From d8291ca2303ea50dd8b99791696f26abe08c5ccb Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Mon, 23 Jun 2014 19:32:53 +0200
Subject: [PATCH 01/12] use path relative to plugin directory

resolve coubeatczech/wordpress-crowd-plugin#1
---
 Crowd-Login-Admin.php | 2 +-
 Crowd-Login.php       | 4 ++--
 2 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/Crowd-Login-Admin.php b/Crowd-Login-Admin.php
index ddec6d6..5873b7a 100644
--- a/Crowd-Login-Admin.php
+++ b/Crowd-Login-Admin.php
@@ -203,4 +203,4 @@
 }
 ?>
 </body>
-</html>
\ No newline at end of file
+</html>
diff --git a/Crowd-Login.php b/Crowd-Login.php
index ada0c4a..47bd868 100644
--- a/Crowd-Login.php
+++ b/Crowd-Login.php
@@ -8,8 +8,8 @@
 Author URI: 
 */
 
-require_once( WP_PLUGIN_DIR."/crowd-login/Crowd.php");
-require_once( ABSPATH . WPINC . '/registration.php');
+require_once(__DIR__ . "/Crowd.php");
+require_once(ABSPATH . WPINC . '/registration.php');
 
 //Admin
 function crowd_menu() {

From 79ef120e75e4614c39611b89d763bc71e85f2459 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Mon, 23 Jun 2014 20:26:25 +0200
Subject: [PATCH 02/12] do some basic reformattings & add indentation

coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login-Admin.php | 305 +++++++++++++++++++++---------------------
 1 file changed, 152 insertions(+), 153 deletions(-)

diff --git a/Crowd-Login-Admin.php b/Crowd-Login-Admin.php
index 5873b7a..f52be06 100644
--- a/Crowd-Login-Admin.php
+++ b/Crowd-Login-Admin.php
@@ -1,68 +1,65 @@
-<html>
-<head>
 <style>
-div.container{
-	width: 950px;
-}
-div.crowd_style{
-	padding: 5px;
-	background: #EBEBEB;
-	margin: 10px;
-	width:450px;
-	height:375px;
-	font-family: Calibri,Helvetica,Arial,sans-serif;
-	float: left; 
-}
-div.crowd_style_test{
-	padding: 5px;
-	margin: 0px 10px 10px 10px;
-	background: #EBEBEB;
-	width: 450px;
-	height: 280px;
-	font-family: Calibri,Helvetica,Arial,sans-serif;
-	float: left;
-}
-div.information_pane{
-	height:280px;
-	width: 450px;
-	padding: 5px;
-	background: #EBEBEB;
-	margin: 0px 10px 10px 0;
-	font-family: Calibri,Helvetica,Arial,sans-serif;
-	float:left;
-}
-div.advanced{
-	padding: 5px;
-	background: #EBEBEB;
-	margin: 10px 10px 10px 0px;
-	width:450px;
-	height:375px;
-	font-family: Calibri,Helvetica,Arial,sans-serif;
-	float: left; 
-}
-div.banner{
-	padding 5px;
-	margin-left: 10px;
-	margin-top: 15px;
-	font-family: Calibri,Helvetica,Arial,sans-serif;
-}
-h1{
-	margin: 0;
-}
-h2{
-	margin: 0;
-}
-h3{
-	margin: 0;
-}
-h4{
-	margin: 0;
-}
-p{
-	margin-bottom: 0;
-}
+  div.container{
+    width: 950px;
+  }
+  div.crowd_style{
+    padding: 5px;
+    background: #EBEBEB;
+    margin: 10px;
+    width:450px;
+    height:375px;
+    font-family: Calibri,Helvetica,Arial,sans-serif;
+    float: left; 
+  }
+  div.crowd_style_test{
+    padding: 5px;
+    margin: 0px 10px 10px 10px;
+    background: #EBEBEB;
+    width: 450px;
+    height: 280px;
+    font-family: Calibri,Helvetica,Arial,sans-serif;
+    float: left;
+  }
+  div.information_pane{
+    height:280px;
+    width: 450px;
+    padding: 5px;
+    background: #EBEBEB;
+    margin: 0px 10px 10px 0;
+    font-family: Calibri,Helvetica,Arial,sans-serif;
+    float:left;
+  }
+  div.advanced{
+    padding: 5px;
+    background: #EBEBEB;
+    margin: 10px 10px 10px 0px;
+    width:450px;
+    height:375px;
+    font-family: Calibri,Helvetica,Arial,sans-serif;
+    float: left; 
+  }
+  div.banner{
+    padding 5px;
+    margin-left: 10px;
+    margin-top: 15px;
+    font-family: Calibri,Helvetica,Arial,sans-serif;
+  }
+  h1{
+    margin: 0;
+  }
+  h2{
+    margin: 0;
+  }
+  h3{
+    margin: 0;
+  }
+  h4{
+    margin: 0;
+  }
+  p{
+    margin-bottom: 0;
+  }
 </style>
-</head>
 <?php 
 //Debug
 $debug = "false";
@@ -112,95 +109,97 @@
 $crowd_account_type = get_option('crowd_account_type');
 
 ?>
-<body>
 <div class="container">
-<div class="banner"><h1>Crowd Login 0.1</h1></div>
-<form style="display::inline;" method="post" action="<?php echo str_replace( '%7E', '~', $_SERVER['REQUEST_URI']); ?>&updated=true">
-<div class="crowd_style">
-<h2>Settings</h2>
-<h3>These are rather important.</h3>
-<div style="float: left; width: 235px;"><p><strong>Application Name:</strong><br />
-<input name="crowd_app_name" type="text" value="<?php  echo $crowd_app_name; ?>" size="20" /><br />
-*The application name given to you by your Crowd administrator. Example: crowd_app
-</p></div>
-<div style="float:left; width: 200px;"><p><strong>Application Password:</strong><br />
-<input name="crowd_app_password" type="text" value="<?php  echo $crowd_app_password; ?>" size="15" /><br />
-*The application password given to you by your Crowd administrator.
-</p></div>
-<p><strong>Crowd URL:</strong><br />
-<input name="crowd_url" type="text" value="<?php  echo $crowd_url; ?>" size="35" /><br />
-*Example: https://crowd.example.local:8443/crowd
-</p>
-<input type="hidden" name="stage" value="process" />
-<input type="submit" name="button_submit" value="<?php _e('Update Options', 'crowd-login') ?> &raquo;" />
-</div>
-<div class="advanced">
-<h2>Advanced</h2>
-<h3>For the intrepid and daring among you.</h3>
-<p style="margin-bottom:0px;"><strong>Login mode:</strong><br>
-<input name="crowd_login_mode" type="radio" value="mode_normal" <?php if($crowd_login_mode=="mode_normal"){echo "checked";}?> > <label for="mode_normal">Authenticate Wordpress users against Crowd. I will create the accounts in Wordpress myself. (default)</label><br/>
-<input name="crowd_login_mode" type="radio" value="mode_create_all" <?php if($crowd_login_mode=="mode_create_all"){echo "checked";}?> > <label for="mode_create_all">Create Wordpress accounts for anyone who successfully authenticates against Crowd.</label><br/>
-<input name="crowd_login_mode" type="radio" value="mode_create_group" <?php if($crowd_login_mode=="mode_create_group"){echo "checked";}?>> <label for="mode_create_group">Create Wordpress accounts for users in the specified group:</label><input name="crowd_group" type="text" value="<?php  echo $crowd_group; ?>" size="12"/></p>
-<p style="margin-left:15px; margin-top:0px;"><strong>For latter two options, create account as:</strong><br/>
-<select name="crowd_account_type">
-<option value="Administrator" <?php if($crowd_account_type=="Administrator"){echo 'selected="selected"';}?> >Administrator</option>
-<option value="Editor" <?php if($crowd_account_type=="Editor"){echo 'selected="selected"';}?> >Editor</option>
-<option value="Author" <?php if($crowd_account_type=="Author"){echo 'selected="selected"';}?> >Author</option>
-<option value="Contributor" <?php if($crowd_account_type=="Contributor"){echo 'selected="selected"';}?> >Contributor</option>
-<option value="Subscriber" <?php if($crowd_account_type=="Subscriber"){echo 'selected="selected"';}?> >Subscriber</option>
-</select>
-</p>
-<p>
-<strong>Security mode:</strong><br>
-<input name="crowd_security_mode" type="radio" id="security_low" value="security_low" <?php if($crowd_security_mode=="security_low"){echo "checked";}?> > <label for="security_low"><strong>Low.</strong> Default mode. First attempts to login with Crowd accounts, failing that, it attempts to login using the local Wordpress password. If you intend to use a mixture of local and Crowd accounts, leave this mode enabled.</label><br/>
-<input name="crowd_security_mode" type="radio" id="security_high" value="security_high" <?php if($crowd_security_mode=="security_high"){echo "checked";}?> > <label for="security_high"><strong>High.</strong> Restrict login to only Crowd accounts. If a Wordpress username fails to authenticate against Crowd, login will fail. More secure.</label><br/>
-</p>
-</div>
-</form>
-<div class="crowd_style_test">
-<h2>Test Settings</h2>
-<h3>Use this form as a limited test for those settings you saved.* This <em>will</em> test user creation and group membership. If settings don't work, use another browser to try actually logging in. (unless you'd rather get locked out)</h3>
-<h4>*You did save them, right?</h4>
-<form method="post" action="<?php echo str_replace( '%7E', '~', $_SERVER['REQUEST_URI']); ?>">
-  <p>Username:<br />
-<input name="test_username" type="text" size="35" />
- </p><p>Password:<br />
-<input name="test_password" type="password" size="35" />
-  </p>
-<input type="hidden" name="stage" value="test" />
-<input type="submit" name="button_submit" value="<?php _e('Test Settings', 'simple-ldap-login') ?> &raquo;" />
-</form>
-<p>
-<h4>Test Results:</h4>
-<?php
-if($bool_test == 0) {
-	echo "Nothing to report yet, Mr. Fahrenheit.";
-}
-if($bool_test == 1) {
-	echo "Congratulations! The test succeeded. This account is able to login.";
-}
-elseif($bool_test == 2) {
-	echo "Failure. Your settings do not seem to work yet or the credentials are either wrong or have insufficient group membership.";
-}
-?>
-</p>
-</div>
-<?php
-/*
-<div class="information_pane">
-<? echo "<iframe src =\"http://clifgriffin.com/plugins/simple-ldap-login/news.htm\" width=\"98%\" height=\"280px\" border=\"0\"><p>Oddly, your version of PHP doesn't allow file_get_contents to use URLs. But even more oddly, your browser doesn't allow frames! I think it's time for you to consider leaving 1998 in the past.</p></iframe>"; ?>
-</div>
+  <div class="banner"><h1>Crowd Login 0.1</h1></div>
+  <form style="display::inline;" method="post" action="<?php echo str_replace( '%7E', '~', $_SERVER['REQUEST_URI']); ?>&updated=true">
+    <div class="crowd_style">
+      <h2>Settings</h2>
+      <h3>These are rather important.</h3>
+      <div style="float: left; width: 235px;">
+        <p>
+          <strong>Application Name:</strong><br />
+          <input name="crowd_app_name" type="text" value="<?php  echo $crowd_app_name; ?>" size="20" /><br />
+          *The application name given to you by your Crowd administrator. Example: crowd_app
+        </p>
+      </div>
+      <div style="float:left; width: 200px;">
+        <p>
+          <strong>Application Password:</strong><br />
+          <input name="crowd_app_password" type="text" value="<?php  echo $crowd_app_password; ?>" size="15" /><br />
+          *The application password given to you by your Crowd administrator.
+        </p>
+      </div>
+      <p>
+        <strong>Crowd URL:</strong><br />
+        <input name="crowd_url" type="text" value="<?php  echo $crowd_url; ?>" size="35" /><br />
+        *Example: https://crowd.example.local:8443/crowd
+      </p>
+      <input type="hidden" name="stage" value="process" />
+      <input type="submit" name="button_submit" value="<?php _e('Update Options', 'crowd-login') ?> &raquo;" />
+    </div>
+    <div class="advanced">
+      <h2>Advanced</h2>
+      <h3>For the intrepid and daring among you.</h3>
+      <p style="margin-bottom:0px;"><strong>Login mode:</strong><br>
+        <input name="crowd_login_mode" type="radio" value="mode_normal" <?php if($crowd_login_mode=="mode_normal"){echo "checked";}?> > <label for="mode_normal">Authenticate Wordpress users against Crowd. I will create the accounts in Wordpress myself. (default)</label><br/>
+        <input name="crowd_login_mode" type="radio" value="mode_create_all" <?php if($crowd_login_mode=="mode_create_all"){echo "checked";}?> > <label for="mode_create_all">Create Wordpress accounts for anyone who successfully authenticates against Crowd.</label><br/>
+        <input name="crowd_login_mode" type="radio" value="mode_create_group" <?php if($crowd_login_mode=="mode_create_group"){echo "checked";}?>> <label for="mode_create_group">Create Wordpress accounts for users in the specified group:</label><input name="crowd_group" type="text" value="<?php  echo $crowd_group; ?>" size="12"/>
+      </p>
+      <p style="margin-left:15px; margin-top:0px;"><strong>For latter two options, create account as:</strong><br/>
+        <select name="crowd_account_type">
+          <option value="Administrator" <?php if($crowd_account_type=="Administrator"){echo 'selected="selected"';}?> >Administrator</option>
+          <option value="Editor" <?php if($crowd_account_type=="Editor"){echo 'selected="selected"';}?> >Editor</option>
+          <option value="Author" <?php if($crowd_account_type=="Author"){echo 'selected="selected"';}?> >Author</option>
+          <option value="Contributor" <?php if($crowd_account_type=="Contributor"){echo 'selected="selected"';}?> >Contributor</option>
+          <option value="Subscriber" <?php if($crowd_account_type=="Subscriber"){echo 'selected="selected"';}?> >Subscriber</option>
+        </select>
+      </p>
+      <p>
+        <strong>Security mode:</strong><br>
+        <input name="crowd_security_mode" type="radio" id="security_low" value="security_low" <?php if($crowd_security_mode=="security_low"){echo "checked";}?> > <label for="security_low"><strong>Low.</strong> Default mode. First attempts to login with Crowd accounts, failing that, it attempts to login using the local Wordpress password. If you intend to use a mixture of local and Crowd accounts, leave this mode enabled.</label><br/>
+        <input name="crowd_security_mode" type="radio" id="security_high" value="security_high" <?php if($crowd_security_mode=="security_high"){echo "checked";}?> > <label for="security_high"><strong>High.</strong> Restrict login to only Crowd accounts. If a Wordpress username fails to authenticate against Crowd, login will fail. More secure.</label><br/>
+      </p>
+    </div>
+  </form>
+  <div class="crowd_style_test">
+    <h2>Test Settings</h2>
+    <h3>Use this form as a limited test for those settings you saved.* This <em>will</em> test user creation and group membership. If settings don't work, use another browser to try actually logging in. (unless you'd rather get locked out)</h3>
+    <h4>*You did save them, right?</h4>
+    <form method="post" action="<?php echo str_replace( '%7E', '~', $_SERVER['REQUEST_URI']); ?>">
+      <p>
+        Username:<br />
+        <input name="test_username" type="text" size="35" />
+      </p>
+      <p>Password:<br />
+        <input name="test_password" type="password" size="35" />
+      </p>
+      <input type="hidden" name="stage" value="test" />
+      <input type="submit" name="button_submit" value="<?php _e('Test Settings', 'simple-ldap-login') ?> &raquo;" />
+    </form>
+    <p>
+      <h4>Test Results:</h4>
+      <?php
+      if($bool_test == 0) {
+        echo "Nothing to report yet, Mr. Fahrenheit.";
+      }
+      if($bool_test == 1) {
+        echo "Congratulations! The test succeeded. This account is able to login.";
+      }
+      elseif($bool_test == 2) {
+        echo "Failure. Your settings do not seem to work yet or the credentials are either wrong or have insufficient group membership.";
+      }
+      ?>
+    </p>
+  </div>
+
+  <?php
+  //Echo settings
+  if($debug == "true") {
+    echo "<p style=\"clear:both;\">Debug Info:<br/>";
+    echo "crowd_directory_type: ".get_option("crowd_directory_type")."/".$_POST['LDAP']."<br/>";
+    echo "crowd_login_mode: ".get_option("crowd_login_mode")."/".$_POST['mode']."<br/>";
+    echo "crowd_group: ".get_option("crowd_group")."/".$_POST['group_name']."<br/>";
+    echo "crowd_account_type: ".get_option("crowd_account_type")."/".$_POST['create_type']."<br/></p>";
+  }
+  ?>
 </div>
-*/
-//Echo settings
-if($debug == "true")
-{
-echo "<p style=\"clear:both;\">Debug Info:<br/>";
-echo "crowd_directory_type: ".get_option("crowd_directory_type")."/".$_POST['LDAP']."<br/>";
-echo "crowd_login_mode: ".get_option("crowd_login_mode")."/".$_POST['mode']."<br/>";
-echo "crowd_group: ".get_option("crowd_group")."/".$_POST['group_name']."<br/>";
-echo "crowd_account_type: ".get_option("crowd_account_type")."/".$_POST['create_type']."<br/></p>";
-}
-?>
-</body>
-</html>

From 675a7d7084ac4979f156fa00f94a7ed648685df2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Mon, 23 Jun 2014 21:40:52 +0200
Subject: [PATCH 03/12] hide input elements in advanced > login mode

Hide input elements in advanced > login mode, that are not used when the
according radio button is select.

coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login-Admin.php | 36 ++++++++++++++++++++-----------
 Crowd-Login.php       |  9 ++++++++
 crowd-login-admin.js  | 50 +++++++++++++++++++++++++++++++++++++++++++
 3 files changed, 82 insertions(+), 13 deletions(-)
 create mode 100644 crowd-login-admin.js

diff --git a/Crowd-Login-Admin.php b/Crowd-Login-Admin.php
index f52be06..653fc87 100644
--- a/Crowd-Login-Admin.php
+++ b/Crowd-Login-Admin.php
@@ -109,6 +109,10 @@
 $crowd_account_type = get_option('crowd_account_type');
 
 ?>
+<script>
+  var crowdAccountType = "<?php echo $crowd_account_type; ?>";
+  var crowdGroup = "<?php echo $crowd_group; ?>";
+</script>
 <div class="container">
   <div class="banner"><h1>Crowd Login 0.1</h1></div>
   <form style="display::inline;" method="post" action="<?php echo str_replace( '%7E', '~', $_SERVER['REQUEST_URI']); ?>&updated=true">
@@ -140,19 +144,25 @@
     <div class="advanced">
       <h2>Advanced</h2>
       <h3>For the intrepid and daring among you.</h3>
-      <p style="margin-bottom:0px;"><strong>Login mode:</strong><br>
-        <input name="crowd_login_mode" type="radio" value="mode_normal" <?php if($crowd_login_mode=="mode_normal"){echo "checked";}?> > <label for="mode_normal">Authenticate Wordpress users against Crowd. I will create the accounts in Wordpress myself. (default)</label><br/>
-        <input name="crowd_login_mode" type="radio" value="mode_create_all" <?php if($crowd_login_mode=="mode_create_all"){echo "checked";}?> > <label for="mode_create_all">Create Wordpress accounts for anyone who successfully authenticates against Crowd.</label><br/>
-        <input name="crowd_login_mode" type="radio" value="mode_create_group" <?php if($crowd_login_mode=="mode_create_group"){echo "checked";}?>> <label for="mode_create_group">Create Wordpress accounts for users in the specified group:</label><input name="crowd_group" type="text" value="<?php  echo $crowd_group; ?>" size="12"/>
-      </p>
-      <p style="margin-left:15px; margin-top:0px;"><strong>For latter two options, create account as:</strong><br/>
-        <select name="crowd_account_type">
-          <option value="Administrator" <?php if($crowd_account_type=="Administrator"){echo 'selected="selected"';}?> >Administrator</option>
-          <option value="Editor" <?php if($crowd_account_type=="Editor"){echo 'selected="selected"';}?> >Editor</option>
-          <option value="Author" <?php if($crowd_account_type=="Author"){echo 'selected="selected"';}?> >Author</option>
-          <option value="Contributor" <?php if($crowd_account_type=="Contributor"){echo 'selected="selected"';}?> >Contributor</option>
-          <option value="Subscriber" <?php if($crowd_account_type=="Subscriber"){echo 'selected="selected"';}?> >Subscriber</option>
-        </select>
+      <p style="margin-bottom:0px;"><strong>Login mode:</strong>
+        <div id="cl-login-mode">
+          <div>
+            <input class="cl-mode" id="cl-mode-normal" name="crowd_login_mode" type="radio" value="mode_normal" <?php if($crowd_login_mode=="mode_normal"){echo 'checked="checked"';}?> />
+            <label for="cl-mode-normal">Authenticate Wordpress users against Crowd. I will create the accounts in Wordpress myself. (default)</label>
+          </div>
+          <div>
+            <input class="cl-mode" id="cl-mode-create-all" name="crowd_login_mode" type="radio" value="mode_create_all" <?php if($crowd_login_mode=="mode_create_all"){echo 'checked="checked"';}?> />
+            <label for="cl-mode-create-all">Create Wordpress accounts for anyone who successfully authenticates against Crowd.</label>
+          </div>
+          <div>
+            <input class="cl-mode" id="cl-mode-create-group" name="crowd_login_mode" type="radio" value="mode_create_group" <?php if($crowd_login_mode=="mode_create_group"){echo 'checked="checked"';}?> />
+            <label for="cl-mode-create-group">Create Wordpress accounts for users in the specified group:</label>
+          </div>
+          <div>
+            <input class="cl-mode" id="cl-mode-map-group" name="crowd_login_mode" type="radio" value="mode_map_group" <?php if($rowd_login_mode == "mode_map_group"){ echo 'checked="checked"'; }?> />
+            <label for="cl-mode-map-group">Create Wordpress accounts for user in specified groups, assign them role selected per group</label>
+          </div>
+        </div>
       </p>
       <p>
         <strong>Security mode:</strong><br>
diff --git a/Crowd-Login.php b/Crowd-Login.php
index 47bd868..97c57ee 100644
--- a/Crowd-Login.php
+++ b/Crowd-Login.php
@@ -8,6 +8,8 @@
 Author URI: 
 */
 
+define ("PLUGIN_ROOT", plugin_dir_url(__FILE__));
+
 require_once(__DIR__ . "/Crowd.php");
 require_once(ABSPATH . WPINC . '/registration.php');
 
@@ -16,6 +18,13 @@ function crowd_menu() {
 	include 'Crowd-Login-Admin.php';
 }
 
+function load_crowd_login_admin_js($hook) {
+  if ("settings_page_crowd-login" === $hook) {
+    wp_enqueue_script("crowd-login-admin-js", PLUGIN_ROOT . "/crowd-login-admin.js", array("jquery", "underscore"));
+  }
+}
+add_action("admin_enqueue_scripts", "load_crowd_login_admin_js");
+
 function crowd_admin_actions() {
 	add_options_page("Crowd Login", "Crowd Login", 10, "crowd-login", "crowd_menu");
 }
diff --git a/crowd-login-admin.js b/crowd-login-admin.js
new file mode 100644
index 0000000..00eba45
--- /dev/null
+++ b/crowd-login-admin.js
@@ -0,0 +1,50 @@
+function selectRole(checkedRole, selectName) {
+  function checked(role) {
+    return (role === checkedRole) ? 'checked="checked"' : "" ;
+  }
+  var selectNameHtml = (null == selectName) ? "crowd_account_type" : selectName;
+  var html = ' <select class="additional-input" name="' + selectNameHtml + '"> ' +
+          ' <option ' + checked("Administrator") + ' value="Administrator">Administrator</option> ' +
+          ' <option ' + checked("Editor") + ' value="Editor">Editor</option> ' +
+          ' <option ' + checked("Author") + ' value="Author">Author</option> ' +
+          ' <option ' + checked("Contributor") + ' value="Contributor">Contributor</option> ' +
+          ' <option ' + checked("Subscriber") + ' value="Subscriber">Subscriber</option> ' +
+        ' </select> ';
+  return html;
+}
+function groupInput(group) {
+  return '<div class="additional-input"><label for="cl-crowd-group">Crowd group:</label><input id="cl-crowd-group" name="crowd_group" type="text" value="' + group + '" size="12"/>';
+}
+function mapGroup() {
+  var positions = ["Administrator", "Editor", "Author", "Contributor", "Subscriber"];
+  function oneLineHtml(position) {
+    var html = '<div><input type="text" name="cl-mapping-crowd-group-' + position + '" />' + position + "</div>";
+    return html;
+  }
+  var html = "<div>" + _.chain(positions).map(oneLineHtml).reduce(function(acc,b) { return acc + b}, "").value() + "</div>";
+  return html;
+}
+
+(function($){
+  $(document).ready(function(){
+
+    $(".cl-mode").click(function(){
+      $(".additional-input").remove();
+      var id = $(this).attr("id");
+      if (id === "cl-mode-create-all") {
+        var html = selectRole(crowdAccountType);
+        $("#cl-mode-create-all").parent().append(html);
+      } else if (id === "cl-mode-create-group") {
+        var html = selectRole(crowdAccountType);
+        var parent = $("#cl-mode-create-group").parent()
+        parent.append(html);
+        parent.append(groupInput(crowdGroup));
+      } else if (id === "cl-mode-map-group") {
+        $("#cl-mode-map-group").parent().append(mapGroup());
+      }
+    });
+
+    $(".cl-mode[checked='checked']").click();
+
+  });
+})(jQuery);

From d6bb893e58b9f29b4002bdbd93a00a17855ca436 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 00:43:23 +0200
Subject: [PATCH 04/12] add mapping from crowd groups to wordpress roles

coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login-Admin.php | 27 ++++++++++++++++++++++++++-
 crowd-login-admin.js  |  4 ++--
 2 files changed, 28 insertions(+), 3 deletions(-)

diff --git a/Crowd-Login-Admin.php b/Crowd-Login-Admin.php
index 653fc87..de160ff 100644
--- a/Crowd-Login-Admin.php
+++ b/Crowd-Login-Admin.php
@@ -72,6 +72,14 @@
 
 //If admin options updated (uses hidden field)
 if ($_POST['stage'] == 'process') {
+
+  $roles = array("Administrator", "Editor", "Author", "Contributor", "Subscriber");
+  $roles_and_values = array();
+  foreach ($roles as $role) {
+    $roleValue = $_POST["cl-mapping-crowd-group-$role"];
+    $roles_and_values[$role] = $roleValue;
+  }
+  update_option("crowd_wordpress_role_mappings", $roles_and_values);
 	update_option('crowd_url', $_POST['crowd_url']);
 	update_option('crowd_app_name', $_POST['crowd_app_name']);
 	update_option('crowd_app_password', $_POST['crowd_app_password']);
@@ -107,11 +115,28 @@
 $crowd_login_mode = get_option('crowd_login_mode');
 $crowd_group = get_option('crowd_group');
 $crowd_account_type = get_option('crowd_account_type');
+$crowd_wordpress_role_mappings = get_option("crowd_wordpress_role_mappings");
 
 ?>
 <script>
   var crowdAccountType = "<?php echo $crowd_account_type; ?>";
   var crowdGroup = "<?php echo $crowd_group; ?>";
+  var crowdWordpressRoleMappings =
+<?php
+  $mappings = array();
+  foreach ($crowd_wordpress_role_mappings as $role => $group) {
+    array_push($mappings, '"' . $role . '":"' . $group . '"');
+  }
+  $result = '{';
+  for ($i = 0; $i < count($crowd_wordpress_role_mappings); $i++) {
+    if ($i != 0) {
+      $result .= ",";
+    }
+    $result .= $mappings[$i];
+  }
+  $result .= '};';
+  echo $result;
+?>
 </script>
 <div class="container">
   <div class="banner"><h1>Crowd Login 0.1</h1></div>
@@ -159,7 +184,7 @@
             <label for="cl-mode-create-group">Create Wordpress accounts for users in the specified group:</label>
           </div>
           <div>
-            <input class="cl-mode" id="cl-mode-map-group" name="crowd_login_mode" type="radio" value="mode_map_group" <?php if($rowd_login_mode == "mode_map_group"){ echo 'checked="checked"'; }?> />
+            <input class="cl-mode" id="cl-mode-map-group" name="crowd_login_mode" type="radio" value="mode_map_group" <?php if($crowd_login_mode == "mode_map_group"){ echo 'checked="checked"'; }?> />
             <label for="cl-mode-map-group">Create Wordpress accounts for user in specified groups, assign them role selected per group</label>
           </div>
         </div>
diff --git a/crowd-login-admin.js b/crowd-login-admin.js
index 00eba45..f36505b 100644
--- a/crowd-login-admin.js
+++ b/crowd-login-admin.js
@@ -16,9 +16,9 @@ function groupInput(group) {
   return '<div class="additional-input"><label for="cl-crowd-group">Crowd group:</label><input id="cl-crowd-group" name="crowd_group" type="text" value="' + group + '" size="12"/>';
 }
 function mapGroup() {
-  var positions = ["Administrator", "Editor", "Author", "Contributor", "Subscriber"];
+  var positions = _.keys(crowdWordpressRoleMappings);
   function oneLineHtml(position) {
-    var html = '<div><input type="text" name="cl-mapping-crowd-group-' + position + '" />' + position + "</div>";
+    var html = '<div><input type="text" value="' + crowdWordpressRoleMappings[position] + '" name="cl-mapping-crowd-group-' + position + '" />' + position + "</div>";
     return html;
   }
   var html = "<div>" + _.chain(positions).map(oneLineHtml).reduce(function(acc,b) { return acc + b}, "").value() + "</div>";

From 610a3d7a21523f3dc9412e0e6a1a706305e90c02 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 11:33:23 +0200
Subject: [PATCH 05/12] use the group mapping to roles during login

coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login.php | 38 ++++++++++++++++++++++++++++++++++----
 1 file changed, 34 insertions(+), 4 deletions(-)

diff --git a/Crowd-Login.php b/Crowd-Login.php
index 97c57ee..325b1f1 100644
--- a/Crowd-Login.php
+++ b/Crowd-Login.php
@@ -38,6 +38,7 @@ function crowd_activation_hook() {
 	add_option('crowd_security_mode', 'security_low');
 	add_option('crowd_login_mode', 'mode_normal');
 	add_option('crowd_account_type', 'Contributor');
+	add_option("crowd_wordpress_role_mappings", array());
 }
 
 // Reset Crowd instance and principal token
@@ -100,14 +101,34 @@ function crowd_authenticate($user, $username, $password) {
 	}
 
 	$auth_result = crowd_can_authenticate($username, $password);
+
 	if($auth_result == true && !is_a($auth_result, 'WP_Error')) {
 		$user = get_userdatabylogin($username);
 
 		if ( !$user || (strtolower($user->user_login) != strtolower($username)) ) {
 			//No user, can we create?
 			switch(get_option('crowd_login_mode')) {
+
+        case "mode_map_group":
+          $mappings = get_option("crowd_wordpress_role_mappings");
+          $crowd_groups = get_crowd_groups($username)->string;
+          $role = NULL;
+          foreach ($mappings as $mapping_key => $mapping_value) {
+            if ($mapping_value === $crowd_groups) {
+              $role = $mapping_key;
+            }
+          }
+          if ($role != NULL) {
+            $new_user_id = crowd_create_wp_user($username, $role);
+            return new WP_User($new_user_id);
+          } else {
+            do_action("wp_login_failed", $username);
+            return new WP_Error('group not mapped', __("<strong>Crowd Login Error</strong>: Crowd group is not mapped."));
+          }
+          break;
+
 				case 'mode_create_all':
-					$new_user_id = crowd_create_wp_user($username);
+					$new_user_id = crowd_create_wp_user($username, get_option('crowd_account_type'));
 					if(!is_a($new_user_id, 'WP_Error')) {
 						//It worked
 						return new WP_User($new_user_id);
@@ -119,7 +140,7 @@ function crowd_authenticate($user, $username, $password) {
 					
 				case 'mode_create_group':
 					if(crowd_is_in_group($username)) {
-						$new_user_id = crowd_create_wp_user($username);
+						$new_user_id = crowd_create_wp_user($username, get_option('crowd_account_type'));
 						if(!is_a($new_user_id, 'WP_Error')) {
 							//It worked
 							return new WP_User($new_user_id);
@@ -177,6 +198,15 @@ function crowd_can_authenticate($username, $password) {
 	return $princ_token;
 }
 
+function get_crowd_groups($username) {
+  global $crowd;
+	if ($crowd == NULL) {
+		return NULL;
+	}
+	$groups = $crowd->findGroupMemberships($username);
+  return $groups;
+}
+
 function crowd_is_in_group($username) {
 	global $crowd;
 	$result = false;
@@ -198,7 +228,7 @@ function crowd_is_in_group($username) {
 	return $result;
 }
 
-function crowd_create_wp_user($username) {
+function crowd_create_wp_user($username, $role) {
 	global $crowd, $princ_token;
 	$result = 0;
 
@@ -222,7 +252,7 @@ function crowd_create_wp_user($username) {
 		'display_name'  => $person['givenName'] .' '. $person['sn'],
 		'first_name'    => $person['givenName'],
 		'last_name'     => $person['sn'],
-		'role'		=> strtolower(get_option('crowd_account_type'))
+		'role'		=> strtolower($role) // get_option('crowd_account_type'))
 	);
 			
 	$result = wp_insert_user($userData); 

From b55640320b7bcb456268af40c82e925fd099b512 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 11:43:50 +0200
Subject: [PATCH 06/12] reuse the function `get_crowd_groups`

coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login.php | 14 +++-----------
 1 file changed, 3 insertions(+), 11 deletions(-)

diff --git a/Crowd-Login.php b/Crowd-Login.php
index 325b1f1..15a1d66 100644
--- a/Crowd-Login.php
+++ b/Crowd-Login.php
@@ -208,23 +208,15 @@ function get_crowd_groups($username) {
 }
 
 function crowd_is_in_group($username) {
-	global $crowd;
 	$result = false;
+	$crowd_group = get_option('crowd_group');
 
-	// If we can't get a Crowd instance, fail
-	if ($crowd == NULL) {
-		return $result;
-	}
-
-	$crowd_group = $get_option('crowd_group');
-
-	$groups = $crowd->findGroupMemberships($username);
+	$groups = get_crowd_groups($username);
 	if ($groups == NULL) {
 		return $result;
 	}
 
-	$result = in_array($crowd_group, $groups);	
-
+	$result = $crowd_group === $groups->string;
 	return $result;
 }
 

From 05366bdb5bdf5bae162d7d395e8cdf8f2be87619 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 11:48:03 +0200
Subject: [PATCH 07/12] hide group mapping inputs on focus out

coubeatczech/wordpress-crowd-plugin#2
---
 crowd-login-admin.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crowd-login-admin.js b/crowd-login-admin.js
index f36505b..d880a32 100644
--- a/crowd-login-admin.js
+++ b/crowd-login-admin.js
@@ -21,7 +21,7 @@ function mapGroup() {
     var html = '<div><input type="text" value="' + crowdWordpressRoleMappings[position] + '" name="cl-mapping-crowd-group-' + position + '" />' + position + "</div>";
     return html;
   }
-  var html = "<div>" + _.chain(positions).map(oneLineHtml).reduce(function(acc,b) { return acc + b}, "").value() + "</div>";
+  var html = '<div class="additional-input">' + _.chain(positions).map(oneLineHtml).reduce(function(acc,b) { return acc + b}, "").value() + "</div>";
   return html;
 }
 

From e6328f40373f36bf9c12227ce7970f0a72ea4a45 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 11:53:03 +0200
Subject: [PATCH 08/12] change checked in option to selected

coubeatczech/wordpress-crowd-plugin#2
---
 crowd-login-admin.js | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/crowd-login-admin.js b/crowd-login-admin.js
index d880a32..e6c9bea 100644
--- a/crowd-login-admin.js
+++ b/crowd-login-admin.js
@@ -1,6 +1,6 @@
 function selectRole(checkedRole, selectName) {
   function checked(role) {
-    return (role === checkedRole) ? 'checked="checked"' : "" ;
+    return (role === checkedRole) ? 'selected="selected"' : "" ;
   }
   var selectNameHtml = (null == selectName) ? "crowd_account_type" : selectName;
   var html = ' <select class="additional-input" name="' + selectNameHtml + '"> ' +

From 82926959335ac9d017f9e1163c90cffb668af314 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 11:56:01 +0200
Subject: [PATCH 09/12] adjust height of the advanced column

Because there are more items in it.
coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login-Admin.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/Crowd-Login-Admin.php b/Crowd-Login-Admin.php
index de160ff..298b41f 100644
--- a/Crowd-Login-Admin.php
+++ b/Crowd-Login-Admin.php
@@ -7,7 +7,7 @@
     background: #EBEBEB;
     margin: 10px;
     width:450px;
-    height:375px;
+    height:575px;
     font-family: Calibri,Helvetica,Arial,sans-serif;
     float: left; 
   }
@@ -34,7 +34,7 @@
     background: #EBEBEB;
     margin: 10px 10px 10px 0px;
     width:450px;
-    height:375px;
+    height:575px;
     font-family: Calibri,Helvetica,Arial,sans-serif;
     float: left; 
   }

From 66e2167f700a32343efe0ca710b50d572968307d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 12:28:10 +0200
Subject: [PATCH 10/12] save option only when the relevant mode is selected

coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login-Admin.php | 15 +++++++++++----
 1 file changed, 11 insertions(+), 4 deletions(-)

diff --git a/Crowd-Login-Admin.php b/Crowd-Login-Admin.php
index 298b41f..2c973f5 100644
--- a/Crowd-Login-Admin.php
+++ b/Crowd-Login-Admin.php
@@ -79,14 +79,21 @@
     $roleValue = $_POST["cl-mapping-crowd-group-$role"];
     $roles_and_values[$role] = $roleValue;
   }
-  update_option("crowd_wordpress_role_mappings", $roles_and_values);
+  $crowd_login_mode = $_POST['crowd_login_mode'];
+  if ("mode_map_group" === $crowd_login_mode) {
+    update_option("crowd_wordpress_role_mappings", $roles_and_values);
+  }
+  if ("mode_create_group" === $crowd_login_mode) {
+    update_option('crowd_group', $_POST['crowd_group']);
+  }
+  if (in_array($crowd_login_mode, array("mode_create_group", "mode_create_all"))) {
+    update_option('crowd_account_type', $_POST['crowd_account_type']);
+  }
 	update_option('crowd_url', $_POST['crowd_url']);
 	update_option('crowd_app_name', $_POST['crowd_app_name']);
 	update_option('crowd_app_password', $_POST['crowd_app_password']);
 	update_option('crowd_security_mode', $_POST['crowd_security_mode']);
-	update_option('crowd_login_mode', $_POST['crowd_login_mode']);
-	update_option('crowd_group', $_POST['crowd_group']);
-	update_option('crowd_account_type', $_POST['crowd_account_type']);
+	update_option('crowd_login_mode', $crowd_login_mode);
 } elseif ($_POST['stage'] == 'test') {
 	//Test credentials
 	global $bool_test;

From 33f75e501db2c7066553a33a6735f3fb3bbe13e2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 12:44:51 +0200
Subject: [PATCH 11/12] make it work when user in is more crowd groups

coubeatczech/wordpress-crowd-plugin#2
---
 Crowd-Login.php | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/Crowd-Login.php b/Crowd-Login.php
index 15a1d66..3463064 100644
--- a/Crowd-Login.php
+++ b/Crowd-Login.php
@@ -112,10 +112,12 @@ function crowd_authenticate($user, $username, $password) {
         case "mode_map_group":
           $mappings = get_option("crowd_wordpress_role_mappings");
           $crowd_groups = get_crowd_groups($username)->string;
+          $crowd_groups = is_array($crowd_groups) ? $crowd_groups : array($crowd_groups);
           $role = NULL;
           foreach ($mappings as $mapping_key => $mapping_value) {
-            if ($mapping_value === $crowd_groups) {
+            if (in_array($mapping_value, $crowd_groups)) {
               $role = $mapping_key;
+              break;
             }
           }
           if ($role != NULL) {

From 2567de43ed1bf8017b098a851bc729778aa9c670 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jakub=20Ry=C5=A1ka?= <ryskajakub@seznam.cz>
Date: Tue, 24 Jun 2014 12:52:20 +0200
Subject: [PATCH 12/12] update readme

coubeatczech/wordpress-crowd-plugin#2
---
 readme.txt | 1 +
 1 file changed, 1 insertion(+)

diff --git a/readme.txt b/readme.txt
index 850298e..8d328a7 100644
--- a/readme.txt
+++ b/readme.txt
@@ -19,6 +19,7 @@ Having a single login for every service is a must in large organizations. This p
 * * Normal Mode: Authenticates existing Wordpress usernames against Crowd. This requires you to create all Wordpress accounts manually using the same user names as those in your Crowd directory.
 * * Account Creation Mode 1: Creates Wordpress accounts automatically for any Crowd user.
 * * Account Creation Mode 2: Creates Wordpress accounts automatically for Crowd users in a specific Group you specify.
+* * Account Creation Mode 3: Creates Wordpress accounts automatically for Crowd users in groups you specify, you have to map these groups onto Wordpress roles. If user is in Crowd group A, B and mapping from B Crowd group is to role which has more capabilities like **Administrator**, than role which is mapped from Crowd group A, like **Editor**, then the user will have the role with more capabilities (**Administrator**).
 * Intuitive control panel.
 
 = Architecture =