SimpleLdapUserController.class.php in Simple LDAP 7
Same filename and directory in other branches
SimpleLdapUserController class.
File
simple_ldap_user/SimpleLdapUserController.class.phpView source
<?php
/**
* @file
* SimpleLdapUserController class.
*/
/**
* Controller class for LDAP users.
*/
class SimpleLdapUserController extends UserController {
/**
* Resets the entity cache.
*/
public function resetCache(array $ids = NULL) {
if (isset($ids)) {
foreach ($ids as $id) {
if (isset($this->entityCache[$id]->name)) {
SimpleLdapUser::reset($this->entityCache[$id]->name);
}
}
}
else {
SimpleLdapUser::reset();
}
return parent::resetCache($ids);
}
/**
* Verifies that the user exists in the LDAP directory.
*/
public function load($ids = array(), $conditions = array()) {
$users = parent::load($ids, $conditions);
// Validate users against LDAP directory.
foreach ($users as $uid => $drupal_user) {
// Do not validate user/1, anonymous users, or blocked users.
if ($uid == 1 || $uid == 0 || $drupal_user->status == 0) {
continue;
}
// Try to load the user from LDAP.
$ldap_user = SimpleLdapUser::singleton($drupal_user->name);
if (!$ldap_user->exists) {
// Block the user if it does not exist in LDAP.
$this
->blockUser($drupal_user);
}
// Active Directory uses a bitmask to specify certain flags on an account,
// including whether it is enabled. http://support.microsoft.com/kb/305144
if ($ldap_user->server->type == 'Active Directory') {
if (isset($ldap_user->useraccountcontrol[0]) && (int) $ldap_user->useraccountcontrol[0] & 2) {
$this
->blockUser($drupal_user);
}
}
}
return $users;
}
/**
* Block a user, setting status to 0. This will store the current status as
* stored in the database into a separate value, for use in user hooks.
*/
protected function blockUser(stdClass $account) {
$account->simple_ldap_user_drupal_status = $account->status;
$account->simple_ldap_user_ldap_status = 0;
$account->status = 0;
}
}Classes
Name |
Description |
|---|---|
| SimpleLdapUserController | Controller class for LDAP users. |