2014-09-02 15:39:21 +02:00
|
|
|
<?php
|
|
|
|
// {{{ICINGA_LICENSE_HEADER}}}
|
|
|
|
// {{{ICINGA_LICENSE_HEADER}}}
|
|
|
|
|
2014-11-14 10:57:14 +01:00
|
|
|
namespace Icinga\Forms\Config\Resource;
|
2014-09-02 15:39:21 +02:00
|
|
|
|
|
|
|
use Exception;
|
|
|
|
use Icinga\Web\Form;
|
2014-11-18 13:11:52 +01:00
|
|
|
use Icinga\Data\ConfigObject;
|
2014-09-02 15:39:21 +02:00
|
|
|
use Icinga\Data\ResourceFactory;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Form class for adding/modifying ldap resources
|
|
|
|
*/
|
|
|
|
class LdapResourceForm extends Form
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* Initialize this form
|
|
|
|
*/
|
|
|
|
public function init()
|
|
|
|
{
|
|
|
|
$this->setName('form_config_resource_ldap');
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @see Form::createElements()
|
|
|
|
*/
|
|
|
|
public function createElements(array $formData)
|
|
|
|
{
|
2014-09-29 11:20:39 +02:00
|
|
|
$this->addElement(
|
|
|
|
'text',
|
|
|
|
'name',
|
|
|
|
array(
|
|
|
|
'required' => true,
|
|
|
|
'label' => t('Resource Name'),
|
|
|
|
'description' => t('The unique name of this resource')
|
|
|
|
)
|
|
|
|
);
|
2014-09-03 12:21:31 +02:00
|
|
|
$this->addElement(
|
|
|
|
'text',
|
|
|
|
'hostname',
|
|
|
|
array(
|
|
|
|
'required' => true,
|
|
|
|
'label' => t('Host'),
|
|
|
|
'description' => t('The hostname or address of the LDAP server to use for authentication'),
|
|
|
|
'value' => 'localhost'
|
|
|
|
)
|
|
|
|
);
|
|
|
|
$this->addElement(
|
2014-11-14 10:15:11 +01:00
|
|
|
'number',
|
|
|
|
'port',
|
|
|
|
array(
|
|
|
|
'required' => true,
|
|
|
|
'label' => t('Port'),
|
|
|
|
'description' => t('The port of the LDAP server to use for authentication'),
|
|
|
|
'value' => 389
|
2014-09-02 15:39:21 +02:00
|
|
|
)
|
|
|
|
);
|
2014-09-03 12:21:31 +02:00
|
|
|
$this->addElement(
|
|
|
|
'text',
|
|
|
|
'root_dn',
|
|
|
|
array(
|
|
|
|
'required' => true,
|
|
|
|
'label' => t('Root DN'),
|
2014-10-09 10:13:26 +02:00
|
|
|
'description' => t('Only the root and its child nodes will be accessible on this resource.')
|
2014-09-03 12:21:31 +02:00
|
|
|
)
|
|
|
|
);
|
|
|
|
$this->addElement(
|
|
|
|
'text',
|
|
|
|
'bind_dn',
|
|
|
|
array(
|
|
|
|
'required' => true,
|
|
|
|
'label' => t('Bind DN'),
|
|
|
|
'description' => t('The user dn to use for querying the ldap server')
|
|
|
|
)
|
|
|
|
);
|
|
|
|
$this->addElement(
|
|
|
|
'password',
|
|
|
|
'bind_pw',
|
|
|
|
array(
|
|
|
|
'required' => true,
|
|
|
|
'renderPassword' => true,
|
|
|
|
'label' => t('Bind Password'),
|
|
|
|
'description' => t('The password to use for querying the ldap server')
|
|
|
|
)
|
|
|
|
);
|
|
|
|
|
|
|
|
return $this;
|
2014-09-02 15:39:21 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Validate that the current configuration points to a valid resource
|
|
|
|
*
|
|
|
|
* @see Form::onSuccess()
|
|
|
|
*/
|
2014-11-14 14:59:12 +01:00
|
|
|
public function onSuccess()
|
2014-09-02 15:39:21 +02:00
|
|
|
{
|
2014-09-29 11:02:45 +02:00
|
|
|
if (false === static::isValidResource($this)) {
|
2014-09-02 15:39:21 +02:00
|
|
|
return false;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Validate the resource configuration by trying to connect with it
|
|
|
|
*
|
|
|
|
* @param Form $form The form to fetch the configuration values from
|
|
|
|
*
|
|
|
|
* @return bool Whether validation succeeded or not
|
|
|
|
*/
|
2014-09-29 11:02:45 +02:00
|
|
|
public static function isValidResource(Form $form)
|
2014-09-02 15:39:21 +02:00
|
|
|
{
|
|
|
|
try {
|
2014-11-18 13:11:52 +01:00
|
|
|
$resource = ResourceFactory::createResource(new ConfigObject($form->getValues()));
|
2014-09-29 11:22:43 +02:00
|
|
|
if (false === $resource->testCredentials(
|
|
|
|
$form->getElement('bind_dn')->getValue(),
|
|
|
|
$form->getElement('bind_pw')->getValue()
|
|
|
|
)
|
|
|
|
) {
|
|
|
|
throw new Exception();
|
|
|
|
}
|
2014-09-02 15:39:21 +02:00
|
|
|
} catch (Exception $e) {
|
|
|
|
$form->addError(t('Connectivity validation failed, connection to the given resource not possible.'));
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
}
|