jro_apps/redmine Commit - r1320:246e8f67c598

Redmine.pm support for LDAP authentication (patch by Liwiusz Ociepa). Closes #879, #918....

Jean-Philippe Lang -

r1320:246e8f67c598

parent child

Context file:

r1320:246e8f67c598

Collapse all files

extra/svn/Redmine.pm +26 -5

              use DBI;
              use Digest::SHA1;
+             use Authen::Simple::LDAP;
              use Apache2::Module;
              use Apache2::Access;
                  my $dbh = connect_database($r);
                  my $sth = $dbh->prepare(
-             	"SELECT * FROM projects WHERE projects.identifier=? and projects.is_public=true;"
+                     "SELECT * FROM projects WHERE projects.identifier=? and projects.is_public=true;"
                  );
                  $sth->execute($project_id);
                my $pass_digest = Digest::SHA1::sha1_hex($redmine_pass);
                my $sth = $dbh->prepare(
-                   "SELECT hashed_password FROM members, projects, users WHERE projects.id=members.project_id AND users.id=members.user_id AND users.status=1 AND login=? AND identifier=?;"
+                   "SELECT hashed_password, auth_source_id FROM members, projects, users WHERE projects.id=members.project_id AND users.id=members.user_id AND users.status=1 AND login=? AND identifier=?;"
                );
                $sth->execute($redmine_user, $project_id);
                my $ret;
                while (my @row = $sth->fetchrow_array) {
-                   if ($row[0] eq $pass_digest) {
-             	  $ret = 1;
-             	  last;
+                   unless ($row[1]) {
+                       if ($row[0] eq $pass_digest) {
+                           $ret = 1;
+                           last;
+                       }
+                   } else {
+                       my $sthldap = $dbh->prepare(
+                           "SELECT host,port,account,account_password,base_dn,attr_login from auth_sources WHERE id = ?;"
+                       );
+                       $sthldap->execute($row[1]);
+                       while (my @rowldap = $sthldap->fetchrow_array) {
+                         my $ldap = Authen::Simple::LDAP->new(
+             	        host 	=>	$rowldap[0],
+             		port	=>	$rowldap[1],
+             		basedn	=>	$rowldap[4],
+             		binddn	=>	$rowldap[2] ? $rowldap[2] : "",
+             		bindpw	=>	$rowldap[3] ? $rowldap[3] : "",
+             		filter	=>	"(".$rowldap[5]."=%s)"
+             	    );
+             	    $ret = 1 if ($ldap->authenticate($redmine_user, $redmine_pass));
+                       }
+                       $sthldap->finish();
                    }
                }
+               $sth->finish();
                $dbh->disconnect();
                $ret;

General Comments 0

Write
Preview

You need to be logged in to leave comments. Login now

No TODOs yet

	Site-wide shortcuts
/	Use quick search box
g h	Goto home page
g g	Goto my private gists page
g G	Goto my public gists page
g 0-9	Goto bookmarked items from 0-9
n r	New repository page
n g	New gist page

	Repositories
g s	Goto summary page
g c	Goto changelog page
g f	Goto files page
g F	Goto files page with file search activated
g p	Goto pull requests page
g o	Goto repository settings
g O	Goto repository access permissions settings
t s	Toggle sidebar on some pages