data = [];
$table->width = '100%';
$table->class = 'databox filters table_result_auth filter-table-adv';
$table->size['name'] = '30%';
$table->style['name'] = 'font-weight: bold';
$type_auth = (string) get_parameter('type_auth', '');
// Field for all types except mysql.
if ($type_auth != 'mysql') {
// Fallback to local authentication.
$row = [];
$row['name'] = __('Fallback to local authentication');
$row['control'] = html_print_checkbox_switch(
'fallback_local_auth',
1,
$config['fallback_local_auth'],
true
);
$table->data['fallback_local_auth'] = $row;
if (enterprise_installed() === true) {
$is_management_allowed = is_management_allowed();
// Autocreate remote users.
$row = [];
$row['name'] = __('Autocreate remote users');
$row['control'] = html_print_checkbox_switch_extended(
'autocreate_remote_users',
1,
$config['autocreate_remote_users'],
(is_metaconsole() === false) ? !$is_management_allowed : false,
'',
'',
true
).' ';
$table->data['autocreate_remote_users'] = $row;
$table->data['csrf_token'] = html_print_csrf_hidden();
add_enterprise_auth_autocreate_profiles($table, $type_auth);
}
}
switch ($type_auth) {
case 'ldap':
// LDAP server.
$row = [];
$row['name'] = __('LDAP server');
$row['control'] = html_print_input_text(
'ldap_server',
$config['ldap_server'],
'',
30,
100,
true,
false,
false,
'',
'w400px'
);
$table->data['ldap_server'] = $row;
// LDAP port.
$row = [];
$row['name'] = __('LDAP port');
$row['control'] = html_print_input_text(
'ldap_port',
$config['ldap_port'],
'',
10,
100,
true,
false,
false,
'',
'w400px'
);
$table->data['ldap_port'] = $row;
// LDAP version.
$ldap_versions = [
1 => 'LDAPv1',
2 => 'LDAPv2',
3 => 'LDAPv3',
];
$row = [];
$row['name'] = __('LDAP version');
$row['control'] = html_print_select(
$ldap_versions,
'ldap_version',
$config['ldap_version'],
'',
'',
0,
true,
false,
true,
'w400px'
);
$table->data['ldap_version'] = $row;
// Start TLS.
$row = [];
$row['name'] = __('Start TLS');
$row['control'] = html_print_checkbox_switch(
'ldap_start_tls',
1,
$config['ldap_start_tls'],
true
);
$table->data['ldap_start_tls'] = $row;
// Base DN.
$row = [];
$row['name'] = __('Base DN');
$row['control'] = html_print_input_text(
'ldap_base_dn',
$config['ldap_base_dn'],
'',
60,
100,
true
);
$table->data['ldap_base_dn'] = $row;
// Login attribute.
$row = [];
$row['name'] = __('Login attribute');
$row['control'] = html_print_input_text(
'ldap_login_attr',
$config['ldap_login_attr'],
'',
60,
100,
true
);
$table->data['ldap_login_attr'] = $row;
// Admin LDAP login.
$row = [];
$row['name'] = __('Admin LDAP login');
$row['control'] = html_print_input_text(
'ldap_admin_login',
$config['ldap_admin_login'],
'',
60,
100,
true
);
$table->data['ldap_admin_login'] = $row;
// Admin LDAP password.
$row = [];
$row['name'] = __('Admin LDAP password');
$row['control'] = html_print_input_password(
'ldap_admin_pass',
io_output_password($config['ldap_admin_pass']),
$alt = '',
60,
100,
true,
false,
false,
'w400px-important'
);
$table->data['ldap_admin_pass'] = $row;
// Ldapsearch timeout.
// Default Ldapsearch timeout.
set_when_empty($config['ldap_search_timeout'], 5);
$row = [];
$row['name'] = __('Ldap search timeout (secs)');
$row['control'] = html_print_input_text(
'ldap_search_timeout',
$config['ldap_search_timeout'],
'',
10,
10,
true,
false,
false,
'',
'w400px'
);
$table->data['ldap_search_timeout'] = $row;
// Enable/disable secondary ldap.
// Set default value.
set_unless_defined($config['secondary_ldap_enabled'], false);
$row = [];
$row['name'] = __('Enable secondary LDAP');
$row['control'] .= html_print_checkbox_switch(
'secondary_ldap_enabled',
1,
$config['secondary_ldap_enabled'],
true,
false,
'showAndHide()'
);
$table->data['secondary_ldap_enabled'] = $row;
$row = [];
// LDAP server.
$row = [];
$row['name'] = __('Secondary LDAP server');
$row['control'] = html_print_input_text(
'ldap_server_secondary',
$config['ldap_server_secondary'],
'',
30,
100,
true,
false,
false,
'',
'w400px'
);
$table->data['ldap_server_secondary'] = $row;
// LDAP port.
$row = [];
$row['name'] = __('Secondary LDAP port');
$row['control'] = html_print_input_text(
'ldap_port_secondary',
$config['ldap_port_secondary'],
'',
10,
100,
true,
false,
false,
'',
'w400px'
);
$table->data['ldap_port_secondary'] = $row;
// LDAP version.
$ldap_versions = [
1 => 'LDAPv1',
2 => 'LDAPv2',
3 => 'LDAPv3',
];
$row = [];
$row['name'] = __('Secondary LDAP version');
$row['control'] = html_print_select(
$ldap_versions,
'ldap_version_secondary',
$config['ldap_version_secondary'],
'',
'',
0,
true,
false,
true,
'w400px'
);
$table->data['ldap_version_secondary'] = $row;
// Start TLS.
$row = [];
$row['name'] = __('Secondary start TLS');
$row['control'] = html_print_checkbox_switch(
'ldap_start_tls_secondary',
1,
$config['ldap_start_tls_secondary'],
true
);
$table->data['ldap_start_tls_secondary'] = $row;
// Base DN.
$row = [];
$row['name'] = __('Secondary Base DN');
$row['control'] = html_print_input_text(
'ldap_base_dn_secondary',
$config['ldap_base_dn_secondary'],
'',
60,
100,
true
);
$table->data['ldap_base_dn_secondary'] = $row;
// Login attribute.
$row = [];
$row['name'] = __('Secondary Login attribute');
$row['control'] = html_print_input_text(
'ldap_login_attr_secondary',
$config['ldap_login_attr_secondary'],
'',
60,
100,
true
);
$table->data['ldap_login_attr_secondary'] = $row;
// Admin LDAP login.
$row = [];
$row['name'] = __('Admin secondary LDAP login');
$row['control'] = html_print_input_text(
'ldap_admin_login_secondary',
$config['ldap_admin_login_secondary'],
'',
60,
100,
true
);
$table->data['ldap_admin_login_secondary'] = $row;
// Admin LDAP password.
$row = [];
$row['name'] = __('Admin secondary LDAP password');
$row['control'] = html_print_input_password(
'ldap_admin_pass_secondary',
io_output_password($config['ldap_admin_pass_secondary']),
$alt = '',
60,
100,
true,
false,
false,
'w400px-important'
);
$table->data['ldap_admin_pass_secondary'] = $row;
break;
case 'pandora':
case 'ad':
case 'saml':
case 'ITSM':
// Add enterprise authentication options.
if (enterprise_installed() === true) {
add_enterprise_auth_options($table, $type_auth);
}
break;
case 'mysql':
default:
// Default case.
break;
}
// Field for all types.
// Enable double authentication.
// Set default value.
set_unless_defined($config['double_auth_enabled'], false);
$row = [];
$row['name'] = __('Double authentication');
$row['control'] .= html_print_checkbox_switch(
'double_auth_enabled',
1,
$config['double_auth_enabled'],
true,
false,
'showAndHide()'
);
$table->data['double_auth_enabled'] = $row;
// Enable 2FA for all users.
// Set default value.
set_unless_defined($config['2FA_all_users'], false);
$row = [];
$row['name'] = __('Force 2FA for all users is enabled');
$row['control'] .= html_print_checkbox_switch(
'2FA_all_users',
1,
$config['2FA_all_users'],
true
);
if ((bool) $config['double_auth_enabled'] === false) {
$table->rowclass['2FA_all_users'] = 'invisible';
} else {
$table->rowclass['2FA_all_users'] = '';
}
$table->data['2FA_all_users'] = $row;
// Session timeout behavior.
// Set default value.
$row = [];
$options = [
'check_activity' => __('Check activity'),
'ignore_activity' => __('Ignore activity'),
];
$row['name'] = __('Control of timeout session').ui_print_help_tip(__('Select \'ignore activity\' to ignore user activity when checking the session.'), true);
$row['control'] = html_print_select(
$options,
'control_session_timeout',
$config['control_session_timeout'],
'',
'',
0,
true
);
$table->data['session_timeouts'] = $row;
// Session timeout.
// Default session timeout.
set_when_empty($config['session_timeout'], 90);
$row = [];
$row['name'] = __('Session timeout (mins)');
$row['control'] = html_print_input_text(
'session_timeout',
$config['session_timeout'],
'',
10,
10,
true,
false,
false,
'',
'w400px'
);
$table->data['session_timeout'] = $row;
html_print_table($table);
return;
}
}
require_once $config['homedir'].'/include/functions_profile.php';
$table = new StdClass();
$table->data = [];
$table->width = '100%';
$table->class = 'databox filters filter-table-adv';
$table->size['name'] = '30%';
$table->style['name'] = 'font-weight: bold';
// Auth methods added to the table (doesn't take in account mysql).
$auth_methods_added = [];
// Remote options row names.
// Fill this array for every matched row.
$remote_rows = [];
// Autocreate options row names.
// Fill this array for every matched row.
$autocreate_rows = [];
$no_autocreate_rows = [];
// LDAP data row names.
// Fill this array for every matched row.
$ldap_rows = [];
// Method.
$auth_methods = [
'mysql' => __('Local %s', get_product_name()),
'ldap' => __('ldap'),
];
if (enterprise_installed() === true) {
add_enterprise_auth_methods($auth_methods);
}
$row = [];
$row['name'] = __('Authentication method');
$row['control'] = html_print_select(
$auth_methods,
'auth',
$config['auth'],
'',
'',
0,
true,
false,
true,
'w400px'
);
$table->data['auth'] = $row;
// Form.
echo '';
?>