clone from ldap_login_for_asia
This commit is contained in:
parent
9c0ee4a4cd
commit
98a95218f7
|
@ -1,37 +1,25 @@
|
||||||
module LdapLogin::Login
|
module LdapLogin::Login
|
||||||
require 'net/ldap'
|
LDAP_ADSERVER="https://ap99.mdu.edu.tw/MduDB/api/Auth/token/1"
|
||||||
LDAP_ADSERVER=["ad.asia.edu.tw","ad2.asia.edu.tw","ad3.asia.edu.tw"]
|
AppKey = "YhoRop0YmL6"
|
||||||
def ldap_login_auth(user,request,session,flash,params)
|
def ldap_login_auth(user,request,session,flash,params)
|
||||||
ldap_hosts = LDAP_ADSERVER.shuffle
|
ldap_hosts = LDAP_ADSERVER.shuffle
|
||||||
error = ''
|
error = ''
|
||||||
ldap_user = params[:user_name]
|
ldap_user = params[:user_name]
|
||||||
ldap_pass = params[:password]
|
ldap_pass = params[:password]
|
||||||
login_flag = false
|
login_flag = false
|
||||||
_session = {'ad' => []}
|
|
||||||
url = '/'
|
url = '/'
|
||||||
url_method = 'redirect_to'
|
url_method = 'redirect_to'
|
||||||
ldap_hosts.each do |ldap_host|
|
|
||||||
begin
|
uri = URI(LDAP_ADSERVER)
|
||||||
ldap = Net::LDAP.new
|
req = Net::HTTP::Post.new(uri, 'Content-Type' => 'application/json')
|
||||||
ldap.host = ldap_host
|
req.body = {AppKey: AppKey,username: ldap_user,password: ldap_pass}.to_json
|
||||||
ldap.port = 389
|
res = Net::HTTP.start(uri.hostname, uri.port) do |http|
|
||||||
ldap.auth "#{ldap_user}@asia.edu.tw", ldap_pass
|
http.request(req)
|
||||||
if ldap.bind
|
end
|
||||||
|
|
||||||
|
if res.code == '200' && JSON.load(res.body)["userID"]==ldap_user
|
||||||
if !user.nil?
|
if !user.nil?
|
||||||
#filter = Net::LDAP::Filter.eq( "sAMAccountName", ldap_user )
|
session[:user_id] = ldap_user
|
||||||
#treebase = "ou=Asia Univ,dc=asia,dc=edu,dc=tws"
|
|
||||||
#puts "==LDAP SEARCH START=="
|
|
||||||
#ldap.search( :base => treebase, :filter => filter, :return_result => false ) do |entry|
|
|
||||||
# puts "DN: #{entry.dn}"
|
|
||||||
# entry.each do |attribute, values|
|
|
||||||
# puts " #{attribute}:"
|
|
||||||
# values.each do |value|
|
|
||||||
# puts " --->#{value}"
|
|
||||||
# end
|
|
||||||
# end
|
|
||||||
#end
|
|
||||||
puts "==LDAP SEARCH END=="
|
|
||||||
session[:user_id] = user.id
|
|
||||||
session[:login_referer] = nil
|
session[:login_referer] = nil
|
||||||
if params[:referer_url]
|
if params[:referer_url]
|
||||||
url = URI.parse(params[:referer_url]).path
|
url = URI.parse(params[:referer_url]).path
|
||||||
|
@ -47,17 +35,7 @@ module LdapLogin::Login
|
||||||
else
|
else
|
||||||
error = '驗證失敗,您輸入的使用者名稱或密碼不正確!'
|
error = '驗證失敗,您輸入的使用者名稱或密碼不正確!'
|
||||||
end
|
end
|
||||||
break
|
|
||||||
rescue => e
|
|
||||||
if !e.class==Net::LDAP::ConnectionError
|
|
||||||
error = '發生不可預知的錯誤'
|
|
||||||
puts ['ldap',error,e]
|
|
||||||
break
|
|
||||||
else
|
|
||||||
error = 'Could not connect to AD server.'
|
|
||||||
end
|
|
||||||
end
|
|
||||||
end
|
|
||||||
if !login_flag
|
if !login_flag
|
||||||
flash.now.alert = error.html_safe
|
flash.now.alert = error.html_safe
|
||||||
url = 'new'
|
url = 'new'
|
||||||
|
|
Loading…
Reference in New Issue