Home Esplora Aiuto
Accedi
wellton
/
gnu-social
forkato da diogo/gnu-social
Segui 1
Vota 0
Forka 0
File
Albero (Tree): b4b71f7626
Rami (Branch) Tag
gnu-social
/
plugins
/
LdapCommon
/
extlib
/
Net
/
LDAP2
/
LDIF.php

LDIF.php 33 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552553554555556557558559560561562563564565566567568569570571572573574575576577578579580581582583584585586587588589590591592593594595596597598599600601602603604605606607608609610611612613614615616617618619620621622623624625626627628629630631632633634635636637638639640641642643644645646647648649650651652653654655656657658659660661662663664665666667668669670671672673674675676677678679680681682683684685686687688689690691692693694695696697698699700701702703704705706707708709710711712713714715716717718719720721722723724725726727728729730731732733734735736737738739740741742743744745746747748749750751752753754755756757758759760761762763764765766767768769770771772773774775776777778779780781782783784785786787788789790791792793794795796797798799800801802803804805806807808809810811812813814815816817818819820821822823824825826827828829830831832833834835836837838839840841842843844845846847848849850851852853854855856857858859860861862863864865866867868869870871872873874875876877878879880881882883884885886887888889890891892893894895896897898899900901902903904905906907908909910911912913914915916917918919920921922923924925926 
  1. <?php
    2. 

  2. /* vim: set expandtab tabstop=4 shiftwidth=4: */
    3. 

  3. /**
    4. 

  4. * File containing the Net_LDAP2_LDIF interface class.
    5. 

  5. *
    6. 

  6. * PHP version 5
    7. 

  7. *
    8. 

  8. * @category  Net
    9. 

  9. * @package   Net_LDAP2
    10. 

  10. * @author    Benedikt Hallinger <beni@php.net>
    11. 

  11. * @copyright 2009 Benedikt Hallinger
    12. 

  12. * @license   http://www.gnu.org/licenses/lgpl-3.0.txt LGPLv3
    13. 

  13. * @version   SVN: $Id$
    14. 

  14. * @link      http://pear.php.net/package/Net_LDAP2/
    15. 

  15. */
    16. 

  16. 

  17. /**
    18. 

  18. * Includes
    19. 

  19. */
    20. 

  20. require_once 'PEAR.php';
    21. 

  21. require_once 'Net/LDAP2.php';
    22. 

  22. require_once 'Net/LDAP2/Entry.php';
    23. 

  23. require_once 'Net/LDAP2/Util.php';
    24. 

  24. 

  25. /**
    26. 

  26. * LDIF capabilitys for Net_LDAP2, closely taken from PERLs Net::LDAP
    27. 

  27. *
    28. 

  28. * It provides a means to convert between Net_LDAP2_Entry objects and LDAP entries
    29. 

  29. * represented in LDIF format files. Reading and writing are supported and may
    30. 

  30. * manipulate single entries or lists of entries.
    31. 

  31. *
    32. 

  32. * Usage example:
    33. 

  33. * <code>
    34. 

  34. * // Read and parse an ldif-file into Net_LDAP2_Entry objects
    35. 

  35. * // and print out the DNs. Store the entries for later use.
    36. 

  36. * require 'Net/LDAP2/LDIF.php';
    37. 

  37. * $options = array(
    38. 

  38. *       'onerror' => 'die'
    39. 

  39. * );
    40. 

  40. * $entries = array();
    41. 

  41. * $ldif = new Net_LDAP2_LDIF('test.ldif', 'r', $options);
    42. 

  42. * do {
    43. 

  43. *       $entry = $ldif->read_entry();
    44. 

  44. *       $dn    = $entry->dn();
    45. 

  45. *       echo " done building entry: $dn\n";
    46. 

  46. *       array_push($entries, $entry);
    47. 

  47. * } while (!$ldif->eof());
    48. 

  48. * $ldif->done();
    49. 

  49. *
    50. 

  50. *
    51. 

  51. * // write those entries to another file
    52. 

  52. * $ldif = new Net_LDAP2_LDIF('test.out.ldif', 'w', $options);
    53. 

  53. * $ldif->write_entry($entries);
    54. 

  54. * $ldif->done();
    55. 

  55. * </code>
    56. 

  56. *
    57. 

  57. * @category Net
    58. 

  58. * @package  Net_LDAP2
    59. 

  59. * @author   Benedikt Hallinger <beni@php.net>
    60. 

  60. * @license  http://www.gnu.org/copyleft/lesser.html LGPL
    61. 

  61. * @link     http://pear.php.net/package/Net_LDAP22/
    62. 

  62. * @see      http://www.ietf.org/rfc/rfc2849.txt
    63. 

  63. * @todo     Error handling should be PEARified
    64. 

  64. * @todo     LDAPv3 controls are not implemented yet
    65. 

  65. */
    66. 

  66. class Net_LDAP2_LDIF extends PEAR
    67. 

  67. {
    68. 

  68.     /**
    69. 

  69.     * Options
    70. 

  70.     *
    71. 

  71.     * @access protected
    72. 

  72.     * @var array
    73. 

  73.     */
    74. 

  74.     protected $_options = array('encode'    => 'base64',
    75. 

  75.                                 'onerror'   => null,
    76. 

  76.                                 'change'    => 0,
    77. 

  77.                                 'lowercase' => 0,
    78. 

  78.                                 'sort'      => 0,
    79. 

  79.                                 'version'   => null,
    80. 

  80.                                 'wrap'      => 78,
    81. 

  81.                                 'raw'       => ''
    82. 

  82.                                );
    83. 

  83. 

  84.     /**
    85. 

  85.     * Errorcache
    86. 

  86.     *
    87. 

  87.     * @access protected
    88. 

  88.     * @var array
    89. 

  89.     */
    90. 

  90.     protected $_error = array('error' => null,
    91. 

  91.                               'line'  => 0
    92. 

  92.                              );
    93. 

  93. 

  94.     /**
    95. 

  95.     * Filehandle for read/write
    96. 

  96.     *
    97. 

  97.     * @access protected
    98. 

  98.     * @var array
    99. 

  99.     */
    100. 

  100.     protected $_FH = null;
    101. 

  101. 

  102.     /**
    103. 

  103.     * Says, if we opened the filehandle ourselves
    104. 

  104.     *
    105. 

  105.     * @access protected
    106. 

  106.     * @var array
    107. 

  107.     */
    108. 

  108.     protected $_FH_opened = false;
    109. 

  109. 

  110.     /**
    111. 

  111.     * Linecounter for input file handle
    112. 

  112.     *
    113. 

  113.     * @access protected
    114. 

  114.     * @var array
    115. 

  115.     */
    116. 

  116.     protected $_input_line = 0;
    117. 

  117. 

  118.     /**
    119. 

  119.     * counter for processed entries
    120. 

  120.     *
    121. 

  121.     * @access protected
    122. 

  122.     * @var int
    123. 

  123.     */
    124. 

  124.     protected $_entrynum = 0;
    125. 

  125. 

  126.     /**
    127. 

  127.     * Mode we are working in
    128. 

  128.     *
    129. 

  129.     * Either 'r', 'a' or 'w'
    130. 

  130.     *
    131. 

  131.     * @access protected
    132. 

  132.     * @var string
    133. 

  133.     */
    134. 

  134.     protected $_mode = false;
    135. 

  135. 

  136.     /**
    137. 

  137.     * Tells, if the LDIF version string was already written
    138. 

  138.     *
    139. 

  139.     * @access protected
    140. 

  140.     * @var boolean
    141. 

  141.     */
    142. 

  142.     protected $_version_written = false;
    143. 

  143. 

  144.     /**
    145. 

  145.     * Cache for lines that have build the current entry
    146. 

  146.     *
    147. 

  147.     * @access protected
    148. 

  148.     * @var boolean
    149. 

  149.     */
    150. 

  150.     protected $_lines_cur = array();
    151. 

  151. 

  152.     /**
    153. 

  153.     * Cache for lines that will build the next entry
    154. 

  154.     *
    155. 

  155.     * @access protected
    156. 

  156.     * @var boolean
    157. 

  157.     */
    158. 

  158.     protected $_lines_next = array();
    159. 

  159. 

  160.     /**
    161. 

  161.     * Open LDIF file for reading or for writing
    162. 

  162.     *
    163. 

  163.     * new (FILE):
    164. 

  164.     * Open the file read-only. FILE may be the name of a file
    165. 

  165.     * or an already open filehandle.
    166. 

  166.     * If the file doesn't exist, it will be created if in write mode.
    167. 

  167.     *
    168. 

  168.     * new (FILE, MODE, OPTIONS):
    169. 

  169.     *     Open the file with the given MODE (see PHPs fopen()), eg "w" or "a".
    170. 

  170.     *     FILE may be the name of a file or an already open filehandle.
    171. 

  171.     *     PERLs Net_LDAP2 "FILE|" mode does not work curently.
    172. 

  172.     *
    173. 

  173.     *     OPTIONS is an associative array and may contain:
    174. 

  174.     *       encode => 'none' | 'canonical' | 'base64'
    175. 

  175.     *         Some DN values in LDIF cannot be written verbatim and have to be encoded in some way:
    176. 

  176.     *         'none'       No encoding.
    177. 

  177.     *         'canonical'  See "canonical_dn()" in Net::LDAP::Util.
    178. 

  178.     *         'base64'     Use base64. (default, this differs from the Perl interface.
    179. 

  179.     *                                   The perl default is "none"!)
    180. 

  180.     *
    181. 

  181.     *       onerror => 'die' | 'warn' | NULL
    182. 

  182.     *         Specify what happens when an error is detected.
    183. 

  183.     *         'die'  Net_LDAP2_LDIF will croak with an appropriate message.
    184. 

  184.     *         'warn' Net_LDAP2_LDIF will warn (echo) with an appropriate message.
    185. 

  185.     *         NULL   Net_LDAP2_LDIF will not warn (default), use error().
    186. 

  186.     *
    187. 

  187.     *       change => 1
    188. 

  188.     *         Write entry changes to the LDIF file instead of the entries itself. I.e. write LDAP
    189. 

  189.     *         operations acting on the entries to the file instead of the entries contents.
    190. 

  190.     *         This writes the changes usually carried out by an update() to the LDIF file.
    191. 

  191.     *
    192. 

  192.     *       lowercase => 1
    193. 

  193.     *         Convert attribute names to lowercase when writing.
    194. 

  194.     *
    195. 

  195.     *       sort => 1
    196. 

  196.     *         Sort attribute names when writing entries according to the rule:
    197. 

  197.     *         objectclass first then all other attributes alphabetically sorted by attribute name
    198. 

  198.     *
    199. 

  199.     *       version => '1'
    200. 

  200.     *         Set the LDIF version to write to the resulting LDIF file.
    201. 

  201.     *         According to RFC 2849 currently the only legal value for this option is 1.
    202. 

  202.     *         When this option is set Net_LDAP2_LDIF tries to adhere more strictly to
    203. 

  203.     *         the LDIF specification in RFC2489 in a few places.
    204. 

  204.     *         The default is NULL meaning no version information is written to the LDIF file.
    205. 

  205.     *
    206. 

  206.     *       wrap => 78
    207. 

  207.     *         Number of columns where output line wrapping shall occur.
    208. 

  208.     *         Default is 78. Setting it to 40 or lower inhibits wrapping.
    209. 

  209.     *
    210. 

  210.     *       raw => REGEX
    211. 

  211.     *         Use REGEX to denote the names of attributes that are to be
    212. 

  212.     *         considered binary in search results if writing entries.
    213. 

  213.     *         Example: raw => "/(?i:^jpegPhoto|;binary)/i"
    214. 

  214.     *
    215. 

  215.     * @param string|ressource $file    Filename or filehandle
    216. 

  216.     * @param string           $mode    Mode to open filename
    217. 

  217.     * @param array            $options Options like described above
    218. 

  218.     */
    219. 

  219.     public function __construct($file, $mode = 'r', $options = array())
    220. 

  220.     {
    221. 

  221.         parent::__construct('Net_LDAP2_Error'); // default error class
    222. 

  222. 

  223.         // First, parse options
    224. 

  224.         // todo: maybe implement further checks on possible values
    225. 

  225.         foreach ($options as $option => $value) {
    226. 

  226.             if (!array_key_exists($option, $this->_options)) {
    227. 

  227.                 $this->dropError('Net_LDAP2_LDIF error: option '.$option.' not known!');
    228. 

  228.                 return;
    229. 

  229.             } else {
    230. 

  230.                 $this->_options[$option] = strtolower($value);
    231. 

  231.             }
    232. 

  232.         }
    233. 

  233. 

  234.         // setup LDIF class
    235. 

  235.         $this->version($this->_options['version']);
    236. 

  236. 

  237.         // setup file mode
    238. 

  238.         if (!preg_match('/^[rwa]\+?$/', $mode)) {
    239. 

  239.             $this->dropError('Net_LDAP2_LDIF error: file mode '.$mode.' not supported!');
    240. 

  240.         } else {
    241. 

  241.             $this->_mode = $mode;
    242. 

  242. 

  243.             // setup filehandle
    244. 

  244.             if (is_resource($file)) {
    245. 

  245.                 // TODO: checks on mode possible?
    246. 

  246.                 $this->_FH =& $file;
    247. 

  247.             } else {
    248. 

  248.                 $imode = substr($this->_mode, 0, 1);
    249. 

  249.                 if ($imode == 'r') {
    250. 

  250.                     if (!file_exists($file)) {
    251. 

  251.                         $this->dropError('Unable to open '.$file.' for read: file not found');
    252. 

  252.                         $this->_mode = false;
    253. 

  253.                     }
    254. 

  254.                     if (!is_readable($file)) {
    255. 

  255.                         $this->dropError('Unable to open '.$file.' for read: permission denied');
    256. 

  256.                         $this->_mode = false;
    257. 

  257.                     }
    258. 

  258.                 }
    259. 

  259. 

  260.                 if (($imode == 'w' || $imode == 'a')) {
    261. 

  261.                     if (file_exists($file)) {
    262. 

  262.                         if (!is_writable($file)) {
    263. 

  263.                             $this->dropError('Unable to open '.$file.' for write: permission denied');
    264. 

  264.                             $this->_mode = false;
    265. 

  265.                         }
    266. 

  266.                     } else {
    267. 

  267.                         if (!@touch($file)) {
    268. 

  268.                             $this->dropError('Unable to create '.$file.' for write: permission denied');
    269. 

  269.                             $this->_mode = false;
    270. 

  270.                         }
    271. 

  271.                     }
    272. 

  272.                 }
    273. 

  273. 

  274.                 if ($this->_mode) {
    275. 

  275.                     $this->_FH = @fopen($file, $this->_mode);
    276. 

  276.                     if (false === $this->_FH) {
    277. 

  277.                         // Fallback; should never be reached if tests above are good enough!
    278. 

  278.                         $this->dropError('Net_LDAP2_LDIF error: Could not open file '.$file);
    279. 

  279.                     } else {
    280. 

  280.                         $this->_FH_opened = true;
    281. 

  281.                     }
    282. 

  282.                 }
    283. 

  283.             }
    284. 

  284.         }
    285. 

  285.     }
    286. 

  286. 

  287.     /**
    288. 

  288.     * Read one entry from the file and return it as a Net::LDAP::Entry object.
    289. 

  289.     *
    290. 

  290.     * @return Net_LDAP2_Entry
    291. 

  291.     */
    292. 

  292.     public function read_entry()
    293. 

  293.     {
    294. 

  294.         // read fresh lines, set them as current lines and create the entry
    295. 

  295.         $attrs = $this->next_lines(true);
    296. 

  296.         if (count($attrs) > 0) {
    297. 

  297.             $this->_lines_cur = $attrs;
    298. 

  298.         }
    299. 

  299.         return $this->current_entry();
    300. 

  300.     }
    301. 

  301. 

  302.     /**
    303. 

  303.     * Returns true when the end of the file is reached.
    304. 

  304.     *
    305. 

  305.     * @return boolean
    306. 

  306.     */
    307. 

  307.     public function eof()
    308. 

  308.     {
    309. 

  309.         return feof($this->_FH);
    310. 

  310.     }
    311. 

  311. 

  312.     /**
    313. 

  313.     * Write the entry or entries to the LDIF file.
    314. 

  314.     *
    315. 

  315.     * If you want to build an LDIF file containing several entries AND
    316. 

  316.     * you want to call write_entry() several times, you must open the filehandle
    317. 

  317.     * in append mode ("a"), otherwise you will always get the last entry only.
    318. 

  318.     *
    319. 

  319.     * @param Net_LDAP2_Entry|array $entries Entry or array of entries
    320. 

  320.     *
    321. 

  321.     * @return void
    322. 

  322.     * @todo implement operations on whole entries (adding a whole entry)
    323. 

  323.     */
    324. 

  324.     public function write_entry($entries)
    325. 

  325.     {
    326. 

  326.         if (!is_array($entries)) {
    327. 

  327.             $entries = array($entries);
    328. 

  328.         }
    329. 

  329. 

  330.         foreach ($entries as $entry) {
    331. 

  331.             $this->_entrynum++;
    332. 

  332.             if (!$entry instanceof Net_LDAP2_Entry) {
    333. 

  333.                 $this->dropError('Net_LDAP2_LDIF error: entry '.$this->_entrynum.' is not an Net_LDAP2_Entry object');
    334. 

  334.             } else {
    335. 

  335.                 if ($this->_options['change']) {
    336. 

  336.                     // LDIF change mode
    337. 

  337.                     // fetch change information from entry
    338. 

  338.                     $entry_attrs_changes = $entry->getChanges();
    339. 

  339.                     $num_of_changes      = count($entry_attrs_changes['add'])
    340. 

  340.                                            + count($entry_attrs_changes['replace'])
    341. 

  341.                                            + count($entry_attrs_changes['delete']);
    342. 

  342. 

  343. 

  344.                     $is_changed = ($num_of_changes > 0 || $entry->willBeDeleted() || $entry->willBeMoved());
    345. 

  345. 

  346.                     // write version if not done yet
    347. 

  347.                     // also write DN of entry
    348. 

  348.                     if ($is_changed) {
    349. 

  349.                         if (!$this->_version_written) {
    350. 

  350.                             $this->write_version();
    351. 

  351.                         }
    352. 

  352.                         $this->writeDN($entry->currentDN());
    353. 

  353.                     }
    354. 

  354. 

  355.                     // process changes
    356. 

  356.                     // TODO: consider DN add!
    357. 

  357.                     if ($entry->willBeDeleted()) {
    358. 

  358.                         $this->writeLine("changetype: delete".PHP_EOL);
    359. 

  359.                     } elseif ($entry->willBeMoved()) {
    360. 

  360.                         $this->writeLine("changetype: modrdn".PHP_EOL);
    361. 

  361.                         $olddn     = Net_LDAP2_Util::ldap_explode_dn($entry->currentDN(), array('casefold' => 'none')); // maybe gives a bug if using multivalued RDNs
    362. 

  362.                         $oldrdn    = array_shift($olddn);
    363. 

  363.                         $oldparent = implode(',', $olddn);
    364. 

  364.                         $newdn     = Net_LDAP2_Util::ldap_explode_dn($entry->dn(), array('casefold' => 'none')); // maybe gives a bug if using multivalued RDNs
    365. 

  365.                         $rdn       = array_shift($newdn);
    366. 

  366.                         $parent    = implode(',', $newdn);
    367. 

  367.                         $this->writeLine("newrdn: ".$rdn.PHP_EOL);
    368. 

  368.                         $this->writeLine("deleteoldrdn: 1".PHP_EOL);
    369. 

  369.                         if ($parent !== $oldparent) {
    370. 

  370.                             $this->writeLine("newsuperior: ".$parent.PHP_EOL);
    371. 

  371.                         }
    372. 

  372.                         // TODO: What if the entry has attribute changes as well?
    373. 

  373.                         //       I think we should check for that and make a dummy
    374. 

  374.                         //       entry with the changes that is written to the LDIF file
    375. 

  375.                     } elseif ($num_of_changes > 0) {
    376. 

  376.                         // write attribute change data
    377. 

  377.                         $this->writeLine("changetype: modify".PHP_EOL);
    378. 

  378.                         foreach ($entry_attrs_changes as $changetype => $entry_attrs) {
    379. 

  379.                             foreach ($entry_attrs as $attr_name => $attr_values) {
    380. 

  380.                                 $this->writeLine("$changetype: $attr_name".PHP_EOL);
    381. 

  381.                                 if ($attr_values !== null) $this->writeAttribute($attr_name, $attr_values, $changetype);
    382. 

  382.                                 $this->writeLine("-".PHP_EOL);
    383. 

  383.                             }
    384. 

  384.                         }
    385. 

  385.                     }
    386. 

  386. 

  387.                     // finish this entrys data if we had changes
    388. 

  388.                     if ($is_changed) {
    389. 

  389.                         $this->finishEntry();
    390. 

  390.                     }
    391. 

  391.                 } else {
    392. 

  392.                     // LDIF-content mode
    393. 

  393.                     // fetch attributes for further processing
    394. 

  394.                     $entry_attrs = $entry->getValues();
    395. 

  395. 

  396.                     // sort and put objectclass-attrs to first position
    397. 

  397.                     if ($this->_options['sort']) {
    398. 

  398.                         ksort($entry_attrs);
    399. 

  399.                         if (array_key_exists('objectclass', $entry_attrs)) {
    400. 

  400.                             $oc = $entry_attrs['objectclass'];
    401. 

  401.                             unset($entry_attrs['objectclass']);
    402. 

  402.                             $entry_attrs = array_merge(array('objectclass' => $oc), $entry_attrs);
    403. 

  403.                         }
    404. 

  404.                     }
    405. 

  405. 

  406.                     // write data
    407. 

  407.                     if (!$this->_version_written) {
    408. 

  408.                         $this->write_version();
    409. 

  409.                     }
    410. 

  410.                     $this->writeDN($entry->dn());
    411. 

  411.                     foreach ($entry_attrs as $attr_name => $attr_values) {
    412. 

  412.                         $this->writeAttribute($attr_name, $attr_values);
    413. 

  413.                     }
    414. 

  414.                     $this->finishEntry();
    415. 

  415.                 }
    416. 

  416.             }
    417. 

  417.         }
    418. 

  418.     }
    419. 

  419. 

  420.     /**
    421. 

  421.     * Write version to LDIF
    422. 

  422.     *
    423. 

  423.     * If the object's version is defined, this method allows to explicitely write the version before an entry is written.
    424. 

  424.     * If not called explicitely, it gets called automatically when writing the first entry.
    425. 

  425.     *
    426. 

  426.     * @return void
    427. 

  427.     */
    428. 

  428.     public function write_version()
    429. 

  429.     {
    430. 

  430.         $this->_version_written = true;
    431. 

  431.         if (!is_null($this->version())) {
    432. 

  432.             return $this->writeLine('version: '.$this->version().PHP_EOL, 'Net_LDAP2_LDIF error: unable to write version');
    433. 

  433.         }
    434. 

  434.     }
    435. 

  435. 

  436.     /**
    437. 

  437.     * Get or set LDIF version
    438. 

  438.     *
    439. 

  439.     * If called without arguments it returns the version of the LDIF file or NULL if no version has been set.
    440. 

  440.     * If called with an argument it sets the LDIF version to VERSION.
    441. 

  441.     * According to RFC 2849 currently the only legal value for VERSION is 1.
    442. 

  442.     *
    443. 

  443.     * @param int $version (optional) LDIF version to set
    444. 

  444.     *
    445. 

  445.     * @return int
    446. 

  446.     */
    447. 

  447.     public function version($version = null)
    448. 

  448.     {
    449. 

  449.         if ($version !== null) {
    450. 

  450.             if ($version != 1) {
    451. 

  451.                 $this->dropError('Net_LDAP2_LDIF error: illegal LDIF version set');
    452. 

  452.             } else {
    453. 

  453.                 $this->_options['version'] = $version;
    454. 

  454.             }
    455. 

  455.         }
    456. 

  456.         return $this->_options['version'];
    457. 

  457.     }
    458. 

  458. 

  459.     /**
    460. 

  460.     * Returns the file handle the Net_LDAP2_LDIF object reads from or writes to.
    461. 

  461.     *
    462. 

  462.     * You can, for example, use this to fetch the content of the LDIF file yourself
    463. 

  463.     *
    464. 

  464.     * @return null|resource
    465. 

  465.     */
    466. 

  466.     public function &handle()
    467. 

  467.     {
    468. 

  468.         if (!is_resource($this->_FH)) {
    469. 

  469.             $this->dropError('Net_LDAP2_LDIF error: invalid file resource');
    470. 

  470.             $null = null;
    471. 

  471.             return $null;
    472. 

  472.         } else {
    473. 

  473.             return $this->_FH;
    474. 

  474.         }
    475. 

  475.     }
    476. 

  476. 

  477.     /**
    478. 

  478.     * Clean up
    479. 

  479.     *
    480. 

  480.     * This method signals that the LDIF object is no longer needed.
    481. 

  481.     * You can use this to free up some memory and close the file handle.
    482. 

  482.     * The file handle is only closed, if it was opened from Net_LDAP2_LDIF.
    483. 

  483.     *
    484. 

  484.     * @return void
    485. 

  485.     */
    486. 

  486.     public function done()
    487. 

  487.     {
    488. 

  488.         // close FH if we opened it
    489. 

  489.         if ($this->_FH_opened) {
    490. 

  490.             fclose($this->handle());
    491. 

  491.         }
    492. 

  492. 

  493.         // free variables
    494. 

  494.         foreach (get_object_vars($this) as $name => $value) {
    495. 

  495.             unset($this->$name);
    496. 

  496.         }
    497. 

  497.     }
    498. 

  498. 

  499.     /**
    500. 

  500.     * Returns last error message if error was found.
    501. 

  501.     *
    502. 

  502.     * Example:
    503. 

  503.     * <code>
    504. 

  504.     *  $ldif->someAction();
    505. 

  505.     *  if ($ldif->error()) {
    506. 

  506.     *     echo "Error: ".$ldif->error()." at input line: ".$ldif->error_lines();
    507. 

  507.     *  }
    508. 

  508.     * </code>
    509. 

  509.     *
    510. 

  510.     * @param boolean $as_string If set to true, only the message is returned
    511. 

  511.     *
    512. 

  512.     * @return false|Net_LDAP2_Error
    513. 

  513.     */
    514. 

  514.     public function error($as_string = false)
    515. 

  515.     {
    516. 

  516.         if (Net_LDAP2::isError($this->_error['error'])) {
    517. 

  517.             return ($as_string)? $this->_error['error']->getMessage() : $this->_error['error'];
    518. 

  518.         } else {
    519. 

  519.             return false;
    520. 

  520.         }
    521. 

  521.     }
    522. 

  522. 

  523.     /**
    524. 

  524.     * Returns lines that resulted in error.
    525. 

  525.     *
    526. 

  526.     * Perl returns an array of faulty lines in list context,
    527. 

  527.     * but we always just return an int because of PHPs language.
    528. 

  528.     *
    529. 

  529.     * @return int
    530. 

  530.     */
    531. 

  531.     public function error_lines()
    532. 

  532.     {
    533. 

  533.         return $this->_error['line'];
    534. 

  534.     }
    535. 

  535. 

  536.     /**
    537. 

  537.     * Returns the current Net::LDAP::Entry object.
    538. 

  538.     *
    539. 

  539.     * @return Net_LDAP2_Entry|false
    540. 

  540.     */
    541. 

  541.     public function current_entry()
    542. 

  542.     {
    543. 

  543.         return $this->parseLines($this->current_lines());
    544. 

  544.     }
    545. 

  545. 

  546.     /**
    547. 

  547.     * Parse LDIF lines of one entry into an Net_LDAP2_Entry object
    548. 

  548.     *
    549. 

  549.     * @param array $lines LDIF lines for one entry
    550. 

  550.     *
    551. 

  551.     * @return Net_LDAP2_Entry|false Net_LDAP2_Entry object for those lines
    552. 

  552.     * @todo what about file inclusions and urls? "jpegphoto:< file:///usr/local/directory/photos/fiona.jpg"
    553. 

  553.     */
    554. 

  554.     public function parseLines($lines)
    555. 

  555.     {
    556. 

  556.         // parse lines into an array of attributes and build the entry
    557. 

  557.         $attributes = array();
    558. 

  558.         $dn = false;
    559. 

  559.         foreach ($lines as $line) {
    560. 

  560.             if (preg_match('/^(\w+(;binary)?)(:|::|:<)\s(.+)$/', $line, $matches)) {
    561. 

  561.                 $attr  =& $matches[1] . $matches[2];
    562. 

  562.                 $delim =& $matches[3];
    563. 

  563.                 $data  =& $matches[4];
    564. 

  564. 

  565.                 if ($delim == ':') {
    566. 

  566.                     // normal data
    567. 

  567.                     $attributes[$attr][] = $data;
    568. 

  568.                 } elseif ($delim == '::') {
    569. 

  569.                     // base64 data
    570. 

  570.                     $attributes[$attr][] = base64_decode($data);
    571. 

  571.                 } elseif ($delim == ':<') {
    572. 

  572.                     // file inclusion
    573. 

  573.                     // TODO: Is this the job of the LDAP-client or the server?
    574. 

  574.                     $this->dropError('File inclusions are currently not supported');
    575. 

  575.                     //$attributes[$attr][] = ...;
    576. 

  576.                 } else {
    577. 

  577.                     // since the pattern above, the delimeter cannot be something else.
    578. 

  578.                     $this->dropError('Net_LDAP2_LDIF parsing error: invalid syntax at parsing entry line: '.$line);
    579. 

  579.                     continue;
    580. 

  580.                 }
    581. 

  581. 

  582.                 if (strtolower($attr) == 'dn') {
    583. 

  583.                     // DN line detected
    584. 

  584.                     $dn = $attributes[$attr][0];  // save possibly decoded DN
    585. 

  585.                     unset($attributes[$attr]);    // remove wrongly added "dn: " attribute
    586. 

  586.                 }
    587. 

  587.             } else {
    588. 

  588.                 // line not in "attr: value" format -> ignore
    589. 

  589.                 // maybe we should rise an error here, but this should be covered by
    590. 

  590.                 // next_lines() already. A problem arises, if users try to feed data of
    591. 

  591.                 // several entries to this method - the resulting entry will
    592. 

  592.                 // get wrong attributes. However, this is already mentioned in the
    593. 

  593.                 // methods documentation above.
    594. 

  594.             }
    595. 

  595.         }
    596. 

  596. 

  597.         if (false === $dn) {
    598. 

  598.             $this->dropError('Net_LDAP2_LDIF parsing error: unable to detect DN for entry');
    599. 

  599.             return false;
    600. 

  600.         } else {
    601. 

  601.             $newentry = Net_LDAP2_Entry::createFresh($dn, $attributes);
    602. 

  602.             return $newentry;
    603. 

  603.         }
    604. 

  604.     }
    605. 

  605. 

  606.     /**
    607. 

  607.     * Returns the lines that generated the current Net::LDAP::Entry object.
    608. 

  608.     *
    609. 

  609.     * Note that this returns an empty array if no lines have been read so far.
    610. 

  610.     *
    611. 

  611.     * @return array Array of lines
    612. 

  612.     */
    613. 

  613.     public function current_lines()
    614. 

  614.     {
    615. 

  615.         return $this->_lines_cur;
    616. 

  616.     }
    617. 

  617. 

  618.     /**
    619. 

  619.     * Returns the lines that will generate the next Net::LDAP::Entry object.
    620. 

  620.     *
    621. 

  621.     * If you set $force to TRUE then you can iterate over the lines that build
    622. 

  622.     * up entries manually. Otherwise, iterating is done using {@link read_entry()}.
    623. 

  623.     * Force will move the file pointer forward, thus returning the next entries lines.
    624. 

  624.     *
    625. 

  625.     * Wrapped lines will be unwrapped. Comments are stripped.
    626. 

  626.     *
    627. 

  627.     * @param boolean $force Set this to true if you want to iterate over the lines manually
    628. 

  628.     *
    629. 

  629.     * @return array
    630. 

  630.     */
    631. 

  631.     public function next_lines($force = false)
    632. 

  632.     {
    633. 

  633.         // if we already have those lines, just return them, otherwise read
    634. 

  634.         if (count($this->_lines_next) == 0 || $force) {
    635. 

  635.             $this->_lines_next = array(); // empty in case something was left (if used $force)
    636. 

  636.             $entry_done        = false;
    637. 

  637.             $fh                = &$this->handle();
    638. 

  638.             $commentmode       = false; // if we are in an comment, for wrapping purposes
    639. 

  639.             $datalines_read    = 0;     // how many lines with data we have read
    640. 

  640. 

  641.             while (!$entry_done && !$this->eof()) {
    642. 

  642.                 $this->_input_line++;
    643. 

  643.                 // Read line. Remove line endings, we want only data;
    644. 

  644.                 // this is okay since ending spaces should be encoded
    645. 

  645.                 $data = rtrim(fgets($fh));
    646. 

  646.                 if ($data === false) {
    647. 

  647.                     // error only, if EOF not reached after fgets() call
    648. 

  648.                     if (!$this->eof()) {
    649. 

  649.                         $this->dropError('Net_LDAP2_LDIF error: error reading from file at input line '.$this->_input_line, $this->_input_line);
    650. 

  650.                     }
    651. 

  651.                     break;
    652. 

  652.                 } else {
    653. 

  653.                     if (count($this->_lines_next) > 0 && preg_match('/^$/', $data)) {
    654. 

  654.                         // Entry is finished if we have an empty line after we had data
    655. 

  655.                         $entry_done = true;
    656. 

  656. 

  657.                         // Look ahead if the next EOF is nearby. Comments and empty
    658. 

  658.                         // lines at the file end may cause problems otherwise
    659. 

  659.                         $current_pos = ftell($fh);
    660. 

  660.                         $data        = fgets($fh);
    661. 

  661.                         while (!feof($fh)) {
    662. 

  662.                             if (preg_match('/^\s*$/', $data) || preg_match('/^#/', $data)) {
    663. 

  663.                                 // only empty lines or comments, continue to seek
    664. 

  664.                                 // TODO: Known bug: Wrappings for comments are okay but are treaten as
    665. 

  665.                                 //       error, since we do not honor comment mode here.
    666. 

  666.                                 //       This should be a very theoretically case, however
    667. 

  667.                                 //       i am willing to fix this if really necessary.
    668. 

  668.                                 $this->_input_line++;
    669. 

  669.                                 $current_pos = ftell($fh);
    670. 

  670.                                 $data        = fgets($fh);
    671. 

  671.                             } else {
    672. 

  672.                                 // Data found if non emtpy line and not a comment!!
    673. 

  673.                                 // Rewind to position prior last read and stop lookahead
    674. 

  674.                                 fseek($fh, $current_pos);
    675. 

  675.                                 break;
    676. 

  676.                             }
    677. 

  677.                         }
    678. 

  678.                         // now we have either the file pointer at the beginning of
    679. 

  679.                         // a new data position or at the end of file causing feof() to return true
    680. 

  680. 

  681.                     } else {
    682. 

  682.                         // build lines
    683. 

  683.                         if (preg_match('/^version:\s(.+)$/', $data, $match)) {
    684. 

  684.                             // version statement, set version
    685. 

  685.                             $this->version($match[1]);
    686. 

  686.                         } elseif (preg_match('/^\w+(;binary)?::?\s.+$/', $data)) {
    687. 

  687.                             // normal attribute: add line
    688. 

  688.                             $commentmode         = false;
    689. 

  689.                             $this->_lines_next[] = trim($data);
    690. 

  690.                             $datalines_read++;
    691. 

  691.                         } elseif (preg_match('/^\s(.+)$/', $data, $matches)) {
    692. 

  692.                             // wrapped data: unwrap if not in comment mode
    693. 

  693.                             // note that the \s above is some more liberal than
    694. 

  694.                             // the RFC requests as it also matches tabs etc.
    695. 

  695.                             if (!$commentmode) {
    696. 

  696.                                 if ($datalines_read == 0) {
    697. 

  697.                                     // first line of entry: wrapped data is illegal
    698. 

  698.                                     $this->dropError('Net_LDAP2_LDIF error: illegal wrapping at input line '.$this->_input_line, $this->_input_line);
    699. 

  699.                                 } else {
    700. 

  700.                                     $last                = array_pop($this->_lines_next);
    701. 

  701.                                     $last                = $last.$matches[1];
    702. 

  702.                                     $this->_lines_next[] = $last;
    703. 

  703.                                     $datalines_read++;
    704. 

  704.                                 }
    705. 

  705.                             }
    706. 

  706.                         } elseif (preg_match('/^#/', $data)) {
    707. 

  707.                             // LDIF comments
    708. 

  708.                             $commentmode = true;
    709. 

  709.                         } elseif (preg_match('/^\s*$/', $data)) {
    710. 

  710.                             // empty line but we had no data for this
    711. 

  711.                             // entry, so just ignore this line
    712. 

  712.                             $commentmode = false;
    713. 

  713.                         } else {
    714. 

  714.                             $this->dropError('Net_LDAP2_LDIF error: invalid syntax at input line '.$this->_input_line, $this->_input_line);
    715. 

  715.                             continue;
    716. 

  716.                         }
    717. 

  717. 

  718.                     }
    719. 

  719.                 }
    720. 

  720.             }
    721. 

  721.         }
    722. 

  722.         return $this->_lines_next;
    723. 

  723.     }
    724. 

  724. 

  725.     /**
    726. 

  726.     * Convert an attribute and value to LDIF string representation
    727. 

  727.     *
    728. 

  728.     * It honors correct encoding of values according to RFC 2849.
    729. 

  729.     * Line wrapping will occur at the configured maximum but only if
    730. 

  730.     * the value is greater than 40 chars.
    731. 

  731.     *
    732. 

  732.     * @param string $attr_name  Name of the attribute
    733. 

  733.     * @param string $attr_value Value of the attribute
    734. 

  734.     *
    735. 

  735.     * @access protected
    736. 

  736.     * @return string LDIF string for that attribute and value
    737. 

  737.     */
    738. 

  738.     protected function convertAttribute($attr_name, $attr_value)
    739. 

  739.     {
    740. 

  740.         // Handle empty attribute or process
    741. 

  741.         if (strlen($attr_value) == 0) {
    742. 

  742.             $attr_value = " ";
    743. 

  743.         } else {
    744. 

  744.             $base64 = false;
    745. 

  745.             // ASCII-chars that are NOT safe for the
    746. 

  746.             // start and for being inside the value.
    747. 

  747.             // These are the int values of those chars.
    748. 

  748.             $unsafe_init = array(0, 10, 13, 32, 58, 60);
    749. 

  749.             $unsafe      = array(0, 10, 13);
    750. 

  750. 

  751.             // Test for illegal init char
    752. 

  752.             $init_ord = ord(substr($attr_value, 0, 1));
    753. 

  753.             if ($init_ord > 127 || in_array($init_ord, $unsafe_init)) {
    754. 

  754.                 $base64 = true;
    755. 

  755.             }
    756. 

  756. 

  757.             // Test for illegal content char
    758. 

  758.             for ($i = 0; $i < strlen($attr_value); $i++) {
    759. 

  759.                 $char_ord = ord(substr($attr_value, $i, 1));
    760. 

  760.                 if ($char_ord > 127 || in_array($char_ord, $unsafe)) {
    761. 

  761.                     $base64 = true;
    762. 

  762.                 }
    763. 

  763.             }
    764. 

  764. 

  765.             // Test for ending space
    766. 

  766.             if (substr($attr_value, -1) == ' ') {
    767. 

  767.                 $base64 = true;
    768. 

  768.             }
    769. 

  769. 

  770.             // If converting is needed, do it
    771. 

  771.             // Either we have some special chars or a matching "raw" regex
    772. 

  772.             if ($base64 || ($this->_options['raw'] && preg_match($this->_options['raw'], $attr_name))) {
    773. 

  773.                 $attr_name .= ':';
    774. 

  774.                 $attr_value = base64_encode($attr_value);
    775. 

  775.             }
    776. 

  776. 

  777.             // Lowercase attr names if requested
    778. 

  778.             if ($this->_options['lowercase']) $attr_name = strtolower($attr_name);
    779. 

  779. 

  780.             // Handle line wrapping
    781. 

  781.             if ($this->_options['wrap'] > 40 && strlen($attr_value) > $this->_options['wrap']) {
    782. 

  782.                 $attr_value = wordwrap($attr_value, $this->_options['wrap'], PHP_EOL." ", true);
    783. 

  783.             }
    784. 

  784.         }
    785. 

  785. 

  786.         return $attr_name.': '.$attr_value;
    787. 

  787.     }
    788. 

  788. 

  789.     /**
    790. 

  790.     * Convert an entries DN to LDIF string representation
    791. 

  791.     *
    792. 

  792.     * It honors correct encoding of values according to RFC 2849.
    793. 

  793.     *
    794. 

  794.     * @param string $dn UTF8-Encoded DN
    795. 

  795.     *
    796. 

  796.     * @access protected
    797. 

  797.     * @return string LDIF string for that DN
    798. 

  798.     * @todo I am not sure, if the UTF8 stuff is correctly handled right now
    799. 

  799.     */
    800. 

  800.     protected function convertDN($dn)
    801. 

  801.     {
    802. 

  802.         $base64 = false;
    803. 

  803.         // ASCII-chars that are NOT safe for the
    804. 

  804.         // start and for being inside the dn.
    805. 

  805.         // These are the int values of those chars.
    806. 

  806.         $unsafe_init = array(0, 10, 13, 32, 58, 60);
    807. 

  807.         $unsafe      = array(0, 10, 13);
    808. 

  808. 

  809.         // Test for illegal init char
    810. 

  810.         $init_ord = ord(substr($dn, 0, 1));
    811. 

  811.         if ($init_ord >= 127 || in_array($init_ord, $unsafe_init)) {
    812. 

  812.             $base64 = true;
    813. 

  813.         }
    814. 

  814. 

  815.         // Test for illegal content char
    816. 

  816.         for ($i = 0; $i < strlen($dn); $i++) {
    817. 

  817.             $char = substr($dn, $i, 1);
    818. 

  818.             if (ord($char) >= 127 || in_array($init_ord, $unsafe)) {
    819. 

  819.                 $base64 = true;
    820. 

  820.             }
    821. 

  821.         }
    822. 

  822. 

  823.         // Test for ending space
    824. 

  824.         if (substr($dn, -1) == ' ') {
    825. 

  825.             $base64 = true;
    826. 

  826.         }
    827. 

  827. 

  828.         // if converting is needed, do it
    829. 

  829.         return ($base64)? 'dn:: '.base64_encode($dn) : 'dn: '.$dn;
    830. 

  830.     }
    831. 

  831. 

  832.     /**
    833. 

  833.     * Writes an attribute to the filehandle
    834. 

  834.     *
    835. 

  835.     * @param string       $attr_name   Name of the attribute
    836. 

  836.     * @param string|array $attr_values Single attribute value or array with attribute values
    837. 

  837.     *
    838. 

  838.     * @access protected
    839. 

  839.     * @return void
    840. 

  840.     */
    841. 

  841.     protected function writeAttribute($attr_name, $attr_values)
    842. 

  842.     {
    843. 

  843.         // write out attribute content
    844. 

  844.         if (!is_array($attr_values)) {
    845. 

  845.             $attr_values = array($attr_values);
    846. 

  846.         }
    847. 

  847.         foreach ($attr_values as $attr_val) {
    848. 

  848.             $line = $this->convertAttribute($attr_name, $attr_val).PHP_EOL;
    849. 

  849.             $this->writeLine($line, 'Net_LDAP2_LDIF error: unable to write attribute '.$attr_name.' of entry '.$this->_entrynum);
    850. 

  850.         }
    851. 

  851.     }
    852. 

  852. 

  853.     /**
    854. 

  854.     * Writes a DN to the filehandle
    855. 

  855.     *
    856. 

  856.     * @param string $dn DN to write
    857. 

  857.     *
    858. 

  858.     * @access protected
    859. 

  859.     * @return void
    860. 

  860.     */
    861. 

  861.     protected function writeDN($dn)
    862. 

  862.     {
    863. 

  863.         // prepare DN
    864. 

  864.         if ($this->_options['encode'] == 'base64') {
    865. 

  865.             $dn = $this->convertDN($dn).PHP_EOL;
    866. 

  866.         } elseif ($this->_options['encode'] == 'canonical') {
    867. 

  867.             $dn = Net_LDAP2_Util::canonical_dn($dn, array('casefold' => 'none')).PHP_EOL;
    868. 

  868.         } else {
    869. 

  869.             $dn = $dn.PHP_EOL;
    870. 

  870.         }
    871. 

  871.         $this->writeLine($dn, 'Net_LDAP2_LDIF error: unable to write DN of entry '.$this->_entrynum);
    872. 

  872.     }
    873. 

  873. 

  874.     /**
    875. 

  875.     * Finishes an LDIF entry
    876. 

  876.     *
    877. 

  877.     * @access protected
    878. 

  878.     * @return void
    879. 

  879.     */
    880. 

  880.     protected function finishEntry()
    881. 

  881.     {
    882. 

  882.         $this->writeLine(PHP_EOL, 'Net_LDAP2_LDIF error: unable to close entry '.$this->_entrynum);
    883. 

  883.     }
    884. 

  884. 

  885.     /**
    886. 

  886.     * Just write an arbitary line to the filehandle
    887. 

  887.     *
    888. 

  888.     * @param string $line  Content to write
    889. 

  889.     * @param string $error If error occurs, drop this message
    890. 

  890.     *
    891. 

  891.     * @access protected
    892. 

  892.     * @return true|false
    893. 

  893.     */
    894. 

  894.     protected function writeLine($line, $error = 'Net_LDAP2_LDIF error: unable to write to filehandle')
    895. 

  895.     {
    896. 

  896.         if (is_resource($this->handle()) && fwrite($this->handle(), $line, strlen($line)) === false) {
    897. 

  897.             $this->dropError($error);
    898. 

  898.             return false;
    899. 

  899.         } else {
    900. 

  900.             return true;
    901. 

  901.         }
    902. 

  902.     }
    903. 

  903. 

  904.     /**
    905. 

  905.     * Optionally raises an error and pushes the error on the error cache
    906. 

  906.     *
    907. 

  907.     * @param string $msg  Errortext
    908. 

  908.     * @param int    $line Line in the LDIF that caused the error
    909. 

  909.     *
    910. 

  910.     * @access protected
    911. 

  911.     * @return void
    912. 

  912.     */
    913. 

  913.     protected function dropError($msg, $line = null)
    914. 

  914.     {
    915. 

  915.         $this->_error['error'] = new Net_LDAP2_Error($msg);
    916. 

  916.         if ($line !== null) $this->_error['line'] = $line;
    917. 

  917. 

  918.         if ($this->_options['onerror'] == 'die') {
    919. 

  919.             die($msg.PHP_EOL);
    920. 

  920.         } elseif ($this->_options['onerror'] == 'warn') {
    921. 

  921.             echo $msg.PHP_EOL;
    922. 

  922.         }
    923. 

  923.     }
    924. 

  924. }
    925. 

  925. ?>
    926. 

  926.