lemonldap-ng/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Auth/LDAP.pm

package Lemonldap::NG::Portal::Auth::LDAP;

use strict;
use Mouse;
use Lemonldap::NG::Portal::Main::Constants
  qw(PE_OK PE_LDAPCONNECTFAILED PE_PP_CHANGE_AFTER_RESET PE_PP_PASSWORD_EXPIRED);

our $VERSION = '2.0.0';

# Inheritance: UserDB::LDAP provides all needed ldap functions
extends
  qw(Lemonldap::NG::Portal::Auth::_WebForm Lemonldap::NG::Portal::UserDB::LDAP);

# RUNNING METHODS

sub authenticate {
    my ( $self, $req ) = @_;
    unless ( $self->ldap ) {
        return PE_LDAPCONNECTFAILED;
    }

    # Set the dn unless done before
    unless ( $req->datas->{dn} ) {
        if ( my $tmp = $self->getUser($req) ) {
            return $tmp;
        }
    }

    my $res =
      $self->userBind( $req->datas->{dn}, password => $req->datas->{password} );

    # Remember password if password reset needed
    $req->datas->{oldpassword} = $self->{password}
      if (
        $res == PE_PP_CHANGE_AFTER_RESET
        or (    $res == PE_PP_PASSWORD_EXPIRED
            and $self->conf->{ldapAllowResetExpiredPassword} )
      );

    return $res;

}

sub authLogout {
    PE_OK;
}

# Test LDAP connection before trying to bind
sub userBind {
    my $self = shift;
    unless ($self->ldap
        and $self->ldap->root_dse( attrs => ['supportedLDAPVersion'] ) )
    {
        $self->ldap( $self->newLdap );
    }
    return $self->ldap ? $self->ldap->userBind(@_) : undef;
}

1;
LDAP in progress (#595) 2016-05-01 09:30:21 +02:00			`package Lemonldap::NG::Portal::Auth::LDAP;`

			`use strict;`
			`use Mouse;`
Limit PE_* imports (#595) 2016-05-22 14:22:59 +02:00			`use Lemonldap::NG::Portal::Main::Constants`
			`qw(PE_OK PE_LDAPCONNECTFAILED PE_PP_CHANGE_AFTER_RESET PE_PP_PASSWORD_EXPIRED);`
LDAP in progress (#595) 2016-05-01 09:30:21 +02:00
			`our $VERSION = '2.0.0';`

LDAP in progress (#595) 2016-05-02 12:30:23 +02:00			`# Inheritance: UserDB::LDAP provides all needed ldap functions`
LDAP in progress (#595) 2016-05-01 09:30:21 +02:00			`extends`
			`qw(Lemonldap::NG::Portal::Auth::_WebForm Lemonldap::NG::Portal::UserDB::LDAP);`

Update comments (#595) 2016-06-09 20:40:20 +02:00			`# RUNNING METHODS`

LDAP in progress (#595) 2016-05-01 09:30:21 +02:00			`sub authenticate {`
#595 in progress 2016-05-04 13:38:49 +02:00			`my ( $self, $req ) = @_;`
LDAP in progress (#595) 2016-05-01 09:30:21 +02:00			`unless ( $self->ldap ) {`
			`return PE_LDAPCONNECTFAILED;`
			`}`

			`# Set the dn unless done before`
			`unless ( $req->datas->{dn} ) {`
			`if ( my $tmp = $self->getUser($req) ) {`
			`return $tmp;`
			`}`
			`}`

			`my $res =`
LDAP in progress (#595) 2016-05-11 13:42:37 +02:00			`$self->userBind( $req->datas->{dn}, password => $req->datas->{password} );`
LDAP in progress (#595) 2016-05-01 09:30:21 +02:00
			`# Remember password if password reset needed`
			`$req->datas->{oldpassword} = $self->{password}`
Apply patch on new trunk LDAP code (#1011) 2016-05-11 15:04:40 +02:00			`if (`
			`$res == PE_PP_CHANGE_AFTER_RESET`
			`or ( $res == PE_PP_PASSWORD_EXPIRED`
			`and $self->conf->{ldapAllowResetExpiredPassword} )`
			`);`
LDAP in progress (#595) 2016-05-01 09:30:21 +02:00
			`return $res;`

			`}`

			`sub authLogout {`
			`PE_OK;`
			`}`

LDAP in progress (#595) 2016-05-11 13:42:37 +02:00			`# Test LDAP connection before trying to bind`
			`sub userBind {`
			`my $self = shift;`
			`unless ($self->ldap`
			`and $self->ldap->root_dse( attrs => ['supportedLDAPVersion'] ) )`
			`{`
			`$self->ldap( $self->newLdap );`
			`}`
			`return $self->ldap ? $self->ldap->userBind(@_) : undef;`
			`}`

LDAP in progress (#595) 2016-05-01 09:30:21 +02:00			`1;`