jro_apps/redmine Files · app/models/auth_source_ldap.rb

Issue list now supports bulk edit/move/delete (#563, #607). For now, issues from different projects can not be bulk edited/moved/deleted at once....

Issue list now supports bulk edit/move/delete (#563, #607). For now, issues from different projects can not be bulk edited/moved/deleted at once. There are 2 ways to select a set of issues on the issue list: * by using checkbox and/or the little pencil that will select/unselect all issues (#567) * by clicking on the rows (but not on the links), Ctrl and Shift keys can be used to select multiple issues Context menu was disabled on links so that the default context menu of the browser is displayed when right-clicking on a link (#545). All this was tested with Firefox 2, IE 6/7, Opera 8 (use Alt+Click instead of Right-click) and Safari 2/3. git-svn-id: http://redmine.rubyforge.org/svn/trunk@1130 e93f8b46-1217-0410-a6f0-8f06a7374b81

Jean-Philippe Lang - - Load All Authors

File last commit:

r869:308118ce9724


                r1116:4155c97222ce

Download file

             auth_source_ldap.rb
        
                    82 lines
            
             | 3.1 KiB
            
                | text/x-ruby
            
             |
                RubyLexer
            
             / app / models / auth_source_ldap.rb
          
                    History
                
                 |
                  Source
                 | Raw
                 |Copy content
                 |Copy permalink

        Jean-Philippe Lang
    
added svn:eol-style native property on /app files...

              r330
            
      # redMine - project management software

      # Copyright (C) 2006  Jean-Philippe Lang

      #

      # This program is free software; you can redistribute it and/or

      # modify it under the terms of the GNU General Public License

      # as published by the Free Software Foundation; either version 2

      # of the License, or (at your option) any later version.

      # 

      # This program is distributed in the hope that it will be useful,

      # but WITHOUT ANY WARRANTY; without even the implied warranty of

      # MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

      # GNU General Public License for more details.

      # 

      # You should have received a copy of the GNU General Public License

      # along with this program; if not, write to the Free Software

      # Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA  02110-1301, USA.

      require 'net/ldap'

      require 'iconv'

      class AuthSourceLdap < AuthSource 

        validates_presence_of :host, :port, :attr_login

        Jean-Philippe Lang
    
Firstname, lastname and email LDAP attributes are now required if "on-the-fly register" is checked....

              r628
            
        validates_presence_of :attr_firstname, :attr_lastname, :attr_mail, :if => Proc.new { |a| a.onthefly_register? }

        Jean-Philippe Lang
    
added svn:eol-style native property on /app files...

              r330
            
        def after_initialize

          self.port = 389 if self.port == 0

        end

        def authenticate(login, password)

          attrs = []

          # get user's DN

          ldap_con = initialize_ldap_con(self.account, self.account_password)

          login_filter = Net::LDAP::Filter.eq( self.attr_login, login ) 

          object_filter = Net::LDAP::Filter.eq( "objectClass", "*" ) 

          dn = String.new

          ldap_con.search( :base => self.base_dn, 

                           :filter => object_filter & login_filter, 

        Jean-Philippe Lang
    
LDAP authentication: only ask for the user's DN if on-the-fly registration is disabled...

              r869
            
                           # only ask for the DN if on-the-fly registration is disabled

                           :attributes=> (onthefly_register? ? ['dn', self.attr_firstname, self.attr_lastname, self.attr_mail] : ['dn'])) do |entry|

        Jean-Philippe Lang
    
added svn:eol-style native property on /app files...

              r330
            
            dn = entry.dn

            attrs = [:firstname => AuthSourceLdap.get_attr(entry, self.attr_firstname),

                     :lastname => AuthSourceLdap.get_attr(entry, self.attr_lastname),

                     :mail => AuthSourceLdap.get_attr(entry, self.attr_mail),

        Jean-Philippe Lang
    
Fixed: LDAP authentication crashes if one of the LDAP attributes name is left blank on the LDAP setup screen....

              r841
            
                     :auth_source_id => self.id ] if onthefly_register?

        Jean-Philippe Lang
    
added svn:eol-style native property on /app files...

              r330
            
          end

          return nil if dn.empty?

          logger.debug "DN found for #{login}: #{dn}" if logger && logger.debug?

          # authenticate user

          ldap_con = initialize_ldap_con(dn, password)

          return nil unless ldap_con.bind

          # return user's attributes

          logger.debug "Authentication successful for '#{login}'" if logger && logger.debug?

          attrs    

        rescue  Net::LDAP::LdapError => text

          raise "LdapError: " + text

        end

        # test the connection to the LDAP

        def test_connection

          ldap_con = initialize_ldap_con(self.account, self.account_password)

          ldap_con.open { }

        rescue  Net::LDAP::LdapError => text

          raise "LdapError: " + text

        end

        def auth_method_name

          "LDAP"

        end

      private

        def initialize_ldap_con(ldap_user, ldap_password)

          Net::LDAP.new( {:host => self.host, 

                          :port => self.port, 

        Jean-Philippe Lang
    
Added LDAPS support for LDAP authentication....

              r831
            
                          :auth => { :method => :simple, :username => ldap_user, :password => ldap_password },

                          :encryption => (self.tls ? :simple_tls : nil)} 

        Jean-Philippe Lang
    
added svn:eol-style native property on /app files...

              r330
            
          ) 

        end

        def self.get_attr(entry, attr_name)

          entry[attr_name].is_a?(Array) ? entry[attr_name].first : entry[attr_name]

        Jean-Philippe Lang
    
0.3 unstable...

              r10
            
        end

      end

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages

Jean-Philippe Lang added svn:eol-style native property on /app files...	r330	# redMine - project management software
		# Copyright (C) 2006 Jean-Philippe Lang
		#
		# This program is free software; you can redistribute it and/or
		# modify it under the terms of the GNU General Public License
		# as published by the Free Software Foundation; either version 2
		# of the License, or (at your option) any later version.
		#
		# This program is distributed in the hope that it will be useful,
		# but WITHOUT ANY WARRANTY; without even the implied warranty of
		# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
		# GNU General Public License for more details.
		#
		# You should have received a copy of the GNU General Public License
		# along with this program; if not, write to the Free Software
		# Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.

		require 'net/ldap'
		require 'iconv'

		class AuthSourceLdap < AuthSource
		validates_presence_of :host, :port, :attr_login
Jean-Philippe Lang Firstname, lastname and email LDAP attributes are now required if "on-the-fly register" is checked....	r628	validates_presence_of :attr_firstname, :attr_lastname, :attr_mail, :if => Proc.new { \|a\| a.onthefly_register? }

Jean-Philippe Lang added svn:eol-style native property on /app files...	r330	def after_initialize
		self.port = 389 if self.port == 0
		end

		def authenticate(login, password)
		attrs = []
		# get user's DN
		ldap_con = initialize_ldap_con(self.account, self.account_password)
		login_filter = Net::LDAP::Filter.eq( self.attr_login, login )
		object_filter = Net::LDAP::Filter.eq( "objectClass", "*" )
		dn = String.new
		ldap_con.search( :base => self.base_dn,
		:filter => object_filter & login_filter,
Jean-Philippe Lang LDAP authentication: only ask for the user's DN if on-the-fly registration is disabled...	r869	# only ask for the DN if on-the-fly registration is disabled
		:attributes=> (onthefly_register? ? ['dn', self.attr_firstname, self.attr_lastname, self.attr_mail] : ['dn'])) do \|entry\|
Jean-Philippe Lang added svn:eol-style native property on /app files...	r330	dn = entry.dn
		attrs = [:firstname => AuthSourceLdap.get_attr(entry, self.attr_firstname),
		:lastname => AuthSourceLdap.get_attr(entry, self.attr_lastname),
		:mail => AuthSourceLdap.get_attr(entry, self.attr_mail),
Jean-Philippe Lang Fixed: LDAP authentication crashes if one of the LDAP attributes name is left blank on the LDAP setup screen....	r841	:auth_source_id => self.id ] if onthefly_register?
Jean-Philippe Lang added svn:eol-style native property on /app files...	r330	end
		return nil if dn.empty?
		logger.debug "DN found for #{login}: #{dn}" if logger && logger.debug?
		# authenticate user
		ldap_con = initialize_ldap_con(dn, password)
		return nil unless ldap_con.bind
		# return user's attributes
		logger.debug "Authentication successful for '#{login}'" if logger && logger.debug?
		attrs
		rescue Net::LDAP::LdapError => text
		raise "LdapError: " + text
		end

		# test the connection to the LDAP
		def test_connection
		ldap_con = initialize_ldap_con(self.account, self.account_password)
		ldap_con.open { }
		rescue Net::LDAP::LdapError => text
		raise "LdapError: " + text
		end

		def auth_method_name
		"LDAP"
		end

		private
		def initialize_ldap_con(ldap_user, ldap_password)
		Net::LDAP.new( {:host => self.host,
		:port => self.port,
Jean-Philippe Lang Added LDAPS support for LDAP authentication....	r831	:auth => { :method => :simple, :username => ldap_user, :password => ldap_password },
		:encryption => (self.tls ? :simple_tls : nil)}
Jean-Philippe Lang added svn:eol-style native property on /app files...	r330	)
		end

		def self.get_attr(entry, attr_name)
		entry[attr_name].is_a?(Array) ? entry[attr_name].first : entry[attr_name]
Jean-Philippe Lang 0.3 unstable...	r10	end
		end