feat: use a service account to permit read only checks like for auth

views/auth.php

@@ -9,8 +9,8 @@
 
 <body>
     <form method="post" action="index.php?action=login">
-        <label for="user_pseudo">Votre identifiant:</label>
-        <input type="text" id="user_pseudo" name="user_pseudo" required><br>
+        <label for="sAMAccountName">Votre identifiant (sAMAccountName):</label>
+        <input type="text" id="sAMAccountName" name="sAMAccountName" required><br>
 
         <label for="user_password">Votre mot de passe:</label>
         <input type="password" id="user_password" name="user_password" required><br>

views/delete_user.php

@@ -34,7 +34,7 @@ function deleteUser($user_dn)
     ldap_set_option($ldapconn, LDAP_OPT_PROTOCOL_VERSION, 3);
     ldap_set_option($ldapconn, LDAP_OPT_REFERRALS, 0);
 
-    $ldap_user = "CN=" . $_SESSION['user_pseudo'] . ",CN=Users,DC=epul3a,DC=local";
+    $ldap_user = "CN=" . $_SESSION['sAMAccountName'] . ",CN=Users,DC=epul3a,DC=local";
 
     if (!@ldap_bind($ldapconn, $ldap_user, $_SESSION['password'])) {
         die("Could not bind to LDAP server: " . ldap_error($ldapconn));

views/menu.php

@@ -7,9 +7,9 @@ if (!isset($_SESSION["login"]) || $_SESSION["login"] !== true) {
 require_once __DIR__ . '/../controllers/controllerAdmin.php';
 
 // Récupérer les infos de l'utilisateur
-// $user_info = getUserByPseudo($_SESSION["user_pseudo"]);
+// $user_info = getUserByPseudo($_SESSION["sAMAccountName"]);
 
-echo "Bienvenue " . $_SESSION["user_pseudo"] . "!";
+echo "Bienvenue " . $_SESSION["sAMAccountName"] . "!";
 
 // Affichage du menu
 echo "<h2>Menu</h2>";
@@ -20,6 +20,13 @@ if ($_SESSION["is_admin"]) {
 }
 echo "</ul>";
 
+echo $_SESSION["sAMAccountName"];
+echo $_SESSION["password"];
+
+
+$ou = getUserOU($_SESSION['sAMAccountName']);
+echo "L'OU de l'utilisateur est : " . ($ou ? $ou : "Non trouvé");
+
 // Bouton de déconnexion
 echo "<form method='post' action='../controllers/logout.php'>";
 echo "<input type='submit' value='Déconnexion'>";