modules/webserver_auth/webserver_auth.module

<?php
// $Id: webserver_auth.module,v 1.13 2006/03/03 05:02:28 weitzman Exp $

function webserver_auth_init() {
  global $user, $account;

  if ($user->uid) {
    //do nothing because user is already logged into Drupal
  }
  else {
    if ($name = $_SERVER["REMOTE_USER"]) {
      // user is logged into webserver.
      $account->name = $name;
      //modules get to change the user bits before saving. use a global $account to do so.
      // only loaded modules will see this hook
      module_invoke_all("webserver_auth");
      // if we are in bootstrap, load user.module ourselves
      if (!module_exist('user')) {
       drupal_load('module', 'user');
      }

      // try to log into Drupal. if unsuccessful, register the user
      $user = user_external_load($account->name);
      if (!$user->uid) {
        if (variable_get("user_register", 1) == 1) {
          $user_default = array("name" => $account->name, "pass" => "cyan", "init" => db_escape_string($name), "authname_webserver_auth" => $account->name, "status" => 1, "roles" => array((DRUPAL_AUTHENTICATED_RID));
          // TODO - the hook_user('register') will fire but only for loaded modules. cold be a problem for sites using page cache and that hook+operation
          $user = user_save("", array_merge($user_default, (array)$account));
          watchdog("user", "new user: $user->name (webserver_auth)", l(t("edit user"), "admin/user/edit/$user->uid"));
        }
      }
    }
    else {
      // do nothing. user isn't logged into web server
    }
  }
}

// using a global to change your bits. module_invoke_all miffs me.
function webserver_auth_webserver_auth() {
  global $account;

  // pretties up the username for NTLM authentication (i.e. Windows)
  if ($_SERVER["AUTH_TYPE"] == "NTLM" || $_SERVER["AUTH_TYPE"] == 'Negotiate') {
    $account->name = substr(trim($account->name), strrpos(trim($account->name), "\\")+1);
  }

  if ($domain = variable_get("webserver_auth_domain", "")) {
    if ($account->name) {
      $account->mail = $account->name. "@$domain";
    }
  }
}

function webserver_auth_settings() {
  $form["webserver_auth_domain"] = array(
    '#type' => 'textfield',
    '#title' => t("Email Domain"),
    '#default_value' => variable_get("webserver_auth_domain", ""),
    '#size' => 30,
    '#maxlength' => 55,
    '#description' => t("Append this domain name to each new user in order generate his email address."),
    );
  return $form;	
}

function webserver_auth_help($section) {
  $output ="";

  switch ($section) {
    case 'admin/help#webserver_auth':
      break;
    case 'admin/modules#description':
      $output .= t("Use web server authentication instead of Drupal");
      break;
  }

  return $output;
}


?>
1	<?php
2	// $Id: webserver_auth.module,v 1.13 2006/03/03 05:02:28 weitzman Exp $
3
4	function webserver_auth_init() {
5	global $user, $account;
6
7	if ($user->uid) {
8	//do nothing because user is already logged into Drupal
9	}
10	else {
11	if ($name = $_SERVER["REMOTE_USER"]) {
12	// user is logged into webserver.
13	$account->name = $name;
14	//modules get to change the user bits before saving. use a global $account to do so.
15	// only loaded modules will see this hook
16	module_invoke_all("webserver_auth");
17	// if we are in bootstrap, load user.module ourselves
18	if (!module_exist('user')) {
19	drupal_load('module', 'user');
20	}
21
22	// try to log into Drupal. if unsuccessful, register the user
23	$user = user_external_load($account->name);
24	if (!$user->uid) {
25	if (variable_get("user_register", 1) == 1) {
26	$user_default = array("name" => $account->name, "pass" => "cyan", "init" => db_escape_string($name), "authname_webserver_auth" => $account->name, "status" => 1, "roles" => array((DRUPAL_AUTHENTICATED_RID));
27	// TODO - the hook_user('register') will fire but only for loaded modules. cold be a problem for sites using page cache and that hook+operation
28	$user = user_save("", array_merge($user_default, (array)$account));
29	watchdog("user", "new user: $user->name (webserver_auth)", l(t("edit user"), "admin/user/edit/$user->uid"));
30	}
31	}
32	}
33	else {
34	// do nothing. user isn't logged into web server
35	}
36	}
37	}
38
39	// using a global to change your bits. module_invoke_all miffs me.
40	function webserver_auth_webserver_auth() {
41	global $account;
42
43	// pretties up the username for NTLM authentication (i.e. Windows)
44	if ($_SERVER["AUTH_TYPE"] == "NTLM" \|\| $_SERVER["AUTH_TYPE"] == 'Negotiate') {
45	$account->name = substr(trim($account->name), strrpos(trim($account->name), "\\")+1);
46	}
47
48	if ($domain = variable_get("webserver_auth_domain", "")) {
49	if ($account->name) {
50	$account->mail = $account->name. "@$domain";
51	}
52	}
53	}
54
55	function webserver_auth_settings() {
56	$form["webserver_auth_domain"] = array(
57	'#type' => 'textfield',
58	'#title' => t("Email Domain"),
59	'#default_value' => variable_get("webserver_auth_domain", ""),
60	'#size' => 30,
61	'#maxlength' => 55,
62	'#description' => t("Append this domain name to each new user in order generate his email address."),
63	);
64	return $form;
65	}
66
67	function webserver_auth_help($section) {
68	$output ="";
69
70	switch ($section) {
71	case 'admin/help#webserver_auth':
72	break;
73	case 'admin/modules#description':
74	$output .= t("Use web server authentication instead of Drupal");
75	break;
76	}
77
78	return $output;
79	}
80
81
82	?>