feat: implement user creation, editing, and deletion functionality ALL features are working
This commit is contained in:
Morph01
50
controllers/edit_user.php
Normal file
50
controllers/edit_user.php
Normal file
@@ -0,0 +1,50 @@
|
||||
<?php
|
||||
session_start();
|
||||
if (!isset($_SESSION["login"]) || !$_SESSION["is_admin"]) {
|
||||
header('Location: auth.php');
|
||||
exit;
|
||||
}
|
||||
|
||||
require_once __DIR__ . '/../models/LDAPAuth.php';
|
||||
|
||||
// Utiliser $_POST au lieu de $_GET pour récupérer le DN
|
||||
$user_dn = isset($_POST['dn']) ? urldecode($_POST['dn']) : '';
|
||||
|
||||
if (empty($user_dn)) {
|
||||
die("DN de l'utilisateur manquant.");
|
||||
}
|
||||
|
||||
// Construction du tableau des attributs en filtrant les valeurs vides et en forçant un format tableau
|
||||
$attributes = [];
|
||||
|
||||
if (!empty($_POST['firstname'])) {
|
||||
$attributes['givenName'] = [$_POST['firstname']];
|
||||
}
|
||||
|
||||
if (!empty($_POST['lastname'])) {
|
||||
$attributes['sn'] = [$_POST['lastname']];
|
||||
}
|
||||
|
||||
if (!empty($_POST['email'])) {
|
||||
$attributes['mail'] = [$_POST['email']];
|
||||
}
|
||||
|
||||
if (!empty($_POST['new_password'])) {
|
||||
$attributes['userPassword'] = [$_POST['new_password']];
|
||||
}
|
||||
|
||||
$ldapAuth = new LDAPAuth();
|
||||
$user_ou = $ldapAuth->getUserOUFromDN($user_dn);
|
||||
if ($user_ou === null || !in_array($user_ou, $_SESSION['admin_ous'])) {
|
||||
die("Accès non autorisé");
|
||||
}
|
||||
|
||||
try {
|
||||
if ($ldapAuth->updateUserWithAdminAuth($user_dn, $attributes, $_SESSION['sAMAccountName'], $_SESSION['password'])) {
|
||||
header("Location: ../views/list_users.php?ou=" . urlencode($user_ou));
|
||||
} else {
|
||||
die("Erreur lors de la modification.");
|
||||
}
|
||||
} catch (Exception $e) {
|
||||
die("Erreur : " . $e->getMessage());
|
||||
}
|
||||
Reference in New Issue
Block a user