Club Drupal

    elseif ($ldap_server->bind_method == LDAP_SERVERS_BIND_METHOD_USER) {

       /**

        * With user bind method, the only way we can reach this part of the

        * code is when the pw has already been checked and $ldap_user could be

        * loaded, so we're good to go.

        */

      $credentials_pass = true;

    }

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

  return $result;

  if ($user->uid == 1 || !$auth_conf || (current_path() == 'user/password' && $auth_conf->authenticationMode != LDAP_AUTHENTICATION_EXCLUSIVE)) {

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

 * @param mixed $entity_type signifies query value e.g. 'bakers', 7 etc.

 * @param mixed $group_name signifies query type e.g. 'group_name', 'gid', etc.

 *

          $parsed_item[$source] = '';

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

    form_set_error($query->errorName(), $query->errorMsg());

    $query->clearError();

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

    if ($anon_bind === FALSE && $userdn === NULL && $pass === NULL && $this->bind_method == LDAP_SERVERS_BIND_METHOD_ANON) {

    if (!empty($attributes['unicodePwd']) && ($this->ldap_type == 'ad')) {

      $attributes['unicodePwd'] = ldap_servers_convert_password_for_active_directory_unicodePwd($attributes['unicodePwd']);

    }

      //debug(t($error, $tokens));

    if (!empty($attributes['unicodePwd']) && ($this->ldap_type == 'ad')) {

      $attributes['unicodePwd'] = ldap_servers_convert_password_for_active_directory_unicodePwd($attributes['unicodePwd']);

    }

      if (is_array($ldap_entry[$this->unique_persistent_attr])) {

        $puid = $ldap_entry[$this->unique_persistent_attr][0];

      }

      else {

        $puid = $ldap_entry[$this->unique_persistent_attr];

      }

          'boolean' => FALSE,

          '#title' => t('Does the <em>Persistent and Unique User ID

            Attribute</em> hold a binary value?'),

          '#description' => t('You need to set this if you are using a binary

             attribute such as objectSid in ActiveDirectory for the PUID.<br>

             If you don\'t want this consider switching to another attribute,

             such as samaccountname.'),

<?php

/**

 * @file

 *   LDAP module drush integration.

 */

/**

 * Implements hook_drush_command().

 *

 * @return

 *   An associative array describing your command(s).

 *

 * @see drush_parse_command()

 */

function ldap_servers_drush_command() {

  $items['ldap-servers-set-password'] = array(

    'description' => 'Set the password of an otherwise already configured LDAP server.',

    'aliases' => array('lssp'),

    'arguments' => array(

      'ldap_sid' => 'The configured LDAP server ID.'

    ),

    'options' => array(

      'password' => 'The password to set for the server.'

    ),

    'examples' => array(

      'drush lssp LDAP_SERVER_ID --password="PASSWORD"' => 'Sets the password for LDAP_SERVER_ID. Replace LDAP_SERVER_ID with the "Machine name for this configuration." of

        the server found at /admin/config/people/ldap/servers, and replace PASSWORD with your password.',

    ),

  );

  return $items;

}

/**

 * Callback for the ldap-servers-set-password command.

 *

 * @param string $ldap_sid The server ID for which to set the password.

 * @option string --password Used to provide the password via an option in the Drush command.

 *

 * @return

 *   Error or success message.

 */

function drush_ldap_servers_set_password($ldap_sid = NULL) {

  // Check for the argument.

  if (!isset($ldap_sid)) {

    return drush_set_error(t('The server ID was not included as an argument. Use the "Machine name for this server configuration." found on the edit screen for that server.'));

  }

  // Instantiate the server configuration with the provided sid.

  ldap_servers_module_load_include('php', 'ldap_servers', 'LdapServerAdmin.class');

  $ldap_server = new LdapServerAdmin($ldap_sid);

  if (isset($ldap_server)) {

    // Retrieves the password from the --password option set in the drush command.

    $ldap_server->bindpw = drush_get_option('password');

    if (!isset($ldap_server->bindpw)) {

      return drupal_set_message(dt('No password was provided for @ldap_sid. A password has not been set.', array('@ldap_sid' => $ldap_sid)));

    }

    // Save the server configuration with the password.

    $ldap_server->save('edit');

    // Notify of success.

    return drupal_set_message(dt('Password for @ldap_sid has been set.', array('@ldap_sid' => $ldap_sid)));

  }

  // Provided server ID does not match any of the existing server IDs.

  return drush_set_error(dt('@ldap_sid does not match the server ID of any configured servers.  Use the "Machine name for this server configuration." found on the edit screen for that server.',

    array('@ldap_sid' => $ldap_sid)));

}

        // Process if the decoded cipher text is sufficient.

        if (strlen($cipher_txt) > $ivsize) {

          // Split apart IV and text.

          $iv = substr($cipher_txt, 0, $ivsize);

          $cipher_txt = substr($cipher_txt, $ivsize);

          // If the IV exists, decrypt the text.

          if ($iv) {

            mcrypt_generic_init($td, $key, $iv);

            $clear_txt = mdecrypt_generic($td, $cipher_txt);

            mcrypt_generic_deinit($td);

          }

/**

 * Converts a password to the format that Active Directory supports (for the 

 * purpose of changing or setting).  Note that AD needs the field to be called

 * unicodePwd (as opposed to userPassword)

 * 

 * @param string $password

 *    The password that is being formatted for Active Directory unicodePwd field

 * @return string

 *    $password surrounded with quotes and in UTF-16LE encoding

 */

function ldap_servers_convert_password_for_active_directory_unicodePwd($password) {

  // This function can be called with $attributes['unicodePwd'] as an array.

  if (!is_array($password)) {

    return mb_convert_encoding("\"{$password}\"", "UTF-16LE");

  }

  else {

    // Presumably there is no use case for there being more than one password in

    // the $attributes array, hence it will be at index 0 and we return in kind.

    return array(mb_convert_encoding("\"{$password[0]}\"", "UTF-16LE"));

  }

}

        if ($values === NULL) {

          return NULL;

        }

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

            if ($server->bind_method == LDAP_SERVERS_BIND_METHOD_USER) {

              // Check bind anonymously if set to bind via user credentials.

              // The user has already logged in and so their is no dn or password

              // to check since LDAP doesn't store passwords.

              $bind_result = $server->bind(NULL, NULL, TRUE);

            } else {

              $bind_result = $server->bind();

            }

      if ($ldap_server->picture_attr && !isset($attributes[$ldap_server->picture_attr])) {

      if ($ldap_server->groupUserMembershipsAttr && !isset($attributes[$ldap_server->groupUserMembershipsAttr])) {

        $attributes[$ldap_server->groupUserMembershipsAttr] = ldap_servers_set_attribute_map();

      }

    if (is_array($result)) {

      $group_entry = ldap_get_entries($ldap_server->connection, $result);

    }

  if (isset($group_entry) ) {

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

      $account->name = $username;

    if (isset($account->ldap_user_prov_entries[LANGUAGE_NONE][0])) {

      foreach ($account->ldap_user_prov_entries[LANGUAGE_NONE] as $i => $field_instance) {

    $values['orphanedDrupalAcctBehaviorDescription'] = t('It is highly recommended to use the "Perform no action, but email list of orphaned accounts" for some time before considering switching to "Disable the account" options.');

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

        if ($ldap_server->picture_attr) {

          $attributes[$ldap_server->picture_attr] = ldap_servers_set_attribute_map(@$attributes[$ldap_server->picture_attr]);

        }

        if ($ldap_server->unique_persistent_attr) {

          $attributes[$ldap_server->unique_persistent_attr] = ldap_servers_set_attribute_map(@$attributes[$ldap_server->unique_persistent_attr]);

        }

/**

* Implements hook_form_FORM_ID_alter(). for user-pass-reset form. Useful for

* sites where this is the form ID for a user to intially set their password

* (user clicks an emailed registration link, is prompted to set their password).

*/

function ldap_user_form_user_pass_reset_alter(&$form, &$form_state) {

  array_unshift($form['#validate'], 'ldap_user_grab_password_validate');

}

 *   @param string | FALSE $value as user entered password

; Information added by Drupal.org packaging script on 2017-03-18

version = "7.x-2.0"

datestamp = "1489858388"

This version of the module uses the new Google No CAPTCHA reCAPTCHA API.

* reCAPTCHA module depends on the CAPTCHA module.

3. Register your web site at

4. Input the site and private keys into the reCAPTCHA settings.

KNOWN ISSUES

------------

- The PHP setting 'arg_separator.output' set by Drupal core causes conflicts

  with the Google reCAPTCHA library. This setting is and was never used by

  Drupal core, but still exist in "settings.php" and need to be removed.

  See https://www.drupal.org/node/2476237 for more information.

- cURL requests fail because of outdated root certificate. The reCAPTCHA module

  may not able to connect to Google servers and fails to verify the answer.

  See https://www.drupal.org/node/2481341 for more information.

Want to contribute? Great! First, read this page (including the small print at the end).

### Before you contribute

Before we can use your code, you must sign the

[Google Individual Contributor License Agreement](https://developers.google.com/open-source/cla/individual?csw=1)

(CLA), which you can do online. The CLA is necessary mainly because you own the

copyright to your changes, even after your contribution becomes part of our

codebase, so we need your permission to use and distribute your code. We also

need to be sure of various other things—for instance that you'll tell us if you

know that your code infringes on other people's patents. You don't have to sign

the CLA until after you've submitted your code for review and a member has

approved it, but you must do it before we can put your code into our codebase.

Before you start working on a larger contribution, you should get in touch with

us first through the issue tracker with your idea so that we can help out and

possibly guide you. Coordinating up front makes it much easier to avoid

frustration later on.

### Code reviews

All submissions, including submissions by project members, require review. We

use Github pull requests for this purpose.

### The small print

Contributions made by corporations are covered by a different agreement than

the one above, the Software Grant and Corporate Contributor License Agreement.

Copyright 2014, Google Inc.

All rights reserved.

Redistribution and use in source and binary forms, with or without

modification, are permitted provided that the following conditions are

met:

    * Redistributions of source code must retain the above copyright

notice, this list of conditions and the following disclaimer.

    * Redistributions in binary form must reproduce the above

copyright notice, this list of conditions and the following disclaimer

in the documentation and/or other materials provided with the

distribution.

    * Neither the name of Google Inc. nor the names of its

contributors may be used to endorse or promote products derived from

this software without specific prior written permission.

THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS

"AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT

LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR

A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT

OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,

SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT

LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,

DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY

THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT

(INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE

OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.

# reCAPTCHA PHP client library

[![Build Status](https://travis-ci.org/google/recaptcha.svg)](https://travis-ci.org/google/recaptcha)

[![Latest Stable Version](https://poser.pugx.org/google/recaptcha/v/stable.svg)](https://packagist.org/packages/google/recaptcha)

[![Total Downloads](https://poser.pugx.org/google/recaptcha/downloads.svg)](https://packagist.org/packages/google/recaptcha)

* Project page: http://www.google.com/recaptcha/

* Repository: https://github.com/google/recaptcha

* Version: 1.1.2

* License: BSD, see [LICENSE](LICENSE)

## Description

reCAPTCHA is a free CAPTCHA service that protect websites from spam and abuse.

This is Google authored code that provides plugins for third-party integration

with reCAPTCHA.

## Installation

### Composer (Recommended)

[Composer](https://getcomposer.org/) is a widely used dependency manager for PHP

packages. This reCAPTCHA client is available on Packagist as

[`google/recaptcha`](https://packagist.org/packages/google/recaptcha) and can be

installed either by running the `composer require` command or adding the library

to your `composer.json`. To enable Composer for you project, refer to the

project's [Getting Started](https://getcomposer.org/doc/00-intro.md)

documentation.

To add this dependency using the command, run the following from within your

project directory:

```

composer require google/recaptcha "~1.1"

```

Alternatively, add the dependency directly to your `composer.json` file:

```json

"require": {

    "google/recaptcha": "~1.1"

}

```

### Direct download (no Composer)

If you wish to install the library manually (i.e. without Composer), then you

can use the links on the main project page to either clone the repo or download

the [ZIP file](https://github.com/google/recaptcha/archive/master.zip). For

convenience, an autoloader script is provided in `src/autoload.php` which you

can require into your script instead of Composer's `vendor/autoload.php`. For

example:

```php

require('/path/to/recaptcha/src/autoload.php');

$recaptcha = new \ReCaptcha\ReCaptcha($secret);

```

The classes in the project are structured according to the

[PSR-4](http://www.php-fig.org/psr/psr-4/) standard, so you may of course also

use your own autoloader or require the needed files directly in your code.

### Development install

If you would like to contribute to this project or run the unit tests on within

your own environment you will need to install the development dependencies, in

this case that means [PHPUnit](https://phpunit.de/). If you clone the repo and

run `composer install` from within the repo, this will also grab PHPUnit and all

its dependencies for you. If you only need the autoloader installed, then you

can always specify to Composer not to run in development mode, e.g. `composer

install --no-dev`.

*Note:* These dependencies are only required for development, there's no

requirement for them to be included in your production code.

## Usage

First, register keys for your site at https://www.google.com/recaptcha/admin

When your app receives a form submission containing the `g-recaptcha-response`

field, you can verify it using:

```php

<?php

$recaptcha = new \ReCaptcha\ReCaptcha($secret);

$resp = $recaptcha->verify($gRecaptchaResponse, $remoteIp);

if ($resp->isSuccess()) {

    // verified!

} else {

    $errors = $resp->getErrorCodes();

}

```

You can see an end-to-end working example in

[examples/example-captcha.php](examples/example-captcha.php)

## Upgrading

### From 1.0.0

The previous version of this client is still available on the `1.0.0` tag [in

this repo](https://github.com/google/recaptcha/tree/1.0.0) but it is purely for

reference and will not receive any updates.

The major changes in 1.1.0 are:

* installation now via Composer;

* class loading also via Composer;

* classes now namespaced;

* old method call was `$rc->verifyResponse($remoteIp, $response)`, new call is

  `$rc->verify($response, $remoteIp)`

## Contributing

We accept contributions via GitHub Pull Requests, but all contributors need to

be covered by the standard Google Contributor License Agreement. You can find

instructions for this in [CONTRIBUTING](CONTRIBUTING.md)

{

    "name": "google/recaptcha",

    "description": "Client library for reCAPTCHA, a free service that protect websites from spam and abuse.",

    "type": "library",

    "keywords": ["recaptcha", "captcha", "spam", "abuse"],

    "homepage": "http://www.google.com/recaptcha/",

    "license": "BSD-3-Clause",

    "support": {

        "forum": "https://groups.google.com/forum/#!forum/recaptcha",

        "source": "https://github.com/google/recaptcha"

    },

    "require": {

        "php": ">=5.3.2"

    },

    "require-dev": {

        "phpunit/phpunit": "4.5.*"

    },

    "autoload": {

        "psr-4": {

            "ReCaptcha\\": "src/ReCaptcha"

        }

    },

    "extra": {

        "branch-alias": {

            "dev-master": "1.1.x-dev"

        }

    }

}

<?php

/**

 * Working sample code to accompany the library. The instructions here assume

 * you've just cloned the repo. If you've installed via composer, you will want

 * to adjust the path to the autoloader.

 *

 * 1. Run the server. For example, under Linux you can probably use:

 * /usr/bin/php -S "localhost:8000" "examples/example-captcha.php"

 * 2. Point your browser at http://localhost:8000

 * 3. Follow the instructions

 *

 * @copyright Copyright (c) 2015, Google Inc.

 * @link      http://www.google.com/recaptcha

 *

 * Permission is hereby granted, free of charge, to any person obtaining a copy

 * of this software and associated documentation files (the "Software"), to deal

 * in the Software without restriction, including without limitation the rights

 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell

 * copies of the Software, and to permit persons to whom the Software is

 * furnished to do so, subject to the following conditions:

 *

 * The above copyright notice and this permission notice shall be included in

 * all copies or substantial portions of the Software.

 *

 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR

 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,

 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE

 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER

 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,

 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN

 * THE SOFTWARE.

 */

// Initiate the autoloader. The file should be generated by Composer.

// You will provide your own autoloader or require the files directly if you did

// not install via Composer.

require_once __DIR__ . '/../vendor/autoload.php';

// Register API keys at https://www.google.com/recaptcha/admin

$siteKey = '';

$secret = '';

// reCAPTCHA supported 40+ languages listed here: https://developers.google.com/recaptcha/docs/language

$lang = 'en';

?>

<html>

    <head>

        <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"/>

        <title>reCAPTCHA Example</title>

        <link rel="shortcut icon" href="//www.gstatic.com/recaptcha/admin/favicon.ico" type="image/x-icon"/>

        <style type="text/css">

            body {

                margin: 1em 5em 0 5em;

                font-family: sans-serif;

            }

            fieldset {

                display: inline;

                padding: 1em;

            }

        </style>

    </head>

    <body>

        <h1>reCAPTCHA Example</h1>

        <?php if ($siteKey === '' || $secret === ''): ?>

            <h2>Add your keys</h2>

            <p>If you do not have keys already then visit <tt>

            <a href = "https://www.google.com/recaptcha/admin">

                https://www.google.com/recaptcha/admin</a></tt> to generate them.

        Edit this file and set the respective keys in <tt>$siteKey</tt> and

        <tt>$secret</tt>. Reload the page after this.</p>

    <?php

elseif (isset($_POST['g-recaptcha-response'])):

    // The POST data here is unfiltered because this is an example.

    // In production, *always* sanitise and validate your input'

    ?>

    <h2><tt>POST</tt> data</h2>

    <tt><pre><?php var_export($_POST); ?></pre></tt>

    <?php

// If the form submission includes the "g-captcha-response" field

// Create an instance of the service using your secret

    $recaptcha = new \ReCaptcha\ReCaptcha($secret);

// If file_get_contents() is locked down on your PHP installation to disallow

// its use with URLs, then you can use the alternative request method instead.

// This makes use of fsockopen() instead.