[moodle.git] / auth / db / auth.php

<?php

/**
 * @author Martin Dougiamas
 * @license http://www.gnu.org/copyleft/gpl.html GNU Public License
 * @package moodle multiauth
 *
 * Authentication Plugin: External Database Authentication
 *
 * Checks against an external database.
 *
 * 2006-08-28  File created.
 */

// This page cannot be called directly
if (!isset($CFG)) exit;

/**
 * External database authentication plugin.
 */
class auth_plugin_db {

    /**
     * The configuration details for the plugin.
     */
    var $config;

    /**
     * Constructor.
     */
    function auth_plugin_db() {
        $this->config = get_config('auth/db');
    }

    /**
     * Returns true if the username and password work and false if they are
     * wrong or don't exist.
     *
     * @param string $username The username
     * @param string $password The password
     * @returns bool Authentication success or failure.
     */
    function user_login ($username, $password) {

        global $CFG;

        // This is a hack to workaround what seems to be a bug in ADOdb with accessing 
        // two databases of the same kind ... it seems to get confused when trying to access
        // the first database again, after having accessed the second.
        // The following hack will make the database explicit which keeps it happy
        // This seems to broke postgesql so ..

        $prefix = $CFG->prefix.'';    // Remember it.  The '' is to prevent PHP5 reference.. see bug 3223

        if ($CFG->dbtype != 'postgres7') {
            $CFG->prefix = $CFG->dbname.$CFG->prefix;
        }

        // Connect to the external database
        $authdb = &ADONewConnection($this->config->type); 
        $authdb->PConnect($this->config->host, $this->config->user, $this->config->pass, $this->config->name); 
        $authdb->SetFetchMode(ADODB_FETCH_ASSOC);

        if ($this->config->passtype === 'internal') { 
            // lookup username externally, but resolve
            // password locally -- to support backend that
            // don't track passwords
            $rs = $authdb->Execute("SELECT * FROM {$this->config->table} 
                                     WHERE {$this->config->fielduser} = '$username' ");
            $authdb->Close();

            if (!$rs) {
                notify("Could not connect to the specified authentication database...");

                return false;
            }
        
            if ( $rs->RecordCount() ) {
                // user exists exterally
                // check username/password internally
                if ($user = get_record('user', 'username', $username, 'mnethostid', $CFG->mnet_localhost_id)) {
                    return validate_internal_user_password($user, $password);
                }
            } else {
                // user does not exist externally
                return false;
            }  

        } else { 
            // normal case: use external db for passwords

            if ($this->config->passtype === 'md5') {   // Re-format password accordingly
                $password = md5($password);
            }

            $rs = $authdb->Execute("SELECT * FROM {$this->config->table} 
                                WHERE {$this->config->fielduser} = '$username' 
                                  AND {$this->config->fieldpass} = '$password' ");
            $authdb->Close();
            
            $CFG->prefix = $prefix;
            
            if (!$rs) {
                notify("Could not connect to the specified authentication database...");
                return false;
            }
        
            if ( $rs->RecordCount() ) {
                return true;
            } else {
                return false;
            }        
            
        }
    }


    /**
     * Reads any other information for a user from external database,
     * then returns it in an array
     */
    function get_userinfo($username) {

        global $CFG;

        ADOLoadCode($this->config->type);          
        $authdb = &ADONewConnection();         
        $authdb->PConnect($this->config->host, $this->config->user, $this->config->pass, $this->config->name); 
        $authdb->SetFetchMode(ADODB_FETCH_ASSOC);

        $fields = array("firstname", "lastname", "email", "phone1", "phone2", 
                        "department", "address", "city", "country", "description", 
                        "idnumber", "lang");

        $result = array();

        foreach ($fields as $field) {
            if ($this->config->{'field_map_' . $field}) {
                if ($rs = $authdb->Execute("SELECT " . $this->config->{'field_map_' . $field} . " FROM {$this->config->table}
                                            WHERE {$this->config->fielduser} = '$username'")) {
                    if ( $rs->RecordCount() == 1 ) {
                        if (!empty($CFG->unicodedb)) {
                            $result["$field"] = addslashes(stripslashes($rs->fields[0]));
                        } else {
                            $result["$field"] = addslashes(stripslashes(utf8_decode($rs->fields[0])));
                        }
                    }
                }
            }
        }
        $authdb->Close();

        return $result;
    }


    function user_update_password($username, $newpassword) {

        global $CFG;
        if ($this->config->passtype === 'internal') {
            return set_field('user', 'password', md5($newpassword), 'username', $username, 'mnethostid', $CFG->mnet_localhost_id);
        } else {
            // we should have never been called!
            return false;
        }
    }

    /**
     * syncronizes user fron external db to moodle user table
     *
     * Sync shouid be done by using idnumber attribute, not username.
     * You need to pass firstsync parameter to function to fill in
     * idnumbers if they dont exists in moodle user table.
     * 
     * Syncing users removes (disables) users that dont exists anymore in external db.
     * Creates new users and updates coursecreator status of users. 
     * 
     * @param bool $do_updates  Optional: set to true to force an update of existing accounts
     *
     * This implementation is simpler but less scalable than the one found in the LDAP module.
     *
     */
    function sync_users ($do_updates=0) {
        
        global $CFG;
        $pcfg = get_config('auth/db');

        ///
        /// list external users
        ///
        $userlist = $this->get_userlist();
        $quoteduserlist = implode("', '", $userlist);
        $quoteduserlist = "'$quoteduserlist'";

        ///
        /// delete obsolete internal users
        ///
           
        // find obsolete users
        if (count($userlist)) {
            $sql = 'SELECT u.id, u.username 
                    FROM ' . $CFG->prefix .'user u 
                    WHERE u.auth=\'db\' AND u.deleted=\'0\' AND u.username NOT IN (' . $quoteduserlist . ')';
        } else {
            $sql = 'SELECT u.id, u.username 
                    FROM ' . $CFG->prefix .'user u 
                    WHERE u.auth=\'db\' AND u.deleted=\'0\' ';
        }
        $remove_users = get_records_sql($sql); 

        if (!empty($remove_users)) {
            print "User entries to remove: ". count($remove_users) . "\n";

            begin_sql();
            foreach ($remove_users as $user) {
                //following is copy pasted from admin/user.php
                //maybe this should moved to function in lib/datalib.php
                $updateuser = new stdClass();
                $updateuser->id = $user->id;
                $updateuser->deleted = "1";
                $updateuser->timemodified = time();
                if (update_record("user", $updateuser)) {
                    // unenrol_student($user->id);  // From all courses
                    // remove_teacher($user->id);   // From all courses
                    // remove_admin($user->id);
                    delete_records('role_assignments', 'userid', $user->id); // unassign all roles
                    notify(get_string("deletedactivity", "", fullname($user, true)) );
                } else {
                    notify(get_string("deletednot", "", fullname($user, true)));
                }
                //copy pasted part ends
            }     
            commit_sql();
        } 
        unset($remove_users); // free mem!   

        if (!count($userlist)) {
            // exit right here
            // nothing else to do
            return true;
        }

        ///
        /// update existing accounts
        ///
        if ($do_updates) {
            // narrow down what fields we need to update
            $all_keys = array_keys(get_object_vars($this->config));
            $updatekeys = array();
            foreach ($all_keys as $key) {
                if (preg_match('/^field_updatelocal_(.+)$/',$key, $match)) {
                    if ($this->config->{$key} === 'onlogin') {
                        array_push($updatekeys, $match[1]); // the actual key name
                    }
                }
            }
            // print_r($all_keys); print_r($updatekeys);
            unset($all_keys); unset($key);

            // only go ahead if we actually
            // have fields to update locally
            if (!empty($updatekeys)) {
                $sql = 'SELECT u.id, u.username 
                        FROM ' . $CFG->prefix .'user u 
                        WHERE u.auth=\'db\' AND u.deleted=\'0\' AND u.username IN (' . $quoteduserlist . ')';
                $update_users = get_records_sql($sql);
            
                foreach ($update_users as $user) {
                    $this->db_update_user_record($user->username, $updatekeys);
                }
                unset($update_users); // free memory
            }
        }


        ///
        /// create missing accounts
        ///
        // NOTE: this is very memory intensive
        // and generally inefficient
        $sql = 'SELECT u.id, u.username 
                FROM ' . $CFG->prefix .'user u 
                WHERE u.auth=\'db\' AND u.deleted=\'0\'';

        $users = get_records_sql($sql);
        
        // simplify down to usernames
        $usernames = array();
        foreach ($users as $user) {
            array_push($usernames, $user->username);
        }
        unset($users);

        $add_users = array_diff($userlist, $usernames);
        unset($usernames);

        if (!empty($add_users)) {
            print "User entries to add: ". count($add_users). "\n";
            begin_sql();
            foreach($add_users as $user) {
                $username = $user;
                $user = $this->get_userinfo_asobj($user);
                
                // prep a few params
                $user->username   = $username;
                $user->modified   = time();
                $user->confirmed  = 1;
                $user->auth       = 'db';
                $user->mnethostid = $CFG->mnet_localhost_id;
                
                // insert it
                $old_debug=$CFG->debug; 
                $CFG->debug=10;
                
                // maybe the user has been deleted before
                if ($old_user = get_record('user', 'username', $user->username, 'deleted', 1, 'mnethostid', $user->mnethostid)) {
                    $user->id = $old_user->id;
                    set_field('user', 'deleted', 0, 'username', $user->username);
                    echo "Revived user $user->username id $user->id\n";
                } elseif ($id=insert_record ('user',$user)) { // it is truly a new user
                    echo "inserted user $user->username id $id\n";
                    $user->id = $id;
                    // if relevant, tag for password generation
                    if ($this->config->passtype === 'internal') {
                        set_user_preference('auth_forcepasswordchange', 1, $id);
                        set_user_preference('create_password',          1, $id);
                    }
                } else {
                    echo "error inserting user $user->username \n";
                }
                $CFG->debug=$old_debug;                        
            }
            commit_sql();
            unset($add_users); // free mem
        }
        return true;
    }

    function user_exists ($username) {
        $authdb = &ADONewConnection($this->config->type); 
        $authdb->PConnect($this->config->host, $this->config->user, $this->config->pass, $this->config->name); 
        $authdb->SetFetchMode(ADODB_FETCH_ASSOC);

        $rs = $authdb->Execute("SELECT * FROM {$this->config->table} 
                                     WHERE {$this->config->fielduser} = '$username' ");
        $authdb->Close();

        if (!$rs) {
            notify("Could not connect to the specified authentication database...");
            return false;
        }
        
        if ( $rs->RecordCount() ) {
            // user exists exterally
            // check username/password internally
            // ?? there is no $password variable, so why??
            /*if ($user = get_record('user', 'username', $username)) {
                return ($user->password == md5($password));
            }*/
            return $rs->RecordCount();
        } else {
            // user does not exist externally
            return false;
        }  
    }


    function get_userlist() {
        // Connect to the external database
        $authdb = &ADONewConnection($this->config->type); 
        $authdb->PConnect($this->config->host,$this->config->user,$this->config->pass,$this->config->name); 
        $authdb->SetFetchMode(ADODB_FETCH_ASSOC);

        // fetch userlist
        $rs = $authdb->Execute("SELECT {$this->config->fielduser} AS username
                                FROM   {$this->config->table} ");
        $authdb->Close();

        if (!$rs) {
            notify("Could not connect to the specified authentication database...");
            return false;
        }
        
        if ( $rs->RecordCount() ) {
            $userlist = array();
            while ($rec = $rs->FetchRow()) {
                array_push($userlist, $rec['username']);
            }
            return $userlist;
        } else {
            return array();
        }        
    }

    /**
     * reads userinformation from DB and return it in an object
     *
     * @param string $username username
     * @return array
     */
    function get_userinfo_asobj($username) {
        $user_array = truncate_userinfo($this->get_userinfo($username));
        $user = new object;
        foreach($user_array as $key=>$value) {
            $user->{$key} = $value;
        }
        return $user;
    }

    /*
     * will update a local user record from an external source. 
     * is a lighter version of the one in moodlelib -- won't do 
     * expensive ops such as enrolment
     *
     * If you don't pass $updatekeys, there is a performance hit and 
     * values removed from DB won't be removed from moodle.
     */
     function db_update_user_record($username, $updatekeys=false) {
        global $CFG;

        $pcfg = get_config('auth/db');

        //just in case check text case
        $username = trim(moodle_strtolower($username));
        
        // get the current user record
        $user = get_record('user', 'username', $username, 'mnethostid', $CFG->mnet_localhost_id);
        if (empty($user)) { // trouble
            error_log("Cannot update non-existent user: $username");
            die;
        }

        // Ensure userid is not overwritten
        $userid = $user->id;

        // TODO: this had a function_exists() - now we have a $this 
        if ($newinfo = $this->get_userinfo($username)) {
            $newinfo = truncate_userinfo($newinfo);
            
            if (empty($updatekeys)) { // all keys? this does not support removing values
                $updatekeys = array_keys($newinfo);
            }
            
            foreach ($updatekeys as $key) {
                unset($value);
                if (isset($newinfo[$key])) {
                    $value = $newinfo[$key];
                    $value = addslashes(stripslashes($value)); // Just in case
                } else {
                    $value = '';
                }
                if (!empty($this->config->{'field_updatelocal_' . $key})) { 
                        if ($user->{$key} != $value) { // only update if it's changed
                            set_field('user', $key, $value, 'id', $userid);
                        }
                }
            }
        }
        return get_record_select("user", "id = '$userid' AND deleted <> '1'");
    }

    // A chance to validate form data, and last chance to 
    // do stuff before it is inserted in config_plugin
    function validate_form(&$form, &$err) {
        if ($form['passtype'] === 'internal') {
            $this->config->changepasswordurl = '';
            set_config('changepasswordurl', '', 'auth/db');
        }
        return true;
    }

    /**
     * Returns true if this authentication plugin is 'internal'.
     *
     * @returns bool
     */
    function is_internal() {
        return false;
    }

    /**
     * Returns true if this authentication plugin can change the user's
     * password.
     *
     * @returns bool
     */
    function can_change_password() {
        return ($this->config->passtype === 'internal');
    }

    /**
     * Returns the URL for changing the user's pw, or false if the default can
     * be used.
     *
     * @returns bool
     */
    function change_password_url() {
        return $this->config->changepasswordurl;
    }

    /**
     * Prints a form for configuring this authentication plugin.
     *
     * This function is called from admin/auth.php, and outputs a full page with
     * a form for configuring this plugin.
     *
     * @param array $page An object containing all the data for this page.
     */
    function config_form($config, $err) {
        include "config.html";
    }

    /**
     * Processes and stores configuration data for this authentication plugin.
     */
    function process_config($config) {
        // set to defaults if undefined
        if (!isset($config->host)) {
            $config->host = "localhost";
        }
        if (!isset($config->type)) {
            $config->type = "mysql";
        }
        if (!isset($config->name)) {
            $config->name = "";
        }
        if (!isset($config->user)) {
            $config->user = "";
        }
        if (!isset($config->pass)) {
            $config->pass = "";
        }
        if (!isset($config->table)) {
            $config->table = "";
        }
        if (!isset($config->fielduser)) {
            $config->fielduser = "";
        }
        if (!isset($config->fieldpass)) {
            $config->fieldpass = "";
        }
        if (!isset($config->passtype)) {
            $config->passtype = "plaintext";
        }
        if (!isset($config->changepasswordurl)) {
            $config->changepasswordurl = '';
        }

        // save settings
        set_config('host',      $config->host,      'auth/db');
        set_config('type',      $config->type,      'auth/db');
        set_config('name',      $config->name,      'auth/db');
        set_config('user',      $config->user,      'auth/db');
        set_config('pass',      $config->pass,      'auth/db');
        set_config('table',     $config->table,     'auth/db');
        set_config('fielduser', $config->fielduser, 'auth/db');
        set_config('fieldpass', $config->fieldpass, 'auth/db');
        set_config('passtype',  $config->passtype,  'auth/db');
        set_config('changepasswordurl', $config->changepasswordurl, 'auth/db');
        
        return true;
    }

}

?>
Commit	Line	Data
b9ddb2d5	1	<?php
	2
	3	/**
	4	* @author Martin Dougiamas
	5	* @license http://www.gnu.org/copyleft/gpl.html GNU Public License
	6	* @package moodle multiauth
	7	*
	8	* Authentication Plugin: External Database Authentication
	9	*
	10	* Checks against an external database.
	11	*
	12	* 2006-08-28 File created.
	13	*/
	14
	15	// This page cannot be called directly
	16	if (!isset($CFG)) exit;
	17
	18	/**
	19	* External database authentication plugin.
	20	*/
	21	class auth_plugin_db {
	22
	23	/**
	24	* The configuration details for the plugin.
	25	*/
	26	var $config;
	27
	28	/**
	29	* Constructor.
	30	*/
	31	function auth_plugin_db() {
	32	$this->config = get_config('auth/db');
	33	}
	34
	35	/**
	36	* Returns true if the username and password work and false if they are
	37	* wrong or don't exist.
	38	*
	39	* @param string $username The username
	40	* @param string $password The password
	41	* @returns bool Authentication success or failure.
	42	*/
	43	function user_login ($username, $password) {
	44
	45	global $CFG;
	46
	47	// This is a hack to workaround what seems to be a bug in ADOdb with accessing
	48	// two databases of the same kind ... it seems to get confused when trying to access
	49	// the first database again, after having accessed the second.
	50	// The following hack will make the database explicit which keeps it happy
	51	// This seems to broke postgesql so ..
	52
	53	$prefix = $CFG->prefix.''; // Remember it. The '' is to prevent PHP5 reference.. see bug 3223
	54
	55	if ($CFG->dbtype != 'postgres7') {
	56	$CFG->prefix = $CFG->dbname.$CFG->prefix;
	57	}
	58
	59	// Connect to the external database
	60	$authdb = &ADONewConnection($this->config->type);
	61	$authdb->PConnect($this->config->host, $this->config->user, $this->config->pass, $this->config->name);
	62	$authdb->SetFetchMode(ADODB_FETCH_ASSOC);
	63
	64	if ($this->config->passtype === 'internal') {
65	// lookup username externally, but resolve
66	// password locally -- to support backend that
67	// don't track passwords
68	$rs = $authdb->Execute("SELECT * FROM {$this->config->table}
69	WHERE {$this->config->fielduser} = '$username' ");
70	$authdb->Close();
71
72	if (!$rs) {
73	notify("Could not connect to the specified authentication database...");
74
75	return false;
76	}
77
78	if ( $rs->RecordCount() ) {
79	// user exists exterally
80	// check username/password internally
b7b50143	81	if ($user = get_record('user', 'username', $username, 'mnethostid', $CFG->mnet_localhost_id)) {
b9ddb2d5	82	return validate_internal_user_password($user, $password);
	83	}
	84	} else {
	85	// user does not exist externally
	86	return false;
	87	}
	88
	89	} else {
	90	// normal case: use external db for passwords
	91
	92	if ($this->config->passtype === 'md5') { // Re-format password accordingly
	93	$password = md5($password);
	94	}
	95
	96	$rs = $authdb->Execute("SELECT * FROM {$this->config->table}
	97	WHERE {$this->config->fielduser} = '$username'
	98	AND {$this->config->fieldpass} = '$password' ");
	99	$authdb->Close();
	100
	101	$CFG->prefix = $prefix;
	102
	103	if (!$rs) {
	104	notify("Could not connect to the specified authentication database...");
	105	return false;
	106	}
	107
	108	if ( $rs->RecordCount() ) {
	109	return true;
	110	} else {
	111	return false;
	112	}
	113
	114	}
	115	}
	116
	117
	118	/**
	119	* Reads any other information for a user from external database,
	120	* then returns it in an array
	121	*/
	122	function get_userinfo($username) {
	123
	124	global $CFG;
	125
	126	ADOLoadCode($this->config->type);
	127	$authdb = &ADONewConnection();
	128	$authdb->PConnect($this->config->host, $this->config->user, $this->config->pass, $this->config->name);
	129	$authdb->SetFetchMode(ADODB_FETCH_ASSOC);
	130
	131	$fields = array("firstname", "lastname", "email", "phone1", "phone2",
	132	"department", "address", "city", "country", "description",
	133	"idnumber", "lang");
	134
	135	$result = array();
	136
	137	foreach ($fields as $field) {
	138	if ($this->config->{'field_map_' . $field}) {
	139	if ($rs = $authdb->Execute("SELECT " . $this->config->{'field_map_' . $field} . " FROM {$this->config->table}
	140	WHERE {$this->config->fielduser} = '$username'")) {
	141	if ( $rs->RecordCount() == 1 ) {
	142	if (!empty($CFG->unicodedb)) {
	143	$result["$field"] = addslashes(stripslashes($rs->fields[0]));
	144	} else {
	145	$result["$field"] = addslashes(stripslashes(utf8_decode($rs->fields[0])));
146	}
147	}
148	}
149	}
150	}
151	$authdb->Close();
152
153	return $result;
154	}
155
156
157	function user_update_password($username, $newpassword) {
158
b7b50143	159	global $CFG;
b9ddb2d5	160	if ($this->config->passtype === 'internal') {
b7b50143	161	return set_field('user', 'password', md5($newpassword), 'username', $username, 'mnethostid', $CFG->mnet_localhost_id);
b9ddb2d5	162	} else {
	163	// we should have never been called!
	164	return false;
	165	}
	166	}
	167
	168	/**
	169	* syncronizes user fron external db to moodle user table
	170	*
	171	* Sync shouid be done by using idnumber attribute, not username.
	172	* You need to pass firstsync parameter to function to fill in
	173	* idnumbers if they dont exists in moodle user table.
	174	*
	175	* Syncing users removes (disables) users that dont exists anymore in external db.
	176	* Creates new users and updates coursecreator status of users.
	177	*
	178	* @param bool $do_updates Optional: set to true to force an update of existing accounts
	179	*
	180	* This implementation is simpler but less scalable than the one found in the LDAP module.
	181	*
	182	*/
	183	function sync_users ($do_updates=0) {
	184
	185	global $CFG;
	186	$pcfg = get_config('auth/db');
	187
	188	///
	189	/// list external users
	190	///
	191	$userlist = $this->get_userlist();
	192	$quoteduserlist = implode("', '", $userlist);
	193	$quoteduserlist = "'$quoteduserlist'";
	194
	195	///
	196	/// delete obsolete internal users
	197	///
	198
	199	// find obsolete users
	200	if (count($userlist)) {
	201	$sql = 'SELECT u.id, u.username
	202	FROM ' . $CFG->prefix .'user u
	203	WHERE u.auth=\'db\' AND u.deleted=\'0\' AND u.username NOT IN (' . $quoteduserlist . ')';
	204	} else {
	205	$sql = 'SELECT u.id, u.username
	206	FROM ' . $CFG->prefix .'user u
	207	WHERE u.auth=\'db\' AND u.deleted=\'0\' ';
	208	}
	209	$remove_users = get_records_sql($sql);
	210
	211	if (!empty($remove_users)) {
	212	print "User entries to remove: ". count($remove_users) . "\n";
	213
	214	begin_sql();
	215	foreach ($remove_users as $user) {
	216	//following is copy pasted from admin/user.php
	217	//maybe this should moved to function in lib/datalib.php
b7b50143	218	$updateuser = new stdClass();
b9ddb2d5	219	$updateuser->id = $user->id;
	220	$updateuser->deleted = "1";
	221	$updateuser->timemodified = time();
	222	if (update_record("user", $updateuser)) {
	223	// unenrol_student($user->id); // From all courses
	224	// remove_teacher($user->id); // From all courses
	225	// remove_admin($user->id);
	226	delete_records('role_assignments', 'userid', $user->id); // unassign all roles
	227	notify(get_string("deletedactivity", "", fullname($user, true)) );
	228	} else {
	229	notify(get_string("deletednot", "", fullname($user, true)));
	230	}
	231	//copy pasted part ends
	232	}
	233	commit_sql();
	234	}
	235	unset($remove_users); // free mem!
	236
	237	if (!count($userlist)) {
	238	// exit right here
	239	// nothing else to do
	240	return true;
	241	}
	242
	243	///
	244	/// update existing accounts
	245	///
	246	if ($do_updates) {
	247	// narrow down what fields we need to update
	248	$all_keys = array_keys(get_object_vars($this->config));
	249	$updatekeys = array();
	250	foreach ($all_keys as $key) {
	251	if (preg_match('/^field_updatelocal_(.+)$/',$key, $match)) {
	252	if ($this->config->{$key} === 'onlogin') {
	253	array_push($updatekeys, $match[1]); // the actual key name
	254	}
	255	}
	256	}
	257	// print_r($all_keys); print_r($updatekeys);
	258	unset($all_keys); unset($key);
	259
	260	// only go ahead if we actually
	261	// have fields to update locally
	262	if (!empty($updatekeys)) {
	263	$sql = 'SELECT u.id, u.username
	264	FROM ' . $CFG->prefix .'user u
	265	WHERE u.auth=\'db\' AND u.deleted=\'0\' AND u.username IN (' . $quoteduserlist . ')';
	266	$update_users = get_records_sql($sql);
	267
	268	foreach ($update_users as $user) {
	269	$this->db_update_user_record($user->username, $updatekeys);
	270	}
	271	unset($update_users); // free memory
	272	}
	273	}
	274
	275
	276	///
	277	/// create missing accounts
	278	///
	279	// NOTE: this is very memory intensive
	280	// and generally inefficient
	281	$sql = 'SELECT u.id, u.username
	282	FROM ' . $CFG->prefix .'user u
283	WHERE u.auth=\'db\' AND u.deleted=\'0\'';
284
285	$users = get_records_sql($sql);
286
287	// simplify down to usernames
288	$usernames = array();
289	foreach ($users as $user) {
290	array_push($usernames, $user->username);
291	}
292	unset($users);
293
294	$add_users = array_diff($userlist, $usernames);
295	unset($usernames);
296
297	if (!empty($add_users)) {
298	print "User entries to add: ". count($add_users). "\n";
299	begin_sql();
300	foreach($add_users as $user) {
301	$username = $user;
302	$user = $this->get_userinfo_asobj($user);
303
304	// prep a few params
b7b50143	305	$user->username = $username;
	306	$user->modified = time();
	307	$user->confirmed = 1;
	308	$user->auth = 'db';
	309	$user->mnethostid = $CFG->mnet_localhost_id;
b9ddb2d5	310
	311	// insert it
	312	$old_debug=$CFG->debug;
	313	$CFG->debug=10;
	314
	315	// maybe the user has been deleted before
b7b50143	316	if ($old_user = get_record('user', 'username', $user->username, 'deleted', 1, 'mnethostid', $user->mnethostid)) {
b9ddb2d5	317	$user->id = $old_user->id;
	318	set_field('user', 'deleted', 0, 'username', $user->username);
	319	echo "Revived user $user->username id $user->id\n";
	320	} elseif ($id=insert_record ('user',$user)) { // it is truly a new user
	321	echo "inserted user $user->username id $id\n";
	322	$user->id = $id;
	323	// if relevant, tag for password generation
	324	if ($this->config->passtype === 'internal') {
	325	set_user_preference('auth_forcepasswordchange', 1, $id);
	326	set_user_preference('create_password', 1, $id);
	327	}
	328	} else {
	329	echo "error inserting user $user->username \n";
	330	}
	331	$CFG->debug=$old_debug;
	332	}
	333	commit_sql();
	334	unset($add_users); // free mem
	335	}
	336	return true;
	337	}
	338
	339	function user_exists ($username) {
	340	$authdb = &ADONewConnection($this->config->type);
	341	$authdb->PConnect($this->config->host, $this->config->user, $this->config->pass, $this->config->name);
	342	$authdb->SetFetchMode(ADODB_FETCH_ASSOC);
	343
	344	$rs = $authdb->Execute("SELECT * FROM {$this->config->table}
	345	WHERE {$this->config->fielduser} = '$username' ");
	346	$authdb->Close();
	347
	348	if (!$rs) {
	349	notify("Could not connect to the specified authentication database...");
	350	return false;
	351	}
	352
	353	if ( $rs->RecordCount() ) {
	354	// user exists exterally
	355	// check username/password internally
	356	// ?? there is no $password variable, so why??
	357	/*if ($user = get_record('user', 'username', $username)) {
	358	return ($user->password == md5($password));
	359	}*/
	360	return $rs->RecordCount();
	361	} else {
	362	// user does not exist externally
	363	return false;
	364	}
	365	}
	366
	367
	368	function get_userlist() {
	369	// Connect to the external database
	370	$authdb = &ADONewConnection($this->config->type);
	371	$authdb->PConnect($this->config->host,$this->config->user,$this->config->pass,$this->config->name);
	372	$authdb->SetFetchMode(ADODB_FETCH_ASSOC);
	373
	374	// fetch userlist
	375	$rs = $authdb->Execute("SELECT {$this->config->fielduser} AS username
	376	FROM {$this->config->table} ");
	377	$authdb->Close();
	378
	379	if (!$rs) {
	380	notify("Could not connect to the specified authentication database...");
381	return false;
382	}
383
384	if ( $rs->RecordCount() ) {
385	$userlist = array();
386	while ($rec = $rs->FetchRow()) {
387	array_push($userlist, $rec['username']);
388	}
389	return $userlist;
390	} else {
391	return array();
392	}
393	}
394
395	/**
396	* reads userinformation from DB and return it in an object
397	*
398	* @param string $username username
399	* @return array
400	*/
401	function get_userinfo_asobj($username) {
402	$user_array = truncate_userinfo($this->get_userinfo($username));
403	$user = new object;
404	foreach($user_array as $key=>$value) {
405	$user->{$key} = $value;
406	}
407	return $user;
408	}
409
410	/*
411	* will update a local user record from an external source.
412	* is a lighter version of the one in moodlelib -- won't do
413	* expensive ops such as enrolment
414	*
415	* If you don't pass $updatekeys, there is a performance hit and
416	* values removed from DB won't be removed from moodle.
417	*/
418	function db_update_user_record($username, $updatekeys=false) {
b7b50143	419	global $CFG;
b9ddb2d5	420
	421	$pcfg = get_config('auth/db');
	422
	423	//just in case check text case
	424	$username = trim(moodle_strtolower($username));
	425
	426	// get the current user record
b7b50143	427	$user = get_record('user', 'username', $username, 'mnethostid', $CFG->mnet_localhost_id);
b9ddb2d5	428	if (empty($user)) { // trouble
	429	error_log("Cannot update non-existent user: $username");
	430	die;
	431	}
	432
b7b50143	433	// Ensure userid is not overwritten
	434	$userid = $user->id;
	435
b9ddb2d5	436	// TODO: this had a function_exists() - now we have a $this
	437	if ($newinfo = $this->get_userinfo($username)) {
	438	$newinfo = truncate_userinfo($newinfo);
	439
	440	if (empty($updatekeys)) { // all keys? this does not support removing values
	441	$updatekeys = array_keys($newinfo);
	442	}
	443
	444	foreach ($updatekeys as $key) {
	445	unset($value);
	446	if (isset($newinfo[$key])) {
	447	$value = $newinfo[$key];
	448	$value = addslashes(stripslashes($value)); // Just in case
	449	} else {
	450	$value = '';
	451	}
	452	if (!empty($this->config->{'field_updatelocal_' . $key})) {
	453	if ($user->{$key} != $value) { // only update if it's changed
b7b50143	454	set_field('user', $key, $value, 'id', $userid);
b9ddb2d5	455	}
	456	}
	457	}
	458	}
b7b50143	459	return get_record_select("user", "id = '$userid' AND deleted <> '1'");
b9ddb2d5	460	}
	461
	462	// A chance to validate form data, and last chance to
	463	// do stuff before it is inserted in config_plugin
	464	function validate_form(&$form, &$err) {
	465	if ($form['passtype'] === 'internal') {
	466	$this->config->changepasswordurl = '';
	467	set_config('changepasswordurl', '', 'auth/db');
	468	}
	469	return true;
	470	}
	471
	472	/**
	473	* Returns true if this authentication plugin is 'internal'.
	474	*
	475	* @returns bool
	476	*/
	477	function is_internal() {
	478	return false;
	479	}
	480
	481	/**
	482	* Returns true if this authentication plugin can change the user's
	483	* password.
	484	*
	485	* @returns bool
	486	*/
	487	function can_change_password() {
	488	return ($this->config->passtype === 'internal');
	489	}
	490
	491	/**
	492	* Returns the URL for changing the user's pw, or false if the default can
	493	* be used.
	494	*
	495	* @returns bool
	496	*/
	497	function change_password_url() {
	498	return $this->config->changepasswordurl;
	499	}
	500
	501	/**
	502	* Prints a form for configuring this authentication plugin.
	503	*
	504	* This function is called from admin/auth.php, and outputs a full page with
	505	* a form for configuring this plugin.
	506	*
	507	* @param array $page An object containing all the data for this page.
	508	*/
	509	function config_form($config, $err) {
	510	include "config.html";
	511	}
	512
	513	/**
	514	* Processes and stores configuration data for this authentication plugin.
	515	*/
	516	function process_config($config) {
	517	// set to defaults if undefined
	518	if (!isset($config->host)) {
	519	$config->host = "localhost";
	520	}
	521	if (!isset($config->type)) {
	522	$config->type = "mysql";
	523	}
524	if (!isset($config->name)) {
525	$config->name = "";
526	}
527	if (!isset($config->user)) {
528	$config->user = "";
529	}
530	if (!isset($config->pass)) {
531	$config->pass = "";
532	}
533	if (!isset($config->table)) {
534	$config->table = "";
535	}
536	if (!isset($config->fielduser)) {
537	$config->fielduser = "";
538	}
539	if (!isset($config->fieldpass)) {
540	$config->fieldpass = "";
541	}
542	if (!isset($config->passtype)) {
543	$config->passtype = "plaintext";
544	}
545	if (!isset($config->changepasswordurl)) {
546	$config->changepasswordurl = '';
547	}
548
549	// save settings
550	set_config('host', $config->host, 'auth/db');
551	set_config('type', $config->type, 'auth/db');
552	set_config('name', $config->name, 'auth/db');
553	set_config('user', $config->user, 'auth/db');
554	set_config('pass', $config->pass, 'auth/db');
555	set_config('table', $config->table, 'auth/db');
556	set_config('fielduser', $config->fielduser, 'auth/db');
557	set_config('fieldpass', $config->fieldpass, 'auth/db');
558	set_config('passtype', $config->passtype, 'auth/db');
559	set_config('changepasswordurl', $config->changepasswordurl, 'auth/db');
560
561	return true;
562	}
563
564	}
565
566	?>