# -- # Kernel/System/CustomerUser/DB.pm - some customer user functions # Copyright (C) 2002-2003 Martin Edenhofer # -- # $Id: DB.pm,v 1.14.2.2 2003/05/21 22:45:39 martin Exp $ # -- # This software comes with ABSOLUTELY NO WARRANTY. For details, see # the enclosed file COPYING for license information (GPL). If you # did not receive this file, see http://www.gnu.org/licenses/gpl.txt. # -- package Kernel::System::CustomerUser::DB; use strict; use Kernel::System::CheckItem; use vars qw(@ISA $VERSION); $VERSION = '$Revision: 1.14.2.2 $'; $VERSION =~ s/^\$.*:\W(.*)\W.+?$/$1/; # -- sub new { my $Type = shift; my %Param = @_; # allocate new hash for object my $Self = {}; bless ($Self, $Type); # -- # check needed objects # -- foreach (qw(DBObject ConfigObject LogObject PreferencesObject)) { $Self->{$_} = $Param{$_} || die "Got no $_!"; } # -- # max shown user a search list # -- $Self->{UserSearchListLimit} = 250; # -- # config options # -- $Self->{CustomerTable} = $Self->{ConfigObject}->Get('CustomerUser')->{Params}->{Table} || die "Need CustomerUser->Params->Table in Kernel/Config.pm!"; $Self->{CustomerKey} = $Self->{ConfigObject}->Get('CustomerUser')->{CustomerKey} || $Self->{ConfigObject}->Get('CustomerUser')->{Key} || die "Need CustomerUser->CustomerKey in Kernel/Config.pm!"; $Self->{CustomerID} = $Self->{ConfigObject}->Get('CustomerUser')->{CustomerID} || die "Need CustomerUser->CustomerID in Kernel/Config.pm!"; # -- # tghesp 20031223 # if defined, load local customer field initialization module. # -- my $LocalGeneratorModule = $Self->{ConfigObject}->Get('CustomerUser')->{CustomerInitModule}; if ($LocalGeneratorModule) { eval "require $LocalGeneratorModule"; $Self->{LocalCustomerUserObject} = $LocalGeneratorModule->new(%Param); } # -- # create new db connect if DSN is given # -- if ($Self->{ConfigObject}->Get('CustomerUser')->{Params}->{DSN}) { $Self->{DBObject} = Kernel::System::DB->new( LogObject => $Param{LogObject}, ConfigObject => $Param{ConfigObject}, DatabaseDSN => $Self->{ConfigObject}->Get('CustomerUser')->{Params}->{DSN}, DatabaseUser => $Self->{ConfigObject}->Get('CustomerUser')->{Params}->{User}, DatabasePw => $Self->{ConfigObject}->Get('CustomerUser')->{Params}->{Password}, ) || die $DBI::errstr; } # -- # create check item object # -- $Self->{CheckItemObject} = Kernel::System::CheckItem->new(%Param); return $Self; } # -- sub CustomerName { my $Self = shift; my %Param = @_; my $Name = ''; # -- # check needed stuff # -- if (!$Param{UserLogin}) { $Self->{LogObject}->Log(Priority => 'error', Message => "Need UserLogin!"); return; } # -- # build SQL string 1/2 # -- my $SQL = "SELECT $Self->{CustomerKey} "; if ($Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserNameFields}) { foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserNameFields}}) { $SQL .= ", $Entry"; } } else { $SQL .= " , first_name, last_name "; } $SQL .= " FROM $Self->{CustomerTable} WHERE ". " $Self->{CustomerKey} = '".$Self->{DBObject}->Quote($Param{UserLogin})."'"; # -- # get data # -- $Self->{DBObject}->Prepare(SQL => $SQL, Limit => 1); while (my @Row = $Self->{DBObject}->FetchrowArray()) { foreach (1..8) { if ($Row[$_]) { if (!$Name) { $Name = $Row[$_]; } else { $Name .= ' '.$Row[$_]; } } } } return $Name; } # -- sub CustomerSearch { my $Self = shift; my %Param = @_; my %Users = (); # -- # check needed stuff # -- if (!$Param{Search} && !$Param{UserLogin} && !$Param{PostMasterSearch}) { $Self->{LogObject}->Log(Priority => 'error', Message => "Need Search, UserLogin or PostMasterSearch!"); return; } # -- # build SQL string 1/2 # -- my $SQL = "SELECT $Self->{CustomerKey} "; if ($Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserListFields}) { foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserListFields}}) { $SQL .= ", $Entry"; } } else { $SQL .= " , first_name, last_name, email "; } # -- # build SQL string 2/2 # -- $SQL .= " FROM " . " $Self->{CustomerTable} ". " WHERE "; if ($Param{Search}) { $Param{Search} =~ s/\*/%/g; if ($Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserSearchFields}) { my $SQLExt = ''; foreach (@{$Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserSearchFields}}) { if ($SQLExt) { $SQLExt .= ' OR '; } $SQLExt .= " $_ LIKE '".$Self->{DBObject}->Quote($Param{Search})."' "; } $SQL .= $SQLExt; } else { $SQL .= " $Self->{CustomerKey} LIKE '".$Self->{DBObject}->Quote($Param{Search})."' "; } } elsif ($Param{PostMasterSearch}) { if ($Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserPostMasterSearchFields}) { my $SQLExt = ''; foreach (@{$Self->{ConfigObject}->Get('CustomerUser')->{CustomerUserPostMasterSearchFields}}) { if ($SQLExt) { $SQLExt .= ' OR '; } $SQLExt .= " $_ LIKE '".$Self->{DBObject}->Quote($Param{PostMasterSearch})."' "; } $SQL .= $SQLExt; } } elsif ($Param{UserLogin}) { $Param{UserLogin} =~ s/\*/%/g; $SQL .= " $Self->{CustomerKey} LIKE '".$Self->{DBObject}->Quote($Param{UserLogin})."'"; } # -- # add valid option # -- if ($Self->{ConfigObject}->Get('CustomerUser')->{CustomerValid}) { $SQL .= "AND ".$Self->{ConfigObject}->Get('CustomerUser')->{CustomerValid}. " in ( ${\(join ', ', $Self->{DBObject}->GetValidIDs())} ) "; } # -- # get data # -- $Self->{DBObject}->Prepare(SQL => $SQL, Limit => $Self->{UserSearchListLimit}); while (my @Row = $Self->{DBObject}->FetchrowArray()) { foreach (1..8) { if ($Row[$_]) { $Users{$Row[0]} .= $Row[$_].' '; } } $Users{$Row[0]} =~ s/^(.*\s)(.+?\@.+?\..+?)(\s|)$/"$1" <$2>/; } return %Users; } # -- sub CustomerUserList { my $Self = shift; my %Param = @_; my $Valid = defined $Param{Valid} ? $Param{Valid} : 1; # -- # get data # -- my %Users = $Self->{DBObject}->GetTableData( What => "$Self->{CustomerKey}, login, customer_id ", Table => $Self->{CustomerTable}, Clamp => 1, Valid => $Valid, ); return %Users; } # -- sub CustomerUserDataGet { my $Self = shift; my %Param = @_; my %Data; # -- # check needed stuff # -- if (!$Param{User} && !$Param{CustomerID}) { $Self->{LogObject}->Log(Priority => 'error', Message => "Need User or CustomerID!"); return; } # -- # build select # -- my $SQL = "SELECT "; foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { $SQL .= " $Entry->[2], "; } $SQL .= $Self->{CustomerKey}." FROM $Self->{CustomerTable} WHERE "; if ($Param{User}) { $SQL .= $Self->{CustomerKey}." = '".$Self->{DBObject}->Quote($Param{User})."'"; } elsif ($Param{CustomerID}) { $SQL .= $Self->{CustomerID}." = '".$Self->{DBObject}->Quote($Param{CustomerID})."'"; } # -- # get inital data # -- $Self->{DBObject}->Prepare(SQL => $SQL); while (my @Row = $Self->{DBObject}->FetchrowArray()) { my $MapCounter = 0; foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { $Data{$Entry->[0]} = $Row[$MapCounter]; $MapCounter++; } } # -- # check data # -- if (! exists $Data{UserLogin} && $Param{User}) { # $Self->{LogObject}->Log( # Priority => 'notice', # Message => "Panic! No UserData for customer user: '$Param{User}'!!!", # ); return; } if (! exists $Data{UserLogin} && $Param{CustomerID}) { # $Self->{LogObject}->Log( # Priority => 'notice', # Message => "Panic! No UserData for customer id: '$Param{CustomerID}'!!!", # ); return; } # compat! $Data{UserID} = $Data{UserLogin}; # -- # get preferences # -- my %Preferences = $Self->{PreferencesObject}->GetPreferences(UserID => $Data{UserID}); # return data return (%Data, %Preferences); } # -- sub CustomerUserAdd { my $Self = shift; my %Param = @_; # -- # check needed stuff # -- foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { # -- # tghesp 20031222 # Add check whether a field is required but a source is defined. Do not generate error when field data # is not available. # -- if (!$Param{$Entry->[0]} && $Entry->[4] && !$Entry->[7]) { $Self->{LogObject}->Log(Priority => 'error', Message => "Need $Entry->[0]!"); return; } } # -- # tghesp 20031223 # Now we have checked the validity of all fields according to the map go through it again and see whether # we need to generate any field contents. # -- foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { if ($Entry->[7]) { my $tmp = $Param{$Entry->[0]}; $Param{$Entry->[0]} = eval "$Entry->[7]"; if ($@) { $Self->{LogObject}->Log(Priority => 'error', Message => "Failed to evaluate $Entry->[7], cause: $@"); return; } # Enable line below to be able to "debug" (gross exaggeration!) field source evaluation. # $Self->{LogObject}->Log(Priority => 'notice', Message => "$Entry->[0]($tmp) evaluated to $Param{$Entry->[0]} using $Entry->[7]"); } } if (!$Param{UserID}) { $Self->{LogObject}->Log(Priority => 'error', Message => "Need UserID!"); return; } # -- # check email address # -- if ($Param{UserEmail} && !$Self->{CheckItemObject}->CkeckEmail(Address => $Param{UserEmail})) { $Self->{LogObject}->Log( Priority => 'error', Message => "Email address ($Param{UserEmail}) not valid (". $Self->{CheckItemObject}->CheckError().")!", ); return; } # -- # build insert # -- my $SQL = "INSERT INTO $Self->{CustomerTable} ("; foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { $SQL .= " $Entry->[2], "; } $SQL .= "create_time, create_by, change_time, change_by)"; $SQL .= " VALUES ("; foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { if ($Entry->[5] =~ /^int$/i) { $SQL .= " $Param{$Entry->[0]}, "; } else { $SQL .= " '".$Self->{DBObject}->Quote($Param{$Entry->[0]})."', "; } } $SQL .= "current_timestamp, $Param{UserID}, current_timestamp, $Param{UserID})"; if ($Self->{DBObject}->Do(SQL => $SQL)) { # -- # log notice # -- $Self->{LogObject}->Log( Priority => 'notice', Message => "CustomerUser: '$Param{UserLogin}' created successfully ($Param{UserID})!", ); # -- # set password # -- $Self->SetPassword(UserLogin => $Param{UserLogin}, PW => $Param{UserPassword}); return $Param{UserLogin}; } else { return; } } # -- sub CustomerUserUpdate { my $Self = shift; my %Param = @_; # -- # check needed stuff # -- foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { if (!$Param{$Entry->[0]} && $Entry->[4]) { $Self->{LogObject}->Log(Priority => 'error', Message => "Need $Entry->[0]!"); return; } } # -- # check email address # -- if ($Param{UserEmail} && !$Self->{CheckItemObject}->CkeckEmail(Address => $Param{UserEmail})) { $Self->{LogObject}->Log( Priority => 'error', Message => "Email address ($Param{UserEmail}) not valid (". $Self->{CheckItemObject}->CheckError().")!", ); return; } # -- # get old user data (pw) # -- my %UserData = $Self->CustomerUserDataGet(User => $Param{ID}); # -- # update db # -- my $SQL = "UPDATE $Self->{CustomerTable} SET "; foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { if ($Entry->[5] =~ /^int$/i) { $SQL .= " $Entry->[2] = $Param{$Entry->[0]}, "; } elsif ($Entry->[0] !~ /^UserPassword$/i) { $SQL .= " $Entry->[2] = '".$Self->{DBObject}->Quote($Param{$Entry->[0]})."', "; } } $SQL .= " change_time = current_timestamp, "; $SQL .= " change_by = $Param{UserID} "; $SQL .= " WHERE ".$Self->{CustomerKey}." = '".$Self->{DBObject}->Quote($Param{ID})."'"; if ($Self->{DBObject}->Do(SQL => $SQL)) { # -- # log notice # -- $Self->{LogObject}->Log( Priority => 'notice', Message => "CustomerUser: '$Param{UserLogin}' updated successfully ($Param{UserID})!", ); # -- # check pw # -- my $GetPw = $UserData{UserPassword} || ''; if ($GetPw ne $Param{UserPassword}) { $Self->SetPassword(UserLogin => $Param{UserLogin}, PW => $Param{UserPassword}); } return 1; } else { return; } } # -- sub SetPassword { my $Self = shift; my %Param = @_; my $Pw = $Param{PW} || ''; # -- # check needed stuff # -- if (!$Param{UserLogin}) { $Self->{LogObject}->Log(Priority => 'error', Message => "Need UserLogin!"); return; } # -- # crypt given pw (unfortunately there is a mod_perl2 bug on RH8 - check if # crypt() is working correctly) :-/ # -- my $CryptedPw = ''; if (crypt('root', 'root@localhost') eq 'roK20XGbWEsSM') { $CryptedPw = crypt($Pw, $Param{UserLogin}); } else { $Self->{LogObject}->Log( Priority => 'notice', Message => "The crypt() of your mod_perl(2) is not working correctly! Update mod_perl!", ); my $TempUser = $Param{UserLogin}; $TempUser =~ s/'/\\'/g; my $TempPw = $Pw; $TempPw =~ s/'/\\'/g; my $CMD = "perl -e \"print crypt('$TempPw', '$TempUser');\""; open (IO, " $CMD | ") || print STDERR "Can't open $CMD: $!"; while () { $CryptedPw .= $_; } close (IO); chomp $CryptedPw; } # -- # update db # -- foreach my $Entry (@{$Self->{ConfigObject}->Get('CustomerUser')->{Map}}) { if ($Entry->[0] =~ /^UserPassword$/i) { $Param{PasswordCol} = $Entry->[2]; } if ($Entry->[0] =~ /^UserLogin$/i) { $Param{LoginCol} = $Entry->[2]; } } if ($Self->{DBObject}->Do( SQL => "UPDATE $Self->{CustomerTable} ". " SET ". " $Param{PasswordCol} = '".$Self->{DBObject}->Quote($CryptedPw)."' ". " WHERE ". " $Param{LoginCol} = '".$Self->{DBObject}->Quote($Param{UserLogin})."'", )) { # -- # log notice # -- $Self->{LogObject}->Log( Priority => 'notice', Message => "CustomerUser: '$Param{UserLogin}' changed password successfully!", ); return 1; } else { return; } } # -- sub GetGroups { return; } # -- sub GenerateRandomPassword { my $Self = shift; my %Param = @_; # Generated passwords are eight characters long by default. my $Size = $Param{Size} || 8; # The list of characters that can appear in a randomly generated password. # Note that users can put any character into a password they choose themselves. my @PwChars = (0..9, 'A'..'Z', 'a'..'z', '-', '_', '!', '@', '#', '$', '%', '^', '&', '*'); # The number of characters in the list. my $PwCharsLen = scalar(@PwChars); # Generate the password. my $Password = ''; for ( my $i=0 ; $i<$Size ; $i++ ) { $Password .= $PwChars[rand($PwCharsLen)]; } # Return the password. return $Password; } # -- 1;