/**
* Check login and password with LDAP
* @return true when login & password both OK, false otherwise
* @author Roan Embrechts (based on code from Universit� Jean Monet)
*/
function ldap_login($login, $password)
{
//error_log('Entering ldap_login('.$login.','.$password.')',0);
$res = ldap_authentication_check($login, $password);
// res=-1 -> the user does not exist in the ldap database
// res=1 -> invalid password (user does exist)
if ($res == 1) {
//WRONG PASSWORD
//$errorMessage = "LDAP User or password incorrect, try again.<br />";
if (isset($log)) {
unset($log);
}
if (isset($uid)) {
unset($uid);
}
$loginLdapSucces = false;
}
if ($res == -1) {
//WRONG USERNAME
//$errorMessage = "LDAP User or password incorrect, try again.<br />";
$login_ldap_success = false;
}
if ($res == 0) {
//LOGIN & PASSWORD OK - SUCCES
//$errorMessage = "Successful login w/ LDAP.<br>";
$login_ldap_success = true;
}
//$result = "This is the result: $errorMessage";
$result = $login_ldap_success;
return $result;
}
require_once 'inc/authldap.php';
require_once "inc/functions.php";
//Forms posted
if (!empty($_POST)) {
$errors = array();
$username = sanitize(trim($_POST["username"]));
$password = trim($_POST["password"]);
//Perform some validation
//Feel free to edit / change as required
if ($username == "") {
$errors[] = lang("ACCOUNT_SPECIFY_USERNAME");
}
if ($password == "") {
$errors[] = lang("ACCOUNT_SPECIFY_PASSWORD");
}
$res = ldap_authentication_check($username, $password);
// res=-1 -> the user does not exist in the ldap database
// res=1 -> invalid password (user does exist)
if ($res == 1) {
$errors[] = lang("ACCOUNT_USER_OR_PASS_INVALID");
}
if ($res == -1) {
$errors[] = lang("ACCOUNT_USER_OR_PASS_INVALID");
}
if ($res == 0) {
// echo "<h1>LDAP OK for $username</h1>";
if (!usernameExists($username)) {
//First connexion, user needs to be added to SKEM Bank DB
// After being created :
// Change permision_id in sk_user_permission_matches to
// 3 for admin
