*/
public static function getFilter()
{
- return '(&(' . self::ATTRIBUTE_CN . '=*)(' . self::ATTRIBUTE_OC . '=' . self::OBJECTCLASS_INETORGPERSON . ')(!(' . self::ATTRIBUTE_UID . '=manager))(' . self::ATTRIBUTE_SN . '=*))';
+ if (isset($conf['kolab']['server']['params']['admin'][self::ATTRIBUTE_SID])) {
+ $manager = $conf['kolab']['server']['params']['admin'][self::ATTRIBUTE_SID];
+ } else {
+ $manager = 'manager';
+ }
+
+ $criteria = array('AND' => array(
+ array('field' => self::ATTRIBUTE_CN,
+ 'op' => '=',
+ 'test' => '*'),
+ array('field' => self::ATTRIBUTE_SN,
+ 'op' => '=',
+ 'test' => '*'),
+ array('field' => self::ATTRIBUTE_OC,
+ 'op' => '=',
+ 'test' => self::OBJECTCLASS_INETORGPERSON),
+ array('NOT' => array(
+ array('field' => self::ATTRIBUTE_SID,
+ 'op' => '=',
+ 'test' => $manager),
+ ),
+ ),
+ ),
+ );
+ return $criteria;
}
/**
*
* @return boolean|PEAR_Error True on success.
*/
- public function save($info)
+ public function save($info = null)
{
- $admins_uid = sprintf('%s,%s', $this->required_group,
- $this->server->getBaseUid());
+ $admin_group = new Horde_Kolab_Server_Object_Kolabgroupofnames($this->server, null, $this->required_group);
$save_result = parent::save($info);
- $admin_group = $this->server->fetch($admins_uid,
- 'Horde_Kolab_Server_Object_Kolabgroupofnames');
if (!$admin_group->exists()) {
-
- $members = array($this->uid);
-
- //FIXME: This is not okay and also contains too much LDAP knowledge
- $parts = split(',', $this->required_group);
- list($groupname) = sscanf($parts[0], 'cn=%s');
-
- $this->createAdminroleGroup($groupname, $members);
+ $data = array_merge($this->required_group,
+ array(Horde_Kolab_Server_Object_Kolabgroupofnames::ATTRIBUTE_MEMBER => array($this->uid)));
} else {
$result = $admin_group->isMember($this->uid);
if ($result === false) {
$members = $admin_group->getMembers();
$members[] = $this->uid;
- $admin_group->save(array(Horde_Kolab_Server_Object_Kolabgroupofnames::ATTRIBUTE_MEMBER => $members));
+ $data = array(Horde_Kolab_Server_Object_Kolabgroupofnames::ATTRIBUTE_MEMBER => $members);
+ } else {
+ $data = null;
}
}
+ if (!empty($data)) {
+ return $admin_group->save($data);
+ }
return $save_result;
}
-
- /**
- * Create a required group to represent the admin role.
- *
- * @param string $groupname The name of the group.
- * @param array $members The initial members.
- *
- * @return boolean True on success.
- */
- protected function createAdminroleGroup($groupname, $members)
- {
- $result = $this->server->add(array('type' => 'Horde_Kolab_Server_Object_Kolabgroupofnames',
- self::ATTRIBUTE_CN => $groupname,
- Horde_Kolab_Server_Object_Kolabgroupofnames::ATTRIBUTE_MEMBER => $members,
- Horde_Kolab_Server_Object_Kolabgroupofnames::ATTRIBUTE_VISIBILITY => false));
- return true;
- }
}
class Horde_Kolab_Server_Object_Kolab_Domainmaintainer extends Horde_Kolab_Server_Object_Kolab_Adminrole
{
- const ATTRIBUTE_DOMAIN = 'domain';
+ const ATTRIBUTE_DOMAIN = 'domain';
/**
* A structure to initialize the attribute structure for this class.
* The group the UID must be member of so that this object really
* matches this class type. This may not include the root UID.
*
- * @var string
+ * @var array
*/
- protected $required_group = 'cn=domain-maintainer,cn=internal';
+ protected $required_group = array(self::ATTRIBUTE_CN => 'domain-maintainer',
+ Horde_Kolab_Server_Object_Kolabgroupofnames::ATTRIBUTE_VISIBILITY => false);
/**
* Convert the object attributes to a hash.
*
* @return boolean|PEAR_Error True on success.
*/
- public function save($info)
+ public function save($info = null)
{
foreach ($info[self::ATTRIBUTE_DOMAIN] as $domain) {
$domain_uid = sprintf('cn=%s,cn=domain,cn=internal,%s',
projects / horde.git / commitdiff