root/lib/ldap_shadows/manipulation_helper.rb @ c3a5f36f
| 2bd92292 | Marc Dequènes (Duck) | #--
|
|
# LdapShadows, a Medium-level LDAP Access Library and Tool.
|
|||
# Copyright (c) 2009 Marc Dequènes (Duck) <Duck@DuckCorp.org>
|
|||
#
|
|||
# This program is free software: you can redistribute it and/or modify
|
|||
# it under the terms of the GNU General Public License as published by
|
|||
# the Free Software Foundation, either version 3 of the License, or
|
|||
# (at your option) any later version.
|
|||
#
|
|||
# This program is distributed in the hope that it will be useful,
|
|||
# but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|||
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|||
# GNU General Public License for more details.
|
|||
#
|
|||
# You should have received a copy of the GNU General Public License
|
|||
# along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|||
#++
|
|||
module LdapShadows
|
|||
module Manipulation
|
|||
def self.item_modify_from_strings(item, str_list)
|
|||
str_list = [str_list] unless str_list.is_a? Array
|
|||
modification_done = false
|
|||
str_list.each do |str|
|
|||
unless str =~ /^([a-zA-Z]*(?::[a-zA-Z]+)?)(=|\+=|-=)(.*)$/
|
|||
raise SyntaxError, _("modification parameter '%s' is invalid") % str
|
|||
end
|
|||
key = $1
|
|||
op = $2
|
|||
val = $3
|
|||
mod_done = item.modify(key, op, val)
|
|||
modification_done ||= mod_done
|
|||
end
|
|||
modification_done
|
|||
end
|
|||
def self.items_find_from_strings(shadow, str_list)
|
|||
ldap_search_objects = "(objectClass=*)"
|
|||
ldap_search_aspects = ""
|
|||
ldap_search_fields = []
|
|||
str_list.each do |str|
|
|||
unless str =~ /^([a-zA-Z]*(?::[a-zA-Z]+)?)(=|~=)(.*)$/
|
|||
raise SyntaxError, _("search parameter '%s' is invalid") % str
|
|||
end
|
|||
key = $1
|
|||
op = $2
|
|||
val = $3
|
|||
if key.index(":")
|
|||
type, field = key.split(":")
|
|||
else
|
|||
type = nil
|
|||
field = key
|
|||
end
|
|||
case type
|
|||
when nil
|
|||
ldap_search_fields << ldap_search_string_field(field, op, val)
|
|||
when 'rel'
|
|||
raise PreProcessingError, _("Searching relations is not implemented yet")
|
|||
when ''
|
|||
case field
|
|||
when 'objects'
|
|||
ldap_search_objects = ldap_search_string_objects(shadow, field, op, val)
|
|||
when 'aspects'
|
|||
ldap_search_aspects = ldap_search_string_aspects(shadow, field, op, val)
|
|||
else
|
|||
raise PreProcessingError, _("Unknown core field '%s'") % field
|
|||
end
|
|||
else
|
|||
raise PreProcessingError, _("Unknown type '%s' for field '%s'") % [type, field]
|
|||
end
|
|||
end
|
|||
ldap_search_string = "(&" + ldap_search_objects + ldap_search_aspects + ldap_search_fields.join + ")"
|
|||
ActiveLdap::Base.find(:all, :scope => :sub, :filter => ldap_search_string, :attributes => ["objectClass"])
|
|||
end
|
|||
def self.find_raw_item_object(shadow, raw_item)
|
|||
# easy case
|
|||
base_obj_klass = LdapShadows::Elements::LdapObject
|
|||
if raw_item.class != base_obj_klass and raw_item.class.ancestors.include?(base_obj_klass)
|
|||
return raw_item.class.handle
|
|||
end
|
|||
shadow.objects.each do |obj_hdl|
|
|||
obj_klass = shadow.get_object(obj_hdl)
|
|||
ldap_classes = obj_klass.required_classes
|
|||
return obj_hdl if raw_item.classes & ldap_classes == ldap_classes
|
|||
end
|
|||
nil
|
|||
end
|
|||
| aa4e021c | Marc Dequènes (Duck) | def self.raw_item_info(shadow, raw_item, dn = nil)
|
|
if raw_item
|
|||
obj_hdl = self.find_raw_item_object(shadow, raw_item)
|
|||
if obj_hdl
|
|||
obj_klass = shadow.get_object(obj_hdl)
|
|||
item = obj_klass.new(raw_item.dn)
|
|||
return {:name => item.full_handle, :item => item, :object => obj_klass}
|
|||
end
|
|||
item_fake_hdl = raw_item.dn
|
|||
else
|
|||
item_fake_hdl = dn || "???"
|
|||
end
|
|||
{:name => "unknown/#{item_fake_hdl}"}
|
|||
end
|
|||
def self.interpret_field_value(shadow, syntax, val)
|
|||
case syntax
|
|||
when "1.3.6.1.4.1.1466.115.121.1.12"
|
|||
raw_item = ActiveLdap::Base.find(:first, :base => val.to_s, :scope => :base)
|
|||
LdapShadows::Manipulation.raw_item_info($shadow, raw_item, val.to_s)[:name]
|
|||
| 2bd92292 | Marc Dequènes (Duck) | else
|
|
| aa4e021c | Marc Dequènes (Duck) | val
|
|
| 2bd92292 | Marc Dequènes (Duck) | end
|
|
end
|
|||
protected
|
|||
def self.ldap_search_string_field(field, op, val)
|
|||
esc_val = ActiveLdap::Base.connection.escape_filter_value(val)
|
|||
case op
|
|||
when "="
|
|||
"(#{field}=#{esc_val})"
|
|||
when "~="
|
|||
raise PreProcessingError, _("Searching with regex is not implemented yet")
|
|||
else
|
|||
raise SyntaxError, _("Unknown operator '%s'") % op
|
|||
end
|
|||
end
|
|||
def self.ldap_search_string_objects(shadow, field, op, val_list)
|
|||
ldap_search_parts = val_list.split(",").collect do |val|
|
|||
obj_hdl = val.downcase.singularize
|
|||
obj_klass = shadow.get_object(obj_hdl)
|
|||
raise PreProcessingError, _("No such object '%s'") % val if obj_klass.nil?
|
|||
ldap_classes = obj_klass.required_classes
|
|||
case op
|
|||
when "="
|
|||
"(&" + ldap_classes.collect{|cl| "(objectClass=#{cl})" }.join + ")"
|
|||
when "~="
|
|||
raise PreProcessingError, _("Searching with regex is not possible with objects")
|
|||
else
|
|||
raise SyntaxError, _("Unknown operator '%s'") % op
|
|||
end
|
|||
end
|
|||
"(|" + ldap_search_parts.join + ")"
|
|||
end
|
|||
def self.ldap_search_string_aspects(shadow, field, op, val_list)
|
|||
ldap_search_parts = val_list.split(",").collect do |val|
|
|||
aspect = shadow.get_aspect(val)
|
|||
raise PreProcessingError, _("No such aspect '%s'") % val if aspect.nil?
|
|||
ldap_classes = aspect.parameters[:mapping][:classes]
|
|||
case op
|
|||
when "="
|
|||
"(&" + ldap_classes.collect{|cl| "(objectClass=#{cl})" }.join + ")"
|
|||
when "~="
|
|||
raise PreProcessingError, _("Searching with regex is not possible with aspects")
|
|||
else
|
|||
raise SyntaxError, _("Unknown operator '%s'") % op
|
|||
end
|
|||
end
|
|||
"(&" + ldap_search_parts.join + ")"
|
|||
end
|
|||
end
|
|||
end
|