lemonldap-ng/lemonldap-ng-portal/lib/Lemonldap/NG/Portal/Password/LDAP.pm

package Lemonldap::NG::Portal::Password::LDAP;

use strict;
use Mouse;
use Lemonldap::NG::Portal::Main::Constants qw(PE_PASSWORD_OK PE_LDAPERROR);

extends 'Lemonldap::NG::Portal::Lib::LDAP',
  'Lemonldap::NG::Portal::Password::Base';

our $VERSION = '2.0.0';

sub init {
    my ($self) = @_;
    $self->ldap
      and $self->filter
      and $self->Lemonldap::NG::Portal::Password::Base::init;
}

# Confirmation is done by Lib::Net::LDAP::userModifyPassword
sub confirm {
    return 1;
}

sub modifyPassword {
    my ( $self, $req, $pwd ) = @_;

    # Call the modify password method
    my $code = $self->ldap->userModifyPassword( $req->userData->{_dn},
        $pwd, $req->datas->{oldpassword} );

    unless ( $code == PE_PASSWORD_OK ) {
        $self->ldap->unbind;
        $self->{flags}->{ldapActive} = 0;
        return $code;
    }

    # If password policy and force reset, set reset flag
    if (    $self->conf->{ldapPpolicyControl}
        and $req->datas->{forceReset}
        and $self->conf->{ldapUsePasswordResetAttribute} )
    {
        my $result = $self->ldap->modify(
            $req->datas->{dn},
            replace => {
                $self->conf->{ldapPasswordResetAttribute} =>
                  $self->conf->{ldapPasswordResetAttributeValue}
            }
        );

        unless ( $result->code == 0 ) {
            $self->logger->error( "LDAP modify "
                  . $self->{ldapPasswordResetAttribute}
                  . " error: "
                  . $result->code );
            $self->ldap->unbind;
            $self->{flags}->{ldapActive} = 0;
            return PE_LDAPERROR;
        }

        $self->logger->debug( $self->conf->{ldapPasswordResetAttribute}
              . " set to "
              . $self->conf->{ldapPasswordResetAttributeValue} );
    }

    return $code;
}

1;
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`package Lemonldap::NG::Portal::Password::LDAP;`

			`use strict;`
			`use Mouse;`
			`use Lemonldap::NG::Portal::Main::Constants qw(PE_PASSWORD_OK PE_LDAPERROR);`

Rearrange LDAP (#595) 2017-01-15 14:18:01 +01:00			`extends 'Lemonldap::NG::Portal::Lib::LDAP',`
Password in progress (#595) 2016-07-20 22:47:43 +02:00			`'Lemonldap::NG::Portal::Password::Base';`
Password in progress (#595) 2016-07-18 21:38:14 +02:00
			`our $VERSION = '2.0.0';`

			`sub init {`
			`my ($self) = @_;`
Password in progress (#595) 2016-07-20 22:47:43 +02:00			`$self->ldap`
			`and $self->filter`
			`and $self->Lemonldap::NG::Portal::Password::Base::init;`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`}`

Change password test (#595) 2017-03-02 07:13:52 +01:00			`# Confirmation is done by Lib::Net::LDAP::userModifyPassword`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`sub confirm {`
Password in progress (#595) 2016-07-20 22:47:43 +02:00			`return 1;`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`}`

			`sub modifyPassword {`
			`my ( $self, $req, $pwd ) = @_;`

			`# Call the modify password method`
Fix LDAP test after session variable rewrite (#1169) 2017-03-30 10:50:13 +02:00			`my $code = $self->ldap->userModifyPassword( $req->userData->{_dn},`
Clean repo 2017-03-03 18:25:03 +01:00			`$pwd, $req->datas->{oldpassword} );`
Password in progress (#595) 2016-07-18 21:38:14 +02:00
			`unless ( $code == PE_PASSWORD_OK ) {`
			`$self->ldap->unbind;`
			`$self->{flags}->{ldapActive} = 0;`
			`return $code;`
			`}`

			`# If password policy and force reset, set reset flag`
Change password test (#595) 2017-03-02 07:13:52 +01:00			`if ( $self->conf->{ldapPpolicyControl}`
			`and $req->datas->{forceReset}`
			`and $self->conf->{ldapUsePasswordResetAttribute} )`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`{`
			`my $result = $self->ldap->modify(`
LDAP tests in progress (#1118) 2017-03-02 07:35:15 +01:00			`$req->datas->{dn},`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`replace => {`
Change password test (#595) 2017-03-02 07:13:52 +01:00			`$self->conf->{ldapPasswordResetAttribute} =>`
			`$self->conf->{ldapPasswordResetAttributeValue}`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`}`
			`);`

			`unless ( $result->code == 0 ) {`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`$self->logger->error( "LDAP modify "`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`. $self->{ldapPasswordResetAttribute}`
			`. " error: "`
Replace lmLog by logger-> (#857) 2017-02-15 07:41:50 +01:00			`. $result->code );`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`$self->ldap->unbind;`
			`$self->{flags}->{ldapActive} = 0;`
			`return PE_LDAPERROR;`
			`}`

Change password test (#595) 2017-03-02 07:13:52 +01:00			`$self->logger->debug( $self->conf->{ldapPasswordResetAttribute}`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`. " set to "`
Change password test (#595) 2017-03-02 07:13:52 +01:00			`. $self->conf->{ldapPasswordResetAttributeValue} );`
Password in progress (#595) 2016-07-18 21:38:14 +02:00			`}`

			`return $code;`
			`}`

			`1;`