Changeset 1996343

Timestamp:

12/17/2018 11:49:36 AM (6 years ago)

Author:

neosit

Message:

da77dbc565f61b31db9279d1cc2e62f65e51c851 updated readme.txt for 2.1.7 release

Location:

next-active-directory-integration/trunk

Files:

• classes/Adi/Authentication/LoginService.php (modified) (4 diffs)
• classes/Adi/Init.php (modified) (9 diffs)
• index.php (modified) (1 diff)
• readme.txt (modified) (2 diffs)

next-active-directory-integration/trunk/classes/Adi/Authentication/LoginService.php

@@ -89 +89 @@
     {
         add_filter('authenticate', array($this, 'authenticate'), 10, 3);
-        add_filter(NEXT_AD_INT_PREFIX . 'auth_before_create_or_update_user', array($this, 'beforeCreateOrUpdateUser'), 10 , 2);
-        add_filter(NEXT_AD_INT_PREFIX . 'auth_after_create_or_update_user', array($this, 'afterCreateOrUpdateUser'), 10, 3);
 
         // disable 'lost password' feature
@@ -102 +100 @@
         }
     }
+
+    /**
+     * Register custom authentication hooks required during the authentication process.
+     */
+    public function registerAuthenticationHooks()
+    {
+        add_filter(NEXT_AD_INT_PREFIX . 'auth_before_create_or_update_user', array($this, 'beforeCreateOrUpdateUser'), 10 , 2);
+        add_filter(NEXT_AD_INT_PREFIX . 'auth_after_create_or_update_user', array($this, 'afterCreateOrUpdateUser'), 10, 3);
+    }
 
     /**
@@ -826 +833 @@
      */
     public function beforeCreateOrUpdateUser($credentials, $ldapAttributes) {
+        $this->logger->info("Hook beforeCreateOrUpdateUser executed");
         return true;
     }
@@ -836 +844 @@
      */
     public function afterCreateOrUpdateUser($credentials, $adiUser, $wpUser) {
+        $this->logger->info("Hook afterCreateOrUpdateUser executed, wpUser: '" . is_object($wpUser) . "'");
         return $wpUser;
     }

next-active-directory-integration/trunk/classes/Adi/Init.php

@@ -1 +1 @@
 <?php
-if (!defined('ABSPATH')) {
+if ( ! defined('ABSPATH')) {
     die('Access denied.');
 }
@@ -65 +65 @@
                 // At a later point we check for ID = 1 (local WordPress admin) but this user can be different from the current user (= another WordPress administrator).
                 $currentUser = wp_get_current_user();
-                $optionName = NextADInt_Adi_Configuration_Options::EXCLUDE_USERNAMES_FROM_AUTHENTICATION;
+                $optionName  = NextADInt_Adi_Configuration_Options::EXCLUDE_USERNAMES_FROM_AUTHENTICATION;
                 $optionValue = $currentUser->user_login;
 
                 if (is_multisite()) {
-                    $this->dc()->getProfileConfigurationRepository()->persistSanitizedValue($profileId, $optionName, $optionValue);
+                    $this->dc()->getProfileConfigurationRepository()->persistSanitizedValue($profileId, $optionName,
+                        $optionValue);
                 } else {
                     $this->dc()->getBlogConfigurationRepository()->persistSanitizedValue(0, $optionName, $optionValue);
@@ -119 +120 @@
 
         // load internationalization (i18n)
-        load_plugin_textdomain('next-active-directory-integration', false, plugin_basename(NEXT_AD_INT_PATH) . '/languages');
+        load_plugin_textdomain('next-active-directory-integration', false,
+            plugin_basename(NEXT_AD_INT_PATH) . '/languages');
 
         // ADI-354 (dme)
         $configurationService = $this->dc()->getConfiguration();
-        $enableLogging = $configurationService->getOptionValue(NextADInt_Adi_Configuration_Options::LOGGER_ENABLE_LOGGING);
-        $customPath = $configurationService->getOptionValue((NextADInt_Adi_Configuration_Options::LOGGER_CUSTOM_PATH));
+        $enableLogging        = $configurationService->getOptionValue(NextADInt_Adi_Configuration_Options::LOGGER_ENABLE_LOGGING);
+        $customPath           = $configurationService->getOptionValue((NextADInt_Adi_Configuration_Options::LOGGER_CUSTOM_PATH));
 
         NextADInt_Core_Logger::initializeLogger($enableLogging, $customPath);
@@ -196 +198 @@
         }
 
+        // ADI-665 register the hooks required during the test authentication process
+        if ($this->isOnTestAuthenticationPage()) {
+            $this->dc()->getLoginService()->registerAuthenticationHooks();
+        }
+
+
         $currentUserId = wp_get_current_user()->ID;
 
-        if (!$currentUserId) {
+        if ( ! $currentUserId) {
             // the current user is not logged in so further hooks must not be processed
             return false;
@@ -236 +244 @@
     {
         // only network dashboard views are relevant
-        if (!$this->isOnNetworkDashboard()) {
+        if ( ! $this->isOnNetworkDashboard()) {
             return;
         }
@@ -267 +275 @@
         // register authentication
         $this->dc()->getLoginService()->register();
+        $this->dc()->getLoginService()->registerAuthenticationHooks();
         // register custom password validation
         $this->dc()->getPasswordValidationService()->register();
@@ -284 +293 @@
 
         $this->dc()->getSsoService()->register();
+        $this->dc()->getSsoService()->registerAuthenticationHooks();
     }
 
@@ -390 +400 @@
         $r = false;
 
-        $page = $_SERVER['PHP_SELF'];
-        $required = "wp-login.php";
+        $page        = $_SERVER['PHP_SELF'];
+        $required    = "wp-login.php";
         $isOnWpLogin = substr($page, -strlen($required)) == $required;
-        $isOnXmlRpc = strpos($page, 'xmlrpc.php') !== false;
+        $isOnXmlRpc  = strpos($page, 'xmlrpc.php') !== false;
 
         if ($isOnWpLogin || $isOnXmlRpc) {
@@ -403 +413 @@
         return $r;
     }
+
+    /**
+     * Return true if current page is the test authentication page.
+     */
+    public function isOnTestAuthenticationPage()
+    {
+        return isset($_GET['page']) && $_GET['page'] === 'next_ad_int_test_connection';
+    }
 }

next-active-directory-integration/trunk/index.php

@@ -4 +4 @@
 Plugin URI: https://www.active-directory-wp.com
 Description: This is the successor of the Active Directory Integration plug-in which allows you to authenticate, authorize, create and update users through Active Directory.
-Version: 2.1.5
+Version: 2.1.7
 Author: NeosIT GmbH
 Author URI: http://www.neos-it.de/

next-active-directory-integration/trunk/readme.txt

@@ -4 +4 @@
 Requires at least: 4.0
 Tested up to: 4.9.8
-Stable tag: 2.1.5
+Stable tag: 2.1.7
 License: GPLv3
 
@@ -127 +127 @@
 For detailed information you can visit the official [GitHub repository of Active Directory Integration 2](https://github.com/NeosIT/active-directory-integration2)
 
+= 2.1.7 =
+* FIXED: the hooks auth_before_create_or_update_user and auth_after_create_or_update_user were not registered so the SSO authentication always failed silently (ADI-668)
+
+= 2.1.6 =
+* FIXED: custom authentication filters were not registered properly (ADI-665) this will fix SSO related issues
+* FIXED: test authentication will now properly check for authorization groups again
+
 = 2.1.5 =
 * FIXED: replaced all references to the deprecated each-function with foreach (ADI-628)