created config fuction with options, error code cleanup and function rename
This commit is contained in:
parent
42aab9d2e6
commit
ba6349c6ae
1 changed files with 44 additions and 34 deletions
|
|
@ -8,27 +8,41 @@ Author: Fedora Infrastructure Team
|
||||||
Author URI: http://fedoraproject.org/wiki/Infrastructure
|
Author URI: http://fedoraproject.org/wiki/Infrastructure
|
||||||
*/
|
*/
|
||||||
|
|
||||||
|
// overriding wp_authenticate
|
||||||
|
if(!function_exists('wp_authenticate')) :
|
||||||
|
|
||||||
// let's disable a few things
|
// let's disable a few things
|
||||||
add_action('lost_password', 'disable_function');
|
add_action('lost_password', 'disable_function');
|
||||||
add_action('retrieve_password', 'disable_function');
|
add_action('retrieve_password', 'disable_function');
|
||||||
add_action('password_reset', 'disable_function');
|
add_action('password_reset', 'disable_function');
|
||||||
|
|
||||||
|
|
||||||
// overriding wp_authenticate
|
/*
|
||||||
if(!function_exists('wp_authenticate')) :
|
* Configuration Options
|
||||||
|
*/
|
||||||
|
function fasauth_config(){
|
||||||
|
|
||||||
|
$config['fas_json_url'] = 'http://publictest3.fedoraproject.org/accounts/json/person_by_username?tg_format=json';
|
||||||
|
$config['fas_redir_pass_reset'] = 'https://admin.fedoraproject.org/accounts/user/resetpass';
|
||||||
|
$config['fas_email_domain'] = 'fedoraproject.org';
|
||||||
|
|
||||||
|
return $config;
|
||||||
|
}
|
||||||
|
|
||||||
|
/*
|
||||||
|
* FAS Authentication
|
||||||
|
*/
|
||||||
function wp_authenticate($username, $password) {
|
function wp_authenticate($username, $password) {
|
||||||
|
|
||||||
|
$config = fasauth_config();
|
||||||
|
|
||||||
$username = sanitize_user($username);
|
$username = sanitize_user($username);
|
||||||
|
|
||||||
if ($username == '' || $password == '') {
|
|
||||||
return new WP_Error('empty_username', __('<strong>ERROR</strong>: The username or password field is empty.'));
|
|
||||||
}
|
|
||||||
|
|
||||||
$ch = curl_init();
|
$ch = curl_init();
|
||||||
curl_setopt($ch, CURLOPT_URL, 'http://publictest3.fedoraproject.org/accounts/json/person_by_username?tg_format=json');
|
curl_setopt($ch, CURLOPT_URL, $config['fas_json_url']);
|
||||||
curl_setopt($ch, CURLOPT_POST, 1);
|
curl_setopt($ch, CURLOPT_POST, 1);
|
||||||
curl_setopt($ch, CURLOPT_USERAGENT, "Auth_FAS 0.9");
|
curl_setopt($ch, CURLOPT_USERAGENT, "Auth_FAS 0.9");
|
||||||
curl_setopt($ch, CURLOPT_POSTFIELDS, "username=".$username."&user_name=".$username."&password=".$password."&login=Login");
|
curl_setopt($ch, CURLOPT_POSTFIELDS, "username=".urlencode($username)."&user_name=".urlencode($username)."&password=".urlencode($password)."&login=Login");
|
||||||
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
|
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
|
||||||
curl_setopt($ch, CURLOPT_VERBOSE, 1);
|
curl_setopt($ch, CURLOPT_VERBOSE, 1);
|
||||||
$fasuserdata = json_decode(curl_exec($ch), true);
|
$fasuserdata = json_decode(curl_exec($ch), true);
|
||||||
|
|
@ -37,13 +51,10 @@ function wp_authenticate($username, $password) {
|
||||||
// fas login successful
|
// fas login successful
|
||||||
if (isset($fasuserdata["success"]) && $fasuserdata['person']['status'] == 'active') {
|
if (isset($fasuserdata["success"]) && $fasuserdata['person']['status'] == 'active') {
|
||||||
|
|
||||||
// check minimum group requirements
|
// check minimum requirements
|
||||||
if (check_grp_req($fasuserdata) !== true) {
|
if (check_login_requirement($fasuserdata) !== true) {
|
||||||
return new WP_Error('incorrect_password', __('<strong>Error</strong>: You do not meet minimum requirements to login.'));
|
return new WP_Error('fasauth_min_requirement', __('<strong>Error</strong>: You do not meet minimum requirements to login.'));
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|
||||||
//echo "Min response: ".$min_req;
|
|
||||||
|
|
||||||
// let's check wp db for user
|
// let's check wp db for user
|
||||||
$user = get_userdatabylogin($username);
|
$user = get_userdatabylogin($username);
|
||||||
|
|
@ -52,7 +63,7 @@ function wp_authenticate($username, $password) {
|
||||||
if ( !$user || ($user->user_login != $username) ) {
|
if ( !$user || ($user->user_login != $username) ) {
|
||||||
$user_id = create_wp_user($username);
|
$user_id = create_wp_user($username);
|
||||||
if (!$user_id) {
|
if (!$user_id) {
|
||||||
return new WP_Error('incorrect_password', __('<strong>Error</strong>: Unable to create account. Please contact the webmaster.'));
|
return new WP_Error('fasauth_create_wp_user', __('<strong>Error</strong>: Unable to create account. Please contact the webmaster.'));
|
||||||
}
|
}
|
||||||
|
|
||||||
return new WP_User($user_id);
|
return new WP_User($user_id);
|
||||||
|
|
@ -62,17 +73,20 @@ function wp_authenticate($username, $password) {
|
||||||
return new WP_User($user->ID);
|
return new WP_User($user->ID);
|
||||||
|
|
||||||
} else {
|
} else {
|
||||||
return new WP_Error('incorrect_password', __('<strong>Status</strong>: FAS Login NOT successful.'));
|
return new WP_Error('fasauth_wrong_credentials', __('<strong>Error</strong>: FAS login unsuccessful.'));
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
// creates user in wp db
|
/*
|
||||||
|
* Creates user in wp db
|
||||||
|
*/
|
||||||
function create_wp_user($username) {
|
function create_wp_user($username) {
|
||||||
$password = '';
|
|
||||||
$email_domain = 'fedoraproject.org';
|
|
||||||
|
|
||||||
|
$config = fasauth_config();
|
||||||
|
|
||||||
|
$password = '';
|
||||||
require_once(WPINC . DIRECTORY_SEPARATOR . 'registration.php');
|
require_once(WPINC . DIRECTORY_SEPARATOR . 'registration.php');
|
||||||
return wpmu_create_user($username, $password, $username.'@'.$email_domain);
|
return wpmu_create_user($username, $password, $username.'@'.$config['fas_email_domain']);
|
||||||
}
|
}
|
||||||
|
|
||||||
/*
|
/*
|
||||||
|
|
@ -81,26 +95,23 @@ function create_wp_user($username) {
|
||||||
*/
|
*/
|
||||||
function disable_function() {
|
function disable_function() {
|
||||||
die('Feature disabled.');
|
die('Feature disabled.');
|
||||||
//return new WP_Error('disabled_feature', __('<strong>ERROR</strong>: This feature is disabled.'));
|
|
||||||
}
|
}
|
||||||
|
|
||||||
/*
|
/*
|
||||||
* checks minimum group requirements
|
* checks minimum login requirements
|
||||||
*/
|
*/
|
||||||
function check_grp_req($user) {
|
function check_login_requirement($user) {
|
||||||
|
|
||||||
$groups = $user["person"]["approved_memberships"];
|
$groups = $user["person"]["approved_memberships"];
|
||||||
|
|
||||||
//echo "Group: ". print_r($groups);
|
//echo "Group: ". print_r($groups);
|
||||||
|
|
||||||
// checking other group memberships
|
// checking other group memberships
|
||||||
$match = 0;
|
$match = 0;
|
||||||
$in_cla = false;
|
$in_cla_done = false;
|
||||||
for ($i = 0, $cnt = count($groups); $i < $cnt; $i++) {
|
for ($i = 0, $cnt = count($groups); $i < $cnt; $i++) {
|
||||||
|
|
||||||
// user must be in cla
|
// user must be in cla
|
||||||
if ($groups[$i]["name"] == "cla_done") {
|
if ($groups[$i]["name"] == "cla_done") {
|
||||||
$in_cla = true;
|
$in_cla_done = true;
|
||||||
}
|
}
|
||||||
|
|
||||||
// keep count of anything non-cla
|
// keep count of anything non-cla
|
||||||
|
|
@ -108,15 +119,14 @@ function check_grp_req($user) {
|
||||||
$match++;
|
$match++;
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
// yay, more than 1 non-cla group
|
// yay! more than in 1 non-cla group
|
||||||
if ($match > 0 and $in_cla) {
|
if ($match > 0 && $in_cla_done) {
|
||||||
return true;
|
return true;
|
||||||
}
|
}
|
||||||
|
|
||||||
// if all else fails
|
|
||||||
return false;
|
|
||||||
|
|
||||||
|
// requirements not met
|
||||||
|
return false;
|
||||||
}
|
}
|
||||||
|
|
||||||
endif;
|
endif;
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue