tbg_smf_auth

@@ -0,0 +1,19 @@

+SMF Authenication for The Bug Genie

+

+Allows The Bug Genie to autenicate with a running SMF installation.

+

+Author:

+Jeremy Darwood

+

+Copyright:

+2011 Jeremy Darwood. All rights reserved.

+

+Disclaimer:

+This package is provided "as is" and without any warranty. Any express or implied warranties, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose are disclaimed. In no event shall the authors be liable to any party for any direct, indirect, incidental, special, exemplary, or consequential damages arising in any way out of the use or misuse of this package.

+

+License:

+Redistribution and use in source and binary forms, with or without modification, are permitted provided that the following conditions are met:

+[] Redistributions of source code must retain the above copyright notice, this list of conditions and the following disclaimers.

+[] Redistributions in binary form must reproduce the above copyright notice, this list of conditions and the following disclaimers in the documentation and/or other materials provided with the distribution.

+[] Names of Author(s) may not be used to endorse or promote products derived from this Software without specific prior written permission.

+

@@ -0,0 +1 @@

+SMFAuth|1.0

\ No newline at end of file

@@ -0,0 +1,238 @@

+<?php

+

+	/**

+	 * SMF Authentication

+	 *

+	 * @author Jeremy Darwood

+	 * @license BSD

+	 * @copyright: 2011 Jeremy Darwood

+	 *

+	 * @version 0.1

+	 * @package auth_smf

+	 * @subpackage core

+	 */

+

+	/**

+	 * SMF Authentication

+	 *

+	 * @package auth_smf

+	 * @subpackage core

+	 */

+	class SMFAuth extends TBGModule

+	{

+		protected $_longname = 'SMF Authentication';

+		protected $_description = 'Allows authentication with a working SMF 2.0+ installtion';

+		protected $_module_config_title = 'SMF Authentication';

+		protected $_module_config_description = 'Configure server connection settings';

+		protected $_module_version = '0.1';

+		protected $_has_config_settings = true;

+

+		/**

+		 * Return an instance of this module

+		 *

+		 * @return SMF Authentication

+		 */

+		public static function getModule()

+		{

+			return TBGContext::getModule('auth_smf');

+		}

+

+		protected function _initialize()

+		{

+		}

+		

+		protected function _addRoutes()

+		{

+			$this->addRoute('smf_login', '/login/smf', 'autoLogin');

+

+		}

+

+		protected function _install($scope)

+		{

+		}

+

+		protected function _uninstall()

+		{

+		}

+		

+		public final function getType()

+		{

+			return parent::MODULE_AUTH;

+		}

+

+		public function getRoute()

+		{

+			return TBGContext::getRouting()->generate('smf_authentication_index');

+		}

+

+		/**

+		 * Handles saving the settings correctly.

+		 *

+		 */

+		public function postConfigSettings(TBGRequest $request)

+		{

+			$settings = array('ssi_location', 'login_groups', 'admin_groups', 'enabled_groups', 'access_groups', 'password_salt');

+			foreach ($settings as $setting)

+			{

+				if ($request->hasParameter($setting))

+				{

+					if (in_array($setting, array('login_groups', 'enabled_groups', 'access_groups', 'admin_groups')))

+						$value = serialize($request->getParameter($setting));

+					else

+						$value = $request->getParameter($setting);

+

+					$this->saveSetting($setting, $value);

+				}

+			}

+		}

+

+		/**

+		 * Attempts to connect to SMF.

+		 * @note: This could in the future detect SMF offline and disable integration.

+		 *

+		 */

+		public function connect()

+		{

+			$ssi_loc = $this->getSetting('ssi_location');

+

+			// Ignore errors about SMF trying to be pre-PHP 5.3 compatible.

+			try

+			{

+				require_once($ssi_loc . '/SSI.php');

+			}

+			catch (Exception $e)

+			{

+				// This ends SMF from trying to do url rewriting and fixes a loading issue in TBG.

+				ob_end_clean();

+			}

+

+			return true;

+		}

+		

+		public function bind()

+		{

+		}

+		

+		public function escape($string)

+		{

+		}

+

+		/**

+		 * Does the actual login by checking you have a valid SMF session.

+		 *

+		 */

+		public function doLogin($username, $password, $mode = 1)

+		{

+			global $user_info;

+

+			$ssi_loc = $this->getSetting('ssi_location');

+

+			// Ignore errors about SMF trying to be pre-PHP 5.3 compatible.

+			try

+			{

+				require_once($ssi_loc . '/SSI.php');

+			}

+			catch (Exception $e)

+			{

+				// This ends SMF from trying to do url rewriting and fixes a loading issue in TBG.

+				ob_end_clean();

+

+				// Because of the exception we caught from a deprecated warning, we have to call this manually.

+				loadUserSettings();

+			}

+

+			$logingroups = unserialize($this->getSetting('login_groups'));

+			$admingroups = unserialize($this->getSetting('admin_groups'));

+			$salt = $this->getSetting('password_salt');

+			$accessgroups = unserialize($this->getSetting('access_groups'));

+

+			// Are they even allowed to login?

+			if (!empty($logingroups) && !empty($logingroups[0]) && array_intersect($logingroups, $user_info['groups']) == array())

+				throw new Exception(TBGContext::getI18n()->__('You are not a member of a group allowed to log in'));

+

+			// Try to get the user.

+			$user = TBGUser::getByUsername($user_info['username']);

+			if ($user instanceof TBGUser)

+			{

+				if (time() - $this->getSetting('smf_auth_updated', $user->getID())> 3600)

+				{

+					$user->setBuddyname($user_info['username']);

+					$user->setRealname($user_info['name']);

+					$user->setPassword($user->getJoinedDate() . $user_info['username'] . $salt); // update password

+					$user->setEmail($user_info['email']); // update email address

+					$user->save();

+				}

+			}

+			else

+			{

+				// Only do this on the initial login.

+				if ($mode == 1)

+				{						

+					// create user

+					$user = new TBGUser();

+					$user->setUsername($user_info['username']);

+					$user->setRealname($user_info['name']);

+					$user->setBuddyname($user_info['username']);

+					$user->setEmail($user_info['email']);

+					$user->setEnabled();

+					$user->setActivated();

+					$user->setJoined();

+					$user->setPassword($user->getJoinedDate() . $user_info['username'] . $salt);

+					$user->save();

+				}

+				else

+					throw new Exception('User does not exist in TBG');

+			}

+

+			// Lets only do this every once in a while.

+			if (time() - $this->getSetting('smf_auth_updated', $user->getID())> 3600)

+			{

+				// Nobody admins the admins.

+				if (!empty($admingroups) && array_intersect($admingroups, $user_info['groups']))

+				{

+					$group = new TBGGroup();

+					$group->setID(1);

+					$user->setGroup($group);

+				}

+				else

+				{

+					$group = new TBGGroup();

+					$group->setID(2);

+					$user->setGroup($group);

+				}

+

+				// Give them the access they need!

+				if (!empty($accessgroups))

+				{

+					// First, clear out current teams.

+					$user->clearTeams();

+

+					// Then add back the ones they should be in.

+					foreach ($accessgroups as $smf_id => $tbg_groups)

+						if (in_array($smf_id, $user_info['groups']))

+							foreach ($tbg_groups as $tbgroup)

+							{

+								$team = new TBGTeam();

+								$team->setID($tbgroup);

+								$user->addToTeam($team);

+							}

+				}

+

+				// Update the time stamp so we don't keep doing this every page load.

+				$this->saveSetting('smf_auth_updated', time(), $user->getID());

+			}

+

+			// Set the cookies.

+			TBGContext::getResponse()->setCookie('tbg3_username', $user_info['username']);

+			TBGContext::getResponse()->setCookie('tbg3_password', TBGUser::hashPassword($user->getJoinedDate() . $user_info['username'] . $salt));

+

+			return TBGUsersTable::getTable()->getByUsername($user_info['username']);

+		}

+

+		public function verifyLogin($username)

+		{

+			// Most likely not the best idea to pass mode of 1, but it allows the direct login method to work.

+			return $this->doLogin($username, 'a', 1);

+		}

+	}

+

@@ -0,0 +1,68 @@

+<?php

+	/**

+	 * SMF Authentication

+	 *

+	 * @author Jeremy Darwood

+	 * @license BSD

+	 * @copyright: 2011 Jeremy Darwood

+	 *

+	 * @version 0.1

+	 * @package auth_smf

+	 * @subpackage core

+	 */

+

+	/**

+	 * action components for the smf_authentication module

+	 */

+	class auth_smfActionComponents extends TBGActionComponent

+	{

+		public function componentSettings()

+		{

+			global $smcFunc;

+

+			$ssi_loc = TBGContext::getModule('auth_smf')->getSetting('ssi_location');

+

+			// New setups we default the group and create a random hash.

+			if (empty($ssi_loc))

+			{

+				$this->smf_groups = array();

+				$this->new_salt = substr(sha1(mt_rand() . time()), rand(0, 3), rand(7, 9));

+

+				return;

+			}

+

+			// Ignore errors about SMF trying to be pre-PHP 5.3 compatible.

+			try

+			{

+				require_once($ssi_loc . '/SSI.php');

+			}

+			catch (Exception $e)

+			{

+				// This ends SMF from trying to do url rewriting and fixes a loading issue in TBG.

+				ob_end_clean();

+			}

+

+ 			if (!isset($smcFunc, $smcFunc['db_query']))

+			{

+				$this->smf_groups = array();

+				return;

+			}

+

+			// Load up the SMF groups.

+			$request = $smcFunc['db_query']('', '

+				SELECT id_group, group_name

+				FROM {db_prefix}membergroups

+				WHERE min_posts = {int:min_posts}',

+				array(

+					'min_posts' => -1,

+			));

+

+			$smf_groups = array();

+			while ($row = $smcFunc['db_fetch_assoc']($request))

+				$smf_groups[$row['id_group']] = $row['group_name'];

+			$smcFunc['db_free_result']($request);

+

+			$this->smf_groups = $smf_groups;

+		}

+	}

+

@@ -0,0 +1,31 @@

+<?php

+	/**

+	 * SMF Authentication

+	 *

+	 * @author Jeremy Darwood

+	 * @license BSD

+	 * @copyright: 2011 Jeremy Darwood

+	 *

+	 * @version 0.1

+	 * @package auth_smf

+	 * @subpackage core

+	 */

+

+	/**

+	 * actions for the smf_authentication module

+	 */

+	class auth_smfActions extends TBGAction

+	{

+

+		/**

+		 * Test the SMF connection

+		 *

+		 * @param TBGRequest $request

+		 */

+		public function runAutoLogin(TBGRequest $request)

+		{

+			TBGContext::getModule('auth_smf')->verifyLogin($request->getParameter('tbg3_username'));

+

+			$this->forward(TBGContext::getRouting()->generate('home'));

+		}

+	}

@@ -0,0 +1 @@

+SMF Authentication - Allows authentication against a working SMF 2.0 installation.

\ No newline at end of file

@@ -0,0 +1,143 @@

+<?php

+$login_groups = $module->getSetting('login_groups');

+$login_groups = !empty($login_groups) ? unserialize($login_groups) : array();

+

+$admin_groups = $module->getSetting('admin_groups');

+$admin_groups = !empty($admin_groups) ? unserialize($admin_groups) : array();

+

+$enabled_groups = $module->getSetting('enabled_groups');

+$enabled_groups = !empty($enabled_groups) ? unserialize($enabled_groups) : array();

+

+$access_groups = $module->getSetting('access_groups');

+$access_groups = !empty($access_groups) ? unserialize($access_groups) : array();

+

+$TBGgroups = TBGTeam::getAll();

+

+

+echo '<p>', __('Use this page to set up the connection details for your SMF Authenication. It is highly recommended that you read the online help before use, as misconfiguration may prevent you from accessing configuration pages to rectify issues.'), '</p>

+<div class="rounded_box yellow" style="margin-top: 5px">

+	<div class="header">', __('Important information'), '</div>

+	<p>', __('When you enable SMF Authenication as your authentication backend in Authentication configuration, you will lose access to all accounts which do not also exist in your SMF installation. This may mean you lose administrative access.'), '</p>

+	<p style="font-weight: bold; padding-top: 5px">', __('To resolve this issue, create a user with the same username as exists in SMF and make that one an administrator on TBG.'), '</p>

+</div>

+<form accept-charset="', TBGContext::getI18n()->getCharset(), '" action="', make_url('configure_module', array('config_module' => $module->getName())), '" enctype="multipart/form-data" method="post">

+	<div class="rounded_box borderless mediumgrey', $access_level == TBGSettings::ACCESS_FULL ? ' cut_bottom' : '', '" style="margin: 10px 0 0 0; width: 700px;', $access_level == TBGSettings::ACCESS_FULL ? ' border-bottom: 0;' : '', '">

+		<div class="header">', __('Connection details'), '</div>

+		<table style="width: 680px;" class="padded_table" cellpadding=0 cellspacing=0 id="smf_settings_table">

+			<tr>

+				<td style="padding: 5px;"><label for="ssi_location">', __('SSI Location'), '</label></td>

+				<td><input type="text" name="ssi_location" id="ssi_location" value="', $module->getSetting('ssi_location'), '" style="width: 100%;"></td>

+			</tr>

+			<tr>

+				<td class="config_explanation" colspan="2">', __('Location of your SMF 2.0+ installtion as absolute path on your server ie: /home/user/public_html/smf'), '</td>

+			</tr>

+

+			<tr>

+				<td style="padding: 5px;"><label for="password_salt">', __('Password Salt'), '</label></td>

+				<td><input type="text" name="password_salt" id="password_salt" value="';

+

+$salt = $module->getSetting('password_salt');

+if (empty($salt) && isset($new_salt))

+	echo $new_salt;

+else

+	echo $salt;

+

+	echo '" style="width: 100%;"></td>

+			</tr>

+			<tr>

+				<td class="config_explanation" colspan="2">', __('A random unique set of characters'), '</td>

+			</tr>

+

+

+			<tr>

+				<td style="padding: 5px;"><label for="login_groups">', __('Login Groups'), '</label></td>

+				<td><select name="login_groups[]" id="login_groups" multiple="multiple" style="width: 100%; height: 10em;">

+					<option value="0"', (empty($login_groups) || in_array(0, $login_groups)  ? ' selected="selected"' : ''), '>All groups</option>';

+

+foreach ($smf_groups as $id_group => $name)

+	echo '

+					<option value="', $id_group, '"', (!empty($login_groups) && in_array($id_group, $login_groups) ? ' selected="selected"' : ''), '>', $name, '</option>';

+

+echo '</select></td>

+			</tr>

+			<tr>

+				<td class="config_explanation" colspan="2">', __('Limit logins to selected groups, all others are annoymous users'), '</td>

+			</tr>

+

+

+			<tr>

+				<td style="padding: 5px;"><label for="admin_groups">', __('Administrator Groups'), '</label></td>

+				<td><select name="admin_groups[]" id="admin_groups" multiple="multiple" style="width: 100%; height: 10em;">';

+

+foreach ($smf_groups as $id_group => $name)

+	echo '

+					<option value="', $id_group, '"', (!empty($admin_groups) && in_array($id_group, $admin_groups) ? ' selected="selected"' : ''), '>', $name, '</option>';

+

+echo '</select></td>

+			</tr>

+			<tr>

+				<td class="config_explanation" colspan="2">', __('Limit logins to selected groups, all others are annoymous users'), '</td>

+			</tr>

+

+

+			<tr>

+				<td style="padding: 5px;"><label for="enabled_groups">', __('Enabled Access Groups'), '</label></td>

+				<td><select name="enabled_groups[]" id="enabled_groups" multiple="multiple" style="width: 100%; height: 10em;">';

+

+foreach ($smf_groups as $id_group => $name)

+	echo '

+					<option value="', $id_group, '"', (!empty($enabled_groups) && in_array($id_group, $enabled_groups) ? ' selected="selected"' : ''), '>', $name, '</option>';

+

+echo '</select></td>

+			</tr>

+			<tr>

+				<td class="config_explanation" colspan="2">', __('Select groups you wish to grant groups/teams on TBG'), '</td>

+			</tr>

+		</table>

+	</div>';

+

+if ($access_level == TBGSettings::ACCESS_FULL)

+	echo '

+	<div class="rounded_box iceblue borderless cut_top" style="margin: 0 0 5px 0; width: 700px; border-top: 0; padding: 8px 5px 2px 5px; height: 25px;">

+		<div style="float: left; font-size: 13px; padding-top: 2px;">', __('Click "%save%" to save the settings', array('%save%' => __('Save'))), '</div>

+		<input type="submit" id="submit_settings_button" style="float: right; padding: 0 10px 0 10px; font-size: 14px; font-weight: bold;" value="', __('Save'), '">

+	</div>';

+

+echo '

+	<div class="rounded_box borderless mediumgrey', $access_level == TBGSettings::ACCESS_FULL ? ' cut_bottom' : '', '" style="margin: 10px 0 0 0; width: 700px;', $access_level == TBGSettings::ACCESS_FULL ? ' border-bottom: 0;' : '', '">

+		<div class="header">', __('Group Access'), '</div>

+		<table style="width: 680px;" class="padded_table" cellpadding=0 cellspacing=0 id="smf_settings_table">';

+

+if (!empty($enabled_groups))

+foreach ($enabled_groups as $smf_id)

+{

+	// Doesn't exist anymore, we can't save those settings.

+	if (!isset($smf_groups[$smf_id]))

+		continue;

+

+	echo '

+			<tr>

+				<td style="padding: 5px;"><label for="access_groups[', $smf_id, ']">SMF: ', $smf_groups[$smf_id], '</label></td>

+				<td><select name="access_groups[', $smf_id, '][]" id="access_groups[', $smf_id, ']" multiple="multiple" style="width: 100%; height: 10em;">';

+

+	foreach ($TBGgroups as $id_group => $group)

+		echo '

+					<option value="', $id_group, '"', (!empty($access_groups[$smf_id]) && in_array($id_group, $access_groups[$smf_id]) ? ' selected="selected"' : ''), '>', $group->getName(), '</option>';

+

+	echo '</select></td>

+			</tr>';

+}

+

+echo '

+		</table>

+	</div>';

+

+if ($access_level == TBGSettings::ACCESS_FULL)

+	echo '

+	<div class="rounded_box iceblue borderless cut_top" style="margin: 0 0 5px 0; width: 700px; border-top: 0; padding: 8px 5px 2px 5px; height: 25px;">

+		<div style="float: left; font-size: 13px; padding-top: 2px;">', __('Click "%save%" to save the settings', array('%save%' => __('Save'))), '</div>

+		<input type="submit" id="submit_settings_button" style="float: right; padding: 0 10px 0 10px; font-size: 14px; font-weight: bold;" value="', __('Save'), '">

+	</div>';

+

+echo '

+</form>';

\ No newline at end of file