Sha256: 4713c132c57eb5f881df78586ccfa9aee83fe365b09de2443a6ccfc788b338e8
Contents?: true
Size: 1.88 KB
Versions: 1
Compression:
Stored size: 1.88 KB
Contents
require 'net/ldap'
class CmsUser < ActiveRecord::Base
validates :login,
:presence => true,
:uniqueness => true
validates :first_name,
:presence => true
validates :last_name,
:presence => true
attr_accessor :password_confirmation
validates_confirmation_of :password
# 'password' is a virtual attribute
def password
@password
end
def password=(pwd)
@password = pwd
return if pwd.blank?
create_new_salt
self.hashed_password = CmsUser.encrypted_password(self.password, self.salt)
end
def full_name
[first_name, last_name].join(' ')
end
def self.authenticate(login, password, authentication, ldap_hostname, ldap_base_DN, ldap_uid)
if authentication == 'LDAP'
username = login
if (password.empty?) then
return nil
end
ldap = Net::LDAP.new(:host => ldap_hostname, :base => ldap_base_DN)
filter = Net::LDAP::Filter.eq(ldap_uid, login)
ldap.search(:filter => filter) {|entry| login = entry.dn}
ldap.auth(login, password)
if ldap.bind
user = CmsUser.find_by_login_and_disabled(username, false) # need to check if user is in the database and not disabled
if (user)
return user
else
#user is in LDAP but not in local database
return nil
end
else
#authentication failed
return nil
end
else
user= self.find_by_login(login)
if user
expected_password = encrypted_password(password, user.salt)
if user.hashed_password != expected_password
user = nil
end
end
user
end
end
private
def create_new_salt
self.salt = self.object_id.to_s + rand.to_s
end
def self.encrypted_password(password,salt)
string_to_hash = password + "LucyCMS" + salt
Digest::SHA1.hexdigest(string_to_hash)
end
end
Version data entries
1 entries across 1 versions & 1 rubygems
| Version | Path |
|---|---|
| lucy_cms-0.0.6 | app/models/cms_user.rb |