){ // Full LDIF Export !
- $dn = base64_decode($_GET['dn']);
- $display = $ldap->gen_ldif($dn);
- echo $display;
- }
- elseif($mode == 4){ // IVBB LDIF Export
- $dn = base64_decode($_GET['dn']);
- $display= $ldap->gen_ldif($dn,"(objectClass=ivbbEntry)",array(
- "GouvernmentOrganizationalUnit","houseIdentifier","vocation",
- "ivbbLastDeliveryCollective","gouvernmentOrganizationalPersonLocality",
- "gouvernmentOrganizationalUnitDescription","gouvernmentOrganizationalUnitSubjectArea",
- "functionalTitle","role","certificateSerialNumber","userCertificate","publicVisible",
- "telephoneNumber","seeAlso","description","title","x121Address","registeredAddress",
- "destinationIndicator","preferredDeliveryMethod","telexNumber","teletexTerminalIdentifier",
- "telephoneNumber","internationaliSDNNumber","facsimileTelephoneNumber","street",
- "postOfficeBox","postalCode","postalAddress","physicalDeliveryOfficeName","ou",
- "st","l","audio","businessCategory","carLicense","departmentNumber","displayName",
- "employeeNumber","employeeType","givenName","homePhone","homePostalAddress",
- "initials","jpegPhoto","labeledURI","mail","manager","mobile","o","pager","photo",
- "roomNumber","secretary","userCertificate","x500uniqueIdentifier","preferredLanguage",
- "userSMIMECertificate","userPKCS12"));
-
- echo $display;
+ if($mode == 2){ // Single Entry Export !
+ $dn = base64_decode($_GET['dn']);
+ $display = $ldap->gen_one_entry($dn);
+ echo $display;
+ }
+ elseif($mode == 3){ // Full LDIF Export !
+ $dn = base64_decode($_GET['dn']);
+ $display = $ldap->gen_ldif($dn);
+ echo $display;
+ }
+ elseif($mode == 4){ // IVBB LDIF Export
+ $dn = base64_decode($_GET['dn']);
+ $display= $ldap->gen_ldif($dn,"(objectClass=ivbbentry)",array(
+ "GouvernmentOrganizationalUnit","houseIdentifier","vocation",
+ "ivbbLastDeliveryCollective","gouvernmentOrganizationalPersonLocality",
+ "gouvernmentOrganizationalUnitDescription","gouvernmentOrganizationalUnitSubjectArea",
+ "functionalTitle","role","certificateSerialNumber","userCertificate","publicVisible",
+ "telephoneNumber","seeAlso","description","title","x121Address","registeredAddress",
+ "destinationIndicator","preferredDeliveryMethod","telexNumber","teletexTerminalIdentifier",
+ "telephoneNumber","internationaliSDNNumber","facsimileTelephoneNumber","street",
+ "postOfficeBox","postalCode","postalAddress","physicalDeliveryOfficeName","ou",
+ "st","l","audio","businessCategory","carLicense","departmentNumber","displayName",
+ "employeeNumber","employeeType","givenName","homePhone","homePostalAddress",
+ "initials","jpegPhoto","labeledURI","mail","manager","mobile","o","pager","photo",
+ "roomNumber","secretary","userCertificate","x500uniqueIdentifier","preferredLanguage",
+ "userSMIMECertificate","userPKCS12"));
+
+ echo $display;
}
}
}
}
/* Basic setup, remove eventually registered sessions */
@require_once ("../include/php_setup.inc");
@require_once ("functions.inc");
/* Basic setup, remove eventually registered sessions */
@require_once ("../include/php_setup.inc");
@require_once ("functions.inc");
-error_reporting (E_ALL);
+error_reporting (E_ALL | E_STRICT);
session_start ();
/* Logged in? Simple security check */
if (!isset($_SESSION['ui'])){
session_start ();
/* Logged in? Simple security check */
if (!isset($_SESSION['ui'])){
- gosa_log ("Error: getldif.php called without session");
- header ("Location: ../index.php");
+ new log("security","all/all","",array(),"Error: getldif.php called without session") ;
+ header ("Location: index.php");
exit;
}
$ui= $_SESSION["ui"];
$config= $_SESSION['config'];
exit;
}
$ui= $_SESSION["ui"];
$config= $_SESSION['config'];
+/* Check ACL's */
+$dn = base64_decode($_GET['dn']);
+$acl = $ui->get_permissions($dn,"ldapmanager/ldifexport");
+if(!preg_match("/r/",$acl)){
+ echo "insufficient permissions";
+ exit();
+}
+
+
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
header("Cache-Control: no-cache");
header("Expires: Mon, 26 Jul 1997 05:00:00 GMT");
header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
header("Cache-Control: no-cache");
header("Content-type: text/plain");
header("Content-type: text/plain");
-/* Check ACL's */
-$acl= get_permissions ($config->current['BASE'], $ui->subtreeACL);
-$acl= get_module_permission($acl, "all", $config->current['BASE']);
-if (chkacl($acl, "all") != ""){
- header ("Location: ../index.php");
- exit;
-}
switch ($_GET['ivbb']){
switch ($_GET['ivbb']){
- case 2: dump_ldap (2);
- break;
+ case 2: dump_ldap (2);
+ break;
- case 3: dump_ldap (3);
- break;
+ case 3: dump_ldap (3);
+ break;
- case 4: dump_ldap (4);
- break;
-
- default:
- echo "Error in ivbb parameter. Request aborted.";
- }
+ case 4: dump_ldap (4);
+ break;
+
+ default:
+ echo "Error in ivbb parameter. Request aborted.";
+}
// vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler:
?>
// vim:tabstop=2:expandtab:shiftwidth=2:filetype=php:syntax:ruler:
?>