xref: /plugin/authwordpress/auth.php (revision c3db870a9062bbf36a3c412394fd189391d36feb) 
1<?php
2/**
3 * DokuWiki Plugin authwordpress (Auth Component)
4 *
5 * Provides authentication against a WordPress MySQL database backend
6 *
7 * This program is free software; you can redistribute it and/or modify
8 * it under the terms of the GNU General Public License as published by
9 * the Free Software Foundation; version 2 of the License
10 *
11 * This program is distributed in the hope that it will be useful,
12 * but WITHOUT ANY WARRANTY; without even the implied warranty of
13 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
14 * GNU General Public License for more details.
15 *
16 * See the COPYING file in your DokuWiki folder for details
17 *
18 * @author     Damien Regad <dregad@mantisbt.org>
19 * @copyright  2015 Damien Regad
20 * @license    GPL 2 http://www.gnu.org/licenses/gpl-2.0.html
21 * @version    1.0
22 * @link       https://github.com/dregad/dokuwiki-authwordpress
23 */
24
25
26// must be run within Dokuwiki
27if(!defined('DOKU_INC')) die();
28
29/**
30 * WordPress password hashing framework
31 */
32require_once('class-phpass.php');
33
34/**
35 * Authentication class
36 */
37class auth_plugin_authwordpress extends DokuWiki_Auth_Plugin {
38
39	/**
40	 * SQL statement to retrieve User data from WordPress DB
41	 * (including group memberships)
42	 */
43	const SQL_WP_USER_DATA = "SELECT
44			id, user_login, user_pass, user_email, display_name,
45			meta_value AS groups
46		FROM wp_users u
47		JOIN wp_usermeta m ON u.id = m.user_id
48		WHERE meta_key = 'wp_capabilities'
49		AND user_login = :user";
50
51	/**
52	 * Constructor.
53	 */
54	public function __construct() {
55		parent::__construct();
56
57		// Try to establish a connection to the WordPress DB
58		// abort in case of failure
59		try {
60			$wp_db = $this->wp_connect();
61		}
62		catch (Exception $e) {
63			msg(sprintf($this->getLang('error_connect_failed'), $e->getMessage()));
64			$this->success = false;
65			return;
66		}
67
68		$this->success = true;
69	}
70
71
72	/**
73	 * Check user+password
74	 *
75	 * @param   string $user the user name
76	 * @param   string $pass the clear text password
77	 * @return  bool
78	 *
79	 * @uses PasswordHash::CheckPassword WordPress password hasher
80	 */
81	public function checkPass($user, $pass) {
82		$data = $this->getUserData($user);
83		if ($data === false) {
84			return false;
85		}
86
87		$hasher = new PasswordHash(8, true);
88		return $hasher->CheckPassword($pass, $data['pass']);
89	}
90
91
92	/**
93	 * Returns info about the given user
94	 *
95	 * @param   string $user the user name
96	 * @return  array containing user data or false
97	 */
98	function getUserData($user, $requireGroups=true) {
99		global $conf;
100
101		$wp_db = $this->wp_connect();
102		$stmt = $wp_db->prepare(self::SQL_WP_USER_DATA);
103		$stmt->bindParam(':user', $user);
104
105		if (!$stmt->execute()) {
106			return false;
107		}
108		$user = $stmt->fetch();
109
110		// Group membership - add DokuWiki's default group
111		$groups = array_keys(unserialize($user['groups']));
112		$groups[] = $conf['defaultgroup'];
113
114		$info = array(
115			'user' => $user['user_login'],
116			'name' => $user['display_name'],
117			'pass' => $user['user_pass'],
118			'mail' => $user['user_email'],
119			'grps' => $groups,
120		);
121		return $info;
122	}
123
124
125	/**
126	 * Connect to Wordpress database
127	 *
128	 * @return PDO object
129	 */
130	private function wp_connect() {
131		$dsn = array(
132			'host=' . $this->getConf('hostname'),
133			'dbname=' . $this->getConf('database'),
134		);
135		$port = $this->getConf('port');
136		if ($port) {
137			$dsn[] = 'port=' . $port;
138		}
139		$dsn = 'mysql:' . implode(';', $dsn);
140
141		return new PDO($dsn, $this->getConf('username'), $this->getConf('password'));
142	}
143
144}
145
146// vim:ts=4:sw=4:et: