2013-06-03 17:02:08 +02:00
|
|
|
<?php
|
2015-02-03 16:27:59 +01:00
|
|
|
/* Icinga Web 2 | (c) 2013-2015 Icinga Development Team | http://www.gnu.org/licenses/gpl-2.0.txt */
|
2013-06-03 17:02:08 +02:00
|
|
|
|
|
|
|
namespace Icinga\Protocol\Ldap;
|
2013-06-07 13:29:11 +02:00
|
|
|
|
2013-06-03 17:02:08 +02:00
|
|
|
/**
|
|
|
|
* This class provides useful LDAP-related functions
|
|
|
|
*
|
|
|
|
* @copyright Copyright (c) 2013 Icinga-Web Team <info@icinga.org>
|
|
|
|
* @author Icinga-Web Team <info@icinga.org>
|
|
|
|
* @package Icinga\Protocol\Ldap
|
|
|
|
* @license http://www.gnu.org/copyleft/gpl.html GNU General Public License
|
|
|
|
*/
|
|
|
|
class LdapUtils
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* Extends PHPs ldap_explode_dn() function
|
|
|
|
*
|
|
|
|
* UTF-8 chars like German umlauts would otherwise be escaped and shown
|
|
|
|
* as backslash-prefixed hexcode-sequenzes.
|
|
|
|
*
|
|
|
|
* @param string DN
|
|
|
|
* @param boolean Returns 'type=value' when true and 'value' when false
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public static function explodeDN($dn, $with_type = true)
|
|
|
|
{
|
|
|
|
$res = ldap_explode_dn($dn, $with_type ? 0 : 1);
|
2013-06-07 11:44:37 +02:00
|
|
|
|
2013-06-03 17:02:08 +02:00
|
|
|
foreach ($res as $k => $v) {
|
|
|
|
$res[$k] = preg_replace(
|
|
|
|
'/\\\([0-9a-f]{2})/ei',
|
|
|
|
"chr(hexdec('\\1'))",
|
|
|
|
$v
|
|
|
|
);
|
|
|
|
}
|
|
|
|
unset($res['count']);
|
|
|
|
return $res;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Implode unquoted RDNs to a DN
|
|
|
|
*
|
|
|
|
* TODO: throw away, this is not how it shall be done
|
|
|
|
*
|
|
|
|
* @param string DN-component
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public static function implodeDN($parts)
|
|
|
|
{
|
|
|
|
$str = '';
|
|
|
|
foreach ($parts as $part) {
|
2013-06-07 13:29:11 +02:00
|
|
|
if ($str !== '') {
|
|
|
|
$str .= ',';
|
|
|
|
}
|
2013-06-03 17:02:08 +02:00
|
|
|
list($key, $val) = preg_split('~=~', $part, 2);
|
|
|
|
$str .= $key . '=' . self::quoteForDN($val);
|
|
|
|
}
|
|
|
|
return $str;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Quote a string that should be used in a DN
|
|
|
|
*
|
|
|
|
* Special characters will be escaped
|
|
|
|
*
|
|
|
|
* @param string DN-component
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public static function quoteForDN($str)
|
|
|
|
{
|
2013-06-07 13:29:11 +02:00
|
|
|
return self::quoteChars(
|
|
|
|
$str,
|
|
|
|
array(
|
|
|
|
',',
|
|
|
|
'=',
|
|
|
|
'+',
|
|
|
|
'<',
|
|
|
|
'>',
|
|
|
|
';',
|
|
|
|
'\\',
|
|
|
|
'"',
|
|
|
|
'#'
|
|
|
|
)
|
|
|
|
);
|
2013-06-03 17:02:08 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Quote a string that should be used in an LDAP search
|
|
|
|
*
|
|
|
|
* Special characters will be escaped
|
|
|
|
*
|
|
|
|
* @param string String to be escaped
|
2013-06-07 13:29:11 +02:00
|
|
|
* @param bool $allow_wildcard
|
2013-06-03 17:02:08 +02:00
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public static function quoteForSearch($str, $allow_wildcard = false)
|
|
|
|
{
|
|
|
|
if ($allow_wildcard) {
|
|
|
|
return self::quoteChars($str, array('(', ')', '\\', chr(0)));
|
|
|
|
}
|
|
|
|
return self::quoteChars($str, array('*', '(', ')', '\\', chr(0)));
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Escape given characters in the given string
|
|
|
|
*
|
|
|
|
* Special characters will be escaped
|
|
|
|
*
|
2013-06-07 13:29:11 +02:00
|
|
|
* @param $str
|
|
|
|
* @param $chars
|
|
|
|
* @internal param String $string to be escaped
|
2013-06-03 17:02:08 +02:00
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
protected static function quoteChars($str, $chars)
|
|
|
|
{
|
|
|
|
$quotedChars = array();
|
|
|
|
foreach ($chars as $k => $v) {
|
2013-06-07 13:29:11 +02:00
|
|
|
// Temporarily prefixing with illegal '('
|
2013-06-03 17:02:08 +02:00
|
|
|
$quotedChars[$k] = '(' . str_pad(dechex(ord($v)), 2, '0');
|
|
|
|
}
|
|
|
|
$str = str_replace($chars, $quotedChars, $str);
|
|
|
|
// Replacing temporary '(' with '\\'. This is a workaround, as
|
|
|
|
// str_replace behaves pretty strange with leading a backslash:
|
|
|
|
$str = preg_replace('~\(~', '\\', $str);
|
|
|
|
return $str;
|
|
|
|
}
|
|
|
|
}
|