tools/ldap/ldap_convert.php

   1 #!/usr/bin/php
   2 <?
   3 /*
   4  *   This script is used to export users from x3.db to an ldap server
   5  *   when initially converting to x3's ldap based authentication.
   6  *
   7  *   Its expected you would modify and well-test this before running it on
   8  *   a production database. Use at your own risk!
   9  *
  10  *   Edit the variables below first..
  11  *
  12  */
  13 /* -------------------------------------------- */;
  14 /* CONFIGURATION */
  15 /* -------------------------------------------- */;
  16
  17 $db = "/home/you/x3/x3.db";
  18 $ldap_server = "localhost";
  19 $ldap_bind = "cn=admin,dc=afternet,dc=org";
  20 $ldap_pass = "yourpassword";
  21 $ldap_add = "ou=Users,dc=afternet,dc=org"; /* excludes the uid= part on purpose, dont add in */
  22
  23 /* -------------------------------------------- */;
  24
  25 echo "------------------------------------------\n";
  26 echo "X3 to LDAP dump script\n";
  27 echo "Copyright (C) 2007 evilnet development\n";
  28 echo "------------------------------------------\n\n";
  29
  30 if (!extension_loaded('ldap'))
  31     die("PHP Extension LDAP MUST be loaded before using this script.\n");
  32
  33 $handle=fopen($db, r);
  34 $ns = 0;
  35 $add = 0;
  36 $np = 0;
  37 $parse = 0;
  38
  39 if ($handle) {
  40     echo "Connecting to ldap server\n";
  41     $ds=ldap_connect($ldap_server);
  42
  43     if (!$ds)
  44         die("Couldnt connect to ldap server\n");
  45
  46     echo "Switching to ldap protocol 3\n";
  47     ldap_set_option($ds, LDAP_OPT_PROTOCOL_VERSION, 3);
  48
  49     echo "Binding to ldap server\n";
  50     $r=ldap_bind($ds, $ldap_bind, $ldap_pass);
  51     if (!$r)
  52         die("LDAP bind error - ". ldap_error($ds) ."\n");
  53
  54     echo "Attempting to read $db\n";
  55     while (!feof($handle)) {
  56         $line = fgets($handle, 4096);
  57         $line = trim($line);
  58         $gotpass = 0;
  59         $gotemail = 0;
  60         $user = NULL;
  61         $pass = NULL;
  62         $email = NULL;
  63         if ($line == "\"NickServ\" {") {
  64             $ns = 1;
  65             continue;
  66         }
  67
  68         if ($line == "\"ChanServ\" {")
  69             $ns = 0;
  70
  71         if ($ns == 1) {
  72             $parse++;
  73             $space = " ";
  74             $exp = explode($space, $line);
  75             $i = sizeof($exp);
  76             $i--;
  77             while ($exp[$i] != NULL) {
  78                 if (($exp[$i] == "\"passwd\"") && ($gotpass == 0)) {
  79                     $pass = $exp[$i+1];
  80                     $gotpass = 1;
  81                 }
  82
  83                 if (($exp[$i] == "\"email_addr\"") && ($gotemail == 0)) {
  84                     $email = $exp[$i+1];
  85                     $gotemail = 1;
  86                 }
  87                 $i--;
  88             }
  89
  90             $user = $exp[0];
  91
  92             $user = trim($user, "\";");
  93             $pass = trim($pass, "\";");
  94             $email = trim($email, "\";");
  95             if ($user && $pass && $email && ($user != "}")) {
  96                 unset($info);
  97
  98                 $info["objectclass"][] = "top";
  99                 $info["objectclass"][] = "inetOrgAnonAccount";
 100                 $info["uid"]=$user;
 101                 $info["mail"]=$email;
 102                 if ($pass[0] == "$") {
 103                         $info["userPassword"] = "";
 104                         echo "ALERT: $user ADDED WITH NO PASSWORD (old crypt style)\n";
 105                         $alert = 1;
 106                         $np++;
 107                 } else
 108                         $info["userPassword"]='{MD5}'.base64_encode(pack('H*',$pass));
 109
 110                 $r=@ldap_add($ds, "uid=".$user.",$ldap_add", $info);
 111                 if ($r) {
 112                     $add++;
 113                     echo "Added $user (email: $email) (pass: $pass)\n";
 114                     /* print_r($info);*/
 115                 } else
 116                     echo "Failed adding $user (email: $email) (pass: $pass) - ". ldap_error($ds) ."\n";
 117
 118             } else if (!$user || !$pass || !$email) {
 119                 if (!$user && !$pass && !$email)
 120                     continue; /* misc bits after entries */
 121
 122                 if (($user == "}") && !$pass && !$email)
 123                     continue; /* misc bits after entries */
 124
 125                 echo "Missing fields from $db (User: $user Pass: $pass Email: $email)\n";
 126             }
 127
 128         }
 129     }
 130 } else
 131   die("Couldnt read $db\n");
 132
 133 echo "Disconnecting from ldap server\n";
 134 ldap_close($ds);
 135 $parse--;
 136 $parse--;
 137 echo "Processed $parse accounts.\n";
 138 echo "Added $add accounts to the ldap server\n";
 139 if (($alert == 1) && ($np > 0))
 140         echo "ALERT: $np ACCOUNTS ADDED WITH NO PASSWORD (old crypt style)\n";
 141 ?>