Source for file Entry.php
Documentation is available at Entry.php
/* vim: set expandtab tabstop=4 shiftwidth=4: */ * Object representation of a directory entry * This class represents a directory entry. You can add, delete, replace * attributes and their values, rename the entry, delete the entry. * @author Jan Wagner <wagner@netsols.de> * @author Tarjej Huse <tarjei@bergfald.no> * @license http://www.gnu.org/copyleft/lesser.html LGPL * @version CVS: $Id: Entry.php,v 1.9 2008/11/03 14:07:29 beni Exp $ * @link http://pear.php.net/package/Net_LDAP22/ * Entry ressource identifier * LDAP ressource identifier * This object will be used for updating and schema checking * Distinguished name of the entry * Original attributes before any modification protected $_map = array (); * Shall the entry be deleted? * Map with changes to the entry protected $_changes = array ("add" => array (), * Constructor of the entry. Sets up the distinguished name and the entries * You should not call this method manually! Use {@link Net_LDAP2_Entry::createFresh()} * or {@link Net_LDAP2_Entry::createConnected()} instead! * @param Net_LDAP2|ressource|array&$ldap Net_LDAP2 object, ldap-link ressource or array of attributes * @param string|ressource $entry Either a DN or a LDAP-Entry ressource $this->PEAR ('Net_LDAP2_Error'); // set up entry resource or DN $this->_link = $ldap->getLink (); // Special case: here $ldap is an array of attributes, // this means, we have no link. This is a "virtual" entry. // We just set up the attributes so one can work with the object // as expected, but an update() fails unless setLDAP() is called. // if this is an entry existing in the directory, // then set up as old and fetch attrs * Creates a fresh entry that may be added to the directory later on * Use this method, if you want to initialize a fresh entry. * The method should be called statically: $entry = Net_LDAP2_Entry::createFresh(); * You should put a 'objectClass' attribute into the $attrs so the directory server * knows which object you want to create. However, you may omit this in case you * don't want to add this entry to a directory server. * The attributes parameter is as following: * $attrs = array( 'attribute1' => array('value1', 'value2'), * 'attribute2' => 'single value' * @param string $dn DN of the Entry * @param array $attrs Attributes of the entry * @return Net_LDAP2_Entry|Net_LDAP2_Error public static function createFresh($dn, $attrs = array ()) return PEAR ::raiseError ("Unable to create fresh entry: Parameter \$attrs needs to be an array!"); * Creates a Net_LDAP2_Entry object out of an ldap entry resource * Use this method, if you want to initialize an entry object that is * already present in some directory and that you have read manually. * Please note, that if you want to create an entry object that represents * some already existing entry, you should use {@link createExisting()}. * The method should be called statically: $entry = Net_LDAP2_Entry::createConnected(); * @param Net_LDAP2 $ldap Net_LDA2 object * @param resource $entry PHP LDAP entry resource * @return Net_LDAP2_Entry|Net_LDAP2_Error return PEAR ::raiseError ("Unable to create connected entry: Parameter \$ldap needs to be a Net_LDAP2 object!"); return PEAR ::raiseError ("Unable to create connected entry: Parameter \$entry needs to be a ldap entry resource!"); * Creates an Net_LDAP2_Entry object that is considered already existing * Use this method, if you want to modify an already existing entry * without fetching it first. * In most cases however, it is better to fetch the entry via Net_LDAP2->getEntry()! * Please note that you should take care if you construct entries manually with this * because you may get weird synchronisation problems. * The attributes and values as well as the entry itself are considered existent * which may produce errors if you try to modify an entry which doesn't really exist * or if you try to overwrite some attribute with an value already present. * This method is equal to calling createFresh() and after that markAsNew(FALSE). * The method should be called statically: $entry = Net_LDAP2_Entry::createExisting(); * The attributes parameter is as following: * $attrs = array( 'attribute1' => array('value1', 'value2'), * 'attribute2' => 'single value' * @param string $dn DN of the Entry * @param array $attrs Attributes of the entry * @return Net_LDAP2_Entry|Net_LDAP2_Error return PEAR ::raiseError ("Unable to create entry object: Parameter \$attrs needs to be an array!"); $entry->markAsNew (FALSE ); * Get or set the distinguished name of the entry * If called without an argument the current (or the new DN if set) DN gets returned. * If you provide an DN, this entry is moved to the new location specified if a DN existed. * If the DN was not set, the DN gets initialized. Call {@link update()} to actually create * the new Entry in the directory. * To fetch the current active DN after setting a new DN but before an update(), you can use * {@link currentDN()} to retrieve the DN that is currently active. * Please note that special characters (eg german umlauts) should be encoded using utf8_encode(). * You may use {@link Net_LDAP2_Util::canonical_dn()} for properly encoding of the DN. * @param string $dn New distinguished name * @return string|trueDistinguished name (or true if a new DN was provided) public function dn($dn = null ) * Renames or moves the entry * This is just a convinience alias to {@link dn()} * to make your code more meaningful. * @param string $newdn The new DN public function move($newdn) return $this->dn($newdn); * Sets the internal attributes array * This fetches the values for the attributes from the server. * The attribute Syntax will be checked so binary attributes will be returned * Attributes may be passed directly via the $attributes parameter to setup this * entry manually. This overrides attribute fetching from the server. * @param array $attributes Attributes to set for this entry * fetch attributes from the server $attr = @ldap_first_attribute ($this->_link, $this->_entry, $ber); $attr = @ldap_next_attribute ($this->_link, $this->_entry, $ber); $func = 'ldap_get_values'; // standard function to fetch value // Try to get binary values as binary data if ($schema->isBinary ($attr)) { $func = 'ldap_get_values_len'; // fetch attribute value (needs error checking?) $attributes[$attr] = $func($this->_link, $this->_entry, $attr); * set attribute data directly, if passed if (isset ($attributes["count"]) && is_numeric($attributes["count"])) { unset ($attributes["count"]); foreach ($attributes as $k => $v) { // attribute names should not be numeric // map generic attribute name to real one // attribute values should be in an array // remove the value count (comes from ldap server) if (isset ($v["count"])) { // save a copy for later use * Get the values of all attributes in a hash * The returned hash has the form * <code>array('attributename' => 'single value', * 'attributename' => array('value1', value2', value3'))</code> * @return array Hash of all attributes with their values * Get the value of a specific attribute * The first parameter is the name of the attribute * The second parameter influences the way the value is returned: * 'single': only the first value is returned as string * 'all': all values including the value count are returned in an * 'default': in all other cases an attribute value with a single value is * returned as string, if it has multiple values it is returned * as an array (without value count) * @param string $attr Attribute name * @param string $option Option * @return string|array|PEAR_Errorstring, array or PEAR_Error public function getValue($attr, $option = null ) return PEAR ::raiseError (" Unknown attribute ($attr) requested" ); if ($option == "single" || (count($value) == 1 && $option != 'all')) { * Alias function of getValue for perl-ldap interface * @return string|array|PEAR_Error * Returns an array of attributes names * @return array Array of attribute names * Returns whether an attribute exists or not * @param string $attr Attribute name * Adds a new attribute or a new value to an existing attribute * The paramter has to be an array of the form: * array('attributename' => 'single value', * 'attributename' => array('value1', 'value2)) * When the attribute already exists the values will be added, else the * attribute will be created. These changes are local to the entry and do * not affect the entry on the server until update() is called. * Note, that you can add values of attributes that you haven't selected, but if * you do so, {@link getValue()} and {@link getValues()} will only return the * values you added, _NOT_ all values present on the server. To avoid this, just refetch * the entry after calling {@link update()} or select the attribute. * @param array $attr Attributes to add * @return true|Net_LDAP2_Error public function add($attr = array ()) return PEAR ::raiseError ("Parameter must be an array"); foreach ($attr as $k => $v) { // Do not add empty values // add new values to existing attribute or add new attribute // save changes for update() if (empty ($this->_changes["add"][$k])) { * Deletes an whole attribute or a value or the whole entry * The parameter can be one of the following: * "attributename" - The attribute as a whole will be deleted * array("attributename1", "attributename2) - All given attributes will be * array("attributename" => "value") - The value will be deleted * array("attributename" => array("value1", "value2") - The given values * If $attr is null or omitted , then the whole Entry will be deleted! * These changes are local to the entry and do * not affect the entry on the server until {@link update()} is called. * Please note that you must select the attribute (at $ldap->search() for example) * to be able to delete values of it, Otherwise {@link update()} will silently fail * @param string|array$attr Attributes to delete (NULL or missing to delete whole entry) public function delete($attr = null ) // Make the assumption that attribute names cannot be numeric, // therefore this has to be a simple list of attribute names to delete foreach ($attr as $name) { // someone mixed modes (list mode but specific values given!) $this->delete(array ($del_attr_name => $name)); // mark for update() if this attr was not marked before $this->_changes["delete"][$name] = null; // Here we have a hash with "attributename" => "value to delete" foreach ($attr as $name => $values) { // someone mixed modes and gave us just an attribute name // mark for update() if this attr was not marked before; // this time it must consider the selected values also $values = array ($values); // save values to be deleted if (empty ($this->_changes["delete"][$name])) { $this->_changes["delete"][$name] = array (); foreach ($values as $value) { // find the key for the value that should be deleted * Replaces attributes or its values * The parameter has to an array of the following form: * array("attributename" => "single value", * "attribute2name" => array("value1", "value2")) * If the attribute does not yet exist it will be added instead (see also $force). * If the attribue value is null, the attribute will de deleted. * These changes are local to the entry and do * not affect the entry on the server until {@link update()} is called. * In some cases you are not allowed to read the attributes value (for * example the ActiveDirectory attribute unicodePwd) but are allowed to * replace the value. In this case replace() would assume that the attribute * is not in the directory yet and tries to add it which will result in an * LDAP_TYPE_OR_VALUE_EXISTS error. * To force replace mode instead of add, you can set $force to true. * @param array $attr Attributes to replace * @param bool $force Force replacing mode in case we can't read the attr value but are allowed to replace it * @return true|Net_LDAP2_Error public function replace($attr = array (), $force = false ) return PEAR ::raiseError ("Parameter must be an array"); foreach ($attr as $k => $v) { // delete attributes with empty values // existing attributes will get replaced if ($this->exists($k) || $force) { // new ones just get added $this->add(array ($k => $v)); * Update the entry on the directory server * This will evaluate all changes made so far and send them * to the directory server. * Please note, that if you make changes to objectclasses wich * have mandatory attributes set, update() will currently fail. * Remove the entry from the server and readd it as new in such cases. * This also will deal with problems with setting structural object classes. * @param Net_LDAP2 $ldap If passed, a call to setLDAP() is issued prior update, thus switching the LDAP-server. This is for perl-ldap interface compliance * @return true|Net_LDAP2_Error * @todo Entry rename with a DN containing special characters needs testing! public function update($ldap = null ) return PEAR ::raiseError ('You passed an invalid $ldap variable to update()'); // ensure we have a valid LDAP object return PEAR ::raiseError ("The entries LDAP object is not valid"); $link = $ldap->getLink (); return PEAR ::raiseError ("Could not update entry: internal LDAP link is invalid"); return $ldap->delete ($this); if (true === $this->_new) { $msg = $ldap->add ($this); if ($ldap->getLDAPVersion () !== 3 ) { return PEAR ::raiseError ("Renaming/Moving an entry is only supported in LDAPv3"); // make dn relative to parent (needed for ldap rename) // maybe the dn consist of a multivalued RDN, we must build the dn in this case // because the $child-RDN is an array! if (false == @ldap_rename ($link, $this->_dn, $child, $parent, true )) { return PEAR ::raiseError ("Entry not renamed: " . @ldap_error ($link), @ldap_errno ($link)); // reflect changes to local copy * Carry out modifications to the entry foreach ($this->_changes["add"] as $attr => $value) { // if attribute exists, add new values if (false === @ldap_mod_add ($link, $this->dn(), array ($attr => $value))) { return PEAR ::raiseError (" Could not add new values to attribute $attr: " . @ldap_error ($link), @ldap_errno ($link)); if (false === @ldap_modify ($link, $this->dn(), array ($attr => $value))) { return PEAR ::raiseError (" Could not add new attribute $attr: " . @ldap_error ($link), @ldap_errno ($link)); // all went well here, I guess foreach ($this->_changes["delete"] as $attr => $value) { // In LDAPv3 you need to specify the old values for deleting if (is_null($value) && $ldap->getLDAPVersion () === 3 ) { if (false === @ldap_mod_del ($link, $this->dn(), array ($attr => $value))) { return PEAR ::raiseError (" Could not delete attribute $attr: " . @ldap_error ($link), @ldap_errno ($link)); unset ($this->_changes["delete"][$attr]); foreach ($this->_changes["replace"] as $attr => $value) { if (false === @ldap_modify ($link, $this->dn(), array ($attr => $value))) { return PEAR ::raiseError (" Could not replace attribute $attr values: " . @ldap_error ($link), @ldap_errno ($link)); unset ($this->_changes["replace"][$attr]); // all went well, so _original (server) becomes _attributes (local copy) * Returns the right attribute name * @param string $attr Name of attribute * @return string The right name of the attribute $attr = $this->_map[$name]; * Returns a reference to the LDAP-Object of this entry * @return Net_LDAP2|Net_LDAP2_Error Reference to the Net_LDAP2 Object (the connection) or Net_LDAP2_Error $err = new PEAR_Error ('LDAP is not a valid Net_LDAP2 object'); * Sets a reference to the LDAP-Object of this entry * After setting a Net_LDAP2 object, calling update() will use that object for * updating directory contents. Use this to dynamicly switch directorys. * @param Net_LDAP2 &$ldap Net_LDAP2 object that this entry should be connected to * @return true|Net_LDAP2_Error return PEAR ::raiseError ("LDAP is not a valid Net_LDAP2 object"); * Marks the entry as new/existing. * If an Entry is marked as new, it will be added to the directory * when calling {@link update()}. * If the entry is marked as old ($mark = false), then the entry is * assumed to be present in the directory server wich results in * modification when calling {@link update()}. * @param boolean $mark Value to set, defaults to "true" $this->_new = ($mark)? true : false; * Applies a regular expression onto a single- or multivalued attribute (like preg_match()) * This method behaves like PHPs preg_match() but with some exceptions. * If you want to retrieve match information, then you MUST pass the * $matches parameter via reference! otherwise you will get no matches. * Since it is possible to have multi valued attributes the $matches * array will have a additionally numerical dimension (one for each value): * 0 => array (usual preg_match() returnarray), * 1 => array (usual preg_match() returnarray) * Please note, that $matches will be initialized to an empty array inside. * $result = $entry->preg_match('/089(\d+)/', 'telephoneNumber', &$matches); * if ( $result === true ){ * echo "First match: ".$matches[0][1]; // Match of value 1, content of first bracket * if ( Net_LDAP2::isError($result) ) { * echo "Error: ".$result->getMessage(); * echo "No match found."; * Please note that it is important to test for an Net_LDAP2_Error, because objects are * evaluating to true by default, thus if a error occured, and you only check using "==" then * you get misleading results. Use the "identical" (===) operator to test for matches to * avoid this as shown above. * @param string $regex The regular expression * @param string $attr_name The attribute to search in * @param array $matches (optional, PASS BY REFERENCE!) Array to store matches in * @return boolean|Net_LDAP2_Error TRUE, if we had a match in one of the values, otherwise false. Net_LDAP2_Error in case something went wrong public function preg_match($regex, $attr_name, $matches = array ()) // fetch attribute values $attr = $this->getValue($attr_name, 'all'); // perform preg_match() on all values foreach ($attr as $thisvalue) { if (preg_match($regex, $thisvalue, $matches_int)) { array_push($matches, $matches_int); // store matches in reference * Tells if the entry is consiedered as new (not present in the server) * Please note, that this doesn't tell you if the entry is present on the server. * Use {@link Net_LDAP2::dnExists()} to see if an entry is already there. * Is this entry going to be deleted once update() is called? * Is this entry going to be moved once update() is called? * Returns always the original DN * If an entry will be moved but {@link update()} was not called, * {@link dn()} will return the new DN. This method however, returns * always the current active DN. * Returns the attribute changes to be carried out once update() is called
Documentation generated on Mon, 11 Mar 2019 15:28:18 -0400 by phpDocumentor 1.4.4. PEAR Logo Copyright © PHP Group 2004.
|
