mirror of
https://github.com/librenms/librenms.git
synced 2024-10-07 16:52:45 +00:00
3b255edc37
* implement support for usernames comming from reverse proxies * add configurable auth header * Move implementation to AuthorisationBase class * refactored default value handling * fixed external user check
81 lines
2.2 KiB
PHP
81 lines
2.2 KiB
PHP
<?php
|
|
/**
|
|
* AuthorizerBase.php
|
|
*
|
|
* authentication functions
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
*
|
|
* @link https://www.librenms.org
|
|
*
|
|
* @copyright 2017 Tony Murray
|
|
* @author Tony Murray <murraytony@gmail.com>
|
|
*/
|
|
|
|
namespace LibreNMS\Authentication;
|
|
|
|
use LibreNMS\Config;
|
|
use LibreNMS\Interfaces\Authentication\Authorizer;
|
|
|
|
abstract class AuthorizerBase implements Authorizer
|
|
{
|
|
protected static $HAS_AUTH_USERMANAGEMENT = false;
|
|
protected static $CAN_UPDATE_USER = false;
|
|
protected static $CAN_UPDATE_PASSWORDS = false;
|
|
protected static $AUTH_IS_EXTERNAL = false;
|
|
|
|
public function canUpdatePasswords($username = '')
|
|
{
|
|
return static::$CAN_UPDATE_PASSWORDS;
|
|
}
|
|
|
|
public function canManageUsers()
|
|
{
|
|
return static::$HAS_AUTH_USERMANAGEMENT;
|
|
}
|
|
|
|
public function addUser($username, $password, $level = 0, $email = '', $realname = '', $can_modify_passwd = 0, $description = '')
|
|
{
|
|
//not supported by default
|
|
return false;
|
|
}
|
|
|
|
public function deleteUser($user_id)
|
|
{
|
|
//not supported by default
|
|
return false;
|
|
}
|
|
|
|
public function canUpdateUsers()
|
|
{
|
|
return static::$CAN_UPDATE_USER;
|
|
}
|
|
|
|
public function updateUser($user_id, $realname, $level, $can_modify_passwd, $email)
|
|
{
|
|
//not supported by default
|
|
return false;
|
|
}
|
|
|
|
public function authIsExternal()
|
|
{
|
|
return static::$AUTH_IS_EXTERNAL;
|
|
}
|
|
|
|
public function getExternalUsername()
|
|
{
|
|
return $_SERVER[Config::get('http_auth_header')] ?? $_SERVER['PHP_AUTH_USER'] ?? null;
|
|
}
|
|
}
|