diff options
Diffstat (limited to 'engine/lib/pam.php')
-rw-r--r-- | engine/lib/pam.php | 64 |
1 files changed, 62 insertions, 2 deletions
diff --git a/engine/lib/pam.php b/engine/lib/pam.php index 1986b5897..6bbfce79d 100644 --- a/engine/lib/pam.php +++ b/engine/lib/pam.php @@ -7,9 +7,69 @@ * @package Elgg
* @subpackage Core
* @license http://www.gnu.org/licenses/old-licenses/gpl-2.0.html GNU Public License version 2
- * @author Curverider Ltd
+ * @author Marcus Povey
* @copyright Curverider Ltd 2008
* @link http://elgg.org/
*/
-
+ + $_PAM_HANDLERS = array(); + $_PAM_HANDLERS_MSG = array(); + + + /** + * Register a PAM handler. + * + * @param string $handler The handler function in the format + * pam_handler($credentials = NULL); + */ + function register_pam_handler($handler) + { + global $_PAM_HANDLERS; + + if (is_callable($handler)) + { + $_PAM_HANDLERS[$handler] = $handler; + return true; + } + + return false; + } + + /** + * Attempt to authenticate. + * This function will go through all registered PAM handlers to see if a user can be authorised. + * + * If $credentials are provided the PAM handler should authenticate using the provided credentials, if + * not then credentials should be prompted for or otherwise retrieved (eg from the HTTP header or $_SESSION). + * + * @param mixed $credentials Mixed PAM handler specific credentials (eg username,password or hmac etc) + * @return bool true if authenticated, false if not. + */ + function pam_authenticate($credentials = NULL) + { + global $_PAM_HANDLERS, $_PAM_HANDLERS_MSG; + + foreach ($_PAM_HANDLERS as $k => $v) + { + try { + // Execute the handler + if ($v($credentials)) + { + // Explicitly returned true + $_PAM_HANDLERS_MSG[$k] = "Authenticated!"; + + return true; + } + else + $_PAM_HANDLERS_MSG[$k] = "Not Authenticated."; + } + catch (Exception $e) + { + $_PAM_HANDLERS_MSG[$k] = "$e"; + } + } + + return false; + } +
?>
\ No newline at end of file |