X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=search.cgi;h=37695386b8bbde31bc82e6e303219247c776d582;hb=49c05461dc2851df308933e0e2976feb16dec0f3;hp=dcab35b22325036ee9ecd7c444a3e4f80cbd2b7b;hpb=80ed561a914ae1af6948747933e260c4623df222;p=mirror%2Fuserdir-ldap-cgi.git diff --git a/search.cgi b/search.cgi index dcab35b..3769538 100755 --- a/search.cgi +++ b/search.cgi @@ -11,17 +11,17 @@ use strict vars; use CGI; use Util; use URI::Escape; -use Net::LDAP qw(:all); +use Net::LDAP qw(LDAP_SUCCESS LDAP_PROTOCOL_ERROR); # Global settings... my %config = &Util::ReadConfigFile; my $query = new CGI; -my $id = $query->param('id'); +my $id = uri_escape($query->param('id')); my $authtoken = $query->param('authtoken'); my $password = &Util::CheckAuthToken($authtoken); -my $dosearch = $query->param('dosearch'); -my $searchdn = $query->param('searchdn'); +my $dosearch = uri_escape($query->param('dosearch')); +my $searchdn = uri_escape($query->param('searchdn')); my $ldap = undef; my $proto = ($ENV{HTTPS} ? "https" : "http"); @@ -30,7 +30,7 @@ sub DieHandler { $ldap->unbind if (defined($ldap)); } -$SIG{__DIE__} = \&DieHandler; +#$SIG{__DIE__} = \&DieHandler; if (!$dosearch) { # No action yet, send back the search form... @@ -61,7 +61,7 @@ if (!$dosearch) { # go through %searchdata and pull out all the search criteria the user # specified... - my $filter = "(objectclass=inetOrgPerson)"; + my $filter = "(objectclass=inetOrgPerson)(!(accountStatus=*))"; foreach (keys(%searchdata)) { if ($query->param($searchdata{$_}{formname})) { if ($query->param($searchdata{$_}{fuzzy})) { @@ -191,7 +191,7 @@ if (!$dosearch) { $vacation = $data->{onvacation}->[0] if ($authtoken && $id); # OK, now generate output... (i.e. put the output into the buffer ) - $outsub{searchresults} .= ''; + $outsub{searchresults} .= '
'; $outsub{searchresults} .= '\n";
'."$name "; $outsub{searchresults} .= "($ufdn)