phorge-phorge/src/applications/people/controller/PhabricatorPeopleLdapController.php

<?php

/*
 * Copyright 2012 Facebook, Inc.
 *
 * Licensed under the Apache License, Version 2.0 (the "License");
 * you may not use this file except in compliance with the License.
 * You may obtain a copy of the License at
 *
 *   http://www.apache.org/licenses/LICENSE-2.0
 *
 * Unless required by applicable law or agreed to in writing, software
 * distributed under the License is distributed on an "AS IS" BASIS,
 * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
 * See the License for the specific language governing permissions and
 * limitations under the License.
 */

final class PhabricatorPeopleLdapController
  extends PhabricatorPeopleController {

  public function shouldRequireAdmin() {
    return true;
  }

  private $view;

  public function processRequest() {

    $request = $this->getRequest();
    $admin = $request->getUser();

    $content = array();

    $form = id(new AphrontFormView())
      ->setAction($request->getRequestURI()
        ->alter('search', 'true')->alter('import', null))
      ->setUser($admin)
      ->appendChild(
        id(new AphrontFormTextControl())
        ->setLabel('LDAP username')
        ->setName('username'))
      ->appendChild(
        id(new AphrontFormPasswordControl())
        ->setLabel('Password')
        ->setName('password'))
      ->appendChild(
        id(new AphrontFormTextControl())
        ->setLabel('LDAP query')
        ->setCaption('A filter such as (objectClass=*)')
        ->setName('query'))
      ->appendChild(
        id(new AphrontFormSubmitControl())
        ->setValue('Search'));

    $panel = new AphrontPanelView();
    $panel->setHeader('Import LDAP Users');
    $panel->appendChild($form);


    if ($request->getStr('import')) {
      $content[] = $this->processImportRequest($request);
    }

    $content[] = $panel;

    if ($request->getStr('search')) {
      $content[] = $this->processSearchRequest($request);
    }

    return $this->buildStandardPageResponse(
      $content,
      array(
        'title' => 'Import Ldap Users',
      ));
  }

  private function processImportRequest($request) {
    $admin = $request->getUser();
    $usernames = $request->getArr('usernames');
    $emails = $request->getArr('email');
    $names = $request->getArr('name');

    $panel = new AphrontErrorView();
    $panel->setSeverity(AphrontErrorView::SEVERITY_NOTICE);
    $panel->setTitle("Import Successful");
    $errors = array("Successfully imported users from LDAP");


    foreach ($usernames as $username) {
      $user = new PhabricatorUser();
      $user->setUsername($username);
      $user->setRealname($names[$username]);

      $email_obj = id(new PhabricatorUserEmail())
        ->setAddress($emails[$username])
        ->setIsVerified(1);
      try {
        id(new PhabricatorUserEditor())
          ->setActor($admin)
          ->createNewUser($user, $email_obj);

        $ldap_info = new PhabricatorUserLDAPInfo();
        $ldap_info->setLDAPUsername($username);
        $ldap_info->setUserID($user->getID());
        $ldap_info->save();
        $errors[] = 'Successfully added ' . $username;
      } catch (Exception $ex) {
        $errors[] = 'Failed to add ' . $username . ' ' . $ex->getMessage();
      }
    }

    $panel->setErrors($errors);
    return $panel;

  }

  private function processSearchRequest($request) {
    $panel = new AphrontPanelView();

    $admin = $request->getUser();

    $username = $request->getStr('username');
    $password = $request->getStr('password');
    $search   = $request->getStr('query');

    try {
      $ldap_provider = new PhabricatorLDAPProvider();
      $envelope = new PhutilOpaqueEnvelope($password);
      $ldap_provider->auth($username, $envelope);
      $results = $ldap_provider->search($search);
      foreach ($results as $key => $result) {
        $results[$key][] = $this->renderUserInputs($result);
      }

      $form = id(new AphrontFormView())
        ->setUser($admin);

      $table = new AphrontTableView($results);
      $table->setHeaders(
        array(
          'Username',
          'Email',
          'RealName',
          'Import?',
        ));
      $form->appendChild($table);
      $form->setAction($request->getRequestURI()
        ->alter('import', 'true')->alter('search', null))
        ->appendChild(
          id(new AphrontFormSubmitControl())
          ->setValue('Import'));


      $panel->appendChild($form);
    } catch (Exception $ex) {
      $error_view = new AphrontErrorView();
      $error_view->setTitle('LDAP Search Failed');
      $error_view->setErrors(array($ex->getMessage()));
      return $error_view;
    }
    return $panel;

  }

  private function renderUserInputs($user) {
    $username = $user[0];
    $inputs =  phutil_render_tag(
      'input',
      array(
        'type' => 'checkbox',
        'name' => 'usernames[]',
        'value' =>$username,
      ),
      '');

    $inputs .=  phutil_render_tag(
      'input',
      array(
        'type' => 'hidden',
        'name' => "email[$username]",
        'value' =>$user[1],
      ),
      '');

    $inputs .=  phutil_render_tag(
      'input',
      array(
        'type' => 'hidden',
        'name' => "name[$username]",
        'value' =>$user[2],
      ),
      '');

    return $inputs;
  }

}