* @author Marcus I. Ryan * @category Horde * @license http://www.horde.org/licenses/lgpl21 LGPL-2.1 * @package Auth * @todo Add driver for smbclient extension https://github.com/eduardok/libsmbclient-php */ /** * The Horde_Auth_Smbclient class provides an smbclient implementation of * the Horde authentication system. * * @author Jon Parise * @author Marcus I. Ryan * @category Horde * @copyright 1999-2017 Horde LLC * @license http://www.horde.org/licenses/lgpl21 LGPL-2.1 * @package Auth */ class Horde_Auth_Smbclient extends Horde_Auth_Base { /** * Constructor. * * @param array $params Parameters: *

     * 'domain' - (string) [REQUIRED] The domain name to authenticate with.
     * 'group' - Group name that the user must be a member of.
     *           DEFAULT: none
     * 'hostspec' - (string) [REQUIRED] IP, DNS Name, or NetBios name of the
     *              SMB server to authenticate with.
     * 'smbclient_path' - (string) [REQUIRED] The location of the smbclient
     *                    utility.
     *

* * @throws InvalidArgumentException */ public function __construct(array $params = array()) { foreach (array('hostspec', 'domain', 'smbclient_path') as $val) { if (empty($params[$val])) { throw new InvalidArgumentException('Missing ' . $val . ' parameter.'); } } parent::__construct($params); } /** * Find out if the given set of login credentials are valid. * * @param string $userId The userId to check. * @param array $credentials An array of login credentials. * * @throws Horde_Auth_Exception */ protected function _authenticate($userId, $credentials) { if (empty($credentials['password'])) { throw new Horde_Auth_Exception('', Horde_Auth::REASON_BADLOGIN); } /* Authenticate. */ $cmdline = implode(' ', array( $this->_params['smbclient_path'], '-L', $this->_params['hostspec'], '-W', $this->_params['domain'], '-U', $userId )); $sc = popen($cmdline, 'w'); if ($sc === false) { throw new Horde_Auth_Exception('Unable to execute smbclient.'); } fwrite($sc, $credentials['password']); $rc = pclose($sc); if (intval($rc & 0xff) != 0) { throw new Horde_Auth_Exception('', Horde_Auth::REASON_BADLOGIN); } } }