Ticket #551: LDAP_Auth.php

<?php defined('SYSPATH') or die('No direct script access.');

class LDAP_Auth extends Auth_Core {

    protected $ldap_version = 3;
    protected $ldap_host    = 'localhost';
    protected $ldap_base    = '';

    public function protocol($version)
    {
        if ($version == 2 OR $version == 3)
            $this->ldap_version = $version;
    }

    public function host($host)
    {
        $this->ldap_host = $host;
    }

    public function base($base)
    {
        $this->ldap_base = $base;
    }

    public function login($user, $password, $remember = FALSE)
    {
        if (empty($password))
            return FALSE;

        $user = 'cn='.$user.','.$this->ldap_base;


        $ds = ldap_connect($this->ldap_host);
        ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, $this->ldap_version);
        $r  = @ldap_bind($ds, $user, $password);
        $password = NULL;

        // If the user has the "login" role and the passwords match, perform a login
        if ($r)
        {
/* TODO
            if ($remember == TRUE)
            {
                // Create a new autologin token
                $token = new User_Token_Model;

                // Set token data
                $token->user_id = $user->id;
                $token->expires = time() + $this->config['lifetime'];
                $token->save();

                // Set the autologin cookie
                cookie::set('autologin', $token->token, $this->config['lifetime']);
            }
*/

            // Finish the login
            $this->complete_login($user);

            return TRUE;
        }

        return FALSE;
    }

        protected function complete_login($user)
        {
                // Store session data
                $this->session->set(array
                (
                        'username' => $user
                ));
        }

} // End Auth