2015-09-08 05:15:39 +08:00
|
|
|
<?php
|
|
|
|
|
|
|
|
class LdapContactsSuggestions implements \RainLoop\Providers\Suggestions\ISuggestions
|
|
|
|
{
|
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private $sHostName = '127.0.0.1';
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var int
|
|
|
|
*/
|
|
|
|
private $iHostPort = 389;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
2019-03-28 06:44:29 +08:00
|
|
|
private $sAccessDn = null;
|
2015-09-08 05:15:39 +08:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
2019-03-28 06:44:29 +08:00
|
|
|
private $sAccessPassword = null;
|
2015-09-08 05:15:39 +08:00
|
|
|
|
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private $sUsersDn = '';
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private $sObjectClass = 'inetOrgPerson';
|
|
|
|
|
2018-06-07 06:02:43 +08:00
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private $sUidField = 'uid';
|
|
|
|
|
2015-09-08 05:15:39 +08:00
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private $sNameField = 'givenname';
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private $sEmailField = 'mail';
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var \MailSo\Log\Logger
|
|
|
|
*/
|
|
|
|
private $oLogger = null;
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @var string
|
|
|
|
*/
|
|
|
|
private $sAllowedEmails = '';
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param string $sHostName
|
|
|
|
* @param int $iHostPort
|
|
|
|
* @param string $sAccessDn
|
|
|
|
* @param string $sAccessPassword
|
|
|
|
* @param string $sUsersDn
|
|
|
|
* @param string $sObjectClass
|
|
|
|
* @param string $sNameField
|
|
|
|
* @param string $sEmailField
|
|
|
|
*
|
|
|
|
* @return \LdapContactsSuggestions
|
|
|
|
*/
|
2018-06-07 06:02:43 +08:00
|
|
|
public function SetConfig($sHostName, $iHostPort, $sAccessDn, $sAccessPassword, $sUsersDn, $sObjectClass, $sUidField, $sNameField, $sEmailField)
|
2015-09-08 05:15:39 +08:00
|
|
|
{
|
|
|
|
$this->sHostName = $sHostName;
|
|
|
|
$this->iHostPort = $iHostPort;
|
2018-11-30 20:54:28 +08:00
|
|
|
if (0 < \strlen($sAccessDn))
|
|
|
|
{
|
|
|
|
$this->sAccessDn = $sAccessDn;
|
|
|
|
$this->sAccessPassword = $sAccessPassword;
|
|
|
|
}
|
2015-09-08 05:15:39 +08:00
|
|
|
$this->sUsersDn = $sUsersDn;
|
|
|
|
$this->sObjectClass = $sObjectClass;
|
2018-06-07 06:02:43 +08:00
|
|
|
$this->sUidField = $sUidField;
|
2015-09-08 05:15:39 +08:00
|
|
|
$this->sNameField = $sNameField;
|
|
|
|
$this->sEmailField = $sEmailField;
|
|
|
|
|
|
|
|
return $this;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param string $sAllowedEmails
|
|
|
|
*
|
|
|
|
* @return \LdapContactsSuggestions
|
|
|
|
*/
|
|
|
|
public function SetAllowedEmails($sAllowedEmails)
|
|
|
|
{
|
|
|
|
$this->sAllowedEmails = $sAllowedEmails;
|
|
|
|
|
|
|
|
return $this;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param \RainLoop\Model\Account $oAccount
|
|
|
|
* @param string $sQuery
|
|
|
|
* @param int $iLimit = 20
|
|
|
|
*
|
|
|
|
* @return array
|
|
|
|
*/
|
2020-08-31 00:04:54 +08:00
|
|
|
public function Process(RainLoop\Model\Account $oAccount, string $sQuery, int $iLimit = 20): array
|
2015-09-08 05:15:39 +08:00
|
|
|
{
|
|
|
|
$sQuery = \trim($sQuery);
|
|
|
|
|
|
|
|
if (2 > \strlen($sQuery))
|
|
|
|
{
|
|
|
|
return array();
|
|
|
|
}
|
|
|
|
else if (!$oAccount || !\RainLoop\Plugins\Helper::ValidateWildcardValues($oAccount->Email(), $this->sAllowedEmails))
|
|
|
|
{
|
|
|
|
return array();
|
|
|
|
}
|
|
|
|
|
|
|
|
$aResult = $this->ldapSearch($oAccount, $sQuery);
|
|
|
|
|
|
|
|
$aResult = \RainLoop\Utils::RemoveSuggestionDuplicates($aResult);
|
|
|
|
if ($iLimit < \count($aResult))
|
|
|
|
{
|
|
|
|
$aResult = \array_slice($aResult, 0, $iLimit);
|
|
|
|
}
|
|
|
|
|
|
|
|
return $aResult;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param array $aLdapItem
|
|
|
|
* @param array $aEmailFields
|
|
|
|
* @param array $aNameFields
|
|
|
|
*
|
|
|
|
* @return array
|
|
|
|
*/
|
2018-06-07 06:02:43 +08:00
|
|
|
private function findNameAndEmail($aLdapItem, $aEmailFields, $aNameFields, $aUidFields)
|
2015-09-08 05:15:39 +08:00
|
|
|
{
|
2018-06-07 06:02:43 +08:00
|
|
|
$sEmail = $sName = $sUid = '';
|
2015-09-08 05:15:39 +08:00
|
|
|
if ($aLdapItem)
|
|
|
|
{
|
|
|
|
foreach ($aEmailFields as $sField)
|
|
|
|
{
|
|
|
|
if (!empty($aLdapItem[$sField][0]))
|
|
|
|
{
|
|
|
|
$sEmail = \trim($aLdapItem[$sField][0]);
|
|
|
|
if (!empty($sEmail))
|
|
|
|
{
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
foreach ($aNameFields as $sField)
|
|
|
|
{
|
|
|
|
if (!empty($aLdapItem[$sField][0]))
|
|
|
|
{
|
|
|
|
$sName = \trim($aLdapItem[$sField][0]);
|
|
|
|
if (!empty($sName))
|
|
|
|
{
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2018-06-07 06:02:43 +08:00
|
|
|
|
|
|
|
foreach ($aUidFields as $sField)
|
|
|
|
{
|
|
|
|
if (!empty($aLdapItem[$sField][0]))
|
|
|
|
{
|
|
|
|
$sUid = \trim($aLdapItem[$sField][0]);
|
|
|
|
if (!empty($sUid))
|
|
|
|
{
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
2015-09-08 05:15:39 +08:00
|
|
|
}
|
|
|
|
|
2018-06-07 06:02:43 +08:00
|
|
|
return array($sEmail, $sName, $sUid);
|
2015-09-08 05:15:39 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param \RainLoop\Model\Account $oAccount
|
|
|
|
* @param string $sQuery
|
|
|
|
*
|
|
|
|
* @return array
|
|
|
|
*/
|
|
|
|
private function ldapSearch($oAccount, $sQuery)
|
|
|
|
{
|
|
|
|
$sSearchEscaped = $this->escape($sQuery);
|
|
|
|
|
|
|
|
$aResult = array();
|
|
|
|
$oCon = @\ldap_connect($this->sHostName, $this->iHostPort);
|
|
|
|
if ($oCon)
|
|
|
|
{
|
|
|
|
$this->oLogger->Write('ldap_connect: connected', \MailSo\Log\Enumerations\Type::INFO, 'LDAP');
|
|
|
|
|
|
|
|
@\ldap_set_option($oCon, LDAP_OPT_PROTOCOL_VERSION, 3);
|
|
|
|
|
|
|
|
if (!@\ldap_bind($oCon, $this->sAccessDn, $this->sAccessPassword))
|
|
|
|
{
|
2019-03-28 06:44:29 +08:00
|
|
|
if (is_null($this->sAccessDn))
|
|
|
|
{
|
2018-11-30 20:54:28 +08:00
|
|
|
$this->logLdapError($oCon, 'ldap_bind (anonymous)');
|
2019-03-28 06:44:29 +08:00
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
2018-11-30 20:54:28 +08:00
|
|
|
$this->logLdapError($oCon, 'ldap_bind');
|
|
|
|
}
|
2019-03-28 06:44:29 +08:00
|
|
|
|
2015-09-08 05:15:39 +08:00
|
|
|
return $aResult;
|
|
|
|
}
|
|
|
|
|
|
|
|
$sDomain = \MailSo\Base\Utils::GetDomainFromEmail($oAccount->Email());
|
|
|
|
$sSearchDn = \strtr($this->sUsersDn, array(
|
|
|
|
'{domain}' => $sDomain,
|
|
|
|
'{domain:dc}' => 'dc='.\strtr($sDomain, array('.' => ',dc=')),
|
|
|
|
'{email}' => $oAccount->Email(),
|
|
|
|
'{email:user}' => \MailSo\Base\Utils::GetAccountNameFromEmail($oAccount->Email()),
|
|
|
|
'{email:domain}' => $sDomain,
|
|
|
|
'{login}' => $oAccount->Login(),
|
|
|
|
'{imap:login}' => $oAccount->Login(),
|
|
|
|
'{imap:host}' => $oAccount->DomainIncHost(),
|
|
|
|
'{imap:port}' => $oAccount->DomainIncPort()
|
|
|
|
));
|
|
|
|
|
|
|
|
$aEmails = empty($this->sEmailField) ? array() : \explode(',', $this->sEmailField);
|
|
|
|
$aNames = empty($this->sNameField) ? array() : \explode(',', $this->sNameField);
|
2018-06-07 06:02:43 +08:00
|
|
|
$aUIDs = empty($this->sUidField) ? array() : \explode(',', $this->sUidField);
|
2015-09-08 05:15:39 +08:00
|
|
|
|
|
|
|
$aEmails = \array_map('trim', $aEmails);
|
|
|
|
$aNames = \array_map('trim', $aNames);
|
2018-06-07 06:02:43 +08:00
|
|
|
$aUIDs = \array_map('trim', $aUIDs);
|
2015-09-08 05:15:39 +08:00
|
|
|
|
2018-06-07 06:02:43 +08:00
|
|
|
$aFields = \array_merge($aEmails, $aNames, $aUIDs);
|
2015-09-08 05:15:39 +08:00
|
|
|
|
|
|
|
$aItems = array();
|
|
|
|
$sSubFilter = '';
|
|
|
|
foreach ($aFields as $sItem)
|
|
|
|
{
|
|
|
|
if (!empty($sItem))
|
|
|
|
{
|
|
|
|
$aItems[] = $sItem;
|
|
|
|
$sSubFilter .= '('.$sItem.'=*'.$sSearchEscaped.'*)';
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
$sFilter = '(&(objectclass='.$this->sObjectClass.')';
|
|
|
|
$sFilter .= (1 < count($aItems) ? '(|' : '').$sSubFilter.(1 < count($aItems) ? ')' : '');
|
|
|
|
$sFilter .= ')';
|
|
|
|
|
|
|
|
$this->oLogger->Write('ldap_search: start: '.$sSearchDn.' / '.$sFilter, \MailSo\Log\Enumerations\Type::INFO, 'LDAP');
|
|
|
|
$oS = @\ldap_search($oCon, $sSearchDn, $sFilter, $aItems, 0, 30, 30);
|
|
|
|
if ($oS)
|
|
|
|
{
|
|
|
|
$aEntries = @\ldap_get_entries($oCon, $oS);
|
|
|
|
if (is_array($aEntries))
|
|
|
|
{
|
|
|
|
if (isset($aEntries['count']))
|
|
|
|
{
|
|
|
|
unset($aEntries['count']);
|
|
|
|
}
|
|
|
|
|
|
|
|
foreach ($aEntries as $aItem)
|
|
|
|
{
|
|
|
|
if ($aItem)
|
|
|
|
{
|
|
|
|
$sName = $sEmail = '';
|
2018-06-07 06:02:43 +08:00
|
|
|
list ($sEmail, $sName) = $this->findNameAndEmail($aItem, $aEmails, $aNames, $aUIDs);
|
2015-09-08 05:15:39 +08:00
|
|
|
if (!empty($sEmail))
|
|
|
|
{
|
|
|
|
$aResult[] = array($sEmail, $sName);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
$this->logLdapError($oCon, 'ldap_get_entries');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
$this->logLdapError($oCon, 'ldap_search');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
else
|
|
|
|
{
|
|
|
|
return $aResult;
|
|
|
|
}
|
|
|
|
|
|
|
|
return $aResult;
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param string $sStr
|
|
|
|
*
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public function escape($sStr)
|
|
|
|
{
|
|
|
|
$aNewChars = array();
|
|
|
|
$aChars = array('\\', '*', '(', ')', \chr(0));
|
|
|
|
|
|
|
|
foreach ($aChars as $iIndex => $sValue)
|
|
|
|
{
|
|
|
|
$aNewChars[$iIndex] = '\\'.\str_pad(\dechex(\ord($sValue)), 2, '0');
|
|
|
|
}
|
|
|
|
|
|
|
|
return \str_replace($aChars, $aNewChars, $sStr);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param mixed $oCon
|
|
|
|
* @param string $sCmd
|
|
|
|
*
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public function logLdapError($oCon, $sCmd)
|
|
|
|
{
|
|
|
|
if ($this->oLogger)
|
|
|
|
{
|
|
|
|
$sError = $oCon ? @\ldap_error($oCon) : '';
|
|
|
|
$iErrno = $oCon ? @\ldap_errno($oCon) : 0;
|
|
|
|
|
|
|
|
$this->oLogger->Write($sCmd.' error: '.$sError.' ('.$iErrno.')',
|
|
|
|
\MailSo\Log\Enumerations\Type::WARNING, 'LDAP');
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* @param \MailSo\Log\Logger $oLogger
|
|
|
|
*
|
|
|
|
* @return \LdapContactsSuggestions
|
|
|
|
*/
|
|
|
|
public function SetLogger($oLogger)
|
|
|
|
{
|
|
|
|
if ($oLogger instanceof \MailSo\Log\Logger)
|
|
|
|
{
|
|
|
|
$this->oLogger = $oLogger;
|
|
|
|
}
|
|
|
|
|
|
|
|
return $this;
|
|
|
|
}
|
|
|
|
}
|