/usr/share/php/Horde/Auth/Peclsasl.php is in php-horde-auth 2.2.2-1ubuntu1.
This file is owned by root:root, with mode 0o644.
The actual contents of the file can be viewed below.
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 | <?php
/**
* Copyright 2004-2017 Horde LLC (http://www.horde.org/)
*
* See the enclosed file COPYING for license information (LGPL). If you did
* not receive this file, see http://www.horde.org/licenses/lgpl21.
*
* @author Jon Parise <jon@horde.org>
* @category Horde
* @license http://www.horde.org/licenses/lgpl21 LGPL-2.1
* @package Auth
*/
/**
* The Horde_Auth_Peclsasl:: class provides a SASL-based implementation of the
* Horde authentication system.
*
* SASL is the Simple Authentication and Security Layer (as defined by RFC
* 2222). It provides a system for adding plugable authenticating support to
* connection-based protocols.
*
* This driver relies on the PECL sasl package:
* http://pecl.php.net/package/sasl
*
* @author Jon Parise <jon@horde.org>
* @category Horde
* @copyright 2004-2017 Horde LLC
* @license http://www.horde.org/licenses/lgpl21 LGPL-2.1
* @package Auth
*/
class Horde_Auth_Peclsasl extends Horde_Auth_Base
{
/**
* Constructor.
*
* @param array $params Optional parameters:
* <pre>
* 'app' - (string) The name of the authenticating application.
* DEFAULT: horde
* 'service' - (string) The name of the SASL service to use when
* authenticating.
* DEFAULT: php
* </pre>
*
* @throws Horde_Auth_Exception
*/
public function __construct(array $params = array())
{
if (!Horde_Util::extensionExists('sasl')) {
throw new Horde_Auth_Exception('Horde_Auth_Peclsasl:: requires the sasl PECL extension to be loaded.');
}
$params = array_merge(array(
'app' => 'horde',
'service' => 'php'
), $params);
parent::__construct($params);
sasl_server_init($this->_params['app']);
}
/**
* Find out if a set of login credentials are valid.
*
* @param string $userId The userId to check.
* @param array $credentials An array of login credentials.
*
* @throws Horde_Auth_Exception
*/
protected function _authenticate($userId, $credentials)
{
if (empty($credentials['password'])) {
throw new Horde_Auth_Exception('', Horde_Auth::REASON_BADLOGIN);
}
$conn = sasl_server_new($this->_params['service']);
if (!is_resource($conn)) {
throw new Horde_Auth_Exception('Failed to create new SASL connection.');
}
if (!sasl_checkpass($conn, $userId, $credentials['password'])) {
throw new Horde_Auth_Exception(sasl_errdetail($conn));
}
}
}
|