/* +----------------------------------------------------------------------+ | PHP version 4.0 | +----------------------------------------------------------------------+ | Copyright (c) 1997, 1998, 1999, 2000 The PHP Group | +----------------------------------------------------------------------+ | This source file is subject to version 2.0 of the PHP license, | | that is bundled with this package in the file LICENSE, and is | | available at through the world-wide-web at | | http://www.php.net/license/2_0.txt. | | If you did not receive a copy of the PHP license and are unable to | | obtain it through the world-wide-web, please send a note to | | license@php.net so we can mail you a copy immediately. | +----------------------------------------------------------------------+ | Authors: Amitay Isaacs | | Eric Warnke | | Rasmus Lerdorf | | Gerrit Thomson <334647@swin.edu.au> | +----------------------------------------------------------------------+ */ /* $Id$ */ #define IS_EXT_MODULE #include "php.h" #if HAVE_LDAP #include "dl/phpdl.h" #include "ext/standard/dl.h" #include "php_ldap.h" #if WIN32|WINNT #include #if HAVE_NSLDAP #include #endif #define strdup _strdup #undef WINDOWS #undef strcasecmp #undef strncasecmp #define WINSOCK 1 #define __STDC__ 1 #endif #include "ext/standard/php_string.h" #if THREAD_SAFE & HAVE_NSLDAP #include "php3_threads.h" /* Structure for LDAP error values */ #define LDAP_TLS_VARS ldap_module *PHP3_TLS_GET(ldapTLS,php_ldap_module) #define LDAP_GLOBAL(a) php_ldap_module->a #else #define LDAP_TLS_VARS #define LDAP_GLOBAL(a) php_ldap_module.a ldap_module php_ldap_module; #endif /* This is just a small subset of the functionality provided by the LDAP library. All the operations are synchronous. Referrals are not handled automatically. */ function_entry ldap_functions[] = { PHP_FE(ldap_connect, NULL) PHP_FALIAS(ldap_close, ldap_unbind, NULL) PHP_FE(ldap_bind, NULL) PHP_FE(ldap_unbind, NULL) PHP_FE(ldap_read, NULL) PHP_FE(ldap_list, NULL) PHP_FE(ldap_search, NULL) PHP_FE(ldap_free_result, NULL) PHP_FE(ldap_count_entries, NULL) PHP_FE(ldap_first_entry, NULL) PHP_FE(ldap_next_entry, NULL) PHP_FE(ldap_get_entries, NULL) PHP_FE(ldap_first_attribute, NULL) PHP_FE(ldap_next_attribute, NULL) PHP_FE(ldap_get_attributes, NULL) PHP_FE(ldap_get_values, NULL) PHP_FE(ldap_get_dn, NULL) PHP_FE(ldap_explode_dn, NULL) PHP_FE(ldap_dn2ufn, NULL) PHP_FE(ldap_add, NULL) PHP_FE(ldap_delete, NULL) PHP_FE(ldap_modify, NULL) /* additional functions for attribute based modifications, Gerrit Thomson */ PHP_FE(ldap_mod_add, NULL) PHP_FE(ldap_mod_replace, NULL) PHP_FE(ldap_mod_del, NULL) /* end gjt mod */ {NULL, NULL, NULL} }; zend_module_entry ldap_module_entry = { "LDAP", ldap_functions, PHP_MINIT(ldap), PHP_MSHUTDOWN(ldap), NULL, NULL, PHP_MINFO(ldap), STANDARD_MODULE_PROPERTIES }; #if COMPILE_DL DLEXPORT zend_module_entry *get_module(void ) { return &ldap_module_entry; } #endif #if 0 /* see my note in php_ldap.h. smc */ /* Function for setting thread-specific LDAP error values */ static void php_ldap_set_ld_error( int err, char *matched, char *errmsg, void *dummy ) { LDAP_TLS_VARS; /* Set the error code returned by the LDAP operation */ LDAP_GLOBAL(le_errno) = err; /* Specify the components of the DN that matched (if an "NO_SUCH_OBJECT" error occurred */ if ( LDAP_GLOBAL(le_matched) != NULL ) { ldap_memfree( LDAP_GLOBAL(le_matched) ); } LDAP_GLOBAL(le_matched) = matched; /* Specify the error message corresponding to the error code */ if ( LDAP_GLOBAL(le_errmsg) != NULL ) { ldap_memfree( LDAP_GLOBAL(le_errmsg) ); } LDAP_GLOBAL(le_errmsg) = errmsg; } /* Function for getting the thread-specific LDAP error values */ static int php_ldap_get_ld_error( char **matched, char **errmsg, void *dummy ) { LDAP_TLS_VARS; /* Retrieve the error values */ if ( matched != NULL ) { *matched = LDAP_GLOBAL(le_matched); } if ( errmsg != NULL ) { *errmsg = LDAP_GLOBAL(le_errmsg); } return( LDAP_GLOBAL(le_errno) ); } /* Function for setting the value of the errno variable */ static void php_ldap_set_errno( int err ) { errno = err; } /* Function for getting the value of the errno variable */ static int php_ldap_get_errno( void ) { return( errno ); } #endif /* THREAD_SAFE && NSLDAP */ static void _close_ldap_link(LDAP *ld) { LDAP_TLS_VARS; ldap_unbind_s(ld); /* php_printf("Freeing ldap connection");*/ LDAP_GLOBAL(num_links)--; } static void _free_ldap_result(LDAPMessage *result) { ldap_msgfree(result); } PHP_MINIT_FUNCTION(ldap) { #if defined(THREAD_SAFE) ldap_module *php_ldap_module; PHP3_MUTEX_ALLOC(ldap_mutex); PHP3_MUTEX_LOCK(ldap_mutex); numthreads++; if (numthreads==1){ if (!PHP3_TLS_PROC_STARTUP(ldapTLS)){ PHP3_MUTEX_UNLOCK(ldap_mutex); PHP3_MUTEX_FREE(ldap_mutex); return 0; } } PHP3_MUTEX_UNLOCK(ldap_mutex); if(!PHP3_TLS_THREAD_INIT(ldapTLS,php_ldap_module,ldap_module)) return 0; #if 0 /*HAVE_NSLDAP*/ /* Set up the ldap_thread_fns structure with pointers to the functions that you want called */ memset( &LDAP_GLOBAL(tfns), '\0', sizeof(struct ldap_thread_fns) ); /* Specify the functions that you want called */ /* Call the my_mutex_alloc() function whenever mutexes need to be allocated */ LDAP_GLOBAL(tfns).ltf_mutex_alloc = (void *(*)(void)) php3_mutex_alloc; /* Call the my_mutex_free() function whenever mutexes need to be destroyed */ LDAP_GLOBAL(tfns).ltf_mutex_free = (void (*)(void *)) php3_mutex_free; /* Call the pthread_mutex_lock() function whenever a thread needs to lock a mutex. */ LDAP_GLOBAL(tfns).ltf_mutex_lock = (int (*)(void *)) php3_mutex_lock; /* Call the pthread_mutex_unlock() function whenever a thread needs to unlock a mutex. */ LDAP_GLOBAL(tfns).ltf_mutex_unlock = (int (*)(void *)) php3_mutex_unlock; /* Call the get_errno() function to get the value of errno */ LDAP_GLOBAL(tfns).ltf_get_errno = php_ldap_get_errno; /* Call the set_errno() function to set the value of errno */ LDAP_GLOBAL(tfns).ltf_set_errno = php_ldap_set_errno; /* Call the get_ld_error() function to get error values from calls to functions in the libldap library */ LDAP_GLOBAL(tfns).ltf_get_lderrno = php_ldap_get_ld_error; /* Call the set_ld_error() function to set error values for calls to functions in the libldap library */ LDAP_GLOBAL(tfns).ltf_set_lderrno = php_ldap_set_ld_error; /* Don't pass any extra parameter to the functions for getting and setting libldap function call errors */ LDAP_GLOBAL(tfns).ltf_lderrno_arg = NULL; /* Set the session option that specifies the functions to call for multi-threaded clients */ if (ldap_set_option( ld, LDAP_OPT_THREAD_FN_PTRS, (void *) &LDAP_GLOBAL(tfns))!= 0) { ldap_perror( ld, "ldap_set_option: thread pointers" ); } #endif #endif if (cfg_get_long("ldap.max_links", &LDAP_GLOBAL(max_links)) == FAILURE) { LDAP_GLOBAL(max_links) = -1; } if (cfg_get_string("ldap.base_dn", &LDAP_GLOBAL(base_dn)) == FAILURE) { LDAP_GLOBAL(base_dn) = NULL; } LDAP_GLOBAL(le_result) = register_list_destructors(_free_ldap_result, NULL); LDAP_GLOBAL(le_link) = register_list_destructors(_close_ldap_link, NULL); /*FIXME is this safe in threaded environment? if so, please comment*/ ldap_module_entry.type = type; return SUCCESS; } PHP_MSHUTDOWN_FUNCTION(ldap) { #ifdef THREAD_SAFE LDAP_TLS_VARS; PHP3_TLS_THREAD_FREE(php_ldap_module); PHP3_MUTEX_LOCK(ldap_mutex); numthreads--; if (!numthreads) { PHP3_TLS_PROC_SHUTDOWN(ldapTLS); } PHP3_MUTEX_UNLOCK(ldap_mutex); PHP3_MUTEX_FREE(ldap_mutex); #endif return SUCCESS; } PHP_MINFO_FUNCTION(ldap) { char maxl[16]; #if HAVE_NSLDAP LDAPVersion ver; double SDKVersion; /* Print version information */ SDKVersion = ldap_version( &ver ); #endif LDAP_TLS_VARS; if (LDAP_GLOBAL(max_links) == -1) { strcpy(maxl, "Unlimited"); } else { snprintf(maxl, 15, "%ld", LDAP_GLOBAL(max_links)); maxl[15] = 0; } php_printf("" "\n" "\n" #if HAVE_NSLDAP "" "" "" #endif ,LDAP_GLOBAL(num_links),maxl #if HAVE_NSLDAP ,SDKVersion/100.0,ver.protocol_version/100.0,ver.SSL_version/100.0 #endif ); #if HAVE_NSLDAP if ( ver.security_level != LDAP_SECURITY_NONE ) { php_printf( "\n", ver.security_level ); } else { php_printf( "\n" ); } #endif php_printf("
Total links:%d/%s
RCS Version:$Id$
SDK Version:%f
Highest LDAP Protocol Supported:%f
SSL Level Supported:%f
Level of encryption:%d bits
SSL not enabled.
\n"); } /* {{{ proto int ldap_connect([string host [, int port]]) Connect to an LDAP server */ PHP_FUNCTION(ldap_connect) { char *host; int port; /* char *hashed_details; int hashed_details_length;*/ LDAP *ldap; LDAP_TLS_VARS; switch(ARG_COUNT(ht)) { case 0: host = NULL; port = 0; /* hashed_details = estrndup("ldap_", 5); hashed_details_length = 4+1; */ break; case 1: { pval **yyhost; if (zend_get_parameters_ex(1, &yyhost) == FAILURE) { RETURN_FALSE; } convert_to_string_ex(yyhost); host = (*yyhost)->value.str.val; port = 389; /* Default port */ /* hashed_details_length = yyhost->value.str.len+4+1; hashed_details = emalloc(hashed_details_length+1); sprintf(hashed_details, "ldap_%s", yyhost->value.str.val);*/ } break; case 2: { pval **yyhost, **yyport; if (zend_get_parameters_ex(2, &yyhost,&yyport) == FAILURE) { RETURN_FALSE; } convert_to_string_ex(yyhost); host = (*yyhost)->value.str.val; convert_to_long_ex(yyport); port = (*yyport)->value.lval; /* Do we need to take care of hosts running multiple LDAP servers ? */ /* hashed_details_length = yyhost->value.str.len+4+1; hashed_details = emalloc(hashed_details_length+1); sprintf(hashed_details, "ldap_%s", yyhost->value.str.val);*/ } break; default: WRONG_PARAM_COUNT; break; } if (LDAP_GLOBAL(max_links)!=-1 && LDAP_GLOBAL(num_links)>=LDAP_GLOBAL(max_links)) { php_error(E_WARNING, "LDAP: Too many open links (%d)", LDAP_GLOBAL(num_links)); RETURN_FALSE; } ldap = ldap_open(host,port); if ( ldap == NULL ) { RETURN_FALSE; } else { RETURN_LONG(zend_list_insert((void*)ldap,LDAP_GLOBAL(le_link))); } } /* }}} */ static LDAP * _get_ldap_link(pval **link) { LDAP *ldap; int type; LDAP_TLS_VARS; convert_to_long_ex(link); ldap = (LDAP *) zend_list_find((*link)->value.lval, &type); if (!ldap || !(type == LDAP_GLOBAL(le_link))) { php_error(E_WARNING, "%d is not a LDAP link index",(*link)->value.lval); return NULL; } return ldap; } static LDAPMessage * _get_ldap_result(pval **result) { LDAPMessage *ldap_result; int type; LDAP_TLS_VARS; convert_to_long_ex(result); ldap_result = (LDAPMessage *)zend_list_find((*result)->value.lval, &type); if (!ldap_result || type != LDAP_GLOBAL(le_result)) { php_error(E_WARNING, "%d is not a LDAP result index",(*result)->value.lval); return NULL; } return ldap_result; } static LDAPMessage * _get_ldap_result_entry(pval **result) { LDAPMessage *ldap_result_entry; int type; LDAP_TLS_VARS; convert_to_long_ex(result); ldap_result_entry = (LDAPMessage *)zend_list_find((*result)->value.lval, &type); if (!ldap_result_entry || type != LDAP_GLOBAL(le_result_entry)) { php_error(E_WARNING, "%d is not a LDAP result entry index", (*result)->value.lval); return NULL; } return ldap_result_entry; } static BerElement * _get_ber_entry(pval **berp) { BerElement *ber; int type; LDAP_TLS_VARS; convert_to_long_ex(berp); ber = (BerElement *) zend_list_find((*berp)->value.lval, &type); if ( type != LDAP_GLOBAL(le_ber_entry)) { php_error(E_WARNING, "%d is not a BerElement index",(*berp)->value.lval); return NULL; } return ber; } #if 0 PHP_FUNCTION(ber_free) { pval **berp; if ( zend_get_parameters_ex(1,&berp) == FAILURE ) { WRONG_PARAM_COUNT; } zend_list_delete((*berp)->value.lval); RETURN_TRUE; } #endif /* {{{ proto int ldap_bind(int link [, string dn, string password]) Bind to LDAP directory */ PHP_FUNCTION(ldap_bind) { pval **link, **bind_rdn, **bind_pw; char *ldap_bind_rdn, *ldap_bind_pw; LDAP *ldap; switch(ARG_COUNT(ht)) { case 1: /* Anonymous Bind */ if (zend_get_parameters_ex(1, &link) == FAILURE) { WRONG_PARAM_COUNT; } ldap_bind_rdn = NULL; ldap_bind_pw = NULL; break; case 3 : if (zend_get_parameters_ex(3, &link, &bind_rdn,&bind_pw) == FAILURE) { WRONG_PARAM_COUNT; } convert_to_string_ex(bind_rdn); convert_to_string_ex(bind_pw); ldap_bind_rdn = (*bind_rdn)->value.str.val; ldap_bind_pw = (*bind_pw)->value.str.val; break; default: WRONG_PARAM_COUNT; break; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; if (ldap_bind_s(ldap, ldap_bind_rdn, ldap_bind_pw, LDAP_AUTH_SIMPLE) != LDAP_SUCCESS) { #if !HAVE_NSLDAP #if LDAP_API_VERSION > 2000 /* New versions of OpenLDAP do it this way */ php_error(E_WARNING,"LDAP: Unable to bind to server: %s",ldap_err2string(ldap_get_lderrno(ldap,NULL,NULL))); #else php_error(E_WARNING,"LDAP: Unable to bind to server: %s",ldap_err2string(ldap->ld_errno)); #endif #endif RETURN_FALSE; } else { RETURN_TRUE; } } /* }}} */ /* {{{ proto int ldap_unbind(int link) Unbind from LDAP directory */ PHP_FUNCTION(ldap_unbind) { pval **link; LDAP *ldap; if (ARG_COUNT(ht) != 1 || zend_get_parameters_ex(1, &link) == FAILURE) { WRONG_PARAM_COUNT; } convert_to_long_ex(link); ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; zend_list_delete((*link)->value.lval); RETURN_TRUE; } /* }}} */ static void php_ldap_do_search(INTERNAL_FUNCTION_PARAMETERS, int scope) { pval **link, **base_dn, **filter, **attrs, **attr; char *ldap_base_dn, *ldap_filter; LDAP *ldap; char **ldap_attrs = NULL; int attrsonly; LDAPMessage *ldap_result; int num_attribs=0, i; LDAP_TLS_VARS; switch(ARG_COUNT(ht)) { case 3 : if (zend_get_parameters_ex(3, &link, &base_dn,&filter) == FAILURE) { WRONG_PARAM_COUNT; } convert_to_string_ex(base_dn); convert_to_string_ex(filter); ldap_base_dn = (*base_dn)->value.str.val; ldap_filter = (*filter)->value.str.val; break; case 4 : if (zend_get_parameters_ex(4, &link, &base_dn,&filter, &attrs) == FAILURE) { WRONG_PARAM_COUNT; } if ((*attrs)->type != IS_ARRAY) { php_error(E_WARNING, "LDAP: Expected Array as last element"); RETURN_FALSE; } convert_to_string_ex(base_dn); convert_to_string_ex(filter); ldap_base_dn = (*base_dn)->value.str.val; ldap_filter = (*filter)->value.str.val; num_attribs = zend_hash_num_elements((*attrs)->value.ht); if ((ldap_attrs = emalloc((num_attribs+1) * sizeof(char *))) == NULL) { php_error(E_WARNING, "LDAP: Could not allocate memory"); RETURN_FALSE; return; } for(i=0; ivalue.ht, i, (void **) &attr) == FAILURE) { php_error(E_WARNING, "LDAP: Array initialization wrong"); RETURN_FALSE; return; } SEPARATE_ZVAL(attr); convert_to_string_ex(attr); ldap_attrs[i] = (*attr)->value.str.val; } ldap_attrs[num_attribs] = NULL; break; default: WRONG_PARAM_COUNT; break; } /* fix to make null base_dn's work */ if ( strlen(ldap_base_dn) < 1 ) { ldap_base_dn = NULL; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; /* Is it useful to only get the attributes ? */ attrsonly = 0; /* We can possibly add the timeout value also */ if (ldap_search_s(ldap, ldap_base_dn, scope, ldap_filter, ldap_attrs, attrsonly, &ldap_result) != LDAP_SUCCESS) { #if !HAVE_NSLDAP #if LDAP_API_VERSION > 2000 php_error(E_WARNING,"LDAP: Unable to perform the search: %s",ldap_err2string(ldap_get_lderrno(ldap,NULL,NULL))); #else php_error(E_WARNING, "LDAP: Unable to perform the search: %s", ldap_err2string(ldap->ld_errno)); #endif #endif RETVAL_FALSE; } else { RETVAL_LONG(zend_list_insert(ldap_result, LDAP_GLOBAL(le_result))); } if (ldap_attrs != NULL) { /* for(i=0; ivalue.lval); /* Delete list entry and call registered destructor function */ RETVAL_TRUE; } return; } /* }}} */ /* {{{ proto int ldap_count_entries(int link, int result) Count the number of entries in a search result */ PHP_FUNCTION(ldap_count_entries) { pval **result, **link; LDAP *ldap; LDAPMessage *ldap_result; if (ARG_COUNT(ht) != 2 || zend_get_parameters_ex(2, &link, &result) == FAILURE) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result = _get_ldap_result(result); if (ldap_result == NULL) RETURN_FALSE; RETURN_LONG(ldap_count_entries(ldap, ldap_result)); } /* }}} */ /* {{{ proto int ldap_first_entry(int link, int result) Return first result id */ PHP_FUNCTION(ldap_first_entry) { pval **result, **link; LDAP *ldap; LDAPMessage *ldap_result; LDAPMessage *ldap_result_entry; LDAP_TLS_VARS; if (ARG_COUNT(ht) != 2 || zend_get_parameters_ex(2, &link, &result) == FAILURE) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result = _get_ldap_result(result); if (ldap_result == NULL) RETURN_FALSE; if ((ldap_result_entry = ldap_first_entry(ldap, ldap_result)) == NULL) { RETURN_FALSE; } else { RETURN_LONG(zend_list_insert(ldap_result_entry, LDAP_GLOBAL(le_result_entry))); } } /* }}} */ /* {{{ proto int ldap_next_entry(int link, int entry) Get next result entry */ PHP_FUNCTION(ldap_next_entry) { pval **result_entry, **link; LDAP *ldap; LDAPMessage *ldap_result_entry, *ldap_result_entry_next; LDAP_TLS_VARS; if (ARG_COUNT(ht) != 2 || zend_get_parameters_ex(2, &link,&result_entry) == FAILURE) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result_entry = _get_ldap_result_entry(result_entry); if (ldap_result_entry == NULL) RETURN_FALSE; if ((ldap_result_entry_next = ldap_next_entry(ldap, ldap_result_entry)) == NULL) { RETURN_FALSE; } else { RETURN_LONG(zend_list_insert(ldap_result_entry_next, LDAP_GLOBAL(le_result_entry))); } } /* }}} */ /* {{{ proto array ldap_get_entries(int link, int result) Get all result entries */ PHP_FUNCTION(ldap_get_entries) { pval **link, **result; LDAPMessage *ldap_result, *ldap_result_entry; pval *tmp1, *tmp2; LDAP *ldap; int num_entries, num_attrib, num_values, i; int attr_count, entry_count; BerElement *ber; char *attribute; size_t attr_len; char **ldap_value; char *dn; if (ARG_COUNT(ht) != 2 || zend_get_parameters_ex(2, &link, &result) == FAILURE) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result = _get_ldap_result(result); if (ldap_result == NULL) RETURN_FALSE; num_entries = ldap_count_entries(ldap, ldap_result); array_init(return_value); add_assoc_long(return_value, "count", num_entries); if (num_entries == 0) return; ldap_result_entry = ldap_first_entry(ldap, ldap_result); if (ldap_result_entry == NULL) RETURN_FALSE; entry_count = 0; while(ldap_result_entry != NULL) { num_attrib = 0; attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber); if (attribute == NULL) RETURN_FALSE; while (attribute != NULL) { num_attrib++; attribute = ldap_next_attribute(ldap, ldap_result_entry, ber); } MAKE_STD_ZVAL(tmp1); array_init(tmp1); attr_count = 0; attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber); while (attribute != NULL) { ldap_value = ldap_get_values(ldap, ldap_result_entry, attribute); num_values = ldap_count_values(ldap_value); MAKE_STD_ZVAL(tmp2); array_init(tmp2); add_assoc_long(tmp2, "count", num_values); for(i=0; ivalue.ht, php_strtolower(attribute, attr_len), attr_len+1, (void *) &tmp2, sizeof(pval *), NULL); add_index_string(tmp1, attr_count, attribute, 1); attr_count++; attribute = ldap_next_attribute(ldap, ldap_result_entry, ber); } add_assoc_long(tmp1, "count", num_attrib); dn = ldap_get_dn(ldap, ldap_result_entry); add_assoc_string(tmp1, "dn", dn, 1); zend_hash_index_update(return_value->value.ht, entry_count, (void *) &tmp1, sizeof(pval *), NULL); entry_count++; ldap_result_entry = ldap_next_entry(ldap, ldap_result_entry); } add_assoc_long(return_value, "count", num_entries); } /* }}} */ /* {{{ proto string ldap_first_attribute(int link, int result, int ber) Return first attribute */ PHP_FUNCTION(ldap_first_attribute) { pval **result,**link,**berp; LDAP *ldap; LDAPMessage *ldap_result_entry; BerElement *ber; char *attribute; LDAP_TLS_VARS; if (ARG_COUNT(ht) != 3 || zend_get_parameters_ex(3, &link,&result,&berp) == FAILURE || ParameterPassedByReference(ht,3)==0 ) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result_entry = _get_ldap_result_entry(result); if (ldap_result_entry == NULL) RETURN_FALSE; if ((attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber)) == NULL) { RETURN_FALSE; } else { /* brep is passed by ref so we do not have to account for memory */ (*berp)->type=IS_LONG; (*berp)->value.lval=zend_list_insert(ber,LDAP_GLOBAL(le_ber_entry)); RETVAL_STRING(attribute,1); #ifdef WINDOWS ldap_memfree(attribute); #endif } } /* }}} */ /* {{{ proto string ldap_next_attribute(int link, int result, int ber) Get the next attribute in result */ PHP_FUNCTION(ldap_next_attribute) { pval **result,**link,**berp; LDAP *ldap; LDAPMessage *ldap_result_entry; BerElement *ber; char *attribute; if (ARG_COUNT(ht) != 3 || zend_get_parameters_ex(3, &link,&result,&berp) == FAILURE ) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result_entry = _get_ldap_result_entry(result); if (ldap_result_entry == NULL) RETURN_FALSE; ber = _get_ber_entry(berp); if ((attribute = ldap_next_attribute(ldap, ldap_result_entry, ber)) == NULL) { RETURN_FALSE; } else { RETVAL_STRING(attribute,1); #ifdef WINDOWS ldap_memfree(attribute); #endif } } /* }}} */ /* {{{ proto array ldap_get_attributes(int link, int result) Get attributes from a search result entry */ PHP_FUNCTION(ldap_get_attributes) { pval **link, **result_entry; pval *tmp; LDAP *ldap; LDAPMessage *ldap_result_entry; char *attribute; char **ldap_value; int i, count, num_values, num_attrib; BerElement *ber; if (ARG_COUNT(ht) != 2 || zend_get_parameters_ex(2, &link, &result_entry) == FAILURE) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result_entry = _get_ldap_result_entry(result_entry); if (ldap_result_entry == NULL) RETURN_FALSE; num_attrib = 0; attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber); if (attribute == NULL) RETURN_FALSE; while (attribute != NULL) { num_attrib++; attribute = ldap_next_attribute(ldap, ldap_result_entry, ber); } array_init(return_value); count=0; attribute = ldap_first_attribute(ldap, ldap_result_entry, &ber); while (attribute != NULL) { ldap_value = ldap_get_values(ldap, ldap_result_entry, attribute); num_values = ldap_count_values(ldap_value); MAKE_STD_ZVAL(tmp); array_init(tmp); add_assoc_long(tmp, "count", num_values); for(i=0; ivalue.ht, attribute, strlen(attribute)+1, (void *) &tmp, sizeof(pval *), NULL); add_index_string(return_value, count, attribute, 1); count++; attribute = ldap_next_attribute(ldap, ldap_result_entry, ber); } add_assoc_long(return_value, "count", num_attrib); } /* }}} */ /* {{{ proto array ldap_get_values(int link, int result, string attribute) Get all values from a result entry */ PHP_FUNCTION(ldap_get_values) { pval **link, **result_entry, **attr; LDAP *ldap; LDAPMessage *ldap_result_entry; char *attribute; char **ldap_value; int i, num_values; if (ARG_COUNT(ht) != 3 || zend_get_parameters_ex(3, &link,&result_entry, &attr) == FAILURE) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; ldap_result_entry = _get_ldap_result_entry(result_entry); if (ldap_result_entry == NULL) RETURN_FALSE; convert_to_string_ex(attr); attribute = (*attr)->value.str.val; if ((ldap_value = ldap_get_values(ldap, ldap_result_entry, attribute)) == NULL) { #if !HAVE_NSLDAP #if LDAP_API_VERSION > 2000 php_error(E_WARNING, "LDAP: Cannot get the value(s) of attribute %s", ldap_err2string(ldap_get_lderrno(ldap,NULL,NULL))); #else php_error(E_WARNING, "LDAP: Cannot get the value(s) of attribute %s", ldap_err2string(ldap->ld_errno)); #endif #endif RETURN_FALSE; } num_values = ldap_count_values(ldap_value); if (array_init(return_value) == FAILURE) { RETURN_FALSE; } for(i=0; ivalue.str.val,(*with_attrib)->value.lval); i=0; while(ldap_value[i] != NULL) i++; count = i; if (array_init(return_value) == FAILURE) { RETURN_FALSE; } add_assoc_long(return_value, "count", count); for(i=0; ivalue.str.val); if (ufn !=NULL) { RETVAL_STRING(ufn,1); #ifdef WINDOWS ldap_memfree(ufn); #endif } else { RETURN_FALSE; } } /* }}} */ /* added to fix use of ldap_modify_add for doing an ldap_add, gerrit thomson. */ #define PHP_LD_FULL_ADD 0xff static void php_ldap_do_modify(INTERNAL_FUNCTION_PARAMETERS, int oper) { pval **link, **dn, **entry, **value, **ivalue; LDAP *ldap; char *ldap_dn; LDAPMod **ldap_mods; int i, j, num_attribs, num_values; char *attribute; ulong index; int is_full_add=0; /* flag for full add operation so ldap_mod_add can be put back into oper, gerrit THomson */ if (ARG_COUNT(ht) != 3 || zend_get_parameters_ex(3, &link, &dn,&entry) == FAILURE) { WRONG_PARAM_COUNT; } if ((*entry)->type != IS_ARRAY) { php_error(E_WARNING, "LDAP: Expected Array as the last element"); RETURN_FALSE; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; convert_to_string_ex(dn); ldap_dn = (*dn)->value.str.val; num_attribs = zend_hash_num_elements((*entry)->value.ht); ldap_mods = emalloc((num_attribs+1) * sizeof(LDAPMod *)); zend_hash_internal_pointer_reset((*entry)->value.ht); /* added by gerrit thomson to fix ldap_add using ldap_mod_add */ if ( oper == PHP_LD_FULL_ADD ) { oper = LDAP_MOD_ADD; is_full_add = 1; } /* end additional , gerrit thomson */ for(i=0; imod_op = oper; if (zend_hash_get_current_key((*entry)->value.ht,&attribute, &index) == HASH_KEY_IS_STRING) { ldap_mods[i]->mod_type = estrdup(attribute); efree(attribute); } else { php_error(E_WARNING, "LDAP: Unknown Attribute in the data"); } zend_hash_get_current_data((*entry)->value.ht, (void **)&value); if ((*value)->type != IS_ARRAY) { num_values = 1; } else { num_values = zend_hash_num_elements((*value)->value.ht); } ldap_mods[i]->mod_values = emalloc((num_values+1) * sizeof(char *)); /* allow for arrays with one element, no allowance for arrays with none but probably not required, gerrit thomson. */ /* if (num_values == 1) {*/ if ((num_values == 1) && ((*value)->type != IS_ARRAY)) { convert_to_string_ex(value); ldap_mods[i]->mod_values[0] = (*value)->value.str.val; } else { for(j=0; jvalue.ht,j, (void **) &ivalue); convert_to_string_ex(ivalue); ldap_mods[i]->mod_values[j] = (*ivalue)->value.str.val; } } ldap_mods[i]->mod_values[num_values] = NULL; zend_hash_move_forward((*entry)->value.ht); } ldap_mods[num_attribs] = NULL; /* check flag to see if do_mod was called to perform full add , gerrit thomson */ /* if (oper == LDAP_MOD_ADD) { */ if (is_full_add == 1) { if (ldap_add_s(ldap, ldap_dn, ldap_mods) != LDAP_SUCCESS) { ldap_perror(ldap, "LDAP"); php_error(E_WARNING, "LDAP: add operation could not be completed."); RETVAL_FALSE; } else RETVAL_TRUE; } else { if (ldap_modify_s(ldap, ldap_dn, ldap_mods) != LDAP_SUCCESS) { php_error(E_WARNING, "LDAP: modify operation could not be completed."); RETVAL_FALSE; } else RETVAL_TRUE; } for(i=0; imod_type); efree(ldap_mods[i]->mod_values); efree(ldap_mods[i]); } efree(ldap_mods); return; } /* {{{ proto int ldap_add(int link, string dn, array entry) Add entries to LDAP directory */ PHP_FUNCTION(ldap_add) { /* use a newly define parameter into the do_modify so ldap_mod_add can be used the way it is supposed to be used , Gerrit THomson */ /* php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_ADD);*/ php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, PHP_LD_FULL_ADD); } /* }}} */ /* {{{ proto int ldap_modify(int link, string dn, array entry) Modify an LDAP entry */ PHP_FUNCTION(ldap_modify) { php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_REPLACE); } /* }}} */ /* three functions for attribute base modifications, gerrit Thomson */ /* {{{ proto int ldap_mod_replace(int link, string dn, array entry) Replace attribute values with new ones */ PHP_FUNCTION(ldap_mod_replace) { php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_REPLACE);} /* }}} */ /* {{{ proto int ldap_mod_add(int link, string dn, array entry) Add attribute values to current */ PHP_FUNCTION(ldap_mod_add) { php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_ADD); } /* }}} */ /* {{{ proto int ldap_mod_del(int link, string dn, array entry) Delete attribute values */ PHP_FUNCTION(ldap_mod_del) { php_ldap_do_modify(INTERNAL_FUNCTION_PARAM_PASSTHRU, LDAP_MOD_DELETE); } /* end of attribute based functions , gerrit thomson */ /* {{{ proto int ldap_delete(int link, string dn) Delete an entry from a directory */ PHP_FUNCTION(ldap_delete) { pval **link, **dn; LDAP *ldap; char *ldap_dn; if (ARG_COUNT(ht) != 2 || zend_get_parameters_ex(2, &link, &dn) == FAILURE) { WRONG_PARAM_COUNT; } ldap = _get_ldap_link(link); if (ldap == NULL) RETURN_FALSE; convert_to_string_ex(dn); ldap_dn = (*dn)->value.str.val; if (ldap_delete_s(ldap, ldap_dn) != LDAP_SUCCESS) { ldap_perror(ldap, "LDAP"); RETURN_FALSE; } RETURN_TRUE; } /* }}} */ #endif