2015-05-26 10:11:40 +02:00
|
|
|
<?php
|
2016-02-08 15:41:00 +01:00
|
|
|
/* Icinga Web 2 | (c) 2015 Icinga Development Team | GPLv2+ */
|
2015-05-26 10:11:40 +02:00
|
|
|
|
|
|
|
namespace Icinga\Web\Controller;
|
|
|
|
|
2015-06-22 13:26:24 +02:00
|
|
|
use Zend_Controller_Action_Exception;
|
2015-05-26 10:11:40 +02:00
|
|
|
use Icinga\Application\Config;
|
|
|
|
use Icinga\Authentication\User\UserBackend;
|
|
|
|
use Icinga\Authentication\User\UserBackendInterface;
|
|
|
|
use Icinga\Authentication\UserGroup\UserGroupBackend;
|
|
|
|
use Icinga\Authentication\UserGroup\UserGroupBackendInterface;
|
|
|
|
use Icinga\Web\Controller;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Base class for authentication backend controllers
|
|
|
|
*/
|
|
|
|
class AuthBackendController extends Controller
|
|
|
|
{
|
2015-06-02 11:59:04 +02:00
|
|
|
/**
|
2015-06-22 13:26:24 +02:00
|
|
|
* Redirect to this controller's list action
|
2015-06-02 11:59:04 +02:00
|
|
|
*/
|
2015-06-22 13:26:24 +02:00
|
|
|
public function indexAction()
|
2015-06-02 11:59:04 +02:00
|
|
|
{
|
2015-06-22 13:26:24 +02:00
|
|
|
$this->redirectNow($this->getRequest()->getControllerName() . '/list');
|
2015-06-02 11:59:04 +02:00
|
|
|
}
|
|
|
|
|
2015-05-26 10:11:40 +02:00
|
|
|
/**
|
|
|
|
* Return all user backends implementing the given interface
|
|
|
|
*
|
|
|
|
* @param string $interface The class path of the interface, or null if no interface check should be made
|
|
|
|
*
|
|
|
|
* @return array
|
|
|
|
*/
|
|
|
|
protected function loadUserBackends($interface = null)
|
|
|
|
{
|
|
|
|
$backends = array();
|
|
|
|
foreach (Config::app('authentication') as $backendName => $backendConfig) {
|
|
|
|
$candidate = UserBackend::create($backendName, $backendConfig);
|
|
|
|
if (! $interface || $candidate instanceof $interface) {
|
|
|
|
$backends[] = $candidate;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return $backends;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the given user backend or the first match in order
|
|
|
|
*
|
|
|
|
* @param string $name The name of the backend, or null in case the first match should be returned
|
|
|
|
* @param string $interface The interface the backend should implement, no interface check if null
|
|
|
|
*
|
|
|
|
* @return UserBackendInterface
|
|
|
|
*
|
|
|
|
* @throws Zend_Controller_Action_Exception In case the given backend name is invalid
|
|
|
|
*/
|
|
|
|
protected function getUserBackend($name = null, $interface = 'Icinga\Data\Selectable')
|
|
|
|
{
|
|
|
|
if ($name !== null) {
|
|
|
|
$config = Config::app('authentication');
|
|
|
|
if (! $config->hasSection($name)) {
|
|
|
|
$this->httpNotFound(sprintf($this->translate('Authentication backend "%s" not found'), $name));
|
|
|
|
} else {
|
|
|
|
$backend = UserBackend::create($name, $config->getSection($name));
|
|
|
|
if ($interface && !$backend instanceof $interface) {
|
|
|
|
$interfaceParts = explode('\\', strtolower($interface));
|
|
|
|
throw new Zend_Controller_Action_Exception(
|
|
|
|
sprintf(
|
|
|
|
$this->translate('Authentication backend "%s" is not %s'),
|
|
|
|
$name,
|
|
|
|
array_pop($interfaceParts)
|
|
|
|
),
|
|
|
|
400
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
$backends = $this->loadUserBackends($interface);
|
|
|
|
$backend = array_shift($backends);
|
|
|
|
}
|
|
|
|
|
|
|
|
return $backend;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return all user group backends implementing the given interface
|
|
|
|
*
|
|
|
|
* @param string $interface The class path of the interface, or null if no interface check should be made
|
|
|
|
*
|
|
|
|
* @return array
|
|
|
|
*/
|
|
|
|
protected function loadUserGroupBackends($interface = null)
|
|
|
|
{
|
|
|
|
$backends = array();
|
|
|
|
foreach (Config::app('groups') as $backendName => $backendConfig) {
|
|
|
|
$candidate = UserGroupBackend::create($backendName, $backendConfig);
|
|
|
|
if (! $interface || $candidate instanceof $interface) {
|
|
|
|
$backends[] = $candidate;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return $backends;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return the given user group backend or the first match in order
|
|
|
|
*
|
|
|
|
* @param string $name The name of the backend, or null in case the first match should be returned
|
|
|
|
* @param string $interface The interface the backend should implement, no interface check if null
|
|
|
|
*
|
|
|
|
* @return UserGroupBackendInterface
|
|
|
|
*
|
|
|
|
* @throws Zend_Controller_Action_Exception In case the given backend name is invalid
|
|
|
|
*/
|
|
|
|
protected function getUserGroupBackend($name = null, $interface = 'Icinga\Data\Selectable')
|
|
|
|
{
|
|
|
|
if ($name !== null) {
|
|
|
|
$config = Config::app('groups');
|
|
|
|
if (! $config->hasSection($name)) {
|
|
|
|
$this->httpNotFound(sprintf($this->translate('User group backend "%s" not found'), $name));
|
|
|
|
} else {
|
|
|
|
$backend = UserGroupBackend::create($name, $config->getSection($name));
|
|
|
|
if ($interface && !$backend instanceof $interface) {
|
|
|
|
$interfaceParts = explode('\\', strtolower($interface));
|
|
|
|
throw new Zend_Controller_Action_Exception(
|
|
|
|
sprintf(
|
|
|
|
$this->translate('User group backend "%s" is not %s'),
|
|
|
|
$name,
|
|
|
|
array_pop($interfaceParts)
|
|
|
|
),
|
|
|
|
400
|
|
|
|
);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
$backends = $this->loadUserGroupBackends($interface);
|
|
|
|
$backend = array_shift($backends);
|
|
|
|
}
|
|
|
|
|
|
|
|
return $backend;
|
|
|
|
}
|
|
|
|
}
|