X-Git-Url: https://git.tokkee.org/?a=blobdiff_plain;f=gosa-core%2Finclude%2Fclass_config.inc;h=481da05236d2f7d39cdca2c3e8db040025fd97ab;hb=06cc53394cf695b3bc663073e526d7d94e4bb2d6;hp=42587d2072b00b57820a818d11de3dfd042d5773;hpb=c853ccc6a86f6afcd66572ac455edfab23866c62;p=gosa.git diff --git a/gosa-core/include/class_config.inc b/gosa-core/include/class_config.inc index 42587d207..481da0523 100644 --- a/gosa-core/include/class_config.inc +++ b/gosa-core/include/class_config.inc @@ -1,7 +1,9 @@ + * This code is part of GOsa (http://www.gosa-project.org) + * Copyright (C) 2003-2008 GONICUS GmbH + * + * ID: $$Id$$ * * This program is free software; you can redistribute it and/or modify * it under the terms of the GNU General Public License as published by @@ -41,6 +43,7 @@ class config { 'MAIN' => array(), 'MENU' => array(), 'SERVICE' => array()); var $basedir= ""; + var $config_version =""; /* Keep a copy of the current deparment list */ var $departments= array(); @@ -67,6 +70,22 @@ class config { function check_and_reload() { + global $ui; + + /* Check if class_location.inc has changed, this is the case + if we have installed or removed plugins. + */ + if(session::is_set("class_location.inc:timestamp")){ + $tmp = stat("../include/class_location.inc"); + if($tmp['mtime'] != session::get("class_location.inc:timestamp")){ + session::un_set("plist"); + } + } + $tmp = stat("../include/class_location.inc"); + session::set("class_location.inc:timestamp",$tmp['mtime']); + + + if($this->filename != "" && filemtime($this->filename) != $this->last_modified){ $this->config_found= FALSE; @@ -80,15 +99,15 @@ class config { xml_set_object($this->parser, $this); xml_set_element_handler($this->parser, "tag_open", "tag_close"); $this->parse($this->filename); - if(session::is_set('plist')){ - session::un_set('plist'); - } - if(session::is_set('plug')){ - session::un_set('plug'); - } - if(isset($_GET['plug'])){ - unset($_GET['plug']); - } +# if(session::is_set('plist')){ +# session::un_set('plist'); +# } +# if(session::is_set('plug')){ +# session::un_set('plug'); +# } +# if(isset($_GET['plug'])){ +# unset($_GET['plug']); +# } } } @@ -104,13 +123,13 @@ class config { $msg = sprintf(_("XML error in gosa.conf: %s at line %d"), xml_error_string(xml_get_error_code($this->parser)), xml_get_current_line_number($this->parser)); - msg_dialog::display(_("Config file parsing"), $msg, FATAL_ERROR_DIALOG); + msg_dialog::display(_("Configuration error"), $msg, FATAL_ERROR_DIALOG); exit; } } function tag_open($parser, $tag, $attrs) - { + { /* Save last and current tag for reference */ $this->tags[$this->level]= $tag; $this->level++; @@ -118,6 +137,9 @@ class config { /* Trigger on CONF section */ if ($tag == 'CONF'){ $this->config_found= TRUE; + if(isset($attrs['CONFIGVERSION'])){ + $this->config_version = $attrs['CONFIGVERSION']; + } } /* Return if we're not in config section */ @@ -154,11 +176,13 @@ class config { case 'LOCATION': if ($this->tags[$this->level-2] == 'MAIN'){ $name= $attrs['NAME']; + $name = preg_replace("/[<>\"']/","",$name); + $attrs['NAME'] = $name; $this->currentLocation= $name; /* Add location elements */ - $this->data['LOCATIONS'][$name]= $attrs; - } + $this->data['LOCATIONS'][$name]= $attrs; + } break; /* Handle referral tags */ @@ -212,45 +236,62 @@ class config { $this->level--; } + + function get_credentials($creds) + { + if (isset($_SERVER['HTTP_GOSA_KEY'])){ + return (cred_decrypt($creds, $_SERVER['HTTP_GOSA_KEY'])); + } + return ($creds); + } + + function get_ldap_link($sizelimit= FALSE) { - /* Build new connection */ - $this->ldap= ldap_init ($this->current['SERVER'], $this->current['BASE'], - $this->current['ADMIN'], $this->current['PASSWORD']); + if($this->ldap === NULL || !is_resource($this->ldap->cid)){ - /* Check for connection */ - if (is_null($this->ldap) || (is_int($this->ldap) && $this->ldap == 0)){ - $smarty= get_smarty(); - msg_dialog::display(_("LDAP error"), _("Can't bind to LDAP. Please contact the system administrator."), ERROR_DIALOG); - display_error_page(); - } + /* Build new connection */ + $this->ldap= ldap_init ($this->current['SERVER'], $this->current['BASE'], + $this->current['ADMIN'], $this->get_credentials($this->current['PASSWORD'])); - if (!session::is_set('size_limit')){ - session::set('size_limit',$this->current['SIZELIMIT']); - session::set('size_ignore',$this->current['SIZEIGNORE']); - } + /* Check for connection */ + if (is_null($this->ldap) || (is_int($this->ldap) && $this->ldap == 0)){ + $smarty= get_smarty(); + msg_dialog::display(_("LDAP error"), _("Cannot bind to LDAP. Please contact the system administrator."), FATAL_ERROR_DIALOG); + exit(); + } - if ($sizelimit){ - $this->ldap->set_size_limit(session::get('size_limit')); - } else { - $this->ldap->set_size_limit(0); - } + if (!session::is_set('size_limit')){ + session::set('size_limit',$this->current['SIZELIMIT']); + session::set('size_ignore',$this->current['SIZEIGNORE']); + } - /* Move referrals */ - if (!isset($this->current['REFERRAL'])){ - $this->ldap->referrals= array(); - } else { - $this->ldap->referrals= $this->current['REFERRAL']; + if ($sizelimit){ + $this->ldap->set_size_limit(session::get('size_limit')); + } else { + $this->ldap->set_size_limit(0); + } + + /* Move referrals */ + if (!isset($this->current['REFERRAL'])){ + $this->ldap->referrals= array(); + } else { + $this->ldap->referrals= $this->current['REFERRAL']; + } } - return ($this->ldap); + return new ldapMultiplexer($this->ldap); } function set_current($name) { $this->current= $this->data['LOCATIONS'][$name]; - if (!isset($this->current['PEOPLE'])){ - $this->current['PEOPLE']= "ou=people"; + + if (!isset($this->current['SAMBAVERSION'])){ + $this->current['SAMBAVERSION']= 3; + } + if (!isset($this->current['USERRDN'])){ + $this->current['USERRDN']= "ou=people"; } if (!isset($this->current['GROUPS'])){ $this->current['GROUPS']= "ou=groups"; @@ -262,7 +303,7 @@ class config { /* Remove possibly added ',' from end of group and people ou */ $this->current['GROUPS'] = preg_replace("/,*$/","",$this->current['GROUPS']); - $this->current['PEOPLE'] = preg_replace("/,*$/","",$this->current['PEOPLE']); + $this->current['USERRDN'] = preg_replace("/,*$/","",$this->current['USERRDN']); if (!isset($this->current['WINSTATIONS'])){ $this->current['WINSTATIONS']= "ou=winstations,ou=systems"; @@ -270,8 +311,8 @@ class config { if (!isset($this->current['HASH'])){ $this->current['HASH']= "crypt"; } - if (!isset($this->current['DNMODE'])){ - $this->current['DNMODE']= "cn"; + if (!isset($this->current['ACCOUNTPRIMARYATTRIBUTE'])){ + $this->current['ACCOUNTPRIMARYATTRIBUTE']= "cn"; } if (!isset($this->current['MINID'])){ $this->current['MINID']= 100; @@ -344,38 +385,64 @@ class config { if ($this->current['MAILMETHOD'] == ""){ $ldap->search ("(objectClass=goMailServer)", array('cn')); $this->data['SERVERS']['IMAP']= array(); - error_reporting(0); while ($attrs= $ldap->fetch()){ $name= $attrs['cn'][0]; - $this->data['SERVERS']['IMAP'][$name]= $name; + $this->data['SERVERS']['IMAP'][$name]= + array( + "server_dn" => $attrs['dn'], + "connect" => "", + "admin" => "", + "password" => "", + "sieve_server"=> "", + "sieve_option"=> "", + "sieve_port" => ""); } - error_reporting(E_ALL); } else { - $ldap->search ("(objectClass=goImapServer)", array('goImapName', 'goImapConnect', 'goImapAdmin', 'goImapPassword', + $ldap->search ("(&(objectClass=goImapServer)(goImapSieveServer=*))", + array('goImapName', 'goImapConnect', 'goImapAdmin', 'goImapPassword', 'goImapSieveServer', 'goImapSievePort')); $this->data['SERVERS']['IMAP']= array(); - error_reporting(0); + while ($attrs= $ldap->fetch()){ - $name= $attrs['goImapName'][0]; - $this->data['SERVERS']['IMAP'][$name]= array( "connect" => $attrs['goImapConnect'][0], - "admin" => $attrs['goImapAdmin'][0], - "password" => $attrs['goImapPassword'][0], - "sieve_server" => $attrs['goImapSieveServer'][0], - "sieve_port" => $attrs['goImapSievePort'][0]); + + /* Check if the given goImapSieveServer is in the new style "{cn:port/option}" + or the old style just "cn". + */ + if(preg_match("/\{/",$attrs['goImapSieveServer'][0])){ + $sieve_server = preg_replace("/^\{([^:]*).*$/","\\1",$attrs['goImapSieveServer'][0]); + $sieve_option = preg_replace("/^[^:]*[^\/]*+\/(.*)\}$/","\\1",$attrs['goImapSieveServer'][0]); + }else{ + $sieve_server = $attrs['goImapSieveServer'][0]; + $sieve_option = ""; + } + + $pwd = $attrs['goImapPassword'][0]; + $imap_admin = $attrs['goImapAdmin'][0]; + $imap_connect = $attrs['goImapConnect'][0]; + $imap_server = $attrs['goImapName'][0]; + $sieve_port = $attrs['goImapSievePort'][0]; + + $this->data['SERVERS']['IMAP'][$imap_server]= + array( + "server_dn" => $attrs['dn'], + "connect" => $imap_connect, + "admin" => $imap_admin, + "password" => $pwd, + "sieve_server"=> $sieve_server, + "sieve_option"=> $sieve_option, + "sieve_port" => $sieve_port); } - error_reporting(E_ALL); } /* Get kerberos server. FIXME: only one is supported currently */ $ldap->cd ($this->current['BASE']); - $ldap->search ("(objectClass=goKrbServer)"); + $ldap->search ("(&(goKrbRealm=*)(goKrbAdmin=*)(objectClass=goKrbServer))"); if ($ldap->count()){ $attrs= $ldap->fetch(); $this->data['SERVERS']['KERBEROS']= array( 'SERVER' => $attrs['cn'][0], 'REALM' => $attrs['goKrbRealm'][0], - 'ADMIN' => $attrs['goKrbAdmin'][0], - 'PASSWORD' => $attrs['goKrbPassword'][0]); + 'ADMIN' => $attrs['goKrbAdmin'][0]); } /* Get cups server. FIXME: only one is supported currently */ @@ -456,8 +523,12 @@ class config { $ldap->search ("(objectClass=goLogDBServer)"); if ($ldap->count()){ $attrs= $ldap->fetch(); + if(!isset($attrs['goLogDB'][0])){ + $attrs['goLogDB'][0] = "gomon"; + } $this->data['SERVERS']['LOG']= array( 'SERVER' => $attrs['cn'][0], 'LOGIN' => $attrs['goLogAdmin'][0], + 'DB' => $attrs['goLogDB'][0], 'PASSWORD' => $attrs['goLogPassword'][0]); } @@ -494,16 +565,18 @@ class config { /* Load Terminalservers */ $ldap->cd ($this->current['BASE']); - $ldap->search ("(objectClass=goTerminalServer)"); + $ldap->search ("(objectClass=goTerminalServer)",array("cn","gotoSessionType")); $this->data['SERVERS']['TERMINAL']= array(); $this->data['SERVERS']['TERMINAL'][]= "default"; + $this->data['SERVERS']['TERMINAL_SESSION_TYPES'] = array(); + - $this->data['SERVERS']['FONT']= array(); - $this->data['SERVERS']['FONT'][]= "default"; while ($attrs= $ldap->fetch()){ $this->data['SERVERS']['TERMINAL'][]= $attrs["cn"][0]; - for ($i= 0; $i<$attrs["goFontPath"]["count"]; $i++){ - $this->data['SERVERS']['FONT'][]= $attrs["goFontPath"][$i]; + if(isset( $attrs["gotoSessionType"]['count'])){ + for($i =0 ; $i < $attrs["gotoSessionType"]['count'] ; $i++){ + $this->data['SERVERS']['TERMINAL_SESSION_TYPES'][$attrs["cn"][0]][] = $attrs["gotoSessionType"][$i]; + } } } @@ -551,8 +624,8 @@ class config { /* If no samba servers are found, look for configured sid/ridbase */ if (count($this->data['SERVERS']['SAMBA']) == 0){ if (!isset($this->current["SID"]) || !isset($this->current["RIDBASE"])){ - msg_dialog::display(_("Configuration error"), _("SID and/or RIDBASE missing in the configuration!"), ERROR_DIALOG); - display_error_page(); + msg_dialog::display(_("Configuration error"), _("SID and/or RIDBASE missing in the configuration!"), FATAL_ERROR_DIALOG); + exit(); } else { $this->data['SERVERS']['SAMBA']['DEFAULT']= array( "SID" => $this->current["SID"], @@ -573,11 +646,41 @@ class config { $result['/']= $this->current['BASE']; $this->tdepartments= array(); + /* Get all department types from department Management, to be able detect the department type. + -It is possible that differnty department types have the same name, + in this case we have to mark the department name to be able to differentiate. + (e.g l=Name or o=Name) + */ + $types = departmentManagement::get_support_departments(); + + /* Create a list of attributes to fetch */ + $ldap_values = array("objectClass","gosaUnitTag"); + $filter = ""; + foreach($types as $type){ + $ldap_values[] = $type['ATTR']; + $filter .= "(objectClass=".$type['OC'].")"; + } + $filter = "(&(objectClass=gosaDepartment)(|".$filter."))"; + /* Get list of department objects */ $ldap= $this->get_ldap_link(); $ldap->cd ($this->current['BASE']); - $ldap->search ("(objectClass=gosaDepartment)", array("ou", "objectClass", "gosaUnitTag")); + $ldap->search ($filter, $ldap_values); while ($attrs= $ldap->fetch()){ + + /* Detect department type */ + $type_data = array(); + foreach($types as $t => $data){ + if(in_array($data['OC'],$attrs['objectClass'])){ + $type_data = $data; + break; + } + } + + /* Unknown department type -> skip + */ + if(!count($type_data)) continue; + $dn= $ldap->getDN(); $this->tdepartments[$dn]= ""; @@ -597,9 +700,11 @@ class config { continue; } + $c_dn = convert_department_dn($dn)." (".$type_data['ATTR'].")"; + /* Only assign non-root departments */ if ($dn != $result['/']){ - $result[convert_department_dn($dn)]= $dn; + $result[$c_dn]= $dn; } } @@ -625,53 +730,52 @@ class config { if (isset($config->current['STRICT_UNITS']) && preg_match('/true/i', $config->current['STRICT_UNITS'])){ if ($ui->gosaUnitTag != "" && isset($this->tdepartments[$val]) && $this->tdepartments[$val] != $ui->gosaUnitTag){ - continue; +# continue; } } - /* remove base from dn */ - $val2 = str_replace($base,"",$val); - - /* Get every single ou */ - $str = preg_replace("/ou=/","|ou=",$val2); - $elements = array_reverse(split("\|",$str)); - - /* Save last array position */ - $last = &$arr; - - /* Get array depth */ - $cnt = count($elements); + /* Split dn into single department pieces. + */ + $elements = array_reverse(split(",",preg_replace("/".normalizePreg($base)."$/","",$val))); /* Add last ou element of current dn to our array */ + $last = &$arr; foreach($elements as $key => $ele){ - /* skip enpty */ + /* skip empty */ if(empty($ele)) continue; /* Extract department name */ - $elestr = preg_replace("/^ou=/","", $ele); - $elestr = preg_replace("/,$/","",$elestr); + $elestr = trim(preg_replace("/^[^=]*+=/","", $ele),","); + $nameA = trim(preg_replace("/=.*$/","", $ele),","); + if($nameA != "ou"){ + $nameA = " (".$nameA.")"; + }else{ + $nameA = ""; + } + /* Add to array */ - if($key == ($cnt-2)){ - $last[$elestr]['ENTRY'] = $val; + if($key == (count($elements)-1)){ + $last[$elestr.$nameA]['ENTRY'] = $val; } /* Set next array appending position */ - $last = &$last[$elestr]['SUB']; + $last = &$last[$elestr.$nameA]['SUB']; } } + /* Add base entry */ $ret["/"]["ENTRY"] = $base; $ret["/"]["SUB"] = $arr; - $this->idepartments= $this->generateDepartmentArray($ret,-1,$max_size); } /* Creates display friendly output from make_idepartments */ - function generateDepartmentArray($arr,$depth = -1,$max_size){ + function generateDepartmentArray($arr,$depth = -1,$max_size) + { $ret = array(); $depth ++; @@ -686,7 +790,7 @@ class config { } /* Fix name, if it contains a replace tag */ - $name= @LDAP::fix($name); + $name= preg_replace('/\\\\,/', ',', @LDAP::fix($name)); /* Check if current name is too long, then cut it */ if(mb_strlen($name, 'UTF-8')> $max_size){ @@ -718,39 +822,35 @@ class config { */ function getShareList($listboxEntry = false) { - $ldap= $this->get_ldap_link(); - $base = $this->current['BASE']; - $res= get_list("(&(objectClass=goShareServer)(goExportEntry=*))","server",$base,array("goExportEntry","cn"),GL_SUBSEARCH); - $return = array(); + $tmp = get_sub_list("(&(objectClass=goShareServer)(goExportEntry=*))","server",get_ou("serverou"), + $this->current['BASE'],array("goExportEntry","cn"), GL_NONE); + $return =array(); + foreach($tmp as $entry){ - foreach($res as $entry){ - if(obj_is_readable($entry['dn'], "server/goShareServer","goExportEntry")){ - - if(isset($entry['goExportEntry']['count'])){ - unset($entry['goExportEntry']['count']); - } - if(isset($entry['goExportEntry'])){ - foreach($entry['goExportEntry'] as $export){ - $shareAttrs = split("\|",$export); - if($listboxEntry) { - $return[$shareAttrs[0]."|".$entry['cn'][0]] = $shareAttrs[0]." - ".$entry['cn'][0]; - }else{ - $return[$shareAttrs[0]."|".$entry['cn'][0]]['server'] = $entry['cn'][0]; - $return[$shareAttrs[0]."|".$entry['cn'][0]]['name'] = $shareAttrs[0]; - $return[$shareAttrs[0]."|".$entry['cn'][0]]['description'] = $shareAttrs[1]; - $return[$shareAttrs[0]."|".$entry['cn'][0]]['type'] = $shareAttrs[2]; - $return[$shareAttrs[0]."|".$entry['cn'][0]]['charset'] = $shareAttrs[3]; - $return[$shareAttrs[0]."|".$entry['cn'][0]]['path'] = $shareAttrs[4]; - $return[$shareAttrs[0]."|".$entry['cn'][0]]['option'] = $shareAttrs[5]; - } + if(isset($entry['goExportEntry']['count'])){ + unset($entry['goExportEntry']['count']); + } + if(isset($entry['goExportEntry'])){ + foreach($entry['goExportEntry'] as $export){ + $shareAttrs = split("\|",$export); + if($listboxEntry) { + $return[$shareAttrs[0]."|".$entry['cn'][0]] = $shareAttrs[0]." - ".$entry['cn'][0]; + }else{ + $return[$shareAttrs[0]."|".$entry['cn'][0]]['server'] = $entry['cn'][0]; + $return[$shareAttrs[0]."|".$entry['cn'][0]]['name'] = $shareAttrs[0]; + $return[$shareAttrs[0]."|".$entry['cn'][0]]['description'] = $shareAttrs[1]; + $return[$shareAttrs[0]."|".$entry['cn'][0]]['type'] = $shareAttrs[2]; + $return[$shareAttrs[0]."|".$entry['cn'][0]]['charset'] = $shareAttrs[3]; + $return[$shareAttrs[0]."|".$entry['cn'][0]]['path'] = $shareAttrs[4]; + $return[$shareAttrs[0]."|".$entry['cn'][0]]['option'] = $shareAttrs[5]; } } - } + } } - return($return); } + /* This function returns all available ShareServer */ function getShareServerList() { @@ -758,23 +858,31 @@ class config { $return = array(); $ui = get_userinfo(); $base = $config->current['BASE']; + $res= get_sub_list("(&(objectClass=goShareServer)(goExportEntry=*))", "server", + get_ou("serverou"), $base,array("goExportEntry","cn"),GL_NONE | GL_NO_ACL_CHECK); - $res= get_list("(&(objectClass=goShareServer)(goExportEntry=*))", "server", $base,array("goExportEntry","cn"),GL_SUBSEARCH); foreach($res as $entry){ - if(obj_is_readable($entry['dn'], "server/goShareServer","goExportEntry")){ + + $acl = $ui->get_permissions($entry['dn'],"server",""); if(isset($entry['goExportEntry']['count'])){ unset($entry['goExportEntry']['count']); } foreach($entry['goExportEntry'] as $share){ $a_share = split("\|",$share); $sharename = $a_share[0]; - $return[$entry['cn'][0]."|".$sharename] = $entry['cn'][0]." [".$sharename."]"; + $data= array(); + $data['NAME'] = $sharename; + $data['ACL'] = $acl; + $data['SERVER'] = $entry['cn']['0']; + $data['SHARE'] = $sharename; + $data['DISPLAY']= $entry['cn'][0]." [".$sharename."]"; + $return[$entry['cn'][0]."|".$sharename] = $data; } - } } return($return); } + /* Check if there's the specified bool value set in the configuration */ function boolValueIsTrue($section, $value) { @@ -833,6 +941,43 @@ class config { } + function get_cfg_value($name, $default= "") { + $name= strtoupper($name); + + /* Check if we have a current value for $name */ + if (isset($this->current[$name])){ + return ($this->current[$name]); + } + + /* Check if we have a global value for $name */ + if (isset($this->data["MAIN"][$name])){ + return ($this->data["MAIN"][$name]); + } + + return ($default); + } + + + function check_config_version() + { + /* Skip check, if we've already mentioned the mismatch + */ + if(session::is_set("LastChecked") && session::get("LastChecked") == $this->config_version) return; + + /* Remember last checked version + */ + session::set("LastChecked",$this->config_version); + + $current = md5(file_get_contents(CONFIG_TEMPLATE_DIR."/gosa.conf")); + + /* Check contributed config version and current config version. + */ + if($this->config_version != $current && !empty($this->config_version)){ + msg_dialog::display(_("Configuration"),_("The configuration file you are using seems to be outdated. Please move the GOsa configuration file away to run the GOsa setup again.")); + } + } + + /* On debian systems the session files are deleted with * a cronjob, which detects all files older than specified * in php.ini:'session.gc_maxlifetime' and removes them. @@ -841,7 +986,7 @@ class config { */ function check_session_lifetime() { - $cfg_lifetime = $this->data['MAIN']['SESSION_LIFETIME']; + $cfg_lifetime = $this->data['MAIN']['SESSIONLIFETIME']; $ini_lifetime = ini_get('session.gc_maxlifetime'); $deb_system = file_exists('/etc/debian_version'); return(!($deb_system && ($ini_lifetime < $cfg_lifetime)));