current_config = $_SESSION['phpgw_info']['expresso']['expressoAdmin'];
$common = new common();
$this->ldapRead = $common->ldapConnect();
$this->functions = new functions;
$manager_acl = $this->functions->read_acl($_SESSION['phpgw_info']['expresso']['user']['account_lid']);
$this->manager_contexts = $manager_acl['contexts'];
//Para haver escrita em diretorio escravo eh necessario que se faca login na api com a opcao de seguir referrals. Foi feita aqui a divisao entre escrita e leitura pois a leitura ldap fica bem mais lenta quando configurada para seguir referrals.
if($GLOBALS['phpgw_info']['server']['diretorioescravo'])
{
$this->ldapWrite = $common->ldapConnect("","","",true);
}
else
{
$this->ldapWrite = $common->ldapConnect();
}
}
/* ldap connection following referals and using Contac Center config*/
function ldapMasterConnect()
{
if ( (is_array($_SESSION['phpgw_info']['expresso']['cc_ldap_server'])) && ($ldap_connection = ldap_connect($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['host'])) )
{
ldap_set_option($ldap_connection, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
//ldap_set_rebind_proc($ldap_connection, ldapRebind);
if ( ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'] != '') && ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw'] != '') )
{
if ( ! ldap_bind($ldap_connection, $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'], $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw']) )
{
return false;
}
}
return $ldap_connection;
}
else
{
$ldap_connection = ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host']);
if ($ldap_connection)
{
ldap_set_option($ldap_connection,LDAP_OPT_PROTOCOL_VERSION,3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
if ( ldap_bind($ldap_connection, $GLOBALS['phpgw_info']['server']['ldap_root_dn'], $GLOBALS['phpgw_info']['server']['ldap_root_pw']) )
return $ldap_connection;
}
}
return false;
}
function validate_fields($params)
{
/* ldap connection following referals and using Contac Center config*/
if (is_array($_SESSION['phpgw_info']['expresso']['cc_ldap_server']))
{
$ldap_connection = ldap_connect($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['host']);
if ($ldap_connection)
{
ldap_set_option($ldap_connection, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
if ( ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'] != '') && ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw'] != '') )
ldap_bind($ldap_connection, $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'], $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw']);
$context = $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['dn'];
}
else
{
$result['status'] = false;
$result['msg'] = 'Falha na conexão com o ldap.';
return $result;
}
}
else
{
$ldap_connection = ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host']);
ldap_set_option($ldap_connection,LDAP_OPT_PROTOCOL_VERSION,3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
ldap_bind($ldap_connection, $GLOBALS['phpgw_info']['server']['ldap_root_dn'], $GLOBALS['phpgw_info']['server']['ldap_root_pw']);
$context = $GLOBALS['phpgw_info']['server']['ldap_context'];
}
$result['status'] = true;
$params = unserialize($params['attributes']);
$type = $params['type'];
$uid = $params['uid'];
$mail = $params['mail'];
$mailalternateaddress = $params['mailalternateaddress'];
if ($_SESSION['phpgw_info']['expresso']['global_denied_users'][$uid])
{
$result['status'] = false;
$result['msg'] = 'Este LOGIN não pode ser utilizado pois á uma conta de sistema.';
return $result;
}
if (($type == 'create_user') || ($type == 'rename_user'))
{
if ($this->current_config['expressoAdmin_prefix_org'] == 'true')
{
//Obtenho UID sem a organização. Na criação o uid já vem sem a organização
$tmp_uid_without_org = split("-", $params['uid']);
$tmp_reverse_uid_without_org = array_reverse($tmp_uid_without_org);
array_pop($tmp_reverse_uid_without_org);
$uid_without_org = implode("-", $tmp_reverse_uid_without_org);
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(|(uid=$uid)(uid=$uid_without_org)))";
}
else
{
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(uid=$uid))";
}
/*
//UID
if (($type == 'rename_user') && ($this->current_config['expressoAdmin_prefix_org'] == 'true'))
{
//Obtenho UID sem a organiza��o. Na cria��o o uid j� vem sem a organiza��o
$tmp_uid_without_org = split("-", $params['uid']);
$tmp_reverse_uid_without_org = array_reverse($tmp_uid_without_org);
array_pop($tmp_reverse_uid_without_org);
$uid_without_org = implode("-", $tmp_reverse_uid_without_org);
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(|(uid=$uid)(uid=$uid_without_org)))";
}
else
{
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(uid=$uid))";
}
*/
$justthese = array("uid", "mail", "cn");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$count_entries = ldap_count_entries($ldap_connection,$search);
if ($count_entries > 0)
{
$entries = ldap_get_entries($ldap_connection, $search);
for ($i=0; $i<$entries['count']; $i++)
{
$users .= $entries[$i]['cn'][0] . ' - ' . $entries[$i]['mail'][0] . "\n";
}
$result['status'] = false;
$result['msg'] = "LOGIN já está sendo utilizado por:\n" . $users;
return $result;
}
// GRUPOS
$filter = "(&(phpgwAccountType=g)(cn=$uid))";
$justthese = array("cn");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$count_entries = ldap_count_entries($ldap_connection,$search);
if ($count_entries > 0)
{
$result['status'] = false;
$result['msg'] = 'O LOGIN do usuário já está sendo utilizado por um grupo.';
return $result;
}
// UID em outras organiza��es, pesquiso apenas na maquina local e se utilizar prefix_org
if ($this->current_config['expressoAdmin_prefix_org'] == 'true')
{
$ldap_connection2 = ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host']);
ldap_set_option($ldap_connection2,LDAP_OPT_PROTOCOL_VERSION,3);
ldap_set_option($ldap_connection2, LDAP_OPT_REFERRALS, false);
ldap_bind($ldap_connection2, $GLOBALS['phpgw_info']['server']['ldap_root_dn'], $GLOBALS['phpgw_info']['server']['ldap_root_pw']);
$context = $GLOBALS['phpgw_info']['server']['ldap_context'];
//Obtenho UID sem a organização
/*
$tmp_uid_without_org = split("-", $params['uid']);
if (count($tmp_uid_without_org) < 2)
{
$result['status'] = false;
$result['msg'] = 'Novo login sem organiza��o.';
return $result;
}
$tmp_reverse_uid_without_org = array_reverse($tmp_uid_without_org);
array_pop($tmp_reverse_uid_without_org);
$uid_without_org = implode("-", $tmp_reverse_uid_without_org);
*/
$filter = "(ou=*)";
$justthese = array("ou");
$search = ldap_list($ldap_connection2, $context, $filter, $justthese);
$entries = ldap_get_entries($ldap_connection2 ,$search);
foreach ($entries as $index=>$org)
{
$organization = $org['ou'][0];
$organization = strtolower($organization);
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(uid=$organization-$uid))";
$justthese = array("uid");
$search = ldap_search($ldap_connection2, $context, $filter, $justthese);
$count_entries = ldap_count_entries($ldap_connection2,$search);
if ($count_entries > 0)
{
$result['status'] = false;
$result['msg'] = 'O LOGIN já está sendo utilizado por outro usuário em outra organização.';
ldap_close($ldap_connection2);
return $result;
}
}
ldap_close($ldap_connection2);
}
}
if ($type == 'rename_user')
{
return $result;
}
// MAIL
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(|(mail=$mail)(mailalternateaddress=$mail)))";
$justthese = array("mail", "uid");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$entries = ldap_get_entries($ldap_connection,$search);
if ($entries['count'] == 1){
if ($entries[0]['uid'][0] != $uid){
$result['status'] = false;
$result['msg'] = 'O E-MAIL está sendo utilizado por 1 usuário: ' . $entries[0]['uid'][0];
//ldap_close($ldap_connection);
return $result;
}
}
else if ($entries['count'] > 1){
$result['status'] = false;
$result['msg'] = 'O E-MAIL está sendo utilizado por 2 ou mais usuários.';
//ldap_close($ldap_connection);
return $result;
}
// MAILAlternateAddress
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(|(mail=$mailalternateaddress)(mailalternateaddress=$mailalternateaddress)))";
$justthese = array("mail", "uid");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$entries = ldap_get_entries($ldap_connection,$search);
if ($entries['count'] == 1){
if ($entries[0]['uid'][0] != $uid){
$result['status'] = false;
$result['msg'] = "O E-MAIL alternativo está sendo utilizado por 1 usuário: " . $entries[0]['uid'][0];
//ldap_close($ldap_connection);
return $result;
}
}
else if ($entries['count'] > 1){
$result['status'] = false;
$result['msg'] = 'O E-MAIL alternativo está sendo utilizado por 2 ou mais usuários.';
return $result;
}
return $result;
}
function validate_fields_group($params)
{
/* ldap connection following referals and using Contac Center config*/
if (is_array($_SESSION['phpgw_info']['expresso']['cc_ldap_server']))
{
$ldap_connection = ldap_connect($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['host']);
if ($ldap_connection)
{
ldap_set_option($ldap_connection, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
if ( ($GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['acc'] != '') && ($GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['pw'] != '') )
ldap_bind($ldap_connection, $GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['acc'], $GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['pw']);
$context = $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['dn'];
}
else
{
$result['status'] = false;
$result['msg'] = 'Falha na conexão com o ldap.';
return $result;
}
}
else
{
$ldap_connection = ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host']);
ldap_set_option($ldap_connection,LDAP_OPT_PROTOCOL_VERSION,3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
ldap_bind($ldap_connection, $GLOBALS['phpgw_info']['server']['ldap_root_dn'], $GLOBALS['phpgw_info']['server']['ldap_root_pw']);
$context = $GLOBALS['phpgw_info']['server']['ldap_context'];
}
$cn = $params['cn'];
$result['status'] = true;
if ($_SESSION['phpgw_info']['expresso']['global_denied_groups'][$cn])
{
$result['status'] = false;
$result['msg'] = 'O nome de grupo não pode ser utilizado pois é um grupo de sistema.';
return $result;
}
// CN
$filter = "(&(phpgwAccountType=g)(cn=$cn))";
$justthese = array("cn");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$count_entries = ldap_count_entries($ldap_connection,$search);
if ($count_entries > 0)
{
$result['status'] = false;
$result['msg'] = 'O NOME do grupo já está sendo utilizado.';
return $result;
}
// UID
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(uid=$cn))";
$justthese = array("uid");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$count_entries = ldap_count_entries($ldap_connection,$search);
if ($count_entries > 0)
{
$result['status'] = false;
$result['msg'] = 'O NOME do grupo já está sendo utilizado por um usuário.';
return $result;
}
return $result;
}
function validate_fields_maillist($params)
{
/* ldap connection following referals and using Contac Center config*/
if (is_array($_SESSION['phpgw_info']['expresso']['cc_ldap_server']))
{
$ldap_connection = ldap_connect($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['host']);
if ($ldap_connection)
{
ldap_set_option($ldap_connection, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
if ( ($GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['acc'] != '') && ($GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['pw'] != '') )
ldap_bind($ldap_connection, $GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['acc'], $GLOBALS['phpgw_info']['expresso']['cc_ldap_server']['pw']);
$context = $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['dn'];
}
else
{
$result['status'] = false;
$result['msg'] = 'Falha na conexão com o ldap.';
return $result;
}
}
else
{
$ldap_connection = ldap_connect($GLOBALS['phpgw_info']['server']['ldap_host']);
ldap_set_option($ldap_connection,LDAP_OPT_PROTOCOL_VERSION,3);
ldap_set_option($ldap_connection, LDAP_OPT_REFERRALS, true);
ldap_bind($ldap_connection, $GLOBALS['phpgw_info']['server']['ldap_root_dn'], $GLOBALS['phpgw_info']['server']['ldap_root_pw']);
$context = $GLOBALS['phpgw_info']['server']['ldap_context'];
}
$uid = $params['uid'];
$mail = $params['mail'];
$result['status'] = true;
if ($_SESSION['phpgw_info']['expresso']['global_denied_users'][$uid])
{
$result['status'] = false;
$result['msg'] = 'O LOGIN não pode ser utilizado pois é uma conta de sistema.';
return $result;
}
// UID
$filter = "(&(phpgwAccountType=l)(uid=$uid))";
$justthese = array("uid");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$count_entries = ldap_count_entries($ldap_connection,$search);
if ($count_entries > 0)
{
$result['status'] = false;
$result['msg'] = 'O LOGIN da lista já está sendo utilizado.';
return $result;
}
// MAIL
$filter = "(&(|(phpgwAccountType=u)(phpgwAccountType=l))(|(mail=$mail)(mailalternateaddress=$mail)))";
$justthese = array("mail");
$search = ldap_search($ldap_connection, $context, $filter, $justthese);
$count_entries = ldap_count_entries($ldap_connection,$search);
if ($count_entries > 0)
{
$result['status'] = false;
$result['msg'] = 'O E-MAIL da lista já está sendo utilizado.';
return $result;
}
return $result;
}
//Busca usuários de um contexto e já retorna as options do select;
function get_available_users($params)
{
$context = $params['context'];
$recursive = $params['recursive'];
$justthese = array("cn", "uidNumber");
$filter="(phpgwAccountType=u)";
if ($recursive == 'true')
$groups_list=ldap_search($this->ldapRead, $context, $filter, $justthese);
else
$groups_list=ldap_list($this->ldapRead, $context, $filter, $justthese);
$entries = ldap_get_entries($this->ldapRead, $groups_list);
for ($i=0; $i<$entries["count"]; $i++){
$u_tmp[$entries[$i]["uidnumber"][0]] = $entries[$i]["cn"][0];
}
if (count($u_tmp))
natcasesort($u_tmp);
$i = 0;
$users = array();
if (count($u_tmp))
{
foreach ($u_tmp as $uidnumber => $cn)
{
$options .= "";
}
unset($u_tmp);
}
return $options;
}
//Busca usuários de um contexto e já retorna as options do select;
/*
function get_available_users_and_maillist($params)
{
$context = $params['context'];
$recursive = $params['recursive'];
$justthese = array("cn", "uidNumber");
$filter="(|(phpgwAccountType=u)(phpgwAccountType=l))";
if ($recursive == 'true')
$groups_list=ldap_search($this->ldap, $context, $filter, $justthese);
else
$groups_list=ldap_list($this->ldap, $context, $filter, $justthese);
$entries = ldap_get_entries($this->ldap, $groups_list);
for ($i=0; $i<$entries["count"]; $i++){
$u_tmp[$entries[$i]["uidnumber"][0]] = $entries[$i]["cn"][0];
}
if (count($u_tmp))
natcasesort($u_tmp);
$i = 0;
$users = array();
if (count($u_tmp))
{
foreach ($u_tmp as $uidnumber => $cn)
{
$options .= "";
}
unset($u_tmp);
}
return $options;
}
*/
//Busca usuários e listas de um contexto e já retorna as options do select;
function get_available_users_and_maillist($params)
{
$context = $params['context'];
$recursive = $params['recursive'];
//utilizado para retirar a própria lista das possibilidades de inclusão.
$denied_uidnumber = $params['denied_uidnumber'];
$justthese = array("cn", "uidNumber", "mail");
$users_filter="(phpgwAccountType=u)";
$lists_filter = $denied_uidnumber == '' ? "(phpgwAccountType=l)" : "(&(phpgwAccountType=l)(!(uidnumber=$denied_uidnumber)))";
$users = Array();
$lists = Array();
/* folling referral connection */
$ldap_conn_following_ref = ldap_connect($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['host']);
if ($ldap_conn_following_ref)
{
ldap_set_option($ldap_conn_following_ref, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ldap_conn_following_ref, LDAP_OPT_REFERRALS, 1);
if ( ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'] != '') && ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw'] != '') )
ldap_bind($ldap_conn_following_ref, $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'], $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw']);
}
else
return false;
if ($recursive == 'true')
{
$lists_search = ldap_search($ldap_conn_following_ref, $context, $lists_filter, $justthese);
$users_search = ldap_search($ldap_conn_following_ref, $context, $users_filter, $justthese);
}
else
{
$lists_search = ldap_list($ldap_conn_following_ref, $context, $lists_filter, $justthese);
$users_search = ldap_list($ldap_conn_following_ref, $context, $users_filter, $justthese);
}
/* email lists */
$lists_entries = ldap_get_entries($ldap_conn_following_ref, $lists_search);
for ($i=0; $i<$lists_entries["count"]; $i++)
{
$l_tmp[$lists_entries[$i]["mail"][0]] = $lists_entries[$i]["cn"][0];
}
if (count($l_tmp))
natcasesort($l_tmp);
$i = 0;
$lists = array();
$options .= ''."\n";
if (count($l_tmp))
{
foreach ($l_tmp as $mail => $cn)
{
$options .= "";
}
unset($l_tmp);
}
/* users */
$users_entries = ldap_get_entries($ldap_conn_following_ref, $users_search);
for ($i=0; $i<$users_entries["count"]; $i++)
{
$u_tmp[$users_entries[$i]["mail"][0]] = $users_entries[$i]["cn"][0];
}
if (count($u_tmp))
natcasesort($u_tmp);
$i = 0;
$users = array();
$options .= ''."\n";
if (count($u_tmp))
{
foreach ($u_tmp as $mail => $cn)
{
$options .= "";
}
unset($u_tmp);
}
ldap_close($ldap_conn_following_ref);
return $options;
}
function get_available_groups($params)
{
$context = $params['context'];
$justthese = array("cn", "gidNumber");
$groups_list=ldap_search($this->ldapRead, $context, ("(phpgwAccountType=g)"), $justthese);
ldap_sort($this->ldapRead, $groups_list, "cn");
$entries = ldap_get_entries($this->ldapRead, $groups_list);
$options = '';
for ($i=0; $i<$entries['count']; $i++)
{
$options .= "";
}
return $options;
}
function get_available_maillists($params)
{
if ( !$ldapMasterConnect = $this->ldapMasterConnect() )
return false;
$context = $params['context'];
$justthese = array("uid","mail","uidNumber");
$maillists=ldap_search($ldapMasterConnect, $context, ("(phpgwAccountType=l)"), $justthese);
ldap_sort($ldapMasterConnect, $maillists, "uid");
$entries = ldap_get_entries($ldapMasterConnect, $maillists);
$options = '';
for ($i=0; $i<$entries['count']; $i++)
{
$options .= "";
}
ldap_close($ldapMasterConnect);
return $options;
}
function ldap_add_entry($dn, $entry)
{
$result = array();
if (!@ldap_add ( $this->ldapWrite, $dn, $entry ))
{
$result['status'] = false;
$result['error_number'] = ldap_errno($this->ldapWrite);
if(ldap_errno($this->ldapWrite) == 50)
{
$result['msg'] = "Não há permissão de escrita no ldap";
}
else
{
$result['msg'] = "Erro na adição do usuário ($dn).
Retorno do servidor:" . ldap_error($this->ldapWrite);
}
}
else
$result['status'] = true;
return $result;
}
function ldap_save_photo($dn, $pathphoto, $photo_exist=false)
{
$fd = fopen($pathphoto, "r");
$fsize = filesize($pathphoto);
$jpegStr = fread($fd, $fsize);
fclose ($fd);
$attrs['jpegPhoto'] = $jpegStr;
if ($photo_exist)
$res = @ldap_mod_replace($this->ldapWrite, $dn, $attrs);
else
$res = @ldap_mod_add($this->ldapWrite, $dn, $attrs);
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->ldap_save_photo ($dn).\nRetorno do servidor:" . ldap_error($this->ldapWrite);
}
return $result;
}
function ldap_remove_photo($dn)
{
$attrs['jpegPhoto'] = array();
$res = ldap_mod_del($this->ldapWrite, $dn, $attrs);
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->ldap_remove_photo ($dn).\nRetorno do servidor:" . ldap_error($this->ldapWrite);
}
return $result;
}
// Pode receber tanto um único memberUid quanto um array de memberUid's
function add_user2group($gidNumber, $memberUid)
{
$filter = "(&(phpgwAccountType=g)(gidNumber=$gidNumber))";
$justthese = array("dn");
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$group_dn = $entry[0]['dn'];
$attrs['memberUid'] = $memberUid;
$res = @ldap_mod_add($this->ldapWrite, $group_dn, $attrs);
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->add_user2group ($memberUid).\nRetorno do servidor:" . ldap_error($this->ldapWrite);
}
return $result;
}
function remove_user2group($gidNumber, $memberUid)
{
$filter = "(&(phpgwAccountType=g)(gidNumber=$gidNumber))";
$justthese = array("dn");
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$group_dn = $entry[0]['dn'];
$attrs['memberUid'] = $memberUid;
$res = @ldap_mod_del($this->ldapWrite, $group_dn, $attrs);
/*echo 'usuarios recebidos para remocao no ldap';
echo '';
print_r($memberUid);*/
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->remove_user2group ($memberUid).\nRetorno do servidor:" . ldap_error($this->ldapWrite);
}
return $result;
}
function add_user2maillist($uid, $mail)
{
if ( !$ldapMasterConnect = $this->ldapMasterConnect() )
{
$result['status'] = false;
$result['msg'] = "Falha de conexão com o openLDAP.\n\nRetorno do servidor:" . ldap_error($ldapMasterConnect);
return $result;
}
$filter = "(&(phpgwAccountType=l)(uid=$uid))";
$justthese = array("dn");
$search = ldap_search($ldapMasterConnect, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($ldapMasterConnect, $search);
$group_dn = $entry[0]['dn'];
$attrs['mailForwardingAddress'] = $mail;
$res = @ldap_mod_add($ldapMasterConnect, $group_dn, $attrs);
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
if (ldap_errno($ldapMasterConnect) == '50')
{
$result['msg'] = "Erro na função ldap_functions->add_user2maillist.\n" .
"O usuário utilizado para gravação no LDAP, DEVE ter direito de escrita.\n".
"O usuário " . $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'] . " não tem este direito.\n".
"Edite \"Configuração Global do Catálogo\", no módulo Administrador, Catálogo de Endereços e adicione um usuário com direitos de escrita.";
}
else
$result['msg'] = "Erro na função ldap_functions->add_user2maillist.\nRetorno do servidor:" . ldap_error($ldapMasterConnect);
}
ldap_close($ldapMasterConnect);
return $result;
}
function add_user2maillist_scl($dn, $array_emails)
{
$attrs['mailSenderAddress'] = $array_emails;
print_r($attrs);
$res = @ldap_mod_add($this->ldapWrite, $dn, $attrs);
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->add_user2maillist_scp ($dn).\n\nRetorno do servidor:" . ldap_error($this->ldapWrite);
}
return $result;
}
function remove_user2maillist($uid, $mail)
{
if ( !$ldapMasterConnect = $this->ldapMasterConnect() )
{
$result['status'] = false;
$result['msg'] = "Falha de conexão com o openLDAP.\n\nRetorno do servidor:" . ldap_error($ldapMasterConnect);
return $result;
}
$filter = "(&(phpgwAccountType=l)(uid=$uid))";
$justthese = array("dn");
$search = ldap_search($ldapMasterConnect, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($ldapMasterConnect, $search);
$group_dn = $entry[0]['dn'];
$attrs['mailForwardingAddress'] = $mail;
$res = @ldap_mod_del($ldapMasterConnect, $group_dn, $attrs);
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
if (ldap_errno($ldapMasterConnect) == '50')
{
$result['msg'] = "Erro na função ldap_functions->add_user2maillist.\n" .
"O usuário utilizado para gravação no LDAP, DEVE ter direito de escrita.\n".
"O usuário " . $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'] . " não tem este direito.\n".
"Edite \"Configuração Global do Catálogo\", no módulo Administrador, Catálogo de Endereços e adicione um usuário com direitos de escrita.";
}
else
$result['msg'] = "Erro na função ldap_functions->add_user2maillist.\nRetorno do servidor:" . ldap_error($ldapMasterConnect);
}
ldap_close($ldapMasterConnect);
return $result;
}
function remove_user2maillist_scl($dn, $array_emails)
{
$attrs['mailSenderAddress'] = $array_emails;
$res = @ldap_mod_del($this->ldapWrite, $dn, $attrs);
if ($res)
{
$result['status'] = true;
}
else
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->remove_user2maillist_scp ($dn).\n\nRetorno do servidor:" . ldap_error($this->ldapWrite);
}
return $result;
}
function replace_user2maillists($new_mail, $old_mail)
{
$filter = "(&(phpgwAccountType=l)(mailforwardingaddress=$old_mail))";
$justthese = array("dn");
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entries = ldap_get_entries($this->ldapRead, $search);
$result['status'] = true;
for ($i=0; $i<$entries['count']; $i++)
{
$attrs['mailforwardingaddress'] = $old_mail;
$res1 = @ldap_mod_del($this->ldapWrite, $entries[$i]['dn'], $attrs);
$attrs['mailforwardingaddress'] = $new_mail;
$res2 = @ldap_mod_add($this->ldapWrite, $entries[$i]['dn'], $attrs);
if ((!$res1) || (!$res2))
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->replace_user2maillists ($old_mail).\nRetorno do servidor:" . ldap_error($this->ldapWrite);
}
}
return $result;
}
function get_user_uidnumber($uidnumber)
{
$result = false;
foreach($this->manager_contexts as $index=>$context)
{
$filter="(&(phpgwAccountType=u)(uidNumber=".$uidnumber."))";
$justthese = array('uidnumber');
$search = ldap_search($this->ldapRead, $context, $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
if($entry['count'])
{
$result = true;
}
}
return $result;
}
function get_user_info($uidnumber)
{
foreach ($this->manager_contexts as $index=>$context)
{
//$filter="(&(phpgwAccountType=u)(uidNumber=".$uidnumber."))";
$filter="(&(objectclass=".$GLOBALS['phpgw_info']['server']['atributousuarios'].")(uidNumber=".$uidnumber."))";
//Para alguns atributos do rhds eh necessario determinar explicitamente os atributos retornados.
$justthese = array('objectclass','uid','uidnumber','gidnumber','departmentnumber','givenname','sn','telephonenumber','phpgwlastpasswdchange','phpgwaccountstatus','phpgwaccountvisible','phpgwaccounttype','deliverymode','accountstatus','mail','mailalternateaddress','mailforwardingaddress','deliverymode','userpasswordrfc2617','createtimestamp','jpegphoto','objectclass','sambaacctflags','sambalogonscript','homedirectory','sambasid','employeenumber','cpf','rg','ou','o','l','st','postaladdress','responsavel','phpgwaccountexpires','usrcargo','pager','mobile','description',$GLOBALS['phpgw_info']['server']['atributoexpiracao']);
$search = ldap_search($this->ldapRead, $context, $filter,$justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'])
{
//Pega o dn do setor do usuario.
$entry[0]['dn'] = strtolower($entry[0]['dn']);
$sector_dn_array = explode(",", $entry[0]['dn']);
for($i=1; $icurrent_config['expressoAdmin_samba_support'] == 'true') && ($result['sambaUser']))
{
$result['sambaaccflags'] = $entry[0]['sambaacctflags'][0];
$result['sambalogonscript'] = $entry[0]['sambalogonscript'][0];
$result['homedirectory'] = $entry[0]['homedirectory'][0];
$a_tmp = explode("-", $entry[0]['sambasid'][0]);
array_pop($a_tmp);
$result['sambasid'] = implode("-", $a_tmp);
}
// Verifica o acesso do gerente aos atributos corporativos
if ($this->functions->check_acl($_SESSION['phpgw_info']['expresso']['user']['account_lid'], 'manipulate_corporative_information'))
{
$result['corporative_information_employeenumber'] = $entry[0]['employeenumber'][0];
$result['corporative_information_cpf'] = $entry[0]['cpf'][0];
$result['corporative_information_rg'] = $entry[0]['rg'][0];
$result['corporative_information_ou'] = $entry[0]['ou'][0];
$result['corporative_information_o'] = $entry[0]['o'][0];
// $result['corporative_information_l'] = $entry[0]['l'][0];
// $result['corporative_information_st'] = $entry[0]['st'][0];
$result['corporative_information_postaladdress'] = $entry[0]['postaladdress'][0];
$result['corporative_information_telephonenumber'] = $entry[0]['telephonenumber'][0];
$result['corporative_information_usrcargo'] = $entry[0]['usrcargo'][0];
$result['corporative_information_pager'] = $entry[0]['pager'][0];
$result['corporative_information_mobile'] = $entry[0]['mobile'][0];
$result['corporative_information_description'] = $entry[0]['description'][0];
$result['accountOwners'] = $entry[0]['responsavel'];
//Pega o nome do estado e das cidades daqueles estado no banco de dados
if($entry[0]['st'][0])
{
$state_id = (integer)$entry[0]['st'][0];
$params['state_id'] = $state_id;
$state = $this->functions->get_states($state_id);
$result['corporative_information_st'] = $state;
if($entry[0]['l'][0])
{
$city_id = (integer)$entry[0]['l'][0];
$params['city_id'] = $city_id;
$city = $this->functions->get_cities($params);
$result['corporative_information_l'] = $city;
}
}
}
// MailLists
$result['maillists_info'] = $this->get_user_maillists($result['mail']);
if($result['maillists_info'])
{
foreach ($result['maillists_info'] as $maillist)
{
$result['maillists'][] = $maillist['uid'];
}
}
// Groups
$justthese = array("gidnumber","cn");
$filter="(&(phpgwAccountType=g)(memberuid=".$result['uid']."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
ldap_sort($this->ldapRead, $search, "cn");
$entries = ldap_get_entries($this->ldapRead, $search);
for ($i=0; $i<$entries['count']; $i++)
{
$result['groups_ldap'][ $entries[$i]['gidnumber'][0] ] = $entries[$i]['cn'][0];
}
}
}
return $result;
}
function get_user_maillists($mail)
{
if ( !$ldapMasterConnect = $this->ldapMasterConnect() )
return false;
$result = array();
//Mostra somente os mailists dos contextos do gerente
$justthese = array("uid","mail","uidnumber");
$filter="(&(phpgwAccountType=l)(mailforwardingaddress=$mail))";
foreach ($this->manager_contexts as $index=>$context)
{
$search = ldap_search($ldapMasterConnect, $context, $filter, $justthese);
$entries = ldap_get_entries($ldapMasterConnect, $search);
for ($i=0; $i<$entries['count']; $i++)
{
$result[ $entries[$i]['uid'][0] ]['uid'] = $entries[$i]['uid'][0];
$result[ $entries[$i]['uid'][0] ]['mail'] = $entries[$i]['mail'][0];
$a_tmp[] = $entries[$i]['uid'][0];
}
}
if($a_tmp) {
natcasesort($a_tmp);
foreach ($a_tmp as $uid)
{
$return[$uid]['uid'] = $result[$uid]['uid'];
$return[$uid]['mail'] = $result[$uid]['mail'];
}
}
ldap_close($ldapMasterConnect);
return $return;
}
function get_group_info($gidnumber)
{
foreach ($this->manager_contexts as $index=>$context)
{
$filter="(&(phpgwAccountType=g)(gidNumber=".$gidnumber."))";
$search = ldap_search($this->ldapRead, $context, $filter);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'])
{
//Pega o dn do setor do grupo.
$entry[0]['dn'] = strtolower($entry[0]['dn']);
$sector_dn_array = explode(",", $entry[0]['dn']);
for($i=1; $ildapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$user_entry = ldap_get_entries($this->ldapRead, $search);
for ($j=0; $j<$user_entry['count']; $j++)
{
$result['memberuid_info'][$user_entry[$j]['uid'][0]]['cn'] = $user_entry[$j]['cn'][0];
$result['memberuid_info'][$user_entry[$j]['uid'][0]]['uidnumber'] = $user_entry[$j]['uidnumber'][0];
$result['memberuid_info'][$user_entry[$j]['uid'][0]]['type'] = 'u';
}
}
// Checamos e-mails que não fazem parte do expresso.
// Criamos um array temporario
$tmp_array = array();
if($result['memberuid_info'])
foreach ($result['memberuid_info'] as $uid => $user_data)
{
$tmp_array[] = $uid;
}
if($entry[0]['memberuid']) {
// Retira o count do array
array_shift($entry[0]['memberuid']);
// Vemos a diferen�a
$array_diff = array_diff($entry[0]['memberuid'], $tmp_array);
// Incluimos no resultado
foreach ($array_diff as $index=>$uid)
{
$result['memberuid_info'][$uid]['cn'] = $uid;
}
}
// Samba
for ($i=0; $i<$entry[0]['objectclass']['count']; $i++)
{
if ($entry[0]['objectclass'][$i] == 'sambaGroupMapping')
$result['sambaGroup'] = true;
$a_tmp = explode("-", $entry[0]['sambasid'][0]);
array_pop($a_tmp);
$result['sambasid'] = implode("-", $a_tmp);
}
return $result;
}
}
}
function get_maillist_info($uidnumber)
{
/* folling referral connection */
$ldap_conn_following_ref = ldap_connect($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['host']);
if ($ldap_conn_following_ref)
{
ldap_set_option($ldap_conn_following_ref, LDAP_OPT_PROTOCOL_VERSION, 3);
ldap_set_option($ldap_conn_following_ref, LDAP_OPT_REFERRALS, 1);
if ( ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'] != '') && ($_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw'] != '') )
ldap_bind($ldap_conn_following_ref, $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'], $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['pw']);
}
foreach ($this->manager_contexts as $index=>$context)
{
$filter="(&(phpgwAccountType=l)(uidNumber=".$uidnumber."))";
$search = ldap_search($this->ldapRead, $context, $filter);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'])
{
//Pega o dn do setor do usuario.
$entry[0]['dn'] = strtolower($entry[0]['dn']);
$sector_dn_array = explode(",", $entry[0]['dn']);
for($i=1; $i$mailforwardingaddress)
{
$result['mailForwardingAddress_info'][$mailforwardingaddress]['uid'] = $mailforwardingaddress;
$result['mailForwardingAddress_info'][$mailforwardingaddress]['cn'] = 'E-Mail não encontrado';
$result['mailForwardingAddress'][] = $mailforwardingaddress;
}
ldap_close($ldap_conn_following_ref);
return $result;
}
}
}
function get_maillist_scl_info($uidnumber)
{
foreach ($this->manager_contexts as $index=>$context)
{
$filter="(&(phpgwAccountType=l)(uidNumber=$uidnumber))";
$search = ldap_search($this->ldapRead, $context, $filter);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'])
{
//Pega o dn do setor do usuario.
$entry[0]['dn'] = strtolower($entry[0]['dn']);
$sector_dn_array = explode(",", $entry[0]['dn']);
for($i=1; $ildapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$user_entry = ldap_get_entries($this->ldapRead, $search);
$result['senders_info'][$user_entry[0]['mail'][0]]['uid'] = $user_entry[0]['uid'][0];
$result['senders_info'][$user_entry[0]['mail'][0]]['cn'] = $user_entry[0]['cn'][0];
$result['members'][] = $user_entry[0]['mail'][0];
}
return $result;
}
}
}
function group_exist($gidnumber)
{
$justthese = array("cn");
$filter="(&(phpgwAccountType=g)(gidNumber=".$gidnumber."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'] == 0)
return false;
else
return true;
}
function gidnumbers2cn($gidnumbers)
{
$result = array();
if (count($gidnumbers))
{
$justthese = array("cn");
$i = 0;
foreach ($gidnumbers as $gidnumber)
{
$filter="(&(phpgwAccountType=g)(gidNumber=".$gidnumber."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'] == 0)
$result['groups_info'][$i]['cn'] = '_Grupo existe no BD mas não no LDAP';
else
$result['groups_info'][$i]['cn'] = $entry[0]['cn'][0];
$result['groups_info'][$i]['gidnumber'] = $gidnumber;
/* o gerente pode excluir um grupo de um usuario onde este grupo esta em outra OU ? */
/* � o mesmo que o manager editar um grupo de outra OU */
$result['groups_info'][$i]['group_disabled'] = 'true';
foreach ($this->manager_contexts as $index=>$context)
{
if (strpos(strtolower($entry[0]['dn']), strtolower($context)))
{
$result['groups_info'][$i]['group_disabled'] = 'false';
}
}
$i++;
}
}
return $result;
}
function uidnumber2uid($uidnumber)
{
$justthese = array("uid");
$filter="(&(|(phpgwAccountType=u)(phpgwAccountType=l))(uidNumber=".$uidnumber."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
return $entry[0]['uid'][0];
}
function uidnumber2mail($uidnumber)
{
$justthese = array("mail");
$filter="(&(|(phpgwAccountType=u)(phpgwAccountType=l))(uidNumber=".$uidnumber."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
return $entry[0]['mail'][0];
}
function change_user_context($dn, $newrdn, $newparent)
{
if (!ldap_rename ( $this->ldapWrite, $dn, $newrdn, $newparent, true ))
{
$return['status'] = false;
$return['msg'] = 'Erro em ldap_funcitons->change_user_context: ' . ldap_error($this->ldapWrite);
}
else
$return['status'] = true;
return $return;
}
function replace_user_attributes($dn, $ldap_mod_replace)
{
if (!@ldap_mod_replace ( $this->ldapWrite, $dn, $ldap_mod_replace ))
{
$return['status'] = false;
$return['error_number'] = ldap_errno($this->ldapWrite);
$return['msg'] = 'Erro em ldap_funcitons->replace_user_attributes: ' . ldap_error($this->ldapWrite);
}
else
$return['status'] = true;
return $return;
}
function add_user_attributes($dn, $ldap_add)
{
if (!@ldap_mod_add ( $this->ldapWrite, $dn, $ldap_add ))
{
$return['status'] = false;
$return['error_number'] = ldap_errno($this->ldapWrite);
$return['msg'] = 'Erro em ldap_funcitons->add_user_attributes: ' . ldap_error($this->ldapWrite);
}
else
$return['status'] = true;
return $return;
}
function remove_user_attributes($dn, $ldap_remove)
{
if (!@ldap_mod_del ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] = 'Erro em ldap_funcitons->remove_user_attributes: ' . ldap_error($this->ldapWrite);
}
else
$return['status'] = true;
return $return;
}
function set_user_password($uid, $password)
{
$justthese = array("userPassword");
$filter="(&(phpgwAccountType=u)(uid=".$uid."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$dn = $entry[0]['dn'];
$userPassword = $entry[0]['userpassword'][0];
$ldap_mod_replace['userPassword'] = $password;
$this->replace_user_attributes($dn, $ldap_mod_replace);
return $userPassword;
}
function delete_user($user_info)
{
// Verifica acesso do gerente (OU) ao tentar excluir um usuário.
$manager_access = false;
// para o caso de usuarios sem email
foreach ($this->manager_contexts as $index=>$context)
{
if (!$user_info['context'])
$user_info['context']=$context;
if ( (strpos(strtolower($user_info['context']), strtolower($context))) || (strtolower($user_info['context']) == strtolower($context)) )
{
$manager_access = true;
break;
}
}
if (!$manager_access)
{
$return['status'] = false;
$return['msg'] .= 'Você não tem acesso para excluir este usuário.';
return $return;
}
$return['status'] = true;
// GROUPS
$attrs = array();
$attrs['memberUid'] = $user_info['uid'];
ob_start();
if (count($user_info['groups_info']))
{
foreach ($user_info['groups_info'] as $group_info)
{
$gidnumber = $group_info['gidnumber'];
$justthese = array("dn");
$filter="(&(phpgwAccountType=g)(gidnumber=".$gidnumber."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$dn = $entry[0]['dn'];
ldap_mod_del($this->ldapWrite, $dn, $attrs);
}
}
else
{
//caso o usuário só pertença ao gruno no ldap
if (count($user_info['groups_ldap']))
{
foreach ($user_info['groups_ldap'] as $gidnumber=>$group_cn)
{
$justthese = array("dn");
$filter="(&(phpgwAccountType=g)(gidnumber=".$gidnumber.")(cn=".$group_cn."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$dn = $entry[0]['dn'];
ldap_mod_del($this->ldapWrite, $dn, $attrs);
}
}
}
/*
//INSTITUTIONAL ACCOUNTS
$attrs = array();
$attrs['mailForwardingAddress'] = $user_info['mail'];
$justthese = array("dn");
$filter="(&(phpgwAccountType=i)(mailforwardingaddress=".$user_info['mail']."))";
$search = ldap_search($this->ldap, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entries = ldap_get_entries($this->ldap, $search);
for ($i=0; $i<$entries['count']; $i++)
{
if ( !@ldap_mod_del($this->ldap, $entries[$i]['dn'], $attrs) )
{
$result['status'] = false;
$result['msg'] = "Erro na função ldap_functions->delete_user, instutional_accounts.\nRetorno do servidor:" . ldap_error($this->ldap);
}
}
// MAILLISTS
$attrs = array();
$attrs['mailForwardingAddress'] = $user_info['mail'];
if (count($user_info['maillists_info']))
{
if ( !$ldapMasterConnect = $this->ldapMasterConnect() )
{
$return['status'] = false;
$return['msg'] .= 'Erro ao conectar ao ldap_master: ' . ldap_error($this->ldap);
return $return;
}
foreach ($user_info['maillists_info'] as $maillists_info)
{
$uid = $maillists_info['uid'];
$justthese = array("dn");
$filter="(&(phpgwAccountType=l)(uid=".$uid."))";
$search = ldap_search($ldapMasterConnect, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($ldapMasterConnect, $search);
$dn = $entry[0]['dn'];
if (!@ldap_mod_del($ldapMasterConnect, $dn, $attrs))
{
$return['status'] = false;
if (ldap_errno($ldapMasterConnect) == '50')
{
$result['msg'] = "Erro na função ldap_functions->add_user2maillist.\n" .
"O usuário utilizado para grava��o no LDAP, DEVE ter direito de escrita.\n".
"O usuário " . $_SESSION['phpgw_info']['expresso']['cc_ldap_server']['acc'] . " não tem este direito.\n".
"Edite \"Configura��o Global do Cat�logo\", no m�dulo Administrador, Cat�logo de Endere�os e adicione um usuário com direitos de escrita.";
}
else
$result['msg'] = "Erro na função ldap_functions->add_user2maillist.\nRetorno do servidor:" . ldap_error($ldapMasterConnect);
}
}
ldap_close($ldapMasterConnect);
}
*/
// UID
$dn = "uid=" . $user_info['uid'] . "," . $user_info['context'];
if (!ldap_delete($this->ldapWrite, $dn))
{
$return['status'] = false;
$return['msg'] .= ldap_error($this->ldapWrite);
}
return $return;
}
function delete_expresso_attributes($user_info)
{
// Verifica acesso do gerente (OU) ao tentar excluir os atributos de um usuario.
$manager_access = false;
foreach ($this->manager_contexts as $index=>$context)
{
if ( (strpos(strtolower($user_info['context']), strtolower($context))) || (strtolower($user_info['context']) == strtolower($context)) )
{
$manager_access = true;
break;
}
}
if (!$manager_access)
{
$return['status'] = false;
$return['msg'] .= 'Você não tem acesso para excluir este usuário.';
return $return;
}
$return['status'] = true;
// UID
$dn = "uid=" . $user_info['uid'] . "," . $user_info['context'];
// Removendo atributos do usuario
if($user_info['accountstatus']!='')
{
$ldap_remove = array();
$ldap_remove['accountstatus'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo accountstatus ".ldap_error($this->ldapWrite);
}
}
if($user_info['phpgwaccountstatus']!='')
{
$ldap_remove = array();
$ldap_remove['phpgwaccountstatus'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo phpgwaccountstatus ".ldap_error($this->ldapWrite);
}
}
if($user_info['phpgwaccounttype']!='')
{
$ldap_remove = array();
$ldap_remove['phpgwaccounttype'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo phpgwaccounttype ".ldap_error($this->ldapWrite);
}
}
if($user_info['phpgwaccountvisible']!='')
{
$ldap_remove = array();
$ldap_remove['phpgwaccountvisible'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo phpgwaccountvisible ".ldap_error($this->ldapWrite);
}
}
if($user_info['phpgwaccountexpires']!='')
{
$ldap_remove = array();
$ldap_remove['phpgwaccountexpires'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo phpgwaccountexpires ".ldap_error($this->ldapWrite);
}
}
if($user_info['mailalternateaddress'][0]!='')
{
$ldap_remove = array();
$ldap_remove['mailalternateaddress'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo mailalternateaddress ".ldap_error($this->ldapWrite);
}
}
if($user_info['mailforwardingaddress']!='')
{
$ldap_remove = array();
$ldap_remove['mailforwardingaddress'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo mailforwardingaddress ".ldap_error($this->ldapWrite);
}
}
if($user_info['deliverymode']!='')
{
$ldap_remove = array();
$ldap_remove['deliverymode'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo deliverymode ".ldap_error($this->ldapWrite);
}
}
if($user_info['accountOwners']!='')
{
$ldap_remove = array();
$ldap_remove['responsavel'] = array();
if (!ldap_modify ( $this->ldapWrite, $dn, $ldap_remove ))
{
$return['status'] = false;
$return['msg'] .= "Atributo responsavel ".ldap_error($this->ldapWrite);
}
}
//removendo a objectclass phpgwaccount
if($return['status'])
{
unset($user_info['objectclass']['count']);
foreach ($user_info['objectclass'] as $objectClass=>$valor )
{
if(($valor!="phpgwaccount"))
$objectclassUser['objectclass'][]=$valor;
}
if (!ldap_modify ( $this->ldapWrite, $dn, $objectclassUser ))
{
$return['status'] = false;
$return['msg'] .= ldap_error($this->ldapWrite);
}
}
return $return;
}
function delete_maillist($uidnumber, $mail)
{
$return['status'] = true;
$justthese = array("dn");
// remove listas dentro de listas
$filter="(&(phpgwAccountType=l)(mailForwardingAddress=".$mail."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$attrs['mailForwardingAddress'] = $mail;
for ($i=0; $i<=$entry['count']; $i++)
{
$dn = $entry[$i]['dn'];
@ldap_mod_del ( $this->ldapWrite, $dn, $attrs);
}
$filter="(&(phpgwAccountType=l)(uidnumber=".$uidnumber."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$dn = $entry[0]['dn'];
if (!@ldap_delete($this->ldapWrite, $dn))
{
$return['status'] = false;
$return['msg'] .= 'Erro na função ldap_funcitons->delete_maillist, listas de email: ' . ldap_error($this->ldapWrite);
}
return $return;
}
function delete_group($gidnumber)
{
$return['status'] = true;
$justthese = array("dn");
$filter="(&(phpgwAccountType=g)(gidnumber=".$gidnumber."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$dn = $entry[0]['dn'];
if (!@ldap_delete($this->ldapWrite, $dn))
{
$return['status'] = false;
$return['msg'] .= 'Erro na função ldap_funcitons->delete_maillist, listas de email: ' . ldap_error($this->ldapWrite);
}
return $return;
}
function check_access_to_renamed($uid)
{
$justthese = array("dn");
$filter="(&(phpgwAccountType=u)(uid=$uid))";
foreach ($this->manager_contexts as $index=>$context)
{
$search = ldap_search($this->ldapRead, $context, $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'])
return true;
}
return false;
}
function rename_uid($uid, $new_uid)
{
$return['status'] = true;
$justthese = array("dn");
$filter="(&(phpgwAccountType=u)(uid=".$uid."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$dn = $entry[0]['dn'];
$explode_dn = ldap_explode_dn($dn, 0);
$rdn = "uid=" . $new_uid;
$parent = array();
for ($j=1; $j<(count($explode_dn)-1); $j++)
$parent[] = $explode_dn[$j];
$parent = implode(",", $parent);
$return['new_dn'] = $rdn . ',' . $parent;
if (!@ldap_rename($this->ldapWrite, $dn, $rdn, $parent, false))
{
$return['status'] = false;
$return['msg'] .= 'Erro na função ldap_funcitons->rename_uid: ' . ldap_error($this->ldapWrite);
}
//Grupos
$justthese = array("dn");
$filter="(&(phpgwAccountType=g)(memberuid=".$uid."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$array_mod_add['memberUid'] = $new_uid;
$array_mod_del['memberUid'] = $uid;
for ($i=0; $i<=$entry['count']; $i++)
{
$dn = $entry[$i]['dn'];
@ldap_mod_add ( $this->ldapWrite, $dn, $array_mod_add);
@ldap_mod_del ( $this->ldapWrite, $dn, $array_mod_del);
}
return $return;
}
function rename_cn($cn, $new_cn)
{
$return['status'] = true;
$justthese = array("dn");
$filter="(&(phpgwAccountType=g)(uid=".$cn."))";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
$dn = $entry[0]['dn'];
$explode_dn = ldap_explode_dn($dn, 0);
$rdn = "cn=" . $new_cn;
$parent = array();
for ($j=1; $j<(count($explode_dn)-1); $j++)
$parent[] = $explode_dn[$j];
$parent = implode(",", $parent);
$return['new_dn'] = $rdn . ',' . $parent;
if (!@ldap_rename($this->ldapWrite, $dn, $rdn, $parent, false))
{
$return['status'] = false;
}
return $return;
}
function exist_sambadomains($contexts, $sambaDomainName)
{
$justthese = array("dn");
$filter="(&(objectClass=sambaDomain)(sambaDomainName=$sambaDomainName))";
foreach ($contexts as $index=>$context)
{
$search = ldap_search($this->ldapRead, $context, $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'])
return true;
}
return false;
}
// Primeiro nilvel de organiza��o.
function exist_sambadomains_in_context($params)
{
$dn = $GLOBALS['phpgw_info']['server']['ldap_context'];
$array_dn = ldap_explode_dn ( $dn, 0 );
$context = $params['context'];
$array_context = ldap_explode_dn ( $context, 0 );
// Pego o setor no caso do contexto ser um sub-setor.
if (($array_dn['count']+1) < ($array_context['count']))
{
// inverto o array_dn para poder retirar o count
$array_dn_reverse = array_reverse ( $array_dn, false );
//retiro o count
array_pop($array_dn_reverse);
//incluo o setor no dn
array_push ( $array_dn_reverse, $array_context[ $array_context['count'] - 1 - $array_dn['count']]);
// Volto a ordem natural
$array_dn = array_reverse ( $array_dn_reverse, false );
// Implodo
$context = implode ( ",", $array_dn );
}
$justthese = array("dn","sambaDomainName");
$filter="(objectClass=sambaDomain)";
$search = ldap_list($this->ldapRead, $context, $filter, $justthese);
$entry = ldap_get_entries($this->ldapRead, $search);
for ($i=0; $i<$entry['count']; $i++)
{
$return['sambaDomains'][$i] = $entry[$i]['sambadomainname'][0];
}
if ($entry['count'])
$return['status'] = true;
else
$return['status'] = false;
return $return;
}
function exist_domain_name_sid($sambadomainname, $sambasid)
{
$context = $GLOBALS['phpgw_info']['server']['ldap_context'];
$justthese = array("dn","sambaDomainName");
$filter="(&(objectClass=sambaDomain)(sambaSID=$sambasid)(sambaDomainName=$sambadomainname))";
$search = ldap_search($this->ldapRead, $context, $filter, $justthese);
$count_entries = ldap_count_entries($this->ldapRead, $search);
if ($count_entries > 0)
return true;
else
return false;
}
function add_sambadomain($sambadomainname, $sambasid, $context)
{
$result = array();
$dn = "sambaDomainName=$sambadomainname,$context";
$entry['sambaSID'] = $sambasid;
$entry['objectClass'] = 'sambaDomain';
$entry['sambaAlgorithmicRidBase'] = '1000';
$entry['sambaDomainName'] = $sambadomainname;
if (!@ldap_add ( $this->ldapWrite, $dn, $entry ))
{
$return['status'] = false;
$return['msg'] = "Erro ao adicionar Samba Domain";
}
else
$return['status'] = true;
return $return;
}
function delete_sambadomain($sambadomainname)
{
$return['status'] = true;
$filter="(sambaDomainName=$sambadomainname)";
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter);
$entry = ldap_get_entries($this->ldapRead, $search);
if ($entry['count'] != 0)
{
$dn = $entry[0]['dn'];
if (!@ldap_delete($this->ldapWrite, $dn))
{
$return['status'] = false;
$return['msg'] .= "Erro em ldap_funcitons->delete_sambadomain ($sambadomainname).\nRetorno do servidor: " . ldap_error($this->ldapWrite);
}
}
return $return;
}
function search_user($params)
{
$search = $params['search'];
$justthese = array("cn","uid", "mail");
$users_list=ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], "(&(phpgwAccountType=u) (|(cn=*$search*)(mail=$search*)) )", $justthese);
if (ldap_count_entries($this->ldapRead, $users_list) == 0)
{
$return['status'] = 'false';
$return['msg'] = 'Nenhum resultado encontrado.';
return $return;
}
ldap_sort($this->ldapRead, $users_list, "cn");
$entries = ldap_get_entries($this->ldapRead, $users_list);
$options = '';
for ($i=0; $i<$entries['count']; $i++)
{
$options .= "";
}
return $options;
}
function create_institutional_accounts($params)
{
/* Begin: Access verification */
if (!$this->functions->check_acl($_SESSION['phpgw_info']['expresso']['user']['account_lid'], 'add_institutional_accounts'))
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('You do not have right to create institutional accounts') . ".";
return $return;
}
$access_granted = false;
foreach ($this->manager_contexts as $idx=>$manager_context)
{
if (stristr($params['context'], $manager_context))
{
$access_granted = true;
break;
}
}
if (!$access_granted)
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('You do not have access to this organization') . ".";
return $return;
}
/* End: Access verification */
/* Begin: Validation */
if ( (empty($params['cn'])) || (empty($params['mail'])) )
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Field mail or name is empty');
return $result;
}
if (! eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)+$", $params['mail']) )
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Field mail is not formed correcty') . '.';
return $result;
}
$uid = 'institutional_account_' . $params['mail'];
$dn = "uid=$uid," . $params['context'];
$filter = "(mail=".$params['mail'].")";
$justthese = array("cn");
$search = @ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entries = @ldap_get_entries($this->ldapRead,$search);
if ($entries['count'] != 0)
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Field mail already in use');
return $result;
}
/* End: Validation */
$info = array();
$info['cn'] = $params['cn'];
$info['sn'] = $params['cn'];
$info['uid'] = $uid;
$info['mail'] = $params['mail'];
$info['phpgwAccountType'] = 'i';
$info['objectClass'][] = 'inetOrgPerson';
$info['objectClass'][] = 'phpgwAccount';
$info['objectClass'][] = 'top';
$info['objectClass'][] = 'person';
$info['objectClass'][] = 'qmailUser';
$info['objectClass'][] = 'organizationalPerson';
if ($params['accountStatus'] == 'on')
{
$info['accountStatus'] = 'active';
}
if ($params['phpgwAccountVisible'] == 'on')
{
$info['phpgwAccountVisible'] = '-1';
}
if (!empty($params['owners']))
{
foreach($params['owners'] as $index=>$uidnumber)
{
$info['mailForwardingAddress'][] = $this->uidnumber2mail($uidnumber);
}
}
$result = array();
if (!@ldap_add ( $this->ldapWrite, $dn, $info ))
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Error in function') . ' ldap_functions->create_institutional_accounts';
$result['msg'] .= "\n" . $this->functions->lang('Server return') . ': ' . ldap_error($this->ldapWrite);
}
else
$result['status'] = true;
return $result;
}
function save_institutional_accounts($params)
{
/* Begin: Access verification */
if (!$this->functions->check_acl($_SESSION['phpgw_info']['expresso']['user']['account_lid'], 'edit_institutional_accounts'))
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('You do not have right to edit institutional accounts') . ".";
return $return;
}
$access_granted = false;
foreach ($this->manager_contexts as $idx=>$manager_context)
{
if (stristr($params['context'], $manager_context))
{
$access_granted = true;
break;
}
}
if (!$access_granted)
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('You do not have access to this organization') . ".";
return $return;
}
/* End: Access verification */
/* Begin: Validation */
if ( (empty($params['cn'])) || (empty($params['mail'])) )
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Field mail or name is empty') . '.';
return $result;
}
if (! eregi("^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)+$", $params['mail']) )
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Field mail is not formed correcty') . '.';
return $result;
}
$uid = 'institutional_account_' . $params['mail'];
$dn = strtolower("uid=$uid," . $params['context']);
$anchor = strtolower($params['anchor']);
$filter = "(mail=".$params['mail'].")";
$justthese = array("cn");
$search = @ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entries = @ldap_get_entries($this->ldapRead,$search);
if ( ($entries['count'] > 1) || (($entries['count'] == 1) && ($entries[0]['dn'] != $anchor)) )
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Field mail already in use.');
return $result;
}
/* End: Validation */
$result = array();
$result['status'] = true;
if ($anchor != $dn)
{
if (!@ldap_rename($this->ldapWrite, $anchor, "uid=$uid", $params['context'], true))
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Error in function') . ' ldap_functions->save_institutional_accounts: ldap_rename';
$result['msg'] .= "\n" . $this->functions->lang('Server return') . ': ' . ldap_error($this->ldapWrite);
}
}
$info = array();
$info['cn'] = $params['cn'];
$info['sn'] = $params['cn'];
$info['uid'] = $uid;
$info['mail'] = $params['mail'];
if ($params['accountStatus'] == 'on')
$info['accountStatus'] = 'active';
else
$info['accountStatus'] = array();
if ($params['phpgwAccountVisible'] == 'on')
$info['phpgwAccountVisible'] = '-1';
else
$info['phpgwAccountVisible'] = array();
if (!empty($params['owners']))
{
foreach($params['owners'] as $index=>$uidnumber)
{
$mailForwardingAddress = $this->uidnumber2mail($uidnumber);
if ($mailForwardingAddress != '')
$info['mailForwardingAddress'][] = $mailForwardingAddress;
}
}
else
$info['mailForwardingAddress'] = array();
if (!@ldap_modify ( $this->ldapWrite, $dn, $info ))
{
$result['status'] = false;
$result['msg'] = $this->functions->lang('Error in function') . ' ldap_functions->save_institutional_accounts: ldap_modify';
$result['msg'] .= "\n" . $this->functions->lang('Server return') . ': ' . ldap_error($this->ldapWrite);
}
return $result;
}
function get_institutional_accounts($params)
{
if (!$this->functions->check_acl($_SESSION['phpgw_info']['expresso']['user']['account_lid'], 'list_institutional_accounts'))
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('You do not have right to list institutional accounts') . ".";
return $return;
}
$input = $params['input'];
$justthese = array("cn", "mail", "uid");
$trs = array();
foreach ($this->manager_contexts as $idx=>$context)
{
$institutional_accounts = ldap_search($this->ldapRead, $context, ("(&(phpgwAccountType=i)(|(mail=$input*)(cn=*$input*)))"), $justthese);
$entries = ldap_get_entries($this->ldapRead, $institutional_accounts);
for ($i=0; $i<$entries['count']; $i++)
{
$tr = "| " . $entries[$i]['cn'][0] . " | " . $entries[$i]['mail'][0] . " |  |
";
$trs[$tr] = $entries[$i]['cn'][0];
}
}
$trs_string = '';
if (count($trs))
{
natcasesort($trs);
foreach ($trs as $tr=>$cn)
{
$trs_string .= $tr;
}
}
$return['status'] = 'true';
$return['trs'] = $trs_string;
return $return;
}
function get_institutional_account_data($params)
{
if (!$this->functions->check_acl($_SESSION['phpgw_info']['expresso']['user']['account_lid'], 'edit_institutional_accounts'))
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('You do not have right to list institutional accounts') . ".";
return $return;
}
$uid = $params['uid'];
$justthese = array("accountStatus", "phpgwAccountVisible", "cn", "mail", "mailForwardingAddress");
$institutional_accounts = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], ("(&(phpgwAccountType=i)(uid=$uid))"), $justthese);
$entrie = ldap_get_entries($this->ldapRead, $institutional_accounts);
if ($entrie['count'] != 1)
{
$return['status'] = 'false';
$return['msg'] = 'Problemas carregando dados.';
}
else
{
$tmp_user_context = split(",", $entrie[0]['dn']);
$tmp_reverse_user_context = array_reverse($tmp_user_context);
array_pop($tmp_reverse_user_context);
$return['user_context'] = implode(",", array_reverse($tmp_reverse_user_context));
$return['status'] = 'true';
$return['accountStatus'] = $entrie[0]['accountstatus'][0];
$return['phpgwAccountVisible'] = $entrie[0]['phpgwaccountvisible'][0];
$return['cn'] = $entrie[0]['cn'][0];
$return['mail'] = $entrie[0]['mail'][0];
if ($entrie[0]['mailforwardingaddress']['count'] > 0)
{
$a_cn = array();
for ($i=0; $i<$entrie[0]['mailforwardingaddress']['count']; $i++)
{
$tmp = $this->mailforwardingaddress2uidnumber($entrie[0]['mailforwardingaddress'][$i]);
if (!$tmp) {}
else
$a_cn[$tmp['uidnumber']] = $tmp['cn'];
}
natcasesort($a_cn);
foreach($a_cn as $uidnumber => $cn)
{
$return['owners'] .= '';
}
}
}
return $return;
}
function mailforwardingaddress2uidnumber($mail)
{
$justthese = array("uidnumber","cn");
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], ("(&(phpgwAccountType=u)(mail=$mail))"), $justthese);
$entrie = ldap_get_entries($this->ldapRead, $search);
if ($entrie['count'] != 1)
return false;
else
{
$return['uidnumber'] = $entrie[0]['uidnumber'][0];
$return['cn'] = $entrie[0]['cn'][0];
return $return;
}
}
function delete_institutional_account_data($params)
{
if (!$this->functions->check_acl($_SESSION['phpgw_info']['expresso']['user']['account_lid'], 'remove_institutional_accounts'))
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('You do not have right to delete institutional accounts') . ".";
return $return;
}
$uid = $params['uid'];
$return['status'] = true;
$justthese = array("cn");
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], ("(&(phpgwAccountType=i)(uid=$uid))"), $justthese);
$entrie = ldap_get_entries($this->ldapRead, $search);
if ($entrie['count'] > 1)
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('More then one uid was found');
return $return;
}
if ($entrie['count'] == 0)
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('No uid was found');
return $return;
}
$dn = $entrie[0]['dn'];
if (!@ldap_delete($this->ldapWrite, $dn))
{
$return['status'] = false;
$return['msg'] = $this->functions->lang('Error in function') . " ldap_functions->delete_institutional_accounts: ldap_delete";
$return['msg'] .= "\n" . $this->functions->lang('Server return') . ': ' . ldap_error($this->ldapWrite);
return $return;
}
return $return;
}
function replace_mail_from_institutional_account($newMail, $oldMail)
{
$filter = "(&(phpgwAccountType=i)(mailforwardingaddress=$oldMail))";
$justthese = array("dn");
$search = ldap_search($this->ldapRead, $GLOBALS['phpgw_info']['server']['ldap_context'], $filter, $justthese);
$entries = ldap_get_entries($this->ldapRead, $search);
$result['status'] = true;
for ($i=0; $i<$entries['count']; $i++)
{
$attrs['mailforwardingaddress'] = $oldMail;
$res1 = @ldap_mod_del($this->ldapWrite, $entries[$i]['dn'], $attrs);
$attrs['mailforwardingaddress'] = $newMail;
$res2 = @ldap_mod_add($this->ldapWrite, $entries[$i]['dn'], $attrs);
if ((!$res1) || (!$res2))
{
$result['status'] = false;
$return['msg'] = $this->functions->lang('Error in function') . " ldap_functions->replace_mail_from_institutional_account.";
}
}
return $result;
}
function search_users_only($params)
{
$context = $params['context'];
$filtro = $params['filtro'];
$justthese = array("cn", "uidNumber", "mail");
$users_filter="(&(phpgwAccountType=u)(phpgwAccountStatus=A)(|(cn=*$filtro*)(mail=*$filtro*)))";
$users = Array();
$users_search = ldap_search($this->ldapRead, $context, $users_filter, $justthese);
$users_entries = ldap_get_entries($this->ldapRead, $users_search);
for ($i=0; $i<$users_entries["count"]; $i++)
{
$u_tmp[$users_entries[$i]["uidnumber"][0]] = $users_entries[$i]["cn"][0] . " [" .$users_entries[$i]["mail"][0] . "]";
}
if(count($u_tmp) == 0)
{
$options .= ''."\n";
}
if (count($u_tmp))
natcasesort($u_tmp);
$i = 0;
$users = array();
$options .= ''."\n";
if (count($u_tmp))
{
foreach ($u_tmp as $uidnumber => $cn)
{
$options .= "";
}
unset($u_tmp);
}
return $options;
}
}
?>