Module: LDAP::ConnImplementation

Included in:

Conn, SSLConn

Defined in:

lib/ldap/conn.rb

Instance Method Summary

• #__jndi_context ⇒ Object
• #add(dn, attrs) ⇒ Object
• #bind(dn = nil, password = nil, method = LDAP_AUTH_SIMPLE) ⇒ Object
• #bound? ⇒ Boolean
• #controls(*args) ⇒ Object
• #delete(dn) ⇒ Object
• #err ⇒ Object
• #err2string(err) ⇒ Object
• #get_option(*args) ⇒ Object
• #initialize(host = 'localhost', port = LDAP_PORT) ⇒ Object
• #modify(dn, attrs) ⇒ Object
• #modrdn(dn, new_rdn, delete_old_rdn) ⇒ Object

  Modify the RDN of the entry with DN, dn, giving it the new RDN, new_rdn.

• #perror(*args) ⇒ Object
• #referrals(*args) ⇒ Object
• #result2error(*args) ⇒ Object
• #search(base_dn, scope, filter, attrs = nil, attrsonly = nil, sec = 0, usec = 0, s_attr = nil, s_proc = nil) ⇒ Object
• #search2(base_dn, scope, filter, attrs = nil, attrsonly = nil, sec = 0, usec = 0, s_attr = nil, s_proc = nil) ⇒ Object
• #set_option(opt, value) ⇒ Object
• #simple_bind(dn = nil, password = nil, &block) ⇒ Object
• #unbind ⇒ Object

Instance Method Details

#__jndi_context ⇒ Object

# File 'lib/ldap/conn.rb', line 66

def __jndi_context
  @context
end

#add(dn, attrs) ⇒ Object

Raises:

• (LDAP::InvalidDataError)

# File 'lib/ldap/conn.rb', line 125

def add(dn, attrs)
  raise LDAP::InvalidDataError, "The LDAP handler has already unbound." unless bound?

  attrs = LDAP::hash2mods(LDAP::LDAP_MOD_ADD, attrs) if attrs.is_a?(Hash)

  begin 
    @context.create_subcontext(dn, LDAP::Mod.to_java_attributes(*attrs))
    @err = 0
  rescue javax.naming.NameNotFoundException => e
    @err = 32
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.InvalidNameException => e
    @err = 34
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NoPermissionException => e
    @err = 50
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.directory.SchemaViolationException => e
    @err = 65
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NamingException => e
    @err = 21
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  end
  self
end

#bind(dn = nil, password = nil, method = LDAP_AUTH_SIMPLE) ⇒ Object

Raises:

• (LDAP::Error)

# File 'lib/ldap/conn.rb', line 87

def bind(dn=nil, password=nil, method=LDAP_AUTH_SIMPLE)
  raise LDAP::Error, "already bound" if bound?

  url = @use_ssl ? "ldaps://#@host:#@port/" : "ldap://#@host:#@port/"
  base_env = {javax.naming.Context::PROVIDER_URL => url}
  base_env[javax.naming.Context::SECURITY_PRINCIPAL] = dn if dn
  base_env[javax.naming.Context::SECURITY_CREDENTIALS] = password if password

  @current_env = java.util.Hashtable.new(LDAP::configuration(base_env))

  begin 
    @context = javax.naming.directory.InitialDirContext.new(@current_env)
    @err = 0
  rescue javax.naming.NoPermissionException => e
    @err = 50
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NamingException => e
    @err = -1
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  end
  
  if !block_given?
    return self
  end

  begin 
    yield self

    return nil
  ensure
    unbind
  end
end

#bound? ⇒ Boolean

Returns:

• (Boolean)

# File 'lib/ldap/conn.rb', line 254

def bound?
  !@context.nil?
end

#controls(*args) ⇒ Object

# File 'lib/ldap/conn.rb', line 15

def controls(*args)
  raise "NOT IMPLEMENTED"
end

#delete(dn) ⇒ Object

Raises:

• (LDAP::InvalidDataError)

# File 'lib/ldap/conn.rb', line 180

def delete(dn)
  raise LDAP::InvalidDataError, "The LDAP handler has already unbound." unless bound?

  begin
    @context.destroy_subcontext(dn)
    @err = 0
  rescue javax.naming.NameNotFoundException => e
    @err = 32
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.InvalidNameException => e
    @err = 34
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NoPermissionException => e
    @err = 50
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NamingException => e
    @err = 21
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  end
  self
end

#err ⇒ Object

# File 'lib/ldap/conn.rb', line 75

def err
  @err || 0
end

#err2string(err) ⇒ Object

# File 'lib/ldap/conn.rb', line 79

def err2string(err)
  LDAP.err2string(err)
end

#get_option(*args) ⇒ Object

# File 'lib/ldap/conn.rb', line 19

def get_option(*args)
  raise "NOT IMPLEMENTED"
end

#initialize(host = 'localhost', port = LDAP_PORT) ⇒ Object

# File 'lib/ldap/conn.rb', line 70

def initialize(host='localhost', port=LDAP_PORT)
  @host = host
  @port = port
end

#modify(dn, attrs) ⇒ Object

Raises:

• (LDAP::InvalidDataError)

# File 'lib/ldap/conn.rb', line 152

def modify(dn, attrs)
  raise LDAP::InvalidDataError, "The LDAP handler has already unbound." unless bound?

  attrs = LDAP::hash2mods(LDAP::LDAP_MOD_REPLACE, attrs) if attrs.is_a?(Hash)

  begin 
    @context.modify_attributes(dn, LDAP::Mod.to_java_modification_items(*attrs))
    @err = 0
  rescue javax.naming.NameNotFoundException => e
    @err = 32
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.InvalidNameException => e
    @err = 34
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NoPermissionException => e
    @err = 50
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.directory.SchemaViolationException => e
    @err = 65
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NamingException => e
    @err = 21
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  end

  self
end

#modrdn(dn, new_rdn, delete_old_rdn) ⇒ Object

Modify the RDN of the entry with DN, dn, giving it the new RDN, new_rdn. If delete_old_rdn is true, the old RDN value will be deleted from the entry.

# File 'lib/ldap/conn.rb', line 26

def modrdn(dn, new_rdn, delete_old_rdn)
  begin 
    if delete_old_rdn
      @context.rename(dn, new_rdn)
    else
      obj = @context.lookup(dn)
      @context.bind(new_rdn, obj)
    end
    @err = 0
  rescue javax.naming.NameAlreadyBoundException => e
    @err = 68
  rescue javax.naming.InvalidNameException => e
    @err = 34
  rescue javax.naming.NoPermissionException => e
    @err = 50
  rescue javax.naming.directory.SchemaViolationException => e
    @err = 65
  rescue javax.naming.NamingException => e
    @err = 21
  rescue javax.naming.NoPermissionException => e
    @err = 50
  rescue javax.naming.NamingException => e
    @err = -1
  end
  raise LDAP::ResultError.wrap(LDAP::err2string(@err), e) if @err != 0
  self
end

#perror(*args) ⇒ Object

# File 'lib/ldap/conn.rb', line 54

def perror(*args)
  raise "NOT IMPLEMENTED"
end

#referrals(*args) ⇒ Object

# File 'lib/ldap/conn.rb', line 58

def referrals(*args)
  raise "NOT IMPLEMENTED"
end

#result2error(*args) ⇒ Object

# File 'lib/ldap/conn.rb', line 62

def result2error(*args)
  raise "NOT IMPLEMENTED"
end

#search(base_dn, scope, filter, attrs = nil, attrsonly = nil, sec = 0, usec = 0, s_attr = nil, s_proc = nil) ⇒ Object

Raises:

• (LDAP::InvalidDataError)

# File 'lib/ldap/conn.rb', line 202

def search(base_dn, scope, filter, attrs=nil, attrsonly=nil, sec=0, usec=0, s_attr=nil, s_proc=nil)
  raise LDAP::InvalidDataError, "The LDAP handler has already unbound." unless bound?

  controls = javax.naming.directory.SearchControls.new
  controls.search_scope = scope

  if attrs && !attrs.empty?
    controls.returning_attributes = attrs.to_java(:string)
  end
  if attrsonly
    controls.returning_obj_flag = true
  end

  if sec != 0 || usec != 0
    controls.time_limit = usec/1000 + sec*1000
  end

  begin 
    @context.search(base_dn, filter, controls).each do |val|
      yield LDAP::Entry.create_from_search_result(val)
    end

    @err = 0
  rescue javax.naming.NameNotFoundException => e
    @err = 32
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.InvalidNameException => e
    @err = 34
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  rescue javax.naming.NoPermissionException => e
    @err = 50
    raise LDAP::ResultError.wrap(LDAP::err2string(@err), e)
  end

  self
end

#search2(base_dn, scope, filter, attrs = nil, attrsonly = nil, sec = 0, usec = 0, s_attr = nil, s_proc = nil) ⇒ Object

# File 'lib/ldap/conn.rb', line 239

def search2(base_dn, scope, filter, attrs=nil, attrsonly=nil, sec=0, usec=0, s_attr=nil, s_proc=nil)
  arr = []
  search(base_dn, scope, filter, attrs, attrsonly, sec, usec, s_attr, s_proc) do |val|
    arr << LDAP::entry2hash(val)
  end
  arr
end

#set_option(opt, value) ⇒ Object

# File 'lib/ldap/conn.rb', line 121

def set_option(opt, value)
  @err = 0
end

#simple_bind(dn = nil, password = nil, &block) ⇒ Object

# File 'lib/ldap/conn.rb', line 83

def simple_bind(dn=nil, password=nil, &block)
  bind(dn, password, LDAP_AUTH_SIMPLE, &block)
end

#unbind ⇒ Object

Raises:

• (LDAP::InvalidDataError)

# File 'lib/ldap/conn.rb', line 247

def unbind
  raise LDAP::InvalidDataError, "The LDAP handler has already unbound." unless bound?
  @context.close
  @err = 0
  @context = nil
end