* @author Chris Smith */ define('DOKU_AUTH', dirname(__FILE__)); require_once(DOKU_AUTH.'/basic.class.php'); //define('AUTH_USERFILE',DOKU_CONF.'users.auth.php'); class auth_elgg extends auth_basic { var $users = null; var $_pattern = array(); /** * Constructor * * Carry out sanity checks to ensure the object is * able to operate. Set capabilities. * * @author Christopher Smith */ function auth_elgg() { // $this->cando['addUser'] = true; // $this->cando['delUser'] = true; // $this->cando['modLogin'] = true; // $this->cando['modPass'] = true; // $this->cando['modName'] = true; // $this->cando['modMail'] = true; $this->cando['getACL'] = true; $this->cando['modGroups'] = true; // $this->cando['getUsers'] = true; $this->cando['getUserCount'] = true; } /** * Check user+password [required auth function] * * Checks if the given user exists and the given * plaintext password is correct * * @author Andreas Gohr * @return bool */ function checkPass($user,$pass){ $user = get_user_by_username($user); if ($user && $user->password == $pass) return true; /*if (authenticate($user, $pass)) { return true; }*/ return false; } /** * Return user info * * Returns info about the given user needs to contain * at least these fields: * * name string full name of the user * mail string email addres of the user * grps array list of groups the user is in * * @author Andreas Gohr */ function getUserData($username){ $user = get_user_by_username($username); //error_log("getUserData:".$username); if (!$user) return false; //error_log("getUserData:".$username); $page_owner = page_owner_entity(); $grps = array(); if ($page_owner instanceof ElggGroup) { if ($page_owner->canEdit($user->getGUID())) { $grps[] = "admin"; $grps[] = "root"; //error_log('operator'); } elseif ($page_owner->isMember($user)) { $grps[] = "member"; } } elseif ($page_owner instanceof ElggUser) { if ($page_owner == $user) { $grps[] = "admin"; } elseif ($page_owner->isFriendsWith($user->getGUID())) { $grps[] = "member"; } } if ($user->isAdmin()) { $grps[] = "root"; $grps[] = "admin"; } $groups = elgg_get_entities_from_relationship(array('relationship' => 'member', 'relationship_guid' => $user->getGUID(), 'inverse_relationship' => FALSE, 'limit'=>0)); foreach($groups as $group) { $grps[] = $this->cleanUser($group->name); } return array('name'=>$user->name, 'mail'=>$user->email, 'grps'=>$grps); } /** * Create a new User * * Returns false if the user already exists, null when an error * occurred and true if everything went well. * * The new user will be added to the default group by this * function if grps are not specified (default behaviour). * * @author Andreas Gohr * @author Chris Smith */ function createUser($user,$pwd,$name,$mail,$grps=null){ global $conf; // user mustn't already exist if ($this->getUserData($user) !== false) return false; $pass = auth_cryptPassword($pwd); // set default group if no groups specified if (!is_array($grps)) $grps = array($conf['defaultgroup']); // prepare user line $groups = join(',',$grps); $userline = join(':',array($user,$pass,$name,$mail,$groups))."\n"; if (io_saveFile(AUTH_USERFILE,$userline,true)) { $this->users[$user] = compact('pass','name','mail','grps'); return $pwd; } msg('The '.AUTH_USERFILE.' file is not writable. Please inform the Wiki-Admin',-1); return null; } /** * Modify user data * * @author Chris Smith * @param $user nick of the user to be changed * @param $changes array of field/value pairs to be changed (password will be clear text) * @return bool */ function modifyUser($user, $changes) { global $conf; global $ACT; global $INFO; // sanity checks, user must already exist and there must be something to change if (($userinfo = $this->getUserData($user)) === false) return false; if (!is_array($changes) || !count($changes)) return true; // update userinfo with new data, remembering to encrypt any password $newuser = $user; foreach ($changes as $field => $value) { if ($field == 'user') { $newuser = $value; continue; } if ($field == 'pass') $value = auth_cryptPassword($value); $userinfo[$field] = $value; } $groups = join(',',$userinfo['grps']); $userline = join(':',array($newuser, $userinfo['pass'], $userinfo['name'], $userinfo['mail'], $groups))."\n"; if (!$this->deleteUsers(array($user))) { msg('Unable to modify user data. Please inform the Wiki-Admin',-1); return false; } if (!io_saveFile(AUTH_USERFILE,$userline,true)) { msg('There was an error modifying your user data. You should register again.',-1); // FIXME, user has been deleted but not recreated, should force a logout and redirect to login page $ACT == 'register'; return false; } $this->users[$newuser] = $userinfo; return true; } /** * Remove one or more users from the list of registered users * * @author Christopher Smith * @param array $users array of users to be deleted * @return int the number of users deleted */ function deleteUsers($users) { if (!is_array($users) || empty($users)) return 0; if ($this->users === null) $this->_loadUserData(); $deleted = array(); foreach ($users as $user) { if (isset($this->users[$user])) $deleted[] = preg_quote($user,'/'); } if (empty($deleted)) return 0; $pattern = '/^('.join('|',$deleted).'):/'; if (io_deleteFromFile(AUTH_USERFILE,$pattern,true)) { foreach ($deleted as $user) unset($this->users[$user]); return count($deleted); } // problem deleting, reload the user list and count the difference $count = count($this->users); $this->_loadUserData(); $count -= count($this->users); return $count; } /** * Return a count of the number of user which meet $filter criteria * * @author Chris Smith */ function getUserCount($filter=array()) { return get_number_users(true); } /** * Bulk retrieval of user data * * @author Chris Smith * @param start index of first user to be returned * @param limit max number of users to be returned * @param filter array of field/pattern pairs * @return array of userinfo (refer getUserData for internal userinfo details) */ function retrieveUsers($start=0,$limit=0,$filter=array()) { $entities = elgg_get_entities(array('types'=>'user','limit'=>$limit, 'offset'=>$start)); $allusers = array(); foreach ($entities as $entity) { $allusers[$entity->username] = getUserData($entity->username); } return $allusers; } /** * Only valid pageid's (no namespaces) for usernames */ function cleanUser($user){ global $conf; return cleanID(str_replace(':',$conf['sepchar'],$user)); } function getACL(){ $doku = current_dokuwiki_entity(); elgg_set_ignore_access(true); $acl = explode("\n" ,$doku->wiki_acl); //error_log(json_encode($acl)); elgg_set_ignore_access(false); return $acl; global $conf; $acl = array(); $acl[] = "# acl.auth.php"; $acl[] = '# '; $acl[] = "* @ALL 0"; $acl[] = "* @user 1"; $acl[] = "* @member 8"; $acl[] = "* @admin 16"; $acl[] = "* @root 255"; $acl[] = "* @testers_de_la_red_social 8"; return $acl; } function setACL($newacl){ $doku = current_dokuwiki_entity(); elgg_set_ignore_access(true); $doku->wiki_acl = $newacl; elgg_set_ignore_access(false); } /** * Only valid pageid's (no namespaces) for groupnames */ function cleanGroup($group){ global $conf; return cleanID(str_replace(':',$conf['sepchar'],$group)); } /** * Load all user data * * loads the user file into a datastructure * * @author Andreas Gohr */ function _loadUserData(){ //error_log("getUserData:"); $this->users = array(); if(!@file_exists(AUTH_USERFILE)) return; $lines = file(AUTH_USERFILE); foreach($lines as $line){ $line = preg_replace('/#.*$/','',$line); //ignore comments $line = trim($line); if(empty($line)) continue; $row = explode(":",$line,5); $groups = array_values(array_filter(explode(",",$row[4]))); $this->users[$row[0]]['pass'] = $row[1]; $this->users[$row[0]]['name'] = urldecode($row[2]); $this->users[$row[0]]['mail'] = $row[3]; $this->users[$row[0]]['grps'] = $groups; } } /** * return 1 if $user + $info match $filter criteria, 0 otherwise * * @author Chris Smith */ function _filter($user, $info) { // FIXME foreach ($this->_pattern as $item => $pattern) { if ($item == 'user') { if (!preg_match($pattern, $user)) return 0; } else if ($item == 'grps') { if (!count(preg_grep($pattern, $info['grps']))) return 0; } else { if (!preg_match($pattern, $info[$item])) return 0; } } return 1; } function _constructPattern($filter) { $this->_pattern = array(); foreach ($filter as $item => $pattern) { // $this->_pattern[$item] = '/'.preg_quote($pattern,"/").'/i'; // don't allow regex characters $this->_pattern[$item] = '/'.str_replace('/','\/',$pattern).'/i'; // allow regex characters } } } //Setup VIM: ex: et ts=2 enc=utf-8 :