mirror of
https://gitlab.easter-eggs.com/ee/ldapsaisie.git
synced 2024-11-23 02:19:07 +01:00
LSattr_ldap :: password : Add SHA256/SHA512 & SSHA256/SSHA512 support
This commit is contained in:
parent
fc6399fb13
commit
cc8816aa9a
2 changed files with 36 additions and 3 deletions
|
@ -29,7 +29,11 @@
|
||||||
<listitem><simpara><literal>ext_des</literal></simpara></listitem>
|
<listitem><simpara><literal>ext_des</literal></simpara></listitem>
|
||||||
<listitem><simpara><literal>blowfish</literal></simpara></listitem>
|
<listitem><simpara><literal>blowfish</literal></simpara></listitem>
|
||||||
<listitem><simpara><literal>sha</literal></simpara></listitem>
|
<listitem><simpara><literal>sha</literal></simpara></listitem>
|
||||||
|
<listitem><simpara><literal>sha256</literal></simpara></listitem>
|
||||||
|
<listitem><simpara><literal>sha512</literal></simpara></listitem>
|
||||||
<listitem><simpara><literal>ssha</literal></simpara></listitem>
|
<listitem><simpara><literal>ssha</literal></simpara></listitem>
|
||||||
|
<listitem><simpara><literal>ssha256</literal></simpara></listitem>
|
||||||
|
<listitem><simpara><literal>ssha512</literal></simpara></listitem>
|
||||||
<listitem><simpara><literal>smd5</literal></simpara></listitem>
|
<listitem><simpara><literal>smd5</literal></simpara></listitem>
|
||||||
<listitem><simpara><literal>md5</literal></simpara></listitem>
|
<listitem><simpara><literal>md5</literal></simpara></listitem>
|
||||||
<listitem><simpara><literal>clear</literal></simpara></listitem>
|
<listitem><simpara><literal>clear</literal></simpara></listitem>
|
||||||
|
|
|
@ -155,14 +155,43 @@ class LSattr_ldap_password extends LSattr_ldap {
|
||||||
LSerror :: addErrorCode('LSattr_ldap_password_01','sha');
|
LSerror :: addErrorCode('LSattr_ldap_password_01','sha');
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
|
case 'sha256':
|
||||||
|
case 'sha512':
|
||||||
|
switch($this -> config['ldap_options']['encode']) {
|
||||||
|
case 'sha256':
|
||||||
|
$mhash_type = MHASH_SHA256;
|
||||||
|
break;
|
||||||
|
case 'sha512':
|
||||||
|
$mhash_type = MHASH_SHA512;
|
||||||
|
break;
|
||||||
|
}
|
||||||
|
if( function_exists( 'mhash' ) ) {
|
||||||
|
return '{'.strtoupper($this -> config['ldap_options']['encode']).'}' . base64_encode( mhash( $mhash_type, $clearPassword ) );
|
||||||
|
} else {
|
||||||
|
LSerror :: addErrorCode('LSattr_ldap_password_01', $this -> config['ldap_options']['encode']);
|
||||||
|
}
|
||||||
|
break;
|
||||||
case 'ssha':
|
case 'ssha':
|
||||||
|
case 'ssha256':
|
||||||
|
case 'ssha512':
|
||||||
|
switch($this -> config['ldap_options']['encode']) {
|
||||||
|
case 'ssha':
|
||||||
|
$mhash_type = MHASH_SHA1;
|
||||||
|
break;
|
||||||
|
case 'ssha256':
|
||||||
|
$mhash_type = MHASH_SHA256;
|
||||||
|
break;
|
||||||
|
case 'ssha512':
|
||||||
|
$mhash_type = MHASH_SHA512;
|
||||||
|
break;
|
||||||
|
}
|
||||||
if( function_exists( 'mhash' ) && function_exists( 'mhash_keygen_s2k' ) ) {
|
if( function_exists( 'mhash' ) && function_exists( 'mhash_keygen_s2k' ) ) {
|
||||||
mt_srand( (double) microtime() * 1000000 );
|
mt_srand( (double) microtime() * 1000000 );
|
||||||
$salt = mhash_keygen_s2k( MHASH_SHA1, $clearPassword, substr( pack( "h*", md5( mt_rand() ) ), 0, 8 ), 4 );
|
$salt = mhash_keygen_s2k( $mhash_type, $clearPassword, substr( pack( "h*", md5( mt_rand() ) ), 0, 8 ), 4 );
|
||||||
return "{SSHA}".base64_encode( mhash( MHASH_SHA1, $clearPassword.$salt ).$salt );
|
return "{".strtoupper($this -> config['ldap_options']['encode'])."}".base64_encode( mhash( $mhash_type, $clearPassword.$salt ).$salt );
|
||||||
}
|
}
|
||||||
else {
|
else {
|
||||||
LSerror :: addErrorCode('LSattr_ldap_password_01','ssha');
|
LSerror :: addErrorCode('LSattr_ldap_password_01', $this -> config['ldap_options']['encode']);
|
||||||
}
|
}
|
||||||
break;
|
break;
|
||||||
case 'smd5':
|
case 'smd5':
|
||||||
|
|
Loading…
Reference in a new issue