2014-09-29 12:28:12 +02:00
|
|
|
<?php
|
2015-02-04 10:46:36 +01:00
|
|
|
/* Icinga Web 2 | (c) 2013-2015 Icinga Development Team | GPLv2+ */
|
2014-09-29 12:28:12 +02:00
|
|
|
|
2014-11-14 11:01:16 +01:00
|
|
|
namespace Icinga\Module\Setup\Forms;
|
2014-09-29 12:28:12 +02:00
|
|
|
|
2015-07-29 09:26:53 +02:00
|
|
|
use Icinga\Application\Config;
|
|
|
|
|
use Icinga\Data\ResourceFactory;
|
2015-07-23 16:18:09 +02:00
|
|
|
use Icinga\Forms\Config\UserBackendConfigForm;
|
2015-06-02 09:58:57 +02:00
|
|
|
use Icinga\Forms\Config\UserBackend\DbBackendForm;
|
|
|
|
|
use Icinga\Forms\Config\UserBackend\LdapBackendForm;
|
|
|
|
|
use Icinga\Forms\Config\UserBackend\ExternalBackendForm;
|
2015-07-23 16:18:09 +02:00
|
|
|
use Icinga\Web\Form;
|
2014-09-29 12:28:12 +02:00
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Wizard page to define authentication backend specific details
|
|
|
|
|
*/
|
|
|
|
|
class AuthBackendPage extends Form
|
|
|
|
|
{
|
|
|
|
|
/**
|
|
|
|
|
* The resource configuration to use
|
|
|
|
|
*
|
|
|
|
|
* @var array
|
|
|
|
|
*/
|
|
|
|
|
protected $config;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Initialize this page
|
|
|
|
|
*/
|
|
|
|
|
public function init()
|
|
|
|
|
{
|
|
|
|
|
$this->setName('setup_authentication_backend');
|
2015-03-02 18:36:04 +01:00
|
|
|
$this->setTitle($this->translate('Authentication Backend', 'setup.page.title'));
|
2014-09-29 12:28:12 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Set the resource configuration to use
|
|
|
|
|
*
|
|
|
|
|
* @param array $config
|
|
|
|
|
*
|
2015-04-07 14:23:26 +02:00
|
|
|
* @return $this
|
2014-09-29 12:28:12 +02:00
|
|
|
*/
|
|
|
|
|
public function setResourceConfig(array $config)
|
|
|
|
|
{
|
2015-07-29 09:26:53 +02:00
|
|
|
$resourceConfig = new Config();
|
|
|
|
|
$resourceConfig->setSection($config['name'], $config);
|
|
|
|
|
ResourceFactory::setConfig($resourceConfig);
|
|
|
|
|
|
2014-09-29 12:28:12 +02:00
|
|
|
$this->config = $config;
|
|
|
|
|
return $this;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
2015-07-29 09:26:53 +02:00
|
|
|
* Create and add elements to this form
|
2014-09-29 12:28:12 +02:00
|
|
|
*
|
2015-07-29 09:26:53 +02:00
|
|
|
* @param array $formData
|
2014-09-29 12:28:12 +02:00
|
|
|
*/
|
|
|
|
|
public function createElements(array $formData)
|
|
|
|
|
{
|
|
|
|
|
if (isset($formData['skip_validation']) && $formData['skip_validation']) {
|
|
|
|
|
$this->addSkipValidationCheckbox();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if ($this->config['type'] === 'db') {
|
2015-03-02 18:36:04 +01:00
|
|
|
$this->setRequiredCue(null);
|
2014-09-29 12:28:12 +02:00
|
|
|
$backendForm = new DbBackendForm();
|
2015-03-02 18:36:04 +01:00
|
|
|
$backendForm->setRequiredCue(null);
|
2015-07-23 16:18:09 +02:00
|
|
|
$backendForm->create($formData)->removeElement('resource');
|
2015-03-02 18:36:04 +01:00
|
|
|
$this->addDescription($this->translate(
|
|
|
|
|
'As you\'ve chosen to use a database for authentication all you need '
|
|
|
|
|
. 'to do now is defining a name for your first authentication backend.'
|
|
|
|
|
));
|
2014-09-29 12:28:12 +02:00
|
|
|
} elseif ($this->config['type'] === 'ldap') {
|
|
|
|
|
$backendForm = new LdapBackendForm();
|
2015-07-29 09:26:53 +02:00
|
|
|
$backendForm->setResources(array($this->config['name']));
|
|
|
|
|
$backendForm->create($formData);
|
|
|
|
|
$backendForm->getElement('resource')->setIgnore(true);
|
2015-03-02 18:36:04 +01:00
|
|
|
$this->addDescription($this->translate(
|
|
|
|
|
'Before you are able to authenticate using the LDAP connection defined earlier you need to'
|
|
|
|
|
. ' provide some more information so that Icinga Web 2 is able to locate account details.'
|
|
|
|
|
));
|
2015-06-25 14:22:50 +02:00
|
|
|
$this->addElement(
|
|
|
|
|
'select',
|
|
|
|
|
'type',
|
|
|
|
|
array(
|
|
|
|
|
'ignore' => true,
|
|
|
|
|
'required' => true,
|
|
|
|
|
'autosubmit' => true,
|
|
|
|
|
'label' => $this->translate('Backend Type'),
|
|
|
|
|
'description' => $this->translate(
|
|
|
|
|
'The type of the resource being used for this authenticaton provider'
|
|
|
|
|
),
|
|
|
|
|
'multiOptions' => array(
|
|
|
|
|
'ldap' => 'LDAP',
|
|
|
|
|
'msldap' => 'ActiveDirectory'
|
|
|
|
|
)
|
|
|
|
|
)
|
|
|
|
|
);
|
2015-01-27 09:49:36 +01:00
|
|
|
} else { // $this->config['type'] === 'external'
|
|
|
|
|
$backendForm = new ExternalBackendForm();
|
2015-07-23 16:18:09 +02:00
|
|
|
$backendForm->create($formData);
|
2015-03-02 18:36:04 +01:00
|
|
|
$this->addDescription($this->translate(
|
|
|
|
|
'You\'ve chosen to authenticate using a web server\'s mechanism so it may be necessary'
|
|
|
|
|
. ' to adjust usernames before any permissions, restrictions, etc. are being applied.'
|
|
|
|
|
));
|
2014-09-29 12:28:12 +02:00
|
|
|
}
|
|
|
|
|
|
2015-07-23 16:18:09 +02:00
|
|
|
$backendForm->getElement('name')->setValue('icingaweb2');
|
|
|
|
|
$this->addSubForm($backendForm, 'backend_form');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Retrieve all form element values
|
|
|
|
|
*
|
|
|
|
|
* @param bool $suppressArrayNotation Ignored
|
|
|
|
|
*
|
|
|
|
|
* @return array
|
|
|
|
|
*/
|
|
|
|
|
public function getValues($suppressArrayNotation = false)
|
|
|
|
|
{
|
|
|
|
|
$values = parent::getValues();
|
|
|
|
|
$values = array_merge($values, $values['backend_form']);
|
|
|
|
|
unset($values['backend_form']);
|
|
|
|
|
return $values;
|
2014-09-29 12:28:12 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Validate the given form data and check whether it's possible to authenticate using the configured backend
|
|
|
|
|
*
|
|
|
|
|
* @param array $data The data to validate
|
|
|
|
|
*
|
|
|
|
|
* @return bool
|
|
|
|
|
*/
|
|
|
|
|
public function isValid($data)
|
|
|
|
|
{
|
2015-07-23 16:18:09 +02:00
|
|
|
if (! parent::isValid($data)) {
|
2014-09-29 12:28:12 +02:00
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
|
2015-07-23 16:18:09 +02:00
|
|
|
if ($this->config['type'] === 'ldap' && (! isset($data['skip_validation']) || $data['skip_validation'] == 0)) {
|
2015-06-25 14:36:51 +02:00
|
|
|
$self = clone $this;
|
2015-07-29 09:26:53 +02:00
|
|
|
$self->getSubForm('backend_form')->getElement('resource')->setIgnore(false);
|
2015-07-24 11:45:49 +02:00
|
|
|
$inspection = UserBackendConfigForm::inspectUserBackend($self);
|
|
|
|
|
if ($inspection && $inspection->hasError()) {
|
|
|
|
|
$this->error($inspection->getError());
|
2014-09-29 12:28:12 +02:00
|
|
|
$this->addSkipValidationCheckbox();
|
|
|
|
|
return false;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return true;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Add a checkbox to this form by which the user can skip the authentication validation
|
|
|
|
|
*/
|
|
|
|
|
protected function addSkipValidationCheckbox()
|
|
|
|
|
{
|
|
|
|
|
$this->addElement(
|
|
|
|
|
'checkbox',
|
|
|
|
|
'skip_validation',
|
|
|
|
|
array(
|
2015-03-02 18:36:04 +01:00
|
|
|
'order' => 0,
|
2014-09-29 12:28:12 +02:00
|
|
|
'ignore' => true,
|
|
|
|
|
'required' => true,
|
2015-01-19 11:07:39 +01:00
|
|
|
'label' => $this->translate('Skip Validation'),
|
|
|
|
|
'description' => $this->translate('Check this to not to validate authentication using this backend')
|
2014-09-29 12:28:12 +02:00
|
|
|
)
|
|
|
|
|
);
|
|
|
|
|
}
|
|
|
|
|
}
|
