lemonldap-ng/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Lib/LDAP.pm

package Lemonldap::NG::Portal::Lib::LDAP;

use strict;
use Mouse;
use Lemonldap::NG::Portal::Lib::Net::LDAP;

extends 'Lemonldap::NG::Common::Module';

our $VERSION = '2.0.0';

# PROPERTIES

has ldap => (
    is      => 'rw',
    lazy    => 1,
    builder => 'newLdap',
);

sub newLdap {
    my $self = $_[0];
    my $ldap;

    # Build object and test LDAP connexion
    if (
        $ldap = Lemonldap::NG::Portal::Lib::Net::LDAP->new(
            { p => $self->{p}, conf => $self->{conf} }
        )
        and my $msg = $ldap->bind
      )
    {
        if ( $msg->code != 0 ) {
            $self->logger->error( "LDAP error: " . $msg->error );
        }
        else {
            if ( $self->{conf}->{ldapPpolicyControl} and not $ldap->loadPP() ) {
                $self->logger->error("LDAP password policy error");
            }
        }
    }
    else {
        $self->logger->error("LDAP error: $@");
    }
    return $ldap;
}

has filter => (
    is      => 'rw',
    lazy    => 1,
    builder => 'buildFilter',
);

has mailFilter => (
    is      => 'rw',
    lazy    => 1,
    builder => 'buildMailFilter',
);

sub buildFilter {
    return $_[0]->_buildFilter( $_[0]->conf->{AuthLDAPFilter}
          || $_[0]->conf->{LDAPFilter}
          || '(&(uid=$user)(objectClass=inetOrgPerson))' );
}

sub buildMailFilter {
    my $f = $_[0]->conf->{mailLDAPFilter}
      || '(&(mail=$user)(objectClass=inetOrgPerson))';
    $f =~ s/\$mail\b/\$user/g;
    return $_[0]->_buildFilter($f);
}

sub _buildFilter {
    my $conf = $_[0]->{conf};
    $_[0]->{p}->logger->debug("LDAP Search base: $_[0]->{conf}->{ldapBase}");
    my $filter = $_[1];
    $filter =~ s/"/\\"/g;
    $filter =~ s/\$(\w+)/".\$req->{sessionInfo}->{$1}."/g;
    $filter =~ s/\$req->\{sessionInfo\}->\{user\}/\$req->{user}/g;
    $filter =~
      s/\$req->\{sessionInfo\}->\{(_?password|mail)\}/\$req->{datas}->{$1}/g;
    $_[0]->{p}->logger->debug("LDAP transformed filter: $filter");
    $filter = "sub{my(\$req)=\$_[0];return \"$filter\";}";
    return eval $filter;
}

# INITIALIZATION

sub init {
    my ($self) = @_;
    $self->ldap and $self->filter;
}

# RUNNING METHODS

# Test LDAP connection before trying to bind
sub bind {
    my $self = shift;
    unless ($self->ldap
        and $self->ldap->root_dse( attrs => ['supportedLDAPVersion'] ) )
    {
        $self->ldap->DESTROY if ( $self->ldap );
        $self->ldap( $self->newLdap );
    }
    return undef unless ( $self->ldap );
    my $msg = $self->ldap->bind(@_);
    if ( $msg->code ) {
        $self->logger->error( $msg->error );
        return undef;
    }
    return 1;
}

1;
LDAP in progress (#595) 2016-05-05 22:26:41 +02:00			`package Lemonldap::NG::Portal::Lib::LDAP;`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
			`use strict;`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`use Mouse;`
			`use Lemonldap::NG::Portal::Lib::Net::LDAP;`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`extends 'Lemonldap::NG::Common::Module';`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`our $VERSION = '2.0.0';`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`# PROPERTIES`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`has ldap => (`
			`is => 'rw',`
			`lazy => 1,`
			`builder => 'newLdap',`
			`);`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`sub newLdap {`
			`my $self = $_[0];`
			`my $ldap;`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`# Build object and test LDAP connexion`
			`if (`
			`$ldap = Lemonldap::NG::Portal::Lib::Net::LDAP->new(`
			`{ p => $self->{p}, conf => $self->{conf} }`
			`)`
			`and my $msg = $ldap->bind`
			`)`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00			`{`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`if ( $msg->code != 0 ) {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->error( "LDAP error: " . $msg->error );`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00			`}`
			`else {`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`if ( $self->{conf}->{ldapPpolicyControl} and not $ldap->loadPP() ) {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->error("LDAP password policy error");`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00			`}`
			`}`
			`}`
			`else {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->error("LDAP error: $@");`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00			`}`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`return $ldap;`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00			`}`

Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`has filter => (`
			`is => 'rw',`
			`lazy => 1,`
			`builder => 'buildFilter',`
			`);`

Skeleton for "useMail" feature in getUser (#1353) 2018-01-22 21:57:48 +01:00			`has mailFilter => (`
			`is => 'rw',`
			`lazy => 1,`
			`builder => 'buildMailFilter',`
			`);`

#1353 in progress 2018-01-24 22:32:08 +01:00			`sub buildFilter {`
			`return $_[0]->_buildFilter( $_[0]->conf->{AuthLDAPFilter}`
			`\|\| $_[0]->conf->{LDAPFilter}`
			`\|\| '(&(uid=$user)(objectClass=inetOrgPerson))' );`
			`}`

Skeleton for "useMail" feature in getUser (#1353) 2018-01-22 21:57:48 +01:00			`sub buildMailFilter {`
#1353 in progress 2018-01-24 22:32:08 +01:00			`my $f = $_[0]->conf->{mailLDAPFilter}`
			`\|\| '(&(mail=$user)(objectClass=inetOrgPerson))';`
			`$f =~ s/\$mail\b/\$user/g;`
			`return $_[0]->_buildFilter($f);`
Skeleton for "useMail" feature in getUser (#1353) 2018-01-22 21:57:48 +01:00			`}`

			`sub _buildFilter {`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`my $conf = $_[0]->{conf};`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$_[0]->{p}->logger->debug("LDAP Search base: $_[0]->{conf}->{ldapBase}");`
#1353 in progress 2018-01-24 22:32:08 +01:00			`my $filter = $_[1];`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`$filter =~ s/"/\\"/g;`
			`$filter =~ s/\$(\w+)/".\$req->{sessionInfo}->{$1}."/g;`
			`$filter =~ s/\$req->\{sessionInfo\}->\{user\}/\$req->{user}/g;`
			`$filter =~`
			`s/\$req->\{sessionInfo\}->\{(_?password\|mail)\}/\$req->{datas}->{$1}/g;`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$_[0]->{p}->logger->debug("LDAP transformed filter: $filter");`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`$filter = "sub{my(\$req)=\$_[0];return \"$filter\";}";`
			`return eval $filter;`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00			`}`

Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`# INITIALIZATION`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`sub init {`
			`my ($self) = @_;`
			`$self->ldap and $self->filter;`
			`}`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`# RUNNING METHODS`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`# Test LDAP connection before trying to bind`
			`sub bind {`
			`my $self = shift;`
			`unless ($self->ldap`
			`and $self->ldap->root_dse( attrs => ['supportedLDAPVersion'] ) )`
			`{`
Destroy LDAP object (#595) 2018-03-13 14:43:12 +01:00			`$self->ldap->DESTROY if ( $self->ldap );`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`$self->ldap( $self->newLdap );`
			`}`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`return undef unless ( $self->ldap );`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`my $msg = $self->ldap->bind(@_);`
			`if ( $msg->code ) {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->error( $msg->error );`
Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`return undef;`
			`}`
			`return 1;`
Starting import LDAP in new portal (#595) 2016-04-20 07:09:23 +02:00			`}`

			`1;`