egroupware/phpgwapi/inc/class.auth_ldap.inc.php

<?php
	/**************************************************************************\
	* eGroupWare API - Auth from LDAP                                          *
	* This file written by Lars Kneschke <lkneschke@linux-at-work.de>          *
	* and Joseph Engo <jengo@phpgroupware.org>                                 *
	* Authentication based on LDAP Server                                      *
	* Copyright (C) 2000, 2001 Joseph Engo                                     *
	* Copyright (C) 2002, 2003 Lars Kneschke                                   *
	* ------------------------------------------------------------------------ *
	* This library is part of the eGroupWare API                               *
	* http://www.egroupware.org/api                                            *
	* ------------------------------------------------------------------------ *
	* This library is free software; you can redistribute it and/or modify it  *
	* under the terms of the GNU Lesser General Public License as published by *
	* the Free Software Foundation; either version 2.1 of the License,         *
	* or any later version.                                                    *
	* This library is distributed in the hope that it will be useful, but      *
	* WITHOUT ANY WARRANTY; without even the implied warranty of               *
	* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.                     *
	* See the GNU Lesser General Public License for more details.              *
	* You should have received a copy of the GNU Lesser General Public License *
	* along with this library; if not, write to the Free Software Foundation,  *
	* Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA            *
	\**************************************************************************/

	/* $Id$ */

	class auth_
	{
		var $previous_login = -1;

		/**
		 * authentication against LDAP
		 *
		 * @param string $username username of account to authenticate
		 * @param string $passwd corresponding password
		 * @return boolean true if successful authenticated, false otherwise
		 */
		function authenticate($username, $passwd)
		{
			if (ereg('[()|&=*,<>!~]',$username))
			{
				return False;
			}

			if(!$ldap = @ldap_connect($GLOBALS['egw_info']['server']['ldap_host']))
			{
				$GLOBALS['egw']->log->message('F-Abort, Failed connecting to LDAP server for authenication, execution stopped');
				$GLOBALS['egw']->log->commit();
				return False;
			}

			if($GLOBALS['egw_info']['server']['ldap_version3'])
			{
				ldap_set_option($ldap, LDAP_OPT_PROTOCOL_VERSION, 3);
			}

			/* Login with the LDAP Admin. User to find the User DN.  */
			if(!@ldap_bind($ldap, $GLOBALS['egw_info']['server']['ldap_root_dn'], $GLOBALS['egw_info']['server']['ldap_root_pw']))
			{
				return False;
			}
			/* find the dn for this uid, the uid is not always in the dn */
			$attributes	= array('uid','dn','givenName','sn','mail','uidNumber','gidNumber');

			$filter = $GLOBALS['egw_info']['server']['ldap_search_filter'] ? $GLOBALS['egw_info']['server']['ldap_search_filter'] : '(uid=%user)';
			$filter = str_replace(array('%user','%domain'),array($username,$GLOBALS['egw_info']['user']['domain']),$filter);

			if ($GLOBALS['egw_info']['server']['account_repository'] == 'ldap')
			{
				$filter = "(&$filter(phpgwaccountstatus=A))";
			}

			$sri = ldap_search($ldap, $GLOBALS['egw_info']['server']['ldap_context'], $filter, $attributes);
			$allValues = ldap_get_entries($ldap, $sri);

			if ($allValues['count'] > 0)
			{
				if($GLOBALS['egw_info']['server']['case_sensitive_username'] == true)
				{
					if($allValues[0]['uid'][0] != $username)
					{
						return false;
					}
				}
				/* we only care about the first dn */
				$userDN = $allValues[0]['dn'];
				/*
				generate a bogus password to pass if the user doesn't give us one
				this gets around systems that are anonymous search enabled
				*/
				if (empty($passwd))
				{
					$passwd = crypt(microtime());
				}
				/* try to bind as the user with user suplied password */
				if (@ldap_bind($ldap, $userDN, $passwd))
				{
					if ($GLOBALS['egw_info']['server']['account_repository'] != 'ldap')
					{
						$account =& CreateObject('phpgwapi.accounts',$username,'u');
						if (!$account->account_id && $GLOBALS['egw_info']['server']['auto_create_acct'])
						{
							// create a global array with all availible info about that account
							$GLOBALS['auto_create_acct'] = array();
							foreach(array(
								'givenname' => 'firstname',
								'sn'        => 'lastname',
								'uidnumber' => 'id',
								'mail'      => 'email',
								'gidnumber' => 'primary_group',
							) as $ldap_name => $acct_name)
							{
								$GLOBALS['auto_create_acct'][$acct_name] =
									$GLOBALS['egw']->translation->convert($allValues[0][$ldap_name][0],'utf-8');
							}
							return True;
						}
						$data = $account->read_repository();
						return $data['status'] == 'A';
					}
					return True;
				}
			}
			/* dn not found or password wrong */
			return False;
		}

		/**
		 * changes password in LDAP
		 *
		 * @param string $old_passwd must be cleartext or empty to not to be checked
		 * @param string $new_passwd must be cleartext
		 * @param int $account_id account id of user whose passwd should be changed
		 * @return boolean true if password successful changed, false otherwise
		 */
		function change_password($old_passwd, $new_passwd, $account_id=0)
		{
			if (!$_account_id)
			{
				$username = $GLOBALS['egw_info']['user']['account_lid'];
			}
			else
			{
				$username = $GLOBALS['egw']->accounts->id2name($account_id);
			}
			$filter = $GLOBALS['egw_info']['server']['ldap_search_filter'] ? $GLOBALS['egw_info']['server']['ldap_search_filter'] : '(uid=%user)';
			$filter = str_replace(array('%user','%domain'),array($username,$GLOBALS['egw_info']['user']['domain']),$filter);

			$ds = $GLOBALS['egw']->common->ldapConnect();
			$sri = ldap_search($ds, $GLOBALS['egw_info']['server']['ldap_context'], $filter);
			$allValues = ldap_get_entries($ds, $sri);

			$entry['userpassword'] = $this->encrypt_password($new_passwd);
			$dn = $allValues[0]['dn'];

			if ($old_passwd && $GLOBALS['egw']->auth->encrypt_password($old_passwd) != $allValues[0]['userpassword'] || !@ldap_modify($ds, $dn, $entry))
			{
				return false;
			}
			if($old_passwd)	// if old password given (not called by admin) update the password in the session
			{
				$GLOBALS['egw']->session->appsession('password','phpgwapi',$new_passwd);
			}
			return $entry['userpassword'];
		}
	}
switching to the new Object factory method 2001-01-11 10:52:33 +01:00			`<?php`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`/**************************************************************************\`
move from old projct to new one 2004-05-05 14:06:13 +02:00			`* eGroupWare API - Auth from LDAP *`
ldap fixes 2003-09-21 21:02:12 +02:00			`* This file written by Lars Kneschke <lkneschke@linux-at-work.de> *`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`* and Joseph Engo <jengo@phpgroupware.org> *`
			`* Authentication based on LDAP Server *`
			`* Copyright (C) 2000, 2001 Joseph Engo *`
ldap fixes 2003-09-21 21:02:12 +02:00			`* Copyright (C) 2002, 2003 Lars Kneschke *`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`* ------------------------------------------------------------------------ *`
move from old projct to new one 2004-05-05 14:06:13 +02:00			`* This library is part of the eGroupWare API *`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`* http://www.egroupware.org/api *`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`* ------------------------------------------------------------------------ *`
			`* This library is free software; you can redistribute it and/or modify it *`
			`* under the terms of the GNU Lesser General Public License as published by *`
			`* the Free Software Foundation; either version 2.1 of the License, *`
			`* or any later version. *`
			`* This library is distributed in the hope that it will be useful, but *`
			`* WITHOUT ANY WARRANTY; without even the implied warranty of *`
			`* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. *`
			`* See the GNU Lesser General Public License for more details. *`
			`* You should have received a copy of the GNU Lesser General Public License *`
			`* along with this library; if not, write to the Free Software Foundation, *`
			`* Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA *`
			`\**************************************************************************/`

			`/* $Id$ */`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00
Move password functions to auth class; Add support for new encryption types in setup and implement password checking and creation for these new types 2004-01-18 22:12:53 +01:00			`class auth_`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00			`{`
Added feature to drop the previous login into appsessions, this way developer can find out how long its been since they last logged in. - Formating in sqlssl - Fixed change_password() in sqlssl not being correct and based on older versions 2001-06-03 19:58:12 +02:00			`var $previous_login = -1;`

changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`/**`
			`* authentication against LDAP`
			`*`
			`* @param string $username username of account to authenticate`
			`* @param string $passwd corresponding password`
			`* @return boolean true if successful authenticated, false otherwise`
			`*/`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`function authenticate($username, $passwd)`
			`{`
added a check agains ldap-insertion in the login-name 2003-10-02 23:01:37 +02:00			`if (ereg('[()\|&=*,<>!~]',$username))`
			`{`
			`return False;`
			`}`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`if(!$ldap = @ldap_connect($GLOBALS['egw_info']['server']['ldap_host']))`
Started adding in some eventlog reporting 2001-08-05 11:54:44 +02:00			`{`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`$GLOBALS['egw']->log->message('F-Abort, Failed connecting to LDAP server for authenication, execution stopped');`
			`$GLOBALS['egw']->log->commit();`
update 2002-11-24 02:45:28 +01:00			`return False;`
Started adding in some eventlog reporting 2001-08-05 11:54:44 +02:00			`}`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`if($GLOBALS['egw_info']['server']['ldap_version3'])`
ldap fixes 2003-09-14 16:35:36 +02:00			`{`
			`ldap_set_option($ldap, LDAP_OPT_PROTOCOL_VERSION, 3);`
			`}`

update 2002-11-24 02:45:28 +01:00			`/* Login with the LDAP Admin. User to find the User DN. */`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`if(!@ldap_bind($ldap, $GLOBALS['egw_info']['server']['ldap_root_dn'], $GLOBALS['egw_info']['server']['ldap_root_pw']))`
update 2002-11-24 02:45:28 +01:00			`{`
			`return False;`
			`}`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`/* find the dn for this uid, the uid is not always in the dn */`
fixed and extended auto_create_accounts: the following information from ldap are now automaticaly stored in the sql-account: - name & firstname - primary group (if a group with that numerical id exists in eGW, its added as primary group to the account and acl) - numerical account-id (if availible, no new one gets created, but the one from ldap is used) - email (as preference for the email-app) 2004-05-22 13:00:18 +02:00			`$attributes = array('uid','dn','givenName','sn','mail','uidNumber','gidNumber');`
added configurable search-filter to auth_ldap 2004-08-21 14:18:07 +02:00
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`$filter = $GLOBALS['egw_info']['server']['ldap_search_filter'] ? $GLOBALS['egw_info']['server']['ldap_search_filter'] : '(uid=%user)';`
			`$filter = str_replace(array('%user','%domain'),array($username,$GLOBALS['egw_info']['user']['domain']),$filter);`

			`if ($GLOBALS['egw_info']['server']['account_repository'] == 'ldap')`
fixed account-enabled check for account-storage != ldap 2003-09-24 14:21:38 +02:00			`{`
added configurable search-filter to auth_ldap 2004-08-21 14:18:07 +02:00			`$filter = "(&$filter(phpgwaccountstatus=A))";`
fixed account-enabled check for account-storage != ldap 2003-09-24 14:21:38 +02:00			`}`
fixed and extended auto_create_accounts: the following information from ldap are now automaticaly stored in the sql-account: - name & firstname - primary group (if a group with that numerical id exists in eGW, its added as primary group to the account and acl) - numerical account-id (if availible, no new one gets created, but the one from ldap is used) - email (as preference for the email-app) 2004-05-22 13:00:18 +02:00
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`$sri = ldap_search($ldap, $GLOBALS['egw_info']['server']['ldap_context'], $filter, $attributes);`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00			`$allValues = ldap_get_entries($ldap, $sri);`
fixed and extended auto_create_accounts: the following information from ldap are now automaticaly stored in the sql-account: - name & firstname - primary group (if a group with that numerical id exists in eGW, its added as primary group to the account and acl) - numerical account-id (if availible, no new one gets created, but the one from ldap is used) - email (as preference for the email-app) 2004-05-22 13:00:18 +02:00
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`if ($allValues['count'] > 0)`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00			`{`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`if($GLOBALS['egw_info']['server']['case_sensitive_username'] == true)`
enable check for casesensitive usernames 2004-01-16 08:44:38 +01:00			`{`
			`if($allValues[0]['uid'][0] != $username)`
			`{`
			`return false;`
			`}`
			`}`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`/* we only care about the first dn */`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00			`$userDN = $allValues[0]['dn'];`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`/*`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`generate a bogus password to pass if the user doesn't give us one`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`this gets around systems that are anonymous search enabled`
			`*/`
			`if (empty($passwd))`
			`{`
			`$passwd = crypt(microtime());`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00			`}`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`/* try to bind as the user with user suplied password */`
update 2002-11-24 02:45:28 +01:00			`if (@ldap_bind($ldap, $userDN, $passwd))`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`{`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`if ($GLOBALS['egw_info']['server']['account_repository'] != 'ldap')`
fixed account-enabled check for account-storage != ldap 2003-09-24 14:21:38 +02:00			`{`
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`$account =& CreateObject('phpgwapi.accounts',$username,'u');`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`if (!$account->account_id && $GLOBALS['egw_info']['server']['auto_create_acct'])`
fixed and extended auto_create_accounts: the following information from ldap are now automaticaly stored in the sql-account: - name & firstname - primary group (if a group with that numerical id exists in eGW, its added as primary group to the account and acl) - numerical account-id (if availible, no new one gets created, but the one from ldap is used) - email (as preference for the email-app) 2004-05-22 13:00:18 +02:00			`{`
			`// create a global array with all availible info about that account`
			`$GLOBALS['auto_create_acct'] = array();`
			`foreach(array(`
			`'givenname' => 'firstname',`
			`'sn' => 'lastname',`
			`'uidnumber' => 'id',`
			`'mail' => 'email',`
			`'gidnumber' => 'primary_group',`
			`) as $ldap_name => $acct_name)`
			`{`
			`$GLOBALS['auto_create_acct'][$acct_name] =`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`$GLOBALS['egw']->translation->convert($allValues[0][$ldap_name][0],'utf-8');`
fixed and extended auto_create_accounts: the following information from ldap are now automaticaly stored in the sql-account: - name & firstname - primary group (if a group with that numerical id exists in eGW, its added as primary group to the account and acl) - numerical account-id (if availible, no new one gets created, but the one from ldap is used) - email (as preference for the email-app) 2004-05-22 13:00:18 +02:00			`}`
			`return True;`
			`}`
fixed account-enabled check for account-storage != ldap 2003-09-24 14:21:38 +02:00			`$data = $account->read_repository();`
			`return $data['status'] == 'A';`
			`}`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`return True;`
			`}`
			`}`
			`/* dn not found or password wrong */`
			`return False;`
make password changing working from user admin pages 2001-02-12 22:13:09 +01:00			`}`
Fix account_id use in update_lastlogin to use get_account_id; formatting 2001-03-26 23:36:32 +02:00
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`/**`
			`* changes password in LDAP`
			`*`
			`* @param string $old_passwd must be cleartext or empty to not to be checked`
			`* @param string $new_passwd must be cleartext`
			`* @param int $account_id account id of user whose passwd should be changed`
			`* @return boolean true if password successful changed, false otherwise`
			`*/`
			`function change_password($old_passwd, $new_passwd, $account_id=0)`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`{`
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`if (!$_account_id)`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`{`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`$username = $GLOBALS['egw_info']['user']['account_lid'];`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`}`
added configurable search-filter to auth_ldap 2004-08-21 14:18:07 +02:00			`else`
			`{`
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`$username = $GLOBALS['egw']->accounts->id2name($account_id);`
added configurable search-filter to auth_ldap 2004-08-21 14:18:07 +02:00			`}`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`$filter = $GLOBALS['egw_info']['server']['ldap_search_filter'] ? $GLOBALS['egw_info']['server']['ldap_search_filter'] : '(uid=%user)';`
			`$filter = str_replace(array('%user','%domain'),array($username,$GLOBALS['egw_info']['user']['domain']),$filter);`
added configurable search-filter to auth_ldap 2004-08-21 14:18:07 +02:00
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00			`$ds = $GLOBALS['egw']->common->ldapConnect();`
			`$sri = ldap_search($ds, $GLOBALS['egw_info']['server']['ldap_context'], $filter);`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`$allValues = ldap_get_entries($ds, $sri);`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00
Move password functions to auth class; Add support for new encryption types in setup and implement password checking and creation for these new types 2004-01-18 22:12:53 +01:00			`$entry['userpassword'] = $this->encrypt_password($new_passwd);`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`$dn = $allValues[0]['dn'];`
Use correct quoting when querying/setting account_id; minor formatting 2005-08-27 14:19:35 +02:00
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`if ($old_passwd && $GLOBALS['egw']->auth->encrypt_password($old_passwd) != $allValues[0]['userpassword'] \|\| !@ldap_modify($ds, $dn, $entry))`
SF #413717 - Fixed undefined function update_lastlogin(), this problem was for more then just mail_auth 2001-04-10 09:58:19 +02:00			`{`
			`return false;`
			`}`
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`if($old_passwd) // if old password given (not called by admin) update the password in the session`
added configurable search-filter to auth_ldap 2004-08-21 14:18:07 +02:00			`{`
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`$GLOBALS['egw']->session->appsession('password','phpgwapi',$new_passwd);`
added configurable search-filter to auth_ldap 2004-08-21 14:18:07 +02:00			`}`
changed the following table-names: - phpgw_accounts --> egw_accounts - phpgw_acl --> egw_acl - phpgw_log(_msg) --> egw_log(_msg) - phpgw_config --> egw_config - phpgw_applications --> egw_applications This requires code-changes in many apps. Quite often I was able to replace the db access, with calls to the appropreate classes. 2005-11-02 12:45:52 +01:00			`return $entry['userpassword'];`
Moved the one altered function into old file as new_*, remove _wip 2001-06-26 23:29:39 +02:00			`}`
make password changing working from user admin pages 2001-02-12 22:13:09 +01:00			`}`