<?php
/**
 * This auth mechanism need a small patch of the smf forum.
 * To install it, please enter the smf forum folder and call:
 * patch -p1 -i PATH_TO_THIS_FOLDER/smf.patch
 */

// must be run within Dokuwiki
if (!defined('DOKU_INC')) die();


if (is_dir($_SERVER['DOCUMENT_ROOT'].$GLOBALS['conf']['plugin']['authsmf']['smfPath'])) {
	// get smf session
	session_write_close();
	$session_params = session_get_cookie_params();
	$session_name = session_name('PHPSESSID');
	session_set_cookie_params(0, '/');
	ini_set('session.auto_start', 1);
	require_once($_SERVER['DOCUMENT_ROOT'].$GLOBALS['conf']['plugin']['authsmf']['smfPath'].'/SSI.php');
	$_SESSION['login_url'] = preg_replace("|[^/]*$|", "", $_SERVER['HTTP_REFERER']);
	$_SESSION['logout_url'] = preg_replace("|[^/]*$|", "", $_SERVER['HTTP_REFERER']);
	session_write_close();
	session_name($session_name);
	session_set_cookie_params($session_params['lifetime'], $session_params['path']);
	ini_set('session.save_handler', 'files');
	session_start();
}


/**
 * smf authentication backend
 *
 * @license    GPL 2 (http://www.gnu.org/licenses/gpl.html)
 * @author     Claus Muus <dokuwiki@clausmuus.de>
 */
class auth_plugin_authsmf extends DokuWiki_Auth_Plugin
{

	/**
	 * Constructor
	 *
	 * checks if the smf forum path is set correct, otherwise
	 * set the variable $success of the basis class to false
	 *
	 * @author Matthias Grimm <matthiasgrimm@users.sourceforge.net>
	 */
	public function __construct()
	{
		parent::__construct();

		$this->cando['external'] = true;
		$this->cando['logout'] = true;

		$this->success = is_file($_SERVER['DOCUMENT_ROOT'].$GLOBALS['conf']['plugin']['authsmf']['smfPath'].'/SSI.php');
	}

	/**
	 * Do all authentication
	 *
	 * @param   string $user    Username
	 * @param   string $pass    Cleartext Password
	 * @param   bool $sticky  Cookie should not expire
	 * @return  bool             true on successful auth
	 */
	function trustExternal($user, $pass, $sticky = false)
	{
		global $context;
		global $sc;
		global $conf;
		global $USERINFO;

		if(!empty($user)){
			$hash_passwrd = sha1(sha1(strtolower($user) . $pass) . $sc);
			header('Location: '.$conf['plugin']['authsmf']['smfPath'].'?action=login2&user='.$user.'&hash_passwrd='.$hash_passwrd.($sticky ? '&cookieneverexp=1' : ''));
			exit;
		}
		
		if (isset($context['user']) && !$context['user']['is_guest']) {
			$USERINFO['name'] = $context['user']['name'];
			$USERINFO['mail'] = $context['user']['email'];
			$USERINFO['grps'] = array();
			$USERINFO['grps'][] = 'user';
			if ($context['user']['can_mod'])
				$USERINFO['grps'][] = 'moderator';
			if ($context['user']['is_admin'])
				$USERINFO['grps'][] = 'admin';

			$_SERVER['REMOTE_USER'] = utf8_decode($context['user']['username']);
			$_SESSION[DOKU_COOKIE]['auth']['user'] = $context['user']['username'];
			$_SESSION[DOKU_COOKIE]['auth']['info'] = $USERINFO;
			return true;
		}

		// to be sure
		auth_logoff();

		$USERINFO['grps'] = array();
		return false;

	}

	/**
	 * Log off the current user
	 */
	public function logOff() {
		global $context;
		global $conf;
		if (isset($context['user']) && !$context['user']['is_guest']) {
			header('Location: '.$conf['plugin']['authsmf']['smfPath'].'?action=logout;'.$context['session_var'].'='.$context['session_id']);
			exit;
		}
	}

}