From d0e84e1be08e74406d7ed1d31eef230b02b4f93c Mon Sep 17 00:00:00 2001
From: moodler <moodler>
Date: Mon, 21 May 2007 05:23:00 +0000
Subject: [PATCH] =?utf8?q?Added=20I=C3=B1aki's=20patch=20from=20MDL-7233?=
 =?utf8?q?=20for=201.9=20=20=20-=20thanks!?=
MIME-Version: 1.0
Content-Type: text/plain; charset=utf8
Content-Transfer-Encoding: 8bit

---
 auth/ldap/auth.php | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/auth/ldap/auth.php b/auth/ldap/auth.php
index 8ec2bd7089..67a62b44b6 100644
--- a/auth/ldap/auth.php
+++ b/auth/ldap/auth.php
@@ -1051,6 +1051,23 @@ class auth_plugin_ldap extends auth_plugin_base {
                 }
                 break;
 
+            case 'ad':
+                // Passwords in Active Directory must be encoded as Unicode
+                // strings (UCS-2 Little Endian format) and surrounded with
+                // double quotes. See http://support.microsoft.com/?kbid=269190
+                if (!function_exists('mb_convert_encoding')) {
+                    error_log ('You need the mbstring extension to change passwords in Active Directory');
+                    return false;
+                }
+                $extpassword = mb_convert_encoding('"'.$extpassword.'"', "UCS-2LE", $this->config->ldapencoding);
+                $result = ldap_modify($ldapconnection, $user_dn, array('unicodePwd' => $extpassword));
+                if (!$result) {
+                    error_log('LDAP Error in user_update_password(). Error code: ' 
+                              . ldap_errno($ldapconnection) . '; Error string : '
+                              . ldap_err2str(ldap_errno($ldapconnection)));
+                }
+                break;
+
             default:
                 $usedconnection = &$ldapconnection;
                 // send ldap the password in cleartext, it will md5 it itself
-- 
2.39.5