-
-
Notifications
You must be signed in to change notification settings - Fork 1.3k
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
Fix
user_dn_hash
reconciliation when user DN contains special chars
fixes #16725
- Loading branch information
1 parent
36e536b
commit 93a9f69
Showing
4 changed files
with
150 additions
and
6 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,72 @@ | ||
<?php | ||
|
||
/** | ||
* --------------------------------------------------------------------- | ||
* | ||
* GLPI - Gestionnaire Libre de Parc Informatique | ||
* | ||
* http://glpi-project.org | ||
* | ||
* @copyright 2015-2024 Teclib' and contributors. | ||
* @copyright 2003-2014 by the INDEPNET Development Team. | ||
* @licence https://www.gnu.org/licenses/gpl-3.0.html | ||
* | ||
* --------------------------------------------------------------------- | ||
* | ||
* LICENSE | ||
* | ||
* This file is part of GLPI. | ||
* | ||
* This program is free software: you can redistribute it and/or modify | ||
* it under the terms of the GNU General Public License as published by | ||
* the Free Software Foundation, either version 3 of the License, or | ||
* (at your option) any later version. | ||
* | ||
* This program is distributed in the hope that it will be useful, | ||
* but WITHOUT ANY WARRANTY; without even the implied warranty of | ||
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||
* GNU General Public License for more details. | ||
* | ||
* You should have received a copy of the GNU General Public License | ||
* along with this program. If not, see <https://www.gnu.org/licenses/>. | ||
* | ||
* --------------------------------------------------------------------- | ||
*/ | ||
|
||
/** | ||
* Update from 10.0.14 to 10.0.15 | ||
* | ||
* @return bool for success (will die for most error) | ||
**/ | ||
function update10014to10015() | ||
{ | ||
/** | ||
* @var \DBmysql $DB | ||
* @var \Migration $migration | ||
*/ | ||
global $DB, $migration; | ||
|
||
$updateresult = true; | ||
$ADDTODISPLAYPREF = []; | ||
$DELFROMDISPLAYPREF = []; | ||
$update_dir = __DIR__ . '/update_10.0.14_to_10.0.15/'; | ||
|
||
//TRANS: %s is the number of new version | ||
$migration->displayTitle(sprintf(__('Update to %s'), '10.0.15')); | ||
$migration->setVersion('10.0.15'); | ||
|
||
$update_scripts = scandir($update_dir); | ||
foreach ($update_scripts as $update_script) { | ||
if (preg_match('/\.php$/', $update_script) !== 1) { | ||
continue; | ||
} | ||
require $update_dir . $update_script; | ||
} | ||
|
||
// ************ Keep it at the end ************** | ||
$migration->updateDisplayPrefs($ADDTODISPLAYPREF, $DELFROMDISPLAYPREF); | ||
|
||
$migration->executeMigration(); | ||
|
||
return $updateresult; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,66 @@ | ||
<?php | ||
|
||
/** | ||
* --------------------------------------------------------------------- | ||
* | ||
* GLPI - Gestionnaire Libre de Parc Informatique | ||
* | ||
* http://glpi-project.org | ||
* | ||
* @copyright 2015-2024 Teclib' and contributors. | ||
* @copyright 2003-2014 by the INDEPNET Development Team. | ||
* @licence https://www.gnu.org/licenses/gpl-3.0.html | ||
* | ||
* --------------------------------------------------------------------- | ||
* | ||
* LICENSE | ||
* | ||
* This file is part of GLPI. | ||
* | ||
* This program is free software: you can redistribute it and/or modify | ||
* it under the terms of the GNU General Public License as published by | ||
* the Free Software Foundation, either version 3 of the License, or | ||
* (at your option) any later version. | ||
* | ||
* This program is distributed in the hope that it will be useful, | ||
* but WITHOUT ANY WARRANTY; without even the implied warranty of | ||
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the | ||
* GNU General Public License for more details. | ||
* | ||
* You should have received a copy of the GNU General Public License | ||
* along with this program. If not, see <https://www.gnu.org/licenses/>. | ||
* | ||
* --------------------------------------------------------------------- | ||
*/ | ||
|
||
use Glpi\Toolbox\Sanitizer; | ||
|
||
/** | ||
* @var \DBmysql $DB | ||
* @var \Migration $migration | ||
*/ | ||
|
||
// Fix user_dn_hash related to `user_dn` containing a special char | ||
$users_iterator = $DB->request( | ||
[ | ||
'SELECT' => ['id', 'user_dn'], | ||
'FROM' => 'glpi_users', | ||
'WHERE' => [ | ||
// `user_dn` will contains a `&` char if any of its char was sanitized | ||
'user_dn' => ['LIKE', '%&%'], | ||
] | ||
] | ||
); | ||
foreach ($users_iterator as $user_data) { | ||
$migration->addPostQuery( | ||
$DB->buildUpdate( | ||
'glpi_users', | ||
[ | ||
'user_dn_hash' => md5(Sanitizer::decodeHtmlSpecialChars($user_data['user_dn'])), | ||
], | ||
[ | ||
'id' => $user_data['id'], | ||
] | ||
) | ||
); | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters