X-Git-Url: https://git.adam-barratt.org.uk/?p=mirror%2Fuserdir-ldap-cgi.git;a=blobdiff_plain;f=search.cgi;h=f170025dd1e59003e2e4d80482d5d237c2d310c3;hp=fade2a7d6c487334c38922dfaec332f8cc6f6fa8;hb=036702ecd044b501dce1b05dfbf19a17921120da;hpb=93f39f9573613a5161a99557f8293bbdf7a435dd diff --git a/search.cgi b/search.cgi index fade2a7..f170025 100755 --- a/search.cgi +++ b/search.cgi @@ -4,6 +4,7 @@ # (c) 1999 Randolph Chung. Licensed under the GPL. # (c) 2004 Martin Schulze. Licensed under the GPL. # (c) 2006 Ryan Murray. Licensed under the GPL. +# Copyright (c) 2008, 2011, 2013, 2015 Peter Palfrader use lib '.'; use strict vars; @@ -17,12 +18,21 @@ use Net::LDAP qw(LDAP_SUCCESS LDAP_PROTOCOL_ERROR); my %config = &Util::ReadConfigFile; my $query = new CGI; -my $id = uri_escape($query->param('id')); +my $id = $query->param('id'); my $authtoken = $query->param('authtoken'); -my $password = &Util::CheckAuthToken($authtoken); my $dosearch = uri_escape($query->param('dosearch')); my $searchdn = uri_escape($query->param('searchdn')); + my $ldap = undef; +my $password = undef; + +if ($authtoken || $id) { + $password = Util::TouchAuthToken($authtoken, $id); +} else { + $password = ''; + $id = ''; + $authtoken = ''; +} my $proto = ($ENV{HTTPS} ? "https" : "http"); @@ -61,7 +71,7 @@ if (!$dosearch) { # go through %searchdata and pull out all the search criteria the user # specified... - my $filter = "(objectclass=inetOrgPerson)"; + my $filter = "(objectclass=inetOrgPerson)(!(accountStatus=*))"; foreach (keys(%searchdata)) { if ($query->param($searchdata{$_}{formname})) { if ($query->param($searchdata{$_}{fuzzy})) { @@ -236,7 +246,7 @@ if (!$dosearch) { # If this is ourselves, present a link to do mods if ($auth && ($id eq $data->{uid}->[0])) { #TODO: extract this string into a url for translation... - $outsub{searchresults} .= "Edit my settings\n"; + $outsub{searchresults} .= "Edit my settings\n"; } $outsub{searchresults} .= "


\n";