mirror of
https://github.com/YunoHost-Apps/wordpress_ynh.git
synced 2024-09-03 20:36:10 +02:00
150 lines
No EOL
7.7 KiB
PHP
150 lines
No EOL
7.7 KiB
PHP
<?php
|
|
global $SimpleLDAPLogin;
|
|
|
|
if( isset( $_GET[ 'tab' ] ) ) {
|
|
$active_tab = $_GET[ 'tab' ];
|
|
} else {
|
|
$active_tab = 'simple';
|
|
}
|
|
?>
|
|
<div class="wrap">
|
|
|
|
<div id="icon-themes" class="icon32"></div>
|
|
<h2>Simple LDAP Login Settings</h2>
|
|
|
|
<h2 class="nav-tab-wrapper">
|
|
<a href="<?php echo add_query_arg( array('tab' => 'simple'), $_SERVER['REQUEST_URI'] ); ?>" class="nav-tab <?php echo $active_tab == 'simple' ? 'nav-tab-active' : ''; ?>">Simple</a>
|
|
<a href="<?php echo add_query_arg( array('tab' => 'advanced'), $_SERVER['REQUEST_URI'] ); ?>" class="nav-tab <?php echo $active_tab == 'advanced' ? 'nav-tab-active' : ''; ?>">Advanced</a>
|
|
<a href="<?php echo add_query_arg( array('tab' => 'help'), $_SERVER['REQUEST_URI'] ); ?>" class="nav-tab <?php echo $active_tab == 'help' ? 'nav-tab-active' : ''; ?>">Help</a>
|
|
</h2>
|
|
|
|
<form method="post" action="<?php echo str_replace( '%7E', '~', $_SERVER['REQUEST_URI']); ?>">
|
|
<?php wp_nonce_field( 'save_sll_settings','save_the_sll' ); ?>
|
|
|
|
<?php if( $active_tab == "simple" ): ?>
|
|
<h3>Required</h3>
|
|
<p>These are the most basic settings you must configure. Without these, you won't be able to use Simple LDAP Login.</p>
|
|
<table class="form-table">
|
|
<tbody>
|
|
<tr>
|
|
<th scope="row" valign="top">Enable LDAP Authentication</th>
|
|
<td>
|
|
<input type="hidden" name="<?php echo $this->get_field_name('enabled'); ?>" value="false" />
|
|
<label><input type="checkbox" name="<?php echo $this->get_field_name('enabled'); ?>" value="true" <?php if( str_true($this->get_setting('enabled')) ) echo "checked"; ?> /> Enable LDAP login authentication for WordPress. (this one is kind of important)</label><br/>
|
|
</td>
|
|
<tr>
|
|
<tr>
|
|
<th scope="row" valign="top">Account Suffix</th>
|
|
<td>
|
|
<input type="text" name="<?php echo $this->get_field_name('account_suffix'); ?>" value="<?php echo $SimpleLDAPLogin->get_setting('account_suffix'); ?>" /><br/>
|
|
Often the suffix of your e-mail address. Example: @gmail.com
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">Base DN</th>
|
|
<td>
|
|
<input type="text" name="<?php echo $this->get_field_name('base_dn'); ?>" value="<?php echo $SimpleLDAPLogin->get_setting('base_dn'); ?>" />
|
|
<br/>
|
|
Example: For subdomain.domain.suffix, use DC=subdomain,DC=domain,DC=suffix. Do not specify an OU here.
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">Domain Controller(s)</th>
|
|
<td>
|
|
<input type="text" name="<?php echo $this->get_field_name('domain_controllers', 'array'); ?>" value="<?php echo join(';', (array)$SimpleLDAPLogin->get_setting('domain_controllers')); ?>" />
|
|
<br/>Separate with semi-colons.
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">LDAP Directory</th>
|
|
<td>
|
|
<label><input type="radio" name="<?php echo $this->get_field_name('directory'); ?>" value="ad" <?php if( $this->get_setting('directory') == "ad" ) echo "checked"; ?> /> Active Directory</label><br/>
|
|
<label><input type="radio" name="<?php echo $this->get_field_name('directory'); ?>" value="ol" <?php if( $this->get_setting('directory') == "ol" ) echo "checked"; ?> /> Open LDAP (and etc)</label>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table>
|
|
<p><input class="button-primary" type="submit" value="Save Settings" /></p>
|
|
<?php elseif ( $active_tab == "advanced" ): ?>
|
|
<h3>Typical</h3>
|
|
<p>These settings give you finer control over how logins work.</p>
|
|
<table class="form-table" style="margin-bottom: 20px;">
|
|
<tbody>
|
|
<tr>
|
|
<th scope="row" valign="top">Required Groups</th>
|
|
<td>
|
|
<input type="text" name="<?php echo $this->get_field_name('groups', 'array'); ?>" value="<?php echo join(';', (array)$SimpleLDAPLogin->get_setting('groups')); ?>" /><br/>
|
|
The groups, if any, that authenticating LDAP users must belong to. <br/>
|
|
Empty means no group required. Separate with semi-colons.
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">LDAP Exclusive</th>
|
|
<td>
|
|
<input type="hidden" name="<?php echo $this->get_field_name('high_security'); ?>" value="false" />
|
|
<label><input type="checkbox" name="<?php echo $this->get_field_name('high_security'); ?>" value="true" <?php if( str_true($this->get_setting('high_security')) ) echo "checked"; ?> /> Force all logins to authenticate against LDAP. Do NOT fallback to default authentication for existing users.<br/>Formerly known as high security mode.</label><br/>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">User Creations</th>
|
|
<td>
|
|
<input type="hidden" name="<?php echo $this->get_field_name('create_users'); ?>" value="false" />
|
|
<label><input type="checkbox" name="<?php echo $this->get_field_name('create_users'); ?>" value="true" <?php if( str_true($this->get_setting('create_users')) ) echo "checked"; ?> /> Create WordPress user for authenticated LDAP login with appropriate roles.</label><br/>
|
|
</td>
|
|
<tr>
|
|
<th scope="row" valign="top">New User Role</th>
|
|
<td>
|
|
<select name="<?php echo $this->get_field_name('role'); ?>">
|
|
<?php wp_dropdown_roles( strtolower($this->get_setting('role')) ); ?>
|
|
</select>
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table>
|
|
<hr />
|
|
<h3>Extraordinary</h3>
|
|
<p>Most users should leave these alone.</p>
|
|
<table class="form-table">
|
|
<tbody>
|
|
<tr>
|
|
<th scope="row" valign="top">LDAP Login Attribute</th>
|
|
<td>
|
|
<input type="text" name="<?php echo $this->get_field_name('ol_login'); ?>" value="<?php echo $SimpleLDAPLogin->get_setting('ol_login'); ?>" />
|
|
<br />
|
|
In case your installation uses something other than <b>uid</b>;
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">Use TLS</th>
|
|
<td>
|
|
<input type="hidden" name="<?php echo $this->get_field_name('use_tls'); ?>" value="false" />
|
|
<label><input type="checkbox" name="<?php echo $this->get_field_name('use_tls'); ?>" value="true" <?php if( str_true($this->get_setting('use_tls')) ) echo "checked"; ?> /> Transport Layer Security. This feature is beta, very beta.</label><br/>
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">LDAP Port</th>
|
|
<td>
|
|
<input type="text" name="<?php echo $this->get_field_name('ldap_port'); ?>" value="<?php echo $SimpleLDAPLogin->get_setting('ldap_port'); ?>" /><br/>
|
|
This is usually 389.
|
|
</td>
|
|
</tr>
|
|
<tr>
|
|
<th scope="row" valign="top">LDAP Version</th>
|
|
<td>
|
|
<input type="text" name="<?php echo $this->get_field_name('ldap_version'); ?>" value="<?php echo $SimpleLDAPLogin->get_setting('ldap_version'); ?>" /><br/>
|
|
Only applies to Open LDAP. Typically 3.
|
|
</td>
|
|
</tr>
|
|
</tbody>
|
|
</table>
|
|
<p><input class="button-primary" type="submit" value="Save Settings" /></p>
|
|
<?php else: ?>
|
|
<h3>Help</h3>
|
|
<p>Here's a brief primer on how to effectively use and test Simple LDAP Login.</p>
|
|
<h4>Testing</h4>
|
|
<p>The most effective way to test logins is to use two browsers. In other words, keep WordPress Admin open in Chrome, and use Firefox to try logging in. This will give you real time feedback on your settings and prevent you from inadvertently locking yourself out.</p>
|
|
<h4>Which raises the question, what happens if I get locked out?</h4>
|
|
<p>If you accidentally lock yourself out, the easiest way to get back in is to rename <strong><?php echo plugin_dir_path(__FILE__); ?></strong> to something else and then refresh. WordPress will detect the change and disable Simple LDAP Login. You can then rename the folder back to its previous name.</p>
|
|
<?php endif; ?>
|
|
</form>
|
|
</div>
|