2020-09-13 13:41:26 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
namespace App\Ldap;
|
|
|
|
|
2020-09-23 12:14:38 +00:00
|
|
|
use Illuminate\Support\Arr;
|
2023-03-01 22:54:30 +00:00
|
|
|
use Illuminate\Support\Collection;
|
2023-03-31 04:55:08 +00:00
|
|
|
use Illuminate\Support\Facades\Crypt;
|
2020-09-13 13:41:26 +00:00
|
|
|
use LdapRecord\Models\Model;
|
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
use App\Classes\LDAP\Attribute;
|
2021-12-08 12:26:12 +00:00
|
|
|
use App\Classes\LDAP\Attribute\Factory;
|
|
|
|
|
2020-09-13 13:41:26 +00:00
|
|
|
class Entry extends Model
|
|
|
|
{
|
2023-01-27 08:59:31 +00:00
|
|
|
/* OVERRIDES */
|
|
|
|
|
|
|
|
public function getAttributes(): array
|
2024-01-09 06:44:50 +00:00
|
|
|
{
|
|
|
|
return $this->getAttributesAsObjects()->toArray();
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Determine if the new and old values for a given key are equivalent.
|
|
|
|
*/
|
|
|
|
protected function originalIsEquivalent(string $key): bool
|
|
|
|
{
|
|
|
|
if (! array_key_exists($key, $this->original)) {
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
$current = $this->attributes[$key];
|
|
|
|
$original = $this->original[$key];
|
|
|
|
|
|
|
|
if ($current === $original) {
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
|
|
|
|
//dump(['key'=>$key,'current'=>$current,'original'=>$this->original[$key],'objectvalue'=>$this->getAttributeAsObject($key)->isDirty()]);
|
|
|
|
return ! $this->getAttributeAsObject($key)->isDirty();
|
|
|
|
}
|
|
|
|
|
|
|
|
public function getOriginal(): array
|
|
|
|
{
|
|
|
|
static $result = NULL;
|
|
|
|
|
|
|
|
if (is_null($result)) {
|
|
|
|
$result = collect();
|
|
|
|
|
|
|
|
// @todo Optimise this foreach with getAttributes()
|
|
|
|
foreach (parent::getOriginal() as $attribute => $value) {
|
|
|
|
// If the attribute name has language tags
|
|
|
|
$matches = [];
|
|
|
|
if (preg_match('/^([a-zA-Z]+)(;([a-zA-Z-;]+))+/',$attribute,$matches)) {
|
|
|
|
$attribute = $matches[1];
|
|
|
|
|
|
|
|
// If the attribute doesnt exist we'll create it
|
|
|
|
$o = Arr::get($result,$attribute,Factory::create($attribute,[]));
|
|
|
|
$o->setLangTag($matches[3],$value);
|
|
|
|
|
|
|
|
} else {
|
|
|
|
$o = Factory::create($attribute,$value);
|
|
|
|
}
|
|
|
|
|
|
|
|
if (! $result->has($attribute)) {
|
|
|
|
// Set the rdn flag
|
|
|
|
if (preg_match('/^'.$attribute.'=/i',$this->dn))
|
|
|
|
$o->setRDN();
|
|
|
|
|
|
|
|
// Set required flag
|
|
|
|
$o->required_by(collect($this->getAttribute('objectclass')));
|
|
|
|
|
|
|
|
$result->put($attribute,$o);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return $result->toArray();
|
|
|
|
}
|
|
|
|
|
|
|
|
/* ATTRIBUTES */
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Return a key to use for sorting
|
|
|
|
*
|
|
|
|
* @todo This should be the DN in reverse order
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public function getSortKeyAttribute(): string
|
|
|
|
{
|
|
|
|
return $this->getDn();
|
|
|
|
}
|
|
|
|
|
|
|
|
/* METHODS */
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Get an attribute as an object
|
|
|
|
*
|
|
|
|
* @param string $key
|
|
|
|
* @return Attribute|null
|
|
|
|
*/
|
|
|
|
public function getAttributeAsObject(string $key): Attribute|null
|
|
|
|
{
|
|
|
|
return Arr::get($this->getAttributesAsObjects(),$key);
|
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
|
|
|
* Convert all our attribute values into an array of Objects
|
|
|
|
*
|
|
|
|
* @return Collection
|
|
|
|
*/
|
|
|
|
protected function getAttributesAsObjects(): Collection
|
2023-01-27 08:59:31 +00:00
|
|
|
{
|
2023-03-02 07:21:53 +00:00
|
|
|
static $result = NULL;
|
2023-03-01 22:54:30 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
if (is_null($result)) {
|
|
|
|
$result = collect();
|
2023-03-02 03:41:38 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
foreach (parent::getAttributes() as $attribute => $value) {
|
2023-03-27 05:19:37 +00:00
|
|
|
// If the attribute name has language tags
|
|
|
|
$matches = [];
|
|
|
|
if (preg_match('/^([a-zA-Z]+)(;([a-zA-Z-;]+))+/',$attribute,$matches)) {
|
|
|
|
$attribute = $matches[1];
|
2023-03-02 03:41:38 +00:00
|
|
|
|
2023-03-27 05:19:37 +00:00
|
|
|
// If the attribute doesnt exist we'll create it
|
|
|
|
$o = Arr::get($result,$attribute,Factory::create($attribute,[]));
|
|
|
|
$o->setLangTag($matches[3],$value);
|
2023-03-02 03:41:38 +00:00
|
|
|
|
2023-03-27 05:19:37 +00:00
|
|
|
} else {
|
|
|
|
$o = Factory::create($attribute,$value);
|
|
|
|
}
|
2023-03-02 07:21:53 +00:00
|
|
|
|
2023-03-27 05:19:37 +00:00
|
|
|
if (! $result->has($attribute)) {
|
|
|
|
// Set the rdn flag
|
|
|
|
if (preg_match('/^'.$attribute.'=/i',$this->dn))
|
|
|
|
$o->setRDN();
|
|
|
|
|
|
|
|
// Set required flag
|
|
|
|
$o->required_by(collect($this->getAttribute('objectclass')));
|
|
|
|
|
2024-01-09 06:44:50 +00:00
|
|
|
// Store our original value to know if this attribute has changed
|
|
|
|
$o->oldValues(Arr::get($this->original,$attribute));
|
|
|
|
|
2023-03-27 05:19:37 +00:00
|
|
|
$result->put($attribute,$o);
|
|
|
|
}
|
2023-03-02 07:21:53 +00:00
|
|
|
}
|
2023-01-27 08:59:31 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
$sort = collect(config('ldap.attr_display_order',[]))->transform(function($item) { return strtolower($item); });
|
2023-03-01 23:17:15 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
// Order the attributes
|
|
|
|
$result = $result->sortBy([function(Attribute $a,Attribute $b) use ($sort): int {
|
|
|
|
if ($a === $b)
|
|
|
|
return 0;
|
2023-03-01 23:17:15 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
// Check if $a/$b are in the configuration to be sorted first, if so get it's key
|
|
|
|
$a_key = $sort->search($a->name_lc);
|
|
|
|
$b_key = $sort->search($b->name_lc);
|
2023-03-01 23:17:15 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
// If the keys were not in the sort list, set the key to be the count of elements (ie: so it is last to be sorted)
|
|
|
|
if ($a_key === FALSE)
|
|
|
|
$a_key = $sort->count()+1;
|
2023-03-01 23:17:15 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
if ($b_key === FALSE)
|
|
|
|
$b_key = $sort->count()+1;
|
2023-03-01 23:17:15 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
// Case where neither $a, nor $b are in ldap.attr_display_order, $a_key = $b_key = one greater than num elements.
|
|
|
|
// So we sort them alphabetically
|
|
|
|
if ($a_key === $b_key)
|
|
|
|
return strcasecmp($a->name,$b->name);
|
|
|
|
|
|
|
|
// Case where at least one attribute or its friendly name is in $attrs_display_order
|
|
|
|
// return -1 if $a before $b in $attrs_display_order
|
|
|
|
return ($a_key < $b_key) ? -1 : 1;
|
2024-01-09 06:44:50 +00:00
|
|
|
} ]);
|
2023-03-02 07:21:53 +00:00
|
|
|
}
|
2023-03-01 23:17:15 +00:00
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
return $result;
|
2023-01-27 08:59:31 +00:00
|
|
|
}
|
|
|
|
|
2023-09-02 10:28:04 +00:00
|
|
|
/**
|
|
|
|
* Return a list of available attributes - as per the objectClass entry of the record
|
|
|
|
*
|
|
|
|
* @return Collection
|
|
|
|
*/
|
|
|
|
public function getAvailableAttributes(): Collection
|
|
|
|
{
|
|
|
|
$result = collect();
|
|
|
|
|
|
|
|
foreach ($this->objectclass as $oc)
|
|
|
|
$result = $result->merge(config('server')->schema('objectclasses',$oc)->attributes);
|
|
|
|
|
|
|
|
return $result;
|
|
|
|
}
|
|
|
|
|
2024-01-09 06:44:50 +00:00
|
|
|
/**
|
|
|
|
* Return a secure version of the DN
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public function getDNSecure(): string
|
|
|
|
{
|
|
|
|
return Crypt::encryptString($this->getDn());
|
|
|
|
}
|
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
/**
|
|
|
|
* Return a list of LDAP internal attributes
|
|
|
|
*
|
|
|
|
* @return Collection
|
|
|
|
*/
|
|
|
|
public function getInternalAttributes(): Collection
|
|
|
|
{
|
|
|
|
return collect($this->getAttributes())->filter(function($item) {
|
|
|
|
return $item->is_internal;
|
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2023-09-02 10:28:04 +00:00
|
|
|
/**
|
|
|
|
* Return a list of attributes without any values
|
|
|
|
*
|
|
|
|
* @return Collection
|
|
|
|
*/
|
|
|
|
public function getMissingAttributes(): Collection
|
|
|
|
{
|
|
|
|
return $this->getAvailableAttributes()->diff($this->getVisibleAttributes());
|
|
|
|
}
|
|
|
|
|
2023-03-02 07:21:53 +00:00
|
|
|
/**
|
|
|
|
* Return this list of user attributes
|
|
|
|
*
|
|
|
|
* @return Collection
|
|
|
|
*/
|
2023-03-01 22:54:30 +00:00
|
|
|
public function getVisibleAttributes(): Collection
|
|
|
|
{
|
|
|
|
return collect($this->getAttributes())->filter(function($item) {
|
2023-03-02 03:41:38 +00:00
|
|
|
return ! $item->is_internal;
|
2023-03-01 22:54:30 +00:00
|
|
|
});
|
|
|
|
}
|
|
|
|
|
2020-09-23 12:14:38 +00:00
|
|
|
/**
|
|
|
|
* Return an icon for a DN based on objectClass
|
|
|
|
*
|
|
|
|
* @return string
|
|
|
|
*/
|
|
|
|
public function icon(): string
|
|
|
|
{
|
|
|
|
$objectclasses = array_map('strtolower',$this->objectclass);
|
|
|
|
|
|
|
|
// Return icon based upon objectClass value
|
|
|
|
if (in_array('person',$objectclasses) ||
|
|
|
|
in_array('organizationalperson',$objectclasses) ||
|
|
|
|
in_array('inetorgperson',$objectclasses) ||
|
|
|
|
in_array('account',$objectclasses) ||
|
|
|
|
in_array('posixaccount',$objectclasses))
|
|
|
|
|
|
|
|
return 'fas fa-user';
|
|
|
|
|
|
|
|
elseif (in_array('organization',$objectclasses))
|
|
|
|
return 'fas fa-university';
|
|
|
|
|
|
|
|
elseif (in_array('organizationalunit',$objectclasses))
|
|
|
|
return 'fas fa-object-group';
|
|
|
|
|
|
|
|
elseif (in_array('posixgroup',$objectclasses) ||
|
|
|
|
in_array('groupofnames',$objectclasses) ||
|
|
|
|
in_array('groupofuniquenames',$objectclasses) ||
|
|
|
|
in_array('group',$objectclasses))
|
|
|
|
|
|
|
|
return 'fas fa-users';
|
|
|
|
|
|
|
|
elseif (in_array('dcobject',$objectclasses) ||
|
|
|
|
in_array('domainrelatedobject',$objectclasses) ||
|
|
|
|
in_array('domain',$objectclasses) ||
|
|
|
|
in_array('builtindomain',$objectclasses))
|
|
|
|
|
|
|
|
return 'fas fa-network-wired';
|
|
|
|
|
|
|
|
elseif (in_array('alias',$objectclasses))
|
|
|
|
return 'fas fa-theater-masks';
|
|
|
|
|
|
|
|
elseif (in_array('country',$objectclasses))
|
|
|
|
return sprintf('flag %s',strtolower(Arr::get($this->c,0)));
|
|
|
|
|
|
|
|
elseif (in_array('device',$objectclasses))
|
|
|
|
return 'fas fa-mobile-alt';
|
|
|
|
|
|
|
|
elseif (in_array('document',$objectclasses))
|
|
|
|
return 'fas fa-file-alt';
|
|
|
|
|
|
|
|
elseif (in_array('iphost',$objectclasses))
|
|
|
|
return 'fas fa-wifi';
|
|
|
|
|
|
|
|
elseif (in_array('room',$objectclasses))
|
|
|
|
return 'fas fa-door-open';
|
|
|
|
|
|
|
|
elseif (in_array('server',$objectclasses))
|
|
|
|
return 'fas fa-server';
|
|
|
|
|
2021-03-02 11:19:00 +00:00
|
|
|
elseif (in_array('openldaprootdse',$objectclasses))
|
|
|
|
return 'fas fa-info';
|
|
|
|
|
2020-09-23 12:14:38 +00:00
|
|
|
// Default
|
|
|
|
return 'fa-fw fas fa-cog';
|
2020-09-21 12:20:59 +00:00
|
|
|
}
|
2023-02-14 10:38:42 +00:00
|
|
|
}
|