1 files changed, 103 insertions, 0 deletions
diff --git a/src/Wallabag/UserBundle/LdapHydrator.php b/src/Wallabag/UserBundle/LdapHydrator.php
new file mode 100644
index 00000000..cea2450f
--- /dev/null
+++ b/src/Wallabag/UserBundle/LdapHydrator.php
@@ -0,0 +1,103 @@
+<?php
+namespace Wallabag\UserBundle;
+use FR3D\LdapBundle\Hydrator\HydratorInterface;
+use FOS\UserBundle\FOSUserEvents;
+use FOS\UserBundle\Event\UserEvent;
+class LdapHydrator implements HydratorInterface
+{
+    private $userManager;
+    private $eventDispatcher;
+    private $attributesMap;
+    private $enabledAttribute;
+    private $ldapBaseDn;
+    private $ldapAdminFilter;
+    private $ldapDriver;
+    public function __construct(
+      $user_manager,
+      $event_dispatcher,
+      array $attributes_map,
+      $ldap_base_dn,
+      $ldap_admin_filter,
+      $ldap_driver
+    ) {
+        $this->userManager = $user_manager;
+        $this->eventDispatcher = $event_dispatcher;
+        $this->attributesMap = array(
+        'setUsername' => $attributes_map[0],
+        'setEmail' => $attributes_map[1],
+        'setName' => $attributes_map[2],
+      );
+        $this->enabledAttribute = $attributes_map[3];
+        $this->ldapBaseDn = $ldap_base_dn;
+        $this->ldapAdminFilter = $ldap_admin_filter;
+        $this->ldapDriver = $ldap_driver;
+    }
+    public function hydrate(array $ldapEntry)
+    {
+        $user = $this->userManager->findUserBy(array('dn' => $ldapEntry['dn']));
+        if (!$user) {
+            $user = $this->userManager->createUser();
+            $user->setDn($ldapEntry['dn']);
+            $user->setPassword('');
+            $user->setSalt('');
+            $this->updateUserFields($user, $ldapEntry);
+            $event = new UserEvent($user);
+            $this->eventDispatcher->dispatch(FOSUserEvents::USER_CREATED, $event);
+            $this->userManager->reloadUser($user);
+        } else {
+            $this->updateUserFields($user, $ldapEntry);
+        }
+        return $user;
+    }
+    private function updateUserFields($user, $ldapEntry)
+    {
+        foreach ($this->attributesMap as $key => $value) {
+            if (is_array($ldapEntry[$value])) {
+                $ldap_value = $ldapEntry[$value][0];
+            } else {
+                $ldap_value = $ldapEntry[$value];
+            }
+            call_user_func([$user, $key], $ldap_value);
+        }
+        if ($this->enabledAttribute !== null) {
+            $user->setEnabled($ldapEntry[$this->enabledAttribute]);
+        } else {
+            $user->setEnabled(true);
+        }
+        if ($this->isAdmin($user)) {
+            $user->addRole('ROLE_SUPER_ADMIN');
+        } else {
+            $user->removeRole('ROLE_SUPER_ADMIN');
+        }
+        $this->userManager->updateUser($user, true);
+    }
+    private function isAdmin($user)
+    {
+        if ($this->ldapAdminFilter === null) {
+            return false;
+        }
+        $escaped_username = ldap_escape($user->getUsername(), '', LDAP_ESCAPE_FILTER);
+        $filter = sprintf($this->ldapAdminFilter, $escaped_username);
+        $entries = $this->ldapDriver->search($this->ldapBaseDn, $filter);
+        return $entries['count'] == 1;
+    }
+}

diff --git a/src/Wallabag/UserBundle/LdapHydrator.php b/src/Wallabag/UserBundle/LdapHydrator.php new file mode 100644 index 00000000..cea2450f --- /dev/null +++ b/src/Wallabag/UserBundle/LdapHydrator.php
@@ -0,0 +1,103 @@
	1	<?php
	2
	3	namespace Wallabag\UserBundle;
	4
	5	use FR3D\LdapBundle\Hydrator\HydratorInterface;
	6	use FOS\UserBundle\FOSUserEvents;
	7	use FOS\UserBundle\Event\UserEvent;
	8
	9	class LdapHydrator implements HydratorInterface
	10	{
	11	private $userManager;
	12	private $eventDispatcher;
	13	private $attributesMap;
	14	private $enabledAttribute;
	15	private $ldapBaseDn;
	16	private $ldapAdminFilter;
	17	private $ldapDriver;
	18
	19	public function __construct(
	20	$user_manager,
	21	$event_dispatcher,
	22	array $attributes_map,
	23	$ldap_base_dn,
	24	$ldap_admin_filter,
	25	$ldap_driver
	26	) {
	27	$this->userManager = $user_manager;
	28	$this->eventDispatcher = $event_dispatcher;
	29
	30	$this->attributesMap = array(
	31	'setUsername' => $attributes_map[0],
	32	'setEmail' => $attributes_map[1],
	33	'setName' => $attributes_map[2],
	34	);
	35	$this->enabledAttribute = $attributes_map[3];
	36
	37	$this->ldapBaseDn = $ldap_base_dn;
	38	$this->ldapAdminFilter = $ldap_admin_filter;
	39	$this->ldapDriver = $ldap_driver;
	40	}
	41
	42	public function hydrate(array $ldapEntry)
	43	{
	44	$user = $this->userManager->findUserBy(array('dn' => $ldapEntry['dn']));
	45
	46	if (!$user) {
	47	$user = $this->userManager->createUser();
	48	$user->setDn($ldapEntry['dn']);
	49	$user->setPassword('');
	50	$user->setSalt('');
	51	$this->updateUserFields($user, $ldapEntry);
	52
	53	$event = new UserEvent($user);
	54	$this->eventDispatcher->dispatch(FOSUserEvents::USER_CREATED, $event);
	55
	56	$this->userManager->reloadUser($user);
	57	} else {
	58	$this->updateUserFields($user, $ldapEntry);
	59	}
	60
	61	return $user;
	62	}
	63
	64	private function updateUserFields($user, $ldapEntry)
	65	{
	66	foreach ($this->attributesMap as $key => $value) {
	67	if (is_array($ldapEntry[$value])) {
	68	$ldap_value = $ldapEntry[$value][0];
	69	} else {
	70	$ldap_value = $ldapEntry[$value];
	71	}
	72
	73	call_user_func([$user, $key], $ldap_value);
	74	}
	75
	76	if ($this->enabledAttribute !== null) {
	77	$user->setEnabled($ldapEntry[$this->enabledAttribute]);
	78	} else {
	79	$user->setEnabled(true);
	80	}
	81
	82	if ($this->isAdmin($user)) {
	83	$user->addRole('ROLE_SUPER_ADMIN');
	84	} else {
	85	$user->removeRole('ROLE_SUPER_ADMIN');
	86	}
	87
	88	$this->userManager->updateUser($user, true);
	89	}
	90
	91	private function isAdmin($user)
	92	{
	93	if ($this->ldapAdminFilter === null) {
	94	return false;
	95	}
	96
	97	$escaped_username = ldap_escape($user->getUsername(), '', LDAP_ESCAPE_FILTER);
	98	$filter = sprintf($this->ldapAdminFilter, $escaped_username);
	99	$entries = $this->ldapDriver->search($this->ldapBaseDn, $filter);
	100
	101	return $entries['count'] == 1;
	102	}
	103	}