Home Explore Help
Register Sign In
blallo
/
tt-rss
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 0d421af86f
Branches Tags
tt-rss
/
classes
/
auth_remote.php

auth_remote.php 1.7 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. <?php
    2. 

  2. class Auth_Remote extends Auth_Base {
    3. 

  3. 	function get_login_by_ssl_certificate() {
    4. 

  4. 		$cert_serial = db_escape_string(get_ssl_certificate_id());
    5. 

  5. 

  6. 		if ($cert_serial) {
    7. 

  7. 			$result = db_query($this->link, "SELECT login FROM ttrss_user_prefs, ttrss_users
    8. 

  8. 				WHERE pref_name = 'SSL_CERT_SERIAL' AND value = '$cert_serial' AND
    9. 

  9. 				owner_uid = ttrss_users.id");
    10. 

  10. 

  11. 			if (db_num_rows($result) != 0) {
    12. 

  12. 				return db_escape_string(db_fetch_result($result, 0, "login"));
    13. 

  13. 			}
    14. 

  14. 		}
    15. 

  15. 

  16. 		return "";
    17. 

  17. 	}
    18. 

  18. 

  19. 

  20. 	function authenticate($login, $password) {
    21. 

  21. 		$try_login = db_escape_string($_SERVER["REMOTE_USER"]);
    22. 

  22. 

  23. 		if (!$try_login) $try_login = $this->get_login_by_ssl_certificate();
    24. 

  24. #	  	if (!$try_login) $try_login = "test_qqq";
    25. 

  25. 

  26. 		if ($try_login) {
    27. 

  27. 			$user_id = $this->auto_create_user($try_login);
    28. 

  28. 

  29. 			if ($user_id) {
    30. 

  30. 				$_SESSION["fake_login"] = $try_login;
    31. 

  31. 				$_SESSION["fake_password"] = "******";
    32. 

  32. 				$_SESSION["hide_hello"] = true;
    33. 

  33. 				$_SESSION["hide_logout"] = true;
    34. 

  34. 

  35. 				// LemonLDAP can send user informations via HTTP HEADER
    36. 

  36. 				if (defined('AUTH_AUTO_CREATE') && AUTH_AUTO_CREATE){
    37. 

  37. 					// update user name
    38. 

  38. 					$fullname = $_SERVER['HTTP_USER_NAME'] ? $_SERVER['HTTP_USER_NAME'] : $_SERVER['AUTHENTICATE_CN'];
    39. 

  39. 					if ($fullname){
    40. 

  40. 						$fullname = db_escape_string($fullname);
    41. 

  41. 						db_query($this->link, "UPDATE ttrss_users SET full_name = '$fullname' WHERE id = " .
    42. 

  42. 							$user_id);
    43. 

  43. 					}
    44. 

  44. 					// update user mail
    45. 

  45. 					$email = $_SERVER['HTTP_USER_MAIL'] ? $_SERVER['HTTP_USER_MAIL'] : $_SERVER['AUTHENTICATE_MAIL'];
    46. 

  46. 					if ($email){
    47. 

  47. 						$email = db_escape_string($email);
    48. 

  48. 						db_query($this->link, "UPDATE ttrss_users SET email = '$email' WHERE id = " .
    49. 

  49. 							$user_id);
    50. 

  50. 					}
    51. 

  51. 				}
    52. 

  52. 

  53. 				return $user_id;
    54. 

  54. 			}
    55. 

  55. 		}
    56. 

  56. 

  57. 		return false;
    58. 

  58. 	}
    59. 

  59. }
    60. 

  60. 

  61. ?>
    62.