ltb-project · ghost · Dec 14, 2016 · Dec 14, 2016 · Dec 25, 2016 · Jan 5, 2017
diff --git a/conf/config.inc.php b/conf/config.inc.php
@@ -30,6 +30,7 @@
 $ldap_base = "dc=example,dc=com";
 $ldap_login_attribute = "uid";
 $ldap_fullname_attribute = "cn";
+$ldap_givenname_attribue = "givenName";
 $ldap_filter = "(&(objectClass=person)($ldap_login_attribute={login}))";
 
 # Active Directory mode
@@ -172,6 +173,11 @@
 $mail_from = "[email protected]";
 $mail_from_name = "Self Service Password";
 $mail_signature = "";
+# Which display name is used in mails?
+# login (default)
+# fullname
+# givenname
+$mail_display_name = "login";
 # Notify users anytime their password is changed
 $notify_on_change = false;
 # PHPMailer configuration (see https://github.com/PHPMailer/PHPMailer)

diff --git a/pages/change.php b/pages/change.php
@@ -32,6 +32,7 @@
 $oldpassword = "";
 $ldap = "";
 $userdn = "";
+$display_name_lookup = "";
 if (!isset($pwd_forbidden_chars)) { $pwd_forbidden_chars=""; }
 $mail = "";
 
@@ -123,12 +124,35 @@
  error_log("LDAP - User $login not found");
  } else {
 
- # Get user email for notification
+ # Get user email and names for notification
+
  if ( $notify_on_change ) {
  $mailValues = ldap_get_values($ldap, $entry, $mail_attribute);
+ $login_values = ldap_get_values($ldap, $entry, $ldap_login_attribute);
+ $givenname_values = ldap_get_values($ldap, $entry, $ldap_givenname_attribute);
+ $fullname_values = ldap_get_values($ldap, $entry, $ldap_fullname_attribute);
+
  if ( $mailValues["count"] > 0 ) {
  $mail = $mailValues[0];
  }
+ if ( $login_values["count"] > 0 ) {
+ $display_name_lookup["login"] = $login_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["login"] = $login;
+ }
+ if ( $givenname_values["count"] > 0 ) {
+ $display_name_lookup["givenname"] = $givenname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["givenname"] = $login;
+ }
+ if ( $fullname_values["count"] > 0 ) {
+ $display_name_lookup["fullname"] = $fullname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["fullname"] = $login;
+ } 
  }
 
  # Check objectClass to allow samba and shadow updates
@@ -305,7 +329,7 @@
 
  # Notify password change
  if ($mail and $notify_on_change) {
- $data = array( "login" => $login, "mail" => $mail, "password" => $newpassword);
+ $data = array( "login" => $display_name_lookup[$mail_display_name], "mail" => $mail, "password" => $newpassword);
  if ( !send_mail($mailer, $mail, $mail_from, $mail_from_name, $messages["changesubject"], $messages["changemessage"].$mail_signature, $data) ) {
  error_log("Error while sending change email to $mail (user $login)");
  }

diff --git a/pages/resetbyquestions.php b/pages/resetbyquestions.php
@@ -33,6 +33,7 @@
 $confirmpassword = "";
 $ldap = "";
 $userdn = "";
+$display_name_lookup = "";
 if (!isset($pwd_forbidden_chars)) { $pwd_forbidden_chars=""; }
 $mail = "";
 
@@ -134,12 +135,34 @@
  $shadow_options['update_shadowExpire'] = false;
  }
 
- # Get user email for notification
+ # Get user email and names for notification
  if ( $notify_on_change ) {
  $mailValues = ldap_get_values($ldap, $entry, $mail_attribute);
+ $login_values = ldap_get_values($ldap, $entry, $ldap_login_attribute);
+ $givenname_values = ldap_get_values($ldap, $entry, $ldap_givenname_attribute);
+ $fullname_values = ldap_get_values($ldap, $entry, $ldap_fullname_attribute);
+
  if ( $mailValues["count"] > 0 ) {
  $mail = $mailValues[0];
  }
+ if ( $login_values["count"] > 0 ) {
+ $display_name_lookup["login"] = $login_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["login"] = $login;
+ }
+ if ( $givenname_values["count"] > 0 ) {
+ $display_name_lookup["givenname"] = $givenname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["givenname"] = $login;
+ }
+ if ( $fullname_values["count"] > 0 ) {
+ $display_name_lookup["fullname"] = $fullname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["fullname"] = $login;
+ } 
  } 
 
  # Get question/answer values
@@ -292,7 +315,7 @@
 
  # Notify password change
  if ($mail and $notify_on_change) {
- $data = array( "login" => $login, "mail" => $mail, "password" => $newpassword);
+ $data = array( "login" => $display_name_lookup[$mail_display_name], "mail" => $mail, "password" => $newpassword);
  if ( !send_mail($mailer, $mail, $mail_from, $mail_from_name, $messages["changesubject"], $messages["changemessage"].$mail_signature, $data) ) {
  error_log("Error while sending change email to $mail (user $login)");
  }

diff --git a/pages/resetbytoken.php b/pages/resetbytoken.php
@@ -33,6 +33,8 @@
 $confirmpassword = "";
 $ldap = "";
 $userdn = "";
+$display_name_lookup = "";
+
 if (!isset($pwd_forbidden_chars)) { $pwd_forbidden_chars=""; }
 $mail = "";
 
@@ -170,12 +172,34 @@
  $shadow_options['update_shadowExpire'] = false;
  }
 
- # Get user email for notification
+ # Get user email and names for notification
  if ( $notify_on_change ) {
  $mailValues = ldap_get_values($ldap, $entry, $mail_attribute);
+ $login_values = ldap_get_values($ldap, $entry, $ldap_login_attribute);
+ $givenname_values = ldap_get_values($ldap, $entry, $ldap_givenname_attribute);
+ $fullname_values = ldap_get_values($ldap, $entry, $ldap_fullname_attribute);
+
  if ( $mailValues["count"] > 0 ) {
  $mail = $mailValues[0];
  }
+ if ( $login_values["count"] > 0 ) {
+ $display_name_lookup["login"] = $login_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["login"] = $login;
+ }
+ if ( $givenname_values["count"] > 0 ) {
+ $display_name_lookup["givenname"] = $givenname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["givenname"] = $login;
+ }
+ if ( $fullname_values["count"] > 0 ) {
+ $display_name_lookup["fullname"] = $fullname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["fullname"] = $login;
+ } 
  }
 
 }}}}
@@ -301,7 +325,7 @@
 
  # Notify password change
  if ($mail and $notify_on_change) {
- $data = array( "login" => $login, "mail" => $mail, "password" => $newpassword);
+ $data = array( "login" => $display_name_lookup[$mail_display_name], "mail" => $mail, "password" => $newpassword);
  if ( !send_mail($mailer, $mail, $mail_from, $mail_from_name, $messages["changesubject"], $messages["changemessage"].$mail_signature, $data) ) {
  error_log("Error while sending change email to $mail (user $login)");
  }

diff --git a/pages/sendtoken.php b/pages/sendtoken.php
@@ -31,6 +31,7 @@
 $ldap = "";
 $userdn = "";
 $token = "";
+$display_name_lookup = "";
 
 if (!$mail_address_use_ldap) {
  if (isset($_POST["mail"]) and $_POST["mail"]) { $mail = $_POST["mail"]; }
@@ -140,6 +141,30 @@
  }
  }
 
+ # Get user names for email 
+ $login_values = ldap_get_values($ldap, $entry, $ldap_login_attribute);
+ $givenname_values = ldap_get_values($ldap, $entry, $ldap_givenname_attribute);
+ $fullname_values = ldap_get_values($ldap, $entry, $ldap_fullname_attribute);
+
+ if ( $login_values["count"] > 0 ) {
+ $display_name_lookup["login"] = $login_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["login"] = $login;
+ }
+ if ( $givenname_values["count"] > 0 ) {
+ $display_name_lookup["givenname"] = $givenname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["givenname"] = $login;
+ }
+ if ( $fullname_values["count"] > 0 ) {
+ $display_name_lookup["fullname"] = $fullname_values[0];
+ } else {
+ # fallback to login provided by user
+ $display_name_lookup["fullname"] = $login;
+ } 
+
  if (!$match) {
  if (!$mail_address_use_ldap) {
  $result = "mailnomatch";
@@ -207,7 +232,7 @@
  error_log("Send reset URL $reset_url");
  }
 
- $data = array( "login" => $login, "mail" => $mail, "url" => $reset_url ) ;
+ $data = array( "login" => $display_name_lookup[$mail_display_name], "mail" => $mail, "url" => $reset_url ) ;
 
  # Send message
  if ( send_mail($mailer, $mail, $mail_from, $mail_from_name, $messages["resetsubject"], $messages["resetmessage"].$mail_signature, $data) ) {