X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=search.cgi;h=37695386b8bbde31bc82e6e303219247c776d582;hb=69124a32dd2d4e722e04b7258457532f973e6f09;hp=16d00b0c6ec1b6807b6e48956daef74fb6c3a492;hpb=3bce39d94939aaf999189e4aaed805858a996153;p=mirror%2Fuserdir-ldap-cgi.git diff --git a/search.cgi b/search.cgi index 16d00b0..3769538 100755 --- a/search.cgi +++ b/search.cgi @@ -17,11 +17,11 @@ use Net::LDAP qw(LDAP_SUCCESS LDAP_PROTOCOL_ERROR); my %config = &Util::ReadConfigFile; my $query = new CGI; -my $id = $query->param('id'); +my $id = uri_escape($query->param('id')); my $authtoken = $query->param('authtoken'); my $password = &Util::CheckAuthToken($authtoken); -my $dosearch = $query->param('dosearch'); -my $searchdn = $query->param('searchdn'); +my $dosearch = uri_escape($query->param('dosearch')); +my $searchdn = uri_escape($query->param('searchdn')); my $ldap = undef; my $proto = ($ENV{HTTPS} ? "https" : "http"); @@ -30,7 +30,7 @@ sub DieHandler { $ldap->unbind if (defined($ldap)); } -$SIG{__DIE__} = \&DieHandler; +#$SIG{__DIE__} = \&DieHandler; if (!$dosearch) { # No action yet, send back the search form... @@ -61,7 +61,7 @@ if (!$dosearch) { # go through %searchdata and pull out all the search criteria the user # specified... - my $filter = "(objectclass=inetOrgPerson)"; + my $filter = "(objectclass=inetOrgPerson)(!(accountStatus=*))"; foreach (keys(%searchdata)) { if ($query->param($searchdata{$_}{formname})) { if ($query->param($searchdata{$_}{fuzzy})) { @@ -191,7 +191,7 @@ if (!$dosearch) { $vacation = $data->{onvacation}->[0] if ($authtoken && $id); # OK, now generate output... (i.e. put the output into the buffer ) - $outsub{searchresults} .= ''; + $outsub{searchresults} .= '
'; $outsub{searchresults} .= '\n";
'."$name "; $outsub{searchresults} .= "($ufdn)