X-Git-Url: https://git.sur5r.net/?a=blobdiff_plain;f=index.php;h=17240acffdd52721e427600539cb6f852143d700;hb=7e5f4cf81705af2658098bb450a76ba6cd3eaeab;hp=26c591204e3374081264d153b2a7abca04131ce3;hpb=e7fbf6ea14de3e1afa92ab5be737f702c4a3349c;p=contagged diff --git a/index.php b/index.php index 26c5912..17240ac 100644 --- a/index.php +++ b/index.php @@ -25,7 +25,7 @@ $list = ''; if(count($result)==1 && $_REQUEST['search']){ //only one result on a search -> display page - header("Location: entry.php?dn=".$result[0]['dn']); + header("Location: entry.php?dn=".rawurlencode($result[0]['dn'])); exit; }elseif(count($result)){ $keys = array_keys($result); @@ -48,8 +48,9 @@ $smarty->assign('org',$_REQUEST['org']); //display templates if(!empty($_REQUEST['export'])){ - if ($conf['userlogreq'] == 1 && $user == ''){ - header("HTTP/1.1 401 ACCESS DENIED"); + if ($conf['userlogreq'] && $user == ''){ + header("HTTP/1.1 401 Access Denied"); + echo '

Access Denied

'; exit(); } @@ -93,6 +94,7 @@ */ function _makeldapfilter(){ global $FIELDS; + global $conf; //handle given filter @@ -133,7 +135,7 @@ '('.$FIELDS['phone'].'='.$filter.')'. '('.$FIELDS['homephone'].'='.$filter.')'. ')'. - '('.$FIELDS['homephone'].'='.$filter.')'. + '('.$FIELDS['mobile'].'='.$filter.')'. ')'. ')'; }elseif(!empty($search)){ @@ -142,9 +144,14 @@ $words=preg_split('/\s+/',$search); $filter=''; foreach($words as $word){ - $filter .= '(|(|('.$FIELDS['name'].'=*'.$word.'*)('. - $FIELDS['givenname'].'=*'.$word.'*))('. - $FIELDS['organization'].'=*'.$word.'*))'; + $wordfilter=''; + foreach($conf['searchfields'] as $field) { + $wordfilter .= '('.$field.'=*'.$word.'*)'; + } + for($i=0; $i