#!/usr/bin/perl
#
# NicTool v2.00-rc1 Copyright 2001 Damon Edwards, Abe Shelton & Greg Schueler
# NicTool v2.01 Copyright 2004 The Network People, Inc.
#
# NicTool is free software; you can redistribute it and/or modify it under
# the terms of the Affero General Public License as published by Affero,
# Inc.; either version 1 of the License, or any later version.
#
# NicTool is distributed in the hope that it will be useful, but WITHOUT
# ANY WARRANTY; without even the implied warranty of MERCHANTABILITY
# or FITNESS FOR A PARTICULAR PURPOSE. See the Affero GPL for details.
#
# You should have received a copy of the Affero General Public License
# along with this program; if not, write to Affero Inc., 521 Third St,
# Suite 225, San Francisco, CA 94107, USA
#

use strict;
use Net::LDAP;

require 'nictoolclient.conf';

main();

sub main {
    my $q      = new CGI();
    my $nt_obj = new NicToolClient($q);

    return if $nt_obj->check_setup ne 'OK';

    if ( $q->param('login') ) {
        do_login( $nt_obj, $q );
        return;
    }
    if ( $q->param('logout') ) {
        my $data = $nt_obj->logout_user();
        $nt_obj->display_login($data);
        return;
    }

    my $cookie = $q->cookie('NicTool');
#    if ( ! $cookie ) {
#        $nt_obj->display_login( $q->param('message') );
#        return;
#    }

if( $q->remote_user()) { do_login( $nt_obj, $q ); return; }

    my $response = $nt_obj->{nt_server_obj}->send_request(
        action          => "verify_session",
        nt_user_session => $cookie,
    );

    if ( ! ref $response ) {
        $nt_obj->display_login( $response );
        return;
    };

    if ( $response->{'error_code'} ) {
        #$nt_obj->expire_cookie( $q, $cookie );
        $nt_obj->display_login( $response->{'error_msg'} );
        return;
    }

    display_frameset( $nt_obj, $response );
}

sub display_frameset {
    my ( $nt_obj, $data ) = @_;

    $nt_obj->set_cookie( $data->{nt_user_session} ); 
 
    $nt_obj->parse_template(
        $NicToolClient::frameset_template,
        nt_group_id => $data->{'nt_group_id'}
    );
}

sub do_login {
    my ( $nt_obj, $q ) = @_;

my $server = "";
my $bindu = '';
my $basedn = "";
my $bindp = '';
my $user = ( $q->remote_user() );


my $ldap = Net::LDAP->new($server) or die "$@";
#$ldap->bind($bindu, password => $bindp);
$ldap->bind();

my $result = $ldap->search( filter=>"(uid=$user)",
                       base => $basedn,
                       attrs => ['ou'],
                       );

$result->code && die $result->error;

die "Multiple results returned" if( $result->count > 1 );
die "No results returned" if( $result->count == 0 );

my @dn = split(/,/, $result->entry(0)->dn);
my @ou = split(/=/, $dn[1]);

    if( $q->remote_user()) {
        # they've logged in previously
            $q->param('username', $q->remote_user());
	    $q->param( 'password', "" );
	    #print "Admin case\n";
	    #print "NT USER: $user\@$ou[1]\n";
    }

    # login form was submitted, make sure user/pass was too
    if( $q->param('username') eq '' || ( $q->param('password') eq '' and ! $q->remote_user() )) {
        $nt_obj->display_login('Please enter your username and password!');
        return;
    };

    my $data = $nt_obj->login_user();

    if ( ! ref($data) ) {
        $nt_obj->display_login($data);
        return;
    };

    if ( $data->{'error_code'} ) {
        $nt_obj->display_login($data);
        return;
    }

    display_frameset( $nt_obj, $data );
};

1;