Home Explore Help
Register Sign In
styupoln
/
test1
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Commits 3 Releases 0 Wiki

Drupal investigation

Branch: master
Branches Tags
test1
/
diff
/
myLDAP.php

myLDAP.php 40KB
Permalink History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586878889909192939495969798991001011021031041051061071081091101111121131141151161171181191201211221231241251261271281291301311321331341351361371381391401411421431441451461471481491501511521531541551561571581591601611621631641651661671681691701711721731741751761771781791801811821831841851861871881891901911921931941951961971981992002012022032042052062072082092102112122132142152162172182192202212222232242252262272282292302312322332342352362372382392402412422432442452462472482492502512522532542552562572582592602612622632642652662672682692702712722732742752762772782792802812822832842852862872882892902912922932942952962972982993003013023033043053063073083093103113123133143153163173183193203213223233243253263273283293303313323333343353363373383393403413423433443453463473483493503513523533543553563573583593603613623633643653663673683693703713723733743753763773783793803813823833843853863873883893903913923933943953963973983994004014024034044054064074084094104114124134144154164174184194204214224234244254264274284294304314324334344354364374384394404414424434444454464474484494504514524534544554564574584594604614624634644654664674684694704714724734744754764774784794804814824834844854864874884894904914924934944954964974984995005015025035045055065075085095105115125135145155165175185195205215225235245255265275285295305315325335345355365375385395405415425435445455465475485495505515525535545555565575585595605615625635645655665675685695705715725735745755765775785795805815825835845855865875885895905915925935945955965975985996006016026036046056066076086096106116126136146156166176186196206216226236246256266276286296306316326336346356366376386396406416426436446456466476486496506516526536546556566576586596606616626636646656666676686696706716726736746756766776786796806816826836846856866876886896906916926936946956966976986997007017027037047057067077087097107117127137147157167177187197207217227237247257267277287297307317327337347357367377387397407417427437447457467477487497507517527537547557567577587597607617627637647657667677687697707717727737747757767777787797807817827837847857867877887897907917927937947957967977987998008018028038048058068078088098108118128138148158168178188198208218228238248258268278288298308318328338348358368378388398408418428438448458468478488498508518528538548558568578588598608618628638648658668678688698708718728738748758768778788798808818828838848858868878888898908918928938948958968978988999009019029039049059069079089099109119129139149159169179189199209219229239249259269279289299309319329339349359369379389399409419429439449459469479489499509519529539549559569579589599609619629639649659669679689699709719729739749759769779789799809819829839849859869879889899909919929939949959969979989991000100110021003100410051006100710081009101010111012101310141015101610171018101910201021102210231024102510261027102810291030103110321033103410351036103710381039104010411042104310441045104610471048104910501051105210531054105510561057105810591060106110621063106410651066106710681069107010711072107310741075107610771078107910801081108210831084108510861087108810891090109110921093109410951096109710981099110011011102110311041105110611071108110911101111111211131114111511161117111811191120112111221123112411251126112711281129113011311132113311341135113611371138113911401141114211431144114511461147114811491150115111521153115411551156115711581159116011611162116311641165116611671168116911701171117211731174117511761177117811791180118111821183118411851186118711881189 
  1. <?php
    2. 

  2. // Update knei: impüortuser um objectGUID erweitert (analog SID angelegt)
    3. 

  3. 

  4. /*
    5. 

  5. Examples:
    6. 

  6. 

  7. include 'myldap.php';
    8. 

  8. $myldap = new MyLDAP;
    9. 

  9. 

  10. $myldap->Login("praes", "vortrag");  -> TRUE
    11. 

  11. $myldap->Login("preas", "vortrag");  -> FALSE
    12. 

  12. 

  13. $myldap->ImportUsers(); -> Import Users from LDAP to MySQL
    14. 

  14. 

  15. $myldap->GetSid($username); -> Get SID from Username
    16. 

  16. $myldap->GetObjectGUID($username); -> Get object from Username (hex as str whitout separators)
    17. 

  17. $myldap->GetUsername($sid); -> Get Username from SID
    18. 

  18. $myldap->GetGroups($username); -> Get groups (comma separated) // username or sid
    19. 

  19. $myldap->IsUserInGroup($username, $groupname); return true or false
    20. 

  20. 

  21. $myldap->GetUserInformation($username); -> will return an array  // username, displayname or sid is allowed
    22. 

  22. 	array: $user["sid"] $user["username"] $user["email"] $user["displayname"] $user["description"] $user["title"] $user["forename"] $user["surname"]
    23. 

  23. 	       $user["room"] $user["department"] $user["departmentnumber"] $user["telephone"] $user["mobilephone"] $user["manager"] $user["groups"]
    24. 

  24. 

  25. 

  26. $myldap->$myldap->GetUsersFromGroup("group"); -> will return an array with usernames
    27. 

  27. */
    28. 

  28. 

  29. 

  30. class MyLDAP
    31. 

  31. {
    32. 

  32.     // Config
    33. 

  33.     protected $ldaphost    = "ads.iwmh.fraunhofer.de";
    34. 

  34.     protected $ldapuser    = "unix";
    35. 

  35.     protected $ldappasswd  = "tunix+-";
    36. 

  36.     protected $ldapbasedn  = "CN=Users,DC=iwmh,DC=fraunhofer,DC=de";
    37. 

  37. 

  38.     protected $mysqlhost   = "localhost";
    39. 

  39.     protected $mysqldb     = "adsiwmh";
    40. 

  40.     protected $mysqluser   = "unix";
    41. 

  41.     protected $mysqlpasswd = "tunix+-";
    42. 

  42. 

  43.     protected $ignoreUsers = "Administrator,opsihelper,mailer,unix,ASPNET,netapp-ad,ILS_ANONYMOUS_US,IWAM_SRV-ADS1,standard,Gast,dirxml-user,pcpatch,orgadmin,blackberry,Johnson.Controls,olat-admin,pwdsync,bereitschaft,SP_Dienste,Xpression";
    44. 

  44. 

  45. 

  46.     public function Login($username, $passwd)
    47. 

  47.     {
    48. 

  48.         $ldaphost = $this->ldaphost;
    49. 

  49.         $ldapbasedn = $this->ldapbasedn;
    50. 

  50. 

  51.         if ( ($username == "") || ($username == "NULL") || ($username == null)) return false;
    52. 

  52. 

  53.         $attribut = array("displayname", "sAMAccountName");
    54. 

  54.         $username = str_replace("IWMH\\", "", $username);
    55. 

  55.         $username = str_replace("Iwmh\\", "", $username);
    56. 

  56.         $ldapuser = $username."@iwmh.fhg.de";
    57. 

  57.         $ldappasswd = $passwd;
    58. 

  58.         $ldapquery = "(&(objectClass=Person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(sAMAccountName=$username))";
    59. 

  59. 

  60.         $ds = ldap_connect("LDAP://".$ldaphost);
    61. 

  61. 

  62.         if (!$ds) exit ("Verbindung zum LDAP Server nicht m?glich");
    63. 

  63. 

  64.         if (!ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3)) exit ("LDAP: Kann das Protokoll nicht auf Version 3 setzen");
    65. 

  65. 

  66.         $ldapbind = ldap_bind($ds, $ldapuser, $ldappasswd);
    67. 

  67.         if (!$ldapbind)	return false;
    68. 

  68. 

  69.         $sr = ldap_search($ds, $ldapbasedn, $ldapquery);
    70. 

  70.         if (!$sr) exit ("LDAP search fehlgeschlagen...");
    71. 

  71. 

  72.         for ($entry=ldap_first_entry($ds,$sr), $i=0; $entry!=false; $entry=ldap_next_entry($ds,$entry), $i++)
    73. 

  73.         {
    74. 

  74.             for ($j=0; $j<count($attribut); $j++)
    75. 

  75.             {
    76. 

  76.                 $tmp = ldap_get_values($ds, $entry, $attribut[$j]);
    77. 

  77.                 $info[$i][$j] = $tmp[0];
    78. 

  78.             }
    79. 

  79.         }
    80. 

  80. 

  81.         ldap_close($ds);
    82. 

  82. 

  83.         for ($i=0; $i<count($info); $i++)
    84. 

  84.         {
    85. 

  85.             if ((strcasecmp($info[$i][1], $username) == 0))
    86. 

  86.                 return true;
    87. 

  87.         }
    88. 

  88. 

  89.         return false;
    90. 

  90.     }
    91. 

  91. 

  92.     public function GetSid($username)
    93. 

  93.     {
    94. 

  94.         if ($username == "") return "";
    95. 

  95. 

  96.         $ldaphost   = $this->ldaphost;
    97. 

  97.         $ldapbasedn = $this->ldapbasedn;
    98. 

  98.         $ldapuser   = $this->ldapuser;
    99. 

  99.         $ldappasswd = $this->ldappasswd;
    100. 

  100. 

  101. //		echo "GetSid:".$username."\n";
    102. 

  102. 

  103.         $ds = ldap_connect("LDAP://".$ldaphost);
    104. 

  104.         ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
    105. 

  105.         ldap_set_option($ds, LDAP_OPT_REFERRALS, 0);
    106. 

  106. 

  107.         $ldapbind = ldap_bind($ds, $ldapuser, $ldappasswd);
    108. 

  108.         if (!$ldapbind)	return "ERROR";
    109. 

  109. 

  110. //		echo $username."\n";
    111. 

  111. 

  112.         $sr = ldap_search($ds, $ldapbasedn, "(sAMAccountName=".$username.")");
    113. 

  113.         $entries = ldap_get_entries($ds, $sr);
    114. 

  114. 

  115.         if (is_bool($sr)) echo "GetSid:".$username."\n";
    116. 

  116. 

  117.         if (count($entries) == 2)
    118. 

  118.         {
    119. 

  119.             // All SID's begin with S-
    120. 

  120.             $sid = "S-"; // Convert Bin to Hex and split into byte chunks
    121. 

  121.             $sidinhex = str_split(bin2hex($entries[0]['objectsid'][0]), 2); // Byte 0 = Revision Level
    122. 

  122.             if (count($sidinhex) == 28)
    123. 

  123.             {
    124. 

  124.                 $sid = $sid.hexdec($sidinhex[0])."-"; // Byte 1-7 = 48 Bit Authority
    125. 

  125.                 $sid = $sid.hexdec($sidinhex[6].$sidinhex[5].$sidinhex[4].$sidinhex[3].$sidinhex[2].$sidinhex[1]); // Byte 8 count of sub authorities - Get number of sub-authorities
    126. 

  126.                 $subauths = hexdec($sidinhex[7]); //Loop through Sub Authorities
    127. 

  127. 

  128.                 for($i = 0; $i < $subauths; $i++)
    129. 

  129.                 {
    130. 

  130.                     $start = 8 + (4 * $i); // X amount of 32Bit (4 Byte) Sub Authorities
    131. 

  131.                     $sid = $sid."-".hexdec($sidinhex[$start+3].$sidinhex[$start+2].$sidinhex[$start+1].$sidinhex[$start]);
    132. 

  132.                 }
    133. 

  133.             }
    134. 

  134.         }
    135. 

  135.         else
    136. 

  136.             return "S-0-0";
    137. 

  137.         return $sid;
    138. 

  138.     }
    139. 

  139. 

  140.     public function getObjectGUID($username)
    141. 

  141.     {
    142. 

  142.         if ($username == "") return "";
    143. 

  143. 

  144.         $ldaphost   = $this->ldaphost;
    145. 

  145.         $ldapbasedn = $this->ldapbasedn;
    146. 

  146.         $ldapuser   = $this->ldapuser;
    147. 

  147.         $ldappasswd = $this->ldappasswd;
    148. 

  148. 

  149.         $ds = ldap_connect("LDAP://".$ldaphost);
    150. 

  150.         ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
    151. 

  151.         ldap_set_option($ds, LDAP_OPT_REFERRALS, 0);
    152. 

  152. 

  153.         $ldapbind = ldap_bind($ds, $ldapuser, $ldappasswd);
    154. 

  154.         if (!$ldapbind)	return "ERROR";
    155. 

  155. 

  156.         $sr = ldap_search($ds, $ldapbasedn, "(sAMAccountName=".$username.")");
    157. 

  157.         $entries = ldap_first_entry($ds, $sr);
    158. 

  158. 

  159.         $object_guid = ldap_get_values_len($ds, $entries, 'objectGUID');
    160. 

  160. 

  161.         if(count($object_guid) ==2)
    162. 

  162.             $result = strtoupper(bin2hex($object_guid[0]));
    163. 

  163.         else
    164. 

  164.             $result = "0";
    165. 

  165. 

  166.         return $result;
    167. 

  167.     }
    168. 

  168. 

  169.     public function GetwhenCreated($username)
    170. 

  170.     {
    171. 

  171.         if ($username == "") return "";
    172. 

  172. 

  173.         $ldaphost   = $this->ldaphost;
    174. 

  174.         $ldapbasedn = $this->ldapbasedn;
    175. 

  175.         $ldapuser   = $this->ldapuser;
    176. 

  176.         $ldappasswd = $this->ldappasswd;
    177. 

  177. 

  178.         $ds = ldap_connect("LDAP://".$ldaphost);
    179. 

  179.         ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
    180. 

  180.         ldap_set_option($ds, LDAP_OPT_REFERRALS, 0);
    181. 

  181. 

  182.         $ldapbind = ldap_bind($ds, $ldapuser, $ldappasswd);
    183. 

  183.         if (!$ldapbind)	return "ERROR";
    184. 

  184. 

  185.         $sr = ldap_search($ds, $ldapbasedn, "(sAMAccountName=".$username.")");
    186. 

  186.         $entries = ldap_first_entry($ds, $sr);
    187. 

  187. 

  188.         $whenCreated = ldap_get_values($ds, $entries, 'whenCreated');
    189. 

  189. 

  190.         if(count($whenCreated) ==2)
    191. 

  191.         {
    192. 

  192.             $timeStrInUTC = preg_replace("/(\d{4})(\d{2})(\d{2})(\d{2})(\d{2})(\d{2}).+/","$1-$2-$3 $4:$5:$6", $whenCreated[0]);
    193. 

  193.             $timeInUTC = strtotime($timeStrInUTC.' UTC');
    194. 

  194.             $result = date("Y-m-d H:i:s", $timeInUTC);
    195. 

  195.         }
    196. 

  196.         else
    197. 

  197. 

  198.             $result = "0";
    199. 

  199. 

  200.         return $result;
    201. 

  201.     }
    202. 

  202. 

  203.     private function Ldap_Query($ldapquery, $attribut)
    204. 

  204.     {
    205. 

  205.         $ldaphost   = $this->ldaphost;
    206. 

  206.         $ldapbasedn = $this->ldapbasedn;
    207. 

  207.         $ldapuser   = $this->ldapuser;
    208. 

  208.         $ldappasswd = $this->ldappasswd;
    209. 

  209. 

  210.         $ds = ldap_connect("LDAP://".$ldaphost);
    211. 

  211.         $ldapbind = ldap_bind($ds, $ldapuser, $ldappasswd);
    212. 

  212.         $sr = ldap_search($ds, $ldapbasedn, $ldapquery);
    213. 

  213.         $i=0;
    214. 

  214.         $j=0;
    215. 

  215.         for ($entry=ldap_first_entry($ds,$sr), $i=0; $entry!=false; $entry=ldap_next_entry($ds,$entry), $i++)
    216. 

  216.         {
    217. 

  217.             $test = ldap_get_attributes($ds, $entry);
    218. 

  218.             for ($j=0; $j<count($attribut); $j++)
    219. 

  219.             {
    220. 

  220.                 if(array_search($attribut[$j], $test))
    221. 

  221.                     $tmp = ldap_get_values($ds, $entry, $attribut[$j]);
    222. 

  222.                 else
    223. 

  223.                     $tmp = array("");
    224. 

  224. 

  225.                 $ldap_result[$i][$attribut[$j]] = "";	// set array
    226. 

  226.                 for($k=0; $k<count($tmp); $k++)
    227. 

  227.                 {
    228. 

  228.                     if (isset($tmp[$k])) $ldap_result[$i][$attribut[$j]] .= $tmp[$k];
    229. 

  229.                 }
    230. 

  230. 

  231.                 $ldap_result[$i][$attribut[$j]] = str_replace("CN=Builtin,DC=iwmh,DC=fraunhofer,DC=de", "", $ldap_result[$i][$attribut[$j]]);  // trim groups
    232. 

  232.                 $ldap_result[$i][$attribut[$j]] = str_replace($ldapbasedn, "", $ldap_result[$i][$attribut[$j]]); // trim groups
    233. 

  233.                 $ldap_result[$i][$attribut[$j]] = str_replace(",CN=", ";", $ldap_result[$i][$attribut[$j]]);  // trim groups
    234. 

  234.                 $ldap_result[$i][$attribut[$j]] = str_replace("CN=", "", $ldap_result[$i][$attribut[$j]]);  // trim groups
    235. 

  235.                 $ldap_result[$i][$attribut[$j]] = str_replace("\,", ",", $ldap_result[$i][$attribut[$j]]);  // trim displaynames
    236. 

  236.                 $ldap_result[$i][$attribut[$j]] = rtrim($ldap_result[$i][$attribut[$j]], ",");
    237. 

  237. 

  238. 

  239.                 //echo $attribut[$j]." - ".$ldap_result[$i][$attribut[$j]]."<br>";
    240. 

  240.             }
    241. 

  241.         }
    242. 

  242.         ldap_close($ds);
    243. 

  243. 

  244.         return $ldap_result;
    245. 

  245.     }
    246. 

  246. 

  247. 

  248.     private function MySQLConnect()
    249. 

  249.     {
    250. 

  250.         $mysqlhost   = $this->mysqlhost;
    251. 

  251.         $mysqldb     = $this->mysqldb;
    252. 

  252.         $mysqluser   = $this->mysqluser;
    253. 

  253.         $mysqlpasswd = $this->mysqlpasswd;
    254. 

  254. 

  255.         $mysql = mysql_connect($mysqlhost, $mysqluser, $mysqlpasswd) or die("Keine MySQL-Verbindung: " . mysql_error());
    256. 

  256.         mysql_select_db($mysqldb, $mysql) or die("Auswahl der Datenbank fehlgeschlagen!"."<br>". mysql_error()."<br>DB:".$mysqldb);
    257. 

  257. 

  258.         mysql_query("SET NAMES 'utf8'", $mysql);
    259. 

  259.         mysql_query("SET CHARACTER SET 'utf8'", $mysql);
    260. 

  260. 

  261.         return $mysql;
    262. 

  262.     }
    263. 

  263. 

  264.     private function CreateMySQLUserTable($ldap)
    265. 

  265.     {
    266. 

  266. //		$apos = "&apos;"; Apostroph ersetzen
    267. 

  267.         $apos = "\'";
    268. 

  268. 

  269.         $mysql = $this->MySQLConnect();
    270. 

  270.         $ignoreUsers = explode(",",$this->ignoreUsers);
    271. 

  271.         $error = true;
    272. 

  272.         mysql_query("TRUNCATE adsuser;", $mysql); // Delete Data
    273. 

  273.         for($i=0; $i<count($ldap); $i++)
    274. 

  274.         {
    275. 

  275.             $import = true;
    276. 

  276.             if("" == $ldap[$i]["sAMAccountName"]) $import = false;
    277. 

  277.             if("" == $ldap[$i]["sid"]) $import = false;
    278. 

  278.             for($j=0; $j < count($ignoreUsers); $j++)
    279. 

  279.             {
    280. 

  280.                 if($ignoreUsers[$j] == $ldap[$i]["sAMAccountName"]) $import = false;
    281. 

  281.             }
    282. 

  282. 

  283.             if ($import == true)
    284. 

  284.             {
    285. 

  285. 

  286.                 $sqlquery  = "INSERT INTO `adsuser` (`sid`, `username`, `fhgusername`, `email`, `forename`, `surname`, `room`, `institute`, `department`, `departmentnumber`, `telephone`, `fax`, `mobilephone`, `displayname`,`groups`, `manager`, `description`,`title`, `employeeid`, `employeetype`, `accountexpires`, `lastlogin`, `whencreated`, `objectGUID`) VALUES";
    287. 

  287.                 $sqlquery .= "('".$ldap[$i]["sid"]."', ";
    288. 

  288.                 $sqlquery .= "'".strtolower($ldap[$i]["sAMAccountName"])."', ";
    289. 

  289.                 $sqlquery .= "'".$ldap[$i]["extensionAttribute6"]."', ";
    290. 

  290.                 $sqlquery .= "'".strtolower(str_replace("'", $apos, $ldap[$i]["mail"]))."', ";
    291. 

  291.                 $sqlquery .= "'".str_replace("'", $apos, $ldap[$i]["givenName"])."', ";
    292. 

  292.                 $sqlquery .= "'".str_replace("'", $apos, $ldap[$i]["sn"])."', ";
    293. 

  293.                 $sqlquery .= "'".$ldap[$i]["physicalDeliveryOfficeName"]."', ";
    294. 

  294.                 $sqlquery .= "'".$ldap[$i]["extensionAttribute5"]."', ";
    295. 

  295.                 $sqlquery .= "'".$ldap[$i]["department"]."', ";
    296. 

  296.                 $sqlquery .= "'".$ldap[$i]["departmentNumber"]."', ";
    297. 

  297.                 $sqlquery .= "'".$ldap[$i]["telephoneNumber"]."', ";
    298. 

  298.                 $sqlquery .= "'".$ldap[$i]["facsimileTelephoneNumber"]."', ";
    299. 

  299.                 $sqlquery .= "'".$ldap[$i]["mobile"]."', ";
    300. 

  300.                 $sqlquery .= "'".str_replace("'", $apos, $ldap[$i]["displayName"])."', ";
    301. 

  301.                 $sqlquery .= "'".$ldap[$i]["memberOf"]."', ";
    302. 

  302.                 $sqlquery .= "'".$ldap[$i]["manager"]."', ";
    303. 

  303.                 $sqlquery .= "'".str_replace("'", $apos, $ldap[$i]["description"])."', ";
    304. 

  304.                 $sqlquery .= "'".$ldap[$i]["personalTitle"]."', ";
    305. 

  305.                 $sqlquery .= "'".$ldap[$i]["employeeID"]."', ";
    306. 

  306.                 $sqlquery .= "'".$ldap[$i]["employeeType"]."', ";
    307. 

  307. 

  308.                 // ADS Eintrag (nie) abfangen
    309. 

  309.                 if ($ldap[$i]["accountExpires"] != "" and $ldap[$i]["accountExpires"] != "0" and $ldap[$i]["accountExpires"] != "9223372036854775807")
    310. 

  310.                     $sqlquery .= "'".date('Y-m-d H:i:s', $ldap[$i]["accountExpires"] / 10000000 - 11644473600)."', ";  // ADS Epoch -> Unix Timestamp
    311. 

  311.                 else
    312. 

  312.                     $sqlquery .= "NULL, ";
    313. 

  313. 

  314.                 // ADS Eintrag (nie) abfangen
    315. 

  315.                 if ($ldap[$i]["lastLogon"] != "" and $ldap[$i]["lastLogon"] != "0" and $ldap[$i]["lastLogon"] != "9223372036854775807")
    316. 

  316.                     $sqlquery .= "'".date('Y-m-d H:i:s', $ldap[$i]["lastLogon"]  / 10000000 - 11644473600)."', "; // ADS Epoch -> Unix Timestamp
    317. 

  317.                 else
    318. 

  318.                     $sqlquery .= "NULL, ";
    319. 

  319.                 $sqlquery .= "'".$ldap[$i]["whenCreated"]."', ";
    320. 

  320.                 $sqlquery .= "'".$ldap[$i]["objectGUID"]."'); ";
    321. 

  321. 

  322. //				$sqlquery .= "'".date('Y-m-d H:i:s', $ldap[$i]["accountExpires"])."', ";
    323. 

  323. //				$sqlquery .= "'".date('Y-m-d H:i:s', $ldap[$i]["lastLogon"])."'); ";
    324. 

  324.                 $sqlquery = utf8_encode($sqlquery);
    325. 

  325. 

  326.                 //echo $sqlquery."\n\n";
    327. 

  327. 

  328.                 if (!mysql_query($sqlquery, $mysql))
    329. 

  329.                 {
    330. 

  330.                     error_log("ERROR:".$sqlquery."".mysql_error()."<br>");
    331. 

  331.                     $error = false;
    332. 

  332.                 }
    333. 

  333.             }
    334. 

  334. 

  335.         }
    336. 

  336. 

  337.         return $error;
    338. 

  338.     }
    339. 

  339. 

  340.     private function CreateMySQLGroupTable($ldap)
    341. 

  341.     {
    342. 

  342.         $mysql = $this->MySQLConnect();
    343. 

  343. 

  344. //		$apos = "&apos;";
    345. 

  345.         $apos = "\'";
    346. 

  346. 

  347.         $error = true;
    348. 

  348.         mysql_query("TRUNCATE adsgroup;", $mysql); // Delete Data
    349. 

  349.         for($i=0; $i<count($ldap); $i++)
    350. 

  350.         {
    351. 

  351.             if($ldap[$i]["sid"] != "S-0-0")
    352. 

  352.             {
    353. 

  353.                 $sqlquery  = "INSERT INTO `adsgroup` (`sid`, `name`, `members`, `description`, `email`) VALUES";
    354. 

  354.                 $sqlquery .= "('".$ldap[$i]["sid"]."', ";
    355. 

  355.                 $sqlquery .= "'".str_replace("'", $apos, $ldap[$i]["name"])."', ";
    356. 

  356.                 $sqlquery .= "'".str_replace("'", $apos, $ldap[$i]["member"])."', ";
    357. 

  357. 

  358.                 $sqlquery .= "'".$ldap[$i]["description"]."', ";
    359. 

  359.                 $sqlquery .= "'".$ldap[$i]["mail"]."'); ";
    360. 

  360.                 $sqlquery = utf8_encode($sqlquery);
    361. 

  361. 

  362.                 if (!mysql_query($sqlquery, $mysql))
    363. 

  363.                 {
    364. 

  364.                     error_log("ERROR:".$sqlquery."".mysql_error()."<br>");
    365. 

  365.                     $error = false;
    366. 

  366.                 }
    367. 

  367.             }
    368. 

  368.         }
    369. 

  369.         return $error;
    370. 

  370.     }
    371. 

  371. 

  372.     public function ImportUsers()
    373. 

  373.     {
    374. 

  374.         $ldapquery = "(&(objectClass=Person)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(cn=*))";
    375. 

  375.         $search = array("sAMAccountName", "extensionAttribute6", "mail", "givenName", "sn", "physicalDeliveryOfficeName", "extensionAttribute5", "department", "departmentNumber", "description", "telephoneNumber", "mobile", "memberOf", "title", "personalTitle", "manager", "displayName", "sn", "employeeID", "employeeType", "lastLogon", "accountExpires", "facsimileTelephoneNumber");
    376. 

  376. 

  377.         // Import Groups first
    378. 

  378.         $ldap_groups = $this->ImportGroups();
    379. 

  379.         // Query Attributes
    380. 

  380.         $ldap_result = $this->Ldap_Query($ldapquery, $search);
    381. 

  381. 

  382.         if (count($ldap_result) < 100) die();  // LDAP-Error
    383. 

  383. 

  384.         // get SIDs
    385. 

  385.         for($i=0; $i<count($ldap_result); $i++)
    386. 

  386.         {
    387. 

  387.             // Formatierung verschiedener Attribute
    388. 

  388.             $ldap_result[$i]["sid"] = $this->GetSid($ldap_result[$i]["sAMAccountName"]);
    389. 

  389.             $ldap_result[$i]["objectGUID"] = $this->GetObjectGUID($ldap_result[$i]["sAMAccountName"]);
    390. 

  390.             $ldap_result[$i]["whenCreated"] = $this->GetwhenCreated($ldap_result[$i]["sAMAccountName"]);
    391. 

  391. 

  392.             // Get Groups recursive
    393. 

  393.             $group = explode (",", $ldap_result[$i]["memberOf"]);
    394. 

  394. 

  395.             for($j=0; $j<count($group); $j++)
    396. 

  396.             {
    397. 

  397.                 if (isset($ldap_groups[$group[$j]]))
    398. 

  398.                 {
    399. 

  399.                     $group[$j] = $ldap_groups[$group[$j]];
    400. 

  400.                 }
    401. 

  401.             }
    402. 

  402.             $memberOf = "";
    403. 

  403.             for($j=0; $j<count($group); $j++)
    404. 

  404.             {
    405. 

  405.                 $memberOf .= $group[$j].";";
    406. 

  406.             }
    407. 

  407.             //echo "[] ".$ldap_result[$i]["sAMAccountName"]." -> ". $ldap_result[$i]["memberOf"]."<br>";
    408. 

  408.             //echo "[][] ".$ldap_result[$i]["sAMAccountName"]." -> ". $memberOf."<br>";
    409. 

  409.             // add recursive groups to string
    410. 

  410.             //$memberOf = rtrim($memberOf, ",");
    411. 

  411.             $ldap_result[$i]["memberOf"] = $memberOf;
    412. 

  412.         }
    413. 

  413.         //var_dump($ldap_result);
    414. 

  414. 

  415.         $error = $this->CreateMySQLUserTable($ldap_result);
    416. 

  416.         $this->UpdateSIDs();
    417. 

  417.         return $error;
    418. 

  418.     }
    419. 

  419. 

  420.     public function getDeletedUsers()
    421. 

  421.     {
    422. 

  422.         $ldapquery = "(&(objectClass=Person)(userAccountControl:1.2.840.113556.1.4.803:=2)(cn=*))";
    423. 

  423.         $search = array("sAMAccountName");
    424. 

  424. 

  425.         // Query Attributes
    426. 

  426.         $ldap_result = $this->Ldap_Query($ldapquery, $search);
    427. 

  427. 

  428.         return $ldap_result;
    429. 

  429.     }
    430. 

  430. 

  431.     public function ImportGroups()
    432. 

  432.     {
    433. 

  433.         $ldapquery = "(&(objectClass=Group)(!(userAccountControl:1.2.840.113556.1.4.803:=2))(cn=*))";
    434. 

  434.         $search = array("sAMAccountName", "memberOf", "member", "mail", "description");
    435. 

  435. 

  436.         // Query Attributes
    437. 

  437.         $ldap_result = $this->Ldap_Query($ldapquery, $search);
    438. 

  438. 

  439.         for($i=0; $i<count($ldap_result); $i++)
    440. 

  440.         {
    441. 

  441.             if (!$ldap_result[$i]["memberOf"] == "")
    442. 

  442.             {
    443. 

  443.                 // add recursive groups
    444. 

  444.                 $group_result[$ldap_result[$i]["sAMAccountName"]] = $ldap_result[$i]["sAMAccountName"].",".$ldap_result[$i]["memberOf"];
    445. 

  445.                 //echo $ldap_result[$i]["sAMAccountName"]." - ".$ldap_result[$i]["memberOf"]." - ".$ldap_result[$i]["member"]."<br>";
    446. 

  446.             }
    447. 

  447.             //echo $ldap_result[$i]["sAMAccountName"]." -> ".$this->GetSid($ldap_result[$i]["sAMAccountName"])."<br>";
    448. 

  448.             $group_map[$i]["name"] =  $ldap_result[$i]["sAMAccountName"];
    449. 

  449.             $group_map[$i]["member"] = $ldap_result[$i]["member"];
    450. 

  450.             $group_map[$i]["mail"] = $ldap_result[$i]["mail"];
    451. 

  451.             $group_map[$i]["description"] = $ldap_result[$i]["description"];
    452. 

  452.             $group_map[$i]["sid"] = $this->GetSid($ldap_result[$i]["sAMAccountName"]);
    453. 

  453.         }
    454. 

  454.         $this->CreateMySQLGroupTable($group_map);
    455. 

  455.         return $group_result;
    456. 

  456. 

  457.     }
    458. 

  458. 

  459. 

  460.     private function UpdateSIDs()
    461. 

  461.     {
    462. 

  462.         $mysql = $this->MySQLConnect();
    463. 

  463. 

  464.         // create mapping array
    465. 

  465.         $sql = "SELECT displayname, sid FROM adsuser;";
    466. 

  466.         $result = mysql_query ($sql, $mysql);
    467. 

  467.         while ( $row = mysql_fetch_row ($result))
    468. 

  468.         {
    469. 

  469.             $sidmap[$row[0]] = $row[1];
    470. 

  470.         }
    471. 

  471. 

  472.         $sql = "SELECT name, sid FROM adsgroup;";
    473. 

  473.         $result = mysql_query ($sql, $mysql);
    474. 

  474.         while ( $row = mysql_fetch_row ( $result ) )
    475. 

  475.         {
    476. 

  476.             $sidmap[$row[0]] = $row[1];
    477. 

  477.         }
    478. 

  478. 

  479.         // Update SIDs in Grouptable
    480. 

  480.         $sql = "SELECT sid, members FROM adsgroup;";
    481. 

  481.         $i = 0;
    482. 

  482.         $sids="";
    483. 

  483.         $result = mysql_query ($sql, $mysql);
    484. 

  484.         while ( $row = mysql_fetch_row ( $result ) )
    485. 

  485.         {
    486. 

  486.             $names = explode(";", $row[1]);
    487. 

  487.             for ($j = 0; $j < count($names); $j++)
    488. 

  488.             {
    489. 

  489.                 if(isset($sidmap[$names[$j]]))
    490. 

  490.                 {
    491. 

  491.                     $sids .= $sidmap[$names[$j]].";";
    492. 

  492.                 }
    493. 

  493.             }
    494. 

  494.             $sids = rtrim($sids, ";");
    495. 

  495.             $sql1[$i] = "UPDATE adsgroup SET membersids='".$sids."' WHERE sid='".$row[0]."'";
    496. 

  496.             $i++;
    497. 

  497.             $sids = "";
    498. 

  498.         }
    499. 

  499. 

  500.         for($j = 0; $j < count($sql1); $j++)
    501. 

  501.         {
    502. 

  502.             mysql_query ($sql1[$j], $mysql);
    503. 

  503.             //echo $sql1[$j]."<br><br>";
    504. 

  504.         }
    505. 

  505. 

  506. 

  507. 

  508.         // Update SIDs in Usertable
    509. 

  509. 

  510.         $sql = "SELECT sid, groups FROM adsuser;";
    511. 

  511.         $i = 0;
    512. 

  512.         $result = mysql_query ( $sql, $mysql);
    513. 

  513.         while ( $row = mysql_fetch_row ( $result ) )
    514. 

  514.         {
    515. 

  515. 

  516. 

  517.             $groups = explode(";", $row[1]);
    518. 

  518.             //var_dump($groups);
    519. 

  519.             //echo "<br>";
    520. 

  520.             for ($j = 0; $j < count($groups); $j++)
    521. 

  521.             {
    522. 

  522.                 if(isset($sidmap[$groups[$j]]))
    523. 

  523.                 {
    524. 

  524. 

  525.                     $sids .= $sidmap[$groups[$j]].";";
    526. 

  526.                 }
    527. 

  527.             }
    528. 

  528. 

  529.             $sids = rtrim($sids, ";");
    530. 

  530.             $sql2[$i] = "UPDATE adsuser SET groupsids='".$sids."' WHERE sid='".$row[0]."'";
    531. 

  531.             $i++;
    532. 

  532.             $sids="";
    533. 

  533.         }
    534. 

  534. 

  535.         for($j = 0; $j < count($sql2); $j++)
    536. 

  536.         {
    537. 

  537.             mysql_query ($sql2[$j], $mysql);
    538. 

  538.             //echo $sql2[$j]."<br><br>";
    539. 

  539.         }
    540. 

  540. 

  541. 

  542. 

  543.     }
    544. 

  544. 

  545. 

  546.     /*
    547. 

  547. 

  548.         ****************************
    549. 

  549. 

  550.     */
    551. 

  551. 

  552. 

  553.     public function SQLQuery($sql)
    554. 

  554.     {
    555. 

  555.         $mysql = $this->MySQLConnect();
    556. 

  556. 

  557.         $result = mysql_query($sql, $mysql);
    558. 

  558.         if ($result == false) error_log("ERROR: " . $sql);
    559. 

  559. 

  560.         if (!is_resource($result)) return $result;
    561. 

  561. 

  562.         $i = 0;
    563. 

  563.         while ($row = mysql_fetch_array($result))
    564. 

  564.         {
    565. 

  565.             $array[$i] = $row;
    566. 

  566.             $i++;
    567. 

  567.         }
    568. 

  568.         if (!isset($array)) return "";
    569. 

  569.         return $array;
    570. 

  570.     }
    571. 

  571. 

  572. 

  573. 

  574.     // sid or username
    575. 

  575.     public function GetGroups($sid)
    576. 

  576.     {
    577. 

  577.         $mysql = $this->MySQLConnect();
    578. 

  578.         $sql = "SELECT groups, groupsids FROM adsuser WHERE username='".$sid."' OR sid='".$sid."';";
    579. 

  579.         $result = mysql_query ($sql, $mysql);
    580. 

  580. 

  581.         while ( $row = mysql_fetch_row ( $result ) )
    582. 

  582.         {
    583. 

  583.             return $row[0].";".$row[1];
    584. 

  584.         }
    585. 

  585. 

  586.         return "";
    587. 

  587.     }
    588. 

  588. 

  589. 

  590.     // alle Gruppen
    591. 

  591.     public function GetAllGroups()
    592. 

  592.     {
    593. 

  593.         $mysql = $this->MySQLConnect();
    594. 

  594.         $sql = "SELECT DISTINCT groupname FROM groupmembership ORDER BY groupname;";
    595. 

  595.         $result = mysql_query ($sql, $mysql);
    596. 

  596. 

  597.         $i = 0;
    598. 

  598.         while ( $row = mysql_fetch_row ( $result ) )
    599. 

  599.         {
    600. 

  600.             $groups[$i] = $row[0];
    601. 

  601.             $i++;
    602. 

  602.         }
    603. 

  603. 

  604.         return $groups;
    605. 

  605.     }
    606. 

  606. 

  607.     // Username or SID
    608. 

  608.     public function IsUserInGroup($sid, $groupsid)
    609. 

  609.     {
    610. 

  610.         $mysql = $this->MySQLConnect();
    611. 

  611. //		$sql = "SELECT * FROM groupmembership WHERE user_sid='".$sid."' AND group_sid = '".$groupsid."';";
    612. 

  612.         $sql = "SELECT * FROM groupmembership WHERE (user_sid='".$sid."' OR username='".$sid."') AND (group_sid = '".$groupsid."' OR groupname = '".$groupsid."');";
    613. 

  613.         $result = mysql_query ($sql, $mysql);
    614. 

  614. 

  615.         while ( $row = mysql_fetch_array ( $result ) )
    616. 

  616.         {
    617. 

  617.             return true;
    618. 

  618.         }
    619. 

  619.         return false;
    620. 

  620. 

  621. 

  622.         /*
    623. 

  623.                 $groups = $this->GetGroups($sid);
    624. 

  624.                 $group = explode (";", $groups);
    625. 

  625.                 for ($i=0; $i<count($group); $i++)
    626. 

  626.                 {
    627. 

  627.                     if ($group[$i] == $groupsid) return true;
    628. 

  628.                 }
    629. 

  629.                 return false;
    630. 

  630.         */
    631. 

  631.     }
    632. 

  632. 

  633.     public function GetUsername($sid)
    634. 

  634.     {
    635. 

  635.         $mysql = $this->MySQLConnect();
    636. 

  636.         $sql = "SELECT username FROM adsuser WHERE sid='".$sid."';";
    637. 

  637.         $result = mysql_query ($sql, $mysql);
    638. 

  638. 

  639.         while ( $row = mysql_fetch_row ( $result ) )
    640. 

  640.         {
    641. 

  641.             return $row[0];
    642. 

  642.         }
    643. 

  643.         return "";
    644. 

  644.     }
    645. 

  645. 

  646.     public function GetDisplayname($sid)
    647. 

  647.     {
    648. 

  648.         $mysql = $this->MySQLConnect();
    649. 

  649.         $sql = "SELECT displayname FROM adsuser WHERE sid='".$sid."';";
    650. 

  650.         $result = mysql_query ($sql, $mysql);
    651. 

  651. 

  652.         while ( $row = mysql_fetch_row ( $result ) )
    653. 

  653.         {
    654. 

  654.             return $row[0];
    655. 

  655.         }
    656. 

  656.         return "";
    657. 

  657.     }
    658. 

  658. 

  659.     public function GetTelephone($sid)
    660. 

  660.     {
    661. 

  661.         $mysql = $this->MySQLConnect();
    662. 

  662.         $sql = "SELECT telephone FROM adsuser WHERE sid='".$sid."';";
    663. 

  663.         $result = mysql_query ($sql, $mysql);
    664. 

  664. 

  665.         while ( $row = mysql_fetch_row ( $result ) )
    666. 

  666.         {
    667. 

  667.             return $row[0];
    668. 

  668.         }
    669. 

  669.         return "";
    670. 

  670.     }
    671. 

  671. 

  672.     public function GetUserData($sids)
    673. 

  673.     {
    674. 

  674.         $mysql = $this->MySQLConnect();
    675. 

  675. 

  676.         foreach ($sids as $sid)
    677. 

  677.         {
    678. 

  678.             $sql = "SELECT username, display FROM adsuser WHERE sid='".$sid."';";
    679. 

  679.             $result = mysql_query ($sql, $mysql);
    680. 

  680. 

  681.             while ( $row = mysql_fetch_row ( $result ) )
    682. 

  682.             {
    683. 

  683.                 return $row[0];
    684. 

  684.             }
    685. 

  685.         }
    686. 

  686.         return "";
    687. 

  687. 

  688.     }
    689. 

  689. 

  690. 

  691.     public function GetTransponder($sid)
    692. 

  692.     {
    693. 

  693.         $mysql = $this->MySQLConnect();
    694. 

  694.         $sql = "SELECT transponder.id FROM transponder, adsuser WHERE adsuser.displayname = transponder.name AND (adsuser.username='".$sid."' OR adsuser.sid='".$sid."');";
    695. 

  695.         $result = mysql_query ($sql, $mysql);
    696. 

  696. 

  697.         while ( $row = mysql_fetch_row ( $result ) )
    698. 

  698.         {
    699. 

  699.             return $row[0];
    700. 

  700.         }
    701. 

  701. 

  702.         return "";
    703. 

  703.     }
    704. 

  704. 

  705. 

  706.     public function GetSIDfromGroups()
    707. 

  707.     {
    708. 

  708.         $mysql = $this->MySQLConnect();
    709. 

  709.         $sql = "SELECT sid, name FROM adsgroup";
    710. 

  710.         $result = mysql_query($sql, $mysql);
    711. 

  711. 

  712.         $groupmap = "";
    713. 

  713.         while ($row = mysql_fetch_row($result))
    714. 

  714.         {
    715. 

  715.             $groupmap[$row[1]] = $row[0];
    716. 

  716.         }
    717. 

  717. 

  718.         return $groupmap;
    719. 

  719.     }
    720. 

  720. 

  721.     // SID, Username or Displayname
    722. 

  722.     /*    public function GetUserInformation($sid)
    723. 

  723.         {
    724. 

  724.             $mysql = $this->MySQLConnect();
    725. 

  725.             $sql  = "SELECT sid, username, email, displayname, description, title, forename, surname, room, department, departmentnumber, telephone, mobilephone, manager, groups, employeeid  FROM adsuser ";
    726. 

  726.             $sql .= "WHERE username='".$sid."' OR sid='".$sid."' OR displayname='".$sid."';";
    727. 

  727. 

  728. 

  729. 

  730.             $result = mysql_query($sql, $mysql);
    731. 

  731.             if ($result == false) error_log("ERROR: " . $sql);
    732. 

  732. 

  733.             while ($row = mysql_fetch_row($result))
    734. 

  734.             {
    735. 

  735.                 $userdata["sid"] = $row[0];
    736. 

  736.                 $userdata["username"] = $row[1];
    737. 

  737.                 $userdata["email"] = $row[2];
    738. 

  738.                 $userdata["displayname"] = $row[3];
    739. 

  739.                 $userdata["description"] = $row[4];
    740. 

  740.                 $userdata["title"] = $row[5];
    741. 

  741.                 $userdata["forename"] = $row[6];
    742. 

  742.                 $userdata["surname"] = $row[7];
    743. 

  743.                 $userdata["room"] = $row[8];
    744. 

  744.                 $userdata["department"] = $row[9];
    745. 

  745.                 $userdata["departmentnumber"] = $row[10];
    746. 

  746.                 $userdata["telephone"] = $row[11];
    747. 

  747.                 $userdata["mobilephone"] = $row[12];
    748. 

  748.                 $userdata["manager"] = $row[13];
    749. 

  749.                 $userdata["groups"] = $row[14];
    750. 

  750.                 $userdata["employeeid"] = $row[15];
    751. 

  751. 

  752.                 return $userdata;
    753. 

  753.             }
    754. 

  754.             return false;
    755. 

  755.         }
    756. 

  756.     */
    757. 

  757.     public function GetUserInformation($sid)
    758. 

  758.     {
    759. 

  759.         $mysql = $this->MySQLConnect();
    760. 

  760.         $sql  = "SELECT sid, username, email, displayname, description, title, forename, surname, room, department, departmentnumber, telephone, mobilephone, manager,";
    761. 

  761.         $sql .= "groups, employeeid, position_de, position_en, proxy, proxy2, secretary, transponder, access, employeetype, institute, accountexpires, lastlogin FROM adsuser ";
    762. 

  762.         $sql .= "WHERE username='".$sid."' OR sid='".$sid."' OR displayname='".$sid."';";
    763. 

  763. 

  764.         $result = mysql_query($sql, $mysql);
    765. 

  765.         if ($result == false) error_log("ERROR: " . $sql);
    766. 

  766. 

  767.         while ($row = mysql_fetch_row($result))
    768. 

  768.         {
    769. 

  769.             $userdata["sid"] = $row[0];
    770. 

  770.             $userdata["username"] = $row[1];
    771. 

  771.             $userdata["email"] = $row[2];
    772. 

  772.             $userdata["displayname"] = $row[3];
    773. 

  773.             $userdata["description"] = $row[4];
    774. 

  774.             $userdata["title"] = $row[5];
    775. 

  775.             $userdata["forename"] = $row[6];
    776. 

  776.             $userdata["surname"] = $row[7];
    777. 

  777.             $userdata["room"] = $row[8];
    778. 

  778.             $userdata["department"] = $row[9];
    779. 

  779.             $userdata["departmentnumber"] = $row[10];
    780. 

  780.             $userdata["telephone"] = $row[11];
    781. 

  781.             $userdata["mobilephone"] = $row[12];
    782. 

  782.             $userdata["manager"] = $row[13];
    783. 

  783.             $userdata["groups"] = $row[14];
    784. 

  784.             $userdata["employeeid"] = $row[15];
    785. 

  785.             $userdata["position_de"] = $row[16];
    786. 

  786.             $userdata["position_en"] = $row[17];
    787. 

  787.             $userdata["proxy"] = $row[18];
    788. 

  788.             $userdata["proxy2"] = $row[19];
    789. 

  789.             $userdata["secretary"] = $row[20];
    790. 

  790.             $userdata["transponder"] = $row[21];
    791. 

  791.             $userdata["access"] = $row[22];
    792. 

  792.             $userdata["employeetype"] = $row[23];
    793. 

  793.             $userdata["institute"] = $row[24];
    794. 

  794.             $userdata["accountexpires"] = $row[25];
    795. 

  795.             $userdata["lastlogin"] = $row[26];
    796. 

  796. 

  797.             return $userdata;
    798. 

  798.         }
    799. 

  799.         return false;
    800. 

  800.     }
    801. 

  801. 

  802.     public function GetGroupInformation($sid)
    803. 

  803.     {
    804. 

  804.         $mysql = $this->MySQLConnect();
    805. 

  805.         $sql  = "SELECT sid, name, email, description FROM adsgroup ";
    806. 

  806.         $sql .= "WHERE name='".$sid."' OR sid='".$sid."';";
    807. 

  807. 

  808.         $result = mysql_query($sql, $mysql);
    809. 

  809.         if ($result == false) error_log("ERROR: " . $sql);
    810. 

  810. 

  811.         while ($row = mysql_fetch_row($result))
    812. 

  812.         {
    813. 

  813.             $userdata["sid"] = $row[0];
    814. 

  814.             $userdata["name"] = $row[1];
    815. 

  815.             $userdata["email"] = $row[2];
    816. 

  816.             $userdata["description"] = $row[3];
    817. 

  817.             return $userdata;
    818. 

  818.         }
    819. 

  819.         return false;
    820. 

  820.     }
    821. 

  821. 

  822.     // sid or name
    823. 

  823.     public function GetUserInformationFromGroup($group)
    824. 

  824.     {
    825. 

  825.         $mysql = $this->MySQLConnect();
    826. 

  826.         $sql  = "SELECT sid, username, email, displayname, description, title, forename, surname, room, department, departmentnumber, telephone, mobilephone, manager, groups  FROM adsuser ";
    827. 

  827.         $sql .= "WHERE groups LIKE '%".$group."%' OR groupsids LIKE '%".$group."%' ORDER BY displayname;";
    828. 

  828.         $result = mysql_query($sql, $mysql);
    829. 

  829.         if ($result == false) echo "ERROR: " . $sql;
    830. 

  830. 

  831.         $userdata[0][0] = "";
    832. 

  832.         $i = 0;
    833. 

  833.         while ($row = mysql_fetch_row($result))
    834. 

  834.         {
    835. 

  835.             $userdata[$i]["sid"] = $row[0];
    836. 

  836.             $userdata[$i]["username"] = $row[1];
    837. 

  837.             $userdata[$i]["email"] = $row[2];
    838. 

  838.             $userdata[$i]["displayname"] = $row[3];
    839. 

  839.             $userdata[$i]["description"] = $row[4];
    840. 

  840.             $userdata[$i]["title"] = $row[5];
    841. 

  841.             $userdata[$i]["forename"] = $row[6];
    842. 

  842.             $userdata[$i]["surname"] = $row[7];
    843. 

  843.             $userdata[$i]["room"] = $row[8];
    844. 

  844.             $userdata[$i]["department"] = $row[9];
    845. 

  845.             $userdata[$i]["departmentnumber"] = $row[10];
    846. 

  846.             $userdata[$i]["telephone"] = $row[11];
    847. 

  847.             $userdata[$i]["mobilephone"] = $row[12];
    848. 

  848.             $userdata[$i]["manager"] = $row[13];
    849. 

  849.             $userdata[$i]["groups"] = $row[14];
    850. 

  850.             $i++;
    851. 

  851.         }
    852. 

  852.         return $userdata;
    853. 

  853.     }
    854. 

  854. 

  855.     // sid or name
    856. 

  856.     private function GetMembersFromGroup($group)
    857. 

  857.     {
    858. 

  858.         $mysql = $this->MySQLConnect();
    859. 

  859.         $sql = "SELECT membersids FROM adsgroup WHERE name = '".$group."' OR sid = '".$group."'";
    860. 

  860.         $result = mysql_query($sql, $mysql);
    861. 

  861. 

  862.         $j = 0;
    863. 

  863.         while ( $row = mysql_fetch_row ( $result ) )
    864. 

  864.         {
    865. 

  865.             $members = $row[0];
    866. 

  866.             $j++;
    867. 

  867.         }
    868. 

  868.         if ($j > 0)
    869. 

  869.         {
    870. 

  870.             $user = explode(";", $members);
    871. 

  871.             for ($i = 0; $i<count($user); $i++)
    872. 

  872.             {
    873. 

  873.                 $groups = $this->GetMembersFromGroup($user[$i]);
    874. 

  874.                 if ($groups != null)
    875. 

  875.                 {
    876. 

  876.                     $user[$i] = $groups;
    877. 

  877.                 }
    878. 

  878.             }
    879. 

  879. 

  880.             return $user;
    881. 

  881.         }
    882. 

  882.         return null;
    883. 

  883. 

  884.     }
    885. 

  885. 

  886.     // sid or name
    887. 

  887.     public function GetUserSidsFromGroup($group)
    888. 

  888.     {
    889. 

  889.         $user = $this->GetMembersFromGroup($group);
    890. 

  890.         return explode(";",$this->MergeArray($user));
    891. 

  891.     }
    892. 

  892. 

  893.     // sid
    894. 

  894.     public function GetUsersFromGroup($group)
    895. 

  895.     {
    896. 

  896.         $mysql = $this->MySQLConnect();
    897. 

  897.         $sql  = "SELECT DISTINCT group_sid, groupname, user_sid, displayname, username FROM groupmembership ";
    898. 

  898.         $sql .= "WHERE group_sid='".$group."' OR groupname='".$group."' ";
    899. 

  899.         $sql .= "ORDER BY displayname;";
    900. 

  900.         $result = mysql_query($sql, $mysql);
    901. 

  901.         $i = 0;
    902. 

  902.         $user[$i] = "";
    903. 

  903.         while ( $row = mysql_fetch_row ( $result ) )
    904. 

  904.         {
    905. 

  905.             if ($row[0] != "")
    906. 

  906.             {
    907. 

  907.                 $user[$i]["sid"] = $row[2];
    908. 

  908.                 $user[$i]["displayname"] = $row[3];
    909. 

  909.                 $user[$i]["username"] = $row[4];
    910. 

  910.                 $i++;
    911. 

  911.             }
    912. 

  912.         }
    913. 

  913. 

  914.         return $user;
    915. 

  915.     }
    916. 

  916. 

  917.     public function GetDepartmentNumbers()
    918. 

  918.     {
    919. 

  919.         $mysql = $this->MySQLConnect();
    920. 

  920.         $sql = "SELECT DISTINCT departmentnumber, department FROM adsuser ORDER BY departmentnumber;";
    921. 

  921.         $result = mysql_query($sql, $mysql);
    922. 

  922. 

  923.         $i = 0;
    924. 

  924.         $user[$i] = "";
    925. 

  925.         while ( $row = mysql_fetch_row ( $result ) )
    926. 

  926.         {
    927. 

  927.             if ($row[0] != "")
    928. 

  928.             {
    929. 

  929.                 $user[$i]["nr"] = $row[0];
    930. 

  930.                 $user[$i]["name"] = $row[1];
    931. 

  931.                 $i++;
    932. 

  932.             }
    933. 

  933.         }
    934. 

  934. 

  935.         return $user;
    936. 

  936.     }
    937. 

  937. 

  938.     public function GetUsersFromDepartmentNumber($departmentNumber)
    939. 

  939.     {
    940. 

  940.         $mysql = $this->MySQLConnect();
    941. 

  941.         $sql = "SELECT DISTINCT username, displayname, sid FROM adsuser WHERE departmentnumber = ".$departmentNumber.";";
    942. 

  942.         $result = mysql_query($sql, $mysql);
    943. 

  943. 

  944.         $i = 0;
    945. 

  945.         $user[$i] = "";
    946. 

  946.         while ( $row = mysql_fetch_row ( $result ) )
    947. 

  947.         {
    948. 

  948.             $user[$i]["username"] = $row[0];
    949. 

  949.             $user[$i]["displayname"] = $row[1];
    950. 

  950.             $user[$i]["sid"] = $row[2];
    951. 

  951.             $i++;
    952. 

  952.         }
    953. 

  953. 

  954.         return $user;
    955. 

  955.     }
    956. 

  956. 

  957. 

  958.     public function GetRooms()
    959. 

  959.     {
    960. 

  960.         $mysql = $this->MySQLConnect();
    961. 

  961.         $sql = "SELECT * FROM telephone ORDER BY roomnr;";
    962. 

  962.         $result = mysql_query($sql, $mysql);
    963. 

  963. 

  964.         $i = 0;
    965. 

  965.         $room[$i] = "";
    966. 

  966.         while ( $row = mysql_fetch_row ( $result ) )
    967. 

  967.         {
    968. 

  968.             $room[$i]["id"] = $row[0];
    969. 

  969.             $room[$i]["roomnr"] = $row[1];
    970. 

  970.             $room[$i]["description"] = $row[2];
    971. 

  971.             $room[$i]["telephonenr"] = $row[3];
    972. 

  972.             $i++;
    973. 

  973.         }
    974. 

  974. 

  975.         return $room;
    976. 

  976.     }
    977. 

  977. 

  978.     public function GetRoom($id)
    979. 

  979.     {
    980. 

  980.         $mysql = $this->MySQLConnect();
    981. 

  981.         $sql = "SELECT * FROM telephone WHERE id = $id;";
    982. 

  982.         $result = mysql_query($sql, $mysql);
    983. 

  983. 

  984.         $i = 0;
    985. 

  985.         $room = "";
    986. 

  986.         if ( $row = mysql_fetch_row ( $result ) )
    987. 

  987.         {
    988. 

  988.             $room["id"] = $row[0];
    989. 

  989.             $room["roomnr"] = $row[1];
    990. 

  990.             $room["description"] = $row[2];
    991. 

  991.             $room["telephonenr"] = $row[3];
    992. 

  992.         }
    993. 

  993. 

  994.         return $room;
    995. 

  995.     }
    996. 

  996. 

  997.     public function GetUserAccessFromDepartmentNumber($departmentNumber, $accessrights)
    998. 

  998.     {
    999. 

  999.         $mysql = $this->MySQLConnect();
    1000. 

  1000.         $sql = "SELECT DISTINCT username, displayname, sid FROM adsuser WHERE departmentnumber = ".$departmentNumber." AND access = '".$accessrights."';";
    1001. 

  1001.         $result = mysql_query($sql, $mysql);
    1002. 

  1002. 

  1003.         $i = 0;
    1004. 

  1004.         $user[$i] = "";
    1005. 

  1005.         while ( $row = mysql_fetch_row ( $result ) )
    1006. 

  1006.         {
    1007. 

  1007.             $user[$i]["username"] = $row[0];
    1008. 

  1008.             $user[$i]["displayname"] = $row[1];
    1009. 

  1009.             $user[$i]["sid"] = $row[2];
    1010. 

  1010.             $i++;
    1011. 

  1011.         }
    1012. 

  1012. 

  1013.         return $user;
    1014. 

  1014.     }
    1015. 

  1015. 

  1016.     private function MergeArray($array)
    1017. 

  1017.     {
    1018. 

  1018.         $merged = "";
    1019. 

  1019.         for($i=0; $i<count($array); $i++)
    1020. 

  1020.         {
    1021. 

  1021.             if (!is_array($array[$i]))
    1022. 

  1022.             {
    1023. 

  1023.                 $merged .= $array[$i].";";
    1024. 

  1024.             }
    1025. 

  1025.             else
    1026. 

  1026.             {
    1027. 

  1027.                 $merged .= $this->MergeArray($array[$i]).";";
    1028. 

  1028.             }
    1029. 

  1029. 

  1030.         }
    1031. 

  1031.         $merged = str_replace(";;",";", $merged);
    1032. 

  1032.         $merged = trim($merged, ";");
    1033. 

  1033.         return $merged;
    1034. 

  1034.     }
    1035. 

  1035. 

  1036.     public function GetUserMap($group)
    1037. 

  1037.     {
    1038. 

  1038.         $mysql = $this->MySQLConnect();
    1039. 

  1039.         $sql = "SELECT username, user_sid FROM groupmembership WHERE groupname = '".$group."';";
    1040. 

  1040.         //error_log($sql);
    1041. 

  1041.         $result = mysql_query($sql, $mysql);
    1042. 

  1042.         while ( $row = mysql_fetch_row ( $result ) )
    1043. 

  1043.         {
    1044. 

  1044.             if ($row[0] != "")
    1045. 

  1045.             {
    1046. 

  1046.                 $user[$row[1]] = $row[0];
    1047. 

  1047.             }
    1048. 

  1048.         }
    1049. 

  1049. 

  1050.         return $user;
    1051. 

  1051. 

  1052. 

  1053. 

  1054.     }
    1055. 

  1055. 

  1056. 

  1057.     public function UpdateGroupMembership()
    1058. 

  1058.     {
    1059. 

  1059.         $apos = "\'";
    1060. 

  1060. 

  1061.         $mysql = $this->MySQLConnect();
    1062. 

  1062. 

  1063.         $groups = $this->GetSIDfromGroups();
    1064. 

  1064. 

  1065.         $sql = "SELECT sid, username, displayname FROM adsuser;";
    1066. 

  1066. 

  1067.         $result = mysql_query($sql, $mysql);
    1068. 

  1068.         while ( $row = mysql_fetch_row ( $result ) )
    1069. 

  1069.         {
    1070. 

  1070.             $usersid[$row[0]]["username"] = $row[1];
    1071. 

  1071.             $usersid[$row[0]]["displayname"] = str_replace("'", $apos, $row[2]);
    1072. 

  1072.         }
    1073. 

  1073. 

  1074. 

  1075.         $sql = "SELECT sid, name, description FROM adsgroup;";
    1076. 

  1076.         $result = mysql_query($sql, $mysql);
    1077. 

  1077.         while ( $row = mysql_fetch_row ( $result ) )
    1078. 

  1078.         {
    1079. 

  1079.             $groupsid[$row[0]]["name"] = $row[1];
    1080. 

  1080.             $groupsid[$row[0]]["description"] = $row[2];
    1081. 

  1081.         }
    1082. 

  1082. 

  1083. 

  1084.         $sql = "TRUNCATE groupmembership;";
    1085. 

  1085.         mysql_query($sql, $mysql);
    1086. 

  1086. 

  1087.         foreach ($groups as $group)
    1088. 

  1088.         {
    1089. 

  1089.             $users = $this->GetUserSidsFromGroup($group);
    1090. 

  1090.             foreach ($users as $user)
    1091. 

  1091.             {
    1092. 

  1092.                 if (isset($usersid[$user]["username"]))
    1093. 

  1093.                 {
    1094. 

  1094.                     $sql =  "INSERT INTO groupmembership (group_sid, groupname, user_sid, username, displayname, description) ";
    1095. 

  1095.                     $sql .= "VALUES ('".$group."', '".$groupsid[$group]["name"]."', '".$user."', '".$usersid[$user]["username"]."', '".$usersid[$user]["displayname"]."', '".$groupsid[$group]["description"]."');";
    1096. 

  1096.                     //if ($usersid[$user]["username"] == "mllu") echo $sql."\n";
    1097. 

  1097.                     mysql_query($sql, $mysql);
    1098. 

  1098.                 }
    1099. 

  1099.             }
    1100. 

  1100.         }
    1101. 

  1101. 

  1102.     }
    1103. 

  1103. 

  1104.     public function UpdatePosition()
    1105. 

  1105.     {
    1106. 

  1106.         $mysql = $this->MySQLConnect();
    1107. 

  1107. 

  1108.         $sql  = "SELECT position.sid, position.position_de, position.position_en, position.proxy, position.proxy2, position.access, position.manager FROM adsuser, position WHERE adsuser.sid = position.sid ";
    1109. 

  1109.         $result = mysql_query($sql, $mysql);
    1110. 

  1110.         while ( $row = mysql_fetch_row ( $result ) )
    1111. 

  1111.         {
    1112. 

  1112.             $proxy = $this->GetDisplayname($row[3]);
    1113. 

  1113.             $proxy2 = $this->GetDisplayname($row[4]);
    1114. 

  1114.             $manager = $this->GetDisplayname($row[6]);
    1115. 

  1115. 

  1116.             $sql =  "UPDATE adsuser SET position_de = '".$row[1]."', position_en = '".$row[2]."', proxy = '".$proxy."', proxy2 = '".$proxy2."', access = '".$row[5]."', manager = '".$manager."' ";
    1117. 

  1117.             $sql .= "WHERE sid = '".$row[0]."';";
    1118. 

  1118.             //echo $sql."\n";
    1119. 

  1119.             mysql_query($sql, $mysql);
    1120. 

  1120.         }
    1121. 

  1121. 

  1122.         $sql  = "SELECT DISTINCT adsuser.sid, adsuser.username, departments.secretary FROM departments, adsuser WHERE departments.oe = adsuser.departmentnumber AND departments.institute = adsuser.institute AND adsuser.departmentnumber != 'all';";
    1123. 

  1123.         $result = mysql_query($sql, $mysql);
    1124. 

  1124.         while ( $row = mysql_fetch_row ( $result ) )
    1125. 

  1125.         {
    1126. 

  1126.             $secretary = $this->GetDisplayname($row[2]);
    1127. 

  1127. 

  1128. 

  1129.             $sql =  "UPDATE adsuser SET secretary = '".$secretary."' WHERE sid = '".$row[0]."';";
    1130. 

  1130.             mysql_query($sql, $mysql);
    1131. 

  1131.         }
    1132. 

  1132. 

  1133.     }
    1134. 

  1134. 

  1135. 

  1136.     public function UpdatePresence()
    1137. 

  1137.     {
    1138. 

  1138.         $mysql = $this->MySQLConnect();
    1139. 

  1139.         $sql  = "SELECT * FROM presence;";
    1140. 

  1140.         $i = 0;
    1141. 

  1141.         $result = mysql_query($sql, $mysql);
    1142. 

  1142.         while ( $row = mysql_fetch_array ( $result ) )
    1143. 

  1143.         {
    1144. 

  1144.             if ($row["sigma"] != NULL or $row["manual"] != NULL)
    1145. 

  1145.                 $sql =  "UPDATE adsuser SET present = 'N' ";
    1146. 

  1146.             else
    1147. 

  1147.                 $sql =  "UPDATE adsuser SET present = 'Y' ";
    1148. 

  1148.             $sql .= "WHERE username = '".$row["username"]."';";
    1149. 

  1149.             //echo $sql."\n";
    1150. 

  1150.             mysql_query($sql, $mysql);
    1151. 

  1151.         }
    1152. 

  1152.     }
    1153. 

  1153. 

  1154.     public function UpdateTransponder()
    1155. 

  1155.     {
    1156. 

  1156.         $mysql = $this->MySQLConnect();
    1157. 

  1157. 

  1158.         $sql  = "SELECT transponder.id, adsuser.sid FROM transponder, adsuser WHERE adsuser.employeeid = transponder.employeeid AND adsuser.employeeid != ''";
    1159. 

  1159.         $result = mysql_query($sql, $mysql);
    1160. 

  1160.         while ( $row = mysql_fetch_row ( $result ) )
    1161. 

  1161.         {
    1162. 

  1162.             $sql =  "UPDATE adsuser SET transponder = '".$row[0]."' ";
    1163. 

  1163.             $sql .= "WHERE sid = '".$row[1]."';";
    1164. 

  1164.             //echo $sql."\n";
    1165. 

  1165.             mysql_query($sql, $mysql);
    1166. 

  1166.         }
    1167. 

  1167.     }
    1168. 

  1168. 

  1169.     public function Query($query)
    1170. 

  1170.     {
    1171. 

  1171.         $mysql = $this->MySQLConnect();
    1172. 

  1172. 

  1173.         if (isset($_GET["debug"])) echo $query;
    1174. 

  1174.         //error_log($query);
    1175. 

  1175.         $result = mysql_query($query,$mysql);
    1176. 

  1176.         $i = 0;
    1177. 

  1177.         while ($row = mysql_fetch_array($result))
    1178. 

  1178.         {
    1179. 

  1179.             $array[$i] = $row;
    1180. 

  1180.             $i++;
    1181. 

  1181.         }
    1182. 

  1182.         if (!isset($array)) return "";
    1183. 

  1183.         return $array;
    1184. 

  1184.     }
    1185. 

  1185. 

  1186. 

  1187. }
    1188. 

  1188. 

  1189. ?>
    1190.