CakePHP 3 Ldap身份验证问题和澄清

时间:2015-09-15 23:57:58

标签: php cakephp authentication cakephp-3.0

我正在努力在我的项目中集成LDAP身份验证。我从官方的CakePHP网站上学习了教程,该网站指导如何在应用程序src路径中创建自定义对象并在AuthController中使用这些自定义对象。

所以我在src中创建了一个名为Auth的文件夹,文件名为LdapAuthorize.php。路径看起来像这个src / Auth / LdapAuthorize.php

这是我的LdapAuthorize.php代码:

namespace App\Auth;

use Cake\Auth\BaseAuthorize;
use Cake\Network\Request;

class LdapAuthorize extends BaseAuthorize {
    public function authorize($user, Request $request) {
        if ($user == 'username') { // where username is logged on ldap user on a computer.
            return true;
        }
    }
}

我还在AppController.php文件中调用了该对象。这是我的代码:

public function initialize()
{
    parent::initialize();
    $this->loadComponent('Flash');
    $this->loadComponent('Auth', [
        'loginRedirect' => [
            'controller' => 'Customers',
            'action' => 'index'
        ],
        'logoutRedirect' => [
            'controller' => 'Pages',
            'action' => 'display',
            'home'
        ]
    ]);      
    $this->Auth->config('authenticate', [
        'Ldap'
    ]);
}

因此,当我访问网址http://localhost/AppPath/Dashboard/index时,我得到Authentication adapter "Ldap" was not found.

由于这是我第一次使用CakePHP,我无法在网上找到许多有助于解决任何问题的解决方案。

为LdapAuthenticate.php添加其他代码:

namespace App\Auth;

use Cake\Auth\BaseAuthenticate;
use Cake\Network\Request;
use Cake\Network\Response;

class OpenidAuthenticate extends BaseAuthenticate
{
    public function authenticate(Request $request, Response $response)
    {
        $users = ["john", "ray"];
        return $users;
    }
}

2 个答案:

答案 0 :(得分:3)

您需要的是custom authentication adapter,您的LdapAuthorize是custom authorize adapter

// in src/Auth/LdapAuthenticate.php

namespace App\Auth;

use Cake\Auth\BaseAuthenticate;
use Cake\Network\Request;
use Cake\Network\Response;

class LdapAuthenticate extends BaseAuthenticate {

    protected $_host = 'your_ldap_server' ;

    public function authenticate(Request $request, Response $response) {
        $username = $request->data['username'] ;
        $password = $request->data['password'] ;
        $ds = @ldap_connect($this->_host) ;
        if (!$ds) {
            throw \Cake\Error\FatalErrorException ('Unable to connect to LDAP host.') ;
        }
        $basedn = "your ldap query... "
        $dn = "uid=$username, ".$basedn;
        $ldapbind = @ldap_bind($ds, $dn, $password);
        if (!$ldapbind) {
            return false ;
        }
        // Do whatever you want with your LDAP connection... 
        $entry = ldap_first_entry ($ldapbind) ;
        $attrs = ldap_get_attributes ($ldapbind, $entry) ;
        $user  = [] ;
        // Loop
        for ($i = 0 ; $i < $attrs["count"] ; $i++) {
            $user[$attrs[$i]] = ldap_values ($ldapbind, $entry, $attrs[$i])[0] ;
        }
        // Then close it and return the authenticated user
        ldap_unbind ($ldapbind) ;
        ldap_close ($ldapbind);
        return $user ;
    }

}

答案 1 :(得分:2)

创建上面建议的自定义身份验证适配器后,我仍然遇到同样的错误。

我解决了它的变化
namespace App\Auth;

代表

namespace Cake\Auth;

在LdapAuthenticate.php

相关问题
最新问题